Home/ Questions/Q 4064418
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-20T15:51:11+00:00

I’ve just thrown together a quick Facebook iFrame fangate app, where you must like

  • 0

I’ve just thrown together a quick Facebook iFrame “fangate” app, where you must “like” to reveal a page.

I’ve seen a number of ways of doing things online so I just wanted to check that my method was safe to use before I publish the app.

..and the code..:

<?php
require 'facebook.php';

$facebook = new Facebook(array(
'appId' => "__CODE_HERE__",
'secret' => "__CODE_HERE__",
'cookie' => true
));
$signed_request = $facebook->getSignedRequest();

    if($signed_request != false){
        if($signed_request["page"]["liked"]) {
          echo "you LIKE this page now!!";
        } else {
          // User likes the fan page.. display restricted data.
          include 'index.php';
        }
    }
    else
    {
        header('LOCATION: http://www.facebook.com/');
    }

  ?>

What do you guys think? This seems pretty secure and the is the most common method i’ve come across. Would you include anything else?

All feedback welcome.. 🙂

–Conor

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    I won’t load the whole PHP-SDK only for this, instead I use the approach from the documentation: 

    $signed_request = $_REQUEST["signed_request"];
list($encoded_sig, $payload) = explode('.', $signed_request, 2);
$data = json_decode(base64_decode(strtr($payload, '-_', '+/')), true);

if (empty($data["page"]["liked"])) {
    echo "You are not a fan!";
} else {
    echo "Welcome back fan!";
}

    I’ve written a tutorial about this and provided a real world examples of the importance of this.

    • 0