Details

    • Type: Task Task
    • Status: Resolved
    • Priority: Minor Minor
    • Resolution: Complete
    • Affects Version/s: None
    • Fix Version/s: 1.1.0.M2
    • Component/s: Samples
    • Labels:
      None

      Description

      The Canvas sample uses Spring Social's typical OAuth 2 flow to obtain an access token. While this works, it's not the best approach for a canvas-based application. This sample should be updated to show how to use the signed_request parameter given to the application by Facebook.

      In the course of updating this sample, there may be opportunity to improve Spring Social to support the Canvas model of application. If so, separate issues should be opened to address those items.

        Activity

        Hide
        Craig Walls added a comment -

        As part of the work for SOCIALFB-69, I created a SignedRequestDecoder in the Spring Social Facebook web module. SignedRequestDecoder will no doubt be useful when using Spring Social in the context of a canvas application.

        Show
        Craig Walls added a comment - As part of the work for SOCIALFB-69 , I created a SignedRequestDecoder in the Spring Social Facebook web module. SignedRequestDecoder will no doubt be useful when using Spring Social in the context of a canvas application.
        Hide
        Craig Walls added a comment -

        A new canvas example has been created at https://github.com/SpringSource/spring-social-samples/tree/master/spring-social-canvas to properly use signed_request instead of the standard OAuth2 authorization code grant flow. It is still a bit rough around the edges, but it works well and demonstrates the proper approach to using Spring Social with Facebook Canvas apps.

        Out of this effort a new CanvasSignInController was introduced. This controller is largely boilerplate code and thus a good candidate for inclusion in Spring Social Facebook as a framework component. See SOCIALFB-110 for that improvement.

        Show
        Craig Walls added a comment - A new canvas example has been created at https://github.com/SpringSource/spring-social-samples/tree/master/spring-social-canvas to properly use signed_request instead of the standard OAuth2 authorization code grant flow. It is still a bit rough around the edges, but it works well and demonstrates the proper approach to using Spring Social with Facebook Canvas apps. Out of this effort a new CanvasSignInController was introduced. This controller is largely boilerplate code and thus a good candidate for inclusion in Spring Social Facebook as a framework component. See SOCIALFB-110 for that improvement.

          People

          • Assignee:
            Craig Walls
            Reporter:
            Craig Walls
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: