Skip to main content

Facebook Access Token

Description#

General#

  • Documentation: https://developers.facebook.com/docs/facebook-login/access-tokens/#apptokens
  • Summary: Facebook access tokens are strings used for identification and are of three types depending whether they are used : either to identify a user, an application, or a page. User access tokens are generally obtained via a login dialog and require a person to authorize the app to obtain one.
  • IPs allowlist: This feature is not available.
  • Scopes: Access tokens are used to read, modify, or write a specific person's Facebook data on their behalf.

Revoke the secret#

Access token can be refreshed with updated permissions and expiration date (see here for more details).

Check for suspicious activity#

Facebook API has access to an AppEventLogger class in order to monitor various activities (see here).

Details for Facebook access token#

  • Category: Social network

  • Company: Facebook

  • High recall: True

  • Validity check available: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 0.08

  • Prefixed: True

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - lock  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - facebook- type: ContentWhitelistPreValidator  patterns:  - eaacedeose0cba

Examples#

- text: >    get("https://graph.facebook.com/56049123177341123/feed?fields=from,message,permalink_url&access_token=EAACEdEose0cBANnyirEXfgeQXkExou8CE92rCVc2TmuIUeXvsGtmL1kWSwFBNjFXXlar4ZBiDctiiQfFMWDna90eqXBlb3QB9LcpKyQK8DVXQz8OYpXcswswhSpaWiMOv1eIvebQrxr9RmqQpRrZCtuuGKnsWnO0M8A3ZCbewZDZD"  apikey: EAACEdEose0cBANnyirEXfgeQXkExou8CE92rCVc2TmuIUeXvsGtmL1kWSwFBNjFXXlar4ZBiDctiiQfFMWDna90eqXBlb3QB9LcpKyQK8DVXQz8OYpXcswswhSpaWiMOv1eIvebQrxr9RmqQpRrZCtuuGKnsWnO0M8A3ZCbewZDZD