The only option to enter my Android app is to login via Facebook. I would like to use a web service (ASMX), and for each request the server should check that the user is authenticated via facebook. I found a solution:
1) Facebook user authentication from Android application
2) Get the FB auth token for the Android application.
3) Forward authentication token and facebook id from Android to web server
4) On the web server, make the Facebook API API with the token provided.
If calling the Facebook API from the web server returns valid authentication, and the user ID is the same as that sent by the Android application, your server can trust id (& you can be sure that Android authentication is real)
Link
My questions:
- Do I have to send facebook user id and token every time I submit a request to a web service? Or use a cookie (if possible)
- Do I need to register a web service as a facebook application? I found this:
C # Facebook SDK Getting Started
source
share