facebook - Best practice for handling secondary page requests -
when building facebook tab application first page receives signed request, question best practice handle secondary requests. save related information in cookie have on secondary requests seems little unsecured me.
i curious recommend way handle basic situation.
thanks.
the signed request intermediate step getting access_token , userid.
i put access token session, , encrypt , save in cookie. facebook app development has taught me go belt-and-suspenders when comes authentication.
Comments
Post a Comment