登录Facebook后如何重定向URL？

Question

登录Facebook后如何重定向URL？

rv_*_*v_k 2 python django facebook facebook-graph-api

我创建了一个django应用程序,Facebook连接到应用程序.现在,当我点击Facebook登录按钮时,会弹出oauth页面.当我给用户名密码时,它会被关闭而不会实际将页面重定向到任何页面.但是当我在一个新选项卡中使用FB页面时,我可以看到FB登录该用户的页面.所以登录工作完美,但我不知道在经过身份验证后将页面重定向放在哪里.有人可以帮我解决这个问题.这是我在设置页面中设置的方式？我无法在选项中找到任何回调网址.

App ID
xxxx
API Key
xxxx
App Secret
xxx
Site URL
http://localhost:8080/redirect_url/
Site Domain
localhost
Canvas Page
http://apps.facebook.com/registrationforms/
Canvas URL
http://apps.facebook.com/registrationforms/
Secure Canvas URL
Canvas FBML/iframe
iframe

Run Code Online (Sandbox Code Playgroud)

登录代码:这段代码插入registrationForm html页面(登录):

{% load facebookconnect %}
{% facebook_connect_login_button %}
{% facebook_connect_script %}

Run Code Online (Sandbox Code Playgroud)

和facebookconnect.py代码是:

from django import template
from django.conf import settings
from django.core.urlresolvers import reverse

register = template.Library()

class FacebookScriptNode(template.Node):
        def render(self, context):
            return """
            <script src="http://static.ak.connect.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php" type="text/javascript"></script>


            <script type="text/javascript"> FB.init("%s", "%s");
                function facebook_onlogin() {
                    var uid = FB.Facebook.apiClient.get_session().uid;
                    var session_key = FB.Facebook.apiClient.get_session().session_key;
                    var expires = FB.Facebook.apiClient.get_session().expires;
                    var secret = FB.Facebook.apiClient.get_session().secret;
                    var sig = FB.Facebook.apiClient.get_session().sig;

                    fb_connect_ajax(expires, session_key, secret, uid, sig);

                }

                function fb_connect_ajax(expires, session_key, ss, user, sig) {

                    var post_string = 'expires=' + expires;
                    post_string = post_string + '&session_key=' + session_key;
                    post_string = post_string + '&ss=' + ss;
                    post_string = post_string + '&user=' + user;
                    post_string = post_string + '&sig=' + sig;

                    $.ajax({
                        type: "POST",
                        url: "%s",
                        data: post_string,
                        success: function(msg) {
                            window.location = '%s'; //.reload()
                        }
                    });
                } 
            </script>       
            """ % (settings.FACEBOOK_API_KEY, reverse('xd_receiver'), reverse('facebook_connect_ajax'), settings.LOGIN_REDIRECT_URL)


def facebook_connect_script(parser, token): return FacebookScriptNode()

register.tag(facebook_connect_script)

class FacebookLoginNode(template.Node):
    def render(self, context): 
        return "<fb:login-button onlogin='facebook_onlogin();'></fb:login-button>"
        #return "<fb:login-button onclick="openPopup('https://graph.facebook.com/oauth/authorize?client_id=a0acfd122e64fc21cfa34d47369f0c97&redirect_uri=http://mysite.com/mypage&display=popup');"></fb:login-button>"



def facebook_connect_login_button(parser, token): return FacebookLoginNode()

register.tag(facebook_connect_login_button)

Run Code Online (Sandbox Code Playgroud)

Answer 1

dwa*_*rfy 5

如果你说oauth只是弹出窗口,我想你正在使用JS Facebook库.我会使用以下更简单的oauth重定向方式:

def build_authentication_redirect(self):
            args = {}
            args["client_id"]=self.app_id
            args["redirect_uri"]=self.redirect_uri
            args["scope"]=",".join(self.req_perms)
            redirect_url = "https://www.facebook.com/dialog/oauth?"+urllib.urlencode(args)
            redirect_code = """
                    <script type="text/javascript">
                    top.location.href='%s';
                    </script>
            """ % redirect_url;
            return HttpResponse(redirect_code,mimetype="text/html")

Run Code Online (Sandbox Code Playgroud)

self.app_id是你的facebook app id.self.redirect_uri是用户登录后重定向的URL.self.scope是从self.req_perms构建的,它是所需权限的数组.

之后,他们将用'postignedquest'参数中的访问令牌将用户重定向到redirect_uri,您可以使用以下函数对其进行解码:

def load_signed_request(self, signed_request):
            """Load the user state from a signed_request value"""
            sig, payload = signed_request.split(u'.', 1)
            sig = self.base64_url_decode(sig)
            data = json.loads(self.base64_url_decode(payload))

            expected_sig = hmac.new(self.app_secret, msg=payload, digestmod=hashlib.sha256).digest()

            # allow the signed_request to function for upto 1 day
            if sig == expected_sig and data[u'issued_at'] > (time.time() - 86400):
                    return data.get(u'user_id'), data.get(u'oauth_token')
            else:
                    return None,None

Run Code Online (Sandbox Code Playgroud)

示例:

sigreq =request.POST.get('signed_request', None)
user_id,access_token = load_signed_request(sigreq)

Run Code Online (Sandbox Code Playgroud)

再次,您将需要self.app_secret和以下功能:

@staticmethod
    def base64_url_decode(data):
            data = data.encode(u'ascii')
            data += '=' * (4 - (len(data) % 4))
            return base64.urlsafe_b64decode(data)

Run Code Online (Sandbox Code Playgroud)

我有很多与FB JS登录和身份验证,尤其是在不同的浏览器的麻烦,这种方式是比较稳健的方式,我能找到:)

顺便说一下如果你想要我的facebook.py文件,我可以把它放在网上某个地方......它甚至还有一个@fbsig_required和@fbsig_redirect视图装饰器......

哦这也是我的进口:

import cgi
import hashlib
import time
import urllib
import base64
import datetime
import hmac

from django.conf import settings
from django.http import HttpResponseRedirect,HttpResponse,HttpResponseNotFound

Run Code Online (Sandbox Code Playgroud)

归档时间：	14 年，8 月前
查看次数：	2150 次
最近记录：	14 年，8 月前