Facebook SDK 3.1 - Error validating access token

Asked 26/9, 2012 at 11:55 Answered 20/7, 2016 at 11:5

Solved ios facebook ios6 facebook-ios-sdk facebook-sdk-3.1

I'm trying to transition my app to the new Facebook SDK 3.1 (with support for iOS6 authentication).

I had it working just fine, so I then decided to remove the app from my list of authorized apps on the FB website in order to test that iOS would ask for permission again.

Now my first call to [FBRequest requestForMe] causes this error:

Response:

{
  "error": {
    "message": "Error validating access token: Session does not match current stored session. This may be because the user changed the password since the time the session was created or Facebook has changed the session for security reasons.",
    "type":"OAuthException",
    "code":190,
    "error_subcode":460
  }
}

Some details:

I'm trying to open the session as follows :

   [FBSession openActiveSessionWithReadPermissions:nil
                                       allowLoginUI:YES
                                  completionHandler:^(FBSession *session, FBSessionState state, NSError *error) {

                                           switch (state) {
                                               case FBSessionStateOpen:
                                                   [self presentPostOptions];
                                                   break;

                                               case FBSessionStateClosed:
                                               case FBSessionStateClosedLoginFailed:
                                                   [FBSession.activeSession closeAndClearTokenInformation];
                                                   break;

                                               default:
                                                   break;
                                           }

I then get called back in state FBSessionStateOpen (at this point iOS hasn't presented a request dialog, is that to be expected)? Facebook logs this:

2012-09-26 13:43:43.768 MyApp[2177:907] FBSDKLog: FBSession INVALID transition from FBSessionStateCreated to FBSessionStateClosed
2012-09-26 13:43:43.769 MyApp[2177:907] FBSDKLog: FBSession transition from FBSessionStateCreated to FBSessionStateCreatedOpening 
2012-09-26 13:43:43.837 MyApp[2177:907] FBSDKLog: FBSession transition from FBSessionStateCreatedOpening to FBSessionStateOpen

Once the session is open, in presentPostOptions I do this:

- (void)presentPostOptions
{    
    [[FBRequest requestForMe] startWithCompletionHandler:^(FBRequestConnection *connection, NSDictionary<FBGraphUser> *user, NSError *error) {
        if (!error) {
            self.usersName = user.name;
            self.usersID = user.id;

            [self getPages];
        }
        else
        {
            [self didFailWithError:error];
        }
    }];
}

Before the above completion block is called back, my main state handler block is called with an FBSessionStateClosed state. In the meantime, the Facebook SDK has logged the above error.

I can't find any way to reset the system; nor do I really understand the cause.

Can anyone please shed some light?

Dialogism answered 26/9, 2012 at 11:55 Comment(6)

i'm having the exact same issue as you described, just updated today to 3.1. even uninstalling the app does not help – Outrider 26/9, 2012 at 12:36

I didn't try uninstalling because I specifically didn't want to do something that could potentially make it start working again :) I really want to find a programatic solution so that my users don't get stuck in this position. In any case, it's interesting to know that it doesn't solve the issue. – Dialogism 26/9, 2012 at 13:3

Is this happening when you run in an iOS6 device/simulator only? Does it work on iOS5? – Gratuity 28/9, 2012 at 2:18

Hi. This is happening on iOS6 running on a real device. I haven't tested on anything else at this stage. Note that it was working perfectly until I removed the app's permissions from Facebook, so I assume that this has left the iPhone's internal state in a mess, and I don't know how to reset it. It's frustrating to say the least - my users are waiting for an update. – Dialogism 28/9, 2012 at 7:29

as tarmes stated same issue here in real device. on iOS5 it works because if you remove the app permission from Facebook you just need to reauthorize the app (so you get redirected to safari or fb app and you just have to allow the app again, as expected) – Outrider 28/9, 2012 at 9:24

Have you tried to re-enable the app via device settings -> facebook? See this similar question: #12621260 – Unamerican 28/9, 2012 at 22:55

The Facebook account on the device has become out-of-sync with the server as well as with the App's/SDK's cache. This can be solved by calling the ACAccountStore method renewCredentialsForAccount, which will update the OS's understanding of the token state.

In the next update of the SDK, the SDK will automatically call this API when it receives a response from the server indicating that a token has become invalid. For the 3.1.0 revision of the SDK, applications will need to explicitly call this API. Here is a code sample:

ACAccountStore *accountStore;
ACAccountType *accountTypeFB;
if ((accountStore = [[ACAccountStore alloc] init]) &&
    (accountTypeFB = [accountStore accountTypeWithAccountTypeIdentifier:ACAccountTypeIdentifierFacebook] ) ){

    NSArray *fbAccounts = [accountStore accountsWithAccountType:accountTypeFB];
    id account;
    if (fbAccounts && [fbAccounts count] > 0 &&
        (account = [fbAccounts objectAtIndex:0])){

        [accountStore renewCredentialsForAccount:account completion:^(ACAccountCredentialRenewResult renewResult, NSError *error) {
            //we don't actually need to inspect renewResult or error.
            if (error){

            }
        }];
    }
}

There are several options for where/when to call the API. The simplest place would be to opportunistically make the call on application launch, or on view load. One problem with this approach is that it will cause a network round-trip that is often unnecessary. Another option is to call it when a session change notification occurs, indicating that a session has closed. Also many applications fetch some basic information such as graph.facebook.com/me, at application launch time, and if so -- a call to this method in case of an error response may be a reasonable place to ask iOS to update its token status.

Hopefully this helps!

Huntingdonshire answered 29/9, 2012 at 16:9 Comment(17)

Hi Jason. Thanks, I'll try that on Monday. Do you know when the next release of the SDK will be? – Dialogism 29/9, 2012 at 21:17

We are working on a dot-release, with a limited number of bug fixes. It should not be too far out. – Huntingdonshire 29/9, 2012 at 23:31

Hi Jason. Having just updated the rest of my app for iOS 6 I now need to get the FB integration sorted out. I'd much rather use a bug free version of the SDK than add my own hacks :) Are you able to give some rough indication of the release date - are we talking days or weeks? Thanks. – Dialogism 2/10, 2012 at 12:40

For info, I can confirm that this did fix the issue. Now I'm waiting for the SDK update so that this can be done in the right place. – Dialogism 3/10, 2012 at 13:11

Here is the update (3.1.1) that fixes this directly in the SDK: github.com/downloads/facebook/facebook-ios-sdk/… Thanks!! – Huntingdonshire 3/10, 2012 at 21:45

That's great, thanks Jason. In the change log you note that "This does NOT address the 'code 2' errors from when ios6 users toggle the slider in their device Facebook settings though those cases do transition to 'ClosedLoginFailed' so it can be argued clients can code against it". What does this mean, and what should we be doing? – Dialogism 4/10, 2012 at 8:14

Hi @tarmes, there is nothing you need to do special here. This comment is actually specifically targeted at the user-experience of the scrumptious sample -- and was meant to note that scrumptious is going to continue to blindly pop-up a message box for any FBErrorLoginFailedOrCancelled case. Sorry for the misleading comment. – Huntingdonshire 4/10, 2012 at 20:46

Hi Jason. I've installed the 3.1.1 and removed the temporary fix above. Unfortunately the new SDK doesn't fix the issue. I've tracked down the problem - can we discuss this somewhere? – Dialogism 5/10, 2012 at 9:51

Hi @Dialogism please email me or Facebook message me, and we can dig in a bit deeper on the problem. Thanks! – Huntingdonshire 10/10, 2012 at 3:55

OK, I've describe the problem and fix via FB message. Thx, Tim. – Dialogism 10/10, 2012 at 8:10

@JasonClark, is there a method in the 3.1.1 SDK that does what your code chunk above does? I am using that code to fix an account-switching "code 2" error and was wondering whether I can call it somewhere or have to create my own function. – Marmara 12/10, 2012 at 16:17

Unfortunately still a problem for me using 3.1.1. When I log the fbAccounts array, all I get is an empty field. Annoyingly, I also accidentally selected "Don't Allow" on one of the dialogs and now I don't see any alerts at all... It just fails silently :( – Biotope 16/11, 2012 at 10:51

@JasonClark - I'm using 3.1.1 and experiencing a variety of related issues with this. One specific case is if the user removes their FB account from iOS settings the app/SDK still believe they have a valid token. And the token MAY be valid, but it seems wrong to continue using it if the user removed their account from Settings. And what if they then add a different FB account in iOS Settings - the app has no way of knowing to pick that up and use it instead of the cached session it has. – Jiggerypokery 26/11, 2012 at 17:41

I'm also getting this error after removing the app from my facebook account. When trying to fix, the fbAccounts array has nothing in it. Ideas? – Dutiable 30/11, 2012 at 17:45

I just updated to SDK 3.2, still have this problem.... (tested on ios6.0 iphone5) – Anteversion 4/3, 2013 at 10:19

Can anyone explain why "we don't actually need to inspect renewResult or error"? – Vulgarity 29/5, 2013 at 5:38

Still have this problem on SDK 3.7.1 – Clementeclementi 12/9, 2013 at 21:55

I'm just going to contribute another thing to check that caused me to waste 3 hours: Make sure your FB app settings do not have the 'Sandbox' option on if you're trying to login with a non-app-developer FB user... Maybe obvious, but could save others a few hours hopefully.

Ensphere answered 6/11, 2012 at 11:39 Comment(0)

Try adding, if you haven't already, your iOS App Bundle ID in the settings panel of your Facebook APP as suggested here.

Hope this helps.

Palpebrate answered 28/9, 2012 at 17:34 Comment(3)

Hi. I've just double checked that that's all entered correctly - it is, so that's not the issue. – Dialogism 28/9, 2012 at 21:14

I had the same issue and did that check, right after it worked. – Palpebrate 2/10, 2012 at 7:15

Proof. This certainly helps! – Rockwell 21/12, 2012 at 22:3

I'm fairly sure this is a Facebook iOS SDK bug (even on 3.1.1) and I filed this bug report.

While trying to reproduce this bug using their sample app Scrumptious, I found that it allows you to successfully re-authorize if you are using openActiveSessionWithReadPermissions. However, if you are asking for publish permissions via openActiveSessionWithPublishPermissions, it would be stuck in com.facebook.sdk.error 5.

Yokoyokohama answered 18/10, 2012 at 4:59 Comment(1)

I didn't read the documentation carefully. You have to call openActiveSessionWithRead first, then write. It looks like you can't start with openActiveSessionWithPublishPermissions.. – Yokoyokohama 19/10, 2012 at 8:24

[FBSession openActiveSessionWithReadPermissions:nil
 allowLoginUI:YES
 completionHandler:^(FBSession *session, FBSessionState  state, NSError *error) 
    {

       switch (state) {
           case FBSessionStateOpen:
               [self presentPostOptions];
               break;

           case FBSessionStateClosed:
           case FBSessionStateClosedLoginFailed:
               [FBSession.activeSession closeAndClearTokenInformation];
               break;

           default:
               break;
       }

      }];

Encumbrance answered 8/1, 2015 at 5:20 Comment(0)

In facebook SDK 3.7.1 I still had this issue. Basically I have decided to clear the token from the facebook cache when this happens. Like this:

if(state == FBSessionStateClosed ) {
     [FBSession.activeSession closeAndClearTokenInformation];
}

Taylor answered 11/9, 2014 at 16:15 Comment(0)

Simple Swift 2+ Solution for Facebook Error Validating Access Token

// Step 1: Logout 
FBSDKLoginManager().logOut()

// Step 2: Login
FBSDKLoginManager().logInWithReadPermissions(["public_profile", "email"], fromViewController: self, handler: { result, error -> Void in 

// ...

}

If this error occurs, you have to create new Facebook Session, so you have to login again.

Randolphrandom answered 20/7, 2016 at 11:5 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags