Seamless way to check if user likes page

by

Of course you can! As mentioned in the documentation, Facebook will send you some extra details in the signed_request:

When a user navigates to the Facebook
Page, they will see your Page Tab
added in the next available tab
position. Broadly, a Page Tab is
loaded in exactly the same way as a
Canvas Page. When a user selects your
Page Tab, you will received the
signed_request parameter with one
additional parameter, page. This
parameter contains a JSON object with
an id (the page id of the current
page), admin (if the user is a admin
of the page), and liked (if the user
has liked the page). As with a Canvas
Page, you will not receive all the
user information accessible to your
app in the signed_request until the
user authorizes your app.

The code taken from my tutorial should be something like: 

<?php
if(empty($_REQUEST["signed_request"])) {
    // no signed request where found which means
    // 1- this page was not accessed through a Facebook page tab
    // 2- a redirection was made, so the request is lost
    echo "signed_request was not found!";
} else {
    $app_secret = "APP_SECRET";
    $data = parse_signed_request($_REQUEST["signed_request"], $app_secret);
    if (empty($data["page"]["liked"])) {
        echo "You are not a fan!";
    } else {
        echo "Welcome back fan!";
    }
}

function parse_signed_request($signed_request, $secret) {
    list($encoded_sig, $payload) = explode('.', $signed_request, 2); 

    // decode the data
    $sig = base64_url_decode($encoded_sig);
    $data = json_decode(base64_url_decode($payload), true);

    if (strtoupper($data['algorithm']) !== 'HMAC-SHA256') {
        error_log('Unknown algorithm. Expected HMAC-SHA256');
        return null;
    }

    // check sig
    $expected_sig = hash_hmac('sha256', $payload, $secret, $raw = true);
    if ($sig !== $expected_sig) {
        error_log('Bad Signed JSON signature!');
        return null;
    }

    return $data;
}

function base64_url_decode($input) {
    return base64_decode(strtr($input, '-_', '+/'));
}
?>

UPDATED CODE: While the previous code would work. I wasn’t checking the validity of the request. This means someone could tamper the request and send you false information (like setting the admin to true!). Code has been updated, following the signed_request documentation approach.

More Related Contents:

  1. the facebooks 'xyz is typing' feature? [closed]
  2. Facebook messenger bot Webhook not working [closed]
  3. Is it possible to get friend’s emails using facebook api?
  4. facebook graph api not work from 2.2 to 2.3
  5. Upload Photo To Album with Facebook’s Graph API
  6. Why is Facebook PHP SDK getUser always returning 0?
  7. Simple example to post to a Facebook fan page via PHP?
  8. Facebook Graph API, how to get users email?
  9. Facebook API – How do I get a Facebook user’s profile image through the Facebook API (without requiring the user to “Allow” the application)
  10. Generating Facebook Open Graph meta tags dynamically
  11. Facebook only returning name and id of user
  12. facebook Uncaught OAuthException: An active access token must be used to query information about the current user
  13. how send message facebook friend through graph api using Accessstoken
  14. Get Facebook meta tags with PHP
  15. How do I can post a multiple photos via Facebook API
  16. Post to a Facebook user’s wall with cURL PHP
  17. Publishing To User’s Wall Without Being Online/Logged-in – Facebook Sharing Using Graph API
  18. Redirecting to authentication dialog – “An error occurred. Please try again later”
  19. Handling big user IDs returned by FQL in PHP
  20. Post to a facebook page without “manage_pages” permission using php
  21. Laravel Socialite: InvalidStateException
  22. facebook connect- $user_id = $facebook->getUser(); always returning 0 [duplicate]
  23. Facebook SDK returned an error: Cross-site request forgery validation failed. The “state” param from the URL and session do not match
  24. How to properly handle session and access token with Facebook PHP SDK 3.0?
  25. How to fetch facebook likes, share, comments count from an article
  26. facebook error ‘Error validating verification code’
  27. After all these code still i cannot load csv to mysql [closed]
  28. Best XML Parser for PHP [duplicate]
  29. Codeigniter displays a blank page instead of error messages
  30. Socket transport “ssl” in PHP not enabled

Leave a Comment