Facebook app permissions will soon require end-users to reauthorize access every 90 days, the company announced on its developer blog…
In the not-too-distant future, Facebook users gaining access to apps will need to reconfirm permissions every 90 days. Facebook recently published a developer news post announcing the change to access tokens. An access token is the tool which gives apps permission for users to sign in with their Facebook credentials.
Facebook App Permissions Reconfirmation Required Every 90 Days
Once rolled out, the permissions will no longer work indefinitely. Instead, users must grant reauthorization every 90 days. The change is scheduled to roll out gradually in the next several weeks. It’s a bit of an inconvenience but a change necessary as the social network continues to tighten its security and privacy.
Here’s the announcement, in-part:
“Last week, we announced that we would be making changes to Facebook Login user access tokens. As of today, we are starting to roll out this change in the upcoming weeks. We recommend monitoring your app and if issues occur, review your own code to be sure you handle any expired tokens seamlessly; for example, by re-prompting the person to log in with Facebook, or by showing an optional UI path to refresh to the latest data from their Facebook account.
All access tokens need to be renewed every 90 days with the consent of the person using your app. This means that every 90 days you must send a person through the Facebook Login process, and the person must agree to specific data permissions by tapping the ‘continue’ button.”