Facebook PHP SDK v5

1/12/2015
FacebookPHPSDKv5.xacompleteguide!|BenMarshall
Facebook PHP SDK v5.x (4.1) a complete guide!

Ben Marshall (Https://Benmarshall.Me/Author/Bmarshall/)
May 30, 2014
Development (Https://Benmarshall.Me/Category/Development/)
41 Comments (Https://Benmarshall.Me/Facebook-Php-Sdk/#Comments)
(https://benmarshall.me/facebook-php-sdk/)
Implement the Facebook SDK 5.x (4.1) for PHP (https://github.com/facebook/facebook-php-sdk-v4) to
enable one-click
registrations & logins, gain access to user photos, timelines and even publish to profiles.
Update (April 29, 2015): Facebook PHP SDK 5.x? What happened to 4.1 you ask? The Facebook PHP SDK
will start following SemVer starting with v5.0 (https://github.com/facebook/facebook-php-sdkv4/issues/411#issuecomment-97556280). Before the decision to adopt SemVer, the official Facebook
PHP SDK was going to be released as v4.1. But now v4.1 is just an alias to v5.0.0. So any references to 4.1
can be safely aliased to v5.0.0. For more information, see F8 2015 Facebook Developer Conference and
the new PHP SDK (https://www.phproundtable.com/episode/f8-2015-facebook-developer-conferenceand-the-new-php-sdk).
Facebook PHP SDK Complete Guide

Installing the Facebook PHP SDK
Facebook PHP SDK Requirements
Installing the PHP Facebook SDK
Composer Installation
Manual Installation
Using the Facebook PHP SDK

Initializing the PHP Facebook SDK
Authentication & Authorization
Checking If A User Is Logged In
Getting Access Tokens
Access Tokens from Facebook Login (manual redirect)
Access Tokens from App Canvas/Page Tabs
Access Tokens from the JavaScript SDK
Getting a Long-Lived (Extended) Access Token
Application Permissions
Making Requests to the Graph API
Handling Exceptions
Facebook PHP SDK Examples
https://benmarshall.me/facebookphpsdk/
1/26
1/12/2015
One-Click Registration & Login

Log a User Out
Retrieve Users Profile Information
Get Users Profile Picture
Publish to Users Timeline
Retrieve Users Timeline
Upload a File
Upload a Photo
Upload a Video
Download Demo Files (Facebook PHP SDK v4) (https://github.com/bmarshall511/demos/tree/master/facebook-sdk-php-v4)
Facebook PHP SDK Requirements

Version 5 of the SDK runs on PHP 5.4 or greater with the mbstring extension
(http://php.net/manual/en/mbstring.installation.php) installed.
Facebook Application Prerequisite

Youll need to create an app in Facebook (http://developers.facebook.com/apps) in order to use the Facebook
PHP SDK. Once created, youll be provided with an App ID and App Secret. For more information on creating an
app, see Facebooks Creating App Details (https://developers.facebook.com/docs/games/appcenter/tutorial)
tutorial.
IMPORTANT: Dont forget to set the AppDomains when creating an app to where your code is hosted.
PRO TIP: During development, its a good idea to create a Test App
(https://developers.facebook.com/docs/apps/test-apps/). This is especially useful when working on a
local environment. Test Apps have their own App ID, App Secret and settings. This allows you to set App
Domains to your local environment without affecting production.
Installing the PHP Facebook SDK

Composer Installation
I recommended installing the Facebook PHP SDK with Composer (https://getcomposer.org/). Start by creating a
file named composer.json and place it in the docroot of your web app. Add the following lines to it:
"require":{
2/26
1/12/2015
2
3
4
5
"require":{
"facebook/phpsdkv4":"~5.0@dev"
}
}
Versioning Note: As of writing, v5 is still in development so you need to use the @dev minimum-stability
flag. In addition, the Facebook PHP SDK v4 did not follow Semantic Versioning (http://semver.org/)
(SemVer). The version schema for the SDK in v4 was 4.MAJOR.MINOR|PATCH . Thats why you would have to
use 3 version numbers with the ~ operator like ~4.0.0 . But starting with v5, the SDK follows SemVer so
we just use 2 version numbers: ~5.0 .
In Terminal from the projects docroot (same directory we placed the composer.json file), run:
composerupdate
This will download the Facebook PHP SDK v5.
1
2
3
4
5
6
7
8
9
$composerupdate
Loadingcomposerrepositorieswithpackageinformation
Updatingdependencies(includingrequiredev)
Installingfacebook/phpsdkv4(devmastercde1d8b)
Cloningcde1d8b9f32fc375a8748838eaac1b6d4f48fa5e
facebook/phpsdkv4suggestsinstallingguzzlehttp/guzzle(AllowsforimplementationoftheGuzzleHTT
Writinglockfile
Generatingautoloadfiles
Facebook PHP SDK v4: Composer Installation
Manual Installation
You dont use Composer? You should! But if youre needing a quick-and-dirty install, download the zip from
GitHub (https://github.com/facebook/facebook-php-sdk-v4/archive/master.zip) and extract the files on your
computer somewhere.
Move the folder located at src/Facebook to the location in your web app where you store 3rd-party vendor files.
You can also rename the folder to facebookphpsdkv5 or something.
Initializing the PHP Facebook SDK

Now that we have the dependencies downloaded, were going to initialize the Facebook PHP SDK. Create a file in
your web app docroot and name it app.php . If you used Composer to install the Facebook PHP SDK, include the
Composer autoloader (https://getcomposer.org/doc/01-basic-usage.md#autoloading):
1
2
3
4
5
6
<?php
//Passsessiondataover.
session_start();
//Includetherequireddependencies.
require_once('vendor/autoload.php');
3/26
1/12/2015
If you manually installed the SDK and assuming you moved and renamed the src/Facebook folder to
/my/app/third_party/facebookphpsdkv5 , in your web frameworks bootstrap scripts or at the top of your PHP
script, you need to include the autoloader.
1
2
3
4
5
//Passsessiondataover.
session_start();
//Includetherequireddependencies.
require(__DIR__.'/third_party/facebookphpsdkv5/autoload.php');
Important: Dont forget to pass the server session data over if you havent already. This keeps the users
information stored so the permissions persist as the user navigates your app.
To initialize the SDK, we need to pass the app_id , app_secret and default_graph_version .
1
2
3
4
5
6
//InitializetheFacebookPHPSDKv5.
$fb=newFacebook\Facebook([
'app_id'=>'{appid}',
'app_secret'=>'{appsecret}',
'default_graph_version'=>'v2.3',
]);
Youll notice that v5 is namespaced (http://php.net/manual/en/language.namespaces.php) under the

Facebook\ namespace.
At first glance you might think v5 also has one big base class that does all the things. In reality, v5 consists of
many, many different classes and the Facebook\Facebook just ties them all together.
Be sure to change the {appid} and {appsecret} to your Facebook credentials provided when you created the
app.
Facebook PHP SDK v4: Initializing the PHP Facebook SDK
Authentication & Authorization

Checking If A User Is Logged In
If a signed request can be detected, decoded, validated and it contains a user_id in the payload, then the user
has previously authenticated the app and can be considered logged in. You do this with helpers.
1
2
3
4
5
6
7
8
9
#FacebookPHPSDKv5:CheckLoginStatusExample
//Chooseyourappcontexthelper
$helper=$fb>getCanvasHelper();
//$helper=$fb>getPageTabHelper();
//$helper=$fb>getJavaScriptHelper();
//Grabthesignedrequestentity
$sr=$helper>getSignedRequest();
4/26
1/12/2015
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
$sr=$helper>getSignedRequest();
//GettheuserIDifsignedrequestexists
$user=$sr?$sr>getUserId():null;
if($user){
try{
//Gettheaccesstoken
$accessToken=$helper>getAccessToken();
}catch(Facebook\Exceptions\FacebookSDKException$e){
//TherewasanerrorcommunicatingwithGraph
echo$e>getMessage();
exit;
}
}
Getting Access Tokens

Access Tokens from Facebook Login (manual redirect)
You can implement Facebook Login (OAuth 2.0) with the PHP SDK by using the FacebookRedirectLoginHelper
(https://developers.facebook.com/docs/php/FacebookRedirectLoginHelper). An instance of this helper can be
obtained from the Facebook super service by using the getRedirectLoginHelper() method.
1
2
3
$fb=newFacebook\Facebook([/*...*/]);
$helper=$fb>getRedirectLoginHelper();
Facebook PHP SDK v4: Create instance of FacebookRedirectLoginHelper
Once you get an instance of the FacebookRedirectLoginHelper , you can use it to generate an authorization URL to
start an OAuth 2.0 flow. You pass to this method, the redirect URL (where the user is redirected to after approving
or denying the app authorization request) and an array of permissions you want to ask them for.
1
2
3
4
5
6
7
$permissions=['email','user_posts'];//optional
$callback='http://example.com/app.php(http://example.com/app.php)';
$loginUrl=$helper>getLoginUrl($callback,$permissions);
echo'<ahref="'.$loginUrl.'">LoginwithFacebook!</a>';
Now you can grab an instance of the FacebookRedirectLoginHelper again and call the getAccessToken() method
once the user has clicked on the login link.
This one-liner is fine if all goes well, but there are a number of possible scenarios our callback script should
account for.
1. If all goes well, $accessToken will be an instance of the AccessToken entity. (See The AccessToken Entity
section below.)
2. If there was a problem communicating with the Graph API, the getAccessToken() method will throw a
FacebookSDKException , so youll want to wrap that bad boy with a try/catch to catch the exception and
display a proper error message to the user.

5/26
1/12/2015
3. If the user denied the request, $accessToken will be null . What this really means is that the SDK could not
find an OAuth code in the GET params. Keep reading.
4. If there is no code param, there should be a number of error_* params that describe why theres no code.
The error params can be accessed using the following methods: getError() , getErrorCode() ,
getErrorReason() , and getErrorDescription() . We can assume that if getError() returns null , then all
the other error getter methods will also return null .

5. In the event that both getAccessToken() and getError() methods return null , then whoever is hitting your
callback endpoint aint coming from Facebook. In this situation I generally return a 400BadRequest HTTP
response. Its also probably a good idea to log this suspicious request.
If we update our callback script to account for all these scenarios, we get a lot more bullet-proof code.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
try{
exit;
}
if(isset($accessToken)){
//Userauthenticatedyourapp!
//Savetheaccesstokentoasessionandredirect
$_SESSION['facebook_access_token']=(string)$accessToken;
//Logthemintoyourwebframeworkhere...
echo'Successfullyloggedin!';
exit;
}elseif($helper>getError()){
//Theuserdeniedtherequest
//Youcouldlogthisdata...
var_dump($helper>getError());
var_dump($helper>getErrorCode());
var_dump($helper>getErrorReason());
var_dump($helper>getErrorDescription());
//Youcoulddisplayamessagetotheuser
//beingalllike,"What?Youdon'tlikeme?"
exit;
}
//Ifthey'vegottenthisfar,theyshouldn'tbehere
http_response_code(400);
exit;
This will output a link users can click on to login through Facebook. When clicked, the use will be redirect to
Facebook to log in if not already. Once logged it, users will be directed back to our redirect URL with an
appended code parameter that well use to retrieve and store the access token. If all worked, you should see
Successfully logged in!
Facebook PHP SDK v4: Access Tokens from Facebook Login (manual redirect)
Access Tokens from App Canvas/Page Tabs

When you have an app that runs in app canvas or a Page tab, an access token can be obtained from the signed
request that is POST ed to your app but this will only ever be true if the user has already authorized your app. If
the user has not authorized your app yet, youll need to log them in using the OAuth 2.0 login flow as described in
the section above or by using the JavaScript SDK.
If an access token exists in the signed request, it can be obtained using the FacebookCanvasHelper . An instance of
this helper can be generated from the Facebook super service by using the getCanvasHelper() method.
6/26
1/12/2015
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
$helper=$fb>getCanvasHelper();
try{
//Ortherewasaproblemvalidatingthesignedrequest
exit;
}
if($accessToken){
}
Page tabs and canvas apps are virtually identical but there are a few important differences. One added feature of
a Page tab app is that the signed request will contain additional data about the parent page.
There is a FacebookPageTabHelper that helps you interface with the components available to your Page tab. The
page tab helper extends from the FacebookCanvasHelper so all the methods are adopted as well. And there are a
few additional methods you get when using the FacebookPageTabHelper .
1
2
3
4
5
6
7
8
9
10
11
12
13
14
$helper=$fb>getPageTabHelper();
//Returnsinfoabouttheparentpage
$pageData=$helper>getPageData();
//Abooleanofwhetherornotthe
//authenticateduserisanadmin
//oftheparentpage
$isAdmin=$helper>isAdmin();
//TheIDoftheparentpage
$pageId=$helper>getPageId();
Access Tokens from the JavaScript SDK

The JavaScript SDK (https://developers.facebook.com/docs/javascript) has a really great UI for Facebook Login.
It is a better user experience to use the JavaScript SDK to authenticate a user into your app than it is to use the
PHP SDKs OAuth 2.0 flow with the FacebookRedirectLoginHelper .
I know what youre thinking: Once I log a user in with the JavaScript SDK, how does my PHP script access the
access token?
By default the JavaScript SDK wont store any info about the user on your domain unless you explicitly tell it to. So
in your FB.init() method (https://developers.facebook.com/docs/javascript/reference/FB.init/v2.3), youll
need to enable the cookie option with {cookie:true} . This tells the JavaScript SDK to set a cookie on your
domain that contains a signed request with information about the authenticated user.
1
2
3
4
5
FB.init({
appId:'{appid}',
cookie:true,
version:'v2.3'
});
If an access token exists in the signed request that was set by the JavaScript SDK, it can be obtained using the
FacebookJavaScriptHelper . An instance of this helper can be generated from the Facebook super service by using
the getJavaScriptHelper() method.

7/26
1/12/2015
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
$helper=$fb>getJavaScriptHelper();
try{
//Ortherewasaproblemvalidatingthesignedrequest
exit;
}
if($accessToken){
}
About Access Tokens

Access tokens are represented with an AccessToken entity. There are two ways to get the access token as a
plain-old string.
1
2
3
//Thesestatementsareequivalent
echo(string)$accessToken;
echo$accessToken>getValue();
Having AccessToken entities gives us some more power when handling access tokens. For example, you can do a
strict check to ensure that you definitely have an access token.
1
2
3
if($accessTokeninstanceofFacebook\Authentication\AccessToken){
//Loggedin.
}
You can also typehint function & method arguments that take an access token.
1
2
3
function(Facebook\Authentication\AccessToken$token){
//...
}
There are also a number of handy methods on the AccessToken entity.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
//ReturnsexpirationasaDateTimeentity
$expiresAt=$accessToken>getExpiresAt();
//Returnsboolean
$expired=$accessToken>isExpired();
//Returnsboolean
$isLong=$accessToken>isLongLived();
//Returnsboolean
$isAppToken=$accessToken>isAppAccessToken();
//Returnstheappsecretproofasastring
//ThisisusedtosignrequeststotheGraphAPI
//AllrequestsmadeusingthePHPSDKare
//signedautomaticallyforyou
$proof=$accessToken>getAppSecretProof('{appsecret}');
Getting a Long-Lived (Extended) Access Token
8/26
1/12/2015
You can exchange a short-lived access token for a long-lived access token by generating an instance of the
OAuth2Client() by using the getOAuth2Client() method on the Facebook super service.
1
2
3
4
5
6
7
8
9
10
$cilent=$fb>getOAuth2Client();
try{
//Returnsalonglivedaccesstoken
$accessToken=$cilent>getLongLivedAccessToken('{shortlivedtoken}');
exit;
}
The OAuth2Client has a number of cool features like a debugToken() method that returns an
AccessTokenMetadata entity with information about the access token to be used to validate against or debug.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
try{
$metaData=$cilent>debugToken('{accesstoken}');
exit;
}
var_dump($metaData>getAppId());
var_dump($metaData>getApplication());
var_dump($metaData>isError());
var_dump($metaData>getIssuedAt());
//TheseallthrowaFacebookSDKException
$metaData>validateAppId('{appid}');
$metaData>validateUserId('{userid}');
$metaData>validateExpiration();
Application Permissions
Its important that you think about what permissions youll need for your site before your users start using it. If you
ever need to update them, users will have to re-authorize the app. Once you have a list of permissions, pass them
to the getLoginURL method as an array:
1
2
3
4
5
6
7
8
9
//Requestedpermissionsoptional
$permissions=array(
'email',
'user_location',
'user_birthday'
);
//GetloginURL
$loginUrl=$helper>getLoginUrl($callback,$permissions);
Facebook PHP SDK v4: Application Permissions
If no permissions are provided, itll use Facebooks default public_profile permission. Heres a list of some
common permissions:
User
permission
Description
Gives access to a subset of a persons public profile:
9/26
1/12/2015
id
name
first_name
public_profile
last_name
link
gender
locale
age_range
email
Provides access to the users primary email address in the email property on the user
object.
user_location
Provides access to the users current city as the location property.
user_birthday
Provides access to the birthday.
See the full list of available permissions (https://developers.facebook.com/docs/facebooklogin/permissions/v2.0).
Making Requests to the Graph API

Once weve successfully logged in, we can begin making calls to the Graph API. The Graph API only supports the
GET , POST and DELETE HTTP verbs. In v5, each of these verbs get their own corresponding method.
1
2
3
4
5
6
7
8
//GETrequest.
$res=$fb>get('/me','{accesstoken}');
//POSTrequest.
$res=$fb>post('/me/feed',$data,'{accesstoken}');
//DELETErequest.
$res=$fb>delete('/123',$data,'{accesstoken}');
If you dont want to have to send in '{accesstoken}' with every method call in v5, you can use the
setDefaultAccessToken() method.
1
2
3
4
5
6
$fb>setDefaultAccessToken('{accesstoken}');
#Thesewillfallbacktothedefaultaccesstoken
$res=$fb>get('/me');
$res=$fb>post('/me/feed',$data);
$res=$fb>delete('/123',$data);
The responses from the get() , post() & delete() methods return a FacebookResponse entity which is an object
that represents an HTTP response from the Graph API.
If all you want is a plain-old PHP array, you call the getDecodedBody() method on the FacebookResponse entity.
1
2
3
//Responseexample.
var_dump($res>getDecodedBody());
10/26
1/12/2015
4
5
6
var_dump($res>getDecodedBody());
//array(10){...
v5 can return the response data as a collection which can be really handy for performing actions on the response
data.
I wont get into too much detail with this, but the collections come in the form of GraphObjects and they can be
obtained from the FacebookResponse entity using the getGraphObject() method.
1
2
3
4
5
6
7
8
9
10
11
12
//Responseexample.
$node=$res>getGraphObject();
var_dump($node>getProperty('id'));
//string(3)"123"
//Functionalstyle!
$node>map(function($value,$key){
//...
});
Handling Exceptions
Sometimes the Graph API will return an error response. Sad face. In v5 a FacebookSDKException will be thrown if
something goes wrong.
1
2
3
4
5
6
try{
$res=$fb>get('/123');
exit;
}
There are more than just the base FacebookSDKException in v5 but I wont get into too much detail on the other
types of exceptions. But know that the other exceptions extend from FacebookSDKException so you can be
assured that whenever you catch FacebookSDKException , youre catching any of the extended exceptions as well.
The FacebookSDKException is not limited to error responses from the Graph API. There are other instances when a
base FacebookSDKException might be thrown in v5. Some examples include a signed request fails to validate, a file
you want to upload cannot be found and so on.
Facebook PHP SDK v4: Making Requests to the Graph API

Once you have a session, youll have access to the all-powerful API. You can use this API to retrieve users
information, implement one-click registrations, logins, publish to profiles and more.
Check out the examples below to get the Facebook SDK PHP library (v5.x)
(https://developers.facebook.com/docs/reference/php/4.0.0) integrated quickly.
11/26
1/12/2015

Heres a basic example of how to use the Facebook PHP SDK v5 to enable one-click registrations and logins:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
<?php
#FacebookPHPSDKv5:OneClickRegistration&LoginExample
//Passsessiondatatoscript(onlyifnotalreadyincludedinyourapp).
session_start();
//IncludetherequiredComposerdependencies.
//InitializetheFacebookPHPSDKv5.
$fb=newFacebook\Facebook([
'app_id'=>'{appid}',
'app_secret'=>'{appsecret}',
'default_graph_version'=>'v2.3',
]);
//Checkiftheuserisloggedin.
try{
exit;
}
if(isset($accessToken)){
//Userauthenticatedyourapp!
//Savetheaccesstokentoasessionandredirect
$_SESSION['facebook_access_token']=(string)$accessToken;
//Registerorlogtheuserin...
exit;
}
elseif($helper>getError()){
//Theuserdeniedtherequest
//Youcouldlogthisdata...
var_dump($helper>getError());
var_dump($helper>getErrorCode());
var_dump($helper>getErrorReason());
var_dump($helper>getErrorDescription());
//Youcoulddisplayamessagetotheuser
//beingalllike,"What?Youdon'tlikeme?"
exit;
}
//Ifthey'vegottenthisfar,theyshouldn'tbehere
http_response_code(400);
exit;
Facebook PHP SDK v4: One-Click Registration & Login
Log a User Out

Its usually not a common practice to make use of the log out feature within the PHP SDK as this will log a user out
of Facebook completely, not just your app. So unless youve got a specific edge case where you need to do this,
its not recommended that you use it.
That said, you can log a user out of Facebook in v5 using the getLogoutUrl() method on the
FacebookRedirectLoginHelper .
$fb=newFacebook\Facebook([/**/]);
12/26
1/12/2015
1
2
3
4
5
6
$fb=newFacebook\Facebook([/**/]);
$logoutUrl=$helper>getLogoutUrl('{accesstoken}','http://example.com(http://example.com)
echo'<ahref="'.$logoutUrl.'">LogoutofFacebook!</a>';
Where http://example.com is the URL the user should be redirected to after logging out.
Retrieve Users Profile Information

1
2
3
4
5
6
7
8
9
<?php
#FacebookPHPSDKv5:RetrieveUser'sProfileInformation
$user=$res>getGraphObject();
echo$user>getProperty('id');
//123
Facebook PHP SDK v4: Retrieve Users Profile Information
Note: Fields that arent set to public must be be requested with an access token with the relevant
Extended Profile permissions.
For more information and a full list of possible fields returned, see
https://developers.facebook.com/docs/graph-api/reference/v2.0/user
(https://developers.facebook.com/docs/graph-api/reference/v2.0/user).
Get Users Profile Picture

1
2
3
4
5
6
7
8
<?php
#FacebookPHPSDKv5:GetUser'sProfilePicture
$res=$fb>get('/me/picture?type=large&redirect=false');
$picture=$res>getGraphObject();
var_dump($picture);
Facebook PHP SDK v4: Get Users Profile Picture
You can use a list of modifiers to specify the type (e.g. square, small, normal, large), size and whether to send as a
JSON array or output as an image. See a list of the available modifiers below:
Modifiers
Name
Description
Type
The picture edge is a special case, as when requested, it

will by default return the picture itself and not a JSON
redirect
response. To return a JSON response, you need to set
bool
redirect=false as a request attribute. This is how to return
the fields below.

13/26
1/12/2015
the fields below.
type
You use this to get a pre-specified size of picture.
enum{square,small,normal,large}
height
Restrict the picture height to this size in pixels.
int
Restrict the picture width to this size in pixels. When height

width
and width are both used, the image will be scaled as close
int
to the dimensions as possible and then cropped down.
For more information and a full list of possible fields returned, see
https://developers.facebook.com/docs/graph-api/reference/v2.3/user/picture
(https://developers.facebook.com/docs/graph-api/reference/v2.3/user/picture)
Publish to Users Timeline

A user access token with publish_actions permission can be used to publish new posts.
1
2
3
4
5
6
7
8
9
10
<?php
#FacebookPHPSDKv5:PublishtoUser'sTimeline
$res=$fb>post('/me/feed',array(
'message'=>'Ilovearticlesonbenmarshall.me!'
));
$post=$res>getGraphObject();
var_dump($post);
Facebook PHP SDK v4: Publish to Users Timeline
For more information and a full list of additional parameters, see https://developers.facebook.com/docs/graphapi/reference/v2.3/user/feed (https://developers.facebook.com/docs/graph-api/reference/v2.3/user/feed)
Retrieve Users Timeline

A user access token with read_stream permission is required and only posts whose authors have also granted
read_stream permission to the app will be shown.
1
2
3
4
5
6
7
8
<?php
#FacebookPHPSDKv5:RetrieveUser'sTimeline
$res=$fb>get('/me/feed');
$feed=$res>getGraphObject();
var_dump($feed);
Facebook PHP SDK v4: Retrieve Users Timeline
There are other edges which provide filtered versions of this edge:
/{userid}/links shows only the links that were published by this person.
/{userid}/posts shows only the posts that were published by this person.
/{userid}/statuses shows only the status update posts that were published by this person.
/{userid}/tagged shows only the posts that this person was tagged in.
14/26
1/12/2015
All of these derivative edges share the exact same reading structure, however /feed should be used for all
publishing purposes.
For more information, see https://developers.facebook.com/docs/graph-api/reference/v2.3/user/feed
(https://developers.facebook.com/docs/graph-api/reference/v2.3/user/feed).
Upload a File
1
2
3
4
5
6
7
8
$data=[
'source'=>$fb>fileToUpload('/path/to/photo.jpg'),
'message'=>'Myfile!',
];
$response=$fb>post('/me/photos',$data,'{accesstoken}');
Upload a Video
If youre uploading a video, that requires using the videoToUpload() method.
1
2
3
4
5
6
7
8
9
$data=[
'source'=>$fb>videoToUpload('/path/to/video.mp4'),
'title'=>'Myvideo',
'description'=>'Myamazingvideo!',
];
$response=$fb>post('/me/videos',$data,'{accesstoken}');
For more information, see https://developers.facebook.com/docs/graph-api/reference/video

(https://developers.facebook.com/docs/graph-api/reference/video).
Additional Resources
For more information on the Graph API, see https://developers.facebook.com/docs/graph-api/reference/v2.0/
(https://developers.facebook.com/docs/graph-api/reference/v2.0/). This has a full list of root nodes of the
Graph API, with links to the reference docs for each.
RELATED: Facebook SDK PHP v4 & CodeIgniter (http://www.benmarshall.me/facebook-sdk-php-v4codeigniter/)
If you have any questions or problems, post your comments below. Ill try to keep this post updated with the
latest information and add more API calls later on. Have fun coding!
(https://benmarshall.me/facebook-php-sdk/?share=google-plus-1&nb=1)
(https://benmarshall.me/facebook-php-sdk/?share=facebook&nb=1)6
(https://benmarshall.me/facebook-php-sdk/?share=reddit&nb=1)
(https://benmarshall.me/facebook-php-sdk/?share=twitter&nb=1)
(https://benmarshall.me/facebook-php-sdk/?share=linkedin&nb=1)
More
Related
15/26
1/12/2015
Facebook SDK PHP v4 & CodeIgniter
(https://benmarshall.me/facebook-sdkphp-v4-codeigniter/)
June 5, 2014
In "Development"
Google Analytics API Tutorial with PHP for

Dummies
(https://benmarshall.me/googleanalytics-api-tutorial/)
January 29, 2015
In "Development"
Mozscape API PHP Class

(https://benmarshall.me/mozscape-apiphp-class/)
April 6, 2013
In "Development"
Tags: APIs (https://benmarshall.me/tag/apis/), Facebook (https://benmarshall.me/tag/facebook/), Facebook API

(https://benmarshall.me/tag/facebook-api/), Facebook SDK PHP (https://benmarshall.me/tag/facebook-sdk-php/),
Facebook SDK PHP v4 (https://benmarshall.me/tag/facebook-sdk-php-v4/), Facebook SDK PHP v5
(https://benmarshall.me/tag/facebook-sdk-php-v5/)
a complete guide!)
(https://plus.google.com/share?url=https://benmarshall.me/facebook-php-sdk/)
et%3D%22_blank%22%3EFacebook+SDK+PHP+library+%28v4%29%3C%2Fa%3E+with+easy+to+follow+examples+to+get+your+site+integrated+quickly.)
About This Author

Red Bull Addict, Self-Proclaimed Grill Master, Entrepreneur, Workaholic, Front End Engineer, SEO/SM Strategist, Web
Developer, Blogger
41 Comments
You can post comments in this post.
[] Facebook SDK PHP v4 a complete guide! by Ben Marshall []

Facebook SDK PHP V4 & CodeIgniter Working Together! (Http://Www.Benmarshall.Me/Facebook-Sdk-Php-V4Codeigniter/)
1 year ago
Reply (https://benmarshall.me/facebook-php-sdk/?replytocom=317#respond)
Using version 4.0.9. Above example dont works to me.

Niko Jojo (Https://Www.Facebook.Com/Fb.Nikojojo)
1 year ago
Reply (https://benmarshall.me/facebook-php-sdk/?
replytocom=419#respond)
Can you be more specific? Just tested the code with the latest and provided downloadable demo files for an
example. Try those out and see if it works for you.
16/26
1/12/2015
Ben Marshall (Http://Www.Benmarshall.Me)
1 year ago
Reply (https://benmarshall.me/facebook-
php-sdk/?replytocom=1634#respond)
Hi, there your code where you get token:

https://gist.github.com/bmarshall511/cbe0a6faab9fc0505638#file-1457-1-php-L66
(https://gist.github.com/bmarshall511/cbe0a6faab9fc0505638#file-1457-1-php-L66)
I tried the same way, but there are token=app_id|secret_id, so this is not that secret token
that generate facebook to create FacebookSession and use their API, and i get exception:
An active access token must be used to query information about the current user.
I wanna store access token, but cant understand how to get it.
Meteor (Http://Facebook.Com)
1 year ago
Reply
(https://benmarshall.me/facebook-php-sdk/?replytocom=1641#respond)
Problem solved. I was wrong with trying to get token without facebook
response
Meteor (Http://Facebook.Com)
1 year ago
Reply
there is problem with session, after 2 hours it gets destroyed , and i dont know how to renew it, it will then will throw error about
authorization shit all the time, refresh wont help, only deleting cookies helped
btw i tried the example with codeigniter, not without
Gaucan (Http://Gravatar.Com/Gaucan)
1 year ago
Session are handled by the server. If you want the session to last longer, see
http://stackoverflow.com/questions/520237/how-do-i-expire-a-php-session-after-30-minutes
(http://stackoverflow.com/questions/520237/how-do-i-expire-a-php-session-after-30-minutes).
1 year ago
17/26
1/12/2015
Thanks,your code is working fine.

Rohini
1 year ago
PHP message: PHP Fatal error: Cannot use Facebook\FacebookCurl as FacebookCurl because the name is already in use
RahulG (Http://Gravatar.Com/Papa10)
1 year ago
Looks like youre redefining a namespace. Download the demo files to see an example.
1 year ago
can you tell me how to configure in yii framework

Rahulg FDEV
1 year ago
This tutorial has really helped me a lot as I get started with the Facebook SDK for PHP. Many thanks for posting it!
I was wondering what is the purpose of the code on line 76? At this point in your code it seems that you have already verified a
session. It doesnt seem necessary to call FacebookSession() again or am I missing something?
Thanks again for a great tutorial
Matt
1 year ago
18/26
1/12/2015
That code was a little outdated. Just updated the post and example code with the latest. Should make more
sense now.
1 year ago
i follow ur code but it didnt generates the access token can u tell me where did i made mistake
Nisha
1 year ago
Gonna need a little more info than that to help. Can you provide me the code or error youre seeing?
10 months ago
Reply
Can you please explain , where do we have to put (starting with session_start() ) those coding in our hosting file. do we have to
add with our index.php?
Keeran (Http://Www.Findaproperty.Lk)
1 year ago
It just depends on the app youre building. The important part is it needs to included before any output is
sent.
1 year ago
19/26
1/12/2015
Thanks for the code, it works perfectly!

But Im stuck with this: I try to change the request url, it returns data nicely in the Facebook Graph API Explorer Tool, but in my
site on localhost (appId and appSecret are correct) just returns a null array! Do you have any idea?
Thinh Nguyen (Http://Thinhnc.Com)
1 year ago
Make sure you set the apps App Domains setting to the domain youll be using the app on (e.g.
localhost.dev). Otherwise, you wont have access to the API.
its a good idea to create a Test App (https://developers.facebook.com/docs/apps/test-apps/).
This is especially useful when working on a local environment. Test Apps have their own App ID,
App Secret and settings. This allows you to set the App Domains setting to your local environment
URL without affecting the production version of your app.
1 year ago
I tried your code, but every time I refresh the canvas page it asks me to login again. If older version of SDK, the user needed to
add the app just once. Do you have any fix for that?
Tony (Http://Google.Com)
1 year ago
If your app is on Facebook Canvas, use the getSession() method on FacebookCanvasLoginHelper

(https://developers.facebook.com/docs/php/FacebookCanvasLoginHelper) to get a FacebookSession for
the user.
1 year ago
20/26
1/12/2015
Really awesome content, it helped me allot, thanks!

Hirdesh
1 year ago
Hi,
I copied your code from demo, and created fb applicaiton and security token and app id were taken, But i m getting this error
Parse error: syntax error, unexpected T_STRING, expecting T_CONSTANT_ENCAPSED_STRING or ( in
C:wampwwwfacebookindex.php on line 23
Nirksa
1 year ago
Sounds like youve got some malformed code. Take a look at the example and compare to what youve got.
10 months ago
Reply
Im new at developing Facebook. Im trying to use your example on my server but it back with Parse error for use
FacebookFacebookRequest; why?
Tuareg
1 year ago
Can I see your code?

1 year ago
21/26
1/12/2015
thanks buddy, this work for me.

but, how to get token like on https://developers.facebook.com/docs/facebook-login/access-tokens/
(https://developers.facebook.com/docs/facebook-login/access-tokens/) ???
i try but have many error.
actually about, Long-Lived Tokens.
thanks
Miler
1 year ago
Ive updated the post to provide more details that should answer your question. Let me know if you run into
any problems.
10 months ago
Reply
Hello, i am a bit confused about some things if you could explain me i would appreciated a lot.
I am trying to create a facebook app with both platforms of Facebook Canvas and Page tab.
I am currently working at Page tab. I want to use the php sdk to create the Auth dialog.
Lets say my file for the facebook session and stuff is hosted at demo.myhost.gr/app1/fbmain.php
So my App Domains is demo.myhost.gr
If i have understood correctly i am supposed to use the FacebookRedirectLoginHelper($redirect_uri)
and $redirect_uri must be https://demo.myhost.gr/app1/fbmain.php (https://demo.myhost.gr/app1/fbmain.php)
This means that when the user will click at $loginUrl he will see the auth dialog and then he will leave Facebook and go at
$redirect_uri.
So i must save the session and have a redirection back to my Facebook Page and app.
Am i correct till here?
Also the Log out (' . $logoutURL . ') it gives me a white page inside the Faceboook Tab, with no auth dialog.
Dimitris Sarmis
1 year ago
Yes, thats basically it. Ive updated the post with more details on the whole process which should help. Let
me know if you still run into troubles.
10 months ago
Reply
22/26
1/12/2015
This is GREAT post man ^^. Saved my day. However is there any way to get cleaner url after login. Mine is little messy with
code and state parameter.
Boshigt
1 year ago
for developing facebook can i using localhost for testing?

Dany
12 months ago
Yup.
12 months ago
Reply
oke thank you, but when i upload to hosting and i try access i get error liki this
Fatal error: Cannot access protected property
Facebook\FacebookSDKException::$message in
/home/u648397598/public_html/facebook/index.php on line 62
can you fix this problem?
Dany (Http://Wijayantodeni.Com)
11 months ago
Reply
I used this article to get me going and everything is working like Id expect. Was wondering if anyone here knows how to get it
to work with WordPress?
Everything works like I want except I lose the session when I navigate the site after I login.
I tried to use the init action hook but get this error from the SDK Session not active, could not load state.
23/26
1/12/2015
Any help/direction would be sweet! and thanks for the article.

Thanks,
Matt
Matt
10 months ago
Take a look at https://wordpress.org/support/topic/using-session-in-wordpress

(https://wordpress.org/support/topic/using-session-in-wordpress) Should help with the session issue in
WordPress.
10 months ago
Reply
Ive followed your steps, looked at the demo files, etc but I keep running into a problem where my session isnt ever set, so all
I get is the Login URL every time. Could this have something to do with the new changes Facebook is making ?
I feel like I had this exact problem before the last time I set up FB integration last year, and no one has examples that work like
theyre supposed to. Just to be clear, the redirect_uri should take me back this same file location, right?
Jason Seabaugh (Http://Www.Jasonseabaugh.Com)
8 months ago
Reply (https://benmarshall.me/facebook-php-
sdk/?replytocom=1787#respond)
Ive updated the tutorial with the new v5 (4.1) features. Also provided some more example that should help
you out. Let me know if you still run into problems.
6 months ago
Reply
Awesome content.
Joel (Http://Www.Benmarshall.Me/)
7 months ago
24/26
1/12/2015
I am getting this error.

Does this require me to get permissions from facebook for each action mentioned in the Status and Review section of my app.
Fatal error: Uncaught exception Facebook\FacebookPermissionException with message (#200) The user hasnt authorized the
application to perform this action
Manik (Http://Www.Potentspace.Com)
7 months ago
Looks like the access token may be incorrect or your session data isnt getting passed over. Can I see the
code youre using?
6 months ago
Reply
Leave a Reply
Enteryourcommenthere...
Ben Marshall
Red Bull Addict | Self-Proclaimed Grill Master | Entrepreneur | Workaholic | Front End Engineer | SEO/SM Strategist | Web Developer |
Blogger
LATEST TWITTER FEED
The #Drupal (https://twitter.com/search?q=%23Drupal&src=hash) #TyntModule (https://twitter.com/search?

q=%23TyntModule&src=hash) has now been ported & released for #D8 (https://twitter.com/search?q=%23D8&src=hash)! via
@bmarshall0511 (https://twitter.com/bmarshall0511) #Drupal8 (https://twitter.com/search?q=%23Drupal8&src=hash) #drupaldev
(https://twitter.com/search?q=%23drupaldev&src=hash) #Celebr8D8 (https://twitter.com/search?q=%23Celebr8D8&src=hash)
https://t.co/HLbZYcnP8x (https://t.co/HLbZYcnP8x)
November 19, 2015
Need an array of user roles in your #Drupal8 (https://twitter.com/search?q=%23Drupal8&src=hash) site? Say hello to
user_role_names(). via @bmarshall0511 (https://twitter.com/bmarshall0511) #drupal (https://twitter.com/search?
q=%23drupal&src=hash) #d8 (https://twitter.com/search?q=%23d8&src=hash) https://t.co/UlKj2lAJxc (https://t.co/UlKj2lAJxc)
November 19, 2015
25/26
1/12/2015
2015. Ben Marshall (http://www.benmarshall.me). All rights reserved.
26/26

Facebook PHP SDK v5

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Facebook PHP SDK v5

Uploaded by

Copyright:

Available Formats

1/12/2015

Facebook PHP SDK v5.x (4.1) a complete guide!

May 30, 2014

Implement the Facebook SDK 5.x (4.1) for PHP (https://github.com/facebook/facebook-php-sdk-v4) to

Facebook PHP SDK Complete Guide

Using the Facebook PHP SDK

Facebook PHP SDK Examples

Facebook PHP SDK Examples

One-Click Registration & Login

Download Demo Files (Facebook PHP SDK v4) (https://github.com/bmarshall511/demos/tree/master/facebook-sdk-php-v4)

Facebook PHP SDK Requirements

Facebook Application Prerequisite

Installing the PHP Facebook SDK

This will download the Facebook PHP SDK v5.

Facebook PHP SDK v4: Composer Installation

Initializing the PHP Facebook SDK

script, you need to include the autoloader.

Youll notice that v5 is namespaced (http://php.net/manual/en/language.namespaces.php) under the

Facebook PHP SDK v4: Initializing the PHP Facebook SDK

Authentication & Authorization

Getting Access Tokens

Facebook PHP SDK v4: Create instance of FacebookRedirectLoginHelper

display a proper error message to the user.

the other error getter methods will also return null .

Successfully logged in!

Access Tokens from App Canvas/Page Tabs

Access Tokens from the JavaScript SDK

the getJavaScriptHelper() method.

About Access Tokens

There are also a number of handy methods on the AccessToken entity.

Getting a Long-Lived (Extended) Access Token

Facebook PHP SDK v4: Application Permissions

Gives access to a subset of a persons public profile:

Provides access to the users current city as the location property.

Provides access to the birthday.

See the full list of available permissions (https://developers.facebook.com/docs/facebooklogin/permissions/v2.0).

Making Requests to the Graph API

Facebook PHP SDK v4: Making Requests to the Graph API

Facebook PHP SDK Examples

One-Click Registration & Login

One-Click Registration & Login

Facebook PHP SDK v4: One-Click Registration & Login

Log a User Out

Retrieve Users Profile Information

Facebook PHP SDK v4: Retrieve Users Profile Information

Get Users Profile Picture

Facebook PHP SDK v4: Get Users Profile Picture

The picture edge is a special case, as when requested, it

response. To return a JSON response, you need to set

redirect=false as a request attribute. This is how to return

the fields below.

the fields below.

You use this to get a pre-specified size of picture.

Restrict the picture height to this size in pixels.

Restrict the picture width to this size in pixels. When height

to the dimensions as possible and then cropped down.

Publish to Users Timeline

Facebook PHP SDK v4: Publish to Users Timeline

Retrieve Users Timeline

Facebook PHP SDK v4: Retrieve Users Timeline

For more information, see https://developers.facebook.com/docs/graph-api/reference/video

Google Analytics API Tutorial with PHP for

Mozscape API PHP Class

Tags: APIs (https://benmarshall.me/tag/apis/), Facebook (https://benmarshall.me/tag/facebook/), Facebook API