Facebook OAuthException: "user hasn't authorized the application to perform this action"

Using the Facebook PHP SDK, I’m getting the following error when I try to post a status update:

Fatal error: Uncaught OAuthException:
(#200) The user hasn’t authorized the
application to perform this action

These are the steps I’ve taken:

  1. Get code:

    https://graph.facebook.com/oauth/authorize?client_id=FB_APP_ID&redirect_uri=REDIRECT_URI
    
  2. Get access token:

    https://graph.facebook.com/oauth/access_token?client_id=FB_APP_ID&code=CODE&client_secret= FB_SECRET&redirect_uri=REDIRECT_URI
    
  3. Attempt the status update:

    require_once(facebook.php);
    $fb = new Facebook(array(
        'appId' => FB_APP_ID,
        'secret' => FB_SECRET
    ));
    $post = $fb->api('me/feed', 'POST', array(
        'access_token' => ACCESS_TOKEN, 
        'message' => 'hello world!'
    ));
    

I don’t see any settings in my application that would authorize the application to do this, but maybe I’m missing something. Any suggestions?

Here is Solutions:

We have many solutions to this problem, But we recommend you to use the first solution because it is tested & true solution that will 100% work for you.

Solution 1

Make sure you ask for extended publish_stream permission when you’re requesting code (added as the third parameter):

https://graph.facebook.com/oauth/authorize?client_id=' . FB_APP_ID . '&redirect_uri=' . REDIRECT_URI . '&scope=publish_stream'

Hope this helps.

Cheers!

Solution 2

I had the same problem and this post really helped me out http://facebook.stackoverflow.com/a/8502709/965536

The only difference with my problem was that I was using the PHP SDK but essentially it works the same. I used the api call

$permissions = $facebook->api('/me/permissions');

You can then run your checks

if(isset($permissions['data'][0]['publish_stream']) && $permissions['data'][0]['publish_stream'])

This works for me but someone may have a better answer. Also you should wrap your publish post stream in a try catch

Hope this helps.

Thanks

Solution 3

I put here some more information:

Mark’s replied above has lead me to the right direction. But it took me another 5 hours to figure out the solution.

  1. I’m using omniauth-facebook for ruby on rails.
  2. I need to set the scope for omniauth (Please refer to https://github.com/mkdynamic/omniauth-facebook)
  3. I also ready this post from “Lu Chen” to set the right scope request
    http://developers.facebook.com/blog/post/2012/04/25/streamlining-publish_stream-and-publish_actions-permissions/

So, here is the result for omniauth.rb:

provider :facebook, ENV['FACEBOOK_KEY'], ENV['FACEBOOK_SECRET'],
        :scope => 'email,user_birthday,publish_actions'

Solution 4

Have you taken the other steps required to connect the user with your app and get them to authorize your app to perform these actions? You need to register the users then call showPermissionDialog to let them log in and authorize your app. That’s what this error is telling you.

Note: Use and implement solution 1 because this method fully tested our system.
Thank you 🙂

All methods was sourced from stackoverflow.com or stackexchange.com, is licensed under cc by-sa 2.5, cc by-sa 3.0 and cc by-sa 4.0

Leave a Reply