public async Task <string> SignInFacebook(FacebookSignInRequest request)
{
try
{
var inputToken = request.AccessToken;
var accessToken = $"{_settings.Value.FacebookSettings.AppID}|{_settings.Value.FacebookSettings.AppSecret}";
var result = await _facebookService.DebugToken(inputToken, accessToken);
// Now we are sure the token is valid for our app, however we must verify if the user from the request is the same as the user within the token.
if (result.data.is_valid == true && result.data.user_id == request.UserID)
{
// We should now fetch the user's claims and provide her/him with an Access Token.
return("OK");
}
else
{
throw new Exception("Token is not valid");
}
}
catch (Exception ex)
{
return($"ERROR: {ex.Message}");
}
}
