OAuth providers

Facebook

Set up Facebook OAuth for profile data, Pages, and social integrations

Overview

Connect your users to Facebook for profile data, Page management, and social integrations via the Meta Graph API.

Property	Value
Provider ID	`facebook`
Category	Social
PKCE	Supported
Token refresh	Automatic
Redirect URI	Shown in Developer Portal

Step 1: Create a Facebook OAuth App

Go to the Meta for Developers portal

Navigate to developers.facebook.com/apps and sign in.

Create a new app

Click Create App and select the appropriate use case or app type, then fill in the details.

Configure OAuth redirect URIs

Under Use Cases, find Authentication and Account Creation, click Customize, then Go to Settings. Add the Alter callback URL from the Developer Portal to Valid OAuth Redirect URIs.

Get credentials

Go to Settings > Basic and copy the App ID (Client ID) and App Secret (Client Secret).

Step 2: Add to Alter Vault

Open the Developer Portal

Go to portal.alterauth.com and navigate to the application.

Add Facebook provider

Go to OAuth Providers > Add Provider > Facebook.

Enter credentials

Client ID: Paste your Facebook App ID
Client Secret: Paste your Facebook App Secret

Select scopes

Choose the scopes the application needs.

Save

Click Save. The provider is now active.

Available Scopes

Scope	Description
`public_profile`	Access to name, picture, and other public fields
`email`	Access to user’s email address
`pages_show_list`	List Pages the user manages
`pages_read_engagement`	Read Page content and engagement data
`pages_manage_posts`	Create and manage Page posts
`instagram_basic`	Read Instagram business account data
`business_management`	Manage business assets

Notes

Some permissions (e.g., pages_manage_posts) require App Review before use in production.
Facebook tokens expire after 60 days of inactivity. Alter Vault handles automatic long-lived token exchange.
See the Facebook Login documentation for more details.