Finding Facebook Business manager account by ID? - facebook

Facebook Business Manager Account ID is known but the login credentials are unknown. Is there any way or online tool to find the email account behind the FB Business account by ID?
Purpose is to recover the account.
ID: 490403301730920

Related

Uber user account linking to Uber business account

We're developing a particular CRM web application and we need Uber integration. Our company has created a business account with Uber and on the kick-off meeting we had with the Uber representative, we were told that Uber users can have their accounts linked to our business account.
And here is my problem: I can't find any documentation on how do I initiate the account linking process from our web app.
Thanks in advance.

Unable to access Facebook developer account

A while ago I worked on social login integrations for my employer. To complete that task I created a Facebook developer account. Today I'm unable to access that developer account without uploading documents to prove I'm me. This occurs even though I have correct credentials and 2FA with my email.
How can I regain access to the Facebook developer account to continue maintaining our integrations? I don't have any Facebook accounts other than this one and I created the account without using real identifiers as I would like to protect my privacy. Is it no longer possible to have a developer account without verifying your identity?
There is an appeal form for your case on Facebook website, you can try it with your real account to regain the access. The link is on the bottom of this page https://developers.facebook.com/appeal/

Prevent duplicate username from federated logins

I have Cognito setup with login supported from multiple identity providers (Cognito User Pools, Facebook, and Google). In my User Pool configuration I have email used as username. The desired functionality is to have username be unique across all identity providers. i.e. if a user logs in with Facebook and their facebook email is "user#test.com" and then they login with Google and their google email is "user#test.com", either they should not be able to login or their federated identities should be merged.
This is user management for connected devices. I don't want a user to setup a few devices while logged into Facebook, then login with Google and not be able to see their devices from their Facebook account.
I know this gets complicated since you can create a Facebook account with just a phone number.
I know there is a pre-authentication trigger in Cognito User Pool's, but it doesn't seem to be triggering when I login with a federated identity. Is there a trigger than I can use that will fire no matter which identity provider I use (User Pool, Facebook, Google)?
Thanks,

Facebook OAuth login - ID or email

I'd like to offer our users a Facebook login option. But I'm not sure how to identify existing users (without a stored Facebook ID).
From the docs:
https://developers.facebook.com/docs/facebook-login/multiple-providers#addingfacebook
After a successful login using Facebook, you will have the person's
email address, Facebook ID, and access token. Your app should search
for an existing account that has been created with that same email
address. If one exists, you should merge the two accounts and add
the Facebook info to the existing account - as recommended above.
That doesn't sound like a secure approach to me. What would prevent someone from creating a new Facebook account with a fake email address that matches a user account in my app and then use my Facebook login option? (Obviously, this will not work if the user already owns a Facebook account)
Your concern...
That doesn't sound like a secure approach to me. What would prevent someone from creating a new Facebook account with a fake email address that matches a user account in my app and then use my Facebook login option? (Obviously, this will not work if the user already owns a Facebook account)
TL;DR
Facebook Registration process
Go to facebook.com/reg.
Enter the name you go by in everyday life.
Enter your email or mobile phone number.
So...
Facebook needs your email or phone number, that means there's no way someone can use another account's email or phone number to sign up again.
My advice to you is...
You have two or more authentication methods - 1 manual (email & pass) | the rest (social login).
You already have users, so when users login using OAuth and a matching email or phone number is found, you ask permission to link their Facebook account to your app or site account with a matching credential.
At this point you should authenticate the persons identity one last time, by having them enter the password for their account on your app or site.
Now you can safely assume this person is who they say they are and store their info in your DB.

Facebook API: is the email field guaranteed to be validated?

I'm implementing a Log In With Facebook button on my website, and will be using the email field for two purposes:
create a new account if I don't have this email in my user database
match an existing account if I have a user with this email address
Does Facebook guarantee that they verified the user owns this email address when they return the field in their API?
Otherwise, in the (unlikely) event that a user of my website does not have a Facebook account, someone could create a Facebook account with this email, without validating it, to log in to my website with their account.
They are supposed to be but Facebook has had issues in the past of unverified emails being allowed to pass through the API Is it possible to check if an email is confirmed on Facebook?.
If you implicitly allow Facebook accounts to link up via email, then the next time Facebook has an issue they can effectively take control of all your users accounts.
The secure way to link users up is to either:
Ask a normal user to link their facebook account by logging into it.
Ask a Facebook-user to login with your sites normal account.