You must provide an SSL certificate in the Dev App settings to avoid having your app disabled.
https://developers.facebook.com/roadmap/
Do I have to upload my certificates anywhere? Where?
You need to add your certificate to your web server.
For more information about installing certificates, visit this link: https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO16226
Find out what kind of web server you're using and follow the instructions. You may need to contact your web hosting administrator for help.
Once the certificate is installed on your web server, you need to enter the https url in the dev app settings, I believe it's called "Secure Canvas URL". That's all that facebook requires of you.
Related
I was wondering if it is possible to check if the MITM certificate is installed and if not then redirect the client to the mitm.it page.
I can't find anything in the documentation about this.
I am using a development environment http://localhost:3000 how can i install the SSL certificate in local?it doesn't make sense. How come Facebook force me to use https, does exist a sandbox or other way around?
thanks in advance
I have an azure web app. Now, I am trying to install shibboleth service provider for my web app.
I found a way to do this though this blog.
Is there any other way to set up shibboleth sp without installing a VM on azure?
I have searched a lot on web but all they show is to set up SSO in azure using Azure active directory as IdP.
Is there any way to configure my external Idp to web app in azure?
SSL is the first layer of defense for an SSO web application. Thus you must obtain an SSL certificate for your web site’s URL.
The biggest trick seems to be configuring Azure and Visual Studio to not get confused between the remote desktop certificate and the SSL certificate. The Azure instructions for configuring SSL you could refer to.
Here are the most important points as below:
1.You will need to have the certificate in a PFX file so it can be uploaded to Azure. This PFX file must contain the certificate’s private key! You will also need the certificate thumbprint.
2.Modify the cloud service’s service definition and service configuration files.
3.Upload the SSL certificate to your cloud service application.
4.Now the SSL-modified cloud service application needs to be uploaded to Azure.
5.Browse to your web site using HTTPS. Fingers crossed! It should work but HTTP should be rejected.
If you need to set up a test IdP, Microsoft has produced a series of videos on how to do this.
Of course there is the Shibboleth IdP documentation at shibboleth.net.
You should also have downloaded the Shibboleth SP 64-bit Windows/IIS 7 MSI file.
Get the latest version from the download site.
Now when you browse to your Azure web site you should be redirected to your IdP’s login page. Once you successfully log in you should be redirected back to your web app. There will now be session variables that contain authentication attributes such as IdP URN, user name, and so on.
For more details, you could refer to this blog.
We have to migrate a lot of email from an IMAP server to Gmail in Google Apps. Google Apps have a migration tool, but it works only with a server with a valid SSL certificate.
We wouldn't want to do a manual import... someone have a suggestion?
Try using GAMME. It should do SSL w/o a valid cert.
I'm trying to create an app on Facebook and facing some problems about security issues.
I want to know why I can access my app by its id: https://apps.facebook.com/371281253013594/
and I can't by its name: https://apps.facebook.com/nelsonapp/, when I use the name I get this error message:
"Secure browsing is not supported
This application does not yet support secure browsing (https)"
The domain where your application is hosted must be SSL certified (https) eg: https://my-domain.com/my-app. Else, your app can't be published in facebook.
Btw, in the App Settings you have to give this in the Secure Canvas URL too, eg:
Canvas Url: http://my-domain.com/my-app
Secure Canvas Url: https://my-domain.com/my-app
What did you wrote in these settings?