Software Development

Slight screw-up by Facebook in move to https

#“Slight screw-up by Facebook in move to https”

As you probably know, Facebook are transitioning over to https for security reasons. You can opt-in now but it will be mandatory in the coming months. I've already written about the fact that every App developer will have to get an SSL cert but I discovered a bigger problem yesterday.

If you are running the old Facebook Connect code on your site (and based on my experience, that's a lot of sites), you are probably accessing this URL:

http://apps.new.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php

Facebook now re-directs that to:

https://apps.new.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php

But their security Cert is only valid for *.facebook.com not ..facebook.com so Firefox 4 and Chrome 12 are refusing to access it and therefore disabling Facebook Connect on your site.

Whilst everyone should move to the new Graph API, not everyone has the time/money/resources to get it done. Hopefully Facebook can fix this soon and give sites more time to transition to the newer code.

© 2001 - 2026 Mixed Laterality
Built with Hugo
Theme Stack designed by Jimmy