tags:

views:

23

answers:

1
Q: 

problem with intergating facebook session in iphone with objective-c

How to handle seesion in facebook . when user logs into my appliaction i want to keep the user logged in always which means that every times the user will open the application, he will not need to make login again.

and when the user enter to my iphone applicaiton, the user should be shown as loggedin, and when i try to post to the user wall facebook tells me that the session is inavlid.

+1  A: 

Do what the browser does: hold onto the session cookie. When it is unavailable or expired, submit the user's credentials again. It is probably best to expire the session cookie whenever the app exits, and use saved credentials when you start the app again.

Also note that it is a security risk to not require a logon each time the app starts. If the phone is stolen, the thief can use it to access the user's Facebook account. At the very least, be nice and ask for the user's permission before caching their password, and warn them about the risks.

Marcelo Cantos  2010-07-14 08:41:23
+1 for the security risk part. But i have a question regarding saving username/password. Does it also not have a similar effect? How can we ensure it wont be use maliciously incase of theft.One thing which i can think of is,change the password but what can be done on the device locally? Do we have any better design?
Praveen S  2010-07-14 08:44:26
@Praveen: Certainly, the password should be encrypted. But this is not foolproof, since a determined hacker can access the password by debugging the running process on a jailbroken phone.
Marcelo Cantos  2010-07-14 08:51:16
@Marcelo : I got the point when username and password is stored on the device in encryped form. But a autologin feature will save the password on the form and is automatically filled. Will you say this is bad option towards user? I think its relative based on type of users. Lazy ones may prefer auto fillup of forms.When can we decide if we have to provide such a feature to a user?
Praveen S  2010-07-14 09:00:08
In IPhone, Facebook supports FBConnect and this job is done there already. You don't lose the password because the FBConnect will only save the cookies for you
vodkhang  2010-07-14 09:06:00
thank u so much
 2010-07-24 06:21:17

related questions

How do we get arround Apple's decission to skip sms templates for iPhone?
iPhone App Crashing - Error Question
Can I write native iPhone apps using Python
Does the Iphone 1/2 have a compass inside?
How do you beta test an iphone app?
Is it just the iPhone simulator that is restricted to intel only Mac's?
iPhone App Minus App Store?
Deleting messages from Exchange IMAP mailbox on iPhone
Is there a multiplatform framework for developing iPhone / Android applications?
How can I launch the Google Maps iPhone application from within my own native application?
Tips for a successful AppStore submission?
iPhone app that access the Core Location framework over web
Virtual Mac?
What's a good machine for iPhone development?
How can I develop for iPhone using a Windows development machine?
Recommended iPhone Development Resources
Best Wiki for Mobile Users
How to programmatically send SMS on the iPhone?
iPhone - Exchange Calendars in Public Folders
iPhone web applications, templates, frameworks?
Understanding reference counting with Cocoa / Objective C
How-to articles for iPhone development, Objective-C
What are the correct pixel dimensions for an apple-touch-icon?
How do I give my web sites an icon for iPhone?
iPhone app in landscape mode