Parsing over pound sign in facebook connect URL

I would have liked to do that except for the fact that I haven't found a way to create the "myStr" variable which would contain the full URL. How do you propose I get the full URL including everything after the pound sign?

What happens is facebook redirects to that page ie http://mydomain.com/mypage.cfm#access_token=xxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxx

So "mypage.cfm" needs to parse out the access_token

Goto your mypage.cfm and put in a:

<cfdump var="#CGI#" />

Then navigate out to your mypage.cfm and put a '#access_token=xxxxxxxxxxxxxxxxxxxxxxxxxx' onto it and see if any variable in the CGI scope maintains that value.  (Check 'script_name' in particular)  Let me know if any variable maintains that information; it will be the one you'll want to use for parsing.

Did that already, but nothing contained the elusive "#access_token=xxxxxxxxxx" Just feels like it should be something easy to get to...

It looks like CF strips off hash parameters from the CGI variables.  You might be able to access the full URL with the hash parameter via GetHTTPRequestData(), though.

-Carl V.

Nevermind, GetHTTPRequestData() doesn't do it.  I also tried noodling around with GetPageContext(), but couldn't find anything useful there either.  This StackOverflow post might provide some insight.

-Carl

GetPageContext() did not help. Seems like I've hit a brick wall

It seems from that SO post that anything following a pound sign in a URL is by design intentially ignored server side, as it is intended to be used client-side by JavaScript.  Not sure what to do about that...

-Carl V.

I've been reading up and it seems that the anchor stub on a URL is actually not sent to the server.  It is a behavior function of the browser.  Browsers check for it, and if they find an ID in the page, they simply move the scrollbar to that point.

That being said, if this is how Facebook sends back the token, I'm assuming they want your page to capture it (our current problem) and then to either store it in a persistent scope for the remainder of the visit, right?  Have you looked into how other languages handle this?  I can't fathom why FB would request a URL with an anchor stub rather than a query string.

Thanks everyone for trying to help out. If I was able to extract the access_token this way, it would have been a easy way to work on facebook connect. There are other more complicated ways to do it. I suppose I will have to look into those. Thanks and I really appreciate all your pointers.

The https://developers.facebook.com/docs/facebook-login/access-tokens/ documentation shows a couple of Open Graph URLs to just get the access token. Did you try doing a CFHTTP to:

https://graph.facebook.com/oauth/access_token?client_id={app-id}&client_secret={app-secret}&grant_ty...

You'd have to hard-code the client_secret, or perhaps take it from a database, but it may yield the elusive token.