问题
I accidentally gave/passed the Access Token
(The one i generated from Graph API Explorer) to my friend.
Because while i was doing App Development for my Demo-App, i accidentally passed the testing url like:
https://graph.facebook.com/me/friends?access_token=XXXXose0cBAJdNvsidbmeGE0cFaqv67nBxNuPjFh2y1E0f8J93K1IlCBYDW49LCfein6hkZBZCKIUmZCTACeovVcVrorrVhP2BScUIujD5Y1wT232ceXXXXXXXXX
.. which URL contained the access_token
inside.
- How to make it expired/useless please?
回答1:
Unfortunately, simply remove the Graph API explorer app at https://www.facebook.com/settings?tab=applications wouldn't expire your access token. Moreover, change your password wouldn't expired the access token(it's weird by now, i'm not sure it should be consider a serious security bug OR by design) !!!
However, you can visit https://www.facebook.com/deactivate.php, then click the radio button of "This is temporary. I'll be back.". Then click "Confirm". Then it would ask you current password and so on.
After that, go to https://www.facebook.com/YOUR_USER_ID wouldn't see your profile. Then you just simply login as normal, you would reactive your account. After this, the access token of your previous Graph API explorer would expired.
Update: You can just change your password and make sure you select 'Log me out of other devices'. It's works fine now(It doesn't works for yesterday)
来源:https://stackoverflow.com/questions/16296799/facebook-app-how-to-remove-or-make-expired-the-previous-used-access-tokens