Skip to content

Facebook Client ID

Service Name: Facebook

Service Description: Facebook is a social media platform that allows developers to build applications that integrate with Facebook's features and data through their APIs.

Service Address: https://developers.facebook.com/

Validation Type: API Auth

IP Allow list: Does not exist

Secret Access Scope: Grants access to Facebook APIs on behalf of an application, allowing interaction with Facebook's platform features.

Secret Revokement URL: https://developers.facebook.com/apps/

Secret Example: 123456789012345

Suspicious Activity Investigation Instructions:

  • Check Facebook Developer Console for unusual API calls or access patterns
  • Review application logs for unauthorized access attempts
  • Monitor application permissions and scope changes
  • Check for unexpected user data access or actions performed by the application
  • Review Facebook's Security Alerts for the application

Mitigation Instructions:

  • Navigate to Facebook Developer Console at https://developers.facebook.com/apps/
  • Select the affected application
  • Go to App Settings > Basic
  • Reset or regenerate the Client ID and Secret
  • Update the Client ID in all legitimate application instances
  • Review and restrict application permissions to only what is necessary