Hi there. I’m finding the documentation around tokens for social graph access confusing. I’ll describe what I’m trying to do, and hopefully someone will have an example or clear documentation to follow. (I should add that I’m new to Auth0 and authorization in general.)
I have a React-Native app that uses Auth0 for social (Facebook) login, connected with Graphcool as my backend data store. I want to be able to keep my user logged in (i.e. using a stored id_token), and yet every time they use the app, have ready access to their Facebook friend list (a permission they granted my app when they first signed up and logged in via Facebook via Auth0).
I am successfully using the basic Auth0 id_token for signups, to create user objects on Graphcool, etc. But I am utterly lost when it comes to getting Facebook-API specific access tokens via Auth0 for my currently logged-in user. I’ve read documentation that says I’ll need to use an “access_token” gotten during login (which is only happening once every now and then, as I persist the id_token for many days) to get some other token, to get some other token, to get some other token (et al.) that will eventually give me access to the Facebook API.
Anyone know how to set this up, with clear examples? The fake/simulated “test client” for management on the Auth0 website is confusing. I’d like to see an example or documentation that describes clearly how to integrate this into a client (i.e. native mobile) app. Thanks!