How to handle password change for Facebook connection?

Hi everyone,

Our application is storing facebook access_token in our database to use for Facebook Graph API calls, it works great

But when an user changed his password or update the business integration, Facebook will invalidate the access token, I tried to get a new access token by asking user to log out and re-login, but Auth0 still returns the old token

Error message from Facebook

“The session has been invalidated because the user changed their password or Facebook has changed the session for security reasons.”

How can I solve this issue?

Thanks

Hi @kien ,

Do you have the connection configured to sync the user profile on each login? I wonder if this updates the token.

hi guys,

I’ve found what went wrong, because we cache the user data, we just need to invalidate the cache and get the access_token again from auth0 and it’ll work

Great! Thanks for the update.