All geek questions in one place

Facebook app: any way to run an app without SSL?

I am working on my first Facebook application and am facing (possibly) an SSL problem. If I test the application, then it works well. But then I wanted to test the application with my friend, so I assigned him the role of "Tester", he accepted it, and I sent him a link to the application.

If he opened the application, he received an error Website is unavailable - Error 501 (net :: ERR_INSECURE_RESPONSE): Unknown error

I started google, and it seems that the reason is the lack of an SSL certificate on my hosting where the application is stored.

BUT - how is it possible that the application works with me without SSL, but my friend does not? If Facebook apps require SSL, why didn't I get the same error? (I set the Secure Canvas URL: at https://example.com/fb-app-directory/ , however I do not have this domain and host any SSL certificate).

I have never used before SSL. I bought a domain name on Namecheap and hosting on Hostgator. So now I have to buy an SSL certificate from the offer ( http://www.namecheap.com/ssl-certificates.aspx ) Namecheap, right?

Will the Facebook app come in handy for the cheapest?

+6
source share
5 answers

You must buy an SSL certificate so that everyone can access your application. Your friend probably has his own settings so that he reliably browses Facebook, in which case he clicks https://example.com/fb-app-directory/ , and not your actual URL.

The cheapest option is not the best, but it should work as long as it is valid. I would suggest using Heroku, because in this way you get everything you need - for free :)

+2
source

Look, this SSL problem can only be solved by buying a valid SSL certificate or finding a server that can host your application and is SSL certified, for example:

  • phpfog.com . Provides you limited space and database service.
  • heroku.com . Does not provide storage space for dynamically generated data. To get this service, you need to buy an Amazon service, which, again, is an expensive affair.

If you do not want to invest, I would recommend you go with phpfog - it is easy and its documentation is very good.

+3
source

Use proxy in heroku.com file and bring your page in a secure domain as https://yourapplication.herokuapp.com/

+1
source

“Starting October 1, 2011, Facebook will require a valid SSL certificate for all pages and applications hosted outside of Facebook.”

http://www.wpcode.net/fb-ssl.html/

Perhaps you are visiting the application using http://apps.facebook.com/... , and your friend is visiting https://apps.facebook.com/...

Another possibility is that your friend checked the “Browse Facebook on a secure connection (https) whenever possible” section in the “Account Security” section.

0
source

Try ngrok . It provides a local web server with only one command:

 ngrok 80

After that, you can access your local host as follows: xxxxxxxx.ngrok.com

-3
source

Source: https://habr.com/ru/post/924446/

More articles:


All Articles