What happens if our Facebook app isn't available via HTTPS before the Oct. 1 2011 deadline? [closed]
https://stackoverflow.com/questions/7268594
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
We run fairly complex virtual world apps with a large number of image files.
We are working on SSL & HTTPs, but there is some chance we won't be able to cover everything by Oct. 1st.
What will happen in that case? Will we receive a warning, will our apps be deleted from Facebook, or will they simply stop working?
Solution
As the official announcement mentions: "HTTPS would be required", and it also says
This also implies that old, previous versions of our SDKs will stop working, including the old JavaScript SDK.
From that, I would infer that HTTP-only apps are included in "previous versions" and that they will also stop working. I haven't been able to find any clearer official announcement for this issue.
OTHER TIPS
Asked this question in the FacebookDevelopers group, and a develper relations PM from Facebook provided this Feedback:
"The apps will not be deleted. Instead, they will be in a new disabled mode (essentially sandbox mode) where developers and testers can access the app & its settings, but not users."
On Oct. 1 2011 facebook will call all canvas urls and tab urls via https, so your http content will be blocked by browsers for mixed content, some browsers will block content completely others will issue a warning.
you need to get SSL cert to your site and make changes in your code to get rid of "http".
Also consider moving your app to be an external website. It's already an iframe, so it's nearly a website already. Plus then you can run Adsense.
