Cloudflare Docs
Visit Cloudflare Zero Trust on GitHub
Set theme to dark (⇧+D)


Use these steps to set up Facebook as your identity provider.

  1. Go to

  2. Click Create App at the top-right.

    Facebook IdP Login page

    The Create a New App ID card displays.

  3. Enter the Display Name and Contact Email.

  4. Click Create App ID. The Create a New App ID window displays.

  5. Enter the CAPTCHA code to proceed.

  6. Click Submit.

  7. On the Facebook Login card, click Set Up.

    Facebook Add a Product

    A Quickstart card displays offering platform choices.

  8. Click Web. The Web tab displays.

  9. Enter your Site URL.

  10. Click Save.

  11. Click Continue. Ignore any JavaScript page that suggests that you install it on your site.

  12. Click Settings > Basic.

    Facebook Settings

  13. Copy the App ID and App Secret.

  14. On the Zero Trust dashboard, navigate to Settings > Authentication.

  15. Under Login methods, click Add new.

  16. Fill in the App ID and App Secret obtained from Facebook.

  17. (Optional) Enable Proof of Key Exchange (PKCE). PKCE will be performed on all login attempts.

  18. Click Save.

  19. On, click Facebook Login > Settings on the left-hand menu.

  20. Ensure that the Use Strict Mode for Redirect URIs slider is set to Yes.

  21. In the Valid OAuth redirect URIs field, enter your team domain, followed by this callback at the end of the path: /cdn-cgi/access/callback. For example:

  22. Click Save Changes.

To test that your connection is working, follow the steps on SSO Integration.

Example API Configuration

"config": {
"client_id": "<your client id>",
"client_secret": "<your client secret>"
"type": "facebook",
"name": "my example idp"