Cloudflare Docs
Cloudflare Zero Trust
Visit Cloudflare Zero Trust on GitHub
Set theme to dark (⇧+D)


Use these steps to set up Facebook as your identity provider.

  1. Go to

  2. Click Create App at the top-right. The Create a New App ID card displays.

  3. Enter the Display Name and Contact Email.

  4. Click Create App ID. The Create a New App ID window displays.

  5. Enter the CAPTCHA code to proceed.

  6. Click Submit.

  7. On the Facebook Login card, click Set Up. A Quickstart card displays offering platform choices.

  8. Click Web. The Web tab displays.

  9. Enter your Site URL.

  10. Click Save.

  11. Click Continue. Ignore any JavaScript page that suggests that you install it on your site.

  12. Click Settings > Basic.

  13. Copy the App ID and App Secret.

    Facebook Settings with App ID and App Secret highlighted

  14. In Zero Trust, navigate to Settings > Authentication.

  15. Under Login methods, click Add new.

  16. Fill in the App ID and App Secret obtained from Facebook.

  17. (Optional) Enable Proof of Key Exchange (PKCE). PKCE will be performed on all login attempts.

  18. Click Save.

  19. On, click Facebook Login > Settings on the left-hand menu.

  20. Ensure that the Use Strict Mode for Redirect URIs slider is set to Yes.

  21. In the Valid OAuth redirect URIs field, enter your team domain, followed by this callback at the end of the path: /cdn-cgi/access/callback. For example:

  22. Click Save Changes.

To test that your connection is working, follow the steps on SSO Integration.

​​ Example API Configuration

"config": {
"client_id": "<your client id>",
"client_secret": "<your client secret>"
"type": "facebook",
"name": "my example idp"