Use these steps to set up Facebook as your identity provider.
-
Go to developers.facebook.com ↗. Create a Developer account if you do not have one.
-
Select Create App at the top-right. The Create an app card displays.
-
Enter the App name and App contact email. Then, select Next.
-
In the Add use cases page, select Authenticate and request data from users with Facebook Login. Select Next.
-
Fill in the necessary information and select Next until you reach Overview. Then, select Create app.
-
In the My Apps page, go to App settings > Basic.
-
Copy the App ID and App Secret.
-
In the Cloudflare dashboard ↗, go to Zero Trust > Integrations > Identity providers.
-
Under Your identity providers, select Add an identity provider.
-
Fill in the App ID and App Secret obtained from Facebook.
-
(Optional) Enable Proof of Key Exchange (PKCE) ↗. PKCE will be performed on all login attempts.
-
Select Save.
-
Go back to My Apps in developers.facebook.com ↗, and select your app.
-
Under App customization and requirements, select Customize the Authenticate and request data from users with Facebook Login use case.
-
Select Settings, and ensure that Use Strict Mode for redirect URIs slider is set to Yes.
-
In the Valid OAuth Redirect URIs field, enter the following URL:
https://<your-team-name>.cloudflareaccess.com/cdn-cgi/access/callbackYou can find your team name in the Cloudflare dashboard ↗ under Settings > Team name and domain > Team name.
-
Select Save Changes.
To test that your connection is working, follow the steps on SSO Integration.
{ "config": { "client_id": "<your client id>", "client_secret": "<your client secret>" }, "type": "facebook", "name": "my example idp"}