The use case
A product connecting to Meta must describe the use case, requested permissions, and post-auth handling in a review-friendly way.
Meta review
Explain the use case, permissions, and connected dashboard clearly.
This review path is intentionally direct: a public landing page, a login entry point, a callback handler, and a dashboard that clarifies safe account state.
Permissions are explained without claiming unsupported capabilities.
Requested permissions
- Access account/page metadata where approved
- Publish content only where the app is authorized
- Store token metadata server-side only
Flow
- Landing page
- Login redirect
- Callback verification
- Code exchange
- Dashboard state
Safe capabilities
- Connected account summary
- Permissions explanation
- Legal links
- Request access readiness
Review notes
- No tokens are displayed in the browser
- State validation prevents CSRF replay
- Meta-specific long-lived exchange can be configured in the Worker