What is an IFrame Canvas Application?

Creating a New Facebook Canvas Application

The steps below will help you to create a functional ASP.NET Web site to be used as an IFrame canvas application featuring XFBML markup, the feed form, and integration with the Facebook API via the Facebook Developer Toolkit. The project will be built using Visual Studio 2008 and .NET Framework 3.5, although other platforms can also utilize the Facebook Platform.

• Create a Facebook Application

  In order to develop and integrate with Facebook, you must install the Facebook Developer Application to your Facebook Account. This application is used to manage custom application settings, publish the application and access the Facebook Platform.

  • Login to Facebook.com
  • Navigate to http://www.facebook.com/apps/application.php?id=2345053339 and install the application.

  • In the bottom-left corner of the page, click the Developer application icon. At the top of the Developer page, click "Setup New Application". Enter the application name and agree to the terms of service. The resulting page is the management home for the new application. Take note of the API Key and Secret, which will be used by your site to access the Facebook API.

    

  • Enter any desired application settings, icon images, etc.
  • Navigate to the Canvas section of the application settings. Enter a Canvas Page URL, which will be the URL that users will use to visit your application.
  • Enter the URL for the root of your site as the Canvas Callback URL. Make sure that it ends in a slash ("/"), otherwise Facebook may not deal with it correctly. Your application's canvas page will have an IFrame which will display the content at this URL. During development this can be set to the Visual Studio local port if desired. For example, the demo Web site will be configured to run on port 63919, therefore the Canvas URL is set as http://localhost:63919/.

  • Make sure the Render method is set to IFrame. Save the changes.

    

  • Navigate to the Connect tab and enter your Canvas URL as the Connect URL. This parameter will be used for cross domain communication, which is explained in more detail below. Save the changes.

    

  • During development you may also wish to enable the Advanced tab's Sandbox Mode, which limits Facebook interaction to only the developer accounts listed in the application.
• Create Template Bundle
  • Navigate to the Feed Template Console at http://developers.facebook.com/tools.php?feed
  • Select your application in the drop-down and click Next.

  • Create a one line story template using the {*actor*} and {*color*} placeholder tokens. For example, I used "{*actor*} says that his or her favorite color is {*color*}!" When the template is used, {*actor*} will be replaced with the name of the user, and {*color*} will be the color they selected in the app (more on this later). In the Sample Template Data box, erase what's there and enter {"color":"green"}. Click Next.

    

  • Click Skip on the Short Story template page.

  • On the Action Link page, enter some text to invite other users to use your application in the Action Link Text field, and enter your canvas URL in the Action Link URL field. Click Next.

    

  • Click Register Template Bundle. When the success message pops up, copy the template bundle ID and save it somewhere for later on. If you close the popup too soon, you can find the template bundle ID at http://developers.facebook.com/tools.php?templates.
• Download and Open Sample
  • Download the Facebook Developer Toolkit (FDT): http://facebooktoolkit.codeplex.com/
  • Open the solution for the IFrameCanvasSample (in Samples/IFrame folder in the distribution).
• Edit Settings in web.config
  • In the project, open web.config. Near the top of the file, you should see some settings in the <appSettings> element. Change the values for those settings to the following:
    • APIKey: your API key
    • Secret: your application secret
    • Callback: your callback URL
    • Suffix: The suffix of your canvas page URL. For example, for a site located at http://apps.facebook.com/fdtiframesample/, the suffix is fdtiframesample.
• Edit Template Bundle ID
  • Open Default.aspx. In the JavaScript towards the top of the page, there is a call to FB.Connect.showFeedDialog(). Change the first parameter to be your template bundle ID (in quotes). Normally this would be stored in your web.config, but it was stored here to make the code easier to read.
• Set Up Project Port Number
  • Open the project properties (right-click the project, click Properties).
  • Click the Web tab on the left side.
  • In the Servers section on the page, select "Use Visual Studio Development Server".

  • Select "Specific Port", and enter the port number from your callback URL.

    

• Run Application
  • Start the Web application (click Debug menu, click Start Debugging).
  • Close the browser window that opens, since it doesn't open your app within the Facebook context.
  • Navigate to your canvas page URL (http://apps.facebook.com/your-app-suffix).
  • On the "Allow Access?" page, click "Allow".
  • You now have a fully working Facebook IFrame canvas application. Enjoy!

Authentication

In this sample, I used the CanvasIFrameMasterPage to take care of authenticating the session with Facebook. This class takes care of the entire authentication process; all you have to do is give the application your API key and secret, as we did in the web.config above, as well as letting it know which pages require the user to have an authenticated session. It may be useful to allow certain pages to be viewed without an authenticated session so that users who have not yet added your application can see it and discover why it might be interesting to them. Also, some parts of the Facebook API are available without an authenticated session.

Since I also needed a master page with logic and markup specific to this application, I created a custom master page that inherits from CanvasIFrameMasterPage. In the markup for the custom master page, it references its code-behind with the CodeBehind attribute:

ASP.NET MVC Support

The supported approach for writing FBML canvas applications using ASP.NET MVC involves two facets.

1. Add an attribute for controller actions to handle authentication.
2. Use an extension method to the controller to get an instance of the API object to make calls to Facebook.

Making REST Calls to the API

If you're using the CanvasIFrameMasterPage, making calls to the Facebook API over its REST-like interface is a snap. The master page has an Api property, and all of the API calls can be made through the child objects of that object. Each of the methods is structured as close to the actual Facebook method as possible, while still being strongly-typed and following typical .NET conventions. For example, here's the code I used to send e-mails through the notifications.sendEmail API method:

XFBML and Cross-Domain Communication

XFBML is a method for using FBML (Facebook Markup Language) on IFrame pages. FBML itself is an extension of HTML to allow developers to more tightly integrate their applications with Facebook. Using FBML, developers can use Facebook components such as the profile and news feed in their own applications.

In an FBML canvas application, no special setup is required to use FBML, since Facebook processes the markup before sending the HTML back to the client. However, in an IFrame application, the markup from the application is sent directly to the client without passing through Facebook's servers, so some setup is required.

In this sample, most of the setup is done in the master page (in fact, that's the main reason we have a custom master page at all). First, the page needs to start with an XHTML DOCTYPE declaration, and the <html> tag has to include an xmlns:fb attribute so that it works in IE:

FBML Server Controls

In order to simplify the ASP.NET programming experience of building an FBML application. We have supplied a set of Server Controls that support the entire FBML namespace. These controls can be used in a manner similar to typical ASP.NET server controls and will render FBML as specified on the Facebook wiki. This will provide a fully supported server programming model for FBML. These controls are not yet supported in the ASPX design surface, but they will be in the toolbox and will provide full IntelliSense support in the Source view of an ASPX page. The code listing below provides a glimpse at how a few of these controls can be placed on an FBML page. Each of these controls supports rendering XFBML compliant text (for any that are supported in XFBML)

Feed Form

The feed form is a method for you to post stories and other information about what users have been doing on your application onto the Feed system. Once a story has been posted to a user's feed, all of their friends can see it, making the feed a great method for users to tell their friends what they've been up to, as well as for you to tell more users about your application.

To use the feed form, you first have to have a template bundle set up (which was done during the application setup). Then you just need to make a JavaScript call to FB.Connect.showFeedDialog with the correct parameters, including the data to fill the template with. This will pop up a dialog box displaying the story, and asking the user if they would like to publish the story or not:

Extended Permissions

In order to perform certain actions on the Facebook Platform (such as sending e-mails and publishing items to a user's stream), your application has to ask the user for special permissions. Facebook calls these "extended permissions".

There are several ways to ask users for these extended permissions. In this sample, we used the <fb:prompt-permission> tag. This tag allows you to turn a piece of text into a link that, when clicked, will pop up a dialog to let the user grant your application a specific permission: