Login Permissions

ads_management

Requires App Review.

The ads_management permission allows your app to both read and manage the ads account it owns, or has been granted access to by the ad account owner.

Allowed Usage

• Programmatically create campaigns, manage ads, and fetch metrics.
• Build ad management tools that provide innovative solutions and differentiated value for advertisers.

ads_read

Requires App Review.

The ads_read permission allows your app to access the Ads Insights API to pull ads report information for ad accounts you own or have been granted access to by the owner, or owners, of other ad accounts through this permission. This permissions also grants your app access to the Server-Side API to allow advertisers to send web events from their servers directly to Facebook.

Allowed Usage

• Provide API access to your ad performance data for use in custom dashboards and data analytics.
• Send web events from your server directly to Facebook.

attribution_read

Requires App Review.

Grants your app access to the Attribution API to pull attribution report data for lines of business you own or have been granted access to by the owner or owners of other lines of business. The ads_read and business_management permissions are also required when using this permission.

Allowed Usage

business_management

Requires App Review.

The business_management permission allows your app to read and write with the Business Manager API.

Allowed Usage

• Manage business assets such as an ad account.
• Claim ad accounts.

catalog_management

Requires App Review.

Grants your app the ability to create, read, update, and delete business owned product catalogs that the user is an admin of. This permission grants access to related endpoints. By default, your app may only access product catalogs that are owned by admins of the app when in developer mode. The business_management permission is also required when using this permission.

Allowed Usage

Default Public Profile Fields

Does not require App Review.

Grants your app access to the default fields of the User object that are a subset of a person's public profile:

• id
• first_name
• last_name
• middle_name
• name
• name_format
• picture
• short_name

email

Does not require App Review.

The email permission allows your app to read an end user's primary email address. This permission is automatically granted to all apps.

Allowed Usage

• Communicating with people and letting them log into your app with the email address associated with their Facebook profile.

groups_access_member_info

Requires App Review.

The groups_access_member_info permission allows your app to read publicly available group member information like name and ID if the post author has granted your app access.

Allowed Usage

• Allow apps to get content posted in their group with user details.
• Help admins get aggregated insights about activity happening in their group.

instagram_basic

Requires App Review.

The instagram_basic permission allows your app to read an Instagram Account profile's info and media.

Allowed Usage

• Get basic metadata of an Instagram Business Account like username and ID.

instagram_content_publish

Requires App Review.

The instagram_content_publish permission allows your app to create organic feed photo and video posts on behalf of a business user.

Allowed Usage

• Managing organic content creation process for Instagram (i.e. post photos, videos to main feed) on behalf of a business.

instagram_manage_comments

Requires App Review.

The instagram_manage_comments permission allows your app to create, delete, and hide comments on behalf of the Instagram Account linked to the Page. Your app can also read and respond to public media and comments that a business has been photo tagged or @mentioned in.

Allowed Usage

• Read, update, and delete comments of Instagram Business Accounts.
• Read media objects, such as stories, of Instagram Business Accounts.

instagram_manage_insights

Requires App Review.

The instagram_manage_insights permission allows your app to get access to insights for the Instagram account linked to the Facebook Page. You app can also discover and read the profile info and media of other business profiles.

Allowed Usage

• Get metadata of an Instagram Business Account.
• Get data insights of an Instagram Business Account.
• Get story insights of an Instagram Business Account.

leads_retrieval

Requires App Review.

The leads_retrieval permission allows your app to retrieve and read all information captured by a lead ads form associated with an ad created in Ads Manager or the Marketing API.

Allowed Usage

• Reach out to the people who followed up your lead ad form requesting more information. For example, an auto dealer reaching out to a potential customer (lead) that responded to their ad with quotes for a car.
• For advertiser authorized CRM platforms to pull the lead data on behalf of the advertisers. These advertisers can then use the lead information to reach out to the user.

manage_pages

Requires App Review.

The manage_pages permission allows your app to retrieve Page Access Tokens for the Pages and apps that the app user administers.

Allowed Usage

• Publish content to Pages owned by the people who use your app. Note: Publishing also requires the publish_pages permission.
• Help people manage the posts, comments and likes published to their Pages.

pages_manage_cta

Requires App Review.

The pages_manage_cta permission allows your app to carry out POST and DELETE functions on endpoints used to manage a Facebook Page's call-to-action buttons.

Allowed Usage

• Provide API access to manage call-to-action buttons on Pages that you manage.

pages_manage_instant_articles

Requires App Review.

The pages_manage_instant_articles permission allows your app to manage Instant Articles on behalf of Facebook Pages administered by people using your app.

Allowed Usage

• Create and update Instant Articles for Pages owned by the people who use your app.

pages_messaging (Send/Receive API)

Requires App Review.

Grants an app permission to manage and access Page conversations in Messenger.

Allowed Usage

pages_messaging_subscriptions

Requires App Review.

Grants your app permission to send messages using Facebook Pages at any time after the first user interaction. Your app may only send advertising or promotional content through sponsored messages or within 24 hours of user interaction.

Allowed Usage

pages_show_list

Does not require App Review.

The pages_show_list permission allows your app to show the list of the Pages that a person manages.

Allowed Usage

• Provide API access to accounts for showing the list of the Pages that a person manages.

public_profile

Does not require App Review.

Grants your app permission to the default fields of the User object that are a subset of a person's public profile:

• id
• first_name
• last_name
• middle_name
• name
• name_format
• picture
• short_name

This permission is the same as the default permission, which appears in the App Review submission interface. If you examine a User's access token, the default permission will instead be listed as the public_profile scope.

publish_pages

Requires App Review.

The publish_pages permission allows your app to publish posts, comments and like Pages managed by the app user.

Allowed Usage

• Allow app users to explicitly publish content from your app to any of the Facebook Pages they manage from within a custom composer.
• Like and comment from your app on behalf of the Pages app users manage.

publish_to_groups

Requires App Review.

The publish_to_groups permission allows your app to post content into a group on behalf of a person if they've granted your app access.

Allowed Usage

• Allow people to publish content from your app to their Facebook group.
• Help people manage the content published to their group.

publish_video

Requires App Review.

Grants an app permission to publish live videos to the app User's timeline.

Allowed Usage

Disallowed Usage

read_insights

Requires App Review.

The read_insights permission allows your app to read the Insights data for Pages, apps, and web domains the person owns.

Allowed Usage

• Integrate Facebook's app, page or domain insights into your own analytics tools.

read_page_mailboxes

Requires App Review.

Grants an app permission to manage and access your Pages' messaging conversations. This permission is often used alongside the manage_pages permission.

Allowed Usage

user_age_range

Requires App Review.

Grants an app permission to access a person's age range.

Allowed Usage

Disallowed Usage

user_birthday

Requires App Review.

The user_birthday permission allows your app to read a user's birthday as listed in their Facebook profile.

Allowed Usage

• Provide age relevant content to people when their age range is not sufficient.

user_events

Requires App Review.

Grants an app permissions to read-only access to the Events a person is a host of or has RSVPed to. This permission is restricted to a limited set of partners and usage requires prior approval by Facebook.

Allowed Usage

Disallowed Usage

user_friends

Requires App Review.

Grants an app permission to read the friends edge on the User node.

Allowed Usage

user_gender

Requires App Review.

Grants an app permission to access a person's gender.

Allowed Usage

Disallowed Usage

user_hometown

Requires App Review.

The user_hometown permission allows your app to read a user's hometown location from their Facebook profile.

Allowed Usage

• Provide a personalized experience based on where a person lived or grew up.

user_likes

Requires App Review.

Grants an app permission to access the list of all Facebook Pages that a person has liked.

Allowed Usage

user_link

Requires App Review.

The user_link permission allows your app to access the Facebook profile URL of the person using your app.

Allowed Usage

• Provide a way for someone who uses your app to visit that person's Facebook profile.

user_location

Requires App Review.

The user_location permission allows your app to read the city name as listed in the location field of a person's Facebook profile.

Allowed Usage

• Provide a personalized experience based on the city name as listed in the location field of a person's Facebook profile.

user_photos

Requires App Review.

The user_photos permission allows your app to read the photos a person has uploaded to Facebook.

Allowed Usage

• Create physical or digital books of albums of a person's photos, which includes permitting people to export photos for printing.
• Provide people with the ability to display their photos with others within the app, like in dating or social apps.
• Provide people with the ability to edit or create new photo content based on existing photos.

user_posts

Requires App Review.

The user_posts permission allows your app to access the posts that a person has made on their timeline.

Allowed Usage

• Enable people to create physical or digital books or albums of their timelines.
• Enable people to share memories from their timeline with their friends.
• Enable people to share their posts with other social apps.

user_videos

Requires App Review.

The user_videos permission allows your app to read a list of videos uploaded by a user.

Allowed Usage

• Display a person's videos on a TV via a set-top box or display their videos in a digital photo frame.
• Provide people with the ability to edit or create new video content using existing videos.
• Provide people with the ability to display their video with owners within their app, like in dating or social apps.