From 0d72eb7936f2e457238e3f81923bcbca500f03cb Mon Sep 17 00:00:00 2001
From: Chris Ross <tratcher@outlook.com>
Date: Thu, 29 Apr 2021 15:51:59 -0700
Subject: [PATCH] Update Facebook OAuth endpoints, tests

---
 src/Microsoft.Owin.Security.Facebook/Constants.cs           | 6 +++---
 .../Facebook/FacebookMiddlewareTests.cs                     | 2 +-
 .../Google/GoogleOAuth2MiddlewareTests.cs                   | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/src/Microsoft.Owin.Security.Facebook/Constants.cs b/src/Microsoft.Owin.Security.Facebook/Constants.cs
index 4ef9e04ab..4498b1214 100644
--- a/src/Microsoft.Owin.Security.Facebook/Constants.cs
+++ b/src/Microsoft.Owin.Security.Facebook/Constants.cs
@@ -8,8 +8,8 @@ internal static class Constants
         public const string DefaultAuthenticationType = "Facebook";
 
         // https://developers.facebook.com/docs/facebook-login/manually-build-a-login-flow#login
-        internal const string AuthorizationEndpoint = "https://www.facebook.com/v8.0/dialog/oauth";
-        internal const string TokenEndpoint = "https://graph.facebook.com/v8.0/oauth/access_token";
-        internal const string UserInformationEndpoint = "https://graph.facebook.com/v8.0/me";
+        internal const string AuthorizationEndpoint = "https://www.facebook.com/v10.0/dialog/oauth";
+        internal const string TokenEndpoint = "https://graph.facebook.com/v10.0/oauth/access_token";
+        internal const string UserInformationEndpoint = "https://graph.facebook.com/v10.0/me";
     }
 }
diff --git a/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs b/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs
index 44a7c9265..5c6133e4d 100644
--- a/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs
+++ b/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs
@@ -59,7 +59,7 @@ public async Task ChallengeWillTriggerRedirection()
             var transaction = await SendAsync(server, "http://example.com/challenge");
             transaction.Response.StatusCode.ShouldBe(HttpStatusCode.Redirect);
             var location = transaction.Response.Headers.Location.AbsoluteUri;
-            location.ShouldContain("https://www.facebook.com/v2.8/dialog/oauth");
+            location.ShouldContain("https://www.facebook.com/v10.0/dialog/oauth");
             location.ShouldContain("?response_type=code");
             location.ShouldContain("&client_id=");
             location.ShouldContain("&redirect_uri=");
diff --git a/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs b/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs
index eb8690675..be4cf671c 100644
--- a/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs
+++ b/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs
@@ -230,7 +230,7 @@ public async Task ReplyPathWillAuthenticateValidAuthorizeCodeAndState()
                 {
                     Sender = async req =>
                         {
-                            if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")
+                            if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")
                             {
                                 return await ReturnJsonResponse(new
                                 {
@@ -351,7 +351,7 @@ public async Task AuthenticatedEventCanGetRefreshToken()
                 {
                     Sender = async req =>
                     {
-                        if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")
+                        if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")
                         {
                             return await ReturnJsonResponse(new
                             {