aspnet · Tratcher · Apr 29, 2021 · Apr 29, 2021
diff --git a/src/Microsoft.Owin.Security.Facebook/Constants.cs b/src/Microsoft.Owin.Security.Facebook/Constants.cs
@@ -8,8 +8,8 @@ internal static class Constants
         public const string DefaultAuthenticationType = "Facebook";
 
         // https://developers.facebook.com/docs/facebook-login/manually-build-a-login-flow#login
-        internal const string AuthorizationEndpoint = "https://www.facebook.com/v8.0/dialog/oauth";
-        internal const string TokenEndpoint = "https://graph.facebook.com/v8.0/oauth/access_token";
-        internal const string UserInformationEndpoint = "https://graph.facebook.com/v8.0/me";
+        internal const string AuthorizationEndpoint = "https://www.facebook.com/v10.0/dialog/oauth";
+        internal const string TokenEndpoint = "https://graph.facebook.com/v10.0/oauth/access_token";
+        internal const string UserInformationEndpoint = "https://graph.facebook.com/v10.0/me";
     }
 }
diff --git a/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs b/tests/Microsoft.Owin.Security.Tests/Facebook/FacebookMiddlewareTests.cs
@@ -59,7 +59,7 @@ public async Task ChallengeWillTriggerRedirection()
             var transaction = await SendAsync(server, "http://example.com/challenge");
             transaction.Response.StatusCode.ShouldBe(HttpStatusCode.Redirect);
             var location = transaction.Response.Headers.Location.AbsoluteUri;
-            location.ShouldContain("https://www.facebook.com/v2.8/dialog/oauth");
+            location.ShouldContain("https://www.facebook.com/v10.0/dialog/oauth");
             location.ShouldContain("?response_type=code");
             location.ShouldContain("&client_id=");
             location.ShouldContain("&redirect_uri=");

diff --git a/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs b/tests/Microsoft.Owin.Security.Tests/Google/GoogleOAuth2MiddlewareTests.cs
@@ -230,7 +230,7 @@ public async Task ReplyPathWillAuthenticateValidAuthorizeCodeAndState()
                 {
                     Sender = async req =>
                         {
-                            if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")
+                            if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")
                             {
                                 return await ReturnJsonResponse(new
                                 {
@@ -351,7 +351,7 @@ public async Task AuthenticatedEventCanGetRefreshToken()
                 {
                     Sender = async req =>
                     {
-                        if (req.RequestUri.AbsoluteUri == "https://www.googleapis.com/oauth2/v4/token")
+                        if (req.RequestUri.AbsoluteUri == "https://oauth2.googleapis.com/token")
                         {
                             return await ReturnJsonResponse(new
                             {