fix(meta-ads): exchange short-lived token for long-lived token on OAuth connect

Meta's auth code flow returns a short-lived token (~1-2h) with no refresh token. Add fb_exchange_token call in account.create.after hook to exchange for a long-lived token (~60 days), following the same pattern as Salesforce's post-connect token handling. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-06 03:00:16 -04:00 · 2026-03-14 07:35:03 -07:00
parent b339b483f0
commit 478bcc06fe
1 changed files with 33 additions and 0 deletions
--- a/apps/sim/lib/auth/auth.ts
+++ b/apps/sim/lib/auth/auth.ts
@@ -323,6 +323,39 @@ export const auth = betterAuth({
            }
          }

+          if (account.providerId === 'meta-ads' && account.accessToken) {
+            try {
+              const exchangeUrl = new URL('https://graph.facebook.com/v24.0/oauth/access_token')
+              exchangeUrl.searchParams.set('grant_type', 'fb_exchange_token')
+              exchangeUrl.searchParams.set('client_id', env.META_ADS_CLIENT_ID as string)
+              exchangeUrl.searchParams.set('client_secret', env.META_ADS_CLIENT_SECRET as string)
+              exchangeUrl.searchParams.set('fb_exchange_token', account.accessToken)
+
+              const exchangeResponse = await fetch(exchangeUrl.toString())
+              if (exchangeResponse.ok) {
+                const exchangeData = await exchangeResponse.json()
+                const longLivedToken = exchangeData.access_token
+                const expiresIn = exchangeData.expires_in ?? 5_184_000
+
+                await db
+                  .update(schema.account)
+                  .set({
+                    accessToken: longLivedToken,
+                    accessTokenExpiresAt: new Date(Date.now() + expiresIn * 1000),
+                  })
+                  .where(eq(schema.account.id, account.id))
+
+                logger.info('Exchanged Meta short-lived token for long-lived token', { expiresIn })
+              } else {
+                logger.warn('Failed to exchange Meta token for long-lived token', {
+                  status: exchangeResponse.status,
+                })
+              }
+            } catch (error) {
+              logger.error('Error exchanging Meta token', { error })
+            }
+          }
+
          if (isMicrosoftProvider(account.providerId)) {
            await db
              .update(schema.account)