Each permission has its own set of requirements and usage that are subject to our Platform Policies and your own privacy policy. All permissions, except the Default Public Profile fields, require Facebook Login and Client OAuth Login enabled for your app to allow Users or Pages to grant your app these permissions.
Instagram Platform | Live Video API | Messenger Platform |
instagram_basicRequires App Review.
The instagram_basic permission allows your app to read an Instagram account profile's info and media.
instagram_content_publishRequires App Review.
The instagram_content_publish permission allows your app to create organic feed photo and video posts on behalf of a business user.
instagram_manage_commentsRequires App Review.
The instagram_manage_comments permission allows your app to create, delete and hide comments on behalf of the Instagram account linked to a Page. Your app can also read and respond to public media and comments that a business has been photo tagged or @mentioned in.
instagram_manage_insightsRequires App Review.
The instagram_manage_insights permission allows your app to get access to insights for the Instagram account linked to a Facebook Page. Your app can also discover and read the profile info and media of other business profiles.
publish_videoRequires App Review.
Grants an app permission to publish live videos to the app User's timeline.
Live video streaming to a User's timeline.
Streaming of advertisements, or any content which does not meet Facebook's content policies.
pages_messagingRequires App Review.
The pages_messaging permission allows your app to manage and access Page conversations in Messenger. The allowed usage for this permission is to create user-initiated interactive experiences, send customer support messages or to confirm bookings or purchases and orders. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).pages_user_genderRequires App Review.
The pages_user_gender permission allows your app to access a user's gender through the Page your app is connected to. The allowed usage for this permission is to personalize the experience of people interacting with your Messenger integration. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).pages_user_localeRequires App Review.
The pages_user_locale permission allows your app to access a user's locale through the Page your app is connected to. You can use this permission to personalize the experience of people interacting with your Messenger integration. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).pages_user_timezoneRequires App Review.
The pages_user_timezone permission grants your app access to a user's time zone through the Page your app is connected to. You can use this permission to personalize the experience of people interacting with your Messenger integration. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).ads_managementRequires App Review.
The ads_management permission allows your app to both read and manage the Ads account it owns, or has been granted access to, by the Ad account owner.
Allowed Usage
ads_readRequires App Review.
The ads_read permission allows your app to access the Ads Insights API to pull Ads report information for Ad accounts you own or have been granted access to by the owner or owners of other ad accounts through this permission. This permissions also grants your app access to the Server-Side API to allow advertisers to send web events from their servers directly to Facebook.
attribution_readRequires App Review.
The attribution_read permission grants your app access to the Attribution API to pull attribution report data for lines of business you own or have been granted access to by the owner or owners of other lines of business. The allowed usage for this permission is to provide the ability for your app to access ads performance data from attribution for use in custom dashboards and data analytics. Note: Requires the ads_read and business_management permissions to work correctly. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
business_managementRequires App Review.
The business_management permission allows your app to read and write with the Business Manager API.
catalog_managementRequires App Review.
The catalog_management permission allows your app to create, read, update and delete business-owned product catalogs that the user is an admin of. The allowed usage for this permission is to build commerce-related solutions for ecommerce platforms, travel platforms and dynamic ads. It can also be used to build inventory type management solutions like product inventory, hotel inventory or car inventory. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
To be update your catalog your submission must include business_management or your app must have been approved for business_management in a previous submission.
leads_retrievalRequires App Review.
The leads_retrieval permission allows your app to retrieve and read all information captured by a lead ads form associated with an ad created in Ads Manager or the Marketing API.
manage_pagesOn May 5, 2020, we released six new Page permissions to replace the manage_pages and publish_pages permissions.
Please visit our V7.0 Blog post, Graph API Changelog, and Pages API Overview for more information.
Requires App Review.
The manage_pages permission allows your app to retrieve Page Access Tokens for the Pages and apps that the app user administers.
pages_manage_adsRequires App Review.
The pages_manage_ads permission allows your app to manage ads associated with the Page. The allowed usage for this permission is to create and manage ads for the Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_manage_ctaRequires App Review.
The pages_manage_cta permission allows your app to carry out POST and DELETE functions on endpoints used to manage call-to-action buttons on a Facebook Page.
pages_manage_engagementRequires App Review.
The pages_manage_engagement permission allows your app to create, edit and delete comments posted on the Page. If you have access to pages_read_user_content, you can also use pages_manage_engagement to delete comments posted by other Pages. It also allows your app to create and delete your own Page's Likes to Page content. The allowed usage for this permission is to help manage and moderate content on the Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_manage_instant_articlesRequires App Review.
The pages_manage_instant_articles permission allows your app to manage Instant Articles on behalf of Facebook Pages administered by people using your app.
pages_manage_metadataRequires App Review.
The pages_manage_metadata permission allows your app to subscribe and receive webhooks about activity on the Page, and to update settings on the Page. The allowed usage for this permission is to help a Page Admin administer and manage a Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_manage_postsRequires App Review.
The pages_manage_posts permission allows your app to create, edit and delete your Page posts. If you have access to pages_read_user_content, you can also use pages_manage_posts to delete Page posts created by a user. The allowed usage for this permission is to create and delete content on a Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_read_engagementRequires App Review.
The pages_read_engagement permission allows your app to read content (posts, photos, videos, events) posted by the Page, read followers data (including name, PSID), and profile picture, and read metadata and other insights about the Page. The allowed usage for this permission is to help a Page Admin administer and manage a Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_read_user_contentRequires App Review.
The pages_read_user_content permission allows your app to read user generated content on the Page, such as posts, comments, and ratings by users or other Pages, and to delete user comments on Page posts. It also allows your app to read posts that the Page is tagged in. The allowed usage for this permission is to read user's and other Page’s content posted on the Page if you need it to help manage the Page. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
pages_show_listDoes not require App Review.
The pages_show_list permission allows your app to show the list of the Pages that a person manages.
publish_pagesOn May 5, 2020, we released six new Page permissions to replace the manage_pages and publish_pages permissions.
Please visit our V7.0 Blog post, Graph API Changelog, and Pages API Overview for more information.
Requires App Review.
The publish_pages permission allows your app to publish posts, comments and like Pages managed by the app user.
read_insightsRequires App Review.
The read_insights permission allows your app to read the Insights data for Pages, apps and web domains the person owns.
Does not require App Review.
Grants your app access to the default fields of the User object that are a subset of a person's public profile:
idfirst_namelast_namemiddle_namenamename_formatpictureshort_nameemailDoes not require App Review.
The email permission allows your app to read an person's primary email address.
groups_access_member_infoRequires App Review.
The groups_access_member_info permission allows your app to read publicly available group member information like name and ID if the post author has granted your app access.
publish_to_groupsRequires App Review.
The publish_to_groups permission allows your app to post content into a Group on behalf of a person if they've granted your app access.
user_age_rangeRequires App Review.
Grants an app permission to access a person's age range.
Your app includes content that is legally required to be age-gated, for example, gambling, gaming, or alcohol.
Your app includes content that is not suitable for the general Facebook audience, such as dating, mature, graphic, or violent content.
Your application includes content that is directed at kids or teens.
No visible impact to the User experience based on a person's age range.
user_birthdayRequires App Review.
The user_birthday permission allows your app to read a person's birthday as listed in their Facebook profile.
user_friendsRequires App Review.
The user_friends permission allows your app to get a list of a person's friends using that app. The allowed usage for this permission is to provide Facebook-related content to personalize a person's experience. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
user_genderRequires App Review.
Grants an app permission to access a person's gender.
Correctly render pronouns in certain languages, for example, when a bot messages a person.
Display a person's gender to other people, for example, for dating.
Personalized a User's experience based on gender, for example, in shopping or fashion.
No visible impact to the user experience based on gender.
Fill out a registration form or User profile without using the information to enhance the User experience.
user_hometownRequires App Review.
The user_hometown permission allows your app to read a person's hometown location from their Facebook profile.
user_likesRequires App Review.
The user_likes permission allows your app to read a list of all Facebook Pages that a user has Liked. The allowed usage for this permission is to provide a personalized experience by correlating or surfacing content related to the person's Likes. This includes curating content at scale to customize apps with large amounts of content, and enabling people to share their Likes with others, for example in dating and music apps. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).
user_linkRequires App Review.
The user_link permission allows your app to access the Facebook profile URL of the person using your app.
user_locationRequires App Review.
The user_location permission allows your app to read the city name as listed in the location field of a person's Facebook profile.
user_photosRequires App Review.
The user_photos permission allows your app to read the photos a person has uploaded to Facebook.
user_postsRequires App Review.
The user_posts permission allows your app to access the posts a person has made on their timeline, but not the comments on those posts.
user_videosRequires App Review.
The user_videos permission allows your app to read a list of videos uploaded by a person.
whatsapp_business_managementRequires App Review.
The whatsapp_business_management permission allows your app to read and/or manage WhatsApp business assets you own or have been granted access to by other businesses through this permission. These business assets include WhatsApp business accounts, phone numbers and message templates. The allowed usage for this permission is to display WhatsApp Business Account analytics in your customer portal or to manage message templates for WhatsApp Business Accounts. You may also use this permission to request analytics insights to improve your app and for marketing or advertising purposes, through the use of aggregated and de-identified or anonymized information (provided such data cannot be re-identified).