I am having a problem with a Facebook app.

I am following the Facebook Developer tutorial and am using the following code.



$app_id = "MY_APP_ID";

$canvas_page = "MY_APP_CANVASURL";

$auth_url = "http://www.facebook.com/dialog/oauth?cl… 
. $app_id . "&scope=email, user_about_me, publish_stream, publish_actions, manage_notifications&redirect_uri=" . urlencode($canvas_page);

$signed_request = $_REQUEST["signed_request"];

list($encoded_sig, $payload) = explode('.', $signed_request, 2); 

$data = json_decode(base64_decode(strtr($payload… '-_', '+/')), true);

if (empty($data["user_id"])) {
echo("<script> top.location.href='" . $auth_url . "'</script>");
} else {
echo ("Welcome User: " . $data["user_id"]);

When I access the app it all works fine until after I allow permissions. When the app redirects it keeps redirecting with a new code each time.

I have to manually leave the app and open it again. Has anyone else encountered this and most importantly can anyone else help me fix this issue?