I have a Facebook App developed with the toolkit. I currently have a CanvasIFrameBasePage embedded in another CanvasIFrameBasePage. I'm currently passing all my get parameters to the embedded iframe on load. I don't understand how to know
if this is in anyway secure. How do i verify that the person is really who they are?