private function getAppSecretProof() { $access_token = $this->session->getAccessToken(); return hash_hmac('sha256', $access_token->getPlain(), $access_token->getApp()->getSecret()); }