This document discusses creating a backdoor for Facebook accounts without scripting. It explains how to request permissions from a user's Facebook account by redirecting them to a URL that requests email, read stream, offline access, and publish stream permissions. It then shows how to get an access token by using an app ID and secret to act as a vendor. Finally, it demonstrates getting an access token by redirecting the user to a URL that returns the token, allowing the app to act as the user.