HTTP/2 200
vary: Accept-Encoding
content-encoding: gzip
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", coep_report="https://www.facebook.com/browser_reporting/coep/?minimize=0", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coep\/?minimize=0"}],"group":"coep_report"}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
x-frame-options: DENY
content-security-policy: default-src blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'nonce-Sd2YpdpT' blob: 'self' connect.facebook.net 'unsafe-eval' https://www.googletagmanager.com/gtag/js https://www.googletagmanager.com https://*.google-analytics.com https://translate.google.com *.google.com gw.conversionsapigateway.com;style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline' https://fonts.googleapis.com;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' https://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com https://analytics.google.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com https://stats.g.doubleclick.net gw.conversionsapigateway.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com https://fonts.gstatic.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: *.whatsapp.net *.fb.com *.oculuscdn.com https://*.google-analytics.com https://*.googletagmanager.com https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net *.doubleclick.net *.tenor.co *.tenor.com *.giphy.com https://trustly.one/ https://*.trustly.one/ https://paywithmybank.com/ https://*.paywithmybank.com/ dc.ads.linkedin.com analytics.twitter.com t.co;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data: https://*.giphy.com;child-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://td.doubleclick.net *.google.com *.doubleclick.net https://trustly.one/ https://*.trustly.one/ https://paywithmybank.com/ https://*.paywithmybank.com/;manifest-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;object-src data: blob: 'self' https://*.fbsbx.com *.facebook.com *.fbcdn.net;worker-src blob: *.facebook.com data: 'unsafe-eval';block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
document-policy: include-js-call-stacks-in-crash-reports
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
origin-agent-cluster: ?1
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: mlPs5gFKvi4gz3qZNbf3xl2P4IKzppYunf1cBfz6DqOq6Nj+ck9OnH+BHlgjX7FOM5dQ3E+J0KDPJkQDeOxZmg==
date: Wed, 23 Jul 2025 03:08:02 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=13, rtx=0, c=10, mss=1380, tbw=3531, tp=-1, tpl=-1, uplat=1336, ullat=0
alt-svc: h3=":443"; ma=86400
Graph API Reference v23.0: Canvas Product Set - Documentation - Meta for Developers
Reading A product set inside the canvas
Starting September 14, 2021, the following fields will throw an error for version 12.0+ calls made by apps that lack the endpoint's required permissions. This change will apply to all versions on December 13, 2021.
Example PHP Business SDK cURL
use FacebookAds\Api;
use FacebookAds\Http\RequestInterface;
$params = array(
'fields' => array(
'id',
'name',
'product_set_id',
),
);
$data = Api::instance()->call(
'/' . <CANVAS_PRODUCT_SET_ID>,
RequestInterface::METHOD_GET,
$params)->getContent();
curl -G \
--data-urlencode 'fields=[
"id",
"name",
"product_set_id"
]' \
-d 'access_token=<ACCESS_TOKEN>' \
https://graph.facebook.com/v2.11/<CANVAS_PRODUCT_SET_ID>
Parameters This endpoint doesn't have any parameters.Fields Field Description id
numeric string
bottom_padding
numeric string
The padding below the element
element_group_key
string
The element group key to bundle multiple elements in editing
element_type
enum
How to render overlays over a product item
item_description
string
A token to represent which field from the product to show in the product description
item_headline
string
A token to represent which field from the product to show in the product headline
max_products
unsigned int32
Maximum number of products to show
name
string
product_set_id
numeric string
The product set id which contains a subset of products within a product catalog
retailer_item_ids
list<string>
An array of items that should be shown first in the product set element. If this is not set then products will be dynamically chosen
show_in_feed
bool
A flag that products should be shown in feed unit
top_padding
numeric string
The padding above the element
Error Codes Error Description 368 The action attempted has been deemed abusive or is otherwise disallowed 100 Invalid parameter
Creating You can't perform this operation on this endpoint.
Updating You can't perform this operation on this endpoint.
Deleting You can't perform this operation on this endpoint.
Create a Collection Ads Product Set To create a product set used in Collection ads from a set of products in Dynamic Ads:
curl
-F 'canvas_product_set={
"bottom_padding": 8,
"max_items": 50,
"name": "Collection Product Set Name",
"product_set_id": "PRODUCT_SET_ID",
"show_in_feed": true,
"item_headline": "See more at {{product.brand | titleize}}",
"item_description": "{{product.price}}",
"retailer_item_ids": [
"RETAILER_ID_1",
"RETAILER_ID_2",
"RETAILER_ID_3",
"RETAILER_ID_4",
],
"top_padding": 24
}' \
-F 'access_token=ACCESS_TOKEN' \
https://graph.facebook.com/VERSION/PAGE_ID/canvas_elements