[seanalltogether]

Honestly I'm not sure. Facebook's crossdomain policy disallows access from external domains, so you can't load this from a random Flash or JS script.

[gibybo]

Hm, I think you can still invoke it jsonp style and overload the Object constructor in older browsers though, right? This would not only tell you whether they were a FB employee, but perhaps more importantly, their facebook UID without needing them to agree to any OAuth access.

[dbloom]

That only works if it's surrounded by parenthesies. A bare object literal is not syntactically valid JavaScript.

[sxtxixtxcxh]

i think jquery can deal with a straight json response, but i may be wrong.