We created an app via Facebook to enable the "login with Facebook" option for our church online experience, and when logging in to our developer account recently I noticed some changes. I'm getting a red "x" by the Privacy Policy URL field letting me know this is a required field.
I'm also seeing a warning message: In March, we're making a security update to your app settings that will invalidate calls from URIs not listed in the Valid OAuth redirect URIs field below.This update comes in response to malicious activity we saw on our platform, and we want to protect your app or website by requiring a new strict mode for redirect URIs.
Anyone have any insights? I"m not sure how to generate a Privacy Policy URL for the first issue and for the second issue I'm wondering if I should be enabling strict mode?