Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to turn off "Use Strict Mode for Redirect URIs" in facebook app

Tags:

facebook

oauth

sitecore

sitecore-social-connected

Is there any way to turn off the option Use Strict Mode for Redirect URIs in a Facebook app? It seems that as of March 2018 this property automatically is turned on and is greyed out so cannot be disabled. Facebook seems to disallow authentication unless the exact URL is mentioned in Valid OAuth Redirect URIs. This is a problem because the Sitecore Social Connected module seems to pass in a different state parameter in the query string each time you log in. I have tested using the Redirect URI Validator in the Facebook app and this confirms that the redirect must be exactly as per Valid OAuth Redirect URIs.

like image 415
Matthew Dresser Avatar asked Mar 21 '18 16:03

Matthew Dresser

People also ask

How do I turn off use strict mode for redirect Uris on Facebook?

Due to the security changes made to Facebook, it's no longer possible to turn off this setting. If you are using HTTPS, you will need to enter the URI with the port number as well i.e. This last point is not related to the recent Facebook app changes. Save this answer.

How do I redirect a URL on Facebook app?

In the Client OAuth Settings section, enter the Valid OAuth redirect URI. The Valid OAuth redirect URL can be found in the plugin's settings, next to the Facebook App Settings.

What is authorized redirect Uris?

A redirect URI, or reply URL, is the location where the authorization server sends the user once the app has been successfully authorized and granted an authorization code or access token.

1 Answers

Is there any way to turn off the option Use Strict Mode for Redirect URIs in a Facebook app?

NO

Due to the security changes made to Facebook, it's no longer possible to turn off this setting.

Regarding specifics of Sitecore and the Social Connected module, I found from @CBroe's comments that the Valid OAuth Redirect URIs now needs to contain a query string parameter as follows:

http://example.com/layouts/Social/Connector/SocialLogin.ashx?type=access

previously I just had

http://example.com/layouts/Social/Connector/SocialLogin.ashx

If you are using HTTPS, you will need to enter the URI with the port number as well i.e.

https://example.com:443/layouts/Social/Connector/SocialLogin.ashx?type=access

This last point is not related to the recent Facebook app changes.

like image 114
Matthew Dresser Avatar answered Oct 20 '22 23:10

Matthew Dresser
Sign in to Comment

Related questions

iOS 8.3 SLComposeViewController Facebook bug
SLComposeViewController post both image and url ios9
Specify privacy when POSTing to Facebook Graph API
How can I authenticate to my applications webservice after using Facebook SSO on Android?
Design patterns for social networking site like facebook? [closed]
"Protocols, domains, and ports must match" problems
Angular 2 - Share page URL, Title, and Description on Facebook
iOS Development: How can I force a UIWebView to load the non-mobile version of Facebook?
Should I use Javascript SDK or PHP SDK for facebook connect in website
Error 102 (net::ERR_CONNECTION_REFUSED): The server refused the connection [closed]
Potential security issue with Facebook login? [closed]
Add custom name, caption, image, description to new facebook share dialog or custom stories not taking them from og meta
What are the potential problems with exposing the Facebook API secret?
PHP Curl CURLOPT_IPRESOLVE
How to add facebook login to my own website?
How does Facebook auto display the image in the right size depending on user screens?
Fetching third party posts from the Facebook Graph API
How can I get all photos in one post using Graph API?
iOS application using Facebook -- rejected
How to Link Multiple Auth Providers to an Firebase Account?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!