Understanding Strapi Authentication Flows with the Facebook Provider

Strapi is a headless CMS built using Node.js. It has grown in popularity and acceptance recently because of its unique plugin design pattern and flat learning curve (easy to learn). Strapi API endpoints can be consumed with any recent JavaScript front-end frameworks (Nuxt.js, Vue.js, React.js, Next.js, etc.) or even core HTML, CSS, Vanilla JavaScript, or jQuery. Strapi is one of the best options when talking about Jamstack. It ships with rich APIs to suit most of your Jamstack needs.

This is a companion discussion topic for the original entry at https://strapi.io/blog/learning-strapi-authentication-flows-with-the-facebook-provider

For authentication with facebook, ngrok is refused by facebook

consider as a malicious domain therefore does not work WHAT TO DO IN THIS CASE?