I want to build an app to extend our customer's profiles, but can't seem to find a clear way to make sure the customer hitting our api is who they say they are. I found this article but its a bit dated now. Has Shopify added an easier way to authenticate customers for third party api's yet or is the another way?
Could we have an answer from Shopify on this topic? Please let us know if a solution is planned in your roadmap or if we have to reimplement customer's authentication on our own :)
It doesn't feel very tricky for you to add a HTTP_X_LOGGED_IN_CUSTOMER_ID HTTP header alongside the already existing boolean HTTP_X_LOGGED_IN_CUSTOMER, but I guess there's a reason you're not doing it?
|2 hours ago|
|6 hours ago|
|7 hours ago|