I am a little new to Shopify and the available API's but have a keen interest on the availability of OpenId Connect.
Our client runs an existing Shopify site and would like to expand to a cloud (Azure) platform for future capability increase. They have built the website almost entirely using the built-in capability along with apps from the Shopify store.
We want to be able to allow single sign-on for customers that sign in via various platforms (Not just the Shopify site) and get access to their customer api-related details. We are therefore moving the customers (not the merchant) into Azure AD and would like to provide a single-sign on experience.
Can you please advise on the following:
1) Where can I find more information regarding your implementation on OpenId Connect? If I can add shopify as a trusted source and configure it for federation, I can fairly easily gain single-sign-on..in other words, I would be able to out of the box configure delegated authentication for the site running in Shopify to authenticate users that are stored in MS Azure.
2) Multipass might work but I may misunderstand something here. Multipass is a "pass-through" system where the customer details are created in Shopify but authentication runs/happens somewhere else. This would mean that I have to run code as described here: https://help.shopify.com/en/api/reference/plus/multipass to achieve the pass-through. The only problem is that the site is hosted with Shopify and, as mentioned, built with OOTB Shopify components. How can I extend this website to run the multipass code? Do I create my own App or do how can I achieve this?
3) What does this Shopify App do? https://azuremarketplace.microsoft.com/en-en/marketplace/apps/aad.shopify?tab=Overview