FROM CACHE - en_header
Promotion image
Our Partner & Developer boards on the community are moving to a brand new home: the .dev community forums! While you can still access past discussions here, for all your future app and storefront building questions, head over to the new forums.

We're moving the community! Starting July 7, the current community will be read-only for approx. 2 weeks. You can browse content, but posting will be temporarily unavailable. Learn more

How to secure App proxy URL?

How to secure App proxy URL?

Bulxar
Shopify Partner
82 2 23
‎05-20-2021 07:36 AM

HI friends,

 

So the problem is that every one can send request to the app proxy url using for example Postman?

 

How to secure the proxy url? Even with checking HMAC signature. if you paste store proxy url in postman the request contain the needed params for validating the HMAC

 

 "shop" => ""
"path_prefix" => "/apps/app-manager"
"timestamp" => "1621510474"
"signature" => "2c1ff79fbac40e29b6489967be53751086a6d117d9292c7efa0cb81d67d19a52"

 

376 Views
0 Likes
Report
Reply 1 (1)

Bulxar
Shopify Partner
82 2 23
‎05-20-2021 08:56 AM

Shopify Experts?

Shopify Masters?

Shopify Gurus?

Shopify Monk?

358 Views
0 Likes
Report
Terms of Service Privacy Policy