FROM CACHE - en_header

Authentication for Public apps without a login feature

AppsDartSupport
Tourist
7 0 1
‎09-21-2020 01:28 AM

Authentication for Public apps without a login feature

Hello Everyone. I have a scenario which i have no luck reaching to a solution so far. Please take some time and help me out here.

So the app im building doesn't contain a Login / Logout feature and its an embedded app. Its architecture is API-based (Laravel and React). I use Passport package for authentication

Now after the app installs the merchant is taken straight to the dashboard which works fine if the merchant is seeing the app in the embedded window. However if the merchant inspects the iframe element and copies the src field of that iframe and opens it in a new window, It will open for the merchant. This is a huge security breach which I need to address. 

Cheers !

Note: If u want more information about this .. let me know what u need I will provide it.

286 Views
Report
Reply 1 (1)
wiretrackio
Excursionist
21 0 3
‎07-24-2021 10:40 PM

Re: Authentication for Public apps without a login feature

Hey there. Same doubt here, not much information. How did you end up solving this?

175 Views
0 Likes
Report

Community Blog Articles

Trevor_0-1658936764652.jpeg

How you can use PayPal to accept payments and pay your Shopify bill

Connect your PayPal account to allow your customers to checkout using the PayPal gateway a...

By shopify staff Ollie Jul 28, 2022
Ollie_0-1655835122068.jpeg

Improving your online store speed

Your online store speed can enhance your store’s discoverability, boost conversion rates a...

By shopify staff Ollie Jun 30, 2022
woman-holding-mobile-phone.jpg

Optimizing Storefront for Mobile Shopping

Shopping is at our fingertips with mobile devices. Is your theme optimized to be user-frie...

By shopify staff Holly Jun 24, 2022
Terms of Service Privacy Policy