Authenticating customers in theme app extension

wristbands · August 8, 2023, 3:07am

Sure, first you need to follow the instructions in Add an app proxy.

Then when processing the request in your Shopify app code inside web/index.js, you can do the signature validation and access the customer ID like:

/* You'll need to first install the shopify-application-proxy-verification npm library for this import statement to work. */
import { verifyAppProxyHmac as queryHasValidSignature } from 'shopify-application-proxy-verification';

/* The existing code in index.js will be here. */

/* Process requests coming to any endpoint of your choosing. */
app.all("/your/endpoint", async (req, res) => {
  if (!queryHasValidSignature(req.query, process.env.SHOPIFY_API_SECRET)) {
    return res.status(403).json({ errorMessage: 'Request was not correctly signed by Shopify' });
  }

  const customerId = req.query.logged_in_customer_id
  if (customerId?.length === 0) {
    const errorMessage = 'Please log in before hitting endpoint'
    return res.status(401).json({ errorMessage });
  });

  /* Then, continue processing the request as needed. */
})

Topic		Replies	Views
Which Shopify Development Solution to use: Private App, Custom App, App Proxy... Store Design	7	26	August 26, 2020
How should theme app extension get session token from the online store user's logged in session Extensions Setting-Up	5	111	August 17, 2023
Getting the logged in user Id via an app proxy Store Design	17	78	September 18, 2013
Anyway I can find out customer ID of logged in customer on app proxy Store Design	5	80	June 20, 2014
Request: Proxy Apps Customer Auth Authentication	35	131	August 30, 2023

Authenticating customers in theme app extension

Related topics