Hey everyone,
I am building a Shopify app that has a theme app extension. From that theme app extension, I am doing some fetch requests to my server to display dynamic content to the customers using the app on the shop’s storefront. We may ask the user to authenticate themselves, and we do that by simply setting a cookie in the browser.
The issue is that whenever I do a fetch request that is handled by the App proxy, the Authorization header is stripped from the request. This is a new behavior that just started happening. Everything used to be working a couple of days ago.
The way I am doing my request is by simply doing a fetch request and adding an authorization header to it.
Below are attached screenshots of the request headers before and after they were handled by the App Proxy. We can clearly see in the second screenshot that the Authorization header isn’t there anymore. I checked the documentation of the app proxy and nowhere it says that Authorization is a disallowed header.
Is anyone facing the same issue? Any help would be much appreciated
Thank you
Before app proxy redirect
After app proxy redirect
