i created an app, manually and the code is in my third party app backend in which i integrated third party app with shopify stores. [ working in nodejs/mongodb ]. Now when i submitting the app for review i see this check mark which i have to complete, but i don’t have an idea which it want to say how i can check it so i can submit my app for review ASAP.
Is it about frontend ? or iframe app which we shows in our shopify store after installing the app ? what || where & How to use this ?
in this image showing simple login from react, but we don’t have any special Ui to show here and we don’t want to show any thing here so What to do, how to check that part ? also what to put in below input or app url in partner dashborad :
In your first screenshot, there’s a link to the documentation for Session Tokens. Session Tokens are JWTs that represent the current session with your app.
It’s issued by the frontend, through the AppBridge. You should verify these tokens are authentic on your app’s backend.
There’s tooling to do this via Shopify’s open source Node.js project. Or you can verify the JWT using your private key and the jwt Node.js library.
Shopify is automatically checking to make sure you’re verifying these tokens, and it looks like potentially your app’s backend is not.
Regarding the second screenshot, this URL is where users should be directed to. If you manage your own OAuth handshake, you’ll want to point to your entrypoint for that. If you’re using Shopify’s managed OAuth, then you can simply point to your app’s homepage, and user will be OAuth authenticated at the point they are directed to that URL.
From that point on, just verify the user’s session via their AppBridge issued session token.
how i can check it so i can submit my app for review ASAP.
I implement embedded app with react / app brige /poloris