| Clarify EnsureInstalled vs EnsureHasSession security boundary in docs
Reframe EnsureInstalled as "Installation Check Only" and EnsureHasSession
as "Authenticated Requests" to make clear that EnsureInstalled does not
authenticate the requester. Remove the misleading coupling of
EnsureInstalled = shop sessions and EnsureHasSession = user sessions —
both session types should use EnsureHasSession for authenticated actions.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
| 1 个月前 |
| Clarify flash messages
Flash messages do not work with the frontend template
You need to allow 3rd party cookies to save the flash messages to the session.
| 1 年前 |
| Update releasing docs
| 8 个月前 |
| Add deprecation warning to ShopifyApp::JWT
| 2 年前 |
| Merge branch 'main' into zl/add_expiring_offline_token_support | 5 个月前 |