Inicio Explorar Ayuda
Iniciar sesión
Dachen
/
shopify_api
3
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Explorar el Código

changes to redirect_uri copy

ShayneP hace 9 años
padre
f02a5f221f
commit
09d4f8d472
Se han modificado 1 ficheros con 2 adiciones y 2 borrados
Dividir vista Mostrar estadísticas de diff
  1. 2 2
      README.md

+ 2 - 2
README.md
Ver fichero 

@@ -55,7 +55,7 @@ ShopifyAPI uses ActiveResource to communicate with the REST web service. ActiveR
 
 
    * ``client_id``– Required – The API key for your app
 
    * ``scope`` – Required – The list of required scopes (explained here: http://docs.shopify.com/api/tutorials/oauth)
 
-   * ``redirect_uri`` – Required – The URL that the merchant will be sent to once authentication is complete. Defaults to the URL specified in the application settings and must be the same host as that URL.
 
+   * ``redirect_uri`` – Required – The URL where you want to redirect the users after they authorize the client. The complete URL specified here must be identical to one of the Application Redirect URLs set in the App's section of the Partners dashboard. Note: in older applications, this parameter was optional, and redirected to the Application Callback URL when no other value was specified.
 
    * ``state`` – Optional – A randomly selected value provided by your application, which is unique for each authorization request. During the OAuth callback phase, your application must check that this value matches the one you provided during authorization. [This mechanism is important for the security of your application](https://tools.ietf.org/html/rfc6819#section-3.6).
 
 
    We've added the create_permission_url method to make this easier, first instantiate your session object:
 
@@ -81,7 +81,7 @@ ShopifyAPI uses ActiveResource to communicate with the REST web service. ActiveR
 
 
    Before you proceed, make sure your application performs the following security checks. If any of the checks fails, your application must reject the request with an error, and must not proceed further.
 
 
-   * Ensure the provided state is the same one that your application provided to Shopify during Step 3.
 
+   * Ensure the provided ``state`` is the same one that your application provided to Shopify during Step 3.
 
    * Ensure the provided hmac is valid. The hmac is signed by Shopify as explained below, in the Verification section.
 
    * Ensure the provided hostname parameter is a valid hostname, ends with myshopify.com, and does not contain characters other than letters (a-z), numbers (0-9), dots, and hyphens.