Shopify_app: GDPR Mandatory Webhooks

Created on 3 Apr 2019  路  4Comments  路  Source: Shopify/shopify_app

I'm confused how we're supposed handle these Webhooks. If I add

  config.webhooks = [
    {topic: 'shop/redact', address: 'https://example-app.com/webhooks/shop_redact'}
  ]

I get

ShopifyApp::WebhooksManager::CreationFailed (Topic Invalid topic specified.

Then i read here that you don't have to register these webhooks?

How do i handle the delete request? Is it as simple as creating

class ShopRedactJob < ActiveJob::Base
  def perform(shop_domain:, webhook:)
    shop = Shop.find_by(shopify_domain: shop_domain)
    shop.destroy()
  end
end

and shopifyapp will verify the request and preform the job?

Thanks!

Most helpful comment

@kevinhughes27 why not fix the documentation which is unclear in this area. Notice how there are many issues relating to the webhooks; probably a good indication that the documentation is poor in this area.

All 4 comments

Hi Robbie. Support requests like this should go through our API & SDK Forums.

@robbyklein you've found a bit of a confusing gap between the Shopify documentation and what this framework can do for you.

The GDPR webhooks are registered in the partner dashboard so you don't need to re-regiester them. If you configure the webhook to send to the /webhooks/shop_redact endpoint then the generic webhook handler controller will forward it to the job you've written above. Have a look at the Webhook controller to see how it works.

I hope that makes sense.

@kevinhughes27 why not fix the documentation which is unclear in this area. Notice how there are many issues relating to the webhooks; probably a good indication that the documentation is poor in this area.

Does those webhooks works the same as others ?

Am thinking mainly about the embedded hmac verification & the job name mapping convention

Was this page helpful?
0 / 5 - 0 ratings