Authentication for External Gadget Routes?
I'm wonder if theres a nice way to implement authentication for some of my gadget HTTP routes please?
The authentication would be on a per Shopify Shop basis, however the request wouldn't be coming from the Shopify app itself, instead it would be another third party system.
Currently thinking I could just generate an api key, hash it, assign it to a new field on shopifyShop model, and each request would contain the shop id and the api key which I would verify against the hashed version on the shop model.
I'm wondering if theres any smarter way to do this please, could I make use of the roles, and or permissions system inside gadget?
The authentication would be on a per Shopify Shop basis, however the request wouldn't be coming from the Shopify app itself, instead it would be another third party system.
Currently thinking I could just generate an api key, hash it, assign it to a new field on shopifyShop model, and each request would contain the shop id and the api key which I would verify against the hashed version on the shop model.
I'm wondering if theres any smarter way to do this please, could I make use of the roles, and or permissions system inside gadget?
