shopify_app 21.0.0 → 22.5.0

data/app/controllers/concerns/shopify_app/ensure_installed.rb

@@ -0,0 +1,84 @@
+# frozen_string_literal: true
+
+module ShopifyApp
+  module EnsureInstalled
+    extend ActiveSupport::Concern
+    include ShopifyApp::RedirectForEmbedded
+
+    included do
+      if defined?(ShopifyApp::LoginProtection) && ancestors.include?(ShopifyApp::LoginProtection)
+        message = <<~EOS
+          We detected the use of incompatible concerns (EnsureInstalled and LoginProtection) in #{name},
+          which leads to unpredictable behavior. You cannot include both concerns in the same controller.
+        EOS
+
+        raise message
+      end
+
+      before_action :check_shop_domain
+
+      if ShopifyApp.configuration.use_new_embedded_auth_strategy?
+        include ShopifyApp::TokenExchange
+        around_action :activate_shopify_session
+      else
+        before_action :check_shop_known
+        before_action :validate_non_embedded_session
+      end
+    end
+
+    def current_shopify_domain
+      if params[:shop].blank?
+        ShopifyApp::Logger.info("Could not identify installed store from current_shopify_domain")
+        return
+      end
+
+      @shopify_domain ||= ShopifyApp::Utils.sanitize_shop_domain(params[:shop])
+      ShopifyApp::Logger.info("Installed store:  #{@shopify_domain} - deduced from Shopify Admin params")
+      @shopify_domain
+    end
+
+    def installed_shop_session
+      @installed_shop_session ||= SessionRepository.retrieve_shop_session_by_shopify_domain(current_shopify_domain)
+    end
+
+    private
+
+    def check_shop_domain
+      redirect_to(ShopifyApp.configuration.login_url) unless current_shopify_domain
+    end
+
+    def check_shop_known
+      @shop = installed_shop_session
+      unless @shop
+        if embedded_param?
+          redirect_for_embedded
+        else
+          redirect_to(shop_login)
+        end
+      end
+    end
+
+    def shop_login
+      url = URI(ShopifyApp.configuration.login_url)
+
+      url.query = URI.encode_www_form(
+        shop: params[:shop],
+        host: params[:host],
+        return_to: request.fullpath,
+      )
+
+      url.to_s
+    end
+
+    def validate_non_embedded_session
+      return if loaded_directly_from_admin?
+
+      client = ShopifyAPI::Clients::Rest::Admin.new(session: installed_shop_session)
+      client.get(path: "shop")
+    rescue ShopifyAPI::Errors::HttpResponseError => error
+      ShopifyApp::Logger.info("Shop offline session no longer valid. Redirecting to OAuth install")
+      redirect_to(shop_login) if error.code == 401
+      raise error if error.code != 401
+    end
+  end
+end

data/app/controllers/concerns/shopify_app/shop_access_scopes_verification.rb

@@ -6,7 +6,11 @@ module ShopifyApp
     include ShopifyApp::RedirectForEmbedded
 
     included do
-      before_action :login_on_scope_changes
+      # Embedded auth strategy uses Shopify managed install to ensure latest access scopes,
+      # This will be handled automatically through token exchange
+      unless ShopifyApp.configuration.use_new_embedded_auth_strategy?
+        before_action :login_on_scope_changes
+      end
     end
 
     protected

data/app/controllers/shopify_app/authenticated_controller.rb

@@ -2,7 +2,7 @@
 
 module ShopifyApp
   class AuthenticatedController < ActionController::Base
-    include ShopifyApp::Authenticated
+    include ShopifyApp::EnsureHasSession
 
     protect_from_forgery with: :exception
   end

data/app/controllers/shopify_app/callback_controller.rb

@@ -8,49 +8,118 @@ module ShopifyApp
 
     def callback
       begin
-        filtered_params = request.parameters.symbolize_keys.slice(:code, :shop, :timestamp, :state, :host, :hmac)
-
-        auth_result = ShopifyAPI::Auth::Oauth.validate_auth_callback(
-          cookies: {
-            ShopifyAPI::Auth::Oauth::SessionCookie::SESSION_COOKIE_NAME =>
-              cookies.encrypted[ShopifyAPI::Auth::Oauth::SessionCookie::SESSION_COOKIE_NAME],
-          },
-          auth_query: ShopifyAPI::Auth::Oauth::AuthQuery.new(**filtered_params)
-        )
-      rescue
-        return respond_with_error
+        api_session, cookie = validated_auth_objects
+      rescue => error
+        if error.class.module_parent == ShopifyAPI::Errors
+          callback_rescue(error)
+          return respond_with_error
+        else
+          raise error
+        end
       end
 
-      cookies.encrypted[auth_result[:cookie].name] = {
-        expires: auth_result[:cookie].expires,
-        secure: true,
-        http_only: true,
-        value: auth_result[:cookie].value,
-      }
+      save_session(api_session) if api_session
+      update_rails_cookie(api_session, cookie)
 
-      session[:shopify_user_id] = auth_result[:session].associated_user.id if auth_result[:session].online?
+      return respond_with_user_token_flow if start_user_token_flow?(api_session)
 
-      if start_user_token_flow?(auth_result[:session])
-        return respond_with_user_token_flow
+      if ShopifyApp::VERSION < "23.0"
+        # deprecated in 23.0
+        if ShopifyApp.configuration.custom_post_authenticate_tasks.present?
+          ShopifyApp.configuration.post_authenticate_tasks.perform(api_session)
+        else
+          perform_post_authenticate_jobs(api_session)
+        end
+      else
+        ShopifyApp.configuration.post_authenticate_tasks.perform(api_session)
       end
+      redirect_to_app if check_billing(api_session)
+    end
 
-      perform_post_authenticate_jobs(auth_result[:session])
-      has_payment = check_billing(auth_result[:session])
+    private
 
-      respond_successfully if has_payment
+    def callback_rescue(error)
+      ShopifyApp::Logger.debug("#{error.class} was rescued and redirected to login_url_with_optional_shop")
     end
 
-    private
+    def deprecate_callback_rescue(error)
+      message = <<~EOS
+        An error of type #{error.class} was rescued. This is not part of `ShopifyAPI::Errors`, which could indicate a
+        bug in your app, or a bug in the shopify_app gem. Future versions of the gem may re-raise this error rather
+        than rescuing it.
+      EOS
+      ShopifyApp::Logger.deprecated(message, "22.0.0")
+    end
+
+    def save_session(api_session)
+      ShopifyApp::SessionRepository.store_session(api_session)
+    end
+
+    def validated_auth_objects
+      filtered_params = request.parameters.symbolize_keys.slice(:code, :shop, :timestamp, :state, :host, :hmac)
 
-    def respond_successfully
+      oauth_payload = ShopifyAPI::Auth::Oauth.validate_auth_callback(
+        cookies: {
+          ShopifyAPI::Auth::Oauth::SessionCookie::SESSION_COOKIE_NAME =>
+            cookies.encrypted[ShopifyAPI::Auth::Oauth::SessionCookie::SESSION_COOKIE_NAME],
+        },
+        auth_query: ShopifyAPI::Auth::Oauth::AuthQuery.new(**filtered_params),
+      )
+      api_session = oauth_payload.dig(:session)
+      cookie = oauth_payload.dig(:cookie)
+
+      [api_session, cookie]
+    end
+
+    def update_rails_cookie(api_session, cookie)
+      if cookie.value.present?
+        cookies.encrypted[cookie.name] = {
+          expires: cookie.expires,
+          secure: true,
+          http_only: true,
+          value: cookie.value,
+        }
+      end
+
+      session[:shopify_user_id] = api_session.associated_user.id if api_session.online?
+      ShopifyApp::Logger.debug("Saving Shopify user ID to cookie")
+    end
+
+    def redirect_to_app
       if ShopifyAPI::Context.embedded?
-        return_to = session.delete(:return_to) || ""
-        redirect_to(ShopifyAPI::Auth.embedded_app_url(params[:host]) + return_to, allow_other_host: true)
+        return_to = session.delete(:return_to)
+        redirect_to = if fully_formed_url?(return_to)
+          return_to
+        else
+          "#{decoded_host}#{return_to}"
+        end
+
+        redirect_to = ShopifyApp.configuration.root_url if deduced_phishing_attack?
+        redirect_to(redirect_to, allow_other_host: true)
       else
         redirect_to(return_address)
       end
     end
 
+    def fully_formed_url?(return_to)
+      uri = Addressable::URI.parse(return_to)
+      uri.present? && uri.scheme.present? && uri.host.present?
+    end
+
+    def decoded_host
+      @decoded_host ||= ShopifyAPI::Auth.embedded_app_url(params[:host])
+    end
+
+    # host param doesn't match the configured myshopify_domain
+    def deduced_phishing_attack?
+      sanitized_host = ShopifyApp::Utils.sanitize_shop_domain(URI(decoded_host).host)
+      if sanitized_host.nil?
+        ShopifyApp::Logger.info("host param from callback is not from a trusted domain")
+        ShopifyApp::Logger.info("redirecting to root as this is likely a phishing attack")
+      end
+      sanitized_host.nil?
+    end
+
     def respond_with_error
       flash[:error] = I18n.t("could_not_log_in")
       redirect_to(login_url_with_optional_shop)
@@ -78,8 +147,11 @@ module ShopifyApp
     end
 
     def perform_post_authenticate_jobs(session)
-      install_webhooks(session)
-      install_scripttags(session)
+      # Ensure we use the shop session to install webhooks
+      session_for_shop = session.online? ? shop_session : session
+
+      install_webhooks(session_for_shop)
+
       perform_after_authenticate_job(session)
     end
 
@@ -89,16 +161,6 @@ module ShopifyApp
       WebhooksManager.queue(session.shop, session.access_token)
     end
 
-    def install_scripttags(session)
-      return unless ShopifyApp.configuration.has_scripttags?
-
-      ScripttagsManager.queue(
-        session.shop,
-        session.access_token,
-        ShopifyApp.configuration.scripttags
-      )
-    end
-
     def perform_after_authenticate_job(session)
       config = ShopifyApp.configuration.after_authenticate_job
 

data/app/controllers/shopify_app/extension_verification_controller.rb

@@ -9,7 +9,10 @@ module ShopifyApp
     private
 
     def verify_request
-      head(:unauthorized) unless hmac_valid?(request.body.read)
+      unless hmac_valid?(request.body.read)
+        head(:unauthorized)
+        ShopifyApp::Logger.debug("Extension verification failed due to invalid HMAC")
+      end
     end
   end
 end

data/app/controllers/shopify_app/sessions_controller.rb

@@ -7,7 +7,7 @@ module ShopifyApp
 
     layout false, only: :new
 
-    after_action only: [:new, :create] do |controller|
+    after_action only: [:new, :create, :patch_shopify_id_token] do |controller|
       controller.response.headers.except!("X-Frame-Options")
     end
 
@@ -19,6 +19,10 @@ module ShopifyApp
       authenticate
     end
 
+    def patch_shopify_id_token
+      render(layout: "shopify_app/layouts/app_bridge")
+    end
+
     def top_level_interaction
       @url = login_url_with_optional_shop(top_level: true)
       validate_shop_presence
@@ -27,6 +31,8 @@ module ShopifyApp
     def destroy
       reset_session
       flash[:notice] = I18n.t(".logged_out")
+      ShopifyApp::Logger.debug("Session destroyed")
+      ShopifyApp::Logger.debug("Redirecting to #{login_url_with_optional_shop}")
       redirect_to(login_url_with_optional_shop)
     end
 
@@ -35,28 +41,47 @@ module ShopifyApp
     def authenticate
       return render_invalid_shop_error unless sanitized_shop_name.present?
 
+      if ShopifyApp.configuration.use_new_embedded_auth_strategy?
+        ShopifyApp::Logger.debug("Starting OAuth - Redirecting to Shopify managed install")
+        start_install
+      else
+        ShopifyApp::Logger.debug("Starting OAuth - Redirecting to begin auth")
+        start_oauth
+      end
+    end
+
+    def start_install
+      shop_name = sanitized_shop_name.split(".").first
+      unified_admin_path = ShopifyApp::Utils.unified_admin_path(shop_name)
+      install_path = "#{unified_admin_path}/oauth/install?client_id=#{ShopifyApp.configuration.api_key}"
+      redirect_to(install_path, allow_other_host: true)
+    end
+
+    def start_oauth
       copy_return_to_param_to_session
 
       if embedded_redirect_url?
+        ShopifyApp::Logger.debug("Embedded URL within / authenticate")
         if embedded_param?
           redirect_for_embedded
         else
-          start_oauth
+          redirect_to_begin_oauth
         end
       elsif top_level?
-        start_oauth
+        redirect_to_begin_oauth
       else
         redirect_auth_to_top_level
       end
     end
 
-    def start_oauth
+    def redirect_to_begin_oauth
       callback_url = ShopifyApp.configuration.login_callback_url.gsub(%r{^/}, "")
+      ShopifyApp::Logger.debug("Starting OAuth with the following callback URL: #{callback_url}")
 
       auth_attributes = ShopifyAPI::Auth::Oauth.begin_auth(
         shop: sanitized_shop_name,
         redirect_path: "/#{callback_url}",
-        is_online: user_session_expected?
+        is_online: user_session_expected?,
       )
       cookies.encrypted[auth_attributes[:cookie].name] = {
         expires: auth_attributes[:cookie].expires,
@@ -65,7 +90,10 @@ module ShopifyApp
         value: auth_attributes[:cookie].value,
       }
 
-      redirect_to(auth_attributes[:auth_route], allow_other_host: true)
+      auth_route = auth_attributes[:auth_route]
+
+      ShopifyApp::Logger.debug("Redirecting to auth_route - #{auth_route}")
+      redirect_to(auth_route, allow_other_host: true)
     end
 
     def validate_shop_presence
@@ -94,7 +122,9 @@ module ShopifyApp
     end
 
     def redirect_auth_to_top_level
-      fullpage_redirect_to(login_url_with_optional_shop(top_level: true))
+      url = login_url_with_optional_shop(top_level: true)
+      ShopifyApp::Logger.debug("Redirecting to top level - #{url}")
+      fullpage_redirect_to(url)
     end
   end
 end

data/app/controllers/shopify_app/webhooks_controller.rb

@@ -8,7 +8,7 @@ module ShopifyApp
       params.permit!
 
       ShopifyAPI::Webhooks::Registry.process(
-        ShopifyAPI::Webhooks::Request.new(raw_body: request.raw_post, headers: request.headers.to_h)
+        ShopifyAPI::Webhooks::Request.new(raw_body: request.raw_post, headers: request.headers.to_h),
       )
       head(:ok)
     end

data/app/views/shopify_app/layouts/app_bridge.html.erb

@@ -0,0 +1,17 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="utf-8" />
+    <title><%= ShopifyApp.configuration.application_name %></title>
+    <%= yield :head %>
+    <script
+      data-api-key="<%= ShopifyApp.configuration.api_key %>"
+      src="https://cdn.shopify.com/shopifycloud/app-bridge.js">
+    </script>
+    <%= csrf_meta_tags %>
+  </head>
+
+  <body>
+    <%= yield %>
+  </body>
+</html>

data/app/views/shopify_app/shared/redirect.html.erb

@@ -5,9 +5,18 @@
   <meta name="viewport" content="width=device-width, initial-scale=1" />
   <base target="_top">
   <title>Redirecting…</title>
+
+  <%
+    is_iframe = local_assigns.key?(:is_iframe) ? is_iframe : true
+    if is_iframe
+  %>
+  <meta name="shopify-api-key" content="<%= ShopifyApp.configuration.api_key %>">
+  <%= javascript_include_tag "https://cdn.shopify.com/shopifycloud/app-bridge.js" %>
+  <% end %>
+
   <%= javascript_include_tag('shopify_app/redirect', crossorigin: 'anonymous', integrity: true) %>
 </head>
-<body data-api-key="<%= ShopifyApp.configuration.api_key %>" data-shop-origin="<%= current_shopify_domain %>" data-host="<%= params[:host] %>" >
+<body>
   <%=
   content_tag(:div, nil,
     id: 'redirection-target',

data/config/locales/cs.yml

@@ -3,21 +3,3 @@ cs:
   logged_out: Odhlášení proběhlo úspěšně
   could_not_log_in: Nelze se přihlásit do obchodu Shopify
   invalid_shop_url: Neplatná doména obchodu
-  enable_cookies_heading: Zapnout soubory cookie z aplikace %{app}
-  enable_cookies_body: Pokud chcete v Shopify používat aplikaci %{app}, musíte soubory
-    cookie v tomto prohlížeči povolit ručně.
-  enable_cookies_footer: Soubory cookie umožňují, aby vás aplikace ověřila pomocí
-    dočasného uchování preferencí a osobních údajů. Jejich platnost vyprší po 30 dnech.
-  enable_cookies_action: Povolit soubory cookie
-  top_level_interaction_heading: Váš prohlížeč potřebuje ověřit aplikaci %{app}
-  top_level_interaction_body: Váš prohlížeč vyžaduje, aby si od vás aplikace, jako
-    je %{app}, nejdřív vyžádaly přístup k souborům cookie, než je pro vás Shopify
-    otevře.
-  top_level_interaction_action: Pokračovat
-  request_storage_access_heading: Aplikace %{app} potřebuje získat přístup k souborům
-    cookie
-  request_storage_access_body: Tato aplikace vám umožní ověření prostřednictvím dočasného
-    uchování vašich osobních údajů. Pokud chcete používat tuto aplikaci, klikněte
-    na tlačítko Pokračovat a povolte soubory cookie.
-  request_storage_access_footer: Platnost souborů cookie vyprší po 30 dnech.
-  request_storage_access_action: Pokračovat

data/config/locales/da.yml

@@ -3,18 +3,3 @@ da:
   logged_out: Logget ud
   could_not_log_in: Kunne ikke logge ind på Shopify-butik
   invalid_shop_url: Ugyldig butiksdomæne
-  enable_cookies_heading: Aktivér cookies fra %{app}
-  enable_cookies_body: Du skal manuelt aktivere cookies i denne browser for at kunne
-    bruge %{app} i Shopify.
-  enable_cookies_footer: Cookies lader appen godkende dig ved at gemme dine præferencer
-    og personlige oplysninger midlertidigt. De udløber efter 30 dage.
-  enable_cookies_action: Aktivér cookies
-  top_level_interaction_heading: Din browser skal godkende %{app}
-  top_level_interaction_body: Din browser kræver, at apps som f.eks. %{app} spørger
-    dig om adgang til cookies, inden Shopify kan åbne den for dig.
-  top_level_interaction_action: Fortsæt
-  request_storage_access_heading: "%{app} skal have adgang til cookies"
-  request_storage_access_body: Det lader appen godkende dig ved at gemme dine personlige
-    oplysninger midlertidigt. Klik på forsæt, og tillad cookies for at bruge appen.
-  request_storage_access_footer: Cookies udløber efter 30 dage.
-  request_storage_access_action: Fortsæt

data/config/locales/de.yml

@@ -3,20 +3,3 @@ de:
   logged_out: Erfolgreich ausgelogt
   could_not_log_in: Shopify Store Login fehlgeschlagen
   invalid_shop_url: Ungültige Shop-Domain
-  enable_cookies_heading: Cookies von %{app} aktivieren
-  enable_cookies_body: Du musst Cookies in diesem Browser manuell aktivieren, um %{app}
-    in Shopify verwenden zu können.
-  enable_cookies_footer: Mithilfe von Cookies kann die App dich authentifizieren,
-    indem deine Einstellungen und personenbezogenen Daten vorübergehend gespeichert
-    werden. Sie laufen nach 30 Tagen ab.
-  enable_cookies_action: Cookies aktivieren
-  top_level_interaction_heading: Dein Browser muss %{app} authentifizieren
-  top_level_interaction_body: Dein Browser verlangt, dass Apps wie %{app} dich um
-    Zugriff auf Cookies bitten, bevor Shopify sie für dich öffnen kann.
-  top_level_interaction_action: Weiter
-  request_storage_access_heading: "%{app} braucht Zugriff auf Cookies"
-  request_storage_access_body: Damit kann die App dich authentifizieren, indem deine
-    Einstellungen und personenbezogenen Daten vorübergehend gespeichert werden. Klicke
-    auf "Weiter" und erlaube Cookies, um die App zu verwenden.
-  request_storage_access_footer: Cookies laufen nach 30 Tagen ab.
-  request_storage_access_action: Weiter

data/config/locales/en.yml

@@ -2,14 +2,3 @@ en:
   logged_out: 'Successfully logged out'
   could_not_log_in: 'Could not log in to Shopify store'
   invalid_shop_url: 'Invalid shop domain'
-  enable_cookies_heading: "Enable cookies from %{app}"
-  enable_cookies_body: "You must manually enable cookies in this browser in order to use %{app} within Shopify."
-  enable_cookies_footer: 'Cookies let the app authenticate you by temporarily storing your preferences and personal information. They expire after 30 days.'
-  enable_cookies_action: 'Enable cookies'
-  top_level_interaction_heading: "Your browser needs to authenticate %{app}"
-  top_level_interaction_body: "Your browser requires apps like %{app} to ask you for access to cookies before Shopify can open it for you."
-  top_level_interaction_action: 'Continue'
-  request_storage_access_heading: "%{app} needs access to cookies"
-  request_storage_access_body: "This lets the app authenticate you by temporarily storing your personal information. Click continue and allow cookies to use the app."
-  request_storage_access_footer: 'Cookies expire after 30 days.'
-  request_storage_access_action: 'Continue'

data/config/locales/es.yml

@@ -3,20 +3,3 @@ es:
   logged_out: Cerrar sesión
   could_not_log_in: No se pudo iniciar sesión en tu tienda Shopify
   invalid_shop_url: Dominio de tienda inválido
-  enable_cookies_heading: Habilitar cookies de %{app}
-  enable_cookies_body: Debes habilitar manualmente las cookies en este navegador para
-    usar %{app} en Shopify.
-  enable_cookies_footer: Las cookies permiten que la aplicación te autentique almacenando
-    temporalmente tus preferencias y datos personales. Las cookies expiran al cabo
-    de 30 días.
-  enable_cookies_action: Habilitar cookies
-  top_level_interaction_heading: Tu navegador necesita autenticar %{app}
-  top_level_interaction_body: Tu navegador requiere aplicaciones como %{app} para
-    solicitarte acceso a cookies antes de que Shopify pueda abrirlo por ti.
-  top_level_interaction_action: Continuar
-  request_storage_access_heading: "%{app} necesita acceso a las cookies"
-  request_storage_access_body: Esto permite que la aplicación te autentique almacenando
-    temporalmente tus datos personales. Haz clic en continuar y permite que las cookies
-    utilicen la aplicación.
-  request_storage_access_footer: Las cookies expiran a los 30 días.
-  request_storage_access_action: Continuar

data/config/locales/fi.yml

@@ -3,18 +3,3 @@ fi:
   logged_out: Olet kirjautunut ulos
   could_not_log_in: Kirjautuminen Shopify-kauppaan ei onnistunut
   invalid_shop_url: Virheellinen kaupan verkkotunnus
-  enable_cookies_heading: Ota käyttöön sovelluksen %{app} evästeet
-  enable_cookies_body: Sinun on otettava evästeet käyttöön manuaalisesti tässä selaimessa,
-    jotta voit käyttää sovellusta %{app} Shopifyssa.
-  enable_cookies_footer: Evästeiden avulla sovellus voi todentaa sinut tallentamalla
-    asetuksesi ja henkilötietosi tilapäisesti. Ne vanhenevat 30 päivän kuluttua.
-  enable_cookies_action: Ota evästeet käyttöön
-  top_level_interaction_heading: Selaimesi täytyy todentaa %{app}
-  top_level_interaction_body: Selaimesi vaatii sovelluksia, kuten %{app}, pyytämään
-    sinulta luvan evästeiden käyttöön, ennen kuin Shopify voi avata sovelluksen.
-  top_level_interaction_action: Jatka
-  request_storage_access_heading: "%{app} edellyttää evästeiden käyttöä"
-  request_storage_access_body: Näin sovellus voi todentaa sinut tallentamalla henkilötietosi
-    tilapäisesti. Klikkaa Jatka ja salli evästeet sovelluksen käyttämiseksi.
-  request_storage_access_footer: Evästeet vanhenevat 30 päivän kuluttua.
-  request_storage_access_action: Jatka

data/config/locales/fr.yml

@@ -3,21 +3,3 @@ fr:
   logged_out: Vous êtes déconnecté(e)
   could_not_log_in: Impossible de se connecter à la boutique Shopify
   invalid_shop_url: Url invalide
-  enable_cookies_heading: Activer les cookies de %{app}
-  enable_cookies_body: Vous devez manuellement activer les cookies dans ce navigateur
-    pour utiliser %{app} dans Shopify.
-  enable_cookies_footer: Les cookies permettent à l'application de vous authentifier
-    en stockant temporairement vos préférences et informations personnelles. Celles-ci
-    expirent après 30 jours.
-  enable_cookies_action: Activer les cookies
-  top_level_interaction_heading: Votre navigateur doit s'authentifier %{app}
-  top_level_interaction_body: Votre navigateur nécessite des applications telles que
-    %{app} pour vous demander l'accès aux cookies avant que Shopify ne puisse l'ouvrir
-    pour vous.
-  top_level_interaction_action: Continuer
-  request_storage_access_heading: "%{app} a besoin d'accéder aux cookies"
-  request_storage_access_body: Cela permet à l'application de vous authentifier en
-    stockant temporairement vos informations personnelles. Cliquez pour continuer
-    et autorisez les cookies à utiliser l'application.
-  request_storage_access_footer: Les cookies expirent après 30 jours.
-  request_storage_access_action: Continuer

data/config/locales/it.yml

@@ -3,19 +3,3 @@ it:
   logged_out: Disconnessione effettuata correttamente
   could_not_log_in: Impossibile accedere al negozio Shopify
   invalid_shop_url: Dominio negozio non valido
-  enable_cookies_heading: Abilita i cookie di %{app}
-  enable_cookies_body: Devi abilitare manualmente i cookie in questo browser per poter
-    utilizzare %{app} da Shopify.
-  enable_cookies_footer: I cookie consentono all'app di autenticarti memorizzando
-    temporaneamente le tue preferenze e informazioni personali. Scadono dopo 30 giorni.
-  enable_cookies_action: Abilita i cookie
-  top_level_interaction_heading: Il tuo browser deve autenticare %{app}
-  top_level_interaction_body: Il tuo browser richiede che app come %{app} ti chiedano
-    l'accesso ai cookie prima dell'apertura automatica da parte di Shopify.
-  top_level_interaction_action: Continua
-  request_storage_access_heading: "%{app} deve accedere ai cookie"
-  request_storage_access_body: L'app potrà così autenticarti memorizzando temporaneamente
-    le tue informazioni personali. Clicca su Continua e consenti ai cookie di utilizzare
-    l'app.
-  request_storage_access_footer: I cookie scadono dopo 30 giorni.
-  request_storage_access_action: Continua

data/config/locales/ja.yml

@@ -3,15 +3,3 @@ ja:
   logged_out: ログアウトに成功しました
   could_not_log_in: Shopifyストアにログインできませんでした
   invalid_shop_url: ショップのドメインが無効です
-  enable_cookies_heading: "%{app}からのCookieを有効にする"
-  enable_cookies_body: Shopifyで%{app}を使用できるようにするためには、このブラウザのCookieを手動で有効にする必要があります。
-  enable_cookies_footer: Cookieを使用すると、各種設定や個人情報を一時的に保存することで、アプリ認証を受けることができます。30日後に有効期限が切れます。
-  enable_cookies_action: Cookieを有効にする
-  top_level_interaction_heading: お使いのブラウザを更新する必要があります%{app}
-  top_level_interaction_body: Shopifyがアプリを開けるように、ブラウザーはCookieにアクセスするための%{app}のようなアプリが必要です。
-  top_level_interaction_action: 続ける
-  request_storage_access_heading: "%{app}はCookieへのアクセス許可が必要です"
-  request_storage_access_body: Cookieを使用すると、個人情報を一時的に保存することで、アプリ認証を受けることができます。[続ける]
-    をクリックすると、アプリはCookieを利用します。
-  request_storage_access_footer: Cookieは30日後に有効期限が切れます。
-  request_storage_access_action: 続ける

data/config/locales/ko.yml

@@ -3,17 +3,3 @@ ko:
   logged_out: 성공적으로 로그아웃 되었습니다.
   could_not_log_in: Shopify 스토어에 로그인할 수 없습니다.
   invalid_shop_url: 유효하지 않은 상점 도메인
-  enable_cookies_heading: "%{app}에서 쿠키를 사용 가능"
-  enable_cookies_body: Shopify 내에서 %{app} 을 사용하기 위해 이 브라우저에서 쿠키를 수동으로 사용할 수 있습니다.
-  enable_cookies_footer: 쿠키를 사용하면 개인의 선호나 정보를 임시로 저장하여 앱에서 사용자를 인증할 수 있습니다. 쿠키는 30일
-    후에 만료됩니다.
-  enable_cookies_action: 쿠리 사용 가능
-  top_level_interaction_heading: 브라우저에서 %{app} 을 인증해야 합니다.
-  top_level_interaction_body: Shopify를 열기 전 쿠키에 엑세스하려면 %{app} 과 같은 앱 들이 브라우저에 설치되어야
-    합니다.
-  top_level_interaction_action: 계속
-  request_storage_access_heading: "%{app}에서 쿠키에 접근해야 합니다."
-  request_storage_access_body: 이를 통해 개인 정보를 임시로 저장하여 앱에서 사용자를 인증할 수 있습니다. 계속 클릭하여
-    쿠키로 앱을 사용하세요.
-  request_storage_access_footer: 쿠키는 30일 후에 만료됩니다.
-  request_storage_access_action: 계속