@spree/docs 0.1.5 → 0.1.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/developer/admin/admin.md +1 -1
- package/dist/developer/admin/custom-javascript.md +2 -2
- package/dist/developer/security/security_policy.md +1 -1
- package/dist/integrations/sso-mfa-social-login/admin-dashboard.md +2 -2
- package/dist/integrations/sso-mfa-social-login/storefront.md +2 -2
- package/package.json +1 -1
|
@@ -4,7 +4,7 @@ sidebarTitle: Overview
|
|
|
4
4
|
description: Learn how to customize and extend the Spree Admin Dashboard
|
|
5
5
|
---
|
|
6
6
|
|
|
7
|
-
The Spree Admin Dashboard is a full-featured administration interface for managing your e-commerce store.
|
|
7
|
+
The Spree Admin Dashboard is a full-featured administration interface for managing your e-commerce store.
|
|
8
8
|
|
|
9
9
|
<img src="/images/spree_admin_dashboard.png" alt="Spree Admin Dashboard" />
|
|
10
10
|
|
|
@@ -6,7 +6,7 @@ description: Learn how to add custom JavaScript to your Spree Admin Dashboard
|
|
|
6
6
|
|
|
7
7
|
## Extending Admin Dashboard with JavaScript
|
|
8
8
|
|
|
9
|
-
Spree Admin Dashboard can be easily extended with custom JavaScript. Most of the JavaScript in the Admin Dashboard is powered by a framework called [Stimulus.js](https://stimulus.hotwired.dev/)
|
|
9
|
+
Spree Admin Dashboard can be easily extended with custom JavaScript. Most of the JavaScript in the Admin Dashboard is powered by a framework called [Stimulus.js](https://stimulus.hotwired.dev/). It's a very simple and minimalistic framework only enhancing our server-side rendered HTML with a bit of interactivity.
|
|
10
10
|
|
|
11
11
|
### 3rd party JavaScript libraries
|
|
12
12
|
|
|
@@ -29,7 +29,7 @@ You're probably wondering why these libraries are in the `vendor` directory, and
|
|
|
29
29
|
|
|
30
30
|
That's because we're not using Node.js at all. So no Yarn or npm. We're using a different approach to manage dependencies.
|
|
31
31
|
|
|
32
|
-
We're using a tool called [Importmaps](https://github.com/rails/importmap-rails) to manage dependencies
|
|
32
|
+
We're using a tool called [Importmaps](https://github.com/rails/importmap-rails) to manage dependencies.
|
|
33
33
|
|
|
34
34
|
> **INFO:** If you want to use a different JavaScript package manager you can do so by using [jsbundling-rails](https://github.com/rails/jsbundling-rails) gem.
|
|
35
35
|
|
|
@@ -58,7 +58,7 @@ Published security advisories can be found at [GitHub Security Advisories](https
|
|
|
58
58
|
|
|
59
59
|
## Security Best Practices
|
|
60
60
|
|
|
61
|
-
Spree is built on **Ruby on Rails** which provides strong security defaults including protection against SQL injection, CSRF, and XSS. For more details on how Spree handles security in production environments, see the [Enterprise Security Overview](/user/security).
|
|
61
|
+
Spree API is built on **Ruby on Rails** which provides strong security defaults including protection against SQL injection, CSRF, and XSS. For more details on how Spree handles security in production environments, see the [Enterprise Security Overview](/user/security).
|
|
62
62
|
|
|
63
63
|
We recommend:
|
|
64
64
|
|
|
@@ -38,8 +38,8 @@ Each SSO integration needs to be scoped individually. The integration plan depen
|
|
|
38
38
|
- Each provider has unique configuration details, such as OAuth endpoints, certificates, tenant IDs, and federation settings. You’ll need to gather these to complete integration.
|
|
39
39
|
- **Existing or planned Spree customizations**
|
|
40
40
|
- Custom authentication flows, extended user models, or unique admin permissions may affect how SSO is integrated. These should be reviewed before implementation.
|
|
41
|
-
- **Spree
|
|
42
|
-
- Compatibility matters. Integration strategies can differ depending on whether you’re on the latest Spree release
|
|
41
|
+
- **Spree version**
|
|
42
|
+
- Compatibility matters. Integration strategies can differ depending on whether you’re on the latest Spree release.
|
|
43
43
|
- **Use case: single tenant vs. multi-tenant**
|
|
44
44
|
- Single-tenant stores usually need straightforward workforce SSO. Multi-tenant or SaaS-style deployments may require isolated tenant directories and more complex provisioning.
|
|
45
45
|
- **Identity governance requirements** (role-based access, just-in-time provisioning)
|
|
@@ -39,8 +39,8 @@ Each storefront integration must be scoped individually. Consider the following:
|
|
|
39
39
|
- Decide whether you only want to add social login on top of Spree’s existing authentication or fully replace it with a unified SSO + social login solution.
|
|
40
40
|
- **Existing or planned Spree customizations**
|
|
41
41
|
- Customized signup flows, checkout flows, or customer segmentation logic may impact integration design. These need to be factored in during scoping.
|
|
42
|
-
- **Spree
|
|
43
|
-
- Ensure compatibility with your Spree
|
|
42
|
+
- **Spree version**
|
|
43
|
+
- Ensure compatibility with your Spree version. Older projects may need adjustments to take advantage of newer identity management features.
|
|
44
44
|
- **Identity governance requirements** (segmentation, customer role-based access)
|
|
45
45
|
- **User lifecycle management** (account creation, deactivation, syncing)
|
|
46
46
|
- **Security posture** (MFA for customers, adaptive login, fraud detection)
|