Security Overview

Shopify

Reactify Search ensures a secure integration with Shopify through the Shopify Admin API, adhering to best practices:

• Access to Shopify Admin API: Secure storage of access tokens for explicit authorisation.

• Rate Limiting and Monitoring: Adherence to API rate limits and continuous monitoring for risk mitigation.

• Shopify App and Platform Security: Compliance with Shopify's requirements, including OAuth 2.0 for authentication and adherence to data handling and privacy standards.

Functions

Leveraging Firebase Functions for serverless compute ensures secure, scalable, and efficient backend code execution. Key features include:

• Isolation: Each function operates in its own isolated environment to minimise unauthorised access.

• Automatic Scaling: Ensures performance under any load, enhancing reliability and security.

• Integrated Security: Functions seamlessly work with Firebase Auth and Firestore Security Rules.

Hosting

Firebase Hosting provides fast, secure, and reliable web hosting with a global CDN, automatic SSL certificate provisioning, and HTTP/2 support. Key features include:

• SSL by Default: Ensures all content served over the web is encrypted.

• Secure Deployment: Integrated with Cloud Build for secure and automated deployments.

Database

Firestore, a flexible and scalable database, includes security features for fine-grained access control. Key features include:

• Security Rules: Configure read/write access to collections and documents.

• Data Encryption: Encrypt data in transit and at rest for confidentiality.

• Audit Logs: Integration with Google Cloud's operations suite for monitoring and auditing.