Expose allowed_domains on the app#7240
Closed
elanalynn wants to merge 1 commit intographite-base/7240from
Closed
Conversation
Contributor
Author
|
Warning This pull request is not mergeable via GitHub because a downstack PR is open. Once all requirements are satisfied, merge this PR as a stack on Graphite.
This stack of pull requests is managed by Graphite. Learn more about stacking. |
4 tasks
Contributor
Differences in type declarationsWe detected differences in the type declarations generated by Typescript for this branch compared to the baseline ('main' branch). Please, review them to ensure they are backward-compatible. Here are some important things to keep in mind:
New type declarationsWe found no new type declarations in this PR Existing type declarationspackages/cli-kit/dist/private/node/ui.d.ts import { Logger, LogLevel } from '../../public/node/output.js';
-import React from 'react';
import { Key, RenderOptions } from 'ink';
import { EventEmitter } from 'events';
-/**
- * Signal that the current Ink tree is done. Must be called within an
- * InkLifecycleRoot — throws if the provider is missing so lifecycle
- * bugs surface immediately instead of silently hanging.
- */
-export declare function useComplete(): (error?: Error) => void;
-/**
- * Root wrapper for Ink trees. Owns the single `exit()` call site — children
- * signal completion via `useComplete()`, which sets state here. The `useEffect`
- * fires post-render, guaranteeing all batched state updates have been flushed
- * before the tree is torn down.
- */
-export declare function InkLifecycleRoot({ children }: {
- children: React.ReactNode;
-}): React.JSX.Element;
interface RenderOnceOptions {
logLevel?: LogLevel;
logger?: Logger;
renderOptions?: RenderOptions;
}
export declare function renderOnce(element: JSX.Element, { logLevel, renderOptions }: RenderOnceOptions): string | undefined;
-export declare function render(element: JSX.Element, options?: RenderOptions): Promise<void>;
+export declare function render(element: JSX.Element, options?: RenderOptions): Promise<unknown>;
export declare class Stdout extends EventEmitter {
columns: number;
rows: number;
readonly frames: string[];
private _lastFrame?;
constructor(options: {
columns?: number;
rows?: number;
});
write: (frame: string) => void;
lastFrame: () => string | undefined;
}
export declare function handleCtrlC(input: string, key: Key, exit?: () => void): void;
export {};
packages/cli-kit/dist/public/node/ui.d.ts@@ -34,7 +34,7 @@ export interface RenderConcurrentOptions extends PartialBy<ConcurrentOutputProps
* 00:00:00 │ frontend │ third frontend message
*
*/
-export declare function renderConcurrent({ renderOptions, ...props }: RenderConcurrentOptions): Promise<void>;
+export declare function renderConcurrent({ renderOptions, ...props }: RenderConcurrentOptions): Promise<unknown>;
export type AlertCustomSection = CustomSection;
export type RenderAlertOptions = Omit<AlertOptions, 'type'>;
/**
|
vividviolet
reviewed
Apr 10, 2026
Member
vividviolet
left a comment
vividviolet
left a comment
There was a problem hiding this comment.
Could we nest these fields under app.admin instead? I think it would align with the other configs on the app toml better. I think we should do the same with static root too
isaacroldan
changed the base branch from
04-09-notify_extension_dev_server_of_app_assets_updates
to
graphite-base/7240
4 tasks
Contributor
Author
|
@isaacroldan's PR : https://app.graphite.com/github/pr/Shopify/cli/7248 covers this. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
WHY are these changes introduced?
Part 1/2 in https://github.com/shop/issues-admin-extensibility/issues/2397
Exposes
allowed_domainsin app object sent through extensions websocket so that we can construct a CSP meta tag in dev mode for static apps.WHAT is this pull request doing?
allowed_domainsfrom the admin module config on the App model and pass it through the extension dev server payloadallowed_domainsto the admin spec's transformRemoteToLocal so the field round-trips correctlyallowedDomainsthrough the previewable extension process options down to the payload storeHow to test your changes?
Step 1: Build the CLI from source
From the repo root:
Step 2: Set up a test app with
allowed_domainsYou need a Shopify app directory with a
shopify.app.tomlthat includes the admin config.The key part of the TOML is:
Step 3: Run
shopify appdev using the local CLIpnpm shopify app dev --path /path/to/your/test/appThis will:
https://some-tunnel-url.trycloudflare.comStep 4: Inspect the HTTP payload
You can open this URL in your browser:
https://<your-tunnel>.trycloudflare.com/extensionsThis returns the full JSON payload. Look for
app.allowedDomainsin the response.You can also pipe it through
jqfor readability:curl https://<your-tunnel>.trycloudflare.com/extensions | jq '.app'You should see:
{ "apiKey": "...", "title": "...", "url": "...", "mobileUrl": "...", "assets": { ... }, "allowedDomains": ["example.com", "cdn.example.com"] }Step 5: Inspect WebSocket messages
allowedDomainsChecklist
pnpm changeset add