Zid Docs
  1. Outdated
Zid Docs
  • Merchant API
    • Start Here 🚀
    • Overview to Zid Apps
    • Authorization
    • Responses
    • Webhooks
    • Rate Limiting
    • APIs
      • Orders
        • Update Order by ID
        • Get Order Credit Notes
        • Get Order by ID
        • List of Orders
      • Reverse Orders
        • Reverse Order Reasons
        • Create Reverse Orders
        • Create Reverse Orders Waybill
        • Add Reverse Order Reasons
      • Carts
        • Get Abandoned Cart Details
        • List Abandoned Carts
      • Products
        • Managing Products
          • Get a Product by ID
          • Retrieve a list of products
          • Create a new product
          • Update an existing product.
          • Bulk update of products using their IDs or SKUs
          • Delete a product.
          • Product Setting
          • List Product Reviews
        • Digital Vouchers
          • Product Vouchers
          • Order Voucher
          • Add Product Voucher
          • Import Vouchers
          • Export Vouchers
          • Update Product Voucher
          • Remove Product Voucher
        • Product Categories
          • Get Single Category Details
          • Get all categories
          • Create Store Category
          • Update a Store Category
          • Add a product to a certain category
          • Publish/Unpublish a Category
          • Detach Category from All Products
          • Remove Category from Product
        • Product Badge
          • Product Badge
        • Product Attributes
          • Get Product Attributes
          • Get Product Attributes
          • Retrieve a product attribute
          • Add a New Product Attribute
          • Add a New Product Attribute
          • Update a product attribute
          • Delete a product attribute
        • Product Attribute Presets
          • Get attribute presets
          • Create Attribute Preset
          • Update Attribute Preset
          • Delete an attribute preset
        • Product Customizations
          • Add Product Variants
          • Insert Custom Options to a Product
          • Insert Custom User-Input Fields to a Product
        • Product Manual Sorting
          • Set Custom Product Order
          • Reset the manual sorting of all products
        • Product Images
          • Get List of images of a product.
          • Add an image to a product
          • Update a product Image Order
          • Delete a product image
        • Product Notifications
          • Availability Notification Stats
          • Availability Notifications Settings
          • List Availability Notifications
          • Add Availability Notification
          • Save Availability Notifications Settings
          • Manually Send Availability Notification Email
          • Export Availability Notifications
        • Product Import
          • Email All Products to Store Owner
          • Import Products via CSV or xlsx File
        • Product Stock (Multi-Inventory)
          • Get Product Stock by ID
          • List Product Stocks
          • Add Product Stock
          • Update Single Product Stock
          • Bulk Update Product Stocks
        • Product Questions & Answers
          • Get Question
          • Get Answer
          • Get All Questions
          • List Question Answers
          • Create Question
          • Create Answer
          • Update Question
          • Update Answer
          • Delete Question
          • Delete Answer
        • Product Reviews
          • List Reviews
          • New Reviews Total
          • Change Review Status
          • Bulk Change all Review Statuses
          • Delete Review
          • Import Product Reviews
          • Reply to Review
          • Delete Reply
          • Update Reply to Review
        • Digital Products
          • Create Downloadable Product
          • Generate an Upload URL
          • Upload File to S3
          • Create Product Downloadables
          • Get Product Downloadables
          • Delete Product Downloadables
          • Get Store Downloadables
          • Create Store Downloadables
          • Delete Store Downloadables
      • Inventories
        • Get Store Location by ID
        • List Store Locations
        • Add a New Location
        • Update a Location by ID
        • Update Products Stock by Location ID
      • Shipping
        • List Store Delivery Options
        • Add Shipping Option
      • Marketing
        • Gift Cards
          • Get Store Settings
          • Add gift card to the cart
          • Update Store Settings
          • Upload gift card designs
          • Remove gift card from the cart
        • Coupons
          • Create a New Coupon
          • List Coupons
          • Get Coupon Details
          • Update Coupon
          • Delete Coupon
        • Bundle Offers
          • Retrieve all Bundle Offers
        • Loyalty Program
          • Customer Wallet
          • Customer Points
          • Loyalty Program Points per Order
          • Store Loyalty Status
          • Redemption Methods
          • Cashback Rules
          • Add Redemption to Cart
          • Remove Redemption from Cart
          • Info Page
          • Loyalty Program Activation
          • Loyalty Status
          • Set Points Expiration
          • Cashback Rule Method Update
          • Cashback Rule Method Update Status
          • Add Points Redemption Method
          • Update Points Redemption Method
          • Delete Points Redemption Method
          • Toggle Redemption Method Status
          • Show Loyalty Points Info for Specific Customer
          • Customer Profile
          • List Data
          • Customer Points History
          • Info Page - Managers
          • Update Info Page
          • Adjust Customer Points
      • Customers
        • List of Customers
        • Get Customer by ID
      • Store Settings
        • 📄 User Roles and Permissions
        • Get Manager's Profile
        • Get VAT Settings
        • List of Payment Method
      • Countries and Cities
        • Retrieve Store Operating Countries
        • Retrieve Cities by Country ID
        • Countries List
      • Webhook
        • List of Webhooks
        • Create a Webhook
        • Delete a Webhook by OriginalId
        • Delete a Webhook by Subscriber
    • Store Events
      • Order
      • Product
      • Abandoned Cart
      • Customer
      • Product Category
  • App API
    • Create your First App
    • Embedded Apps
    • App Scripts
    • App Events
    • App Subscription
      • Get Subscription Details
      • Update Usage-Based Charges
  • Themes
    • 🚨 Important Update: Zid Themes
    • Adding Video URL Feature to Third-Party Themes
    • Landing Page Development
    • Getting Started with Zid Themes
      • Introduction to Theme Development
      • Manage your Themes
      • Building Themes in Zid
      • Theme File Structure
      • Twig Syntax and Features
      • Zid Theme Packager
    • Templates
      • Layout
      • Home Page
      • Products
      • Cart
      • Store Language and Currency
    • Settings Schema
      • Text
      • Number
      • Text-Area
      • Select
      • Radio Buttons
      • Checkbox
      • Range
      • Color
      • Image
      • Product
      • Category
      • List
      • Fieldset
    • Code Snippets
      • Apple Pay Quick Checkout
      • Custom CSS Injection
      • Displaying the Store's Business Center Logo
      • Customizing Copyright Text
      • Store's Main Navigation Menu
      • Customer Wishlist
      • Products
        • Products Badges
        • Product Ratings
        • Remaining Product Stock
        • Sold Items Count
        • Product Filtration by Attributes
        • Grouped Products
        • Product Questions & Answers
        • Product Restock Notfication
      • SEO
        • Images alt text
        • Themes SEO Marketing Tags
      • Marketing
        • Metafields
        • Gift Feature
        • Loyalty Program
    • Zid Themes Library: API Integration
      • Products
      • Product Categories
      • Cart
      • Blog
      • Customer
      • Store Settings
    • Data Reference
      • Locals
      • Store
      • Cart
      • Product
      • Products List
      • Category
      • Categories List
      • Session
      • FAQs
      • Customer
      • Blogs
      • Page
      • Main Menu
      • Main Navigation Menu
      • Request
      • Orders
      • Addresses
      • Store Payment Methods
      • Store Shipping Methods
      • Store Banks
      • Asset URL
      • Header Meta Tags
      • Loyalty pogram Wallet
    • Themes CLI
      • CLI Authentication
      • Theme Create
      • Theme Package
      • Theme Update
      • Themes List
      • Theme Preview
  • Outdated
    • The Products Catalog View for Customers vs Managers
    • Multi-Inventory
    • Guest Checkout
    • Migrate to OAuth 2.0
    • App Scripts
    • Templates and Data
    • Settings Schema
    • Enforcing TLS 1.2 or above
    • Rough- Authorization
    • Shipping APIs
      • Shipping APIs Introduction
      • APIs
        • Add Shipping Option
        • Create a Webhook
        • Update Order Status
        • Retrieve Countries & Cities
    • Carts
      • Get cart details
      • Add a Product Variant to Cart
    • Theme Backup
    • Internal API's
      • App Scripts Copy
      • Customer Wishlist
        • Get Wishlist
        • Add products to wishlist
        • Delete Product from Wishlist
        • Get Share Link
      • Qitaf Integration
        • Send OTP
        • Reedeem Points
        • Reverse Redeem Points
      • Get Order by ID
    • App Scripts
      • Create a new script
      • Retrieve all scripts for a single store
      • Update a script
      • Remove a script
    • App Events
      • Active
      • Warning
      • Suspended
      • Expired
      • Renew
      • Upgrade
      • Refunded
      • Install
      • Uninstall
      • Rated
      • Request
      • Authorized
    • Migrate old tokens to OAuth 2.0
      POST
    • Get an Inventory Address by its ID.
      GET
    • List Inventory Addresses
      GET
    • Rough
      GET
  1. Outdated

Enforcing TLS 1.2 or above

Why Enforcing TLS 1.2 or Above is Critical for App Security#

To ensure the highest level of security for our customers, we are enforcing that all URLs used for webhooks and OAuth apps to support TLS 1.2 or above.
TLS (Transport Layer Security) is a protocol that encrypts data between a user and a server, protecting it from interception or tampering. By requiring TLS 1.2 or higher, we can ensure secure encryption that defends against modern attacks, protecting sensitive data such as API keys, tokens, and customer data.

Why This Matters#

Avoiding Known Vulnerabilities: Versions of TLS below 1.2 have known vulnerabilities that can be exploited by attackers, such as the BEAST and POODLE attacks.
Enhanced Security: TLS 1.2 and above provide stronger encryption, making it significantly harder for attackers to decrypt or modify data.
Data Integrity: All information transmitted is kept intact, ensuring no tampering.
Compliance: Many security and data privacy regulations require the use of up-to-date TLS versions, making it important for apps to comply.

How This Will work?#

From Zid side, we will validate all URLs submitted that it does support TLS 1.2 or above. If not, a validation error will be returned.
When sending a webhook, our agent will send the request with minimum TLS version 1.2 expected from the target server. If not supported by the target server, the request will fail automatically.

How Do I Check My Domain TLS support?#

You can use free online services such as https://www.cdn77.com/tls-test, simply add your domain, and click Test Now. With correct setup the test result would show (TLS 1.2 & TLS 1.3) enabled.
using a curl request

Enabling TLS 1.2 or Higher on Common Platforms#

To ensure your app complies with these requirements, you can follow these official guides for enabling TLS 1.2 and above on popular services:
Cloudflare: https://developers.cloudflare.com/ssl/edge-certificates/additional-options/minimum-tls/
AWS CloudFront: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValues-security-policy
Nginx: https://nginx.org/en/docs/http/configuring_https_servers.html
If you're using other systems to serve requests for your service, you can reach out to your provider or system adminstrator to help insure you're adhering to industry best practices.
By enforcing this policy, we protect both your data and the data of your customers from potential breaches or exposure.
Modified at 2025-03-12 20:59:45
Previous
Settings Schema
Next
Rough- Authorization
Built with