感谢您的反馈!
-
用户反馈
用户反馈
网络异常,请重新提交!
重新提交
Daraz Open Platform provides a security framework to protect the sensitive business data of sellers. By default, these business data are masked according to security evaluation. Sensitive business data include:
To request access to the sensitive business data, you need to go through a review process for your application on Daraz DataMoat, a security module that is integrated with Daraz Open Platform.
Take the following steps to request sensitive data access:
1. From the list of your applications, click Manage to open the overview page of your application.
2. On the App Overview page, you can find the Sensitive Data Privilege field under the Advanced Information section.
3. Click Apply Unmask . The Access to Sensitive Data page on Daraz Datamoat is opened.
4. Follow the instructions on the Access to Sensitive Data page to obtain access to sensitive data for your application. You can also refer to the DataMoat documentation for details.
Reference
For detailed introduction to functions and security review process of Daraz DataMoat, see Daraz DataMoat Documentation .
If your application needs to access Daraz sellers' business data, your application needs to get the authorization from sellers, and you need to guide them to complete the flow of “using Daraz seller account to log in and authorize”.
Authorization strategy
Daraz Open Platform uses OAuth 2.0 protocol for user authentication and provides different authorization strategies for different application categories, which are pre-defined for the application category that your application belongs to. You can view the detailed authorization strategy for your application on the top section of the Auth Management page, including the following information:
Important
The following 2 kinds of authorization policy are applied to different APP categories:
Specify seller whitelist
If you develop an application for specific sellers, you can limit the authorization scope by specifying the seller whitelist on Daraz Open Platform, then only these sellers can authorize your application to access their business data in Daraz marketplace. After your application is deployed online, you need to provide the authorization URL to the sellers. When the sellers log in your application for the first time, they will be prompted to complete the authorization process.
Take the following steps to specify the short code of sellers who can authorize your application to access their business data.
1. Open the APP Console and click App Management -> Auth Management.
2. In the Authorization Information section, view the description of the authorization strategy for your application.
3. In the Authorized Seller Whitelist section, enter the seller account in the authorization field. Multiple seller accounts can be separated by semicolons.
4. Click Submit .
Note: If you are a third party developer and your application is open to all Daraz sellers, you only need to provide the URL of your application to the sellers when the application is deployed online. The sellers can follow the URL to complete the authorization process.
Next step
Follow the instructions in this documentation to complete seller authorization: Seller Authorization Introduction .