-
Notifications
You must be signed in to change notification settings - Fork 366
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.
Already on GitHub? Sign in to your account
Making theme ID required to make it harder to edit a live theme #739
Conversation
@@ -28,6 +28,10 @@ var getCmd = &cobra.Command{ | |||
For more documentation please see http://shopify.github.io/themekit/commands/#get | |||
`, | |||
RunE: func(cmd *cobra.Command, args []string) error { | |||
// This is a hack to get around theme ID validation for the list operation which doesnt need it |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What would the non-hacky fix be? Would it need changes on core?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It would require making the validations of environments more variable, or requiring the user to input shop and password for this command only without it being able to be loaded from environment or config.
@tanema 馃憤 on this being marked as a breaking change in the versioning on this software. |
Should this also have a changelog entry? |
We can update the changelog when we do a release. |
@tanema Does this apply to manual commands or config env's too? But is not needed on readonly product env's? so we can still get away with "live" on sync configs
I'm assuming that means if theme ID is any non-ID , so generating boilerplate configs with "live" will fail with this change? |
I have removed the
This is correct. We want to move toward a more strict environment where it is harder to change the live theme. |
future visitor, Example flow after initial
Then using Then to update a pre-existing production environment entry and download files Before this change when manually running |
fixes #699
fixes #670
This makes a tighter constraint on the theme ID and makes the tool a lot safer for changing live themes.
Before
After
--allow-live
is passed then the tool will be able to change the live theme.Warn Checklist
I think technically this is a breaking change so it should require us to make a major version change