Integration type
eComm
What we solve
Shopify Plus merchants in regulated verticals (alcohol, cannabis, firearms, financial products, age-restricted goods) require identity verification at checkout. Merchants selling high-value goods (jewelry, luxury, electronics) need fraud-grade step-up auth. The app targets both segments with a tiered pricing model: per-verification fee for occasional IDV, flat monthly rate for high-volume merchants.
Integration architecture
1Kosmos publishes a Shopify App (listed in the Shopify App Store) that installs via OAuth into any merchant's store. The app registers two extension surfaces:
Checkout UI Extension rendered at the payment step
Shopify Function (Order Validation type) that gates order completion pending a verified IDV result
New customer onboarding flow:
Step-up auth for high-value orders:
Specific API touchpoints
Shopify → 1Kosmos:
1Kosmos → Shopify (result write-back):
Shopify webhook subscriptions registered by app:
customers/create→ trigger optional proactive verification promptorders/create→ evaluate step-up thresholdapp/uninstalled→ purge credential references
LiveID enrollment at checkout
At first verification, the customer enrolls a FIDO2 passkey tied to their BlockID verified identity. Subsequent step-up challenges (high-value orders, account changes, return requests over threshold) use WebAuthn navigator.credentials.get() inside the Checkout UI Extension iframe, completing biometric re-verification in under 3 seconds without leaving the checkout flow.
