Step 1 Provide Information
ในขั้นตอนนี้จะเป็นการตอบคำถามข้อมูลที่ทาง Lazada ต้องการ
ท่านสามารถดู “คำตอบแนะนำ” เป็นตัวอย่างได้ แต่ถ้าใช้เหมือนกับตัวอย่างทั้งหมด ทาง Lazada อาจจะไม่อนุมัติ
Step 1 Provide Information
1. General application information
a.Describe the purpose of the application
b.Provide the list of features of the application
แนะนำคำตอบ.
a. The application is warehouse management system (WMS). The application would like to get order from lazada seller center and push to WMS automatically.
b. Receiving, Picking, Packing, check inventory, reporting
2. What are the login URLs for both Staging and Production environment?
Please note following:
HTTPS (Http over TLS) is the only acceptable web app communication protocol for application login.
Please ensure the URL is valid and accessible.
If no login URL is available, please explain why and provide details regarding to the interface of the application.
จากจุดนี้ ทางระบบ Lazada จะยอมให้เชื่อมต่อ ก็ต่อเมื่อท่านใช้ HTTPS เท่านั้น
3. Which countries are the Lazada sellers/your application users selling in?
แนะนำคำตอบ
Thailand
4. Can users of your application view order information?
แนะนำคำตอบ
Can view full order detail
5. Is any data collected or processed by your application shared with 3rd parties other than Lazada sellers?
แนะนำคำตอบ
No
6. Which ports does the application listen on?
แนะนำคำตอบ
443 (ขึ้นอยู่กับ Port ของระบบที่ท่านใช้งาน)
7. Hosting environment controls:
a. Which country is your application hosted in?
b. Are you an existing Alibaba ISV and the application is hosted in Alibaba Retail Cloud? If yes, please provide the IP address.
c. If you are not an existing Alibaba ISV, what is the hosting environment? (e.g. AWS, self-owned datacenter, Alicloud, etc)
d. Is it hosted on a dedicated server or multi-tenant / shared-hosting environment?
e. Is vulnerability scanning on the servers performed periodically? If yes, how often is it?
f. Did you disable all the unused ports?
แนะนำคำตอบ
a. Thailand
b. No
c. Self-hosted (สำหรับ server ตัวเองที่ Data Center) หรือ Hosted on [CLOUD NAME PROVIDER เช่น iNET]
d. dedicated hosted ถ้า server hardware นั้น มีระบบเดียว , shared-hosting ถ้าเป็น VM
e. yes, everyday
f. yes, we do.
8. Data protection controls:
a. Do you encrypt the sensitive data in transit?
b. Do you encrypt the sensitive data at rest?
c. Where is the Lazada data stored? (i.e. in centralized DB server, or client side, or third-party DB server like salesforce.)
d. How do you prevent the data from unauthorized access?
e. What is retention policy for Lazada sensitive data?
f. What database management system is used by your application?
แนะนำคำตอบ
a. yes, we do.
b. yes, we do.
c. in centralized DB server.
d. we protect all access with JSON Web Token (JWT)
e. Immediate delete Consignee and Ship To data when order shipped
f. SQL Server 2019
9. Does your application allow the user of your application to upload any files? If yes,
a. Please list the URLs within the applications that are used to upload files.
b. Please confirm if there is any, file size and file type check is performed in file upload function
แนะนำคำตอบ
a. yes, image file.
https://molog.yourdomain.com/inbound/receiveheader?TOKEN={{token}}
https://molog.yourdomain.com/outbound/releaseheader?TOKEN={{token}}
b. File size maximum 1MB, file type only JPG
10. Please upload application's data flow diagram (less than 2M JPG file). Please ensure it shows the following:
a. The data inputs and outputs of your application;
b. Where the data is stored;
c. The actions performed on the data;
d. When the data is transferred to external party if such case exists;
e. For details, please refer to the document here.
ท่านสามารถเขียน flow ของท่านเอง หรือนำ flow ด้านล่างนี้ขึ้นไปแทนได้
จากนั้นกด Submit และรอทาง Lazada ตรวจสอบข้อมูลของท่านอีกครั้งหนึ่ง
