We've been experiencing an issue with some of our "legacy" private apps where the Offline Access Token become invalidated and cause 401 responses from the Admin API.
This has been happening without changes to our App or it's installation (eg, not changes to App settings, Access Scopes, not Uninstalled, etc..) Obviously being unable to access the API causes significant issues, we've found attempting to install the App again (without uninstalling) and then requesting the Offline Access Token will fix the issue and result in a new Token. We haven't noticed any particular patterns in usage which cause this issue.
The documentation states that Offline Access Tokens do not change unless the App is uninstalled or Access Scopes are changed (and reauthorized) so in our situation the Access Tokens should not change.
Authorizing an app multiple times with offline access returns the same access token each time.
I'm happy to provide our app, token and shop information to Shopify staff for further review. Any suggestions on how what might be causing this are appreciated.
Hey @dotdev-xxx ,
If you could provide more information about your app, the store it is installed on, and when you got the 401 errors, that would be helpful for us to troubleshoot why this is happening. You do not need to share any tokens
Feel free to DM me if you are more comfortable with sharing that information privately.
Hassain | Developer Support Specialist @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Click Accept as Solution