Request origin cannot be verified

Abhilash
Shopify Partner
55 0 3

I'm developing an app for Shopify. Currently under development stage. Until now, I have successfully managed to authorise the app and then redirect it back to admin page using the Embedded App SDK. However, when I return to the admin page, it gives me an error saying Request origin cannot be verified.

The console shows Failed to load resource: the server responded with a status of 403 (Forbidden) The URL in the console is something like this https://myshop.myshopify.com/admin/apps/dfdjf4343343434343434bfdf/shopify/shopify/callback?code=ffdf...

The fdfdfdfdfdfdfdfdfddfdfdfdfdf are just random characters that I've replaced instead of a hash. 

Alex
Shopify Staff
Shopify Staff
1555 81 294

Hey Abhilash,

I'm assuming it was you asking your question here as well where it was answered: https://stackoverflow.com/questions/47553382/request-origin-cannot-be-verified-shopify.

Let me know if you have your answer!

Cheers.

0 Likes
robin_sandhu
Tourist
8 0 0

add your app url in allowed redirection urls or in the whitelisted url like this.

http://your-app-url.com//auth/callback
https://your-app-url.com/auth/callback
http://your-app-url.com/auth/shopify/callback
https://your-app-url.com/auth/shopify/callback

mine was also not working at first but then i tried like this at it worked.also check in your shopify store that you have already installed the app or not.if yes simply refresh your page and      re-click on shopify app section then select your installed test app from there.

0 Likes
danieldixon
Tourist
3 0 0

Simple as this is, also make sure that the protocol matches from what you typed in to start the app install.

If you accidentally use `http` for `http://you.ngrok.io/` but your callback redirects to `https` (i.e. `https://you.ngrok.io/auth/callback`), the OAuth handshake will fail.

0 Likes