Focuses on API authentication, access scopes, and permission management.
We just spent upwards of 30 minutes chasing an issue with expired OAuth tokens and then the authorization process kicking us out of the app, with an error about Third-Party cookies. This issue occurred across a variety of independent stores and apps (shared code, all the same system), then resolved itself magically. Was this a fluke in the OAuth system or a lurking issue with our system? Any thoughts about the former would be appreciated.