Focuses on API authentication, access scopes, and permission management.
Hi Shopify Community,
I’m working on a Shopify app called PlusSales, and I’m currently trying to achieve Built for Shopify certification. One of the key requirements is implementing session token authentication, but I’m running into issues where Shopify still marks session token authentication as "not used", even though I’ve implemented it.
Here’s a quick overview of the situation:
Despite all this, Shopify still flags session token authentication as "not used" in the Partner Dashboard.
Is there something I’m missing in the session token authentication flow? Has anyone encountered this issue before or know of a step that I might be overlooking? Any help or guidance would be greatly appreciated!
Thanks in advance for any insights you can provide.
Solved! Go to the solution
This is an accepted solution.
Hi Axeltta,
When you did implement App Bridge, token refreshing on the front-end, and verification on the back-end? I know it can take a while for these changes to be reflected on the partner dashboard so it's possible you just need to wait a bit longer. In the meantime I've reached out to our internal team to see if there's anything you're missing - this is your app, correct? https://apps.shopify.com/plussales
Liam | Developer Advocate @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Mark it as an Accepted Solution
- To learn more visit Shopify.dev or the Shopify Web Design and Development Blog
This is an accepted solution.
Hi Axeltta,
When you did implement App Bridge, token refreshing on the front-end, and verification on the back-end? I know it can take a while for these changes to be reflected on the partner dashboard so it's possible you just need to wait a bit longer. In the meantime I've reached out to our internal team to see if there's anything you're missing - this is your app, correct? https://apps.shopify.com/plussales
Liam | Developer Advocate @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Mark it as an Accepted Solution
- To learn more visit Shopify.dev or the Shopify Web Design and Development Blog
Hey Liam, yes that is my app and you were right, it just takes a while for shopify to recognize we used Session Token Authentication.
I have another question, if we remove the use of session token authentication for a couple days for testing reasons, will shopify realize this and unmark the use of Session Token Authentication?
Thanks
Axel
Hi Axel,
Could you run tests with a staging / sandbox version of your app instead of removing session token auth off the live version? Do the tests need to be on the live?
Liam | Developer Advocate @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Mark it as an Accepted Solution
- To learn more visit Shopify.dev or the Shopify Web Design and Development Blog