Shopify APIs and SDKs

Important Notice: Certificate Update on myshopify.com domains.

Shopify will be making changes to the certificate used to secure subdomains of myshopify.com (eg: https://test.myshopify.com/) effective February 13, 2023. The current certificate which is being used is issued by Cloudflare via DigiCert. We will be adding in additional certificates signed by Lets Encrypt and Google Trust Services.

Note: This will not affect the certificate used for mTLS connections.

Modern browsers already support these Certificate Authorities (CA’s), so there is no concern for end users. API clients, however, may not have up-to-date CA certificate stores. It is recommended to update the CA certificate package for your application as soon as possible.

As a general rule, we also recommend updating it semi-annually to avoid any issues with secure connections to Shopify. Shopify may implement the change earlier, therefore updating your certificate stores sooner than later is highly recommended to ensure no issues for your app. The process to update CA certificates varies based on the application environment and OS, but here are some resources that may help:

1. https://packages.debian.org/sid/ca-certificates 
2. https://curl.se/docs/caextract.html 
3. Shopify Community post with some next steps specific to Let's Encrypt.
    

If you have any questions, please reach out to our Partner Support team through your Partner dashboard or via https://help.shopify.com/.
 Thank you.