Why do my app need permission to orders, even without the scope?

ModiKasper
New Member
3 0 0

I'm developing a private app for Shopify, with the scopes:

  • read_products
  • read_inventory
  • read_shipping
  • read_price_rules

But when someone tries to install my app, it tells them that the app can read orders and private informations for customers. But I don't know why?

The app doesn't need access to customer data to function. Any idea how to fix this?

0 Likes
csam
Shopify Staff
Shopify Staff
131 19 21

Hi @ModiKasper 

There is customer information embedded in order information. Although your app can't directly access the customer information via the Customers API, it will still have access to customer information that is part of an order, such as name, billing/shipping address, email address and phone number. 

CS | API Support @ Shopify 
 - Was my reply helpful? Click Like to let me know! 
 - Was your question answered? Mark it as an Accepted Solution
 - To learn more visit Shopify.dev or the Shopify Web Design and Development Blog

0 Likes
ModiKasper
New Member
3 0 0

Thank you for your reply.

But I still don't understand how my current API permission scopes are related to orders?

0 Likes