FROM CACHE - en_header
Promotion image
Our Partner & Developer boards on the community are moving to a brand new home: the .dev community forums! While you can still access past discussions here, for all your future app and storefront building questions, head over to the new forums.

We're moving the community! Starting July 7, the current community will be read-only for approx. 2 weeks. You can browse content, but posting will be temporarily unavailable. Learn more

Running graphql on Shopify Flow action

Solved

Running graphql on Shopify Flow action

Hirano_00
Shopify Partner
86 10 15
‎12-12-2023 07:14 AM

Has anyone tried to run a Graphql query on Shopify Flow action?

Below is from action.jsx code:

export const action = async ({request}) => {
  const { admin } = await authenticate.admin(request);
  const body = await request.json();
  return json({body});
}
 

I got status 410 error.

I need to validate a request, but I don't know how to do that.
https://shopify.dev/docs/apps/flow/actions/create-an-action#verifying-requests

Labels:
1,545 Views
0 Likes
Report
Accepted Solutions (2)

Hirano_00
Shopify Partner
86 10 15
‎12-14-2023 06:48 AM

This is an accepted solution.

The following code could be used to do this.

Note that the route of the process to be called should be under app.

Example: app-directory/app/routes/app/api/action.js

 

Otherwise, Graphql will not be authenticated and the error "[API] Invalid API key or access token (unrecognized login or wrong password)" will occur.

 

import { unauthenticated } from "~/shopify.server";
// Includes crypto module
const crypto = require("crypto");

export const action = async ({ request }) => {
  // Hmac validation
  const rawBody = await request.text();
  const hmacHeader = request.headers.get("X-Shopify-Hmac-SHA256");
  const hmac = await crypto.createHmac("sha256", process?.env?.SHOPIFY_API_SECRET);
  const hash = await hmac.update(rawBody, "utf8").digest("base64");
  // console.log("signature match : " + (hash == hmacHeader));
  if(hash !== hmacHeader) {
    return new Response(undefined, {
      status: 401,
      statusText: 'Unauthorized'
    });
  }

  const data = JSON.parse(rawBody);
  if(data.handle !== "handle") {
    return new Response(undefined, {
      status: 405,
      statusText: 'Method Not Allowed'
    });
  }

  const { admin } = await unauthenticated.admin(data.shopify_domain);
  const response = await admin.graphql(
   `#graphql
      query {
        shop{
         name
        }
      }
  }`);
  const responseJson = await response.json();
  console.log(responseJson);
  return null;
};

 

View solution in original post

1,509 Views
0 Likes
Report

Alicia_P
Excursionist
14 3 5
‎04-10-2024 03:27 AM

This is an accepted solution.

If anyone else is having this issue, I found this link in the shopify remix docs which solved all my problems with authenticating flow request: https://shopify.dev/docs/api/shopify-app-remix/v2/authenticate/flow
This wasn't linked on the flow action extension docs anywhere so it was  a bit withheld.

View solution in original post

1,176 Views
1 Like
Report
Replies 2 (2)

Hirano_00
Shopify Partner
86 10 15
‎12-14-2023 06:48 AM

This is an accepted solution.

The following code could be used to do this.

Note that the route of the process to be called should be under app.

Example: app-directory/app/routes/app/api/action.js

 

Otherwise, Graphql will not be authenticated and the error "[API] Invalid API key or access token (unrecognized login or wrong password)" will occur.

 

import { unauthenticated } from "~/shopify.server";
// Includes crypto module
const crypto = require("crypto");

export const action = async ({ request }) => {
  // Hmac validation
  const rawBody = await request.text();
  const hmacHeader = request.headers.get("X-Shopify-Hmac-SHA256");
  const hmac = await crypto.createHmac("sha256", process?.env?.SHOPIFY_API_SECRET);
  const hash = await hmac.update(rawBody, "utf8").digest("base64");
  // console.log("signature match : " + (hash == hmacHeader));
  if(hash !== hmacHeader) {
    return new Response(undefined, {
      status: 401,
      statusText: 'Unauthorized'
    });
  }

  const data = JSON.parse(rawBody);
  if(data.handle !== "handle") {
    return new Response(undefined, {
      status: 405,
      statusText: 'Method Not Allowed'
    });
  }

  const { admin } = await unauthenticated.admin(data.shopify_domain);
  const response = await admin.graphql(
   `#graphql
      query {
        shop{
         name
        }
      }
  }`);
  const responseJson = await response.json();
  console.log(responseJson);
  return null;
};

 

1,510 Views
0 Likes
Report

Alicia_P
Excursionist
14 3 5
‎04-10-2024 03:27 AM

This is an accepted solution.

If anyone else is having this issue, I found this link in the shopify remix docs which solved all my problems with authenticating flow request: https://shopify.dev/docs/api/shopify-app-remix/v2/authenticate/flow
This wasn't linked on the flow action extension docs anywhere so it was  a bit withheld.

1,177 Views
1 Like
Report
Terms of Service Privacy Policy