FROM CACHE - en_header

How To Pass Empty Scopes While Installation App?

jee1992
Shopify Partner
4 0 0
‎03-18-2023 01:34 AM


Use Case:
I was using write_script_tags,Now I am using theme app extensions to ensure compatibility with Online Store 2.0 themes. But in app review process, I got this feedback

Only request permissions for API scopes that are required for your app to function. Your app is requesting scopes that aren't in use, so make changes to comply with our requirements.

API :

 

 

 

 

`https://${shopDomain}/admin/oauth/authorize?client_id=${apiKey}&scope=${scopes}&state=${state}&redirect_uri=${redirectUri}`

 

 

 

 




Now I have removed scope param from authorise API then I'm getting following error 
OAuth error invalid_scope: The access scope is missing.

Question: how I can pass empty scope, because my app don't need any special scope at all?

Labels:
395 Views
0 Likes
Report
Replies 4 (4)
nalanetworks-
Shopify Partner
10 0 0
‎03-18-2023 01:54 AM

To pass an empty scope, you would replace {scopes} with an empty array, like this:

 

https://{shop}.myshopify.com/admin/oauth/authorize?client_id={api_key}&scope=[]&redirect_uri={redirect_uri}

 

looking for expert assistance with customizing your Shopify store or developing custom apps?
Get in touch with us today through our website at https://nalanetworks.com, by DM, or via email at sutha@nalanetworks.com.
381 Views
0 Likes
Report
In response to nalanetworks-
jee1992
Shopify Partner
4 0 0
‎03-19-2023 01:26 PM

I have passed scope as empty array, but it didn't work for me.

https://{shop}.myshopify.com/admin/oauth/authorize?client_id={api_key}&scope=[]&redirect_uri={redirect_uri}

278 Views
0 Likes
Report
Diaz19
Tourist
11 0 1
‎03-18-2023 02:52 AM

 Passing empty scopes while installing an app is an important step to ensure that the app is successfully installed and that the user has full access to the features and functions of the app. Empty scopes refer to the permission levels or access rights that the app requests from the user. This ensures that the app is installed without any conflicts and that the user is aware of the access rights that the app is requesting. In order to pass empty scopes, the user must first grant permission to the app in order to access their data. This can be done by providing necessary credentials such as username, password, and two-factor authentication. Once the user has granted permission, the empty scopes will be passed while the app is being installed. It is important to note that the user should carefully review the app's permission levels before granting them access. This will ensure that the user is aware of what type of data the app can access and how it will be used. It is also important to remember that the user should always be able to revoke the permission they provide in the future, if they decide to do so. 

364 Views
0 Likes
Report
In response to Diaz19
jee1992
Shopify Partner
4 0 0
‎03-19-2023 12:04 AM

@Diaz19 
Which scope/access rights I need to pass in case of theme app extension(App embed blocks). 


I am just embeding a simple UI widget on storefront.

310 Views
0 Likes
Report
Community Browser

Community Blog Articles

cropped-shutterstock_1498591895.webp
The 30-30-30 Rule: A Balanced Approach to Social Media for Startups

Explore the 30-30-30 rule, a dynamic social media strategy for new businesses. Learn how t...

By Trevor Sep 20, 2023
cropped-shutterstock_1913321758.webp
How To Gain Customer Trust With Your Store’s Footer

Discover how to leverage the often overlooked footer of your ecommerce site to gain custom...

By Skye Sep 15, 2023
shutterstock_2183225521_16x9.png
Who Are Shopify Partners?

In this blog, we’ll be shining a light on Shopify Partners, Experts, and Affiliates. Who a...

By Imogen Sep 13, 2023
Terms of Service Privacy Policy