FROM CACHE - en_header
Promotion image

Help - How to get Session Token in non-embedded app development?

AnthonyCoder
Shopify Partner
2 0 0
‎08-06-2022 03:04 AM

Hello!

 

My problem is that I can't get Session Token in the development of non-embedded app, so there is no way to add Authorization information in Header, this problem has been bothering me for a week, I didn't find any information online about how to get Session Token in non-embedded app.(This is not in Shopify's development documentation, in fact, Shopify's development documentation only about the embedded App related content, Session Token can easily be obtained through the App Bridge, the document address: Getting started with session token authentication )

 

Until, I watched a video released by Shopify (video link ), is based on JWT to achieve Session Token, which at the time of 27:17, he mentioned that non-embedded App can not use JWT to authenticate, because we have no way to use and load App Bridge (only the embedded App can use App Bridge)

So, my question is, if I want to develop a non-embedded app, how do I get the Session Token?


Thanks for your help!

1,230 Views
0 Likes
Report
Replies 5 (5)

sssui
Shopify Partner
5 0 2
‎09-30-2022 08:56 PM

Hi, I have the same question, did you solve the problem?

1,095 Views
0 Likes
Report
In response to sssui

AnthonyCoder
Shopify Partner
2 0 0
‎10-12-2022 06:05 AM

In fact, the non-embedded app does not need Session Token, I am currently using the offline authentication method, and so far my app is running fine.

1,030 Views
0 Likes
Report
In response to AnthonyCoder

ottero
Shopify Partner
19 0 8
‎01-13-2023 09:45 AM

@AnthonyCoder Does you app have a backend? How does it know, that the request from your non-embedded app is coming from a user that belongs to the shop?

871 Views
0 Likes
Report
In response to ottero

kendallvision
Shopify Partner
3 0 0
‎03-11-2024 04:39 PM

Did you ever get this solved?  I'm banging my head against the wall trying to figure out how to call from a non-embedded app.

Welcome to me being here!
132 Views
0 Likes
Report
In response to kendallvision

ottero
Shopify Partner
19 0 8
‎03-12-2024 05:52 AM

So the only moment you know the user belongs to the shop is when shopify redirects him/her to your app with a token. With that token you usually do the registration process and stuff (or if it is already registered, it will just forward to your app). At that point, your backend needs to create your own user session token. This token is mapped to a specific shop (we write the shop into the token) and returned to the user.

With that session token (or access token, however you want to call it), the user talks to your backend and the backend can validate the token and knows, that the users has access to that shop.

 

This worked well for us. Hope it helps.

107 Views
0 Likes
Report

Community Blog Articles

Image 3 - Header image 16_9 V1@2x.png
A guide to Shopify POS Launch and Operations success

Are you ready to take your business to the next level? Look no further than the latest ...

By SarahF_Shopify Apr 15, 2024
JasonH_0-1712162359820.png
Community Connect: Recap March 24’

We’re keeping the ball rolling to make sure you’re always ahead of the game. So buckle ...

By JasonH Apr 8, 2024
Portrait of Stephen positioned next to an image of planet Earth, with the Stephen's World logo displayed above.
Shopify Store Design: Expert Advice from Stephen’s World

Portrait of Stephen positioned next to an image of planet Earth, with the Stephen's World ...

By JasonH Mar 18, 2024
Terms of Service Privacy Policy