Hi there, thanks for taking time to read this. I’m developing a shopify app for my platform which essentially does 2 things: 1. Allows user to choose any product from my website’s dashboard and let user list the same on his Shopify store 2. Fetch orders, if received for the respective product.
Entire programming is done and app works fine if I do from a private store, however its not being approved despite of completing all requirements.
As per Shopify, I should authenticate user first before anything else on the platform.
Here’s how I’m currently doing:
- The user does sign up on my website, using his email address and logs in. This is done for identification of respective user. Until this point, there’s nothing about Shopify.
- Our system has a button, spedcifically and clearly asking user if he wants to connect Shopify. Once clicked, he is asked to login using O-auth, as per Shopify’s official API documentation.
Without first authenticating on Shopify directly via O-Auth, one can’t do anything related to Shopify. - User connects his Shopify store via O-auth and gets redirected to our website, by login and authenticating
- Once done, we keep the access token and request authentication as described in Shopify’s official API documentation. That’s the only user identification info we store/use, never their username or password.
- Based on the valid token all the subsequent APIs are called. Particularly we ask user to list their chosen product (with their explicit permission) and fetch orders.
Like I wrote, it works fine on private app, but the public app, as I’m submitting is not being approved. What is it that I’m missing/doing wrongly? I thought this should be a straight forward workflow.
If you can tell what issue this could be, it’ll be very very helpful. Its not clear at all why is my application is not being approved despite of making payment and following everything as specified in documentation.
Please if you can help and advise?
An early response shal be awaited please!