Difference between Storefront access token and API Key

pd3 · March 28, 2021, 2:58am

I am trying to use Buy IOS SDK for a mobile app to access my test Shopify store. From another Q&A on this forum I realized I needed to setup a private store, which I did.

In the admin I can see that there is a API Key(labelled as private) as well as store front access token(labelled as public) available. What is the difference between the 2 and what am I expected to use in the Buy IOS SDK. I would imagine it would be the private key, but that puts me in the situation of having to store the private key on my app(which is not exactly secure).

pd3 · March 28, 2021, 3:19am

https://community.shopify.com/c/Storefront-API-SDKs/Read-Before-Posting-Custom-Storefront-Storefront-API-F-A-Q/m-p/880409#M635

This states:

The Storefront API is an unauthenticated API and access is managed by scopes
For a private app, you will utilize the storefront access token from the Admin. This is different from the API Key and Password used for the Admin API

Topic		Replies	Views
New Storefront API access Token generated for Private Apps in admin Custom Storefronts	0	776	June 1, 2022
Storefront api + private app security concern Custom Storefronts	2	99	April 28, 2021
How to get access to the new Storefront API? Custom Storefronts	11	71	April 11, 2022
Receiving 401 "Invalid API key" error while trying to create a storefront token Custom Storefronts	1	35	September 2, 2021
Shopify GraphiQL API works for admin but not in storefront Custom Storefronts	2	78	August 31, 2020

Difference between Storefront access token and API Key

Related topics