Hide Graphql Access Token on Frontend of Extension App

Retired Boards Appdev Custom Storefronts

Topic summary

Main issue: Need a way to hide the Shopify Storefront GraphQL access token in the frontend of a Shopify App extension.
Current attempt: Considering use of a Proxy URL to avoid exposing the token client-side but unable to get it working.
Context: Custom Storefronts setup; concern is preventing the Storefront API access token from being visible in browser code while still enabling Storefront GraphQL requests.
Key terms:
- Storefront access token: credential used to authenticate requests to the Storefront API (GraphQL).
- Proxy URL: a server-side endpoint that forwards requests to Shopify, keeping the token secret from the client.
Status: No solutions or steps provided yet; the thread is a help request and remains open/unresolved.

Summarized with AI on December 22. AI used: gpt-5.

cathyho August 8, 2024, 2:24pm 1

We’ve built a Shopify App extension but need some help with hiding the Graphql storefront access token on the frontend. We believe we need to use a Proxy URL but we’re not getting anywhere with it! Can anyone help with this please?

Thank you!

Topic		Replies	Views
Hide Graphql Access Token on Frontend of Extension App Partners Discussion optimization , Setting-Up	0	10	August 8, 2024
Shopify GraphiQL API works for admin but not in storefront Custom Storefronts	2	80	August 31, 2020
How to hide Storefront API access token in request header Shopify Apps shopify-apps	0	23	March 5, 2024
How to get store front graphql access after installing admin apps Shopify Apps	5	35	August 23, 2022
Storefront AccessToken accessing in theme app extension Store Design shopify-themes	1	133	April 18, 2025

Hide Graphql Access Token on Frontend of Extension App

Topic summary

Related topics