Permissions issues with customer_read_customers in account UI extension

Shopify Apps

Topic summary

A developer is encountering permission errors when trying to fetch logged-in customer data using a customer account UI extension, despite following official Shopify documentation.

Configuration in place:

  • customer_read_customers scope added to shopify.app.toml
  • Scope visible in Partner Dashboard
  • api_access = true and network_access = true set in shopify.extension.toml

Problem:

  • Permission errors persist in both frontend and GraphQL queries
  • GraphQL should display access scopes but returns nothing
  • The app is public but not yet released

Resolution:
The developer resolved the issue by uninstalling and reinstalling the app, suggesting the scope changes weren’t properly applied until a fresh installation.

Summarized with AI on November 7. AI used: claude-sonnet-4-5-20250929.
1

Following the example here to fetch data about the logged in customer from a new customer account UI compnent:

https://shopify.dev/docs/api/customer-account-ui-extensions/unstable/apis/customer-account-api

Screenshot 2024-08-07 at 3.42.13 PM.png
Screenshot 2024-08-07 at 3.42.13 PM.png1012×1142 82.2 KB

I’ve got the customer_read_customers scope in shopify.app.toml and I’m also seeing it in the partner dashboard, and I have api_access = true and network_access = true in shopify.extension.toml

It’s a public app that’s not released yet.

In both the frontend and in graphiql I’m still hitting the permissions error:

Screenshot 2024-08-07 at 3.40.19 PM.png
Screenshot 2024-08-07 at 3.40.19 PM.png2728×500 77.1 KB

Screenshot 2024-08-07 at 3.40.07 PM.png
Screenshot 2024-08-07 at 3.40.07 PM.png2080×836 70.8 KB

Additionally, I saw it mentioned here that you should be able to see your access scopes in graphql, but that’s not returning anything for me:

Screenshot 2024-08-07 at 3.39.36 PM.png
Screenshot 2024-08-07 at 3.39.36 PM.png2104×844 69.5 KB

2

You need to uninstall and reinstall the app.

1 Like