Trying to set up a Python based service to be a Shopify App. I found good instructions for doing OAUTH installation, but then discovered “Shopify managed installation” (https://shopify.dev/docs/apps/auth/installation) . It seems that the Shopify CLI is language agnostic, even if it doesn’t have a python example. What routes and functionality would I need to implement to use this functionality?
Topic summary
A developer is building a Python-based Shopify app using Shopify Managed Installation instead of traditional OAuth flows. The main challenge is understanding what routes and functionality need to be implemented, as Python-specific examples are scarce.
Key Technical Approach:
- No installation endpoint is required
- Uses Token Exchange method
- Embedded app iframes automatically include necessary authentication information via Shopify App Bridge
Implementation Strategy:
- Create session tokens in the frontend using App Bridge
- Include these tokens in every backend call
- Exchange tokens for access tokens on the backend
- Store offline access tokens when the iframe first loads
Status: The discussion remains open with limited responses. The original poster is still developing their solution based on Shopify’s Token Exchange documentation, though language-agnostic CLI tools don’t provide Python-specific guidance.
1 Like
Did you find any answer to your question?
1 Like
I’m still trying to build my solution, but it’s essentially what is described in the documentation on Token Exchange. There is no installation endpoint; every request made to the iframe in an embedded app includes the information required for Shopify App Bridge to make session tokens in the frontend, which you then include in every call to your backend to exchange them for access tokens. It’s not unreasonable to make a call when the iframe is first loaded specifically to give your backend a chance to store an offline access token for the shop.
1 Like