Remix oauth authentication flow

Appifiny · October 8, 2023, 9:27pm

I’m creating my own authentication flow with Remix rather than using the Shopify Remix package.

On the server side, oauth works great outside of the iframe and I store the offline token and online session in a database.

On the client side, as soon as I load App Bridge 4 with the line below, the app immediately redirects to the admin and reloads the app - which starts the oauth flow all over again because I cannot identify the user session.

<script src="https://cdn.shopify.com/shopifycloud/app-bridge.js" data-api-key={apiKey} />

What can I do to pass the online user session that is created outside of the iframe to the page that is reloaded embedded inside the admin?

Cookies are not available and the JWT is not immediately available.

Thanks in advance.

ishanjain · January 3, 2024, 7:05pm

You can generate session token on remix app using app-bridge, and send this sessionToken to your request on backend, where to verify signature, you can use, shopify’s package

nk1307 · September 25, 2024, 12:07pm

could you please tell me like, how can I implement it. if you have any references to it, can you please share it. I’m unable to understand the documentation.

Topic		Replies	Views
Authorising my backend API Technical Q&A javascript	3	117	June 24, 2024
How to get offline access token using remix? Shopify Apps shopify-apps	5	229	March 4, 2025
Migrate from the existing App to Shopify Remix Shopify Apps shopify-apps	0	40	April 24, 2024
Introducing cookieless authentication beta with App Bridge Tools troubleshooting	133	665	October 18, 2021
Video tutorial on using JWT session tokens to authenticate your embedded app Authentication	14	145	February 27, 2024

Remix oauth authentication flow

Related topics