Shopify custom app - OAuth

Shopify Apps

Topic summary

A Celigo team member is transitioning from Shopify’s deprecated staging app to a custom app and encountering OAuth authentication issues. The main error states “The redirect_uri and application_uri must have matching hosts.”

Key Technical Issues:

  • Custom apps only provide an API key and secret, not a Client ID/secret
  • No fields exist for redirect URIs or application URIs in custom app settings
  • Uncertainty about whether custom apps support OAuth authentication

Community Responses:

  • Multiple users confirm that custom apps do not support standard OAuth flows
  • Custom apps are designed for direct API access using API key/secret authentication, not OAuth-based installations
  • OAuth functionality is reserved for public apps that install across multiple stores

Current Status:
The discussion remains unresolved regarding how to proceed with the migration. The team needs to either:

  • Switch to API key-based authentication instead of OAuth
  • Contact Shopify Support for potential workarounds
  • Consider alternative authentication methods for their integration needs
Summarized with AI on October 31. AI used: claude-sonnet-4-5-20250929.
1

Hi Shopify,

We are from Celigo and have used the Shopify staging app for OAuth authentication for some time. However, Shopify has informed us that staging apps will soon be deprecated, and we need to switch to a custom app.

When attempting to use OAuth with the custom app, we encountered the following error: “The redirect_uri and application_uri must have matching hosts.” Could you please assist us in resolving this issue and let us know if we’re missing any necessary information?

Also, does the custom app support OAuth authentication? We observed that after creating the custom app, there is no Client ID or secret—only an API key and secret. We’re using those for OAuth authentication, but would appreciate clarification. We also noticed that there are no fields for redirect URIs or application URIs.

Thank you.

Error Image

Sandeepkumar_0-1727429895375.png
Sandeepkumar_0-1727429895375.png2004×1642 102 KB

2

Here are the brief steps to resolve your issue:

  1. Match Redirect URI: Ensure that the redirect_uri in your OAuth request exactly matches the base URL of your app, including the protocol (https://).

  2. Use API Key for Custom Apps: For custom apps, use the API Key and API Secret Key for authentication instead of OAuth, unless OAuth is strictly needed.

  3. Confirm App Configuration: Verify that the domain settings in Shopify match your app’s configuration.

  4. Update Shopify Integration: If still encountering issues, check Shopify’s custom app guidelines for authentication methods and ensure you’re not using deprecated settings.

That’s it!

3

Hi Nolan,

Thank you for your prompt response.

  1. We couldn’t locate the redirect_uri field in the app for setting or updating.

  2. We are currently using the API key and secret for OAuth authentication. Are you suggesting that OAuth authentication is not supported for custom apps?

4

I think so OAuth authentication is not supported for custom apps.

5

Looks like you’re running into an OAuth issue when switching from a staging app to a custom Shopify app. The error usually means that the redirect_uri you’re using doesn’t match the application_url Shopify expects. A few things to check:

  1. Matching Hosts – Make sure the redirect_uri and application_url are on the same domain. Shopify is strict about this, so even small differences can cause issues.

  2. Custom App OAuth – Unlike public apps, custom apps don’t use the standard OAuth flow. They rely on API key and secret-based authentication, which is why you’re not seeing a Client ID or secret.

  3. Redirect URI Setup – If there’s no place to define redirect URIs in the admin, it’s likely because custom apps are meant for direct API access within a single store, not for OAuth-based installations like public apps.

If you’re working on a NetSuite Shopify integration, it’s important to ensure that API connections remain stable, especially when switching authentication methods. If OAuth isn’t working for your use case, you might need to look into alternative authentication methods or confirm with Shopify Support if there’s a workaround.