Storefront intermittent forbidden with OK user

martinkleiven · October 11, 2024, 2:56pm

We’ve had an application in production since about this summer, where we’ve always been on the April-24 version of the Storefront API.

It has worked without hiccups, until approximately this month. First we started seeing most attempts to authenticate most of the time, now we’re seeing maybe 10% of requests on average failing.

{
 "networkStatusCode":403,
 "message":"GraphQL Client: Forbidden",
 "response":{}
}

Is the result of

mutation customerAccessTokenCreate($input: CustomerAccessTokenCreateInput!) {
  customerAccessTokenCreate(input: $input) {
   customerAccessToken {
    accessToken
    expiresAt
  }
  customerUserErrors {
   code
   field
   message
  }
 }
}

input is an object

{
 email,
 password
}

A failure to authenticate would be OK if consistent, however, the results we’re seeing are not. We’re not sure why.

We are connecting to the Storefront API via a delegated access token.

I would appreciate some help in understanding the problem.

Made4uo-Ribe · October 11, 2024, 5:12pm

Hi @martinkleiven

October 2024 version is out. Have you tried updating?

martinkleiven · October 15, 2024, 9:47am

The prior version should not be affected by the release of an new one; if this is the solution, it would be a bug from Shopify.

Topic		Replies	Views
Customer Access Tokens returned from my app are invalid Custom Storefronts	2	15	May 4, 2023
mutation StoreFrongAccess response "StorefrontAccessTokenCreate access denied" Shopify Discussion apps	0	2	August 26, 2021
Unable to call customerAccessTokenCreate mutation from Shopify storefront using Storefront API Custom Storefronts	2	11	June 7, 2021
Storefront api return a [API] Invalid API key or access token (unrecognized login or wrong password) Authentication troubleshooting	3	23	January 30, 2024
Storefront API always returns status 403 Custom Storefronts	5	28	October 23, 2022

Storefront intermittent forbidden with OK user

Related topics