Storing and retrieving a custom API Key to make secure calls to our API

developer_2020 · March 28, 2022, 11:47am

Hi,

We have a sales channel that we maintain and we would like to make secure calls to our API by issuing a merchant an API key (from us) which they can enter into an input within the sales channel app and store it securely so we can then use it to send calls to our API and ensure it is from the merchant associated with that key.

We already have the access token that Shopify send to us but this key will be something we provide to the merchant.

How can we securely store this key within Shopify and ensure it is not exposed in anyway?

system · March 28, 2022, 12:07pm

Hi there @developer_2020 !

I just wanted to let you know I have moved your post here to our dedicated API forums.

As we’re unable to provide developer-level support ourselves, these threads have been provided in order to ask any API-related queries.

Our developers and Partners monitor and respond to these threads, so they’re really the best place to post for API questions like this.

If you haven’t already, you can check out our API developer docs here on authentication and authorisation.

developer_2020 · March 28, 2022, 12:31pm

Ok thanks Don

developer_2020 · March 29, 2022, 1:35pm

Is there a way to do this by storing a value in a config server side using Bridge or something along those lines?

Topic		Replies	Views
How can I securely store API keys in a Shopify App? Shopify Apps	0	71	June 14, 2021
Handle Product Review API in Shopify store Technical Q&A	0	50	February 17, 2022
Store API Key and Secret for external service Shopify Apps shopify-apps	0	65	November 22, 2022
How to securely store 3rd party API keys in a custom order tracking app? Shopify Apps shopify-apps	1	146	September 17, 2025
Where can i find my API key of my shopify app? Shopify Discussion	20	8877	January 19, 2025

Storing and retrieving a custom API Key to make secure calls to our API

Related topics