Shopify OAuth Flowchart

Shopify OAuth Flowchart

Shopify OAuth FlowchartShop param is entered and valid400: shop param is requiredEnd requestSave encrypted state on cookies and redirect oauth authorize urlyesInstallCallbackState and hmac are valid404: not foundyesGet access tokennonouser existsupdate user datalike last_login, access_token, scopecreate a new usernoyesManage WebhooksManage App Subscriptionredirect to app urlgetting the token every time will keep it always fresh
publish time: 2021-01-16

Here is a simple flowchart of the Shopify app authentication process. Point is, even if you've been developing Shopify apps for a while, it's quite easy to forget how OAuth authentication works under the hood.

See More Related Templates