A public Shopify app can interact with the Shopify API on behalf of multiple stores. To authenticate with Shopify using a public app, you'll need to generate the credentials from your Partner Dashboard and then use them to implement OAuth.
Generate credentials from your Partner Dashboard
You can create a public application from your Partner Dashboard.
To create an app:
- From your Partner Dashboard, click Apps > Create app.
- Provide an app name and URL.
- Select the areas of Shopify that you want to extend your app into. By default all apps are set up to extend into the Shopify admin. You can change these selections later.
- Click Create app. You are directed to your app's overview page, where you can view the API key and API secret that you will need for OAuth.
By default, you'll have access to the last 60 days' worth of orders for a store. To access all the orders, you'll need to request access to
read_all_orders. If access is granted, then you can add the
read_all_orders scope to your app along with
- From your app's overview page, click App setup.
- In the Orders section, click Request access to all orders.
- Provide a description about why you are applying for access.
- Click Request access.
The Orders section shows that your request is pending approval. If your request is approved, then you'll see a Read All Orders banner. If your request is denied, then you'll see a Request denied banner with options to get further details or appeal the decision.
Make authenticated requests
Public apps authenticate to Shopify by providing the
X-Shopify-Access-Token header field in each HTTP request to the Shopify API. This access token is obtained through an OAuth handshake. To learn more about how OAuth works, see OAuth.