Cart Mutation with Storefront API

api 2025-10
I am trying to do a cart mutation using the storefront api in a remix app. The mutation is just silently failing, it seems due to scopes, but I’m not sure.

Adding gift gid://shopify/ProductVariant/56413317333375 to cart
gid://shopify/Cart/hWN5KLqhVz7ij9etGYShGurW
00:09:39 │ React Router │ Add gift response: {
00:09:39 │ React Router │ “errors”: {
00:09:39 │ React Router │ “networkStatusCode”: 403,
00:09:39 │ React Router │ “message”: “GraphQL Client: Forbidden”,
00:09:39 │ React Router │ “response”: {}
00:09:39 │ React Router │ }
00:09:39 │ React Router │ }
00:09:39 │ React Router │ Gift added successfully.

I can’t figure out why, according to docs all I should need is unauthenticated_write_checkouts, which I have. Is there something that I’m missing?

Hi @Peter_Brunton

You should just need unauthenticated_write_checkouts so if you’re seeing an error, it could be something else that is auth related.

Have you set up auth as is described here? The auth process for the Storefront API is different to how it works on the Admin API, so you’ll need to make sure it’s configured correctly. Also - where did you get the access token from - Headless channel, or custom app?

Hi Liam,

Thanks for replying.

I’ve since realized what I was trying to do just isn’t possible anymore.