Getting Access token and shopify url after creating a custom app

Ahmad_Anwar · January 18, 2026, 10:18am

Hello Team,
i have created a custom app a few days ago on the newly released dashboard. but i was able to get the clientid , the secret key , but not able to get the access token of the user and the shopify url. to use them in my requests to shopify api end point.
in the old version we was able to get the token after installing the app.
how could we got it in this new version?

Luke · January 18, 2026, 10:33am

Please do search the forums, there have been many posts related to this which have a solution.

Ahmad_Anwar · January 18, 2026, 12:01pm

according to documentation from this link:Using the client credentials grant

i got client_id, client_secret from app settings and used this request for the created “Mandala - Mudi“ app, but it always responds 404 not found. What’s wrong with what we do here?

url:https://mudi.myshopify.com/admin/oauth/access_token
Method type: Post
body:
{
“client_id”: “******************”,
“client_secret”: “………………………………..“,
“grant_type”: “client_credentials”
}

Luke · January 18, 2026, 1:10pm

It doesn’t look like this store exists, which is probably why you’re getting a 404.

Ahmad_Anwar · January 18, 2026, 1:13pm

as attached in the image , there is an app created and installed with name “Mandala - Mudi“ , so what are we missing here ? and how can we apply that?

Luke · January 18, 2026, 1:15pm

The URL should be the store url which you’re wanting to get an access token for.

Ahmad_Anwar · January 18, 2026, 1:21pm

for this app,https://dev.shopify.com/dashboard/129955081/apps/311001808897
could you help me please to know the url i should use to generate the token?

Ahmad_Anwar · January 18, 2026, 1:23pm

http://50c143-37.myshopify.com/admin/oauth/access_token
i used this one before , and it responds with 403 forbidden

Eric_Han · January 19, 2026, 5:15am

you post request header Content-Type application/x-www-form-urlencoded , check your content-type and body fomat

Ahmad_Anwar · January 19, 2026, 9:43am

i already used the request in this format , but response is still 403 “Forbidden“.
is the url :”http://50c143-37.myshopify.com/admin/oauth/access_token” is a correct one to be used?
or am i missing any step should be applied before getting the token from this request?

Luke · January 19, 2026, 9:58am

We have no idea if thats the correct URL, you should be using the URL of the store you want to get an access token to as mentioned already.

Ahmad_Anwar · January 19, 2026, 10:16am

my question is , how should i get the store url to be sure that i’m using the correct one or not?

Colby · January 19, 2026, 12:37pm

@Ahmad_Anwar, to confirm the correct myshopify.com domain: in the admin of the store you’re installing on, go to Settings > Domains and look for the myshopify.com address listed there.

On the 403, my guess is you’re hitting the OAuth error:

shop_not_permitted: Client credentials cannot be performed on this shop

If that’s the case, it usually means you’re trying to use client credentials from your Partner org/app against a merchant store. That flow won’t work in that direct way for installing/authing against a merchant shop.

I’d start by (1) validating the myshopify.com domain, then (2) grabbing the full 403 response details (status + message/body) so we can confirm the exact cause.

Ahmad_Anwar · January 19, 2026, 12:48pm

i think there are the domains you talked about. if yes?
i used the first one in the request which responds with 403

Ahmad_Anwar · January 19, 2026, 2:35pm

that’s the request i used with header Content-Type application/x-www-form-urlencoded.

if i converted the url from http to https , the response become “400” bad request

Luke · January 19, 2026, 3:19pm

Is the store your own? Or are you a collaborator on it?

If you’re a collaborator, do you have all permissions to the scopes that your app requires, etc?

Ahmad_Anwar · January 19, 2026, 3:45pm

I am a collaborator who has been added to the store with permission to create and manage development apps. I am also the developer who originally created this development app.

The app was created under the old version, with the same scopes that are currently attached, and it was working perfectly before. However, at the moment, I am facing an issue while trying to obtain the access token.

Colby · January 19, 2026, 6:15pm

Can you please provide the full 403 response details?

See Custom App Credentials - #9 by Donal-Shopify

Ahmad_Anwar · January 20, 2026, 11:33am

when i changed the url from http to https , it responds with 400 instead of 403
with this html response:

400 - Oauth error shop_not_permitted

* { border:0; margin:0; padding:0; -moz-box-sizing:border-box; -webkit-box-sizing:border-box; box-sizing:border-box; }
html,body { height:100%; border:0; margin:0; padding:0; font-family:"Helvetica Neue", Helvetica, Arial, sans-serif; font-weight:300; background:#fff; }
body { min-height:100%; font-size:16px; line-height:22px; color:#6c6c6c; }
a { color:#479ccf; }

h1,h2,h3,h4,h5,h6 { text-align:left; margin:0 0 20px 0; color:#31373D; font-weight:700; }
h1 { font-size:28px; line-height:48px; margin-bottom:7px; }
h2 { font-size:20px; font-weight:300; line-height:30px; color:#6c6c6c; }
h3 { font-size:17px; line-height:30px; position:relative; padding-bottom:18px; margin-bottom:22px; font-weight:400; }
h3:after { content:""; position:absolute; left:0; bottom:0; height:2px; width:76px; background:#EAEAEA; }
h4 { font-size:14px; margin-bottom:3px; }

img { max-width:100%; }

li { margin-bottom:5px; }

.next-icon {
  display: inline-block;
  vertical-align: middle;
  background-size: contain;
  background-position: center;
  background-repeat: no-repeat;
  position: relative;
  top: 0.15em;
  fill: currentColor;
  margin-bottom: 5px;
}

.next-icon--color-yellow {
  fill: #E9BE33;
}

.next-icon--size-40 {
  width: 40px;
  height: 40px;
}

.wrapper { min-width:320px; max-width:650px; margin:0 auto; padding:20px; }

.hero { margin-bottom:30px; }

.content--block { position:relative; margin-bottom:50px; }
.content--desc { margin-bottom:32px; position:relative; }
.content--desc-large { font-size:20px; line-height:28px; }

.request-id { padding-top:100px; font-size:13px; color:#ccc; }

@media all and (min-width:500px) {
  body { padding:60px 0; }
  .wrapper { padding:20px 20px 20px 100px; }
  .ico svg { width:40px; height:40px; margin-bottom:0; }
  .hero { margin-bottom:70px; }
  .content--block { margin-bottom:80px; }
  .content--desc .next-icon { position:absolute; left:-70px; top:-7px; }
}

@media all and (min-width:900px) {
  .wrapper { padding:20px; }
}

Oops, something went wrong.

What happened?

Oauth error shop_not_permitted: Client credentials cannot be performed on this shop.

What can I do?

Press the back button on your browser.
Return to your admin dashboard.

Request ID: c4c01eea-fec9-4491-8f65-eae76b67c621-1768908431

Ahmad_Anwar · January 20, 2026, 11:36am

the error is : Oauth error shop_not_permitted: Client credentials cannot be performed on this shop.

but i made sure of the client_id , secret_key , i got them from the settings and they are correct, so what’s the probelm?

is the development app must be created from the account of the store owner?

Topic		Replies	Views
Custom App Credentials Dev Platform	10	718	January 13, 2026
Cannot Access Admin API Access Token for Custom App Dev Platform	2	50	January 30, 2026
How to use Shopify’s API with custom app changes? Dev Platform dev-dashboard , app-deployment	26	1753	February 11, 2026
How do i find my Admin-API-Token GraphQL Admin API Troubleshooting general-gql-troubles	1	273	January 5, 2026
Token not working Authentication & Access access-scopes	9	263	January 9, 2026

Getting Access token and shopify url after creating a custom app

What happened?

What can I do?

Related topics