My app currently uses the following scope:
read_inventory,read_publications,write_products,write_publications
In the admin panel, it is shown as below
The way the permissions are displayed makes it appear as though the app has write access to the inventory, but in reality, it doesn’t. This could be concerning for merchants, as they tend to be cautious about granting write access to their inventory.
Any plans to improve this?
thanks
I’m a bit confused. Your app requires write access to the inventory, yet I observe that you’ve applied for the read_inventory scope. Why haven’t you applied for the write_inventory scope instead?
@Eric_Han no my app requires only read_inventory, it does not require write access. That’s from the shopify app yaml file:
[access_scopes]
scopes = "read_inventory,read_publications,write_products,write_publications"
I confirm that I can’t write inventory, I tried to run a graphql mutation that updates the inventory, and as expected I got a permission error:
Access denied for inventoryItemUpdate field. Required access:
`write_inventory` access scope.
That’s exactly what I want, I never need write access in my app.
But still, when we check the permission of the app, it looks like it has write access to the inventory. It’s mostly a problem with the way permissions are displayed, the permission itself is applied correctly.
Just for confirming, I double checked the app’s settings in the shopify admin:
Even though everything works well in my app, that a source of confusion for people installing it. Would be nice that Shopify looks into it!
@Eric_Han you’re not getting what I’m saying. Read again what I said carefully or I’ll stop this conversation here
sorry i got you . my misunderstanding
