Permissions for creating an Storefront Access Token?

Dylan · April 21, 2025, 4:07pm

Hi there,

I’m trying to follow the guide to create an unauthenticated Storefront Access Token, but I’m consistently getting an permissions denied error from the Shopify GraphQL API.

  graphQLErrors: [
    {
      message: 'Access denied for storefrontAccessTokenCreate field.',
      locations: [Array],
      path: [Array],
      extensions: [Object]
    }
  ],

There’s no mention of which scopes are required for this endpoint. It would be nice if all queries and mutations at least listed which scopes they require in the docs.

But that aside, can someone please clarify which access scopes you need to generate an authenticated vs unauthenicated Storefront Access Token?

Do you only need to request scopes for specific online store resources like checkout, customer, product, etc? Or is there a general unauthenticated_access_token_write scope that you need to request to first be able to create these tokens?

Thanks!

adarsh_anncode · April 30, 2025, 12:34pm

Hi @Dylan, I also got same issue. Have you got any solution

Dylan · April 30, 2025, 1:39pm

See this relevant discussion:

@Alan_G explains that any unauthenticated access scope should allow cart attributes to be modified.

Topic		Replies	Views
What permission is required to use storefrontAccessTokenCreate mutation in Shopify Admin API? GraphQL Admin API Troubleshooting rest-migration , general-gql-troubles	15	63	May 9, 2025
Which Storefront API access scope can mutate cart attributes? Hydrogen and Storefront APIs storefront-api	5	43	April 23, 2025
Storefront Access Token Creation Issue #2073 GraphQL Admin API Troubleshooting general-gql-troubles	5	154	May 8, 2025
[Storefront] Unable to query Products & Collections Hydrogen and Storefront APIs storefront-api	9	81	April 24, 2025
storefrontAccessTokenCreate Access Denied GraphQL Admin API Troubleshooting general-gql-troubles	11	330	March 19, 2025

Permissions for creating an Storefront Access Token?

Related topics