Public app install fails with 403 Forbidden after adding subscription contract scope

Hi, I’m facing an issue with my Shopify app installation.

My app installs normally when I keep it as it was before. But when I add the subscription contract scope and make the app public (because I understand that scope requires a public app), the app stops installing.

After that change, I get this error during install:

{ "networkStatusCode": 403, "message": "GraphQL Client: Forbidden", "response": {} }

Shopify also returned this error ID:

8eb23540-a25f-4223-8035-c6d1904e7860-1775631388

My questions are:

1. Does enabling subscription contract scopes require any extra approval or partner dashboard configuration before the app can be installed?
2. Why would the app install work before making it public, but fail with 403 Forbidden after that?
3. Is there any additional setup needed for subscription-related scopes for public apps?
4. How can I debug or fix this install issue?

If anyone has faced this before, please let me know what to check.

Hi @Aditya_Sharma,

Looking at the logs for the x-request-id provided, it appears that this app is actually installed on the store correctly. However the issue is with the Access Token you are using in the API request header.

The error I’m seeing in our logs is indicating the call is falling due to the use of a non-expiring offline access token. Since this app was created after April 1st 2026, we do require that you use expiring offline access tokens moving forward.

There’s more information about this change in the Shopify.dev Changelog here:

• Expiring offline access tokens required for new public apps as of April 1, 2026 - Shopify developer changelog

And more info about the difference between expiring and non-expiring offline access tokens, how to request them, and how to refresh them, can be found here:

• About offline access tokens

Hi @Aditya_Sharma

Not sure if this is helpful for you.