paulomarg
commented
3 years ago Hi @knsakib, thank you for your question. If your action is using verifyRequest, this scenario would end up in one of two cases:
- If the request was a page load (i.e. not an AJAX / XHR request),
verifyRequestwill redirect the user back to OAuth to get a fresh token so that they can continue to use the app. - If the request was AJAX / XHR, your server should use
verifyRequest({returnHeader: true}), which will return aX-Shopify-API-Request-Failure-Reauthorize-Urlheader with the OAuth URL. Your frontend should redirect the user to that URL so that they can get a new token.
You can see our example app (server.js and the corresponding call in _app.js) for a practical example.
We encourage partners to ask questions in our Community Forums, but we use GitHub issues to track actual bugs or issues with our code. I'm closing this issue since it's not a code issue, but please let us know if you encounter any problems going forward!
Overview/summary
I would like to know what will happen, if the token expired in between the Shopify API call.
Let's say, the user started the app(by clicking the app button in the Shopify app section) with a valid access token. And while he was using the app(clicking different sections in the app) the online token expired in the middle of app use. What will happen then. Will the user be redirected to auth again or not. I did not see that code. I can see redirects in the beginning. For example when a user clicks the app icon with an expired token at that time he will reinitialize the auth and that is fine. But I am concern about expiration in between use. Maybe I am missing some fundamental understanding of how session works and access token expiration.
...