Skip to content


Subversion checkout URL

You can clone with
Download ZIP


Explicitly set read permissions for products and orders #32

wants to merge 1 commit into from

1 participant


I tried using the shopify_app gem today and found that by default, we only have read permissions for products, however the Home controller index action tries to grab both orders and products.

This caused a 403 error.

This PR sets the api permissions to be able to read both orders and products, so the basic experience doesn't cause an error.

@edward @jnormore can you pull and update gem?

@redronin redronin closed this
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Commits on Dec 14, 2012
  1. @redronin
This page is out of date. Refresh to see the latest.
2  lib/generators/shopify_app/templates/config/initializers/omniauth.rb
@@ -5,7 +5,7 @@
# Example permission scopes - see for full listing
# :scope => 'read_orders, write_products',
+ :scope => 'read_orders, read_products',
:setup => lambda {|env|
params = Rack::Utils.parse_query(env['QUERY_STRING'])
site_url = "https://#{params['shop']}"
Something went wrong with that request. Please try again.