📝 Topics Covered

1. 1. Public Apps in Shopify
   • 1.1 Distribution Channels
   • 1.2 OAuth 2.0 Flow
2. 2. Development Stores
   • Free developer sandboxes & testing environments
3. 3. The Shopify Developer Ecosystem
   • 3.1 Apps, 3.2 Themes (Liquid), and 3.3 Headless Commerce (Hydrogen)
4. 4. Scaffolding & Creating Apps
   • 4.1 Scaffolding Prerequisites
   • 4.2 What Shopify CLI Automates
5. 5. Resources & Access Control
6. 6. Working with Protected Customer Data
7. 7. Python Integration (Alternative Stack)

1. Public Apps in Shopify

Public apps are designed for applications you intend to list on the Shopify App Store or distribute across multiple merchant stores.

1.1 Distribution Channels

• Shopify App Store: Listed publicly on the official app store (requires Shopify approval).
• Direct Distribution: Distributed via a direct installation link generated in your Partner Dashboard.

1.2 OAuth 2.0 Flow

Unlike custom single-store apps, public apps must implement a secure OAuth 2.0 authorization flow. This allows merchants to install your app on their store and grant permissions securely, without you ever handling or accessing their Shopify store credentials directly.

2. Development Stores

To develop and test public apps safely, you can use a Development Store, which acts as a free, developer-only sandbox.

📚 Developer Guide: Learn more in the Shopify Development Stores Documentation .

3. The Shopify Developer Ecosystem

To build themes, apps, or headless stores, familiarize yourself with the Shopify Developer Documentation .

3.1 Apps

Extend Shopify’s core functionality by building apps that integrate deeply with the Shopify Admin, Online Store, checkout, and storefronts.

3.2 Themes

Help merchants express their brand identity by building bespoke customer-facing themes.

• Core Guide: Build Shopify Themes
• Architecture: Shopify Theme Architecture
• Template Engine: Liquid Template Language API
• Cheat Sheet: Shopify Partners Liquid Cheat Sheet

3.3 Headless Commerce

For high-performance custom storefronts, use Hydrogen—a React-based framework optimized for Shopify headless commerce.

• Core Guide: Build Headless Commerce with Hydrogen

4. Scaffolding & Creating Apps

Shopify provides robust scaffolding tools within the Shopify CLI to quickly generate a boilerplate application.

• Core Guide: Apps to Power Commerce Guide
• CLI Reference: Scaffold an App via Shopify CLI

4.1 Scaffolding Prerequisites

• A registered Shopify Partner account and an active development store.
• The latest version of the Shopify CLI installed globally.
• A modern browser (Chrome or Firefox).

4.2 What Shopify CLI Automates:

1. OAuth Configuration: Guides your login and automatically links your local codebase to an app entry in the Partner Dashboard.
2. Database Scaffolding: Automatically sets up a local Prisma SQLite database for session storage and app state.
3. Secure Tunneling: Starts a secure HTTPS tunnel mapping your local machine to your test development store.

5. Resources & Access Control

• Shopify CLI: CLI Command Reference
• Access Scopes: Shopify API Access Scopes Reference
• OAuth Guide: How to Build a Shopify App & Understand OAuth

6. Working with Protected Customer Data

To protect merchant and customer data, Shopify enforces strict access rules on Personally Identifiable Information (PII).

🔒 Security & Privacy Scopes:

• API Types & Scopes: Check out the Protected Customer Data Guide for allowed API types.
• Access Levels (Level 1 & Level 2): Make sure you meet the Requirements for Level 1 and Level 2 PII Access .
• Terms Compliance: Follow the Shopify API Terms of Service Compliance .
• Global Regulations: Ensure your app complies with GDPR, CCPA, and general privacy acts by reviewing the Privacy Law Compliance Guide .

7. Python Integration (Alternative Stack)

While Node, React, and Remix are the default stacks recommended by Shopify, you can build your backend in Python:

• Django Backend Sample: Shopify Sample Django App
• Python API Library: Shopify Python API GitHub Repository

💡 Developer Recommendation: Even if you build in Python, it is highly recommended to follow the official Build a Shopify App with Node and React tutorial to understand how credentials (API key, API secret, etc.) are managed in the Partner Dashboard.