Store API Accounts
Some apps and integrations require special permission to communicate with or make changes to your store. These permissions are provided in the form of API accounts (also referred to as OAuth tokens or keys) and can be created directly from your control panel.
Most apps available in the App Marketplace are Single-Click Apps. They’re quick and easy to install, and don’t require the added steps of creating a dedicated API account, then supplying those credentials to a third party.
Creating an API Account
Only the user set as store owner can create API accounts, and a maximum of 50 accounts can be created per store. To access Store API Accounts, go to Advanced Settings › API Accounts and click Create API Account.
Enter a Name for the app/integration corresponding to this account and copy or make a note of the API Path — you'll need it to interact with the API.
Under OAuth Scopes, specify the API resources and permissions to which your app/integration requires access.
The Information and Settings OAuth scope encapsulates the configuration settings across multiple domain areas of the platform, including:
- Basic store information
- Shipping methods (both static and real-time)
- Shipping zones
- Store settings
- Payment methods
- Tax classes
When you’re done making changes, click Save. A successful save will display the pop-up shown below. It will contain the API credentials that your app will need for OAuth access. Also, a .txt file containing the same credentials will (on most browsers) download to your computer.
Keep your credentials! There is no way to return to this pop-up after you select Done to dismiss it. Make sure you store your credentials – either by copying/pasting the contents of each field out of the pop-up or by keeping the downloaded .txt file. We suggest adding the API Path value that you copied earlier (see Step 2).
Deleting an API Account
To delete a Store API account, under Actions, click the trashcan icon next to the Account Name.
You can delete multiple accounts at once by checking the box to the left of each account, then clicking the trashcan icon in the top right of the list.
As an app developer, what authentication options are there?
Any apps intended for sale on the BigCommerce App Marketplace must use OAuth. OAuth is compatible with all current and planned BigCommerce APIs, including v2 Webhooks and our v3 API. For more information, see our Developer Documentation.