Skip to main content
modiva.ai
Sign In
← All docs

Setup guide

Connect Shopify

E-commerceOAuth 2.0Shopify developer docs ↗

Shopify connects through OAuth 2.0. You authorize Modiva from your store's own consent screen and the store domain (e.g. mystore.myshopify.com) identifies which store connects — Modiva then reads and writes your products, orders and customers through one unified API and MCP server. Shopify issues long-lived offline access tokens that do not expire, so your connection stays healthy until you uninstall the app, with no reconnecting required.

Before you start

  • A Shopify store, and your store domain (e.g. mystore.myshopify.com).
  • Permission in that store to approve and install an app (typically the store owner or a staff member with app-install rights).

Step-by-step setup

  1. 1

    Sign in to Modiva

    Log in at modiva.ai and open the Dashboard. You need a Modiva account before you can connect any platform — creating one takes a minute and no credit card is required for the free tier.

  2. 2

    Open Connections → New connection

    In the left sidebar choose Connections, then click New connection. You'll see the full catalogue of platforms grouped by category (Social, Ads, CRM and E-commerce).

  3. 3

    Select Shopify

    Click the Shopify card and enter your store domain (e.g. mystore.myshopify.com). Modiva redirects you to your store's official sign-in and permission screen — your password is entered on Shopify, never on Modiva.

  4. 4

    Authorize Modiva on Shopify

    Review the access Modiva is requesting and approve it. The store domain you entered determines which store Modiva connects, so make sure it points at the shop you want.

  5. 5

    You're connected

    Shopify sends you back to Modiva and the connection appears with a green Connected status. From here it's available to every MCP key and API call in your workspace.

Permissions Modiva requests

When you connect Shopify, Modiva asks only for the access it needs to run the tools you use. You can revoke it any time from your Shopify admin’s apps settings or by disconnecting in Modiva.

  • Read your store identity
  • Read and write products and inventory
  • Read and write orders
  • Read and write customers
  • Read and write discounts and price rules
  • Read and write marketing events
  • Read and write pages and files
  • Read analytics (ShopifyQL)

Troubleshooting & FAQ

Where is my Shopify password stored?

Nowhere. You sign in on Shopify's own site and Modiva only receives a scoped access token, which is encrypted at rest with AES-256-GCM. Modiva never sees your password.

Which Shopify store gets connected?

The store whose domain you enter at the start of the flow (e.g. mystore.myshopify.com). The authorize and token hosts are per-shop, so the store domain identifies exactly which store you're connecting.

Do I need a paid Shopify plan?

You need an active Shopify store. The products, orders and customers APIs Modiva uses are part of the Admin API; some advanced data may depend on your plan, but connecting and managing your catalogue and orders works across plans.

Will my token ever need refreshing?

No. Shopify issues long-lived offline access tokens that do not expire. Your connection stays healthy until the Modiva app is uninstalled from your store, so you won't be asked to reconnect in the background.

How do I disconnect?

Open Connections, click the Shopify row and choose Disconnect. Modiva deletes the stored token immediately. You can also uninstall Modiva from your Shopify admin's apps settings, which revokes the token.

Need help with Shopify?

Reach the team any time from our support page, or ask Fin, our AI support agent.