Why don’t I get notifications when apps need to update their permissions? There should be a proactive notice so we can make the updates before a user runs into a problem. Why do we have to wait until someone is trying to complete a task and cannot because of the update - which they may not have permission to do on their own - and it prevents them from doing their work? Why wait until we run into a problem and have the user notify us rather than proactively take care of changes like that so that we can continue to function smoothly?
That’s a very good idea and one I think is technically possible if added to the app by the developer. I’m going to look into it for as much our app’s sake as your sanity. ![]()
Hey @seastmond Shopify currently doesn’t send advance notifications when an app changes its permissions so admins often only find out after a user runs into an issue. Ideally there should be a warning before the update goes live so problems can be avoided. For now this is mostly handled manually or depends on the app developer.
Thank You..
Did this for our app so yeah, it’s doable. Roughly:
A boot-time job checks each install’s granted scopes against what the current app requires. For any shop that’s drifted, fire off a one-shot email to the merchant admin. Keep a little marker per shop so the same scope set never gets emailed twice.
It took the best part of two days to actually land.
Honestly, given how rarely most apps change scopes and how fiddly the journey is, I get why it isn’t standard practice. Us indie devs don’t make much from app revenue, so the stuff we build past the bare minimum tends to be the stuff we do out of love for the craft. This was one of those.
Hello @seastmond
Many merchants and teams face this problem, particularly stores with staff roles where app permissions are granular. Currently, the majority of permission updates are surfaced only at the triggering of the app action, which leads to workflow interruptions rather than proactively preventing them. A possible workaround is to designate an admin who checks regularly the Apps and Sales Channels area for any approval requests. Some groups also employ internal SOP checklists or monitoring scripts to do weekly app reviews in order to spot permissions changes prior to staff running into a blocked workflow.
The biggest operational problem is that the person blocked by the permission issue is often not the person who can actually approve the update.
So the workflow silently breaks first, then the staff member has to escalate it internally, explain what happened, wait for admin access, and only then can normal work continue again.