(JavaScript) Shopware 6 - Store API Authentication

See more Shopware 6 Examples

Each sales channel has an accessKey, which can be generated in the administration or over the admin api. This accessKey is used for the authentication by providing it in the sw-access-key

You can test the authentication by sending a request to the store-api/v1/context endpoint

Note: This example only serves to test authentication. It returns a "token". This may lead you to believe that the returned token is what is required to authentication with subsequent Store API requests. This is NOT the case. The Store API requests simply authentication with the sw-access-key, just as this request does. The returned "token" is a context token which can be used to switch the different values of your current "session" like active language, currency or shipping location.

Furthermore, Store API requests don't actually require an OAuth2 access token. The OAuth2 access token is needed for API requests (i.e. "/api/v3/..." as opposed to "/store-api/v3/...")

For more information, see https://docs.shopware.com/en/shopware-platform-dev-en/store-api-guide/authentication?category=shopware-platform-dev-en/store-api-guide

Note

This example is intended for running within a Chilkat.Js embedded JavaScript engine. All Chilkat JavaScript examples require Chilkat v11.4.0 or greater.

var success = false;

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

var http = new CkHttp();

// Sends the following request

// GET http://shopware.development/store-api/v3/context
// --header sw-access-key SWSCYKQZODFVTVHJEHI0RFN0RG
// 
// {
//     "includes": {
//         "sales_channel_context": ["token"]
//     }
// }

// Use this online tool to generate code from sample JSON:
// Generate Code to Create JSON

var json = new CkJsonObject();
json.UpdateString("includes.sales_channel_context[0]","token");

// Put the access token in the sw-access-key request header.
http.SetRequestHeader("sw-access-key","<sales-channel-api-access-key>");

// The sales channel API access key is obtained from your Shopware 6 admin portal:


var url = "https://my-shopware-6-shop.de/store-api/v3/context";
var resp = new CkHttpResponse();
success = http.HttpJson("GET",url,json,"application/json",resp);
if (success == false) {
    console.log(http.LastErrorText);
    return;
}

var sbResponseBody = new CkStringBuilder();
resp.GetBodySb(sbResponseBody);
var jResp = new CkJsonObject();
jResp.LoadSb(sbResponseBody);
jResp.EmitCompact = false;

console.log("Response Body:");
console.log(jResp.Emit());

// If we get a 401 response, it may be that our access token expired and we need to fetch a new one.
var respStatusCode = resp.StatusCode;
console.log("Response Status Code = " + respStatusCode);
if (respStatusCode >= 400) {
    console.log("Response Header:");
    console.log(resp.Header);
    console.log("Failed.");
    return;
}

// Sample JSON response:
// (Sample code for parsing the JSON response is shown below)

// {
//     "token": "OCqj5ZEnpS0W9KgseOofPLqGArVjd5CE",
//     "apiAlias": "sales_channel_context"
//     ...
// }

// Sample code for parsing the JSON response...
// Use the following online tool to generate parsing code from sample JSON:
// Generate Parsing Code from JSON

var token = jResp.StringOf("token");
var apiAlias = jResp.StringOf("apiAlias");