Shopify Admin API access scopes staff permissions query customer fields app token has scope acting user cannot query field

Symptom

The app token has the new scope but the acting user still cannot query the field.

Why This Happens

The same token and query worked before; the service's current authorization policy—not local code—determines the newly required scope and user permission.

Common Wrong Fixes

• Changing local code without checking the current external contract.
• Retrying the same install, build, or API call with no version/source change.
• Applying a broad unsafe bypass when a narrow compatibility fix is available.

Codex Search Keywords

These are the search terms observed in a neutral Codex validation run for this failure shape.

site:shopify.dev customer API acting user still cannot query field user permissions app scope Shopify customer API permissions staff member customers
Shopify Admin API access scopes staff permissions query customer fields app token has scope acting user cannot query field
Shopify Admin API staff permissions access scopes customer read_customers
https://shopify.dev/docs/api/admin-graphql/latest/objects/Customer
https://shopify.dev/docs/api/admin-graphql/latest/mutations/customerCreate
https://shopify.dev/docs/apps/build/authentication-authorization/access-tokens/authorization-code-grant
'online access tokens' in https://shopify.dev/docs/apps/build/authentication-authorization/access-tokens/authorization-code-grant

Source Trail

• Shopify customer marketing URL fields require write access: https://shopify.dev/changelog/customer-marketing-url-fields-now-require-write-access
• Official reference opened by Codex: https://shopify.dev/docs/api/admin-graphql/latest/objects/Customer
• Official reference opened by Codex: https://shopify.dev/docs/api/admin-graphql/latest/mutations/customerCreate
• Official reference opened by Codex: https://shopify.dev/docs/apps/build/authentication-authorization/access-tokens/authorization-code-grant