GraphQL Admin API lets you build apps and integrations that extend and enhance the Shopify admin.
All GraphQL Admin API queries require a valid Shopify access token. Include your token as a X-Shopify-Access-Token header on all API queries.
Access scopes for installing App: To keep the platform secure, apps need to request specific access scopes during the install process. Only request as much data access as your app needs to work.
GraphQL queries are executed by sending POST HTTP requests to the endpoint:
https://{store_name}.myshopify.com/admin/api/2025-01/graphql.json
QueryRoot is the schema’s entry-point for queries. Queries are equivalent to making a GET request in REST.
Mutation create and modify objects, similar to a PUT, POST, or DELETE request in REST. However, unlike REST, GraphQL mutations are sent to a single endpoint and use the POST HTTP method.