App Creation and Basic Settings

  • This is a guide explaining how to register and administer your app through the Cafe24 Developer Center.

App administration

  • When you sign in to the Developer Center, you'll see an administration screen where you can create and manage your app.
  • [1]: A new app may be created.
  • [2]: The registered app is shown and the basic status of the app can be checked.

1. New registration of App

  • [1]: App name
    Enter the name of your app. This name is used for internal management and not as the name for sale on the App Store.
  • [2] : App URL
    Enter the basic service URL on which your app can be serviced and promoted.
    The service of apps requires you to enter the SSL authentication URL in the form of https:// for flawless service.
    If you need to specify a port to be serviced, you can enter it together.
  • [3]: App Type
    You can choose the type of app to be created and serviced.
    The type of app selected is used as a reference for API Key issuance and cannot be changed later.
    Generally, you can select the Web Application unless the app is native.

2. Display and Status of Registered App

  • [1]: The date the app was created is displayed.
  • [2]: The representative icon of the app is displayed.
    A blank image is displayed with no icon registered.
  • [3]: App name is displayed.
    The name of your app displayed is for management, not for use on the App Store.
  • [4]: App status is displayed.
    The status of an app can be displayed as "in production," "under review," "review rejected," "for sale" and "sold."
    Should the app be rejected during the review process, an additional image of [6] will be shown.
    When the app has a "for sale" status, you are not allowed to arbitrarily delete the app, which can be processed and deleted upon inquiry at Cafe24.
  • [5]: Reason for review rejection is displayed.
    When an app is rejected upon review, you can see the reason for the rejection by clicking on the icon.

Registration of the App‘s Basic Information

  • Clicking on the app created in the Developer Center exposes a screen where you can register and manage the basic information of the app.

1. Registration of Basic Information of Apps > Basic information

  • [1]: App name can be modified.
    The app‘s initial name chosen during its creation is shown by default. You can modify the app’s name if necessary.
    The name listed here is for management purposes. It is not the name shown on the App Store.
  • [2]: App URL can be modified.
    The App URL entered during its creation is shown by default. You can modify the App URL if necessary.
    Please be careful when modifying the URL of the app for sale or in service because the modification may cause a hindrance in service.
  • [3]: Redirect URL(s) can be entered or modified.
    After an app is authenticated, you can enter the URL to be transmitted to redirect_uri.
    Separation of the URL can be input using the Enter key (Up to 10 URLs / Within 200 bytes).
    https must be used as a security policy (http is not supported).
    If you have a sub-domain, please only enter the representative domain name (e.g.
  • [4]: Representative icon of the app
    You can register representative icons to easily distinguish apps on the App Store or the shopping mall platform.
    Representative icons for apps help users identify and promote their apps.
    Recommended (registered) image: 120px * 120px / no larger than 50KB / png, jpg (jpeg)

2. Registration of Basic Information of Apps > Permission Information

  • [1]: API permissions can be added or removed.
    You can add or remove permissions for the APIs to be utilized by the apps. In order to use the API, the permission for use must be registered.
    When you select the permission, you will be asked for consent when installing an app on the shopping mall, whereas the API will be properly called as agreed.
    When calling for an unauthorized API, a 404 error (permission unauthorized) will occur and no API results will be obtained.
  • The classification and scope of application of permission are as follows:
Scope classification detail
Category Application Scope
Categories Information on categories, main displays and projects
Product Product information
Collection Information on brands, custom collection, manufacturers and trends
Supply Information on suppliers and suppliers/users
Personal Information on likes, wishes, and cart
Order Order information
Community Information on reviews and comments
Customer Customer, customer group and mileage
Notification Information on mail and message
Store Store information
Promotion Information on benefits, coupons, and serial coupons
Design Information on themes and pages
Application Information on application installation
SalesReport Information pertaining to the sales report
  • For detailed methods for security / authentication and API call using authorization, please refer to the Authentication / Security Guide, API Guide or API Support Tool Guide.
  • [2]: When you need to set up the rights of the sub-operators and suppliers of the shopping mall when executing the app, you can enter or modify the URL where the screen list and action permission list of the app can be confirmed.
    If you need to check and control the granted permission of the shopping mall operator within an app, please refer to the Operator Authority Development Guide.

3. Registration of Basic Information of App > Authentication Information

  • [1]: App type can be confirmed.
    The app type you selected during its creation is displayed. App types cannot be modified because they are relevant to API Key authentication.
  • [2]: App Key can be confirmed and copied.
    This is one of the 2 basic values of the key required for API usage. In general, the App Key is the same value as the Client ID in OAuth, as it is the value corresponding to the ID during the login to the shopping mall.
  • [3]: You can confirm, copy and reissue App Secret Keys.
    This is one of the 2 basic values of the key for API usage. In general, the App Secret Key is the same value as the password and the Client Secret in OAuth.
    App security can be seriously jeopardized if the App Key or App Secret Key are leaked or exposed.
    If you are caught in a suspicious situation, we strongly recommend that you reissue the App Secret Key and renew it.
    However, when the App Secret Key is reissued, you need to be approved to properly use the app again. Any re-issuance shall be made when considered absolutely necessary.
    If any re-issuance is made due to unavoidable reasons during the service, the service may be interrupted or the app may not operate properly.