Changelog

April 24, 2026

Composable Core Updates: Private Token

Updates to the Composable Core course reflect the current recommended token types for client-side and server-side GraphQL Storefront API usage.

  • Storefront Token — clarifies that the Storefront Token (/v3/storefront/api-token) is for client-side use only; removes references to server-side support
  • Private Token — promotes the Private Token (/v3/storefront/api-token-private) as the correct token for server-side and headless server-to-server integrations; moves Server-Side Context content under this section
  • Lab updates — renames the private_token Postman variable to private_storefront_token and removes the B2B scope from the token creation request
  • Customer context — adds a callout distinguishing Bearer token types (Storefront Token for client-side, Private Token for server-side) in the customer context lesson

For details, see the Composable Core course.