PinPad API
The PinPad API provides secure PIN entry functionality for POS UI extensions, allowing you to display modal PIN pad interfaces for secure PIN collection, validation, and processing with customizable options and callback handling. The API enables secure authentication workflows within your extensions.
Anchor to Use casesUse cases
- Staff authentication: Implement secure authentication requiring PIN verification from staff.
- Access control: Create access control for sensitive operations like refunds or voids.
- Authorization: Build security features requiring PIN-based authorization for critical actions.
- Secure entry: Create secure data entry workflows requiring PIN confirmation.
Supported targets
- pos.
cart. line-item-details. action. menu-item. render - pos.
cart. line-item-details. action. render - pos.
customer-details. action. menu-item. render - pos.
customer-details. action. render - pos.
customer-details. block. render - pos.
draft-order-details. action. menu-item. render - pos.
draft-order-details. action. render - pos.
draft-order-details. block. render - pos.
exchange. post. action. menu-item. render - pos.
exchange. post. action. render - pos.
exchange. post. block. render - pos.
home. modal. render - pos.
home. tile. render - pos.
order-details. action. menu-item. render - pos.
order-details. action. render - pos.
order-details. block. render - pos.
product-details. action. menu-item. render - pos.
product-details. action. render - pos.
product-details. block. render - pos.
purchase. post. action. menu-item. render - pos.
purchase. post. action. render - pos.
purchase. post. block. render - pos.
register-details. action. menu-item. render - pos.
register-details. action. render - pos.
register-details. block. render - pos.
return. post. action. menu-item. render - pos.
return. post. action. render - pos.
return. post. block. render
Supported targets
- pos.
cart. line-item-details. action. menu-item. render - pos.
cart. line-item-details. action. render - pos.
customer-details. action. menu-item. render - pos.
customer-details. action. render - pos.
customer-details. block. render - pos.
draft-order-details. action. menu-item. render - pos.
draft-order-details. action. render - pos.
draft-order-details. block. render - pos.
exchange. post. action. menu-item. render - pos.
exchange. post. action. render - pos.
exchange. post. block. render - pos.
home. modal. render - pos.
home. tile. render - pos.
order-details. action. menu-item. render - pos.
order-details. action. render - pos.
order-details. block. render - pos.
product-details. action. menu-item. render - pos.
product-details. action. render - pos.
product-details. block. render - pos.
purchase. post. action. menu-item. render - pos.
purchase. post. action. render - pos.
purchase. post. block. render - pos.
register-details. action. menu-item. render - pos.
register-details. action. render - pos.
register-details. block. render - pos.
return. post. action. menu-item. render - pos.
return. post. action. render - pos.
return. post. block. render
Anchor to PropertiesProperties
The shopify global object provides secure PIN entry functionality. Access the following properties on shopify to display PIN pad interfaces for authentication and secure input.
- Anchor to showPinPadshowPinPadshowPinPad(onSubmit: (pin: number[]) => PinValidationResult | Promise<PinValidationResult>, options?: PinPadOptions) => void(onSubmit: (pin: number[]) => PinValidationResult | Promise<PinValidationResult>, options?: PinPadOptions) => voidrequiredrequired
Shows a PIN pad to the user in a modal dialog. The
function is called when the PIN is submitted and should validate the PIN, returning'accept'or'reject'.• When accepted: The modal dismisses and triggers the
callback—perform any post-validation navigation in this callback rather than in.• When rejected: Displays the optional
and keeps the modal open.Use for implementing secure authentication workflows, access control, or PIN-based verification systems.
PinValidationResult
Represents the validation outcome for an entered PIN. Indicates whether the PIN should be accepted or rejected, with optional error messaging for rejected PINs.
{result: 'accept'} | {result: 'reject'; errorMessage?: string}PinPadOptions
Specifies configuration options for displaying the PIN pad interface. Includes callback functions for PIN entry events, dismissal handling, and customizable labels and messaging.
- autoSubmit
Whether the pin should be automatically submitted when the user has entered the maximum PIN length. Use for PIN entry experiences where users don't need to manually submit after entering the required digits.
boolean - label
The content for the prompt on the pin pad. Use to provide clear instructions or context about what the PIN is being used for.
string - masked
Whether the entered PIN should be masked for security. When `true`, PIN digits are hidden from view. Use for secure PIN entry where visual privacy is important.
boolean - maxPinLength
The maximum length of the PIN (4-10 digits). Use to limit PIN length based on your security policies or authentication system constraints.
PinLength - minPinLength
The minimum length of the PIN (4-10 digits). Use to enforce PIN length requirements based on your security policies or authentication system requirements.
PinLength - onDismissed
The function to be called when the pin pad modal is dismissed. Receives a `PinPadResult` indicating whether PIN entry was completed and the entered PIN if available. Use for handling modal dismissal and processing final PIN results.
(result: PinPadResult) => void - onPinEntry
The function to be called when a pin is entered. Use for real-time PIN validation, progress feedback, or implementing custom PIN entry handling logic.
(pin: number[]) => void - pinPadAction
The call to action between the entry view and the keypad, consisting of a label and function that returns the pin. Use for custom PIN entry workflows or implementing specific authentication patterns.
PinPadActionType - title
The title shown in the modal header. Use to provide context about the PIN entry purpose or identify the specific authentication requirement.
string
PinLength
The valid PIN length values (4-10 digits). Commonly used to configure minimum and maximum PIN length requirements.
4 | 5 | 6 | 7 | 8 | 9 | 10PinPadResult
Represents the result of a PIN pad interaction, indicating whether PIN entry was completed and providing the entered PIN if available.
- completed
Whether the PIN entry was completed successfully. When `true`, the user entered a PIN and submitted it (or it was auto-submitted). When `false`, the user canceled the PIN pad modal without completing entry, typically by clicking a cancel button or dismissing the modal.
boolean - pin
The entered PIN as an array of individual digits (for example, `[1, 2, 3, 4]` for PIN "1234"). Each element is a number from 0-9. This array's length will be between `minPinLength` and `maxPinLength` inclusive. Only present when `completed` is `true`—when `completed` is `false`, this field is `undefined` since no PIN was entered.
number[]
PinPadActionType
Defines a custom action button for the PIN pad interface with a label and click handler.
- label
The content for the prompt on the pin pad. Use to provide clear instructions or context about what the PIN is being used for.
string - onClick
Called when the action button is clicked. Can return the PIN digits directly as an array of numbers, or return a Promise that resolves to the PIN array. Use for implementing custom PIN retrieval logic or validation workflows.
() => number[] | Promise<number[]>
Anchor to Best practicesBest practices
- Implement secure PIN validation: Validate PINs securely on your backend service rather than in client-side code, using the
onSubmitcallback to communicate with your secure validation endpoint. - Provide clear user feedback: Use appropriate labels, titles, and error messages to guide users through the PIN entry process.
- Handle PIN entry appropriately: Implement proper error handling for PIN validation failures, provide retry mechanisms, and ensure sensitive PIN data is handled securely throughout the process.
- Configure appropriate PIN constraints: Set reasonable PIN length requirements and masking options based on your security requirements and user experience considerations.
Anchor to LimitationsLimitations
PIN validation must be handled through the onSubmit callback and should be performed securely on your backend service rather than in client-side extension code.