Frequently asked questions

Amazon Business roles

What is a role?

A role is a mechanism used by Amazon Business APIs to determine whether an application has access to an operation or resource. As a developer, you must request and qualify for a role. Roles protect access to personally identifiable information (PII) and other sensitive data. Roles ensure developers have access only to required data.

How do I determine what roles to request?

Review the role descriptions to understand the purpose of each role. For more information, see Amazon Business API roles.

How do I select a role for my app?

You select a role for your app by populating your developer profile during the app registration. There's a section where you'll choose role(s) from the list provided.

How do I add or remove the role(s) for my app after submission?

In Action column, select Edit App. The role(s) you previously requested and approved displays.

To add, choose role(s) from the list. To remove, deselect the checkbox.

How do I add a new role after my app has been submitted or published?

To add a new role after your app has been published, do these steps:

1. Go to your developer profile and submit a role to be added.

2. Once your developer profile has been approved, go to your app configuration. Apply the newly approved role. Save the changes and relist the app.

3. After the app is approved, get new authorizations to generate a new refresh token. The refresh token will grant access to the API operations, reports, feeds, and notifications the new role will provide.

What happens when I call an operation for which I don't have the required role(s)?

The response to the request will have an HTTP status code of 403 and error information in the response body.

Developer account information

Do I need to create individual developer account for each Amazon Business marketplace?

No. You don't need to create a developer account for each Amazon Business marketplace. You can use the same developer account for another Amazon Business marketplace. But you'll have to follow the authorization process for each Amazon Business marketplace. The authorization process generates access and refresh tokens that are unique for each Amazon Business marketplace.

Do I need to create an app for each Amazon Business marketplace?

You can create a single app for all Amazon Business marketplace or an individual app for each Amazon Business marketplace. A single app option is recommended. Create multiple apps if you want to support different environment like test, User Acceptance Testing (UAT), or production. The maximum number of apps you can create is up to 10.

Error Messages

My customer has an issue with their email. Here's the error message.

{
    "errors": [
        {
            "code": "Unauthorized",
            "message": "Email is not authorized",
            "details": "End user email is not Authorized"
        }
    ]
}

This happens when the user is passing an email that isn't associated with the Amazon Business account or the user email falls under Matching and Clearing Engine (MACE).

The email address is a mandatory parameter in the header of the request. To resolve this issue, the user must pass an email in the x-amz-user-email field that is associated with the Amazon Business account. Also, the email shouldn't fall under MACE.

My customer has an issue with their access token. Here's the error message.

{
    "errors": [
        {
            "message": "Access to requested resource is denied.",
            "code": "Unauthorized",
            "details": "The access token you provided has expired."
        }
    ]
}

This happens when the user is passing a token in the x-amz-access-token field that's been expired. Access tokens expire after an hour.

To resolve this issue, you need to generate a refresh token. Refer to Onboarding Step 3: Authorize your Amazon Business API apps.

My customer has an issue with their grant code. Here's the error message.

{
    "error_description": "The request has an invalid grant parameter : code",
    "error": "invalid_grant"
}

This happens because the grant code has expired. Grant code expires in five minutes after generation.

To resolve the issue, generate a refresh token to get the grant code. Refer to Onboarding Step 3: Authorize your Amazon Business API apps.

OAuth

Does the refresh token expire?

No. Refresh token doesn’t expire, but it won't work if the authorization is revoked.

What are the steps to generate access and refresh tokens?

For guidance on how to generate access and refresh tokens, refer to Onboarding Step 3: Authorize your Amazon Business API apps.

What happens if I’m not an admin of all legal entities in Amazon Business while performing authorization activity?

You’ll receive an error and unable to proceed. Learn more.

Can I provide consent if I don't have an admin account or not added as an admin at a legal entity level?

No. You must sign in using an admin account to provide consent. An error will occur if you aren't using an admin account while providing consent. To resolve the error, do these steps.

I'm getting an error that says "We're sorry. We can't connect this account." What's the cause of this error?

This error is caused by incorrect redirect_uri and applicationId. You must use the same redirect_uri and applicationId you've provided in SPP. Any missing or additional characters will cause an error. To resolve the error, do these steps.

Others

Are there guidelines for designing an apps using the Amazon Business APIs?

Yes. We provide guidance on what is required when displaying Amazon Business products within your platform. Compliance with these standards are enforced. Refer to Product Search API customer experience guidelines.

What is the difference between public app and private app?

Public app. An app that is publicly available and is authorized by a business customer.
Private app. An app that is available only to your organization and is self-authorized.

My application requires a higher transaction per second (TPS). Can we increase the TPS?

To request an increase in TPS, please reach out to your Amazon Business point of contact.

Is a sandbox environment available for Amazon Business APIs?

Yes, Amazon Business supports a static sandbox environment for select APIs. For more information, see Amazon Business API sandbox.

Product Search API

My customer isn't seeing merchant ratings in `getProducts` call. What could be the reason?

By default, the merchant ratings and feedback values are inactive. We activate these fields by request.

My customer is getting an "InvalidInput" error when calling the `getProductsByAsins` method. What causes this error?

{
    "errors": [
        {
            
            "code": "InvalidInput"
        }
    ]
}

getProductsByAsins is a POST method as opposed to other methods. Please ensure that they have the right method selected when making the API call. Also, ensure that the content being posted has the content-type JSON.