Skip to content

Amazon MWS Auth Token

Service Name: Amazon Marketplace Web Service

Service Description: Amazon Marketplace Web Service (Amazon MWS) is an integrated web service API that helps Amazon sellers programmatically exchange data on listings, orders, payments, reports, and more.

Service Address: https://developer.amazonservices.com/

Amazon MWS Auth Token

AMAZON_MWS_AUTH_TOKEN

  • Validation Type: -
  • IP Allow list: Does not exist
  • Secret Access Scope: Grants access to Amazon Marketplace Web Service APIs for managing seller accounts, orders, inventory, and reports.
  • Secret Revokement URL: https://sellercentral.amazon.com/gp/mws/registration/register.html
  • Secret Example: amzn.mws.4ea38b7b-f563-7709-4bae-87aeaEXAMPLE
  • Suspicious Activity Investigation Instructions:
  • Review Amazon MWS activity logs for unauthorized API calls or unusual patterns.
  • Check for unexpected inventory changes, order modifications, or report generations.
  • Monitor for unauthorized third-party application access to your seller account.
  • Verify if there are any unexpected changes to seller account settings or preferences.
  • Mitigation Instructions:
  • Log in to Seller Central and navigate to the MWS section.
  • Revoke the compromised MWS Auth Token immediately.
  • Generate a new MWS Auth Token if needed.
  • Review and update authorized developer permissions.
  • Change your Seller Central password and enable two-factor authentication if not already enabled.
  • Contact Amazon Seller Support if unauthorized transactions were made.