Reputation: 13283
Can I use Purchase Status API to validate if app was bought via Play Store
I have an application which communicates with my backend and I want the backend to accept and respond only if the user bought the app via the play store and did not steal it. So the idea is:
- User buys the app via playstore
- app communicates via server and sends the gmail address of the user who uses the app
- server asks Purchase Status API if the user bought the app with the passed gmail account
This way it would not be possible to crack the application in any way, if the user did not buy it via the play store the server can easily detect this and there is no way to fake it
the problem is it seems to me that the purchase status api is only for in app purchases and not for checking if the app was bought via the playserver itself.. Does anyone have infos how I can do what I want to do? Did no one before me had this problem?
Upvotes: 3
Views: 1423
Answers (1)
Reputation: 34810
According to the documentation, if you're providing subscription-style services, the Purchase API provides the ability to verify the token (not the user's GMail ID) provided to the device on purchase. The token is securely embedded (more or less) and is, we assume, difficult to find and copy to another device.
If you're worried about piracy of your app, look here:
How to secure my app against piracy
Upvotes: 2
Related Questions
- How to verify purchase for android app in server side (google play in app billing v3)
- How to get purchase status from Google Play Billing?
- Android: best practice of checking In App Purchase status?
- Android check if in app purchase was bought before
- Checking product purchase status
- Validating google play purchases using Purchase Status API
- How to detect In-App Purchase's Status on Activity Result Method
- Check wether a InApp is purchased
- Android - check if in app purchase has been done
- Is there a Rest API to verify in app purchases?