1
Does anyone know how to implement this function when working with Google Billing?
I saw that a token should be generated for license check and prevent fraud.
But someone knows how to implement, why implement, and the risks you run if not implemented?
2
I think here is very well explained :)
http://codigo-google.blogspot.com.br/2013/02/implementar-in-app-billing-em-android.html
1
Developerpayload is just another way to make the whole purchase process more secure. If it is not implemented, you are dropping one more check to see if the request is true. Would be letting a user (using hack?) buy various items from your app without paying you, for example.
When starting the purchase process within the app, you create a payload, which should be different for each user, but not different for each device (because if a user makes a purchase on one device, he has to be able to recover that purchase on another device). Using a random string is also not cool, for the same reason the device change.
The verifyDeveloperPayload() method is used to verify that the payload that came from the request is the same as the one you used to start the request.
The recommended is to use an own server to store this information, so regardless of the version of the app, or the device used, it is possible to verify that the payload is correct.
Browser other questions tagged android android-billing
You are not signed in. Login or sign up in order to post.
So far so good, but in case I don’t want (or can’t) have a server of my own, is there any way I can do this check? I saw here that maybe I can generate the key at the time of the request and when there is a return, in case of purchase, I check if it was the same generated in the request. Sometimes it can work...
– Cícero Moura