Swifty Receipt Validator
A swift helper to handle app store receipt validation.
Before you go live
- Test, Test, Test
Please test this properly, including production mode which will use apples production server URL. Use Xcode`s release mode to test this to make sure everything is working. This is not something you want take lightly, triple check purchases are working when your app is in release mode.
Requirements
- iOS 11.4+
- Swift 5.0+
Installation
Swift Package Manager
The Swift Package Manager is a tool for automating the distribution of Swift code and is integrated into the swift compiler.
To add a swift package to your project simple open your project in xCode and click File > Swift Packages > Add Package Dependency.
Than enter https://github.com/crashoverride777/swifty-receipt-validator.git as the repository URL and finish the installation wizard.
Alternatively if you have another swift package that requires SwiftyReceiptValidator as a dependency it is as easy as adding it to the dependencies value of your Package.swift.
dependencies: [
.package(url: "https://github.com/crashoverride777/swifty-receipt-validator.git", from: "6.1.0")
]Cocoa Pods
CocoaPods is a dependency manager for Cocoa projects. Simply install the pod by adding the following line to your pod file
pod 'SwiftyReceiptValidator'Manually
Altenatively you can drag the Sources folder and its containing files into your project.
Usage
Add import (if using cocoaPods or SwiftPackageManager)
- Add the import statement to your swift file(s) when you installed via SwiftPackageManager or CocoaPods
import SwiftyReceiptValidatorInstantiate Receipt Validator
Instantiate SwiftyReceiptValidator inside your class that handles in app purchases.
- Custom Configuration (Recommended)
Apple's official recommendation to perform receipt validation is to connect to your own server, which then connects to Apple's servers to validate the receipts.
class SomeClass {
let receiptValidator: SwiftyReceiptValidatorType
init() {
let configuration = SRVConfiguration(
productionURL: "your validation server production url",
sandboxURL: "your validation server sandbox url",
sessionConfiguration: .default
)
receiptValidator = SwiftyReceiptValidator(configuration: configuration, isLoggingEnabled: false)
}
}Your own webserver would than send the received response to apples servers for validation
https://buy.itunes.apple.com/verifyReceipthttps://sandbox.itunes.apple.com/verifyReceipt
and handle the response
- Standard Configuration (Not Recommended)
Standard configuration works without your own webserver by sending the validation request directly to apples servers. This approach is not very secure and is therefore not recommended.
class SomeClass {
let receiptValidator: SwiftyReceiptValidatorType
init() {
receiptValidator = SwiftyReceiptValidator(configuration: .standard, isLoggingEnabled: false)
}
}Validate Purchases
- Go to the following delegate method in your in app purchase code, which you must implement.
extension SomeClass: SKPaymentTransactionObserver {
func paymentQueue(_ queue: SKPaymentQueue, updatedTransactions transactions: [SKPaymentTransaction]) {
transactions.forEach { transaction in
switch transaction.transactionState {
...
}
}
}
}and modify the .purchased case to look like this
case .purchased:
// Transaction is in queue, user has been charged. Client should complete the transaction.
let productId = transaction.payment.productIdentifier
let validationRequest = SRVPurchaseValidationRequest(
productId: productId,
sharedSecret: "your shared secret setup in iTunesConnect or nil when dealing with non-subscription purchases"
)
receiptValidator.validate(validationRequest) { result in
switch result {
case .success(let response):
defer {
// IMPORTANT: Finish the transaction ONLY after validation was successful
// if validation error e.g due to internet, the transaction will stay in pending state
// and than can/will be resumed on next app launch
queue.finishTransaction(transaction)
}
print("Receipt validation was successfull with receipt response \(response)")
// Unlock products and/or do additional checks
case .failure(let error):
print("Receipt validation failed with error \(error.localizedDescription)")
// Inform user of error
}
}In older versions of SwiftyReceiptValidator I was suggesting to also add this code to the .restored case which was incorrect.
Note: There is also Combine support for this method if you are targeting iOS 13 and above.
let cancellable = receiptValidator
.validatePublisher(for: validationRequest)
.map { response in
// handle response
}
.mapError { error in
// handle error
}Validate Subscriptions
- To validate your subscriptions (e.g. on app launch), create a subscription validation request and validate it. This will search for all subscription receipts found on the device.
let validationRequest = SRVSubscriptionValidationRequest(
sharedSecret: "your shared secret setup in iTunesConnect",
refreshLocalReceiptIfNeeded: false,
excludeOldTransactions: false,
now: Date()
)
receiptValidator.validate(validationRequest) { result in
switch result {
case .success(let response):
print(response.receiptResponse) // full receipt response
print(response.validSubscriptionReceipts) // convenience array for active subscription receipts
// Check the validSubscriptionReceipts and unlock products accordingly
// or disable features if no active subscriptions are found e.g.
if response.validSubscriptionReceipts.isEmpty {
// disable subscription features etc
} else {
// Validate subscription receipts are sorted by latest expiry date
// enable subscription features etc
}
case .failure(let error):
switch error {
case .noReceiptFoundInBundle:
break
// do nothing, see description below
case .subscriptioniOS6StyleExpired(let statusCode):
// Only returned for iOS 6 style transaction receipts for auto-renewable subscriptions.
// This receipt is valid but the subscription has expired.
// disable subscription features
default:
// do nothing or inform user of error during validation e.g UIAlertController
}
}
}Setting refreshLocalReceiptIfNeeded to true will create a SKReceiptRefreshRequest if no receipt is found in your apps bundle.
I would recommend to always set this flag to false for the following reasons.
- Creating a
SKReceiptRefreshRequestwill always show an iTunes password prompt which might not be wanted in your apps flow. - When you call this at app launch you can handle the return
SRVError.noReceiptFoundInBundleerror discretly. - Once a user made an in app purchase there should always be a receipt in your apps bundle.
- Users re-installing your app which have an existing subscription should use the restore functionality in your app which is a requirement when using in app purchases (https://developer.apple.com/documentation/storekit/skpaymentqueue/1506123-restorecompletedtransactions).
Note: There is also Combine support for this method if you are targeting iOS 13 and above
let cancellable = receiptValidator
.validatePublisher(for: validationRequest)
.map { response in
// handle response
}
.mapError { error in
// handle error
}Check auto-renew status
If you want to check the users auto renewal status it is recommended, as far as I understand, to 1st check the pending renewal info and than fall back on the current subscription status.
let validationRequest = SRVSubscriptionValidationRequest(...)
receiptValidator.validate(validationRequest) { result in
switch result {
case .success(let response):
let isAutoRenewOn: Bool
if let pendingRenewalInfo = response.receiptResponse.pendingRenewalInfo, !pendingRenewalInfo.isEmpty {
isAutoRenewOn = pendingRenewalInfo.first { $0.autoRenewStatus == .on } != nil
} else {
isAutoRenewOn = response.validSubscriptionReceipts.first { $0.autoRenewStatus == .on } != nil
}
case .failure(let error):
...
}
}Show Introductory Price
If a previous subscription period in the receipt has the value “true” for either the is_trial_period or the is_in_intro_offer_period key,
the user is not eligible for a free trial or introductory price within that subscription group.
SwiftyReceiptValidator provides a convenience boolean for this
let validationRequest = SRVSubscriptionValidationRequest(...)
receiptValidator.validate(validationRequest) { result in
switch result {
case .success(let response):
response.validSubscriptionReceipts.forEach { receipt in
print(receipt.canShowIntroductoryPrice)
}
case .failure(let error):
...
}Unit Tests
In order to unit tests your in app purchase class it is recommended to always inject the type protocol into your class instead of the concret implementation
- Not Recommended
class SomeClass {
let receiptValidator: SwiftyReceiptValidator
init(receiptValidator: SwiftyReceiptValidator) { ... }
}- Recommended
class SomeClass {
let receiptValidator: SwiftyReceiptValidatorType
init(receiptValidator: SwiftyReceiptValidatorType) { ... }
}- UnitTest example
class MockReceiptValidator { }
extension MockReceiptValidator: SwiftyReceiptValidatorType { ... }
class SomeClassTests {
func test() {
let sut = SomeClass(receiptValidator: MockReceiptValidator())
}
}- Mocking models
SRVReceiptResponse.mock()
SRVReceipt.mock()
SRVReceiptInApp.mock()
SRVPendingRenewalInfo.mock()
SRVSubscriptionValidationResponse.mock()StoreKit Alert Controllers
When you get to the purchase code and to the .purchased switch statement, StoreKit automatically shows an AlertController ("Thank you, purchase was succesfull"). This is the point receipt validation starts and you might want to display a custom loading/validation alert. I dont think you can disable showing the default alert.
Final Note
As per apples guidlines you should always first connect to apples production servers and than fall back on apples sandbox servers if needed. So keep this in mind when testing in sandbox mode, validation may take a bit longer due to this.