flutter/GitJournal
1
0
Fork 0
mirror of https://github.com/GitJournal/GitJournal.git synced 2025-06-30 11:33:34 +08:00
Code Issues Packages Projects Releases Wiki Activity

IAP: Validate the token on the server side

Browse Source 
As recommended by Apple and Google.
This commit is contained in:
Vishesh Handa
2020-07-21 10:33:13 +02:00
parent 1b49b7e2db
commit e7984f87f3
1 changed files with 57 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

95
lib/iap.dart
View File

@ -1,8 +1,10 @@
import 'dart:convert';
import 'dart:io' show Platform; import 'dart:io' show Platform;
import 'package:gitjournal/app.dart'; import 'package:gitjournal/app.dart';
import 'package:gitjournal/utils/logger.dart'; import 'package:gitjournal/utils/logger.dart';
import 'package:in_app_purchase/in_app_purchase.dart'; import 'package:in_app_purchase/in_app_purchase.dart';
import 'package:http/http.dart' as http;
import 'package:gitjournal/settings.dart'; import 'package:gitjournal/settings.dart';
@ -24,8 +26,13 @@ class InAppPurchases {
} }
var sub = await _subscriptionStatus(); var sub = await _subscriptionStatus();
var isPro = sub == null ? false : sub.isPro; if (sub == null) {
var expiryDate = sub == null ? "" : sub.expiryDate.toIso8601String(); Log.i("Failed to get subscription status");
return;
}
var isPro = sub.isPro;
var expiryDate = sub.expiryDate.toIso8601String();
Log.i(sub.toString()); Log.i(sub.toString());
if (Settings.instance.proMode != isPro) { if (Settings.instance.proMode != isPro) {
@ -44,55 +51,67 @@ class InAppPurchases {
var iapConn = InAppPurchaseConnection.instance; var iapConn = InAppPurchaseConnection.instance;
if (Platform.isIOS) { if (Platform.isIOS) {
await iapConn.refreshPurchaseVerificationData(); var verificationData = await iapConn.refreshPurchaseVerificationData();
var dt = await getExpiryDate(verificationData.serverVerificationData, "");
var isPro = dt != null ? dt.isAfter(DateTime.now()) : false;
return SubscriptionStatus(isPro, dt);
} else if (Platform.isAndroid) {
var response = await iapConn.queryPastPurchases(); var response = await iapConn.queryPastPurchases();
for (var purchase in response.pastPurchases) { for (var purchase in response.pastPurchases) {
var dt = DateTime.fromMillisecondsSinceEpoch( var dt = await getExpiryDate(
int.parse(purchase.transactionDate)); purchase.verificationData.serverVerificationData,
Log.i("ios Purchase dt: $dt"); purchase.productID);
Log.i(purchase.verificationData.serverVerificationData); if (dt == null || !dt.isAfter(DateTime.now())) {
dt = dt.add(const Duration(days: 31));
if (!dt.isAfter(DateTime.now())) {
continue; continue;
} }
return SubscriptionStatus(true, dt); return SubscriptionStatus(true, dt);
} }
} else if (Platform.isAndroid) { return SubscriptionStatus(false, DateTime.now().toUtc());
var response = await iapConn.queryPastPurchases();
if (response.pastPurchases.isEmpty) {
Log.i("No Past Purchases Found");
return null;
}
for (var purchase in response.pastPurchases) {
var dt = DateTime.fromMillisecondsSinceEpoch(
int.parse(purchase.transactionDate));
return SubscriptionStatus(true, dt.add(const Duration(days: 31)));
}
} }
return null; return null;
/*
for (var purchase in response.pastPurchases) {
var difference =
DateTime.now().difference(purchase.transactionDate);
print(purchase);
print(purchase.productID);
print(purchase.purchaseID);
print(purchase.transactionDate);
print(purchase.verificationData);
print(purchase.verificationData.localVerificationData);
print(purchase.verificationData.serverVerificationData);
print(purchase.verificationData.source);
InAppPurchaseConnection.instance.
}
*/
} }
} }
const base_url = 'https://us-central1-gitjournal-io.cloudfunctions.net';
const ios_url = '$base_url/IAPIosVerify';
const android_url = '$base_url/IAPAndroidVerify';
Future<DateTime> getExpiryDate(String receipt, String sku) async {
assert(receipt.isNotEmpty);
var body = {
'receipt': receipt,
"sku": sku,
};
Log.i("getExpiryDate ${json.encode(body)}");
var url = Platform.isIOS ? ios_url : android_url;
var response = await http.post(url, body: json.encode(body));
if (response.statusCode != 200) {
Log.e("Received Invalid Status Code from GCP IAP Verify", props: {
"code": response.statusCode,
"body": response.body,
});
return null;
}
Log.i("IAP Verify body: ${response.body}");
var b = json.decode(response.body) as Map;
if (b == null || !b.containsKey("expiry_date")) {
Log.e("Received Invalid Body from GCP IAP Verify", props: {
"code": response.statusCode,
"body": response.body,
});
return null;
}
var expiryDateMs = b['expiry_date'] as int;
return DateTime.fromMillisecondsSinceEpoch(expiryDateMs);
}
class SubscriptionStatus { class SubscriptionStatus {
final bool isPro; final bool isPro;
final DateTime expiryDate; final DateTime expiryDate;