locked
What's the recommeded way to charge for webservice access? RRS feed

  • Question

  • We are finishing up an app where part of the value is in the data-feed we provide.  For the app, we want to ship a demo that has a limited data set, but once the in-app purchase is made, we allow them full access to the data-feed.

    Gut reaction says just ship off apikeys to the clients once in-app purchases are completed, but obviously those could be passed around and compromised.  Is there a more secure way of accomplishing this?

    Thanks,

    Richie

    Sunday, August 11, 2013 8:35 AM

All replies

  • I'm not sure this helps me?  At some point of the in-app purchase process, I'm going to have to add an entry into my database to let me know that someone has purchased in app.  If I allow the app to connect to me after purchase and create an entry, I'm opening the registration endpoint up for anyone to add anything.

    Am I going about this the wrong way?

    Tuesday, August 13, 2013 6:22 AM