cb6856d274
Apple servers sometimes takes more than the default time causing client timeouts, increase the default timeout to cater increases response times.
177 lines
5.0 KiB
Go
177 lines
5.0 KiB
Go
package appstore
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/http"
|
|
"time"
|
|
)
|
|
|
|
//go:generate mockgen -destination=mocks/appstore.go -package=mocks github.com/awa/go-iap/appstore IAPClient
|
|
|
|
const (
|
|
// SandboxURL is the endpoint for sandbox environment.
|
|
SandboxURL string = "https://sandbox.itunes.apple.com/verifyReceipt"
|
|
// ProductionURL is the endpoint for production environment.
|
|
ProductionURL string = "https://buy.itunes.apple.com/verifyReceipt"
|
|
// ContentType is the request content-type for apple store.
|
|
ContentType string = "application/json; charset=utf-8"
|
|
)
|
|
|
|
// IAPClient is an interface to call validation API in App Store
|
|
type IAPClient interface {
|
|
Verify(ctx context.Context, reqBody IAPRequest, resp interface{}) error
|
|
}
|
|
|
|
// Client implements IAPClient
|
|
type Client struct {
|
|
ProductionURL string
|
|
SandboxURL string
|
|
httpCli *http.Client
|
|
}
|
|
|
|
var (
|
|
ErrAppStoreServer = errors.New("AppStore server error")
|
|
|
|
ErrInvalidJSON = errors.New("The App Store could not read the JSON object you provided.")
|
|
ErrInvalidReceiptData = errors.New("The data in the receipt-data property was malformed or missing.")
|
|
ErrReceiptUnauthenticated = errors.New("The receipt could not be authenticated.")
|
|
ErrInvalidSharedSecret = errors.New("The shared secret you provided does not match the shared secret on file for your account.")
|
|
ErrServerUnavailable = errors.New("The receipt server is not currently available.")
|
|
ErrReceiptIsForTest = errors.New("This receipt is from the test environment, but it was sent to the production environment for verification. Send it to the test environment instead.")
|
|
ErrReceiptIsForProduction = errors.New("This receipt is from the production environment, but it was sent to the test environment for verification. Send it to the production environment instead.")
|
|
ErrReceiptUnauthorized = errors.New("This receipt could not be authorized. Treat this the same as if a purchase was never made.")
|
|
|
|
ErrInternalDataAccessError = errors.New("Internal data access error.")
|
|
ErrUnknown = errors.New("An unknown error occurred")
|
|
)
|
|
|
|
// HandleError returns error message by status code
|
|
func HandleError(status int) error {
|
|
var e error
|
|
switch status {
|
|
case 0:
|
|
return nil
|
|
case 21000:
|
|
e = ErrInvalidJSON
|
|
case 21002:
|
|
e = ErrInvalidReceiptData
|
|
case 21003:
|
|
e = ErrReceiptUnauthenticated
|
|
case 21004:
|
|
e = ErrInvalidSharedSecret
|
|
case 21005:
|
|
e = ErrServerUnavailable
|
|
case 21007:
|
|
e = ErrReceiptIsForTest
|
|
case 21008:
|
|
e = ErrReceiptIsForProduction
|
|
case 21009:
|
|
e = ErrInternalDataAccessError
|
|
case 21010:
|
|
e = ErrReceiptUnauthorized
|
|
default:
|
|
if status >= 21100 && status <= 21199 {
|
|
e = ErrInternalDataAccessError
|
|
} else {
|
|
e = ErrUnknown
|
|
}
|
|
}
|
|
|
|
return fmt.Errorf("status %d: %w", status, e)
|
|
}
|
|
|
|
// New creates a client object
|
|
func New() *Client {
|
|
client := &Client{
|
|
ProductionURL: ProductionURL,
|
|
SandboxURL: SandboxURL,
|
|
httpCli: &http.Client{
|
|
Timeout: 30 * time.Second,
|
|
},
|
|
}
|
|
return client
|
|
}
|
|
|
|
// NewWithClient creates a client with a custom http client.
|
|
func NewWithClient(client *http.Client) *Client {
|
|
return &Client{
|
|
ProductionURL: ProductionURL,
|
|
SandboxURL: SandboxURL,
|
|
httpCli: client,
|
|
}
|
|
}
|
|
|
|
// Verify sends receipts and gets validation result
|
|
func (c *Client) Verify(ctx context.Context, reqBody IAPRequest, result interface{}) error {
|
|
b := new(bytes.Buffer)
|
|
if err := json.NewEncoder(b).Encode(reqBody); err != nil {
|
|
return err
|
|
}
|
|
|
|
req, err := http.NewRequest("POST", c.ProductionURL, b)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
req.Header.Set("Content-Type", ContentType)
|
|
req = req.WithContext(ctx)
|
|
resp, err := c.httpCli.Do(req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer resp.Body.Close()
|
|
if resp.StatusCode >= 500 {
|
|
return fmt.Errorf("Received http status code %d from the App Store: %w", resp.StatusCode, ErrAppStoreServer)
|
|
}
|
|
return c.parseResponse(resp, result, ctx, reqBody)
|
|
}
|
|
|
|
func (c *Client) parseResponse(resp *http.Response, result interface{}, ctx context.Context, reqBody IAPRequest) error {
|
|
// Read the body now so that we can unmarshal it twice
|
|
buf, err := ioutil.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = json.Unmarshal(buf, &result)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// https://developer.apple.com/library/content/technotes/tn2413/_index.html#//apple_ref/doc/uid/DTS40016228-CH1-RECEIPTURL
|
|
var r StatusResponse
|
|
err = json.Unmarshal(buf, &r)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if r.Status == 21007 {
|
|
b := new(bytes.Buffer)
|
|
if err := json.NewEncoder(b).Encode(reqBody); err != nil {
|
|
return err
|
|
}
|
|
|
|
req, err := http.NewRequest("POST", c.SandboxURL, b)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
req.Header.Set("Content-Type", ContentType)
|
|
req = req.WithContext(ctx)
|
|
resp, err := c.httpCli.Do(req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer resp.Body.Close()
|
|
if resp.StatusCode >= 500 {
|
|
return fmt.Errorf("Received http status code %d from the App Store Sandbox: %w", resp.StatusCode, ErrAppStoreServer)
|
|
}
|
|
|
|
return json.NewDecoder(resp.Body).Decode(result)
|
|
}
|
|
|
|
return nil
|
|
}
|