├── .gitattributes ├── .gitignore ├── AppStoreServerApi.ConsoleSample ├── AppStoreServerApi.ConsoleSample.csproj └── Program.cs ├── AppStoreServerApi.sln ├── AppStoreServerApi ├── AppStoreServerApi.csproj ├── AppleAppstoreClient.cs └── Models │ ├── AppleEnvironment.cs │ ├── AutoRenewStatus.cs │ ├── CertificateValidationException.cs │ ├── DecodedNotificationPayload.cs │ ├── ExpirationIntent.cs │ ├── HistoryResponse.cs │ ├── JWSDecodedHeader.cs │ ├── JWSRenewalInfoDecodedPayload.cs │ ├── JWSTransactionDecodedPayload.cs │ ├── LastTransactionsItem.cs │ ├── NotificationData.cs │ ├── NotificationSubtype.cs │ ├── NotificationType.cs │ ├── OfferType.cs │ ├── OrderLookupResponse.cs │ ├── OrderLookupStatus.cs │ ├── OwnershipType.cs │ ├── PriceIncreaseStatus.cs │ ├── StatusResponse.cs │ ├── SubscriptionGroupIdentifierItem.cs │ ├── SubscriptionStatus.cs │ └── TransactionType.cs └── README.md /.gitattributes: -------------------------------------------------------------------------------- 1 | ############################################################################### 2 | # Set default behavior to automatically normalize line endings. 3 | ############################################################################### 4 | * text=auto 5 | 6 | ############################################################################### 7 | # Set default behavior for command prompt diff. 8 | # 9 | # This is need for earlier builds of msysgit that does not have it on by 10 | # default for csharp files. 11 | # Note: This is only used by command line 12 | ############################################################################### 13 | #*.cs diff=csharp 14 | 15 | ############################################################################### 16 | # Set the merge driver for project and solution files 17 | # 18 | # Merging from the command prompt will add diff markers to the files if there 19 | # are conflicts (Merging from VS is not affected by the settings below, in VS 20 | # the diff markers are never inserted). Diff markers may cause the following 21 | # file extensions to fail to load in VS. An alternative would be to treat 22 | # these files as binary and thus will always conflict and require user 23 | # intervention with every merge. To do so, just uncomment the entries below 24 | ############################################################################### 25 | #*.sln merge=binary 26 | #*.csproj merge=binary 27 | #*.vbproj merge=binary 28 | #*.vcxproj merge=binary 29 | #*.vcproj merge=binary 30 | #*.dbproj merge=binary 31 | #*.fsproj merge=binary 32 | #*.lsproj merge=binary 33 | #*.wixproj merge=binary 34 | #*.modelproj merge=binary 35 | #*.sqlproj merge=binary 36 | #*.wwaproj merge=binary 37 | 38 | ############################################################################### 39 | # behavior for image files 40 | # 41 | # image files are treated as binary by default. 42 | ############################################################################### 43 | #*.jpg binary 44 | #*.png binary 45 | #*.gif binary 46 | 47 | ############################################################################### 48 | # diff behavior for common document formats 49 | # 50 | # Convert binary document formats to text before diffing them. This feature 51 | # is only available from the command line. Turn it on by uncommenting the 52 | # entries below. 53 | ############################################################################### 54 | #*.doc diff=astextplain 55 | #*.DOC diff=astextplain 56 | #*.docx diff=astextplain 57 | #*.DOCX diff=astextplain 58 | #*.dot diff=astextplain 59 | #*.DOT diff=astextplain 60 | #*.pdf diff=astextplain 61 | #*.PDF diff=astextplain 62 | #*.rtf diff=astextplain 63 | #*.RTF diff=astextplain 64 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | ## Ignore Visual Studio temporary files, build results, and 2 | ## files generated by popular Visual Studio add-ons. 3 | ## 4 | ## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore 5 | 6 | # User-specific files 7 | *.rsuser 8 | *.suo 9 | *.user 10 | *.userosscache 11 | *.sln.docstates 12 | 13 | # User-specific files (MonoDevelop/Xamarin Studio) 14 | *.userprefs 15 | 16 | # Mono auto generated files 17 | mono_crash.* 18 | 19 | # Build results 20 | [Dd]ebug/ 21 | [Dd]ebugPublic/ 22 | [Rr]elease/ 23 | [Rr]eleases/ 24 | x64/ 25 | x86/ 26 | [Ww][Ii][Nn]32/ 27 | [Aa][Rr][Mm]/ 28 | [Aa][Rr][Mm]64/ 29 | bld/ 30 | [Bb]in/ 31 | [Oo]bj/ 32 | [Oo]ut/ 33 | [Ll]og/ 34 | [Ll]ogs/ 35 | 36 | # Visual Studio 2015/2017 cache/options directory 37 | .vs/ 38 | # Uncomment if you have tasks that create the project's static files in wwwroot 39 | #wwwroot/ 40 | 41 | # Visual Studio 2017 auto generated files 42 | Generated\ Files/ 43 | 44 | # MSTest test Results 45 | [Tt]est[Rr]esult*/ 46 | [Bb]uild[Ll]og.* 47 | 48 | # NUnit 49 | *.VisualState.xml 50 | TestResult.xml 51 | nunit-*.xml 52 | 53 | # Build Results of an ATL Project 54 | [Dd]ebugPS/ 55 | [Rr]eleasePS/ 56 | dlldata.c 57 | 58 | # Benchmark Results 59 | BenchmarkDotNet.Artifacts/ 60 | 61 | # .NET Core 62 | project.lock.json 63 | project.fragment.lock.json 64 | artifacts/ 65 | 66 | # ASP.NET Scaffolding 67 | ScaffoldingReadMe.txt 68 | 69 | # StyleCop 70 | StyleCopReport.xml 71 | 72 | # Files built by Visual Studio 73 | *_i.c 74 | *_p.c 75 | *_h.h 76 | *.ilk 77 | *.meta 78 | *.obj 79 | *.iobj 80 | *.pch 81 | *.pdb 82 | *.ipdb 83 | *.pgc 84 | *.pgd 85 | *.rsp 86 | *.sbr 87 | *.tlb 88 | *.tli 89 | *.tlh 90 | *.tmp 91 | *.tmp_proj 92 | *_wpftmp.csproj 93 | *.log 94 | *.vspscc 95 | *.vssscc 96 | .builds 97 | *.pidb 98 | *.svclog 99 | *.scc 100 | 101 | # Chutzpah Test files 102 | _Chutzpah* 103 | 104 | # Visual C++ cache files 105 | ipch/ 106 | *.aps 107 | *.ncb 108 | *.opendb 109 | *.opensdf 110 | *.sdf 111 | *.cachefile 112 | *.VC.db 113 | *.VC.VC.opendb 114 | 115 | # Visual Studio profiler 116 | *.psess 117 | *.vsp 118 | *.vspx 119 | *.sap 120 | 121 | # Visual Studio Trace Files 122 | *.e2e 123 | 124 | # TFS 2012 Local Workspace 125 | $tf/ 126 | 127 | # Guidance Automation Toolkit 128 | *.gpState 129 | 130 | # ReSharper is a .NET coding add-in 131 | _ReSharper*/ 132 | *.[Rr]e[Ss]harper 133 | *.DotSettings.user 134 | 135 | # TeamCity is a build add-in 136 | _TeamCity* 137 | 138 | # DotCover is a Code Coverage Tool 139 | *.dotCover 140 | 141 | # AxoCover is a Code Coverage Tool 142 | .axoCover/* 143 | !.axoCover/settings.json 144 | 145 | # Coverlet is a free, cross platform Code Coverage Tool 146 | coverage*.json 147 | coverage*.xml 148 | coverage*.info 149 | 150 | # Visual Studio code coverage results 151 | *.coverage 152 | *.coveragexml 153 | 154 | # NCrunch 155 | _NCrunch_* 156 | .*crunch*.local.xml 157 | nCrunchTemp_* 158 | 159 | # MightyMoose 160 | *.mm.* 161 | AutoTest.Net/ 162 | 163 | # Web workbench (sass) 164 | .sass-cache/ 165 | 166 | # Installshield output folder 167 | [Ee]xpress/ 168 | 169 | # DocProject is a documentation generator add-in 170 | DocProject/buildhelp/ 171 | DocProject/Help/*.HxT 172 | DocProject/Help/*.HxC 173 | DocProject/Help/*.hhc 174 | DocProject/Help/*.hhk 175 | DocProject/Help/*.hhp 176 | DocProject/Help/Html2 177 | DocProject/Help/html 178 | 179 | # Click-Once directory 180 | publish/ 181 | 182 | # Publish Web Output 183 | *.[Pp]ublish.xml 184 | *.azurePubxml 185 | # Note: Comment the next line if you want to checkin your web deploy settings, 186 | # but database connection strings (with potential passwords) will be unencrypted 187 | *.pubxml 188 | *.publishproj 189 | 190 | # Microsoft Azure Web App publish settings. Comment the next line if you want to 191 | # checkin your Azure Web App publish settings, but sensitive information contained 192 | # in these scripts will be unencrypted 193 | PublishScripts/ 194 | 195 | # NuGet Packages 196 | *.nupkg 197 | # NuGet Symbol Packages 198 | *.snupkg 199 | # The packages folder can be ignored because of Package Restore 200 | **/[Pp]ackages/* 201 | # except build/, which is used as an MSBuild target. 202 | !**/[Pp]ackages/build/ 203 | # Uncomment if necessary however generally it will be regenerated when needed 204 | #!**/[Pp]ackages/repositories.config 205 | # NuGet v3's project.json files produces more ignorable files 206 | *.nuget.props 207 | *.nuget.targets 208 | 209 | # Microsoft Azure Build Output 210 | csx/ 211 | *.build.csdef 212 | 213 | # Microsoft Azure Emulator 214 | ecf/ 215 | rcf/ 216 | 217 | # Windows Store app package directories and files 218 | AppPackages/ 219 | BundleArtifacts/ 220 | Package.StoreAssociation.xml 221 | _pkginfo.txt 222 | *.appx 223 | *.appxbundle 224 | *.appxupload 225 | 226 | # Visual Studio cache files 227 | # files ending in .cache can be ignored 228 | *.[Cc]ache 229 | # but keep track of directories ending in .cache 230 | !?*.[Cc]ache/ 231 | 232 | # Others 233 | ClientBin/ 234 | ~$* 235 | *~ 236 | *.dbmdl 237 | *.dbproj.schemaview 238 | *.jfm 239 | *.pfx 240 | *.publishsettings 241 | orleans.codegen.cs 242 | 243 | # Including strong name files can present a security risk 244 | # (https://github.com/github/gitignore/pull/2483#issue-259490424) 245 | #*.snk 246 | 247 | # Since there are multiple workflows, uncomment next line to ignore bower_components 248 | # (https://github.com/github/gitignore/pull/1529#issuecomment-104372622) 249 | #bower_components/ 250 | 251 | # RIA/Silverlight projects 252 | Generated_Code/ 253 | 254 | # Backup & report files from converting an old project file 255 | # to a newer Visual Studio version. Backup files are not needed, 256 | # because we have git ;-) 257 | _UpgradeReport_Files/ 258 | Backup*/ 259 | UpgradeLog*.XML 260 | UpgradeLog*.htm 261 | ServiceFabricBackup/ 262 | *.rptproj.bak 263 | 264 | # SQL Server files 265 | *.mdf 266 | *.ldf 267 | *.ndf 268 | 269 | # Business Intelligence projects 270 | *.rdl.data 271 | *.bim.layout 272 | *.bim_*.settings 273 | *.rptproj.rsuser 274 | *- [Bb]ackup.rdl 275 | *- [Bb]ackup ([0-9]).rdl 276 | *- [Bb]ackup ([0-9][0-9]).rdl 277 | 278 | # Microsoft Fakes 279 | FakesAssemblies/ 280 | 281 | # GhostDoc plugin setting file 282 | *.GhostDoc.xml 283 | 284 | # Node.js Tools for Visual Studio 285 | .ntvs_analysis.dat 286 | node_modules/ 287 | 288 | # Visual Studio 6 build log 289 | *.plg 290 | 291 | # Visual Studio 6 workspace options file 292 | *.opt 293 | 294 | # Visual Studio 6 auto-generated workspace file (contains which files were open etc.) 295 | *.vbw 296 | 297 | # Visual Studio LightSwitch build output 298 | **/*.HTMLClient/GeneratedArtifacts 299 | **/*.DesktopClient/GeneratedArtifacts 300 | **/*.DesktopClient/ModelManifest.xml 301 | **/*.Server/GeneratedArtifacts 302 | **/*.Server/ModelManifest.xml 303 | _Pvt_Extensions 304 | 305 | # Paket dependency manager 306 | .paket/paket.exe 307 | paket-files/ 308 | 309 | # FAKE - F# Make 310 | .fake/ 311 | 312 | # CodeRush personal settings 313 | .cr/personal 314 | 315 | # Python Tools for Visual Studio (PTVS) 316 | __pycache__/ 317 | *.pyc 318 | 319 | # Cake - Uncomment if you are using it 320 | # tools/** 321 | # !tools/packages.config 322 | 323 | # Tabs Studio 324 | *.tss 325 | 326 | # Telerik's JustMock configuration file 327 | *.jmconfig 328 | 329 | # BizTalk build output 330 | *.btp.cs 331 | *.btm.cs 332 | *.odx.cs 333 | *.xsd.cs 334 | 335 | # OpenCover UI analysis results 336 | OpenCover/ 337 | 338 | # Azure Stream Analytics local run output 339 | ASALocalRun/ 340 | 341 | # MSBuild Binary and Structured Log 342 | *.binlog 343 | 344 | # NVidia Nsight GPU debugger configuration file 345 | *.nvuser 346 | 347 | # MFractors (Xamarin productivity tool) working folder 348 | .mfractor/ 349 | 350 | # Local History for Visual Studio 351 | .localhistory/ 352 | 353 | # BeatPulse healthcheck temp database 354 | healthchecksdb 355 | 356 | # Backup folder for Package Reference Convert tool in Visual Studio 2017 357 | MigrationBackup/ 358 | 359 | # Ionide (cross platform F# VS Code tools) working folder 360 | .ionide/ 361 | 362 | # Fody - auto-generated XML schema 363 | FodyWeavers.xsd -------------------------------------------------------------------------------- /AppStoreServerApi.ConsoleSample/AppStoreServerApi.ConsoleSample.csproj: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | Exe 5 | net7.0 6 | enable 7 | enable 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | -------------------------------------------------------------------------------- /AppStoreServerApi.ConsoleSample/Program.cs: -------------------------------------------------------------------------------- 1 | // See https://aka.ms/new-console-template for more information 2 | using AppStoreServerApi; 3 | using AppStoreServerApi.Models; 4 | 5 | var PRIVATE_KEY = @"-----BEGIN PRIVATE KEY----- 6 | MHcCAQEEIPWH5lyoG7Wbzv71ntF6jNvFwwJLKYmPWN/KBD4qJfMcoAoGCCqGSM49 7 | AwEHoUQDQgAEMOlUa/hmyAPU/RUBds6xzDO8QNrTFhFwzm8E4wxDnSAx8R9WOMnD 8 | cVGdtnbLFIdLk8g4S7oAfV/gGILKuc+Vqw== 9 | -----END PRIVATE KEY-----"; 10 | 11 | var KEY_ID = "ABCD123456"; 12 | var ISSUER_ID = "91fa5999-7b54-4363-a2a8-265363fa6cbe"; 13 | var APP_BUNDLE_ID = "com.yourcompany.app"; 14 | 15 | var client = new AppleAppstoreClient( 16 | PRIVATE_KEY, KEY_ID, ISSUER_ID, APP_BUNDLE_ID, environment: AppleEnvironment.Production 17 | ); 18 | 19 | var result = await client.GetSubscriptionStatuses("1000000945357845"); -------------------------------------------------------------------------------- /AppStoreServerApi.sln: -------------------------------------------------------------------------------- 1 |  2 | Microsoft Visual Studio Solution File, Format Version 12.00 3 | # Visual Studio Version 17 4 | VisualStudioVersion = 17.0.32014.148 5 | MinimumVisualStudioVersion = 10.0.40219.1 6 | Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "AppStoreServerApi", "AppStoreServerApi\AppStoreServerApi.csproj", "{25285D8F-D975-41F3-8A95-7CEBFD54DDA8}" 7 | EndProject 8 | Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "AppStoreServerApi.ConsoleSample", "AppStoreServerApi.ConsoleSample\AppStoreServerApi.ConsoleSample.csproj", "{2283B52C-959F-493B-B6A6-1B85078ACACE}" 9 | EndProject 10 | Global 11 | GlobalSection(SolutionConfigurationPlatforms) = preSolution 12 | Debug|Any CPU = Debug|Any CPU 13 | Release|Any CPU = Release|Any CPU 14 | EndGlobalSection 15 | GlobalSection(ProjectConfigurationPlatforms) = postSolution 16 | {25285D8F-D975-41F3-8A95-7CEBFD54DDA8}.Debug|Any CPU.ActiveCfg = Debug|Any CPU 17 | {25285D8F-D975-41F3-8A95-7CEBFD54DDA8}.Debug|Any CPU.Build.0 = Debug|Any CPU 18 | {25285D8F-D975-41F3-8A95-7CEBFD54DDA8}.Release|Any CPU.ActiveCfg = Release|Any CPU 19 | {25285D8F-D975-41F3-8A95-7CEBFD54DDA8}.Release|Any CPU.Build.0 = Release|Any CPU 20 | {2283B52C-959F-493B-B6A6-1B85078ACACE}.Debug|Any CPU.ActiveCfg = Debug|Any CPU 21 | {2283B52C-959F-493B-B6A6-1B85078ACACE}.Debug|Any CPU.Build.0 = Debug|Any CPU 22 | {2283B52C-959F-493B-B6A6-1B85078ACACE}.Release|Any CPU.ActiveCfg = Release|Any CPU 23 | {2283B52C-959F-493B-B6A6-1B85078ACACE}.Release|Any CPU.Build.0 = Release|Any CPU 24 | EndGlobalSection 25 | GlobalSection(SolutionProperties) = preSolution 26 | HideSolutionNode = FALSE 27 | EndGlobalSection 28 | GlobalSection(ExtensibilityGlobals) = postSolution 29 | SolutionGuid = {CBC78527-ED32-490E-9B5C-C98F2C0EC392} 30 | EndGlobalSection 31 | EndGlobal 32 | -------------------------------------------------------------------------------- /AppStoreServerApi/AppStoreServerApi.csproj: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | net7.0 5 | enable 6 | enable 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | -------------------------------------------------------------------------------- /AppStoreServerApi/AppleAppstoreClient.cs: -------------------------------------------------------------------------------- 1 | using AppStoreServerApi.Models; 2 | using JWT.Algorithms; 3 | using JWT.Builder; 4 | using Microsoft.IdentityModel.JsonWebTokens; 5 | using Microsoft.IdentityModel.Tokens; 6 | using Newtonsoft.Json; 7 | using Newtonsoft.Json.Linq; 8 | using System.Dynamic; 9 | using System.Net.Http.Headers; 10 | using System.Security.Cryptography; 11 | using System.Security.Cryptography.X509Certificates; 12 | 13 | namespace AppStoreServerApi 14 | { 15 | // see https://github.com/agisboye/app-store-server-api/blob/main/src/AppStoreServerAPI.ts 16 | public class AppleAppstoreClient 17 | { 18 | // https://www.apple.com/certificateauthority/ 19 | // https://www.apple.com/certificateauthority/AppleRootCA-G3.cer 20 | private const string APPLE_ROOT_CA_G3_THUMBPRINT = "b52cb02fd567e0359fe8fa4d4c41037970fe01b0"; 21 | 22 | // The maximum age that an authentication token is allowed to have, as decided by Apple. 23 | private static readonly int MaxTokenAge = 3600; // seconds, = 1 hour 24 | private readonly string _environment; // see: Environment 25 | 26 | private readonly string BaseUrl; 27 | 28 | private readonly string PrivateKey; 29 | private readonly string KeyId; 30 | private readonly string IssuerId; 31 | private readonly string BundleId; 32 | private readonly string AppstoreAudience; 33 | private string? Token; 34 | private DateTime? TokenExpiry = null; 35 | 36 | /// 37 | /// 38 | /// 39 | /// key the key downloaded from App Store Connect in PEM-encoded PKCS8 format. 40 | /// keyId the id of the key, retrieved from App Store Connect 41 | /// issuerId your issuer ID, retrieved from App Store Connect 42 | /// bundleId bundle ID of your app 43 | /// Sandbox/Production 44 | public AppleAppstoreClient(string privateKey, string keyId, string issuerId, string applicationId, string appstoreAudience = "appstoreconnect-v1", string environment = AppleEnvironment.Sandbox) 45 | { 46 | this.PrivateKey = privateKey; 47 | 48 | this.KeyId = keyId; 49 | this.IssuerId = issuerId; 50 | this.BundleId = applicationId; 51 | this.AppstoreAudience = appstoreAudience; 52 | this._environment = environment; 53 | 54 | if (environment == AppleEnvironment.Sandbox) 55 | { 56 | this.BaseUrl = "https://api.storekit-sandbox.itunes.apple.com"; 57 | } 58 | else 59 | { 60 | this.BaseUrl = "https://api.storekit.itunes.apple.com"; 61 | } 62 | } 63 | 64 | private bool TokenExpired 65 | { 66 | get 67 | { 68 | // We consider the token to be expired slightly before it actually is to allow for some networking latency. 69 | var now = DateTime.Now; 70 | var cutoff = now.AddSeconds(-60); 71 | 72 | return this.TokenExpiry == null || this.TokenExpiry < cutoff; 73 | } 74 | } 75 | 76 | // https://developer.apple.com/documentation/appstoreserverapi/get_transaction_history 77 | public async Task GetTransactionHistory(string originalTransactionId, string? revision) 78 | { 79 | var query = revision != null ? $"?query={revision}" : ""; 80 | 81 | return await this.MakeRequest($"{this.BaseUrl}/inApps/v1/history/{originalTransactionId}{query}"); 82 | } 83 | 84 | // https://developer.apple.com/documentation/appstoreserverapi/get_all_subscription_statuses 85 | public async Task GetSubscriptionStatuses(string originalTransactionId) 86 | { 87 | return await this.MakeRequest($"{this.BaseUrl}/inApps/v1/subscriptions/{originalTransactionId}"); 88 | } 89 | 90 | public async Task LookupOrder(string orderId) 91 | { 92 | return await this.MakeRequest($"{this.BaseUrl}/inApps/v1/lookup/{orderId}"); 93 | } 94 | 95 | #region Request utilities 96 | private async Task MakeRequest(string url) 97 | { 98 | var token = this.GetToken(); 99 | var httpClient = new HttpClient(); 100 | httpClient.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", token); 101 | 102 | var result = await httpClient.GetAsync(url); 103 | 104 | if (result.StatusCode == System.Net.HttpStatusCode.OK) 105 | { 106 | var body = await result.Content.ReadAsStringAsync(); 107 | return JsonConvert.DeserializeObject(body); 108 | } 109 | 110 | switch (result.StatusCode) 111 | { 112 | case System.Net.HttpStatusCode.BadRequest: 113 | case System.Net.HttpStatusCode.NotFound: 114 | case System.Net.HttpStatusCode.InternalServerError: 115 | var body = await result.Content.ReadAsStringAsync(); 116 | dynamic json = JsonConvert.DeserializeObject(body); 117 | throw new Exception(json?.errorMessage ?? "Apple server response error"); 118 | case System.Net.HttpStatusCode.Unauthorized: 119 | this.Token = null; 120 | throw new Exception("The request is unauthorized; the JSON Web Token (JWT) is invalid."); 121 | default: 122 | throw new Exception("An unknown error occurred"); 123 | } 124 | } 125 | 126 | private ECDsa GetEllipticCurveAlgorithm() 127 | { 128 | var privateKey = this.PrivateKey.Replace("-----BEGIN PRIVATE KEY-----", string.Empty).Replace("-----END PRIVATE KEY-----", string.Empty).Replace(Environment.NewLine, ""); 129 | 130 | var keyParams = (Org.BouncyCastle.Crypto.Parameters.ECPrivateKeyParameters)Org.BouncyCastle.Security.PrivateKeyFactory.CreateKey(Convert.FromBase64String(privateKey)); 131 | 132 | var normalizedEcPoint = keyParams.Parameters.G.Multiply(keyParams.D).Normalize(); 133 | 134 | return ECDsa.Create(new ECParameters 135 | { 136 | Curve = ECCurve.CreateFromValue(keyParams.PublicKeyParamSet.Id), 137 | D = keyParams.D.ToByteArrayUnsigned(), 138 | Q = 139 | { 140 | X = normalizedEcPoint.XCoord.GetEncoded(), 141 | Y = normalizedEcPoint.YCoord.GetEncoded() 142 | } 143 | }); 144 | } 145 | 146 | public ECDsaSecurityKey GetEcdsaSecuritKey() 147 | { 148 | var signatureAlgorithm = GetEllipticCurveAlgorithm(); 149 | var eCDsaSecurityKey = new ECDsaSecurityKey(signatureAlgorithm) 150 | { 151 | KeyId = this.KeyId 152 | }; 153 | 154 | return eCDsaSecurityKey; 155 | } 156 | 157 | private string GetToken() 158 | { 159 | // Reuse previously created token if it hasn't expired. 160 | if (!string.IsNullOrEmpty(this.Token) && !this.TokenExpired) 161 | return this.Token; 162 | 163 | // Tokens must expire after at most 1 hour. 164 | var now = DateTime.Now; 165 | var expiry = now.AddSeconds(MaxTokenAge); 166 | 167 | ECDsaSecurityKey eCDsaSecurityKey = GetEcdsaSecuritKey(); 168 | 169 | var handler = new JsonWebTokenHandler(); 170 | string jwt = handler.CreateToken(new SecurityTokenDescriptor 171 | { 172 | Issuer = this.IssuerId, 173 | Audience = this.AppstoreAudience, 174 | NotBefore = now, 175 | Expires = expiry, 176 | IssuedAt = now, 177 | Claims = new Dictionary { 178 | { "bid", this.BundleId }, 179 | { "nonce", Guid.NewGuid().ToString("N") } 180 | }, 181 | SigningCredentials = new SigningCredentials(eCDsaSecurityKey, SecurityAlgorithms.EcdsaSha256) 182 | }); 183 | 184 | this.Token = jwt; 185 | this.TokenExpiry = expiry; 186 | 187 | return jwt; 188 | } 189 | 190 | /*private int GetUnixTimestamp(DateTime dateTime) 191 | { 192 | var time = (dateTime.ToUniversalTime() - new DateTime(1970, 1, 1)); 193 | return (int)(time.TotalMilliseconds + 0.5); 194 | }*/ 195 | #endregion 196 | 197 | #region Decode signed fields 198 | public List DecodeTransactions(List signedTransactions) 199 | { 200 | return signedTransactions.Select(s => DecodeJWS(s)).ToList(); 201 | } 202 | 203 | public DecodedNotificationPayload DecodeNotificationPayload(string payload) 204 | { 205 | return DecodeJWS(payload); 206 | } 207 | 208 | public JWSRenewalInfoDecodedPayload DecodeRenewalInfo(string info) 209 | { 210 | return DecodeJWS(info); 211 | } 212 | 213 | public JWSTransactionDecodedPayload DecodeTransaction(string transaction) 214 | { 215 | return DecodeJWS(transaction); 216 | } 217 | 218 | /// 219 | /// Decodes and verifies an object signed by the App Store according to JWS. 220 | /// See: https://developer.apple.com/documentation/appstoreserverapi/jwstransaction 221 | /// 222 | /// 223 | public T DecodeJWS(string token) 224 | { 225 | var handler = new System.IdentityModel.Tokens.Jwt.JwtSecurityTokenHandler(); 226 | var jwtSecurityToken = handler.ReadJwtToken(token); 227 | 228 | var x5cList = ((List)jwtSecurityToken.Header["x5c"])?.Select(o => o.ToString()!).ToList() 229 | ?? throw new Exception("Header 'x5c' not found."); 230 | 231 | if (x5cList == null) 232 | { 233 | throw new CertificateValidationException(new()); 234 | } 235 | 236 | var certs = ValidateCertificate(x5cList); 237 | 238 | var payload = JwtBuilder.Create() 239 | .WithAlgorithm(new ES256Algorithm(certs.First())) 240 | .MustVerifySignature() 241 | .Decode(token); 242 | 243 | return payload; 244 | } 245 | 246 | /// 247 | /// Validates a certificate chain provided in the x5c field of a decoded header of a JWS. 248 | /// The certificates must be valid and have come from Apple. 249 | /// 250 | /// 251 | /// 252 | private static List ValidateCertificate(List certificates) 253 | { 254 | if (certificates.Count == 0) 255 | throw new CertificateValidationException(new()); 256 | 257 | var x509certs = certificates.Select(c => new X509Certificate2((Convert.FromBase64String(c)))).ToList(); 258 | 259 | // Check dates 260 | var now = DateTime.Now; 261 | var datesValid = x509certs.All(c => c.NotBefore < now && now < c.NotAfter); 262 | if (!datesValid) 263 | throw new CertificateValidationException(certificates); 264 | 265 | // Check that each certificate, except for the last, is issued by the subsequent one. 266 | if (certificates.Count >= 2) 267 | { 268 | for (var i = 0; i < x509certs.Count - 1; i++) 269 | { 270 | if (x509certs[i].Issuer != x509certs[i + 1].Subject) 271 | { 272 | throw new CertificateValidationException(certificates); 273 | } 274 | } 275 | } 276 | 277 | // Ensure that the last certificate in the chain is the expected Apple root CA. 278 | if (!x509certs.Last().Thumbprint.Equals(APPLE_ROOT_CA_G3_THUMBPRINT, StringComparison.InvariantCultureIgnoreCase)) 279 | { 280 | throw new CertificateValidationException(certificates); 281 | } 282 | 283 | return x509certs; 284 | } 285 | #endregion 286 | } 287 | } -------------------------------------------------------------------------------- /AppStoreServerApi/Models/AppleEnvironment.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | public class AppleEnvironment 10 | { 11 | public const string Production = "Production"; 12 | public const string Sandbox = "Sandbox"; 13 | } 14 | } 15 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/AutoRenewStatus.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | 10 | // https://developer.apple.com/documentation/appstoreserverapi/autorenewstatus 11 | public enum AutoRenewStatus 12 | { 13 | Off = 0, 14 | On = 1 15 | } 16 | } 17 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/CertificateValidationException.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | public class CertificateValidationException: Exception 10 | { 11 | public List Certificates { get; set; } 12 | 13 | public CertificateValidationException(List certificates): base("Certificate validation failed") 14 | { 15 | this.Certificates = certificates; 16 | } 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/DecodedNotificationPayload.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | public class DecodedNotificationPayload 10 | { 11 | /// 12 | /// see: NotificationType 13 | /// 14 | public string NotificationType { get; set; } = null!; 15 | /// 16 | /// see: NotificationSubtype 17 | /// 18 | public string? Subtype { get; set; } 19 | public string NotificationUUID { get; set; } = null!; 20 | /// 21 | /// Apple incorrectly calls this `notificationVersion` in their documentation. 22 | /// 23 | public string Version { get; set; } = null!; 24 | public NotificationData Data { get; set; } = null!; 25 | } 26 | } 27 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/ExpirationIntent.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | 10 | // https://developer.apple.com/documentation/appstoreserverapi/expirationintent 11 | public enum ExpirationIntent 12 | { 13 | Canceled = 1, 14 | BillingError = 2, 15 | RejectedPriceIncrease = 3, 16 | ProductUnavailable = 4 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/HistoryResponse.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/historyresponse 10 | public class HistoryResponse 11 | { 12 | public string AppAppleId { get; set; } = null!; 13 | public string BundleId { get; set; } = null!; 14 | /// 15 | /// see: AppleEnvironment 16 | /// 17 | public string Environment { get; set; } = null!; 18 | public bool HasMore { get; set; } 19 | public string Revision { get; set; } = null!; 20 | // https://developer.apple.com/documentation/appstoreserverapi/jwstransaction 21 | public List SignedTransactions { get; set; } = null!; 22 | } 23 | } 24 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/JWSDecodedHeader.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/jwsdecodedheader 10 | public class JWSDecodedHeader 11 | { 12 | public string Alg { get; set; } = null!; 13 | public string Kid { get; set; } = null!; 14 | public List X5c { get; set; } = null!; 15 | } 16 | } 17 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/JWSRenewalInfoDecodedPayload.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/jwsrenewalinfodecodedpayload 10 | public class JWSRenewalInfoDecodedPayload 11 | { 12 | public string AutoRenewProductId { get; set; } = null!; 13 | public AutoRenewStatus AutoRenewStatus { get; set; } 14 | public ExpirationIntent? ExpirationIntent { get; set; } = null!; 15 | public int? GracePeriodExpiresDate { get; set; } = null!; 16 | public bool? IsInBillingRetryPeriod { get; set; } = null!; 17 | public string? OfferIdentifier { get; set; } = null!; 18 | public OfferType? OfferType { get; set; } = null!; 19 | public string OriginalTransactionId { get; set; } = null!; 20 | public PriceIncreaseStatus? PriceIncreaseStatus { get; set; } = null!; 21 | public string ProductId { get; set; } = null!; 22 | /// 23 | /// UNIX timestamp in ms 24 | /// 25 | public int SignedDate { get; set; } 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/JWSTransactionDecodedPayload.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/jwstransactiondecodedpayload 10 | public class JWSTransactionDecodedPayload 11 | { 12 | public string? AppAccountToken { get; set; } = null!; 13 | public string BundleId { get; set; } = null!; 14 | /// 15 | /// UNIX timestamp in ms 16 | /// 17 | public long? ExpiresDate { get; set; } = null!; 18 | /// 19 | /// see: OwnershipType 20 | /// 21 | public string InAppOwnershipType { get; set; } = null!; 22 | public bool? IsUpgraded { get; set; } = null!; 23 | public string? OfferIdentifier { get; set; } = null!; 24 | public OfferType OfferType { get; set; } 25 | /// 26 | /// UNIX timestamp in ms 27 | /// 28 | public long OriginalPurchaseDate { get; set; } 29 | public string OriginalTransactionId { get; set; } = null!; 30 | public string ProductId { get; set; } = null!; 31 | /// 32 | /// UNIX timestamp in ms 33 | /// 34 | public long PurchaseDate { get; set; } 35 | public int Quantity { get; set; } 36 | /// 37 | /// UNIX timestamp in ms 38 | /// 39 | public long? RevocationDate { get; set; } = null!; 40 | public int? RevocationReason { get; set; } = null!; 41 | /// 42 | /// UNIX timestamp in ms 43 | /// 44 | public long SignedDate { get; set; } 45 | public string? SubscriptionGroupIdentifier { get; set; } = null!; 46 | public string TransactionId { get; set; } = null!; 47 | /// 48 | /// see TransactionType 49 | /// 50 | public string Type { get; set; } = null!; 51 | public string WebOrderLineItemId { get; set; } = null!; 52 | } 53 | } 54 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/LastTransactionsItem.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/lasttransactionsitem 10 | public class LastTransactionsItem 11 | { 12 | public string OriginalTransactionId { get; set; } = null!; 13 | public SubscriptionStatus Status { get; set; } 14 | /// 15 | /// JWSRenewalInfo https://developer.apple.com/documentation/appstoreserverapi/jwsrenewalinfo 16 | /// 17 | public string SignedRenewalInfo { get; set; } = null!; 18 | 19 | /// 20 | /// JWSTransaction https://developer.apple.com/documentation/appstoreserverapi/jwstransaction 21 | /// 22 | public string SignedTransactionInfo { get; set; } = null!; 23 | } 24 | } 25 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/NotificationData.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | 3 | namespace AppStoreServerApi.Models 4 | { 5 | public class NotificationData 6 | { 7 | public string AppAppleId { get; set; } = null!; 8 | public string BundleId { get; set; } = null!; 9 | public int BundleVersion { get; set; } 10 | /// 11 | /// see: AppleEnvironment 12 | /// 13 | public string Environment { get; set; } = null!; 14 | public string SignedRenewalInfo { get; set; } = null!; 15 | public string SignedTransactionInfo { get; set; } = null!; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/NotificationSubtype.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | public class NotificationSubtype 10 | { 11 | public const string InitialBuy = "INITIAL_BUY"; 12 | public const string Resubscribe = "RESUBSCRIBE"; 13 | public const string Downgrade = "DOWNGRADE"; 14 | public const string Upgrade = "UPGRADE"; 15 | public const string AutoRenewEnabled = "AUTO_RENEW_ENABLED"; 16 | public const string AutoRenewDisabled = "AUTO_RENEW_DISABLED"; 17 | public const string Voluntary = "VOLUNTARY"; 18 | public const string BillingRetry = "BILLING_RETRY"; 19 | public const string PriceIncrease = "PRICE_INCREASE"; 20 | public const string GracePeriod = "GRACE_PERIOD"; 21 | public const string BillingRecovery = "BILLING_RECOVERY"; 22 | public const string Pending = "PENDING"; 23 | public const string Accepted = "ACCEPTED"; 24 | } 25 | } 26 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/NotificationType.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreservernotifications/notificationtype 10 | public class NotificationType 11 | { 12 | public const string ConsumptionRequest = "CONSUMPTION_REQUEST"; 13 | public const string DidChangeRenewalPref = "DID_CHANGE_RENEWAL_PREF"; 14 | public const string DidChangeRenewalStatus = "DID_CHANGE_RENEWAL_STATUS"; 15 | public const string DidFailToRenew = "DID_FAIL_TO_RENEW"; 16 | public const string DidRenew = "DID_RENEW"; 17 | public const string Expired = "EXPIRED"; 18 | public const string GracePeriodExpired = "GRACE_PERIOD_EXPIRED"; 19 | public const string OfferRedeemed = "OFFER_REDEEMED"; 20 | public const string PriceIncrease = "PRICE_INCREASE"; 21 | public const string Refund = "REFUND"; 22 | public const string RefundDeclined = "REFUND_DECLINED"; 23 | public const string RenewalExtended = "RENEWAL_EXTENDED"; 24 | public const string Revoke = "REVOKE"; 25 | public const string Subscribed = "SUBSCRIBED"; 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/OfferType.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/offertype 10 | public enum OfferType 11 | { 12 | Introductory = 1, 13 | Promotional = 2, 14 | SubscriptionOfferCode = 3 15 | } 16 | } 17 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/OrderLookupResponse.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/orderlookupresponse 10 | public class OrderLookupResponse 11 | { 12 | public OrderLookupStatus OrderLookupStatus { get; set; } 13 | /// 14 | /// JWSTransaction 15 | /// 16 | public List SignedTransactions { get; set; } = new(); 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/OrderLookupStatus.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | public enum OrderLookupStatus 10 | { 11 | Valid = 0, 12 | Invalid = 1 13 | } 14 | } 15 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/OwnershipType.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/inappownershiptype 10 | public class OwnershipType 11 | { 12 | public const string Purchased = "PURCHASED"; 13 | public const string FamilyShared = "FAMILY_SHARED"; 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/PriceIncreaseStatus.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/priceincreasestatus 10 | public enum PriceIncreaseStatus 11 | { 12 | NoResponse = 0, 13 | Consented = 1 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/StatusResponse.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/statusresponse 10 | public class StatusResponse 11 | { 12 | public List Data { get; set; } = null!; 13 | /// 14 | /// see: AppleEnvironment 15 | /// 16 | public string Environment { get; set; } = null!; 17 | public string AppAppleId { get; set; } = null!; 18 | public string BundleId { get; set; } = null!; 19 | } 20 | } 21 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/SubscriptionGroupIdentifierItem.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/subscriptiongroupidentifieritem 10 | public class SubscriptionGroupIdentifierItem 11 | { 12 | public string SubscriptionGroupIdentifier { get; set; } = null!; 13 | public List LastTransactions { get; set; } = null!; 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/SubscriptionStatus.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/status 10 | public enum SubscriptionStatus 11 | { 12 | Active = 1, 13 | Expired = 2, 14 | InBillingRetry = 3, 15 | InBillingGracePeriod = 4, 16 | Revoked = 5 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /AppStoreServerApi/Models/TransactionType.cs: -------------------------------------------------------------------------------- 1 | using System; 2 | using System.Collections.Generic; 3 | using System.Linq; 4 | using System.Text; 5 | using System.Threading.Tasks; 6 | 7 | namespace AppStoreServerApi.Models 8 | { 9 | // https://developer.apple.com/documentation/appstoreserverapi/type 10 | public class TransactionType 11 | { 12 | public const string AutoRenewableSubscription = "Auto-Renewable Subscription"; 13 | public const string NonConsumable = "Non-Consumable"; 14 | public const string Consumable = "Consumable"; 15 | public const string NonRenewingSubscription = "Non-Renewing Subscription"; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # AppleStoreServerApi.Net 2 | 3 | A .net 6.0 library to decode and verify Apple server to server in app purchase notification and request [App Store Server API](https://developer.apple.com/documentation/appstoreserverapi). 4 | 5 | This library is already working but work is still in progress. Don't hesitate to contribute if you see any possible improvment or fixes. 6 | 7 | I mainly based my work on this node library: https://github.com/agisboye/app-store-server-api 8 | 9 | ## Features 10 | - History, subscription status and order lookup endpoints 11 | - Typed responses (i.e. you get auto-complete for the fields in the response) 12 | - Manages authentication tokens for you 13 | - Helpers to decode JWS items 14 | - Performs certificate validation against Apple's CA. 15 | - Types and helpers for [App Store Server Notifications V2](https://developer.apple.com/documentation/appstoreservernotifications) 16 | 17 | ## Usage 18 | ### Prerequisites 19 | To get started, you must obtain the following: 20 | - An [API key](https://developer.apple.com/documentation/appstoreserverapi/creating_api_keys_to_use_with_the_app_store_server_api) 21 | - The ID of the key 22 | - Your [issuer ID](https://developer.apple.com/documentation/appstoreserverapi/generating_tokens_for_api_requests) 23 | 24 | A note on the issuer ID: 25 | Apple's documentation currently has incorrect instructions on how to obtain this. 26 | To get your issuer ID, you must [create an API key for App Store Connect](https://developer.apple.com/documentation/appstoreconnectapi/creating_api_keys_for_app_store_connect_api) (not the App Store Server API). Only after creating your first API key will the issuer ID appear. 27 | 28 | ### Create a client 29 | ```csharp 30 | var PRIVATE_KEY = @"-----BEGIN PRIVATE KEY----- 31 | MHcCAQEEIPWH5lyoG7Wbzv71ntF6jNvFwwJLKYmPWN/KBD4qJfMcoAoGCCqGSM49 32 | AwEHoUQDQgAEMOlUa/hmyAPU/RUBds6xzDO8QNrTFhFwzm8E4wxDnSAx8R9WOMnD 33 | cVGdtnbLFIdLk8g4S7oAfV/gGILKuc+Vqw== 34 | -----END PRIVATE KEY-----"; 35 | 36 | var KEY_ID = "ABCD123456"; 37 | var ISSUER_ID = "91fa5999-7b54-4363-a2a8-265363fa6cbe"; 38 | var APP_BUNDLE_ID = "com.yourcompany.app"; 39 | 40 | var client = new AppleAppstoreClient( 41 | PRIVATE_KEY, KEY_ID, ISSUER_ID, APP_BUNDLE_ID, environment: AppleEnvironment.Production 42 | ); 43 | ``` 44 | --------------------------------------------------------------------------------