Thanks Dan, Joe. That's as far as I had got too.
It feels like there should be a way. But I can't see one that can't be
mimicked.
On Sep 18, 8:46 am, joebowbeer joe.bowb...@gmail.com wrote:
Keep in mind that other apps can access your app's resources and
assets, and in fact anyone can access
You can in theory use your app's certificate in reverse to sign the
requests. Check the signature on the other end using your private
key. Not sure how you can access your app's certificate from the app,
though, and it doesn't protect you from an outright stolen copy of the
app.
On Sep 17, 2:03
Keep in mind that other apps can access your app's resources and
assets, and in fact anyone can access your apk and obtain anything
hidden therein.
I wish Android provided a way that a server could determine if a
request was generated by some app 'package id' signed by a given key
-- but this is
3 matches
Mail list logo
