So, RP is not in charge of validating the origin with given RPID in case of the response is coming from the native application? Instead, the platform validates associated domain and calling application?
Do I understand it correctly?
KieunShin
Users receive reputation points by contributing quality content to the forums.
Posts include post and replies published on the forums.
Post authors can mark replies as Accepted to indicate successful solutions.
Apple Developer Forums admins can mark replies as Apple Recommended to indicate an approved solution