I am able to get receipt data validated without App-Specific Shared Secret, Is it a bug or its optional for consumable IAP?
Furthermore, I am doing it in sandbox mode for consumable IAP, I have two questions.
- Would it work with live app as well?
- Is App-Specific Shared Secret required for consumable IAP?