Is it possible to get receipt data without App-Specific Shared Secret

I am able to get receipt data validated without App-Specific Shared Secret, Is it a bug or its optional for consumable IAP?
Furthermore, I am doing it in sandbox mode for consumable IAP, I have two questions.


  • Would it work with live app as well?
  • Is App-Specific Shared Secret required for consumable IAP?

Replies

The shared secret is only needed for autorenewable subscriptions. Only for autorenewable subscriptions do the servers need to add additional information to the receipt beyond just decoding it. (There was a bug relating to this a few months ago.)

@PBK may I ask what was the bug related to this? Thanks for quick reply.

It involves getting a 21004 if the receipt contained a consumable and no autorenewable. Here is the thread:


https://forums.developer.apple.com/message/212738#212738