[android-developers] Re: In-app purchase signature verification with PHP openssl

2012-10-25 Thread Synaion
Hi, I don't mean to thread jack but i've searched all over the internet on this already and i've found nothing. Could any of you familiar help me? ?php ini_set('display_errors', 'On'); error_reporting(E_ALL | E_STRICT); $data = $_POST['signeddata']; $signature = $_POST['signature']; $signature =

[android-developers] Re: In-app purchase signature verification with PHP openssl

2011-06-21 Thread facetious
Just to make your life a little easier (and remove some dependency on non-PHP tools): $public_key_str = This is the string right off your Android dev portal. Load from DB or file if you choose.; $cert = -BEGIN PUBLIC KEY-\r\n . chunk_split($public_key_str, 64, \r\n) . -END PUBLIC

[android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-25 Thread Nate Totura
Thanks for the help, you were correct, the data I was using to test everything was in a file an had an extra newline appended to the end. On Apr 20, 7:37 pm, Nikolay Elenkov nikolay.elen...@gmail.com wrote: On Thu, Apr 21, 2011 at 6:24 AM, Nate Totura ntot...@gmail.com wrote: Still no luck, I

[android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-20 Thread Nate Totura
Still no luck, I am pretty confident I am sending the PHP routines correctly formatted data. A followup question: How can I verify the signature and data using only openssl, here is what I am currently doing: openssl dgst -sha1 -verify public.key.ssl -signature signature.bin data where

Re: [android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-20 Thread Nikolay Elenkov
On Thu, Apr 21, 2011 at 6:24 AM, Nate Totura ntot...@gmail.com wrote: Still no luck, I am pretty confident I am sending the PHP routines correctly formatted data. A followup question: How can I verify the signature and data using only openssl, here is what I am currently doing:   openssl

[android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-13 Thread Nate Totura
On Apr 13, 12:27 am, Nikolay Elenkov nikolay.elen...@gmail.com wrote: On Wed, Apr 13, 2011 at 3:44 PM, Nate Totura ntot...@gmail.com wrote: I am trying to do signature validation on a server instead of in the app iteself. I would ideally like to use the php openssl libraries and it looks

Re: [android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-13 Thread Marcin Orlowski
On 13 April 2011 19:05, Nate Totura ntot...@gmail.com wrote: Thanks, the openssl_sign() php function is just being used to verify To verify you shall use openssl_verify() not openssl_sign(). Regards, Marcin Orlowski *Tray Agenda http://bit.ly/trayagenda* - keep you daily schedule handy...

Re: [android-developers] Re: In-app purchase signature verification with PHP openssl

2011-04-13 Thread Nikolay Elenkov
On Thu, Apr 14, 2011 at 2:05 AM, Nate Totura ntot...@gmail.com wrote: Thanks, the openssl_sign() php function is just being used to verify that if I sign something myself, instead of using the Google returned version, that it works in my php verification code. The openssl_sign() does return