Mark, The daily MD5 solution sounds like it would work plenty well enough. As for the handshake, the native app could send a valid token (hash code or session ID) to the web app via the query string. The login- protected web app would consider this token a valid login, bypass the login page, and set a "logged-in" cookie which is validated throughout the app. There are other ways to handle login protection but you get the idea.
Erik On Nov 25, 3:00 pm, Mark Phillip <markphil...@gmail.com> wrote: > Hey Ryan, thanks, you definitely understood my question correctly. It seems > like that's the case on all three of these platforms. > > Erik, I was thinking of something similar, but I think simpler--having the > native app include an MD5 hash that changed each day that would be verified > by the web app. Not uncrackable, but enough of annoyance to not make it > worth the 99 cents. How would you model the "handshake"? > > Thanks, > Markhttp://markphillip.com > > On Wed, Nov 25, 2009 at 2:46 PM, Erik Pearson <erik.k.pear...@gmail.com>wrote: > > > Regardless of whether someone can see the URL, you could make the web > > app require a "handshake" from the native app (e.g., a valid session > > code.) This would keep out anyone trying to skirt around the fees. > > > On Nov 25, 2:41 pm, Ryan Joy <atxr...@gmail.com> wrote: > > > I may not understand your question fully, but I would find it very > > > easy to determine the source URL or data feed for any HTTP traffic > > > coming into my developer (or jail broken) iphone. Or, even easier to > > > analyze my network traffic. > > > > -RYAN JOY > > > http://twitter.com/atxryan > > > 512.552.2687 mobile > > > > On Nov 25, 2009, at 2:21 PM, Mark Phillip wrote: > > > > > There has been a good amount of talk lately about building web > > > > applications for mobile phones, instead of native applications ( > >http://www.quirksmode.org/blog/archives/2009/11/apple_is_not_ev.html > > > > ). Ignoring any performance, findability, or "slickness" issues, > > > > I'm curious about the commerce aspect and haven't been able to find > > > > a good answer. > > > > > iPhone, Android, and webOS, all have a WebView-like control that > > > > allows you to wrap an existing web page in a full-fledged native app > > > > that you could submit to their respective App Store. Is there any > > > > reason why a person wouldn't be able to charge for this app if the > > > > URL wasn't publicized? On these three platforms, would there be any > > > > way to decompile the app and figure out the source URL? > > > > > Thanks, > > > > Mark > > > >http://markphillip.com > > > > > -- > > > > Our Web site:http://www.RefreshAustin.org/ > > > > > You received this message because you are subscribed to the Google > > > > Groups "Refresh Austin" group. > > > > > [ Posting ] > > > > To post to this group, send email to Refresh-Austin@googlegroups.com > > > > Job-related postings should followhttp://tr.im/ > > > > refreshaustinjobspolicy > > > > We do not accept job posts from recruiters. > > > > > [ Unsubscribe ] > > > > To unsubscribe from this group, send email to > > refresh-austin-unsubscr...@googlegroups.com > > > > > [ More Info ] > > > > For more options, visit this group athttp:// > > groups.google.com/group/Refresh-Austin > > > -- > > Our Web site:http://www.RefreshAustin.org/ > > > You received this message because you are subscribed to the Google Groups > > "Refresh Austin" group. > > > [ Posting ] > > To post to this group, send email to Refresh-Austin@googlegroups.com > > Job-related postings should followhttp://tr.im/refreshaustinjobspolicy > > We do not accept job posts from recruiters. > > > [ Unsubscribe ] > > To unsubscribe from this group, send email to > > refresh-austin-unsubscr...@googlegroups.com > > > [ More Info ] > > For more options, visit this group at > >http://groups.google.com/group/Refresh-Austin -- Our Web site: http://www.RefreshAustin.org/ You received this message because you are subscribed to the Google Groups "Refresh Austin" group. [ Posting ] To post to this group, send email to Refresh-Austin@googlegroups.com Job-related postings should follow http://tr.im/refreshaustinjobspolicy We do not accept job posts from recruiters. [ Unsubscribe ] To unsubscribe from this group, send email to refresh-austin-unsubscr...@googlegroups.com [ More Info ] For more options, visit this group at http://groups.google.com/group/Refresh-Austin
