NAMI FOR...
Abstract shapes to represent "Product"
Product Owners
Instant paywall changes
Pie chart for analytics icon
Growth Marketing Teams
Fuel app growth with paywalls
Abstract shapes to represent "Engineering"
Engineering Teams
Save thousands of hours
EXPLORE NAMI
A Complete Solution
One platform for subscription and paywall management
No-Code Paywall Builder
Design, launch & update paywalls instantly
Subscription Management
Offer in-app subscriptions with ease
Subscription Analytics
Track key metrics & gain insights
Subscriber CRM
Understand & support your in-app subscribers
Data Feeds & APIs
Harness unified subscriber data
GET STARTED
Quickstart & Docs
Setup in minutes
Integrations
Enrich your entire stack
Framework & SDKs
Support for popular
technologies
Product
Pricing
RESOURCES
About Us
Blog
Careers
Get in Touch
Company
Sign up
NAMI FOR...
Abstract shapes to represent "Product"
Product Owners
Focus on happy subscribers
Pie chart for analytics icon
Growth & Marketing Teams
Marketing-friendly subscriptions
Abstract shapes to represent "Engineering"
Engineering Teams
One API to sell everywhere
EXPLORE NAMI
Overview
The foundation for Happy Subscribers
Paywall Builder
Design, launch & update storefronts instantly
Subscription Management
Sell to customers on their preferred platform
Subscription Analytics
Track key metrics & gain insights
Subscription CRM
Understand & support your subscribers
Data Feeds & APIs
Harness unified subscriber data
GET STARTED
Quickstart & Docs
Setup in minutes
Integrations
Enrich your entire stack
Frameworks & SDK
Support for popular
technologies
App Paywall Examples
Support for popular
technologies
Pricing
Different pricing options to suit your needs.
COMPANY
About Us
Blog
Careers
Get in Touch
Cross icon
Home
Blog
App Dev
What is the iOS App Shared Secret used for?
Portrait photo of blog author
Dan Burcaw
February 17, 2022

What is the iOS App Shared Secret used for?

The iOS app Shared Secret, also known as the App Store Connect Shared Secret, is a 32 character hexadecimal string. It is used for server-side receipt validation. Specifically, the Shared Secret is sent to Apple in the request payload. This provides added security for receipts with auto-renewable subscriptions.

Receipt verification is a process app developers use to verify purchases. Specifically, this process if for purchases made using Apple’s App Store payments mechanism (aka StoreKit). The receipt provides a complete list of all the purchases made by an app’s user. The receipt includes both in-app purchases and subscriptions.

Apple recommends that app developers validate a receipt for security and piracy reasons. In fact, property security requires a secure backend.

The Shared Secret is allows you to receive the decoded form of a receipt. In addition, its included in the payload of App Store Server Notifications. You can check that the password key’s value matches the known Shared Secret verify the authenticity of the notification.

Two Types of iOS App Shared Secret

There are two flavors of Shared Secret that can be generated through App Store Connect.

  1. Primary Shared Secret - used across all apps in your Apple Developer account
  2. App-Specific Shared Secret - used for a specific app in your Apple Developer account

The App-Specific Shared Secret is a good idea if you want app-level security. Perhaps plan to transfer an app to another Apple Developer. For instance, if you sell an app to another party on a marketplace like Flippa.

To generate either type of Shared Secret requires an App Store Connect account with either Account Holder or Admin role.

Generating a Primary Shared Secret

To generate (or re-generate) a Primary Shared Secret, follow these steps:

  • Sign-in to App Store Connect
  • Navigate to Users and Access
  • Navigate to Shared Secret
  • Click Generate or Regenerate
Generating a Primary Shared Secret in App Store Connect

Generating an App-Specific Shared Secret

To generate (or re-generate) an App-Specific Shared Secret, follow these steps:

  • Sign-in to App Store Connect
  • Navigate to My Apps
  • Choose the app you want to generate a Shared Secret for
  • Navigate to In-App Purchases under the Features heading
  • Click App-Specific Shared Secret
  • Click Generate or Regenerate
Generating an App-Specific Shared Secret in App Store Connect
Dan Burcaw

Dan Burcaw is Co-Founder & CEO of Nami ML. He built a top mobile app development agency responsible for some of the most elite apps on the App Store and then found himself inside the mobile marketing industry after selling his last company to Oracle.

Nami® logo

Maximize your App's Potential

Accelerate app revenue with Nami subscriptions.

Explore
Nami® logo

Sign up to our newsletter

Get the latest articles delivered straight to your inbox.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Similar articles

Read similar articles to this one

no code app screen
November 2, 2023

4 Reasons Why a VP of Engineering Should Adopt a No-Code Solution

No-code solutions are revolutionizing the way businesses approach software development. For a VP of Engineering, adopting a no-code solution can bring numerous benefits, including faster development time, increased collaboration, cost savings, and increased flexibility.

iPhone with 2023 calendar
March 27, 2023

Apple Fiscal Calendar 2023 & Developer Payout Schedule

Apple Fiscal Calendar 2023 starts on September 25, 2022 and ends on September 30, 2023. Learn how this is used for app developer payments.

2023 paywall trends
March 2, 2023

2023 Paywall Trends: 3 Designs to try in your Subscription App in 2023

Discover the trends in paywall design including free trial toggle, honest paywall, and more. Learn how to use these designs for maximum conversion.

See all news
Optimize your app revenue with smarter paywall management.
Copyright © 2024 Nami ML Inc. Nami is a registered trademark of Nami ML Inc.
Manage Privacy Settings