1

Apple 似乎不喜欢我的 ajax 请求。我正在尝试在应用内购买后验证 PhoneGap 应用中的收据。

// prepare JSON object for Apple
/* Retrieve the receipt data from the transaction’s transactionReceipt property (on iOS) or from the receipt file inside the application bundle (on OS X) and encode it using base64 encoding.
Create a JSON object with a single key named receipt-data and the string you created in step 1. Your JSON code should look like this:
{
    "receipt-data" : "(receipt bytes here)"
} */
var data = JSON.stringify({
    'receipt-data' : btoa(transactionReceipt)
});
if(DEBUG) console.log('Data: ' + data);

var url = 'https://' + (DEBUG ? 'sandbox' : 'buy') + '.itunes.apple.com/verifyReceipt';
if(DEBUG) console.log('URL: ' + url);

// send the POST request
/* Post the JSON object to the App Store using an HTTP POST request. The URL for the store is https://buy.itunes.apple.com/verifyReceipt. */
$.ajax(url, {
    type: 'POST',
    data: data,
    dataType: 'json',
    success: function(data) {
        console.log('Request returned successfully.');

        // parse the response
        /*
        The response received from the App Store is a JSON object with two keys, status and receipt. It should look something like this:
        {
            "status" : 0,
            "receipt" : { (receipt here) }
        }
        If the value of the status key is 0, this is a valid receipt. If the value is anything other than 0, this receipt is invalid.
        */
        if(data.status === 0)
        console.log("Receipt is valid.");
    },
    error : function(jqXHR, textStatus, errorThrown) {
        console.error('Request failed with response code ' + errorThrown);
    }

});

我正在使用 jQuery 并且有:

$(document).bind("mobileinit", function () {
    // xss
    $.support.cors = true;
    $.mobile.allowCrossDomainPages = true;
}

有没有人尝试通过 ajax 验证他们的收据并遇到这个问题?

谢谢。

4

1 回答 1

0

Apache Cordova 中的域白名单是一种安全模型,用于控制对外部域的访问,例如http://google.com。默认安全策略是阻止所有网络访问

http://docs.phonegap.com/guide_whitelist_index.md.html

于 2012-11-04T02:27:27.263 回答