Google has introduced the Play Integrity API toolkit to help developers verify whether their Android app was downloaded from the official Play Store or a third-party source. This tool allows developers to ensure their apps function as intended, identifying if the app was obtained through unofficial channels.
Many Android device users install apps from outside the Play Store for various reasons, but developers often prefer to restrict this. Apps downloaded from third-party sources might lack resources, code, or functionality. The Play Integrity API assists developers in tracking these issues, ensuring interactions and server requests come from a genuine app running on a legitimate Android device. By detecting if the app has been tampered with or if it’s operating in an untrusted software environment, developers can safeguard their app. It also verifies whether Google Play protection is enabled on the device.
Functionality and Developer Tools
The Play Integrity API offers flexibility for developers by allowing them to call the API at any point during the app’s operation. The returned “integrity verdict” provides data based on which developers can decide the next steps. Depending on the result, actions such as blocking the app or issuing a warning during sensitive operations can be taken. This helps alert users if the app’s environment poses potential threats.
At the Google I/O developer conference in May, Google introduced “remediation” dialog boxes to provide users with solutions for integrity verdict issues. For instance, if the “appLicensingVerdict” request returns “UNLICENSED,” the app will prompt the user to acquire a legitimate version from the Play Store. The current unlicensed app and its data are removed, and a new licensed version is installed, resolving future integrity issues.
Future Enhancements
Google plans to further enhance the Play Integrity API with new features, notes NIX Solutions. Currently, it is already integrated into applications like Tesco, BeyBlade X, and Diablo Immortal. Other apps, including Stripe, Uber, and TikTok, also make use of this interface. We’ll keep you updated on future developments as its usage is expected to expand in the coming years.