Note
"If you want all the code in a single file, checkout to the monofile branch." ✅
-
Decrypt and verify the integrity verdict After you request an integrity verdict, the Play Integrity API provides an encrypted response token. To obtain the device integrity verdicts, you must decrypt the integrity token on Google's servers. To do so, complete these steps:
-
Create a service account within the Google Cloud project that's linked to your app. On your app's server, fetch the access token from your service account credentials using the playintegrity scope, and make the following request:
playintegrity.googleapis.com/v1/PACKAGE_NAME:decodeIntegrityToken -d \
'{ "integrity_token": "INTEGRITY_TOKEN" }'Note
To access the API's REST interface, you can use the Google API Client Library, which is available in many programming languages, including Java . Read the JSON response.
- The resulting payload is a plain-text token that contains integrity verdicts .