This guide explains how to set up a Transaction Validator in the Magify analytics system.

The validator enables the real-time verification of in-app purchase events by connecting to third-party platforms (such as Google Play or Apple App Store) to confirm transaction authenticity and prevent revenue loss due to fraud.

Getting Started

1. Navigate to Configurations > Integrations > Transaction Validator in the Magify interface.
2. In the Application filter, find and select your application from the dropdown list for which the transaction validation will be enabled.

3. A configuration form will open.

This form is used to connect Magify to your in-app purchase validation sources by providing the required credentials for RevenueCat and Google Play.

You’ll need to specify the application, optionally limit validation by app version, and provide access credentials such as the RevenueCat authorization code, Google Client ID, Client Secret, and Refresh Token.

Each field in the form is described below.

Application

Select your application from the dropdown list for which the transaction validation will be enabled.

App Version From

Select the minimum app version from the dropdown list to start applying validation rules from that version onward (optional).

Setting Up Validation by Platform

The setup process differs slightly depending on whether your application is built for iOS or Android platforms. This is due to differences in how transactions are validated and which credentials are required.

Below, you'll find platform-specific instructions for each case.

iOS Application

To configure transaction validation for an iOS application, follow these steps:

1. Go to Configuration > Integrations > Transaction Validator in the Magify interface.
2. In the Application filter, find and select your application from the dropdown list for which the transaction validation will be enabled.
3. Go to App Store Connect.
4. Navigate to App Information In the left menu, go to General > App Information.

Android Application

To configure transaction validation for an Android application, follow these steps:

1. Go to Configuration > Integrations > Transaction Validator in the Magify interface.
2. In the Application filter, find and select your application from the dropdown list for which the transaction validation will be enabled.
3. Сlick its name to begin setup.

For new publishers:

1. Go to the APIs Console and log in with your Google Play Console account.
2. Select Create project.

3. Provide a Project name in the dialog box that appears and click Create.

4. Click on Library in the left panel and find the Google Play Android Developer API.

5. Turn the Google Play Android Developer API on.

6. In the left sidebar, select OAuth consent screen.

7. If you see a screen that says "Google Auth Platform not configured yet", click the Get started button to begin setting up your OAuth configuration.
8. On the App Information screen, fill in the required fields and check the box "I agree to the Google API Services: User Data Policy". Click Continue to complete the OAuth consent screen setup.
9. Once the consent screen setup is complete, you’ll be redirected to the OAuth Overview page. Click the Create OAuth client button to generate your credentials. You will proceed to configure your OAuth 2.0 Client ID and Client Secret, which are required for integration in Magify.

10. On the Create OAuth client ID screen:

1. In the Application type dropdown, select Web application.
2. Provide a name for your app in the Name field (e.g.,Magify Transaction Validator). This name is internal and used only for your reference.
3. In the Authorized redirect URIs section, you must enter the following URL:https://developers.google.com/oauthplayground . This is required for using OAuth 2.0 Playground to manually generate a refresh token.

11. Once completed, click Create to generate your Client ID and Client Secret. These credentials will be used in the Magify interface.

12. To generate a Refresh Token, follow the steps outlined in the official Google documentation: Generating a Refresh Token, or follow the steps below. This guide will walk you through the process of setting up OAuth 2.0 credentials and retrieving the token required for Magify to access Google Play Developer APIs.
    1. Go to the OAuth 2.0 Playground.
    2. Click the settings icon (⚙️) in the upper right corner. From the Force prompt drop-down, select "No", and check the box "Use your own OAuth credentials".
    3. Then, input your Client ID and Client Secret.
    4. In Step 1: Select & Authorize APIs, scroll down to find Google Play Android Developer API v3 and select the following scope:
       • https://www.googleapis.com/auth/androidpublisher
    5. Click Authorize APIs to continue the authentication flow.

       

       6. After authorizing the selected scopes, you will receive an Authorization Code in Step 1. Click the Exchange authorization code for tokens button. You will then receive:
       • a Refresh Token (used to generate new access tokens)
       • an Access Token (used for authenticated API requests)

12. Paste credentials into the corresponding fields in the Magify configuration form.

If the application has already been added to Magify:

If publisher applications have already been added to Magify, there's no need to generate new credentials. All apps created within the same Google Play Console structure share the same OAuth 2.0 credentials.

1. To reuse existing credentials:
   1. Navigate to Configurations > Integrations > Transaction Validator in the Magify interface.
   2. Find your application that has already been integrated with Google Play.
   3. Copy the following values:
      • Google Client ID
      • Google Client Secret
      • Google Refresh Token

You can safely use these credentials for all other apps linked to the same Google Play developer account.

Saving the Configuration

Once all required fields are filled in, click Save to complete the setup.