---
title: verifyReceipt
framework: appstorereceipts
role: symbol
role_heading: Web Service Endpoint
path: appstorereceipts/verify-receipt
---

# verifyReceipt

Send a receipt to the App Store for verification.

## URL

POST https://buy.itunes.apple.com/verifyReceipt

## Sandbox URL

POST https://sandbox.itunes.apple.com/verifyReceipt

## Response Codes

200 OK:

## Discussion

Discussion Validating with the App Store requires a secure connection between your app and your server, as well as code on your server to validate the receipt with the App Store. Submit an HTTP POST request with the contents detailed in requestBody using the verifyReceipt endpoint to verify receipts with the App Store. Use the receipt fields in the responseBody to validate app and in-app purchases. Your server must support the Transport Layer Security (TLS) protocol 1.2 or later to call this endpoint. For more information about server-side receipt validation, see Validating receipts with the App Store. Use the sandbox URL for sandbox testing The sandbox URL for verifying receipts is: POST https://sandbox.itunes.apple.com/verifyReceipt important: As a best practice, always call the production URL https://buy.itunes.apple.com/verifyReceipt first and proceed to verify with the sandbox URL if you receive a 21007 status code. Following this approach ensures that you don’t have to switch between URLs while your app is in testing, in review by App Review, or live in the App Store. Find deprecation date in the HTTP header The verifyReceipt endpoint is deprecated. The HTTP header includes the deprecation date, according to RFC 8594.

## HTTP Body

The JSON contents you submit with the request.

## See Also

### Deprecated

- [requestBody](appstorereceipts/requestbody.md)
- [responseBody](appstorereceipts/responsebody.md)
- [error](appstorereceipts/error.md)