Geek Answers Handbook

Transferring an Android application to another developer

There, the developer is interested in acquiring one of my applications (the only one that has users), that is, I will need to send him the source code, the keystore and request Google to transfer this link: https://support.google.com/googleplay / android-developer / answer / 6230247? hl = en

Problem : all my applications use the same certificate from the same keystore.

So my question is : will a new developer be able to capture any of my other applications?

I believe that the answer is β€œNo. The device will allow another apk signed with the same certificate and with the same package name to update on the device, but Google Play will not allow the developer to download another application using the same package name as any other attachment".

But I am not sure about this, and I would like to receive additional technical details.

As I said, the other applications that I have are not important, and I could just unpublish them. But I probably won’t, and even if I do, the question is still valid.

ps: yes, now I found out that I have to have a 1-certificate for the application.

+8
android google-play keytool
source share
3 answers

The package name of your application is unique in the Play Store. It is the devices (and the Play Store) that identify your application and, therefore, must be unique and cannot be changed. Android will not allow your users to install two applications with the same package name.

However, sharing your keystore with another developer is still dangerous. When updating the application, the Play Store uses two gateways:

  • You must first have access to the account that owns the application.

  • Secondly, you must have an APK signed with the correct keystore

By granting someone access to the keystore, you delete one of two security checks. If the new owner of the application, where to access your developer account, they can re-publish other applications. There is also a risk that this new owner will sell the keystore and application to someone else in the future who can do the same.

Theoretically, if your account is protected, your other applications are also safe from theft.

Whether this risk is acceptable is up to you.

+4
source share

They can sign the APK and encourage your existing users to download it. When you download the application, the application will not be able to find out whether it came from you or from you. But the Play store itself will not allow them to download an application that you did not transfer to them.

Usually, part of the agreement, when the buyer buys and the application using the key used by other applications, will contain a small fragment that the buyer should protect the key. This agreement would be bilateral in any case, since you could theoretically capture your users by downloading a signed APK.

+1
source share

Perhaps the new developer will be able to capture any of my other applications?

There is no way in the world to do anything else for your applications unless you give it your keystore .

Your keystore is the key to all of your applications, and you should never share it with anyone. An application signed with your keystore in my developer account will never let me do anything for your own applications.

Someone can publish applications in the game store with different keystores.

0
source share

More articles:


All Articles