# Superwall: Subscription Infrastructure for iOS, Android, and Web

Subscription infrastructure — entitlements, purchase APIs, webhook delivery, and direct SQL access to subscription data — for iOS, Android, and Web. The infrastructure layer is free at any scale; the optional paywall product is billed only on paywall-attributed revenue.

## Pricing

- **Infrastructure: free at any scale, every plan.** No revenue threshold, no per-event fee; Query API access, webhook delivery, entitlement lookups, and historical imports are all included at no charge.
- **Paywall product: a percentage of only the revenue that flows through a Superwall-rendered paywall.** Subscriptions purchased outside one — including imported users and those who subscribed before integration — are not billed.

Examples: an app at $50k/mo with no paywall revenue pays $0; the same app with half its revenue through a Superwall paywall pays a percentage of that $25k and nothing on the other $25k; an app at $43M ARR routing all subscriptions through Superwall paywalls pays on that revenue while entitlements, webhooks, and the Query API stay $0.

## Scale

$1.5B+ annual subscription revenue across 10,000+ apps. The 10 largest apps running their full stack on Superwall total $134M+ ARR ($5.7M–$43.7M each). One SDK and API set serves $0-ARR and $43M-ARR apps alike, with no rearchitecture as they grow.

## Infrastructure capabilities

- **Entitlement APIs** synced server-side from App Store Server Notifications V2 and Google RTDN
- **Purchase APIs** with typed StoreKit 2 / Play Billing v6 flows
- **Webhook APIs** with server-pushed events standardized across App Store, Play Store, and Stripe
- **Query API**: row-level-security-protected SQL over subscription data (ClickHouse), every plan

Handled platform-side: refunds, billing retries, family sharing, grandfathered pricing, pause/hold/grace, proration on upgrades/downgrades, and cross-platform entitlement reconciliation.

## Migration

Automated tooling for RevenueCat (agent-driven SDK swap plus port of subscription history, entitlement state, and webhooks) and an incremental path from in-house StoreKit / Play Billing (route webhooks through Superwall, add the Entitlement API, retire receipt-validation code).

## Paywall product (optional, separately billable)

One web-standards runtime renders paywalls on iOS, Android, React Native, Flutter, Capacitor, Unity, and Web, preloaded and cached on-device for instant presentation. Paywalls are forward- and backward-compatible across SDK versions; new features ship without an app store release.

## Architecture

Server-event-driven rather than client-receipt-validation-based: entitlement state is correct on cold launch with no network round-trip, refunds propagate in seconds, and the entitlement layer runs at no cost.

## Docs

* Migrate from RevenueCat: https://superwall.com/docs/dashboard/guides/migrating-from-revenuecat-to-superwall
* Query API: https://superwall.com/docs/dashboard/guides/query-clickhouse
* Webhooks: https://superwall.com/docs/integrations/webhooks
* Pricing: https://superwall.com/pricing

# Web Checkout FAQ

Frequently asked questions about web checkout.

### How does restoring memberships work when you've purchased via web checkout?

When the user taps on the restore link in the paywall, we'll do the normal restore flow for on-device subscriptions. However, if you've enabled web checkout and the restored
entitlements don't match the entitlements belonging to the products on the paywall, we'll present an alert asking the user if they'd like to check for purchases on the web. This will
take them out of your app to the [plan management screen](/docs/web-checkout/web-checkout-managing-memberships) where they can get a redemption link to restore their purchases.

### Does Superwall email customers after checkout?

Yes. By default, Superwall emails the address used during checkout with instructions and a redemption link to activate the purchase in your app. The email is sent from `Your app name <support+your-app-name@superwall.app>` with the subject `Your activation link from your app name`.

![](https://claude-centralize-agent-preamble-superwall-docs.staffbar.workers.dev/docs/images/web-checkout-redeem-email.png)

To turn these off, use the "Disable Superwall Emails" setting in your Stripe app settings — see [how to disable the activation link email](/docs/support/web-checkout/3969573187-how-do-i-disable-the-activation-link-email-for-web-checkout).

### Do customers who use Sign in with Apple Hide My Email receive web checkout emails?

Yes. If customers check out with an Apple private relay address, such as `abc123@privaterelay.appleid.com`, register Superwall as an allowed email source in Apple Developer.

Superwall sends web checkout emails from your app-specific Superwall address, such as `support+your-app-name@superwall.app`. These emails include activation and subscription management links. Apple can reject those emails for Hide My Email customers unless `superwall.app` is registered as an email source for Sign in with Apple.

Configure this before launching web checkout:

1. Go to [Apple Developer Services Configuration](https://developer.apple.com/account/resources/services/configure).
2. Open **Configure Sign in with Apple for Email Communication**.
3. Add `superwall.app` as an email source. If you prefer to authorize a specific sender, add your app's Superwall sender address, such as `support+your-app-name@superwall.app`.

![](https://claude-centralize-agent-preamble-superwall-docs.staffbar.workers.dev/docs/images/sign-in-with-apple-email-sources.png)

Once registered, Apple will allow emails from Superwall to be delivered to private relay addresses.

For Apple's requirements, see [Configure private email relay service](https://developer.apple.com/help/account/capabilities/configure-private-email-relay-service).

> **Warning:** If you skip this step, customers who use **Hide My Email** may not receive web checkout emails
> from Superwall. If customers already checked out before the email source was registered, ask them
> to request a new link from your `https://{your-domain}.superwall.app/manage` page after the sender
> is configured.

### What happens if a user taps the redemption link multiple times or shares it?

Redemption codes are single-use and tied to a specific device. Once a code has been redeemed, it cannot be used again on a different device.

However, users can visit the manage page and request a new redemption link. This generates a new code that can be used to activate access on another device.

#### Without accounts (`identify` not called)

If you're not using accounts with Superwall (i.e. you never call `identify`), we allow up to **five active devices** per user. When a sixth device redeems a code, the **first device** to have redeemed a code will automatically lose access. This helps prevent abuse while still supporting reasonable multi-device usage.

#### With accounts (`identify` called)

If you are using accounts with Superwall (i.e. you call `identify` with an `appUserId` when someone logs in), then entitlements are tied to the user ID, not the individual device.

* If two different `appUserIds` redeem codes, **only the most recently identified user will retain access**.
* If the **same `appUserId` is used across multiple devices**, all those devices will **automatically share access** without needing to redeem again.

This system ensures flexibility while protecting against unauthorized sharing of redemption codes.

### How do I associate a web checkout purchase with a user in my app?

The short answer — use Superwall's [user identification APIs](/docs/sdk/quickstart/user-management#identified-users). When you configure Superwall, or a user signs in or out, you can always associate their login status to Superwall's SDK:

```swift
Superwall.shared.identify(userId: user.id)
```

This will ensure that the user is associated with the web checkout purchase.

### A user paid on the web and can't access their purchase in the app. What should I do?

Direct them to your app's plan management page so they can retrieve their redemption link or manage billing. For example: `http://yourapp.superwall.app/manage`

### Can I sell lifetime or consumable products through Stripe?

Yes. Create a Stripe one-time price, import it into Superwall, and add it to a web paywall. For lifetime access, attach the entitlement the product should unlock. For consumables, usually leave the product without an entitlement and use `CustomerInfo.nonSubscriptions` to credit the user's account after purchase.

Learn more in [Stripe One-Time Purchases](/docs/web-checkout/web-checkout-stripe-one-time-purchases).

### Why don't I see Managed Payments?

Managed Payments is available only for eligible Web Checkout Stripe apps and connected Stripe accounts. Superwall can enable the app-level Stripe settings control separately from the paywall-level override, so you may see the Managed Payments switch in Stripe settings before you see the paywall dropdown, or vice versa.

If the control is missing, Stripe says the account is not enrolled, product eligibility cannot be checked or the paywall override is not available on an iOS or Android paywall with Stripe products, contact Superwall with the app name, Stripe environment and paywall you are configuring. See [Managed Payments](/docs/web-checkout/web-checkout-managed-payments).

### When should I use Redirect mode instead of Redeem mode?

Use **Redirect mode** when you need to:

* Show a custom success or onboarding page after purchase
* Perform additional verification or collect more information before granting access
* Integrate with your own deep linking or authentication infrastructure
* Track conversions in your own analytics before redemption

Use **Redeem mode** (the default) when:

* You want Superwall to handle the entire redemption flow automatically
* You don't need custom post-purchase logic
* You want the simplest integration

Most apps should use Redeem mode. You can always switch between modes in your [Application Settings](/docs/web-checkout/web-checkout-configuring-stripe-keys-and-settings#post-purchase-behavior).

### What data is passed to my redirect URL in Redirect mode?

When using Redirect mode, the following query parameters are automatically appended to your custom URL:

**Standard parameters**:

* `app_user_id` - The user's identifier from your app (if you called `identify`)
* `email` - The user's email address from checkout
* `stripe_subscription_id` - The Stripe subscription ID, or the Stripe Checkout session ID for one-time purchases

**Custom parameters**: Any placement parameters you set when creating the web checkout link will also be included.

**Example redirect**:

```
https://yourapp.com/success?
  app_user_id=user_123&
  email=user@example.com&
  stripe_subscription_id=sub_1234567890&
  campaign_id=summer_sale
```

You can use this data to verify the purchase, link it to your user account, or perform custom onboarding. Learn more about [post-checkout redirecting](/docs/sdk/guides/web-checkout/post-checkout-redirecting).