Is there an enforced by the OS (iOS or Android) way to identify which mobile app is doing HTTP requests.
I want to have a mechanism like the HTTP "Origin" request header which is enforced by the browser.
The use case is to be able to monitor which app is using our SDK and being able to block them if it's used from an app which is not authorized.
I read about the User-Agent, X-App-Version and X-Source headers, are they enforced or is there others which are enforced ?