restrict access to webservices

T

Tommy100

Hi,
I'd like to restrict access to webservices. We are having Sharepoint
Portal running on Windows Server 2003 and several asp.net-Webservices.
We would like only the Sharepoint-Webparts to be allowed to call the
webservices (in a first step), clients should not be allowed to call
the webservices directly.
What's the best way to achieve?
Thanks a lot in advance!
Thomas
 
J

Josh Twist

Assuming that Sharepoint web-parts are 'server' based (i.e. the request
to the web service comes from the Web Server running Sharepoint not the
client's browser) then you have a couple of options:

1. Use IIS - either restrict the IPs that can access your web service's
application or use Windows Authentication and only allow the user that
sharepoint runs under (assuming that isn't running under the end-user,
obviously).
2. Use WSE
http://msdn.microsoft.com/webservices/webservices/building/wse/default.aspx
(or your own Soap Headers) to require a username/password. You'll have
to include this in the requests from the web parts somehow.

Hope that helps - let me know if I'm way off target here.

Josh
http://www.thejoyofcode.com/
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Restrict Access to Aspx Page 6
Access exception in Webservices 0
ASP.NET Webservices for a single application 0
Webservices vs Stored Procedures 2
asp.net 2.0 webservices deployment problem 1
Trying to understand "restrict" 2
restrict access to page based on querystring value 5
Restrict IP access to a Perl application 4

Members online

Total: 24 (members: 1, guests: 23)
Robots: 493

Forum statistics

Threads
473,769
Messages
2,569,579
Members
45,053
Latest member
BrodieSola

Latest Threads

Top