On Fri, 18 Jun 2004 08:02:47 +1000, KNOTT, Brian <[EMAIL PROTECTED]> wrote: > I looking at exposing a web service to another server on the internet. My > question is can I use SSL or some other security to secure the > communications. I can put a username / password on the web service, but > what else can I do.
Yes to all of the above. A username / password, passed to every method is a simple solution and you'd want to use SSL so the username / password can't be sniffed. You could also use a login() method: clients need to login first with a username / password and you hand them back a session id which they then have to provide on all subsequent calls. Usually this is done via SOAP headers. An example is the salesforce.com web service API. See my blog for a link to a MM forum thread on this. -- Sean A Corfield -- http://www.corfield.org/blog/ "If you're not annoying somebody, you're not really alive." -- Margaret Atwood --- You are currently subscribed to cfaussie as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
