Reputation: 8405
web service in a protected folder by forms authentication
if I place my web service [ that is going to be used by a specific role ] in a folder that access is limited to that role by forms authentication , would be any more action needed to prevent unauthorized users from accessing the web service ?
Upvotes: 0
Views: 354
Answers (1)
Reputation: 1070
Webservices are not designed to be accessed via a browser. Forms authentication is designed for authentication via a web site browser. So forms authentication would not work so well unless the client accessing the web service is able to authenticate via a form submission, receive, store and transmit the resultant session information while accessing the web service.
It would be better to use a different authentication provider, such as ActiveDirectory or oAuth
There are plenty of options:
http://www.asp.net/web-forms/videos/authentication/simple-web-service-authentication
Upvotes: 1
Related Questions
- How to password protect folder with Microsoft.AspNet.Identity in asp.net webform
- .NET web service secure
- ASP.NET Web Service inside Forms Authentication Application
- How do I protect a directory in asp.net MVC?
- Securing a folder in ASP.NET web directory
- Asp.net forms authenticated webservice
- ASP.Net Directory Security
- asp.net forms authentication - make a folder publicly available
- Secure a web service that has Forms Authentication
- How can I expose a WCF Service in a Virtual Directory w/o Forms Authentication?