Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Reporting Services Permissions
- Thread starter waynegs
- Start date
- Thread starter
- #2
I haven't worked with secure webservices and my exposure to web services is limited to the MS AJAX interaction.
A quick google search returned the following results in simple terms you attach a soap header to the service and verify the information within the service.
You would still require SSL if you're concerned about packet sniffing.
Of course your within a windows domain. Maybe you could configure the virtual directory where the services are stored to reject anomomous requests and required Windows Integrated Authentication.
then from within the webservice you could authenticate the current user with the current identity [tt]System.Security.Principal.WindowsIdentity.GetCurrent();[/tt]. This way you don't need to worry about the soap header.
Jason Meckley
Programmer
Specialty Bakers, Inc.
A quick google search returned the following results in simple terms you attach a soap header to the service and verify the information within the service.
You would still require SSL if you're concerned about packet sniffing.
Of course your within a windows domain. Maybe you could configure the virtual directory where the services are stored to reject anomomous requests and required Windows Integrated Authentication.
then from within the webservice you could authenticate the current user with the current identity [tt]System.Security.Principal.WindowsIdentity.GetCurrent();[/tt]. This way you don't need to worry about the soap header.
Jason Meckley
Programmer
Specialty Bakers, Inc.
- Thread starter
- #4
- Status
Similar threads
- Locked
- Question
- Locked
- Question