Hi my friend, How are you?
My problem is: I need to do a Web Service that return a list with all agenda of time members. But I’m having problem the permission to access this views(names and mail) to the consumer.
How can I do resolv this?
I know that I can set anonymous with editor pemission, but it is not indicate, right?
Thanks
Subject: Look at webservice properties
There is a security tab where you can set the webservice to “run on behalf of”… Quite similar to the settings you can use for an agent.
Have a look and check the documentation to make your choice.
Obviously, you have to consider who can actually call that webservice if it does not require any kind of authentication.
Regards
John
Subject: RE: Look at webservice properties
My worst problem is can´t open a database like names.nsf and my db mail…
I think that give permission to anonymous access my db is bad…
My main question is… How will Can I access this db is using webservice for consumer without permission …
Thanks
Subject: RE: Look at webservice properties
Luiz,
it depends on what you are trying to achieve as to whether anonymous access is good or bad. If you are accessing security sensitive information then definitely it would be bad to grant anonymous access to the database. Sometimes however it can be useful to have anonymous access (e.g. general web access without accounts). Again it depends…
At this point however the security is independent from the web service. Meaning that if you’ve got anonymous access through the web service then you also have anonymous access through a web browser to the database. (Especially bearing in mind that the http task needs to be runnig for web servcies to work.)
Regards,
Mike.
Subject: Webservice properties vs. db security
Mike,
You do not need to allow anonymous access to names.nsf for the webservice to retrieve data for an anonymous user (of the webservice). That will only be true if you set the webservice to “Run as web user”.
If you select “Run on behalf of…” you may specify any user in your system (if you are allowed to set such settings - look at the security tab in the server document). In this case you can retrieve information in the webservice if the selected user has access to names.nsf. Therefore, you can actually show some of the information of names.nsf without opening for everything in the database - namely, through your logic and control in the webservice.
If your select none of the above, your webservice will run as the user that has signed the webservice. Same considerations apply as for a selected user above.
Regards
John
Subject: RE: Webservice properties vs. db security
John,
thanks for clarifying this. You are absolutely right I was assuming the run as web user property was set. Thanks again.
Mike.
Subject: RE: Web Service - Anonymous - Is it Sercure ?
I am not exactly sure of your question but I think you have an application where you need to access the PAB however your users are accessing it anonymously (all through a web connection). Correct?
If so, I would suggest using some sort of agent to retrieve the information as you can sign the agent with an ID that has the proper access level so you don’t have to change the ACL on your PAB.
HTH,
Courtney