My problem is: I need to do a Web Service that return a list with all agenda of staff. But I’m having problem the permission to access this views(names and mail) to the consumer, I think that, but can not be.
How can I do resolv this?
I know that I can set anonymous with editor pemission, but it is not indicate, right?
My worst problem is can´t open a database like names.nsf and my db mail…
I think that give permission to anonymous access my db is bad…
My main question is… How will Can I access this db is using webservice for consumer without permission …
A web service just a special kind of agent. The same rules that govern agents’ access to things, apply. You can set the web service to run as web user (i.e. with only as much access as the user has) or you can set it to run with the agent signer’s rights. This is in the web service properties dialog.
You must get some kind of an error message in ur webservice consumer (other word for client).
I once had set TCP-Authentification/Anonymous on Security Tab of the Web Site document to “no”.
I got an error message in WS-Consumer about unexpected root element “html”.
For security, you might use SSL Client Auth. But I am not sure. In chapter 3.10 of Domino 7 App dev redbook, there is a chapter about Security and webservices. I haven’t read that, yet.
I am currently thinking a lot about it in the context of building an swing client which accesses !help! database from openNtf.org over Webservices. There certainly are initiatives on a spec level for webservices-security. Maybe we can expect something from lotus in future releases.
The apdev 7 redbook says it quite clear:
"At this time, there are no broadly-adopted specifications for Web services security. As a result
developers can either build up services that do not use these capabilities or can develop
ad-hoc solutions that may lead to interoperability problems."
My interpretation of “ad-hoc solution”:
If you really need it, it is possible to your own pki-infrastructure in Java (or symmetric keys) and use that in the webservice and the clients. This does not come without a cost nevertheless, cause there might be quite a bit of programming, processing and also administrative overhead. Also, this might be a Java only solution.