on 11-27-2007 8:40 PM
We have a web service hosted on PI and we would like to limit access to this web service to only one web service client application. This is a high volume interface and not particularly sensitive data so we are not really looking for the SSL overhead. Is there any way other than SSL or using the HTTP logon procedure of AS-ABAP to restrict access to this web service? For example, can we specify anywhere on the AS or in the configuration of the PI Sender HTTP adapter that only requests from a certain IP addresses be processed?
Also it is not advisable to use IP address. If required then maybe you could generate the userid or password dynamically from the hostname of the server that generates the HTTP request for the Web Service
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
If you do not care about security then pass some basic authentication in the form of userid and password in either the header fields or in the url parameters. These could then be authenticated in the Web Service - though this is not ideal
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.