473,326 Members | 2,182 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,326 software developers and data experts.

How to capture application request in a WS??

I know someone has to have answered this question but I cannot find anywhere.

When other web applications connect to my web services. I need to be able to
retrieve information that will uniquely identify the application making the
request (not the individual PC as we have 1000s of users and would be
impossible to track.

The issue is we grant access to our web services to other web applications
written by 3rd part developers. But even with username and passwords, there
is no way to prevent one 3rd party developer from sharing their passwords
with another 3rd party without our knowledge.

I need a way to uniquely identify the application caller that cannot be
modified simply changing a web config entry or a string of sort. Something in
the headers maybe, but I don’t see anything other then those of the web
service itself.

I wanted to use the UrlRefeerer so that for example:
if we gave Microsoft.com a username and password to use on their sites to
access our web services and they shared it with Apple, it still would not
work for Apple b/c my web service knows that user/pass combination belongs to
the MS url and only should except requests as such. In theory, if such a
piece of information exist and is readable by a web service, you would need
to issue users name is passwords b/c the WS could figure out on the call what
the application is.

Any help appreciated
--
JP
..NET Software Developer
May 25 '07 #1
3 1754
"JP" <JP@discussions.microsoft.comwrote in message
news:DC**********************************@microsof t.com...
>I know someone has to have answered this question but I cannot find
anywhere.

When other web applications connect to my web services. I need to be able
to
retrieve information that will uniquely identify the application making
the
request (not the individual PC as we have 1000s of users and would be
impossible to track.
If you want the application to be identified with unique information, then
you'll need to give that unique information to the "application". The
application would then send that information back to you.

However, I don't see any kind of information that you could give to the
application that the third-parties couldn't share with each other. Is that
really a problem you're likely to experience?
--
John Saunders [MVP]
May 27 '07 #2
It can happen. Within are own agency not reallyconcerned but we also give
access to third partty developers. Just trying to secure the information as
much as possible. And we want to be aware of all applications using our
services. All service calls get logged but we cant really identify the apps
thats using them.

--
JP
..NET Software Developer
"John Saunders [MVP]" wrote:
"JP" <JP@discussions.microsoft.comwrote in message
news:DC**********************************@microsof t.com...
I know someone has to have answered this question but I cannot find
anywhere.

When other web applications connect to my web services. I need to be able
to
retrieve information that will uniquely identify the application making
the
request (not the individual PC as we have 1000s of users and would be
impossible to track.

If you want the application to be identified with unique information, then
you'll need to give that unique information to the "application". The
application would then send that information back to you.

However, I don't see any kind of information that you could give to the
application that the third-parties couldn't share with each other. Is that
really a problem you're likely to experience?
--
John Saunders [MVP]
May 29 '07 #3
"JP" <JP@discussions.microsoft.comwrote in message
news:35**********************************@microsof t.com...
It can happen. Within are own agency not reallyconcerned but we also give
access to third partty developers. Just trying to secure the information
as
much as possible. And we want to be aware of all applications using our
services. All service calls get logged but we cant really identify the
apps
thats using them.
Well, I'd say your first step is to define what you mean by
"identification". Once you know that, you can work on how to make sure that
this identification is associated with an "application".

You may have to define what you mean by "application", BTW.
--
John Saunders [MVP]
May 29 '07 #4

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
by: Jim Quast | last post by:
I have an ASP page and a CREGReports002.vbs file coded to export data to excel. I do this by building variables in a stored procedure. The ASP page has text boxes, list boxes, and radio buttons. ...
1
by: FD | last post by:
For performance reason, the follwoing code (C#) to capture all the Request collection contexts is NOT recommended: string ID = Request.QueryString; But how to Capture the individual Request...
3
by: malcolm | last post by:
Inside of a Page class, how do I capture the Request object values before the Page_Load event is called of that Page? I have a situation where I have many server controls on a Page that get...
1
by: feng | last post by:
I have a VB.Net program that consumes a web service. When calling the web service from my program, I would like to be able to capture and evaluate the request xml going out and the response xml...
6
by: Clif | last post by:
Hi, I would like to find out exactly what is being sent when a web page uses the post request method. My thought was to use the webbrowser control together with the HTTPWebRequest class, but am...
3
by: Nuevo | last post by:
I am looking for some method to capture, into a variable, the entire URL of an http request and redirect to SSL. For example, if a user opens a browser and typed in ...
12
by: Tom Bean | last post by:
I am writing a C# Windows service that calls methods on a remote web service and would like to capture the XML returned by the web service. The reason I need the raw XML is for back up to the...
0
by: arjosoer | last post by:
I'm writing a small utility to capture all requests made to a web server from a windows application using the axWebBrowser control. So far I have the following working, as the user traverse the...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.