I have a page and it has webmethods I can use theese from the aspx page via ScriptManager, I am wondering If anyone can access theese methods from the outside of the page,if it is how can I secure the WebMethods ?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have a page and it has webmethods I can use theese from the aspx page via ScriptManager, I am wondering If anyone can access theese methods from the outside of the page,if it is how can I secure the WebMethods ?
Securing the web methods completely isn’t possible. After all, if you’re accessing them from your web page, they are being accessed directly from the client browser.
You could add an extra parameter that needs to contain some kind of one-time password / token and generate one when the page gets rendered. That will make it more difficult for someone to continue using your webservice without actually visiting your site.