W
wakefun
Guest
Dear all,
I need to study a specific customer request with the following constraint :
I have a SERVER A which is hosting SQL server 2012
I have CLIENT A which is hosting locally a Server 2012 database as well and run under Windows 10
Client A need to get some data from SERVER A
Client A update local data from retrive data from SERVER A
In order to do that the first appreoach in mind is to place Web services layer in front of SERVER A database hosted under IIS.
The solution works in a company domain which measn that between client A and Server A can have direct network connection of through VPN channel
From CLIENT A, user gets identified through windows login User1 for instance. Then when we want to connect to Server A database through web service hosted at server side, we need to be authenticated to web service using custom users defined in server database like OPER_USER, TECH_USER,MAINT_USER.
The way to do that I was thinking of having an Authtication method for which we pass a User name like OPER_USER for instance. Then if the server A find that user in database it return a valide authetication and an associated TOKEN ( GUID).
Then for each further call to web service metho, then the TOKEN is pass to each method to validate all further request.
Question :
- Does this authentication mecasnism sound suitable based on your experience ?
- I guess that as service is hosted under IIS, the IISUser need to have public permision to SQL server database correct ?
Thanks for your input
regards
Continue reading...
I need to study a specific customer request with the following constraint :
I have a SERVER A which is hosting SQL server 2012
I have CLIENT A which is hosting locally a Server 2012 database as well and run under Windows 10
Client A need to get some data from SERVER A
Client A update local data from retrive data from SERVER A
In order to do that the first appreoach in mind is to place Web services layer in front of SERVER A database hosted under IIS.
The solution works in a company domain which measn that between client A and Server A can have direct network connection of through VPN channel
From CLIENT A, user gets identified through windows login User1 for instance. Then when we want to connect to Server A database through web service hosted at server side, we need to be authenticated to web service using custom users defined in server database like OPER_USER, TECH_USER,MAINT_USER.
The way to do that I was thinking of having an Authtication method for which we pass a User name like OPER_USER for instance. Then if the server A find that user in database it return a valide authetication and an associated TOKEN ( GUID).
Then for each further call to web service metho, then the TOKEN is pass to each method to validate all further request.
Question :
- Does this authentication mecasnism sound suitable based on your experience ?
- I guess that as service is hosted under IIS, the IISUser need to have public permision to SQL server database correct ?
Thanks for your input
regards
Continue reading...