Call WCF Service from both windows and web application(ASP.NET) Securly

Question

0.00/5 (No votes)

See more:

Hi Friends,

I need to access a WCF Service from windows application and Asp.net web appication.
In asp.net application i need access WCF Service from JQuery. But it will leads security leak(All user can see javascript files form that they can view Service url and parameter type passed etc) How to over come this?

Posted 5-Nov-12 19:15pm

HarisJayadev

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

ZurdoDev · Answer 1 · 2012-11-08T09:31:00

Solution 1

You'll have to call a different service that then calls the service you are trying to hide. You're right, they can see the JS. You can minify it or even obfuscate the JS which makes it much harder to find the information you are trying to hide.

Posted 8-Nov-12 9:31am

ZurdoDev

Comments

fjdiewornncalwe 8-Nov-12 15:37pm

+5. Good answer.

HarisJayadev 8-Nov-12 23:03pm

Even after minifing or obfuscating i found service url and etc.. Can u give me any other solutions?

ZurdoDev 9-Nov-12 8:04am

I don't know of any. If you want the code to execute from the client side, as in JavaScript, it has to be on the client. There is no way around that unless you use something that is compiled, like an ActiveX control but then you'll have major issues getting it to work in browsers. Can you use a button and do a full postback and do it from server side code?