Web Service Interfaces
The following properties apply to all web services provided by xSuite Interface (see Web services).
Property | Description |
|---|---|
.AllowUser[] | Listing of names of users or client certificates that have access to a web service from xSuite Interface (optional) This property only applies to web services that allow or deny access across the board (i.e., do not have more detailed permission types). In special cases (e.g., involving the Status Web Service), there is a configuration property with the same name and extended syntax. This property can also be used to assign such specific authorizations to users. If no restrictive user is defined, access is allowed for all by default. The syntax of a collection value depends on the authentication method used (see property WebService.AuthMode). In the |
.AllowGroup[] | Listing of names of user groups that have access to a web service from xSuite Interface (optional) Only groups from a Windows Active Directory are supported. Therefore, this property is only relevant if Windows authentication is activated. The syntax of a group name is similar to that of a Windows user name: When a web service is called, only the user name is transmitted to the program. The program attempts to read from the Active Directory which groups the user belongs to. If required, authorizations for Windows users can be defined both via the names of the users and via the user groups. |
For web service interfaces that serve as the input system or the output system in a processing scenario, both the name of the relevant tenant (or "Default" when using the default tenant) and the name of the scenario must always be specified in the URL path for each call. Technically seen, this is a single web service that accepts or delivers data for all tenants and scenarios. Whether a calling user is actually allowed to do this for a specific scenario executed on a tenant-specific basis must be specified via the .AllowUser[] property.