My web app exposes a web service so that it can be run from Windows Scheduler (via a console app) on the web server. I planned to have the console app pass a password to prevent external users from running the web service. Can I just have the web service check Request.IsLocal instead?
Since the app may end up in a third part web hosting environment, would other web applications on the same server be able to call the web service and have IsLocal be true for them, allowing them access?
Thanks in advance.
View Complete Post