tags:

views:

129

answers:

2
Q: 

Public / internal accessibility confusion on a web service wrapper?

Hi all,

I've written a simple web service that converts a word doc to a pdf. As part of the Convert method, it takes in a custom settings object that contains info about the doc path, etc. and a DataTable of, er, data.

I am now creating a "helper" class to consume the web service in order to remove the hassle for other developers and, if truth be told, control the consumers of the web service. I don't want anyone diving into the web service (even a developer) and using it willy-nilly.

Let's call my web service WordToPdfWS and my helper class WordToPdfHelper (ugh); WordToPDFHelper has a web reference to WordToPdfWS and can call the Convert(settings) method no problem (it even works!).

When I create a consumer / test app and set a reference to WordToPdfHelper, I find that (as expected) I can create the WordToPdfHelper object and use it as intended. BUT, in my consumer, I can also create my web service (WordToPdfWS) and call it directly - from my consumer!

This is definitely not what I want (e.g. any Tom, Dick and Harriet Developer being able to get at it), is there anyway to prevent it?

Kind regards,

Mike K.

A: 

My guess here is that you have your webservice instance on your helper declared as Public. You would want that to be either private or internal.

Mitchel Sellers  2009-07-30 16:12:20
Indeed I would, but looking through the code, the only place I can see to change the accessiblity of the class is in the reference.cs class which is auto-generated, so I'd be loathe to change it there. I'm using VS2008, and can't see an obvious setting...
Mike Kingscott  2009-07-31 08:29:16
Hmmm - editing the reference.cs class to and change the relevant classes to internal breaks what was working, with the error "Method WordToPdfConvertor.Convert can not be reflected"...
Mike Kingscott  2009-07-31 09:07:48
A: 

Interesting problem. The ideal scenario is one where you limit access to the WS proxy stub within the lib, but can also use the auto-generated code. The auto-gen'd code just happens to produce its output as public, and updating that code file is undesirable.

I believe you can find a solution by employing techniques for code access security. You can restrict code access using the Framework's structure for cross-assembly calls.

Implementing the code access security, whether it be on the class or method level, could be accomplished using a partial class that mirrors the auto-generated stub class (by namespace and name).

Your stub class is already a partial class (assuming it was generated with Visual Studio). Creating a separate partial class file and employing code access security could theoretically provide the wrapper restriction you're seeking, plus stay in lock-step with the internal web service stub while staying out of the way of future updates.

I haven't tried this, so your mileage may vary.

jro  2009-08-11 07:04:31
Hmmm, ok - thank you, food for thought...
Mike Kingscott  2009-08-11 08:05:51
Makred as answer after all this time ;-)
Mike Kingscott  2009-11-13 11:04:26

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?