>From my experience some enterprise level systems do this. As long as you use https and a user/pass combo though I don't see what the problem is. You can always create a server-side login mechanism that will associate an id with the client and automaticaly expire after 30 minutes or so as well.
Best, Yoed -----Original Message----- From: Yann Larrivée [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 22, 2004 7:03 PM To: PHP General Subject: [PHP] Secure SOAP connections Hi, The subject says it all. I want to secure soap connection to my framework. How would you guys do it ? I tought of passing everything on a different port with a SSL connection + an key (sort of a PHP SESSION) that is given after a correct authentification (user, password) and expire after 30 minutes.. What do you guys think of this ? The idea is to develop a PHP-GTK and soap software base on some existing framework. Thanks. Yann -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
