Comments for Dimuthu's Blog

Comment on PHP Web Services – Authentication Based on Client’s IP by Mangal

Mangal — Thu, 01 Dec 2011 06:50:51 +0000

Thank you, Dimuthu,

I am using PEAR::SOAP in our application that’s why can’t use your “authentication by username token”. if you have any other idea to secure PEAR::SOAP web-service then please update me. it will help me lot.

Thank you

Comment on Authenticate using Username Token from PHP – 2 Minutes Introduction by dimuthu

dimuthu — Thu, 01 Dec 2011 06:15:31 +0000

Hi Bob,
Yea you have to install WSF/PHP PHP extension, http://wso2.org/downloads/wsf/php

Comment on PHP Web Services – Authentication Based on Client’s IP by dimuthu

dimuthu — Thu, 01 Dec 2011 06:14:35 +0000

Hi,
Sure. If apache access control is used, you can avoid IP spoofing attacks. If you are using WSF/PHP you can use username token, that would do authentication in application level with more control. See here, http://www.dimuthu.org/blog/2008/09/23/authenticate-using-username-token-from-php-2-minutes-introduction/

Comment on PHP Web Services – Authentication Based on Client’s IP by Mangal

Mangal — Wed, 30 Nov 2011 14:05:35 +0000

Hi Dimuthu,

Thanks for writing the article.

Dimuthu, as Nabeel says that IP based authentication can be spoofed what happen if we restrict the access of our webservice by apache access control also. Is this add some more security?

Please suggest, i am waiting your reply.

Thanks.

Comment on XML Schema nillable=”true” vs minOccurs=”0″ by RP

RP — Wed, 02 Nov 2011 17:20:18 +0000

Very Nice article. It is explained very well. Thanks for sharing.

Comment on WSDL2PHP 2 Minutes Introduction by qalhat

qalhat — Mon, 17 Oct 2011 20:25:15 +0000

@swadams

I faced same issue installing wsdl2php using pear (caused by another installation of php on my laptop), I fixed it by specifying the full path to pear on my working php installion:

# /usr/local/Zend/Core/bin/pear install wsdl2php-0.2.1-pear.tgz

Comment on XML Schema nillable=”true” vs minOccurs=”0″ by XSD date types with minOccurs set to 0 now has a value of "<xml-fragment…" (nillable defaults to false)

Sat, 15 Oct 2011 11:20:29 +0000

[...] http://www.dimuthu.org/blog/2008/08/18/xml-schema-nillabletrue-vs-minoccurs0/ [...]

Comment on XML Schema nillable=”true” vs minOccurs=”0″ by XSD date types with minOccurs set to 0 now has a value of "<xml-fragment…" (nillable defaults to false) | Gravity Layouts

Wed, 05 Oct 2011 13:03:21 +0000

[...] http://www.dimuthu.org/blog/2008/08/18/xml-schema-nillabletrue-vs-minoccurs0/ [...]

Comment on XML Schema nillable=”true” vs minOccurs=”0″ by JR

JR — Fri, 16 Sep 2011 13:47:41 +0000

Nice article explaining this subject. I would add to this a discussion of the “default” attribute since for some types (numeric values in particular) this could eliminate confusion if the business rules allow for a default value.
BTW, the intent of the sample XML matches the schema, however 4 of the elements – nonboth, nilint, minzero and minzeronil – are not closed correctly and would not be considered well formed.
@G – I believe you can decorate your service method with an attribute defining those conditions.

Comment on XML Schema nillable=”true” vs minOccurs=”0″ by Rangalal Gamage

Rangalal Gamage — Thu, 25 Aug 2011 06:39:54 +0000

Short & Sweet Article which helps me to solve WSDL level validations.