Click here to Skip to main content
15,847,653 members
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
We have one main site, database and we have got two different apps developed by external companies.

Now we have a user database in our main site. Now for these apps, one company suggesting us to create a web service that they can call and find out in true/false if user is a member or not.

The second company is suggesting they will have a separate user database and create a REST API calls that our system can interact with. So we need to create a service that updates the app database.

Now am thinking may be it's best to stick to one solution for both rather than different solution. I am more incline towards first suggestion?

What do you all think?


1 solution

The second suggestion is not really that good as it adds quite a bit more work and risk.

Sometimes the simpler methods such as point 1 are probably good to go with. As with any security concern this will / should dictate the requirements. Having a separate database does add some benefit but would be more problematic.

I would go for point 1.

However, Have you looked into Windows Identity Foundation? It uses federated security whereby you could have multiple applications all signing on using a single user token. This is claims based authentication and would work quite well in multiple applications scenarios[^]
Share this answer
AndyInUK 7-Jan-14 9:34am    
Thanks for your reply. Now am even more confident to go with 1st solution. What do you think works better REST or SOAP? I am thinking to go with REST as most of the people suggesting it provides better performance. Not that I have much experience with REST or SOAP.

I will have a look at windows identity foundation. This should be good solution for .net based project but we do have php based project too. So for that I might need to look into something different.


This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900