I have a one android application in store.I read and write to my data from web service (JSON).Hackers can download to apk and hack this app and see my web services address ?
Yes, they can if your Web Service is not secured enough. They will not even need to reverse-engineer your app, they could just see to what IP their phone connects when they open the app. So they can get these informations:
Where your Web Service endpoint is
What data you are sending to the web service
What data the service sends back
They could also reverse-enigneer (decompile) your App and see the source code and the logic behind it.
This should not be enough to get into your server. How do they sign on to the Web API? Is there any authentication service?
I use SSL.https
E.g :
www.domain.com?webservices.php?MethodName=ListStudents&className=12A&username=webserviceuser&password=webservicepassword&returntype=JSON
this web service return to JSON data.
Related
i want to build an android application and i need to save and retrieve data from sql server database
so i need to do that with web service
i dont have knowledge in web services and how they are done
so can you help me what is the best way to do the web service and connect my android client with sql database
That's a pretty broad question, but here are the basics. A web service is a program or app that runs on a web server, usually exposed to the internet, or within a company's LAN on their intranet. Web Services can be built using ASP.NET or JAVA or PHP. I've used ASP.NET, specifically Web API 2.0, and Entity Framework. Entity Framework makes it very easy to connect your Web Service to your SQL Server database. With Web API and Entity Framework, you can create your web service and connect it to your database with basic Read/Add/Update/Delete capability in 1-2 hours.
Once you write your web service, you need to publish it on a Web Server as a Web App. I typically publish to an IIS Web Server (also Microsoft). For that you need a Website Hosted account with a Microsoft based server. Microsoft can host your Web Service using the Azure Cloud service. You can check out some tutorials for building your Web Service using the technologies mentioned and deploying to the Web using Azure. You can get a free Azure account to start with. Then, if you need to use it for a long time, you might need to pay for hosting fees.
This is probably the easiest and best way for you to get started, particularly if you are new to web services.
Good Luck!
Here is a tutorial using the technologies I've mentioned, except for Azure. But you should be able to find a tutorial for publishing a web service to Azure separately.
https://www.c-sharpcorner.com/article/asp-net-web-api-crud-logics-using-entity-framework-without-writing-single-code/
Some advice comrades, am thinking of developing an android app that retrieves some updates from a website. In other words when content of the website is updated the app content is also updated. I have searched google and i can't get clear answers on how to do it. Anyone tell me what do i need to do to accomplish this task. I have read about json parsing and web services but everything is not clear since am new to network apps.
If your server is a standard http server, you'll need another server that can establish a connection with the android device.
You can implement it yourself (using TCP or UDP), or you can use the trusted Google GCM:
https://developer.android.com/google/gcm/index.html
I recommend using GCM, but in either way, you'll have to make your current server, to notify the other server when it needs to send a message to any device.
Is it possible to call a method / API / web service from a web application to an android application, something like android app become web service provider and the web app become web service client,
I would like to refresh data on an android app by clicking on a button on a web application,
Something like Google Cloud Messaging - http://developer.android.com/google/gcm/index.html
would probably be your best choice.
You can use I-Jetty in your app and make your app as the web server.. use the source code and run the server from a android service. More detail can be found at following link:
https://code.google.com/p/i-jetty/
I am developing social networking app on android.Rough idea of my app is that when user launches an app it will get all users of this app in near by location.So for storage purpose of users data I want to use web server. I don't have an idea what is best way to start with.Should i use Amazon web services ? (S3,Ec2) I was surfing internet got these buzz words.
Please guide me what is best approach for database storage ? Should i write my own server api ? or What ?
These are some general things you will have to do:
Buy some server space where you can host your server (this is the amazon ec2, etc). If you need a fancy domain name, buy that too, and map it to IP address of the server that you brought (optional).
Setup a db of some kind on this server to store your data (msql)
Write wrapper web services (php, jsp, etc) which will expose apis to access your data remotely. For security reasons, you should also have some authentication using some token passing mechanism.
Access the data on your server remotely using the APIs you created in the web service.
I personally favor using a MySQL database with PHP to interface between the app and the backend! Your app can send requests to PHP and then your PHP webservice would write/read to the database and then return JSON to your app.
I would say this is a very subjective question though as there as so many ways that you can write a web service.
Is it possible implement an Android application as a web service?
On the official site I've read:
Note: If you want to develop a server-side application, we recommend
that you implement your application as
a servlet running in a servlet engine
like Tomcat or full-blown JSEE
container like Geronimo. If you prefer
to implement a server-side application
based on our HttpService, we'll assume
that you know what you're doing and
that you don't need help in figuring
out which interceptors need to be
configured.
How can I implement this? Apache TOMCAT can run on Android?
Is it possible implement an Android
application as a web service?
You can create an Android service that will open up some server socket and will listen for HTTP requests. However, Android will eventually kill off that service, either automatically after it is unused or at user request. And, nobody will be able to access the service except on the same WiFi LAN.
IMHO, truly implementing a Web service on Android is pointless.
I think they're saying that you can write a server-side application for an Android user to access, not that you'd run Tomcat on the Android device itself.