Skip to Content
Former Member
Aug 24, 2015 at 09:30 AM

Personas 2.0&3.0: how to secure the WebRFC call used by Personas?


Hi Personas experts,

As we see, one can implement a function module (eg, based on a user name to return the initial as JSON) that can be called by Personas WebRFC.

My question is: would it be possible that such a function module can be called by any applications from outside the company's network? If so, how to prevent such risk? The "Whitelisk", in my understanding, is to prevent the Personas apps calling any urls. But can it be used to block the RFC calls from outside world?

Thanks a lot in advance!

Dong Zhu