We have SAP PI 7.5 and I've successfully created an integrated configuration that uses the REST adapter for the sender communication channel. I've tested the service when calling it within the company network but we now wish to expose it to enable a third party to use this service ?

We want the third party to be able to make an HTTP request to send the REST request. Is this a case of getting our networks team to open up the firewall for the URL:

http:<myHost>:<myPort>/RESTAdapter/demo/service

What about security ? I've set up assigned users on the business component which then allows me to use basic auth in the HTTP headers but is that enough ?