Customer experience | Sales, Customer Insights,...

Connect to SSL webservice from Dynamics 365

(0) Share

Report

Posted on by RobJoosen

Hi,

Situation:

In Dynamics we want to do an address validation on the OnChange event. Normally we would use this path:

Javascript -> Validation Webservice -> Valid or not a valid address

Now, in my current environment, my client requires 2 way SLL (so with Certifcates) when accessing the validation service.

What are my possibilities to accomplish this

- Plugin (impossible because of sandbox so no SSL specific libraries available)

- Via Azure function to the SSL webservice: questionable because this results in a public endpoint which can be DDOS-ed for example)

Other way would be a Logic App that is triggered on Add Record for that Entity, but this takes time, so no real-time validation.

ANy help would be appreciated.

Rob

I have the same question (0)

All responses (4)

Answers (0)

Guido Preite 54,086 Moderator on at

Like (0)

Report

can you expand regarding this part?

"Now, in my current environment, my client requires 2 way SSL (so with Certifcates) when accessing the validation service."

thanks

Was this reply helpful? Yes No
RobJoosen 10 on at

Like (0)

Report

Sure. This is a service on AWS, which is secured. We need client-certificates to access this service. The server has the Server Certificate and from Dynamics we are required to provide a Client Certificate.

(I'm no security expert so be gentle...)

Was this reply helpful? Yes No
Suggested answer

Guido Preite 54,086 Moderator on at

Like (0)

Report

I understood, practically it's required to use custom certificates in order to call the endpoint.

let's put aside javascript because if it's a client side, you need to make the certificate readable also by the client and this in my opinion is a more questionable practice

I never tried it with a plugin (so it may work, I know that if you google you get people not able to have results but in my opinion it's worth a shot), first of all I would try with a simple console application (probably it's required this namespace System.Security.Cryptography.X509Certificates and having the certification file, keep in mind that you can't load an external file inside a plugin but you can convert the content to a base64 string and put that string inside the plugin) and after move the logic to a plugin. Also the plugin will be triggered on the create/update of the record, not real-time as a js onchange event.

if the plugin approach doesn't work then I suggest an azure function, yes, it theoretically can be DDOS-ed but it's a address autocomplete service, worst case scenario the service doesn't work but doesn't get exploited.

hope it helps

Was this reply helpful? Yes No
RobJoosen 10 on at

Like (0)

Report

Thanks,

We've noticed that the Plugin way is not working due to Security Exceptions.

Hopefully we can find another way, maybe obfuscate the Azure function or something like that.

Was this reply helpful? Yes No

Join the conversation

Community site session details

Connect to SSL webservice from Dynamics 365

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Leaderboard > Customer experience | Sales, Customer Insights, CRM

Featured topics

Product updates

Community site session details

Connect to SSL webservice from Dynamics 365

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Subscribe to this forum!

Select categories

Leaderboard > Customer experience | Sales, Customer Insights, CRM

Featured topics

Product updates