Making Software for You!
Innovators for Industry and Institution Software
 
You are here: Home » Products » WebX_http

Version
This document is current with WebX_http Version: 5.0. This software is only available to domestic clients. If you are already a client, please use the "Contact" page of your client portal menu. If you are not a client, please use our public Contact form.

RSS icon RSS Feed
You can monitor the changes to this package by subscribing to the WebX_http RSS Feed. You can either click on the link to start your RSS client or enter the feed address (http://www.iii-software.com/products/webx_http/rss.xml) directly into your client. This is a low-volume feed which will contain only items of interest to WebX_http users.

Overview
Business application developers are often consumed by solving their business problems. Rarely is there time, and sometimes not the skill to pick apart the complicated Windows API required to securely communicate with a web service. Some languages make communicating with web services over HTTP easy, but little or no support for modern HTTPS communications.

WebX_http is the bridge to provide every application developer with the ability to send and receive requests to a web service securely with the latest security standards, leaving the application developer to focus on the content of the request, not the complicated transport protocols of the request.

WebX_http Version 5 carries on the tradition of being more secure, and expanding the features available to any application developer. Version 5 is the first version to include transparent support for all past API versions, along with the latest V5 API. You can now use any of the past API versions by simply overlaying the existing DLL -- Zero Program Changes! If you stay on your current API version, you will receive most of the benefits of Version 5 (TLS 1.3 support, strong encryption ciphers, etc) for only a few moments of work.

We also provide an easy migration example, demonstrating how you can upgrade your application to the V5 API, in order to receive the rest of the benefits (such as certificate validation), and set up your application to support new features in future releases.

Feature Highlights
Below are the main benefits in Version 5.

  • Windows 11 and Windows Server 2022 are now supported
  • TLS 1.3 is now supported. If your server advertises TLS 1.3, the connection will be established at TLS 1.3.
  • Strong cipher support has been updated to extend the cipher list.
  • Certificate validation is now an option. The developer determines if a certificate issue (such as expired cert) will be accepted or rejected.
  • Relaxed security option. By default, Version 5 now rejects insecure connections (TLS 1.1 and below). Although it is a bad practice, you can now downgrade the protocol security to communicate with older servers until they are updated.
  • Version 5 supports all past APIs in a single distribution. Mix and match your existing code with just one library
  • Transparent Migration support through alternate interface libraries. You can gain most of the benefits with Zero code changes.
  • Expanded Name-Value limits. Restrictions on the length of names and their associated values have been removed.
  • Better Buffer Security. Version 5 performs a high level of internal checking to prevent buffer overflows.
  • Buffer size limits have been removed. There are no longer any artificial limits on the request or response buffers.
  • Separate Request/Response Buffers. Previous versions used a single buffer (request in, response out). You can still use a single buffer for memory efficiency, or use a separate buffer for each.
  • Enhanced error reporting. There are many more internal validations in Version 5, and an expanded list of error responses to help you analyze failures.
  • Support for future features. The V5 API has been expanded such that we can add additional features while minimizing the amount of code changes to your application.

Requirements
WebX_http will run on 32-bit Windows from Windows 7 through Windows 11, and Windows Server from 2008R2 through 2022.
NOTE:To get the most secure protocol versions, Windows 10 or Server 2016 are recommended.

Pricing

If you are intersted in purchasing a new license or an upgrade, please consult the Price List, the Software License Agreement, then Contact Us.

Revision History

Date Version Change Description
2022.03.15 5.0.1 Major release:
  • Support for TLS 1.3 for enhanced performance and hardened security
  • Additional security controls (certificate validation, strict/relaxed security, IPv6 control)
  • Stricter validations to prevent buffer overflow, expanded error contol
  • Support for Address Space Layout Randomization (ASLR), a security feature available in Windows to guard against buffer attacks by randomizing the location where the library is loaded into memory. If your application is ASLR compliant, the DLL libraries will comply.
  • Supports shared code when used in a multi-process or multi-user environment
  • The Version 5 library now includes all API versions in a single package
  • Supports either a single buffer or separate buffers for the request/response. Separate buffers can be sized independently
  • Buffer size limits completely removed
  • Name/Value field size limits completely removed
  • Authorization field sizes doubled
  • Additional / Revised error codes, more information
  • Extensive documentation revisions
  • Expanded test/sample programs
  • Support for Windows 11 and Server 2022
2019.05.03 4.1.2 Update release:
  • Minor changes to support CGI applications under IIS on Windows Server 2016.
  • Long Get requests (beyond 1024 bytes) are now handled better. Get is not usually the best method send sending a large number of name/value pairs. In fact, many sites will limit the size of the query string.
  • The Detailed Error (dErr) now returns a 1 when the web server response is truncated.
  • A list of the most common Detailed Error Codes is now provided in the documentation.
2016.12.22 4.1.1 Update release:
  • Address PCI compliance issues.
  • TLS 1.2 support as default.
  • Server Certificate checking has been relaxed slightly. Certain certificates caused secure connections to fail in v4.1.0. Certificate failures that prohibit secure communications are still returned as a 'Connection failure'
  • Removed an extra null byte from the response buffer.
  • Added defaults for timeout and port if they are not passed by the caller
  • Upgrade helper library
  • Support for Windows 10 and Server 2016
2015.08.05 4.1.0 Major release:
  • Expanded buffer size.
  • Non standard ports are now supported and included in the initial connection attempt. Invalid port requests will now fail faster, providing more timely feedback to the calling program.
  • Significant reduction in run time resources required, including lower stack requirements.
  • Enhanced internal error checking. The Detailed Error (dErr) provides more granular information.
  • The core of webx_http has been completely rewritten to use an alternate series of low-level API routines to perform HTTP communications.
  • HTTP 1.1 is now the default protocol
  • A new test program is included, including some configuration files used with the test program to retrieve data from some public sites.
  • Upgrade helper library
  • Better support for Windows 8 and Server 2012
2013.11.26 3.0.0 Major release: Custom client implementation, not publicly available
2019.04.03 2.2.0 Minor release: Back ported several features from the V4 library
  • Modern HTTPS support. Supports TLS v1.2 and modern secure hashes
  • Reduce memory and stack overhead
  • Upgraded helper library
2011.11.21 2.1.0 Minor release:
  • Trim the name/value pairs submitted to the server
  • Add support for custom ports
  • Minor bug fixes
  • Add language samples for COBOL and PowerBasic
2011.05.15 2.0.1 Major release:
  • Double the size of the i/o buffer to 128k
  • The DLL now includes properties and a manifest, including version information
  • Add checking to prevent buffer overflow
  • Compatible with Windows 2008r2 and Windows 7
  • Upgraded helper library
2019.04.02 1.4.1 Update release:
  • Force the ierr return value to be 0 (instead of 200) for backward compatibility with v1.3
  • Add checking to prevent buffer overflow
2019.03.31 1.4.0 Minor release: This is an significant revision in that several of the changes from v4.1 were back ported to v1.3.1
  • Address PCI compliance
  • Modern HTTPS support: Supports TLS v1.2, and modern secure hashes
  • Reduced memory and stack requirements
  • The DLL now includes properties and a manifest, including version information
  • Language-specific samples have been added to the documentation
  • Tested to be compatible with Windows 2016 and Windows 10
  • Upgraded helper library
2007.05.22 1.3.1 Update release:
  • Add support for Post method
  • Add support for basic authentication
  • Minor bug fixes
2007.04.21 1.3.0 Initial public release
© Copyright 2007-2022, III Software LLC
Page: iii/products/webx_http/index.shtml       Last Modified: 3/19/2022