The Web service is authenticated using the same mechanism as the URL query. Unlike the http query, the Web service servlet does not use a session.
If the data is queried using the Web service, e.g., via a Java client, the user name and password for each call must be specified in the http header. If the login fails, the Web service responds with the error code 401. This error code is evaluated by the client framework used.