Guidelines for developers working on the webservices
The webservices should be very basic, and contain minimum business-logic. Security must be prioritized, and all requests must be authenticated.
There are a build-in method to authenticate users, which must be used primarily. Custom made methods should be avoided, for maintainability.
// We check if services are enabled and user has access
umbraco.webservices.authentication.StandartRequestCheck(username, password, authentication.EService.MaintenanceService);
Remember, this project is to let developers have a basic webservice-API, they know all future umbraco-installations will have. Changes and additions should be well-considered.