I know this is counter intuitive, but we are being asked if we can limit access to the underlying feature layers on a public facing web application. I know the first thing that gets checked is whether or not the data is also shared to the public. The requester doesn't want that, they only want the public to get to the information by way of the application, and nothing else.
Is there any way to prevent the public from navigating to our underlying data and using it in it's more raw form? Perhaps having some sort of group set up? All we've managed so far is to keep people from downloading it.