PREVIOUS: Security in SharePoint Apps – Part 2 In the first two parts of this series we looked at what an App Principal is and what the security context is that we use when a request comes into SharePoint. Now that we have those basic components of the framework defined, let’s talk a little about the…
Tag: App Model
Security in SharePoint Apps – Part 2
PREVIOUS: Security in SharePoint Apps – Part 1 In Part 1 of this series I described how to think about an App Principal, and I mentioned that it is one of the main actors in determining who has rights to what content. The other actor, of course, is the User Principal. Between the two though,…
Security in SharePoint Apps – Part 1
I recently put together a session around security in SharePoint Apps. There seems to be enough content on this topic to keep people on their toes at all times, so I decided to try and assemble all this information all in one place on this blog with a series of posts. Most of this information…
Another 401 Unauthorized Tip for Working with SharePoint Apps
I've tried to update the related postings to this, but sometimes you need a call out to make sure it catches your attention so…here's another troubleshooting tip for when you get a 401 unauthorized error when your app tries to access SharePoint content. Suppose you have gotten everything working and then create a provider hosted…
Converting a VS.NET Web for a Provider Hosted SharePoint App to a Full Blown Web or Console Application
This post is yet another in my series of "how long of a post title I can come up with and still not convey the actual essence of the post" contest. I'm sure you've all been following along at home and are thrilled to see another entry, but it was either this or create a…
Missing Context Token in Low Trust App with SharePoint 2013
Should you decide that you want to write low trust apps for an on-premises SharePoint 2013 farm, there are a number of hoops you should expect to jump through (NOTE: this assumes the SPNs for your web apps are already configured in the MsolServicePrincipal for your o365 tenant): Create a new app in Visual Studio;…
Using REST Services with a Provider Hosted App in SharePoint 2013
Today's topic seems straightforward enough, right? There's lots of documentation all over the interwebs about how to do this so should be a piece of cake. Well, as it turns out, when I did this a couple of weeks ago I found that there is a lot of missing information, misleading information, and in some…
When Do Your Apps Need AppRegNew.aspx in SharePoint 2013
I had a nice question today from my good friend Bala, who was working on some app stuff and talking to me about AppRegNew.aspx. We have a nice article on how to use this here: http://msdn.microsoft.com/en-us/library/jj860570.aspx, which is talking about packaging up your applications. The minor disconnect (mostly on my part) was the use case…
Using SharePoint Apps with SAML and FBA Sites in SharePoint 2013
Hopefully by now everyone has heard about the new app model in SharePoint 2013. There’s a lot of documentation out there about it so I won’t go into exactly what it is. What you should know is that it’s the preferred model for developing applications going forward. If you’ve done any development with the new…
More TroubleShooting Tips for High Trust Apps on SharePoint 2013
Hey, I'm an app guy, I like doing dev, but honestly – I may go hoarse screaming at my computer if I have to track down one more "The issuer of the token is not a trusted issuer" problem with my new SharePoint apps. To try and help you save your own voice (and sanity)…