Follow me on Twitter @AntonioMaio2

Wednesday, May 15, 2013

SharePoint Summit 2013 - Best Practices for Security in Microsoft SharePoint 2013

Thanks to everyone that attended my session yesterday afternoon in Toronto at the SharePoint Summit 2013.  I had a packed room for the last session of the day, so a big thank you to everyone for sticking around. You can find the presentation I gave here:

Best Practices for Security in Microsoft SharePoint 2013

There were some great questions at the end of the session, in particular around anonymous Access to SharePoint sites and one that I could not answer well on permissions related to SharePoint Apps (related to the new App Model in SharePoint 2013).

Permissions for SharePoint 2013 Apps

I did a bit of reading and research today into how permissions work for SharePoint Apps in the new App Model.  A few quick points to know are:
  • An app for SharePoint requests the permissions that it needs during installation from the user who is installing it.
  • A developer must request, through the app manifest file, the permissions that the particular app needs to be able to run.
  • An app must be granted permissions by the user who is executing the app.
  • Users can grant only the permissions that they have.
  • The user who installs the app must grant all the permissions that an app requests or not grant any permission. The user can grant an app all or nothing in terms of the permissions requested.
In my readings I found some great MSDN articles related to Authentication, Authorization and Permissions related to SharePoint 2013 Apps here:
Please do reach out if you have any questions at all.


Monday, May 6, 2013

Ottawa IT Camp - Introduction to Developing/Deploying Apps for Office and SharePoint 2013

A big thank you to everyone that attended my session at the Ottawa IT Camp on Saturday May 4th.  There were some great questions and I'm really glad everyone found the session helpful.  Thanks for the feedback.  As well, big thanks to the organizers for putting on a great day!

In addition to on the Ottawa IT Camp web site, you can also find the presentation deck that I showed here:  Introduction to Developing and Deploying Apps for Microsoft SharePoint Office 2013.

Please let me know you have any follow-up questions.

There was one remaining question about development environments for creating SharePoint 2013 Apps that I'm working on answering now, and I'll post the answer here as another blog entry.