I got a good link on Authorization of lightswitch
http://blogs.msdn.com/b/bethmassi/archive/2013/12/18/beginning-lightswitch-in-vs-2013-part-5-may-i-controlling-access-with-user-permissions.aspx
But I don't know how each use user is assigned to a role
How can we assign a user to a role.?
How each role can be assigned to different permissions?
Using lightswich 2013 with html client
You can assign the permissions to roles and the users to roles from within the Lightswitch Silverlight Desktopclient. You must be the administrator of the application.
From within the HTML client this is not possible out of the box.
Michael Washington, a Lightswitch guru, has a turnaround for this extending the Lightswitch application to an MVC asp. net application.
Related
I developed a SPA app(React and .NET Core) that runs only on our corporate intranet(It's hosted locally). Currently, we are authenticating the users against AD using LDAP.
These are my objectives:
Users do not need to register as every employee should be able to access the app.
We prefer to use SSO authentication method
I need to be able to get a list of the users that are in a specific role
I need to create some tables that stores additional information about users. For example, their roles, paths they're allowed to browse, etc. I am not sure how to do this without duplicating the users in ASP.NET Core Identity. I know If I use Identity, I can extend the users and customize them. But I do not want to register users/manage their passwords through Identity. Is there an alternative? Can I eliminate passwords if I used Identity?
I am not familiar with AD or Azure AD as a different team handles our IT needs. But I did a test in Visual Studio, I created a new web project with Authentication Type set to Microsoft Identity Platform. It was amazing that Visual Studio did all the work on my behalf to create an tenant on Azure. When I ran the app it used SSO and I was logged in. Can I use Microsoft Identity Platform with a customized user table? I just need to have a unique identifier for each user to link it with my other tables. I also do not want to manage the users if that's possible.
I have a Sharepoint 2010 application with mysites, therefore I use User profile sync service.
I changed the authentication method from windows to claims based ( choosing forms), and made necessary updates on web.config and run the commands on powershall, so I am using LDAP.
My application works with forms based authentication now, no issues, but I can not authanticate to mysites as my user name format has changed from domain/username to
One option is to somehow map new ldap formatted user and windows ad users (do not know how??), or I need to create a new connection on the user profile sync service to connect to ad with forms authantication and import users with new format too (failed to do so, any idea what needs to be configured on domain controllers to do that? ). Although, this will cause that users would get 2 different mysites if they login with windows or forms based auth.
Any idea is appreciated.
Thanks.
You need to use Move-SPUser command to make that work. For more info check the MSDN Documentation.
Say I have 10 users (name, email, phone). How do I add them to FBA so they can use sharepoint which is configured to FBA?
I mean do I need to go to SQL box and add each member. (I know from site permission you can add users but I am not if the users should be present in the sql member database before I do this).
I went to site collection> permission but didn't see anything that says "add external user" or add fba user.
SharePoint 2010; FBA
Is there a tool in microsoft .net directory? I can't download and install this https://sharepoint2010fba.codeplex.com/documentation? codeplex feature so that's not an option. Also, we have to set this users up front.
SharePoint does support forms-based authentication but FBA is not something you get out-of-the-box.
If your implementation of FBA does not provide a UI to manage the users:
add/modify/delete them directly in the Membership database
use the ASP.NET Web Site Administration Tool (you can run it by clicking ASP.NET Configuration from the Website menu in Visual Studio or without VS - Managing ASP.NET Membership and Roles without Visual Studio).
I have a user set up in windows users and groups as username/pwd in group1. How do it validate against it? The article how to list windows users and groups tells how to list them.
How do I validate against a local user inside a group w/ password?
Thanks
I am assuming that you are not looking at using the Windows impersonation but rather a login box for your users and authenticate against both a local source and fallback to AD. If so then these answers should point you in the right direction: MVC3 authorization using AD
If you prefer VB.NET then the CodeProject appears to have a good article on AD authentication.
I need to implement a web application hosted on sharepoint. This is a client requirement. So I cannot create a standard asp.net web application. Another client requirement is that the authentication is not an active directory one but they want to use an existing database of users.
I am a bit concerned how this would work on sharepoint because users would need to log-in onto sharepoint. Would it make sense that users log into sharepoint as anonymous and then we use our custom controls for log-in. How does sharepoint handle anonymous users?
Any assistance would be greatly appreciated
When building apps over SharePoint, you use the SharePoint authentication mechanism, whatever it is.
Does the SharePoint farm is already in place ? Or do you have to also build the farm ?
In the former case, probably the authentication mechanism is already in place and you just have to build a "standard" sharepoint application.
In the later case, you will have to carefully plan your authentication. SharePoint can use a combination of AD authentication, Forms authentication (over a DB in your case if you want) or a Claims authentication pattern. My guess is that a Forms authentication with a custom Membership/role provider is the way to go.