tags:

views:

654

answers:

1
Q: 

Sharepoint permissions with Windows Authentication and custom Role Provider

What I'm trying to do is the following:

I want to use Custom Role Provider's role name into a sharepoint group (maybe like visitors) to restrict permissions and users resolved automatically with AD without a login page.

To do that :

  • I've created 1 sharepoint webapp and 1 extension of this webapp
  • I've configured my 1 webapp (which zone is default) with authentication mode set to "Windows", added my custom role provider and setted authorization to deny users="?" into web.config
  • I've configured the second webapp (which zone is custom) with authentication mode set to "Forms", added my custom role provider and setted authorization to deny users="?" into web.config
  • I've configured the custom zone with authentication set to "Forms", Membership provider set to ActiveDirectoryMembershipProvider and Role Provider set to my custom role provider into sharepoint central administration. These webapp will be never used by users but needed to be there if you want permission's people picker of the first webapp resolves custom role provider's role names...
  • I've added one of my role provider's role name (which is users) into the Visitors group of sharepoint

When I tried to access first webapp (windows auth app) into IE, I got a sharepoint access denied page. When I tried to access second webapp (FBA app) into IE, I got the login page and when I put my AD login and my password, it works successfully.

So does someone's got these before? Is it possible to make custom role provider's role names working in sharepoint when configured in Windows authentication mode with a custom role provider?

A: 

What specific problem are you encountering? Do you wish to get rid of the login page, and "automatically" use the user's AD credentials passed by IE?

Tristan  2009-10-12 05:59:49
Yes, I want users automatically login with their AD credentials passed by IE and use my custom role providers to retrieve their roles affected to sharepoint groups.
quicky  2009-10-12 08:45:54
The pattern i have seen most often involves using a reverse firewall to address this. Microsoft would recommend ISA for this purpose.
Tristan  2009-10-12 23:13:43
Also, I've spoken to someone from Microsoft about this very topic in the past and he said it is possible to do it just using ASP.NET, but wasn't able to provide more information as to how.
Tristan  2009-10-12 23:15:02

related questions

Can't copy file with appropriate permissions using FileIOPermission
GetProcessesByName() and Windows Server 2003 scheduled task
Starting a process in C# with username & password throws "Access is Denied" exception
How do you set directory permissions in NSIS?
PHP: How to check if a directory is writeable?
Sharepoint Item Level Access & performance
sudo echo "something" >> /etc/privilegedFile doesn't work... is there an alternative?
What is the best way to create a security architecture?
Hierarchical Group Permissions Theory/Resources?
Why is access denied when installing SSL cert on IIS 5?
What databases do I have permissions on
Can an iPhone App Be Run as Root?
SQLite/PHP read-only?
Multiple permission types (roles) stored in database as single decimal
SharePoint Permissions
CakePHP ACL Database Setup: ARO / ACO structure?
LINQ and Database Permissions
What's the best way to implement a SQL script that will grant select, references, insert, update, and delete permissions to a database role on all the user tables in a database?
php scripts writing to non-world-writable files
How do I detect if a function is available during JNLP execution?
Implementing permissions in PHP
Access Control Lists & Access Control Objects, good tutorial?
In Visual Studio you must be a member of Debug Users or Administrators to start debugging. What if you are but it doesn't work?
Where should I put my log file for an asp.net application?
What is the best way to handle multiple permission types?