What I'm trying to do is the following:
I want to use Custom Role Provider's role name into a sharepoint group (maybe like visitors) to restrict permissions and users resolved automatically with AD without a login page.
To do that :
- I've created 1 sharepoint webapp and 1 extension of this webapp
- I've configured my 1 webapp (which zone is default) with authentication mode set to "Windows", added my custom role provider and setted authorization to deny users="?" into web.config
- I've configured the second webapp (which zone is custom) with authentication mode set to "Forms", added my custom role provider and setted authorization to deny users="?" into web.config
- I've configured the custom zone with authentication set to "Forms", Membership provider set to ActiveDirectoryMembershipProvider and Role Provider set to my custom role provider into sharepoint central administration. These webapp will be never used by users but needed to be there if you want permission's people picker of the first webapp resolves custom role provider's role names...
- I've added one of my role provider's role name (which is users) into the Visitors group of sharepoint
When I tried to access first webapp (windows auth app) into IE, I got a sharepoint access denied page. When I tried to access second webapp (FBA app) into IE, I got the login page and when I put my AD login and my password, it works successfully.
So does someone's got these before? Is it possible to make custom role provider's role names working in sharepoint when configured in Windows authentication mode with a custom role provider?