tags:

views:

334

answers:

2
Q: 

SharePoint Groups\Roles using FBA

Hi All, I'm running an FBA web app, having 2 Site collections. Currently I have a SharePoint group in one site collection, and I would like to assign permission to that group in the other site collection. Since SharePoint groups are site scoped, I thought using FBA roles..

Any words on how to do this, or if this it the recommended way?

Thanks.

A: 

Even if you use FBA, the groups will still be site scoped. You will need to create the groups you want to use on both site collections and deal with the permissions on each site collection unfortunately.

Hugo Migneron  2010-04-06 19:13:03
I think you misunderstood me..I know the groups are site scoped, even with FBA.That's why I asked about using FBA Roles instead.
itaysk  2010-04-07 11:15:32
I did miunderstand you sorry. You could use FBA roles and it would work, but you would lose all the built-in functionality of the SharePoint groups (for example, you couldn't manage permissions for a list via the UI, you couldn't add a user to a group via site settings, etc.)
Hugo Migneron  2010-04-07 13:29:47
That is not true. When properly configured, FBA roles can be added into a SharePoint group through the UI just like an AD user, AD group, or FBA user.
Rich Bennema  2010-04-07 14:00:48
+1  A: 

I am a fan of AD groups or FBA roles inside of SharePoint groups regardless of the number of site collections or authentication method. It is just cleaner and cuts down the amount of maintenance for the site going forward.

Once you have an FBA MembershipProvider working (whether AspNetSqlMembershipProvider or custom), the hard part is done. Adding role support is easy by contrast.

There are many examples of getting roles to work: here, here, here, here, and here.

The point I would emphasize is in addition to registering your RoleProvider in the web.config under configuration/system.web/roleManager/providers, be sure to also add it to configuration/SharePoint/PeoplePickerWildcards:

<PeoplePickerWildcards>
  <clear />
  <add key="MyMembershipProvider" value="%" />
  <add key="MyRoleProvider" value="%" />
</PeoplePickerWildcards>

The entries in this section are what SharePoint will use to verify the FBA role when you add it into a SharePoint group.

Rich Bennema  2010-04-07 13:57:01
So far it seems like what I wasa looking for. Thanks :)
itaysk  2010-04-07 23:01:51

related questions

Upgrading Sharepoint 3.0 to SQL 2005 Backend?
Webpart registration error in event log
Sharepoint COMException 0x81020037
Transactional Design Pattern
Deploying InfoPath forms to different SharePoint servers
Profiling/Optimizing (Sharepoint 2007) Web Parts
Retreiving the PC Name of a Client? (Windows Auth)
What's the best way to report errors from a SharePoint workflow?
How to get out parameters working in SharePoint workflows
Editing User Profile w/ Forms Authentication
WSS/MOSS Book
Creating a development environment for SharePoint.
Sharepoint Wikis
Have you used a wiki in your project or group?
Can I copy files to a Network Place from a script or the command line?
How do you deploy your SharePoint solutions?
SharePoint WSS 3.0 Integration with Mac OSX (either Safari or Firefox)
SharePoint - Connection String dialog box during FeatureActivated event
How can I improve the edit-compile-test loop when developing a SharePoint workflow?
Best ajax library for Sharepoint
Alternative Hostname for an IIS web site for internal access only
How to reference to multiple version assembly
MOSS SSP problem - Failed database logons from deleted SSP
Sharepoint: executing stsadm from a timer job + SHAREPOINT\System rights
Can ASP.NET AJAX partial rendering work inside a SharePoint 2007 application page?