ansaurus

Question

Answer 1

A:

Try:

SPWeb eachWeb = SPContext.Current.Site.RootWeb.Webs[0];
SPListItemCollection myItemCollection = eachWeb.Lists["Listings"].Items;

Remember that SPWeb should be used in a using block, or disposed of explicitly after use.

Andy Mikula 2009-02-20 18:46:32

Answer 2

+4 A:

You're correct, the access denied error is occurring when you're using an account which does not have access to the "Listings" list in the current website.

The easiest way around the issue is to use a SPSecurity.RunWithElevatedPrivleges call:

SPSecurity.RunWithElevatedPrivleges(delegate()
{
     //Your code here
});

which will run whatever code is contained in the anonymous method using the SharePoint/System account, granting complete control. Be careful when using this technique though, as it equivalent to running code at full trust with a super user account. There are other caveats to be aware of as well.

OedipusPrime 2009-02-20 18:51:08

Ahhh....SharePoint development. Simple data access becomes a chore in and of itseslf.

Jim 2009-02-20 19:22:50

But it's a "feature"! Actually, the automatic security trimming in the SharePoint API comes in handy very often, but too many people develop and test in an environment where they have god privileges and wonder why things break for anonymous/lower privleged accounts in production.

OedipusPrime 2009-02-20 20:48:03

Answer 3

A:

As regards the first caveat from EvilGoatBob, I quote:

"If you're manipulating any Object Model elements within your elevated method, you need to get a fresh SPSite reference inside this call. For example

SPSecurity.RunWithElevatedPrivileges(delegate(){
   SPSite mySite = new SPSite(http://sharepoint/);
   SPWeb myWeb = SPSite.OpenWeb();
   // further implementation omitted
});"

Notice that the site parameter is hard-coded - this is because of a bug. If you instead had tried:

using (SPSite site = new SPSite("http://" + System.Environment.MachineName)) {}

You would get the rather generic "No SharePoint Site exists at the specified URL..." error. This caused me no end of grief. Bottom line is that you have to hard-code the server name (unless anyone has an alternative). You can also get a similar error message when debugging Web Parts for the first time with VSeWSS 1.3.

IrishChieftain 2009-02-23 00:31:00

Answer 4

A:

You do not need to hardcode the server name in this case because your requirement is to retrieve items from list inside the same site as your webpart. You are correct, if you do not have enough privileges with your account, then you get the Access Denied. The solution is to create a new SPSite object within a different security context, and do your work:

    SPSecurity.RunWithElevatedPrivileges(delegate()
    {
        using (SPSite site = new SPSite(SPContext.Current.Site.Url))
        {
            using (SPWeb web = site.OpenWeb())
            {
                //the web object was retrieved with elevated privileges under the system account.

                //do your work here:
                SPListItemCollection myItemCollection = web.Lists["Listings"].Items;

                //...
            }
        }
    }
    );

With the code above, your webpart is portable because there's no hardcoding, and runs in the correct security context while disposing of all unmanaged SPRequest objects created by the SPSite and SPWeb constructors.

Tudor Olariu 2009-02-23 11:15:52

Does this still work when deploying it to a different server... have you tested it? If so, thanks for the heads-up :-)

IrishChieftain 2009-02-23 16:17:39

More details here:http://social.msdn.microsoft.com/forums/en-US/isv/thread/5133f61e-7ae8-4a0f-867b-3f65dd58d7f2/#:-)

IrishChieftain 2009-02-23 22:41:21

ansaurus

tags:

views:

answers:

SharePoint Development Permissions

related questions