Dela via


Build Session: Understanding Authentication and Permissions with Apps for SharePoint and Office

I am privileged to present at the Build 2013 conference Understanding Authentication and Permissions with Apps for SharePoint and Office.  This session focuses on helping you to understand what an app principal is, how they are registered, and how OAuth is used with Office 365 to provide authentication for apps.  I walk through the OAuth dance and show details on the context token and how the TokenHelper class in your SharePoint app project is used to abstract details of OAuth for you. I also walk through a demonstration of app permissions to help you understand how permission requests work, and finally walk through how an app can dynamically request permissions “on the fly”. 

To me, the last part is one of the coolest opportunities for existing web sites.  Imagine someone visits your web site, and you simply ask them, “Do you have an Office 365 site? If so, enter the URL here.”  They enter the URL and are redirected to authorize the app on their SharePoint site.  Once authorized, the app is able to perform the tasks that the user authorized.  To make that a little clearer, imagine a site like Instagram where you can upload pictures.  Instagram could use this mechanism to read pictures from your picture library and to post them on Instagram so your friends can comment on your hilarious pictures of cats with bad grammar. 

I am presenting the session at Build (session 3-603) at 3:30 pm PST today, and the session will be available 24 hours after on Channel9 at this link (Understanding Authentication and Permissions with Apps for SharePoint and Office).

Comments

  • Anonymous
    October 14, 2015
    Kirk, I reviewed your video blog referenced in this post.  I know it is a bit old, but I am struggling to find an example of how to build a word task pane app that will be used by multiple tenants.  Requesting permissions on the fly and caching the users' root url are two things that I am interested in using ACS as the arbiter.   Do you know of an example using the latest Azure SDK and SharePoint Online that would demonstrate the process?

  • Anonymous
    October 19, 2015
    @Jeff - see http://dev.office.com, there are examples on there.  Apologies, I haven't focused on Office and SharePoint for a few years and don't know where the latest content is on these topics.