Presentation is loading. Please wait.

Presentation is loading. Please wait.

Fraser Technical Solutions, LLC

Published byImogen Ramsey Modified over 8 years ago

Similar presentations

Presentation on theme: "Fraser Technical Solutions, LLC"— Presentation transcript:

1 Fraser Technical Solutions, LLC
SharePoint 2013 “Apps” Brian Fraser Fraser Technical Solutions, LLC

2

3 Problems with Traditional SharePoint Development
Farm Solutions Code is considered fully trusted Code runs as current user by default Code can call SPSecurity.RunWithElevatedPrivileges to run as System account Misbehaving code can impact the entire farm Sandboxed Solutions Limited functionality Code runs as current user only Cannot elevate permissions Not as secure as people think

4 Design goals Must support Office 365
Code cannot run in SharePoint process SharePoint API accessible only through clearly defined web services An “app” has its own distinct identity An “app” can be granted permissions independent of users Easier publishing and discovery via App Catalog

5 Tenancy Implicitly handled for you in Office 365
Allows grouping of site collections per customer (tenant) On premise installations typically have a single default tenancy

6 Pre Requisites (On premise installation)
Claims Authentication App Management service Subscription Settings Service App Domain (*.contosoapps.com) SSL with wildcard certificate

7 App Installation Must be deployed to an app catalog
App catalog is a special site collection. 1 per web application Apps can be deployed at site scope or tenancy scope App Web represents Isolated storage for an app instance Host Web is the parent of the app web App implicitly has full control over its app web App must request any other permissions during installation

8 App Hosting Models SharePoint Hosted Cloud Hosted
Auto Hosted (Azure + O365 only) Provider Hosted

9 SharePoint Hosted Apps
Contained entirely in app web Client side code only. No server side code. Typically JavaScript but can use any client side technology such as flash, Silverlight, etc. Does not support “app only” authentication No need to program with access tokens for authentication. Uses SharePoint internal authentication.

10 Provider Hosted App Server side code using virtually any technology is allowed i.e. Web Forms, MVC, LAMP, PHP, etc. Requires separate remote web for all application code. Remote web must exist prior to deployment in SharePoint Application developer responsible for load balancing, multi tenancy support, etc. Must use external authentication (S2S or OAUTH)

11 Auto Hosted Apps Supported in Office 365 only
Based on private windows azure infrastructure associated with O365 tenancy Multi-tenancy and load balancing handled by infrastructure Azure web sites and databases provisioned automatically during app installation OAuth authentication required

12 Getting Started – SharePoint hosted app
Office 365 Developer site “Napa” Office 365 Development Tools Demo Visual Studio

13 What’s in a URL? 007bd0249c5cba.devapps.com/sites/dev1/Contacts_SharePointHosted/Pa ges/Default.aspx?SPHostUrl=http%3A%2F%2Fsp2013dev%2Fsites%2Fdev1 &SPLanguage=en%2DUS&SPClientTag=0&SPProductNumber=15%2E0%2E4 481%2E1005&SPAppWebUrl=http%3A%2F%2Fapp%2D007bd0249c5cba%2 Edevapps%2Ecom%2Fsites%2Fdev1%2FContacts%5FSharePointHosted “app” is the app prefix. Based on tenancy. Configurable for on-prem only. “007bd0249c5cba” is the APPUID “devapps.com” is the app hosting domain “sites/dev1” domain relative URL of host web Query String “Standard Tokens”

14 Provider Hosted (S2S) S2S “High Trust” Requires X.509 Certificate
Remote web encrypts token request with private key SharePoint Secure Token issuer validates request with public key and issues authentication token Remote web uses token in subsequent CSOM or REST calls TokenHelper for working with tokens. Works natively with windows authentication. Extensible for FBA and other authentication methods. Register app principal with appregnew.aspx or register-SPAppPrincipal “High Trust” because SharePoint trusts the remote web to authenticate user

15 Provider hosted demo

16 Provider Hosted OAUTH Requires Azure Control Services (ACS)
Required for O365 auto hosted apps SharePoint obtains context token from ACS and POSTS to remote web on app launch Client app extracts refresh token from context token and passes to ACS to obtain OAUTH token Client makes CSOM/REST calls to SharePoint with OAUTH token Can be used On-Prem in place of S2S

17 Autohosted Demo

Download ppt "Fraser Technical Solutions, LLC"

Similar presentations

Bob German Principal Architect Introduction to Cloud Hosted Apps Your apps here!

Bob German Principal Architect Introduction to Cloud Hosted Apps Your apps here!
@jerry_yasir. 2007 SharePoint IIS Code runs from GAC on same w3wp.exe as SharePoint web application 2010 SharePoint IIS Sand box Code runs on SPUCWorkerProcess.exe.

@jerry_yasir SharePoint IIS Code runs from GAC on same w3wp.exe as SharePoint web application 2010 SharePoint IIS Sand box Code runs on SPUCWorkerProcess.exe.
SharePoint Apps for IT Pro

SharePoint Apps for IT Pro
02 | New Features for Web Developers Susan Ibach| Technical Evangelist Christopher Harrison | Head Geek.

02 | New Features for Web Developers Susan Ibach| Technical Evangelist Christopher Harrison | Head Geek.
A Developer’s Introduction to SharePoint 2013 Apps Ryan McIntyre, MCITP, MCPD National Architect Neudesic Ryan McIntyre, MCITP, MCPD National Architect.

A Developer’s Introduction to SharePoint 2013 Apps Ryan McIntyre, MCITP, MCPD National Architect Neudesic Ryan McIntyre, MCITP, MCPD National Architect.
Silver SponsorsGold Sponsors Bronze Sponsors SharePoint App Model Redefine your SharePoint Customisation Erwin Tsai SharePoint Solution Architect Techfly.

Silver SponsorsGold Sponsors Bronze Sponsors SharePoint App Model Redefine your SharePoint Customisation Erwin Tsai SharePoint Solution Architect Techfly.
Microsoft ® Official Course Developing Remote-hosted Apps for SharePoint Microsoft SharePoint 2013 SharePoint Practice.

Microsoft ® Official Course Developing Remote-hosted Apps for SharePoint Microsoft SharePoint 2013 SharePoint Practice.
Microsoft ® Official Course Introducing Apps for SharePoint SharePoint Practice Microsoft SharePoint 2013.

Microsoft ® Official Course Introducing Apps for SharePoint SharePoint Practice Microsoft SharePoint 2013.
SharePoint Server 2013 Architecture and Identity www.netcomlearning.com.

SharePoint Server 2013 Architecture and Identity
©2012 Microsoft Corporation. All rights reserved..

©2012 Microsoft Corporation. All rights reserved..
Site Provisioning Options Web Template Fundamentals Web Templates and App Webs Custom Solutions for Site Provisioning Wrap Up.

Site Provisioning Options Web Template Fundamentals Web Templates and App Webs Custom Solutions for Site Provisioning Wrap Up.
SharePoint-Hosted App Provision an isolated sub web on a parent web (separate domain) Reuse web elements (lists, files, out-of-box web parts) No.

SharePoint-Hosted App Provision an isolated sub web on a parent web (separate domain) Reuse web elements (lists, files, out-of-box web parts) No.
Intro to Apps Minnesota SharePoint User Group Raymond April 2014.

Intro to Apps Minnesota SharePoint User Group Raymond April 2014.
Basic SharePoint 2013 App Development start-up for New Developers

Basic SharePoint 2013 App Development start-up for New Developers
©2012 Microsoft Corporation. All rights reserved. Content based on SharePoint 2013 Technical Preview and published July 2012. Introducing.

©2012 Microsoft Corporation. All rights reserved. Content based on SharePoint 2013 Technical Preview and published July Introducing.
App development in SharePoint 2013 LIVE Introducing Cloud App Model Cloud-hosted Apps Experiences from the Field.

App development in SharePoint 2013 LIVE Introducing Cloud App Model Cloud-hosted Apps Experiences from the Field.
Any device, anywhere, anytime New discovery channels New ways of working Redefined expectations for apps.

Any device, anywhere, anytime New discovery channels New ways of working Redefined expectations for apps.
SPC204 Security Problems in SharePoint 2010 Authentication and Authorization.

SPC204 Security Problems in SharePoint 2010 Authentication and Authorization.
Marat Bakirov Readify. 2 3 ServerClient Browser Host Web Server Host SharePoint & Exchange Office APP Client APIs Server APIs.

Marat Bakirov Readify. 2 3 ServerClient Browser Host Web Server Host SharePoint & Exchange Office APP Client APIs Server APIs.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Similar presentations

Ads by Google