Presentation is loading. Please wait.

Presentation is loading. Please wait.

Protecting Your SharePoint Environment from the Evil Developers Robert Bogue Thor Projects

Published byAdele Porter Modified over 9 years ago

Similar presentations

Presentation on theme: "Protecting Your SharePoint Environment from the Evil Developers Robert Bogue Thor Projects"— Presentation transcript:

1 Protecting Your SharePoint Environment from the Evil Developers Robert Bogue Thor Projects Rob.Bogue@ThorProjects.com

2 No developers were hurt during the creation of this presentation. The PETD (People for the Ethical Treatment of Developers) asks that you please not harm your developers – and don’t have them spayed or neutered.

3 Who am I? 7 time Microsoft MVP currently awarded for SharePoint Architect = Developer + IT Professional Author of The SharePoint Shepherd’s Guide for End Users – and 17 other books. Blogger: http://www.thorprojects.com/blog http://www.thorprojects.com/blog

4 Agenda The Stories… Quotas – Defining Limits Sandbox – Gotta Keep ‘em Separated Queries – Containing Chaos

5 THE STORY Traditional IT Department development

6 You build a beautiful farm

7 A developer writes some code

8 Sometime later you start to notice problems

9 Then you get a call, at 3AM

10 You fly into the office

11 You try to diagnose the issue

12 But you can’t find it

13 You go home feeling like a donkey

14 THE STORY Enterprise with business groups that do development

15 Joe Business Group IT creates a solution…

16 It becomes essential for the business

17 One day it breaks

18 And now it’s your problem

19 SANDBOX Aka User Code Host

20 A walk down history lane… Windows 3.11 ● Cooperative Multitasking ● One bad apple spoils the bunch Windows NT ● Preemptive Multitasking ● One bad apple stands alone

21 SharePoint 2007 Developer Code Problems in developer code can directly impact SharePoint,.NET, and IIS Should be used for highly trusted and tested code IIS.NET SharePoint Developer Code

22 SharePoint 2010 Sandboxed Code Code runs in a separate process and SharePoint communicates to it to get information User Code Host IIS.NET SharePoint Sandbox Communication Application Domain Developer Code Application Domain Developer Code

23 Understanding the User Code Host Applies Object Limits Monitoring Resource Tracking

24 Object Limits CAS Policy ● SharePointPermission.ObjectModel ● SecurityPermission.Execution ● AspNetHostingPermission.Level = Minimal SharePoint Objects ● Microsoft.SharePoint Except SPSite constructor SPSecurity object SPWorkItem and SPWorkItemCollection objects SPAlertCollection.Add method SPAlertTemplateCollection.Add method SPUserSolution and SPUserSolutionCollection objects SPTransformUtilities ● Microsoft.SharePoint.Navigation ● Microsoft.SharePoint.Utilities Except SPUtility.SendEmail method SPUtility.GetNTFullNameandEmailFromLogin method ● Microsoft.SharePoint.Workflow ● Microsoft.SharePoint.WebPartPages Except SPWebPartManager object SPWebPartConnection object WebPartZone object WebPartPage object ToolPane object ToolPart object

25 Monitoring Processes running too long are killed The solution gets points “against it” for allowing itself to run too long.

26 Resource Tracking CPU Execution Time Memory Consumption SQL Query Time Abnormal Termination Critical Exceptions Unhandled Exceptions

27 Local vs. Remote Local ● Quick Execution (no remoting/marshalling) ● Sandboxed solutions can impact overall performance Remote ● Some overhead from remoting ● Sandboxed solutions can only impact other sandboxed solutions.

28 Solution Validator Additional Restrictions on Upload Inspect (and Reject) Solution Inspect (and Reject) Assembly

29 Sandbox Proxy Allows access beyond Sandbox limits Requires full trust installation Two parts: ● Proxy Operation ● Proxy Arguments

30 Solution Gallery A library in each Site Collection Contains Sandboxed Solutions Shows the resource utilization

31 Why Not Always Sandbox? Performance Penalty Limitations … Consider: ● RSS Reader ● Public APIs ● Read/Write from a custom database

32 QUOTAS

33 All Quotas Set at the site collection level Can be changed on the fly

34 Storage Quotas Number of MB assigned to each site collection Configurable warning size Applies to all data in the site collection

35 Resource Quotas Measured in “points” Set for all solutions in a site collection Configurable warning when a certain number of points are used Resets daily

36 QUERIES

37 Performance Impact Large Queries consume a lot of resources Limiting large queries contributes to overall performance improvements

38 Query Limits Non-administrators have a smaller limit (5000 item default) Administrators have a larger limit (20000 item default) Limits are set per web-application

39 Overrides and Exceptions Happy Hour Object Model Override

40 Your Feedback is Important Please fill out a session evaluation form drop it off at the conference registration desk. Thank you!

41 User Code Host IIS.NET SharePoint Sandbox Communication Application Domain Developer Code Application Domain Developer Code

Download ppt "Protecting Your SharePoint Environment from the Evil Developers Robert Bogue Thor Projects"

Similar presentations

Designing InfoPath Forms: The Dos and Donts Deploying InfoPath Forms: Making the right choice Adding custom business logicin case the built-in stuff isnt.

Designing InfoPath Forms: The Dos and Donts Deploying InfoPath Forms: Making the right choice Adding custom business logicin case the built-in stuff isnt.
SP Business Suite Deployment Kick-off

SP Business Suite Deployment Kick-off
Designing, Deploying and Managing Workflow in SharePoint Sites Steve Heaney Product Development Manager OBS

Designing, Deploying and Managing Workflow in SharePoint Sites Steve Heaney Product Development Manager OBS
Server 2012 R2 Essentials - What’s new ? Bart #techninebe Technine Group.

Server 2012 R2 Essentials - What’s new ? Bart #techninebe Technine Group.
For Developers Who Hate SharePoint.  ~5 years web development experience  1 ½ years SharePoint experience  First worked with SharePoint in Dec. 2006,

For Developers Who Hate SharePoint.  ~5 years web development experience  1 ½ years SharePoint experience  First worked with SharePoint in Dec. 2006,
Building Sandbox Solutions for SharePoint 2010 Scott Jamison Managing Partner, Jornata LLC

Building Sandbox Solutions for SharePoint 2010 Scott Jamison Managing Partner, Jornata LLC
Re-Architecting Search Solutions with SharePoint’s new Federation Features ITP314, CIO314, PM314, IA314.

Re-Architecting Search Solutions with SharePoint’s new Federation Features ITP314, CIO314, PM314, IA314.
Acceleratio Ltd. is a software development company based in Zagreb, Croatia, founded in 2009. Acceleratio specializes in developing high-quality enterprise.

Acceleratio Ltd. is a software development company based in Zagreb, Croatia, founded in Acceleratio specializes in developing high-quality enterprise.
Application Models for utility computing Ulrich (Uli) Homann Chief Architect Microsoft Enterprise Services.

Application Models for utility computing Ulrich (Uli) Homann Chief Architect Microsoft Enterprise Services.
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
Welcome to the Minnesota SharePoint User Group November 11 th, 2009 Prepare for SharePoint 2010 Wes Preston, Brian Caauwe Meeting.

Welcome to the Minnesota SharePoint User Group November 11 th, 2009 Prepare for SharePoint 2010 Wes Preston, Brian Caauwe Meeting.
JourneyTEAM - www.journeyteam.com – 801.565.9199 Tales From The Field: 2010 to 2013 Upgrade Horror Stories and How to Avoid Creating a Horror of Your Own.

JourneyTEAM - – Tales From The Field: 2010 to 2013 Upgrade Horror Stories and How to Avoid Creating a Horror of Your Own.
Microsoft SharePoint 2013 SharePoint 2013 as a Developer Platform

Microsoft SharePoint 2013 SharePoint 2013 as a Developer Platform
Becky Bertram SharePoint MVP

Becky Bertram SharePoint MVP
Fraser Technical Solutions, LLC

Fraser Technical Solutions, LLC
Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.

Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.
Workflow Solutions for Business Users and Knowledge Workers November 30th, 2010 Brendan Giles, PMP, MCP.

Workflow Solutions for Business Users and Knowledge Workers November 30th, 2010 Brendan Giles, PMP, MCP.
A GUIDE TO SHAREPOINT 2007 CUSTOMIZATION OPTIONS Heather Solomon, WSS MVP.

A GUIDE TO SHAREPOINT 2007 CUSTOMIZATION OPTIONS Heather Solomon, WSS MVP.
Debunking the Top 10 Myths of Small Business Server: Using Windows SBS in Larger Environments Abstract: This session will debunk some of the common myths.

Debunking the Top 10 Myths of Small Business Server: Using Windows SBS in Larger Environments Abstract: This session will debunk some of the common myths.
Welcome to the Minnesota SharePoint User Group. Introductions / Overview Project Tracking / Management / Collaboration via SharePoint Multiple Audiences.

Welcome to the Minnesota SharePoint User Group. Introductions / Overview Project Tracking / Management / Collaboration via SharePoint Multiple Audiences.

Similar presentations

Ads by Google