Presentation is loading. Please wait.

Presentation is loading. Please wait.

DEV290 Building Office Solutions with Visual Studio Eric Carter Lead Developer Developer Platform & Evangelism Microsoft Corporation.

Published byJulian Bailey Modified over 8 years ago

Similar presentations

Presentation on theme: "DEV290 Building Office Solutions with Visual Studio Eric Carter Lead Developer Developer Platform & Evangelism Microsoft Corporation."— Presentation transcript:

1 DEV290 Building Office Solutions with Visual Studio Eric Carter Lead Developer Developer Platform & Evangelism Microsoft Corporation

2 Our Challenges Today’s IT situation Deployment and maintenance issues favor Web applications Security concerns limit the use of Office solutions Today’s developer situation Web UI is “limiting” It’s hard to develop a rich Web UI Inconsistent user experience is common No offline support Developers typically use VBA to customize Office applications and now want to use Visual Studio

3 Our Goals Incorporate the richness of client Office apps with the benefits and advantages of Visual Studio Make smart client application development on the Office System: Secure More reliable Easier to deploy, maintain and upgrade Faster to develop Make Office a first class development scenario in Visual Studio Make Visual Studio a first class tool for building Office solutions

4 Visual Studio Tools for Office Extends.NET development to Office 2003 Developers using Visual Studio 2003 can write code to run behind Word and Excel documents Write code in VB.NET or C# In beta now msdn.microsoft.com/vstudio/office MSDN Developer and Subscriber Downloads RTM in mid-2003

5 Writing Code Behind Excel Part 1 demo demo

6 Developer Productivity Developer uses the Visual Studio IDE Choice of languages – VB.NET or C# Robust code model based on.NET Framework Powerful access to data and XML Via ADO.NET and system XML classes Support for the latest XML Web service specifications WS-Security, WS-Routing, WS-Attachments Existing Office development knowledge carries forward

7 Office Integration CLR loader is part of Word and Excel It installs with Office Pro and above Doc properties point to the assembly Same directory, SharePoint site, UNC, etc. Assembly calls into Office via COM Interop Uses PIAs (Primary Interop Assemblies) delivered with Office Requires FullTrust, but 3rd party code can be restricted

8 Review: How Does It Work? Developer writes code Creates assembly Sets document properties Deploys assembly to centralized location Designer formats document for end users End user opens document Office uses document properties to locate and download assembly CLR verifies assembly is OK to run CLR runs code

9 Deployment Developer can store solutions on a trusted corporate network Code is downloaded locally when a user opens a Word or Excel document Users get updates to code automatically with no action required on their part Users must have CLR on their machine Note: Don’t rely on Office shipping CLR

10 Writing Code Behind Excel Part 2 demo demo

11 Managed Code Loading Process User opens document Custom Props? Trusted doc? Trusted code? New / Open event fires No Doc Only No Doc Only Download assembly No Unload AppDomain Fail Hook up events Yes FailYes Create AppDomain Fail Load CLR Yes Fail

12 Assembly Security Office “High, Medium, Low” macro dialog box and “managed add-in proxy shims” don’t apply to these assemblies Local machine’s.NET Framework 1.1 security policy governs the assemblies You can set security two ways.NET Framework Configuration (UI version) caspol.exe (command-line version)

13 .NET Framework Configuration

14 Trusted Code Default CLR policy trusts all code on local machine Not a good idea for Office documents! Office loader removes all Zone permissions My Computer: FullTrust  Nothing Also removes “All Code” permissions Must explicitly trust assemblies Location is easy, but relatively weak We recommend using publisher or strong name Visual Studio trusts code in development Automatically trusts assembly location

15 Trusted Documents Helps prevent malicious re-use of trusted code By default Documents on the local machine are trusted Documents on the network are not trusted E-mail attachments are not trusted Assign trust through.NET policy Use URLs to trust locations Use MSOSEC (Microsoft Office Security) to trust documents This provides a form of document-based evidence that the CLR will understand

16 Dealing with Malicious Code What happens when someone changes the custom doc properties to point to potentially malicious files? By default, no code runs A user must consciously decide to trust code What happens when someone tries to swap a trusted assembly with a potentially malicious assembly? A hacker needs the appropriate permissions to replace the assembly at the given location What can you do to prevent these types of situations? Only trust assemblies you know come from safe sources Consider using more robust security methods such as publisher, strong name, or digital signature

17 Security and Deployment demo demo

18 Summary Build Word 2003 and Excel 2003 solutions with Visual Studio 2003 Visual Studio provides improvements in productivity.NET Framework provides improvements in deployment, maintenance and security Existing investments move forward

19 Ask The Experts Get Your Questions Answered I will be available in the ATE area after this session

20 Community Resources MS Community Sites http://www.gotdotnet.com http://msdn.microsoft.com/vcsharp http://microsoft.com/communities/default.mspx List of newsgroups microsoft.public.vsnet.vstools.office microsoft.public.word.programming microsoft.public.excel.programming microsoft.public.office.developer.vba http://microsoft.com/communities/newsgroups/default.mspx Attend a free chat or webcast http://microsoft.com/communities/chats/default.mspx http://microsoft.com/usa/webcasts/default.asp Locate a local user groups http://microsoft.com/communities/usergroups/default.mspx Community sites http://microsoft.com/communities/related/default.mspx

21 Suggested Reading And Resources The tools you need to put technology to work! TITLE Available Today Microsoft ® Windows ® Server 2003 TCP/IP Protocols and Services Technical Reference Kit Active Directory ® for Microsoft ® Windows ® Server 2003 Technical Reference Today Microsoft Press books are 20% off at the TechEd Bookstore Also buy any TWO Microsoft Press books and get a FREE T-Shirt

22 Community Resources http://www.microsoft.com/communities/default.mspx Most Valuable Professional (MVP) http://www.mvp.support.microsoft.com/ Newsgroups Converse online with Microsoft Newsgroups, including Worldwide http://www.microsoft.com/communities/newsgroups/default.mspx User Groups Meet and learn with your peers http://www.microsoft.com/communities/usergroups/default.mspx

23 evaluations evaluations

24 © 2003 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY.

Download ppt "DEV290 Building Office Solutions with Visual Studio Eric Carter Lead Developer Developer Platform & Evangelism Microsoft Corporation."

Similar presentations

Overview of Visual Studio 2005 Tools for the Microsoft Office System Svetlana Loksh Development Lead Visual Studio Tools for Office Team Microsoft Corporation.

Overview of Visual Studio 2005 Tools for the Microsoft Office System Svetlana Loksh Development Lead Visual Studio Tools for Office Team Microsoft Corporation.
Designing InfoPath Forms: The Dos and Donts Deploying InfoPath Forms: Making the right choice Adding custom business logicin case the built-in stuff isnt.

Designing InfoPath Forms: The Dos and Donts Deploying InfoPath Forms: Making the right choice Adding custom business logicin case the built-in stuff isnt.
WEB401 Security Practices for Web Services (Part 2) Keith Ballinger Program Manager XML Messaging Microsoft Corporation.

WEB401 Security Practices for Web Services (Part 2) Keith Ballinger Program Manager XML Messaging Microsoft Corporation.
DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.

DEV392: Extending SharePoint Products And Technologies Through Web Parts And ASP.NET Clint Covington, Program Manager Data And Developer Services - Office.
Programming in the Office 2003 Environment Corinne Hoisington.

Programming in the Office 2003 Environment Corinne Hoisington.
What’s New for Smart Client Developers in Visual Studio 2005? Mike Pelton Systems Engineer Microsoft Ltd

What’s New for Smart Client Developers in Visual Studio 2005? Mike Pelton Systems Engineer Microsoft Ltd
What’s New for Smart Client Developers in Visual Studio 2005? Mike Pelton Systems Engineer Microsoft Ltd

What’s New for Smart Client Developers in Visual Studio 2005? Mike Pelton Systems Engineer Microsoft Ltd
It’s always better live. MSDN Events Developer Productivity Improvements with Visual Studio 2008 and Office Business Applications.

It’s always better live. MSDN Events Developer Productivity Improvements with Visual Studio 2008 and Office Business Applications.
NameTitle Microsoft Corporation. For businesses with Visual Basic 6.0 assets, Visual Basic 2008 is the natural, most productive choice for Windows, Web,

NameTitle Microsoft Corporation. For businesses with Visual Basic 6.0 assets, Visual Basic 2008 is the natural, most productive choice for Windows, Web,
OFC324 Microsoft Project Server: Putting Enterprise Project Management (EPM) To Work Sam Brooks www.sambrooks.com.

OFC324 Microsoft Project Server: Putting Enterprise Project Management (EPM) To Work Sam Brooks
Windows Forms in Visual Studio 2005: An Overview Saurabh Pant Program Manager Microsoft Corporation.

Windows Forms in Visual Studio 2005: An Overview Saurabh Pant Program Manager Microsoft Corporation.
Enhanced Collaboration and other benefits of Sharepoint Technologies Kern Sutton Business Productivity Group Microsoft Corporation.

Enhanced Collaboration and other benefits of Sharepoint Technologies Kern Sutton Business Productivity Group Microsoft Corporation.
OFC302 Building Smart Document Solutions in Word & Excel Martin Sawicki Lead Program Manager.

OFC302 Building Smart Document Solutions in Word & Excel Martin Sawicki Lead Program Manager.
Lessons Learned: Using the Experience of Others to Avoid Common Project Server Mistakes LaDonna Carpenter Technical Lead Product Support Services Microsoft.

Lessons Learned: Using the Experience of Others to Avoid Common Project Server Mistakes LaDonna Carpenter Technical Lead Product Support Services Microsoft.
DBA230 Introducing SQL Server 2000 Reporting Services Jason Carlson Product Unit Manager SQL Server Microsoft Corporation.

DBA230 Introducing SQL Server 2000 Reporting Services Jason Carlson Product Unit Manager SQL Server Microsoft Corporation.
OFC 322 Building Office Research Web Services: Exposing Corporate Data Through Office Brian Jones Program Manager Authoring Services Martin Sawicki Lead.

OFC 322 Building Office Research Web Services: Exposing Corporate Data Through Office Brian Jones Program Manager Authoring Services Martin Sawicki Lead.
DEV334 Creating Application Starting Points & Sharing Best Practices with Enterprise Templates Marc Gusmano Director of Emerging Technologies The Information.

DEV334 Creating Application Starting Points & Sharing Best Practices with Enterprise Templates Marc Gusmano Director of Emerging Technologies The Information.
DEV343.NET Application and Library Versioning Juval Löwy www.idesign.net.

DEV343.NET Application and Library Versioning Juval Löwy
OFC304 Excel 2003 Overview: XML Support Joseph Chirilov Program Manager.

OFC304 Excel 2003 Overview: XML Support Joseph Chirilov Program Manager.
Microsoft Office Project Desktop Development Marcel Parent Program Manager Project Microsoft Corporation.

Microsoft Office Project Desktop Development Marcel Parent Program Manager Project Microsoft Corporation.

Similar presentations

Ads by Google