none
Custom Authorization and Live ID Authentication in SP2010 ?

    問題

  • I understand solution to Live ID authentication in SP2010 ( courtsey , a number of blogs on internet ) but trying to understand what needs to be done if i want to do custom authorization in SP2010 while doing authentication via live ID . here are my queries:

    a)  Is my following understandin correct - SharePoint Authorization is handles by SharePoint Groups only . When we say custom authorization , custom roles ( i.e Project Manager , A Partner , B Partner ) are mapped with SharePoint Groups ?

    b) Can we have a custom Role Authorization without having any Custom Membership Provider i.e i can use Live ID authentication implemented simply by establishign trust b/w SP STS and Live ID STS and my custom authroization doesn it trick ?

    c) As i understand correctly, Live ID only provides a Unquie User ID . I will have keep rest of User information somewhere either in custom DB or SHarePoint User Store . If i plan to use SharePoitn user store to store user info , i will have to provide to user custom forms , which will save user info to user profile database and then to save this use info into User Information list , i will have to write a custom job to sync user profile and user Information list . Am i correct in what i have written ?

    Please guide me .

     

    Basically , i plan to create a partner site where Live Id will be used for authentication and for authroization a custom one will need to implemented as per the direction given

     

     


    Vipin Kumar Tanwar ( Technology Architect ) tanwar.vipinkumar@gmail.com
    2011年6月19日 下午 04:31

解答

所有回覆

  • Hi vipin,

    I was able to sucessfully implement live ID Login in my sharepoint development environment, event tough it's a tough task.

    Here is the documentation i think you will find very helpfull:

     

    I recommend you to download this book:

    http://msdn.microsoft.com/en-us/library/ff423674.aspx

     

    Also to check this website (since you'll be able to see how others are handling it) Commercial use

    http://www.shetabtech.com/english/SharePointLiveAuth/default.aspx

     

    And my favorite one, a step to step to do it yourself!! With the three projects ;)

    Im sure this will help you out :)

    http://msdn.microsoft.com/en-us/library/ff955607.aspx

     

    Also this just in case:

    http://msdn.microsoft.com/en-us/library/ff423674.aspx

    http://msdn.microsoft.com/en-us/library/ms457529.aspx

    http://msdn.microsoft.com/en-us/library/ee517296.aspx

    http://msdn.microsoft.com/en-us/library/ff955607.aspx

    http://msdn.microsoft.com/en-us/library/ee534975.aspx

     

    Hope It helps

    Lluís G.E

     



    2011年6月20日 上午 11:23
  • When I follow this guide http://technet.microsoft.com/en-us/library/ff973117.aspx to configure SharePoint 2010 and windows live id authentication, I did not find the option for claim augmentation, could you please do some research in http://msdn.microsoft.com/en-us/library/ee732536.aspx then?

    2011年6月24日 上午 09:53
  • Hi

    >>a)  Is my following understandin correct - SharePoint Authorization is handles by SharePoint Groups only . When we say custom authorization , custom roles ( i.e Project Manager , A Partner , B Partner ) are mapped with SharePoint Groups ?

    No, SharePoint Authorization apply on a Unique ID of each users, of course they work on SharePoint group too, but the unique ID taken from authentication mechanism. A profile also created for each user and group. Don’t forget that clams based authentication offer different system and SharePoint works with it too, it does matter who is user. Please read more about claims authentication.

    >>b) Can we have a custom Role Authorization without having any Custom Membership Provider i.e i can use Live ID authentication implemented simply by establishign trust b/w SP STS and Live ID STS and my custom authroization doesn it trick ?

    Yes, but it just enough to use claims based authentication, you can simulate custom role with clams augmentation, in this case you don’t need implement STS or any authentication mechanism. Claims augmentation is another part of it.

    >>c) As i understand correctly, Live ID only provides a Unquie User ID . I will have keep rest of User information somewhere either in custom DB or SHarePoint User Store . If i plan to use SharePoitn user store to store user info , i will have to provide to user custom forms , which will save user info to user profile database and then to save this use info into User Information list , i will have to write a custom job to sync user profile and user Information list . Am i correct in what i have written ?

    Yes, it is correct.

    ShetabTech.com implement all of this and offer source code too, I recommend you to order source code of SharePoint Live Authentication from http://www.shetabtech.com/english/SharePointLiveAuth/default.aspx

    Regards


    Madnik7
    2011年6月24日 下午 05:22
  • Hi,

    I am using LIVE ID authentication in 2 applications. and are LIVEID configured and  working fine. Out of which one application(Say .. App1) is a normal webapplication and other one is sharepoint web application(Say.. App2).

    I have a scenario like,

    First i'll login to App1 with successful authentication from LIVEID. In this application one link provided to go to Home page of App-2.User need to go directly to this page ,with out going to Sign in page of App-2.

    My App-2 flow is like ,  Sign In Page --> LIVE ID Authentication page --> HomePage.aspx

    Is there any to authenticate the LIVE ID to directly navigate to HomePage.aspx..  ??

    Here what i am trying to do is, trying to skip the  Sign in page.So that it will authenticate with LIVE ID.. if LIVE ID already authenticated user will directly navigate to my Home page in App-2.... 

    Thanks,

    RAM.

     

    2012年6月14日 下午 06:25