Remove From My Forums

OAUth in sharepoint

Question
0

Sign in to vote

WHat is OAuth and why we use in sharepoint?

Tuesday, June 4, 2013 7:21 PM

Answers

0

Sign in to vote
Hi,

I don't have first hand experience working with it. But here is an interesting post..

http://msmvps.com/blogs/sundar_narasiman/archive/2013/03/08/understanding-oauth-in-the-world-of-sharepoint-2013-app.aspx
Regards Murali
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 7:30 PM
0

Sign in to vote
OAuth is an Internet security protocol used in SharePoint for providing app identities (generated by Azure Access Control Service - ACS) for SharePoint apps
Kind Regards

Bjoern
http://www.sharepointviking.com
Twitter: Follow @bjoern_rapp
- Proposed as answer by Jason Warren Tuesday, June 4, 2013 11:41 PM
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 7:59 PM

Answerer
0

Sign in to vote
OAuth is web standard to manage permission and security for modules like App on web. in simple word OAuth protocol is used to authenticate and authorize apps and service. in order to use context token you need OAuth.

To authorize requests by an app for SharePoint to access SharePoint resources on behalf of a user.

To authenticate apps in the Office Store, an app catalog, or a developer tenant.

For example, OAuth is used in cases where calls have to be made from a remote web server to SharePoint 2013 on behalf of a user. You would not use OAuth to make a call from the app web or from a remote webpage using the client library, for example.

To access resources, an app has to request app permissions. In general, delegated authorization codes or access tokens are issued by the OAuth security token service (STS). An example of OAuth STS is Windows Azure Access Control Service (ACS) OAuth endpoints. In contrast, the WS-Federation STS and the Security Assertion Markup Language (SAML) passive sign-in STS are primarily intended to issue sign-in tokens.

see OAuth.net and Web Authorization Protocol (oauth).

http://msdn.microsoft.com/en-us/library/fp142384.aspx

hope so it helps
- Proposed as answer by Jason Warren Tuesday, June 4, 2013 11:41 PM
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 8:34 PM
0

Sign in to vote
To keep it simple, OAuth is the open standard protocol for authentication and authorization of your SharePoint 2013 Apps. OAuth protocol is not for user authentication and user authorization. You still need to setup Claims Authentication in your enterprise for user authentication and user authorization.

"Apps are not users"

Hope this helps !!!
Please mark the replies as answers if they help or unmark if not.
- Marked as answer by GuYuming Thursday, June 13, 2013 3:22 AM
Thursday, June 6, 2013 3:00 AM
0

Sign in to vote
Of the several OAuth profiles available, SharePoint apps implement and extend two of them under the names “High-Trust” and “Low-Trust.”

from http://blogs.msdn.com/b/besidethepoint/archive/2012/12/10/sharepoint-low-trust-apps-for-on-premises-deployments.aspx

And http://www.elumenotion.com/Blog/Lists/Posts/Post.aspx?List=64b38372%2Df170%2D48e3%2D9720%2Dd3398b3f211c&ID=174
- Marked as answer by GuYuming Thursday, June 13, 2013 3:22 AM
Thursday, June 6, 2013 4:00 AM

All replies

0

Sign in to vote
Hi,

I don't have first hand experience working with it. But here is an interesting post..

http://msmvps.com/blogs/sundar_narasiman/archive/2013/03/08/understanding-oauth-in-the-world-of-sharepoint-2013-app.aspx
Regards Murali
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 7:30 PM
0

Sign in to vote
OAuth is an Internet security protocol used in SharePoint for providing app identities (generated by Azure Access Control Service - ACS) for SharePoint apps
Kind Regards

Bjoern
http://www.sharepointviking.com
Twitter: Follow @bjoern_rapp
- Proposed as answer by Jason Warren Tuesday, June 4, 2013 11:41 PM
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 7:59 PM

Answerer
0

Sign in to vote
OAuth is web standard to manage permission and security for modules like App on web. in simple word OAuth protocol is used to authenticate and authorize apps and service. in order to use context token you need OAuth.

To authorize requests by an app for SharePoint to access SharePoint resources on behalf of a user.

To authenticate apps in the Office Store, an app catalog, or a developer tenant.

For example, OAuth is used in cases where calls have to be made from a remote web server to SharePoint 2013 on behalf of a user. You would not use OAuth to make a call from the app web or from a remote webpage using the client library, for example.

To access resources, an app has to request app permissions. In general, delegated authorization codes or access tokens are issued by the OAuth security token service (STS). An example of OAuth STS is Windows Azure Access Control Service (ACS) OAuth endpoints. In contrast, the WS-Federation STS and the Security Assertion Markup Language (SAML) passive sign-in STS are primarily intended to issue sign-in tokens.

see OAuth.net and Web Authorization Protocol (oauth).

http://msdn.microsoft.com/en-us/library/fp142384.aspx

hope so it helps
- Proposed as answer by Jason Warren Tuesday, June 4, 2013 11:41 PM
- Marked as answer by GuYuming Thursday, June 13, 2013 3:21 AM
Tuesday, June 4, 2013 8:34 PM
0

Sign in to vote
To keep it simple, OAuth is the open standard protocol for authentication and authorization of your SharePoint 2013 Apps. OAuth protocol is not for user authentication and user authorization. You still need to setup Claims Authentication in your enterprise for user authentication and user authorization.

"Apps are not users"

Hope this helps !!!
Please mark the replies as answers if they help or unmark if not.
- Marked as answer by GuYuming Thursday, June 13, 2013 3:22 AM
Thursday, June 6, 2013 3:00 AM
0

Sign in to vote
Of the several OAuth profiles available, SharePoint apps implement and extend two of them under the names “High-Trust” and “Low-Trust.”

from http://blogs.msdn.com/b/besidethepoint/archive/2012/12/10/sharepoint-low-trust-apps-for-on-premises-deployments.aspx

And http://www.elumenotion.com/Blog/Lists/Posts/Post.aspx?List=64b38372%2Df170%2D48e3%2D9720%2Dd3398b3f211c&ID=174
- Marked as answer by GuYuming Thursday, June 13, 2013 3:22 AM
Thursday, June 6, 2013 4:00 AM

Products

Resources

Solutions

Updates

Trials

Related Sites

Training

Certifications

Other resources

Support options

More support

Not an IT pro?

Answered by:

OAUth in sharepoint

Question

Answers

All replies