I need to upload files using the API to a personal folder of a user.
I tried this:
Created an application in "register application"
Created one secret for the application
Set the permissions for the api:
permissions
Got the drive id from: https://graph.microsoft.com/v1.0/sites
Created an upload session with: https://graph.microsoft.com/v1.0/drives/{driveId}/root:/{folder}/{fileName.ext}:/createUploadSession
All works fine but I have a question.
With the "Sites.ReadWrite.All" permission with domain administration, I'm not sure, but I think that the application will have permission to write in all personal folders. Is there a way to limit this?
Is there a way to set the share folder permission with an application?
Related
I'm trying to create a custom master page template in a SharePoint Online environment. I'm using the Design manager to upload the design files. I've mapped the network drive like the page described and can open and view the files, but I cannot upload files to the location. Every time I try I get the following error:
Error 0x800700E0: Access Denied. Before opening files in this
location, you must first add the website to your trusted sites list,
browse to the website, and select the option to login automatically.
I've added the site to the trusted sites list, as well as selected the option to login automatically. The WebClient service is also running.
How can I upload files to this location?
The only explanation I can think of is that I am logged into windows on a Microsoft account, and I use a different Microsoft account for SharePoint. I can map the network drive fine, but when I try and map it with the option "Connect using different credentials", and I use my SharePoint Online account, I get the same access denied error.
Thanks
Check permissions for the document library/folder in which you're trying to write files. Folders like _Layout which resides at root level sometimes do not allow access of write. Global administrators have full access to these folders but tenant or site collection administrators may not have its access.... For example try opening this link in browser https://yoursharepointsite.com/_layouts/15/fonts this is where font files are like Arial.ttf or Comic sans.ttf So if you want to add new font to your sharepoint online themes you'll have to add files here.
Do this open SP Designer -> open main site -> browse left side menu for your folder and try copying something. If you can copy files there you should be able to copy through your mapped drive.
Also when you mapped drive in Windows Explorer didn't it ask for credentials, where you had to give in your Office365 login email then it can't be an issue of your windows credentials messing up with anything.
In this circumstance, it was actually the Trusted Sites that I had added. I added 'mysite.sharepoint.com' as well as '*.sharepoint.com' to my trusted sites. As soon as I also added: '*.lync.com', '*.microsoftonline.com' and "*.outlook.com", I had no problems writing to the directory
Does anyone know if I can have a single one drive folder and then assign via the API different people, and then they would see only the folders that they are allowed to see.
I am trying to re-create the "views" functionality of dropbox enterprise
Yes, the simplest way to do so is to use the Microsoft Graph API which has an entire set of endpoints that work with a OneDrive account.
The endpoints that will best serve you are the Create Sharing Link and the Add Permission.
Note: Using the sharing link that doesn't require account authentication means anyone with that link can access the OneDrive folder/file that it is assigned to. If the user(s) have Microsoft Accounts or Microsoft Organizational Accounts (also known as work/school account) then the Add Permission endpoint is likely your best bet.
I am interested in making a web for a creating a folder structure with acl in a Microsoft AD Domain, the process would be the following:
The user log in to the web (best with credentials of Windows user)
Authorized users give the name of the folder (in this case the name of the project)
A structured folder is created with the correct ACL
Also I need the option to move the folder to another location and remove/rename the folder
I don't know what is the best option, and more compatible to do this, I'm a bit lost for start googling
I want to give permissions for subfolders in Owncloud.
Example:
a user can edit and read all the files in a synchronized folder except some specific subfolders.
Im working with desktop client and web interface. Version: OwnCloud 8.0.3 (stable)
As far as I know a user has access to all his/her folders and files, plus any files that are shared with him/her by other users. You cannot restrict access to user's files if they are in that user's account.
My assumption is that you are an administrator and can create accounts, etc. A workaround might be the following, but it is a workaround and not the solution you've asked for:
If there are some files that you'd like more than one user, or only specific users to be able to view; you can share them using the web interface.
You could create a master user who has access to all files and then share with the other users from the master account.
If anyone knows any different to this please suggest an edit to my answer and I'll put it in.
I set up a new virtual directory in IIS under the Default FTP Site. I already have other virtual directories, and I'm able to access them with my user account, which is a domain admin. I created an account named FTPuser, gave it full permissions to the virtual directory, but I can't open the site. When I log in, I get a Success Audit event in Event Viewer, so my account is being authenticated. But the site doesn't appear, I just get the login box again.
I ran Process Monitor and saw different behavior between the two login scenarios. When I login to the same FTP site with my admin account, I get a SUCCESS result in Procmon when trying to access the folder that is specified as the home directory for my Default Web Site. But I get an ACCESS DENIED message when trying to connect as the FTPuser. Above that in the log, it also shows a NO SUCH DEVICE error trying to connect to the IPC$ share on that drive (the one containing the home directory).
When I look at the permissions, both accounts seem to have Full Control on the relevant directories. Can anyone point me in the right direction as to what is going on here?
Thanks.