Hi I am planning to move my SharePoint Application database from SharePoint List to SQL Azure. I am planning to create an API for that so I could Access my Data using Angular to that API. But I have a question is there a way to make sure that the API I will be create can and only be access inside my O365 SharePoint? Is there a way to build some kind of trust or authentication? What are the security features I could use to make my data safe
Yes there are bunch of security features like:
Securing APIs with key, JSON Web Token (JWT) validation, and IP filtering.
I think you could use IP Filtering for your scenario.
Related
This is more of an 'Is this possible' question. A developer on the team suggested using Azure AD for user management, but one of the requirements is that the app admin be able to add/manage user access through the application without having to go to the Azure Portal.
So the question is, is the Graph API (or some other mechanism) full featured enough to replace the portal (at least for basic user set up and management) and allow all actions to be done from the application UI?
Thanks.
Simple answer to your question is Yes. Graph API can be used to manage users and their access to applications instead of using Azure Portal. In fact, Azure Portal itself makes use of Graph API to perform these operations.
You may also need to use Azure REST API if you're planning on managing Azure resources as well through this custom application especially Authorization APIs if you want to manage access to Azure resources (Azure Role-based access control) through your application.
We are using Azure data factory to copy data from on-premise to Azure. We have implemented multiple activities to complete the data copy. Until now, we are using basic authentication for web activity to call web API methods.
As per the latest monitoring UI, it also supports MSI authentication. We have tried to use but no any luck. Also, tried to search related things but does not get any information related to data factory web activity and MSI authentication.
How can we achieve this authentication for Web Activity?
Regards,
Shrikant
How can we achieve this authentication for Web Activity?
If you use the Azure function/WebApp MSI, you need to config the resource.
https://management.azure.com/
For other resources, you could refer to this document.
I'm trying to use Azure Functions to get Sharepoint files URLs in order to download them on a Portal.
I'm working on Dynamics 365 CRM and Portals, with an Online Sharepoint and an Azure account.
Could you help me finding how to access Sharepoint files through the Azure Functions ?
Thanks for your help.
Asconoid
I would personaly make use of the Sharepoint REST API's. Make sure to think about the security aspect of this kind of function, since you might be creating a huge security and trust issue if you decide to use a service principal to access those sharepoint documents without validation of the client who is calling the function.
Sharepoint REST API's
I am going to develop a mobile app, its bit of social kind of app.
For data, I am planning to use Azure SQL for hierarchical data and Azure Storage for images etc.
Now for user authentication, I want my users to log in using oAuth providers such as Facebook/google/live etc rather than developing a user authentication of my own.
So for oAuth, I am planning to use Azure Mobile Services.
The thing I am not clear is after I authenticate user using Mobile Services, how I go to query the user's data that is in Azure SQL . Should I use the APIs that I can write in Node.js from Mobile Services or should I develop a WebAPI project to talk to data.
Using Mobile Service's node.js API looks easy and simplest way, but the apprehension I have with querying data from Mobile Service is it allows to query the tables that are in its own schema. If I wish to have some tables in some other logical schema, I won't be able to query it from Mobile services. Is my understanding correct here?
.net WEBAPI will be my preferred way of talking to database,but if I write a WebAPI, how do I get user's Identity carried from Mobile Services to WebAPI.
if someone can point me to some example/sample of using using Web API and Mobile Services together, will appreciate
thanks in advance.
Mobile Services would allow you to access table's outside of its schema, although it is more work. You can use the MSSQL object to talk to additional schemas. See: http://www.windowsazure.com/en-us/documentation/articles/mobile-services-how-to-use-server-scripts/#TSQL
The new .NET runtime, currently in preview, also has support for using multiple data sources.
I would keep azure mobile services for authentication. You can then create your full schema in SQL where your user is nothing more than the userid from mobile services.
In code you end up with this user id after authentication. From that point forward everything is in SQL.
We plan to use Windows Azure Mobile Services for several of our commercial apps and would like to create a single data store for users instead of creating it for every mobile service. We don't want to use Microsoft or Facebook... providers due to this issue Multiple apps using a single Azure Mobile Service for Live Authentication?
This way, the user data for all our apps is stored in single separate Custom_Auth database and the users won't need to Register again for our other apps. Should we create a separate mobile service that basically enables custom authentication and acts as a provider for other apps?
Do you see any pitfalls with this approach and what steps would I need to take for creating this custom provider as a separate mobile service?
Basically, we want to create our own provider so that user of one our apps can login to the other apps using the same credentials.
I have read through the following links. Posting them here as they may be useful for others starting out with Authentication and Azure Mobile Services.
http://www.thejoyofcode.com/Generating_your_own_ZUMO_auth_token_Day_8_.aspx
http://www.thejoyofcode.com/Fetching_a_basic_user_profile_in_Mobile_Services_Day_9_.aspx
http://www.thejoyofcode.com/Exploring_custom_identity_in_Mobile_Services_Day_12_.aspx
http://chrisrisner.com/Authentication-with-Windows-Azure-Mobile-Services
Thanks in advance
Hope this helps you
http://chrisrisner.com/Authentication-with-iOS-and-Windows-Azure-Mobile-Services
Someone created a custom authentication API using AZURE
with Parse.com, you are limited to their backend and unfortunately it doesn't have all the nice features as Azure
MS really messed us around with this