Sharepoint online/365 integration (Upload files) on React app hosted on Azure and WebApi C# .Net Core 2.2

I’m struggling since some weeks ago trying to interact/automate a way to upload files from a Web App created in React and upload files to a Sharepoint Online Site – in a specific folder. The WebApp is hosted in Azure and using a C# .Net Core 2.2 as backend.

I’m trying to using some kind of REST API that help me out with this task (Could be on React in frontend, or in C# Core or C# MS FW .Net for backend) I’m searching across internet a way to do it but all the testings were failed.

Someone can give me some insight, tip or advice on how to achieve this?

I’m trying:

  • Use code from Microsoft WebPage (Using jQuery).

  • Using PnP, but on my localhost I receive a CORS problem (I’m trying using Client ID and Secret ID to interact with Sharepoint).

Azure App unauthorised to download file from shared links in Sharepoint

I am currently doing an integration which requires me to download files from shared links.

Users can create share links to their files in SharePoint, and to download the file, I just need to add download=1 in the url parameters.

My program (Created from app registration) is able to download files that are set to public. However, if any restrictions are set, for example group/specific users, I will receive ERROR 401 Unauthorized even though I have already done Oauth2 authentication (I am able to call other REST APIs to view folder etc.).

I have a feeling that when the links are restricted to a certain group, my client isn’t recognised as the user I’ve login to. I tried elevating my client’s API permissions to both delegated and application but it still doesn’t work. Any help here?

Thanks in advance!

Is it possible to authenticate a user in Azure AD from a SharePoint 2013 Provider Hosted Add-In client side

We are developing a SharePoint 2013 Provider Hosted Add-In that calls an API in Azure. The API an App Service that has Azure AD Authentication and OAuth implicit grant type. Our wish is to authenticate the current user and do it on the client side, not use app permissions and run from code behind.

The catch is that a provider hosted add-in must have some url query strings like SPHostUrl. We cannot set the whole url in the App Registration Redirect Url, since SPHostUrl differs from site to site. When a user has logged in successfully in Azure AD, she/he will be redirected to the main page of Provider Hosted Add-In and loose SharePoint Context.

Azure AD subdomains best practice

I’m just setting up an Azure AD subscription for a small retailer with 3 branches and a head quarters (100s of users in each). The branches are self-sufficient and intend to manage their own users. Users from the branches will need access to web applications provided by the HQ.

Assuming these are the domains:

  • myclient.com
  • branch1.myclient.com
  • branch2.myclient.com
  • branch3.myclient.com

What is the best practice in managing Azure AD for such an organisation? More specifically, from a security point of view, should each of them be its own subscription and add users from one as Guest in the other?

Trigger Transact-SQL en Azure SQL Database y Azure Web Apps

Estoy planteándome subir varias webs Asp.net (webforms) a Azure Web Apps. Todas ellas tienen bases de datos en el SQL Server que actualmente están en el mismo server que el sitio web. (Un servidor propietario)

No he utilizado Azure todavía, por lo que entiendo que necesito los servicios:

  • Azure SQL Database
  • Azure Web Apps

Las bases de datos de las webs disponen de DML Triggers en Transact-SQL, del tipo DELETE, UPDATE... AFTER INSERT, por ejemplo.

He oído que Azure SQL Database soporta procedimientos almacenados pero NO soporta triggers de este tipo. Incluso me lo comentaron en una presentación reciente de Azure, un técnico de Microsoft

¿Esto es así?

En los siguientes enlaces, se habla de ello y dice que se aplica a AZURE SQL Database:

Enlace 1 , Enlace 2

Si es así, tendría que modificar todo el planteamiento de las webs, ya que las bases de datos se modifican, etc… mediante Triggers.

Sería importante saber si alguien de vosotros tiene algo corriendo ya en Azure SQL Database con Triggers.

Gracias.

Azure Security Policy for Azure Analysis Service

I have been working to build an Azure Security policy for Azure Analysis Services. First off, I cannot find one mention or sample code and I am unable to get any of my policies to work correctly. Is it even possible to put policy on Analysis Services?

If so, do I need to call a compute resource out of the Analysis Services resource; “Microsoft.AnalysisServices/servers”. There are properties down further that identify firewall rules so I am unsure.

I am trying to restrict that the access to external IP’s from two specific ranges.

Please ask more clarifying questions if needed. Thank you.

¿Cómo funciona la directiva/politica/policies “JSONP” de azure api managment en las directivas entre dominios?

Necesito ayuda para entender el funcionamiento de la directiva entre dominios JSONP de azure api managament, este es el ejemplo de la directiva instrucción <jsonp callback-parameter-name="xxx" /> He tratado de colocar la directiva en la api” ” y luego invocar la api con el siguiente código de ajax pero no he logrado entender correctamente el flujo de como funciona.

function xxx(json) {   console.log(json); } $  ('#btn4').click(function () {   ulEmployees2.empty();   console.clear();   $  .ajax({     type: 'GET',     url: "https://...........................Testdomain/",     dataType: 'jsonp',     jsonpCallback: "xxx",     xhrFields: {       withCredentials: true     },     headers: {       "Ocp-Apim-Subscription-Key": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"     },     success: function (data) {       /////////////     }   }); }); 

Use of Azure Blob storage or not Security

Need your opinion, Should we go for Azure blob or not, i am attaching the actual requirement in our application.

enter image description here

We have database called Hopex(Database external server), now we are working on SharePoint online(Cloud) and we need data from external database(Hopex), We have large volume of diagram and coordinates stored in database(Hopex).

  1. So we are thinking to upload all diagram(Images) in Azure blob storage and access all images(diagram) in SharePoint list &

  2. External server database is creating Rest Endpoint and trying to access all diagram and coordinates using REST API, I have attached the requirement model in screenshot.

Just wanted to know which approach we need to follow, whether I should go for Azure Blob or REST API? If Azure Blob then advantage and security or if End Point REST then security.

Please drop your opinion.

Thanks in advance.

SQL Connector for Azure Key Vault – Cannot use more than one key vault

I am using SQL Server 2016 Enterprise Edition with SQL Connector for Azure Key Vault. I am trying to attach more than one Key Vault to my SQL instance but it is not working.

I went through these instructions to set up the EKM provider and create a credential, create a new database encryption key from the asymmetric key, etc. for the first key vault – testkeyvault1. I am trying to repeat these same actions using a second credential which is configured for the second key vault – testkeyvault2

However, I keep getting the following error:

Msg 33049, Level 16, State 2, Line 70 Key with name ‘test2rsakey0’ does not exist in the provider or access is denied. Provider error code: 3112. (Provider Error – No explanation is available, consult EKM Provider for details)

SQL Server is clearly looking at the wrong key vault. Looking at the event viewer shows this as well:

Vault Name: testkeyvault1.vault.azure.net  Operation: getKeyByName  Key Name: test2rsakey0  Message: [error:112, info:404, state:0] The server responded 404, because the key name was not found. Please make sure the key name exists in your vault. 

If I add testkeyvault2 first, and then repeat the process for testkeyvault1, the results are reversed. So it seems that SQL Connector looks for keys only in the first configured key vault. I even checked the registry and ensured that keys exist for both key vaults in the following path: Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SQL Server Cryptographic Provider\Azure Key Vault\

I need to be able to use multiple key vaults since some customers want to provide access to their own key vault to encrypt the database stored on our servers.

Is there any way around this? Any alternative solutions to use multiple key vaults, or to allow customers a BYOK model?