Tag: client

How to update a SharePoint 2010 list via an InfoPath 2010 client form using code?

I tried to follow in Sharepoint Server 2010 and Infopath 2010 the article:

  • How to update a SharePoint list via an InfoPath browser form using the SharePoint Object Model

which is for Sharepoint/Infopath 2007 adjusting it for 2010

Upon completing step 7:

  • “7. On the Button Properties dialog box, select Update Form from the Action drop-down, and click OK

I observe the warning:

  • The button control will only be visible when the form is edited in a Web browser

enter image description here

Pressing F5 (or Preview) button (which, as I believe, corresponds to running a form in “Infopath Filler 2010”?) confirms it and shows the form without this button.

How should I interpret the msdn’s comparative table of differences between Infopath 2010 List and Form Library templates from which one can understand that:

  • custom code support is available only for Infopath 2010 Form Library Template but not for List Template while I have a custom code in List template?

Should I understand that it is impossible to update a list form from client form through SharePoint Object Model?

How one should proceed in order to update a Sharepoint 2010 list from an Infopath 2010 client form (i.e. in Infopath Filler 2010 or other clients like Outlook) through code?

How to revoke a client certificate using openssl

I generated a private key and a certificate for my CA:

ca.key ca.pem

Then I generated a client certificate for a user:

openssl ecparam -genkey -name prime256v1 | openssl ec -out user.key openssl req -new -key user.key -out user.csr -subj "/C=RU/ST=Moscow/L=Moscow/O=Company ltd/OU=Sales department/"}); openssl x509 -req -days 3650 -in user.csr -CA ca.pem -CAkey ca.key -set_serial 1 -out user.pem cat user.key user.pem ca.pem > user.full.pem openssl pkcs12 -export -out user.full.pfx -inkey user.key -in user.pem -certfile ca.pem

Now I have these files for the user:

user.csr user.full.pem user.full.pfx user.key user.pem

Now I need to revoke this certificate and generate a file with certificate revocation list adding it to Apache. I read that it must somehow be done using

$   openssl ca -keyfile ca.key -cert ca.pem Using configuration from /etc/ssl/openssl.cnf ./demoCA/index.txt: No such file or directory unable to open './demoCA/index.txt' 3072997056:error:02001002:system library:fopen:No such file or directory:bss_file.c:413:fopen('./demoCA/index.txt','r') 3072997056:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:415:

Is it possible to avoid writing all the configurations, cause I don’t know them well enough.

Securely distributing passwords and salts that will be derived by client programs

I am creating a client-server architecture running on top of the KCP protocol in Go. The package for KCP that I’m using is KCP-Go (https://github.com/xtaci/kcp-go). The package supports packet-level encryption and FEC. To use the packet-level encryption feature, I need to generate an AES key. Following the latest OWASP recommendations for securely storing passwords and keys, this is what I’ve done thus far:

  • I have generated a 64-byte password and salt.
  • I pass that to PBKDF2, using (600000 * num_cpus) rounds, and requesting a 32-byte key.

Now I am wondering how to exactly securely distribute this key. At this time, I start up another TCP server and allow clients to connect. When they do, I send them the password, salt, number of iterations, and checksum hashes for those three to ensure they’re not tampered with, and allow the client to perform key derivation. My question is: Is this method of distribution actually secure, or should I find some other way (i.e. using public keys)? If there is a more secure method to allow clients and the server to communicate, what should I do instead? I should note that when clients and servers send messages to one another a hash of the message is included along with the message to allow clients to verify the messages validity (I’m using SHAKE256). The hash funciton used during key derivation is BLAKE2B (though I have thought about using Argon2).

Client Object Model RoleDefinitionBindingCollection.Remove not working

I’m using the Client Object Model and trying to remove a specific RoleDefinition from a RoleDefinitionBindingCollection in a RoleAssignment.

This is the code I’m using:

        Web web = context.Web;         List list = context.Web.Lists.GetByTitle("List");         context.Load(             list,             l => l.RoleAssignments.Include(                 ra => ra.Member,                 ra => ra.RoleDefinitionBindings                 )             );          context.ExecuteQuery();          List<RoleDefinition> toDelete = new List<RoleDefinition>();          foreach (RoleAssignment ra in list.RoleAssignments) {             toDelete.Clear();              foreach (RoleDefinition rd in ra.RoleDefinitionBindings) {                 if (rd.RoleTypeKind == RoleType.Administrator) {                     toDelete.Add(rd);                                         }             }              if (toDelete.Count > 0) {                 toDelete.ForEach(td => ra.RoleDefinitionBindings.Remove(td));             }                                        }          context.ExecuteQuery();

I can see that the RoleDefinition is removed from the parent RoleDefinitionBindings list, but nothing happens. There is no error and the permissions on the list stays exactly as they were after the context.ExecuteQuery()

All the examples I found are showing how to remove an entire RoleAssignment, or how to delete the RoleDefinition from the site.

Would forcing a lawyer to turn on their client with a Glamour Bard’s Enthralling Performance feature be seen as an attack?

Say you are a bard, level 3+. You have are being sued by an enemy, and you have got their lawyer tied up in a chair. You make them charmed after their failed saving throw against your Enthralling Performance feature, which states:

Each target must succeed on a Wisdom saving throw against your spell save DC or be charmed by you. While charmed in this way, the target idolizes you, it speaks glowingly of you to anyone who speaks to it, and it hinders anyone who opposes you, avoiding violence unless it was already inclined to fight on your behalf. This effect ends on a target after 1 hour, if it takes any damage, if you attack it, or if it witnesses you attacking or damaging any of its allies.

Would charming the lawyer and making him throw out the case be seen as an attack against the lawyer’s ally, your enemy?

Modern SharePoint client side webpart code repo

I am wondering, if the OOB SharePoint Client Side webparts are open source or not? Let me give you a background, why I came to this point. I created a MS Flow manually triggered, added Column Formatting in one of list, and use executeFlow attribute to trigger the MS Flow. Everything looks good till this point.

Now I added this list view to a Page using OOB List (preview) client side webpart. The column formatting stays as is and on UI everything is as expected. But when I click the button created via Column Formatting on the page, nothing happens.

Since I have urgent need of rolling out my feature, I need the capability to trigger MSFlow from List (preview) webpart too. I cant wait until MS rollout this feature. So I thought to check SharePoint Github repo. I scanned most of the repo, but couldnt find a repo which have these webpart available.

I dont want to build the webpart from scratch, just need some enhancement on top of the what we already have (available OOB). So I was, if these webpart are Open Soruce or not, and if so, where I can find them.