Microsoft cloud engineer - SharePoint, Office 365, Azure, DotNet, Angular, JavaScript.
Microsoft cloud engineer - SharePoint, Office 365, Azure, DotNet, Angular, JavaScript.

Uncategorized

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SECURITY GROUP (Part 2 of 3)

Continuing series with more detail on security.   Add C# code to detect Azure AD group membership.   When REST API call for data is made to WebAPI HTTPS endpoint we already validate Azure AD authentication token (user part of AAD).

Building upon this, we can add AAD Security Group membership detection for business logic “If user is member of HELLOWORLD group then provide data.  Otherwise access denied.”

For that, we translate the AAD Security Group into GUID number by locating the group at https://portal.azure.com.   Steps cover how to update AAD token, C# dot net code for WebAPI endpoint, and verify secrurity with Postman.  Cheers.  

shades_smile_thumb

This post is part of series with three posts:

HTTP API Test Responses

API Permission Grants

  • GroupMember.Read.All
  • User.Read

Video

Screenshots

image
image
image
image
image

References

VIDEO – AngularJS SPA and WebAPI SQL database secured with Azure AD – SETUP (Part 1 of 3)

Wanted to share video walk through of how to create an AngularJS front end Single Page Application (SPA) which SQL Server WebAPI secured using Azure Active Directory authentication.   Project includes PowerShell PS1 automation for App Registration within Azure AD.  All HTTP data traffic POST and GET is now protect with Azure AD authentication tokens to ensure only valid users can leverage the application or HTTP data endpoints.     Excellent design pattern to provide rich user experience with secure data storage, all hosted on Azure with Website, SQL, and App Registration.  Cheers.  

shades_smile

Technical topics covered include:

  • AngularJS 1x single page application (SPA)
  • AngularJS routing
  • ADAL login / logout user experience
  • Dot Net WebAPI endpoints for HTTP GET/POST
  • Dot Net Entity Framework
  • Dot Net web.config lifecycle DEV/PROD
  • Azure website
  • Azure SQL
  • Azure Active Directory – App Registration
  • Azure Active Directory – Bearer token
  • JWT IO – Bearer token
  • Postman HTTP 401 to verify AAD security

This post is part of series with three posts:

Video

Code

Screenshots

image

image

image

image

image

image
image

image
image

image

image
image

image

References

VIDEO – PowerShell PNP to parse InfoPath XML Attachments

Wanted to share quick tutorial on how to parse InfoPath attachment XML.    Source Form Library contains XML with Base64 encoded attachments which we can parse into local TEMP folder and then upload to destination Document Library. Extract filename and file content for each InfoPath attachment XML node.  Save into subfolders and match original file naming.  Helpful for Office 365 migration and scenarios where InfoPath client is no longer available and users prefer to view attachments directly.

Video, screenshots, and source code below. 

Cheers

shades_smile

GitHub Repo

Video

Screenshots

SNAGHTML46f8607
image
image
image
image

What’s in that patch? Apr 2020

NOTE – PDF format updated to include both SharePoint 2013, 2016, and 2019 notes. Ever wondered what fixes are inside of a given CU?   Please see attached PDF with full detail. I wanted a new format for easy reading.   Show management and make the business case for why downtime should be taken to apply CUs.  Also posted at https://sharepointupdates.com/ If you found this helpful, please leave a comment.   

shades_smile_thumb_thumb_thumb_thumb[2]

Download

What’s in that patch – Apr 2020.PDF

© Copyright 2016
@ SPJeff

Return to Top ▲Return to Top ▲