Hi all, I\’m building a business app where read and write access permissions are important. The project is a Provider-hosted MVC 5 / SharePoint app built in Visual Studio 2012.
Johnny needs to be able to Read and Write content on SharePoint App A AND SharePoint App B
Dave needs to only be able to Read content on SharePoint App A
I\’ve looked over a lot of documentation including this tutorial: http://www.itunity.com/article/sharepoint-permissions-manage-access-sql-data-709
The problem is if I give Dave Read access at the site level he is allowed to access SharePoint App A but also SharePoint App B.
How do I effectively use SharePoint permissions to stop this unintended behaviour?
Should I even be using SharePoint permissions?
2nd example:
I am building an app for project management, there will be an Engineer who is able to create, read and edit projects, there is also an Accountant who views the projects billables.
If I give Read permissions to Engineer and Read permissions to the Accountant, how do I know which can view the project details and which can view the project\’s billables?
Thanks.
SharePoint permissions apply on the entities with in SharePoint like lists, libraries, items, documents, pages & so on. But if you look at SharePoint Apps/Add-Ins you can have 3 different app authorization policies. ie you can execute code that you specify for app only, or the user permission only or both. This is something you can use.Â
Check the below link to understand the app policies in detail.
