MSDN Magazine - February 2008 - (Page 59)

Figure 5 SPWeb site = SPContext.Current.Web; Guid listID = site.Lists.Add(“Proposals”, “Library desc”, SPListTemplateType.DocumentLibrary); SPDocumentLibrary doclib = (SPDocumentLibrary)site.Lists[ListID]; doclib.OnQuickLaunch = true; doclib.BreakRoleInheritance(false); SPUser AllFteGroup = Web.SiteUsers[@”LITWAREINC\AllFTE”]; SPRoleAssignment assignAllFteGroup = new SPRoleAssignment(AllFteGroup); SPRoleDefinition roleDesign = this.Web.RoleDefinitions[“Read”]; assignAllFteGroup.RoleDefinitionBindings.Add(roleDesign); doclib.RoleAssignments.Add(assignAllFteGroup); doclib.Update(); Wrapping Up I know that this discussion has been somewhat of a whirlwind tour through the security model of WSS. I’ve shown you how WSS tracks external security principals at the level of the site collection with a profile within the User Information List and explained how WSS represents these external security principals in the WSS object model using SPUser objects. I’ve also demonstrated how WSS provides support for WSS groups and presented a few programming techniques for elevating privileges and impersonating WSS users. These techniques provide the power and flexibility you need when creating a real-world application. While WSS relies on an underlying system of components to perform authentication, it does take on the responsibility of authorization and access control. The WSS authorization model is largely based on a named set of permissions known as permission levels or roles. A permission level can be assigned to an SPUser object, but in practice you should generally choose to assign permission levels to WSS groups. Code download available at msdn.microsoft.com/msdnmag/code08.aspx. Send your questions and comments for Ted to mmoffice@microsoft.com. Ted Pattison is an author, trainer, and SharePoint MVP who lives in Tampa, Florida. He also delivers advanced SharePoint training to professional developers through his company, Ted Pattison Group (www.TedPattison.net). Ted has just completed his book titled Inside Windows SharePoint Services 3.0 for Microsoft Press. sion-level assignments. For example, the code shown in Figure 5 allows you to create a new document library and to configure it with a unique set of permissions. This sample code breaks the default permission inheritance from the parent using a call to BreakRoleInheritance. If you call BreakRoleInheritance and pass a parameter value of true, the securable object is initially configured with an ACL that is a copy of the parent object’s ACL. If you call to BreakRoleInheritance and pass a parameter value of false, the securable object is initially configured with an empty ACL. That means this document library provides no access to users who are not either owners or site administrators. Windows SharePoint Services 3.0 has added a welcome security enhancement that allows you to configure permissions down to the level of the item or document. This is made possible through the WSS object model, since SPListItem objects also implement the ISecurableObject interface. The code in Figure 6 creates a new document within a document library and then configures it with a unique set of permissions that differ from its parent document library. Note that this code uses a utility method, called WriteDocument, that accepts an SPDocumentLibrary reference and a file name. The method implementation uses the Office Open XML File Formats to create a Word document and to write it back to the document library. The WriteDocument method returns an SPFile reference, which can then be used to access the SPListItem associated with the document, allowing you to break permission inheritance and assign a unique set of permissions. Figure 6 Set of Permissions that Differs from Its Parent SPWeb site = SPContext.Current.Web; Guid listID = site.Lists.Add(“Proposals”, “Library desc”, SPListTemplateType.DocumentLibrary); SPDocumentLibrary doclib = (SPDocumentLibrary)Web.Lists[ListID]; doclib.OnQuickLaunch = true; doclib.Update(); SPFile doc1 = WriteDocument(doclib, “Adventure Works Merger.docx”); doc1.Item.BreakRoleInheritance(false); SPGroup group = Web.Groups[“Litware Contact Managers”]; SPRoleAssignment assignContribute = new SPRoleAssignment(group); SPRoleDefinition roleContibute = this.Web.RoleDefinitions[“Contribute”]; assignContribute.RoleDefinitionBindings.Add(roleContibute); doc1.Item.RoleAssignments.Add(assignContribute); doc1.Item.Update(); Ofﬁce Space february2008 59 http://msdn.microsoft.com/msdnmag/code08.aspx http://www.TedPattison.net http://msdn.microsoft.com/msdnmag/cdrom/2006 http://msdn.microsoft.com/msdnmag/cdrom/2006 Table of Contents for the Digital Edition of MSDN Magazine - February 2008MSDN Magazine - February 2008ContentsToolboxCLR Inside OutBasic InstinctsData PointsCutting EdgeOffice SpaceRoll Your OwnWinUnitSilverlightPIAB And WCFWF How-ToTest RunFoundations.NET Matters{End Bracket}MSDN Magazine - February 2008MSDN Magazine - February 2008 - Contents (Page Cover1)MSDN Magazine - February 2008 - Contents (Page Cover2)MSDN Magazine - February 2008 - Contents (Page 1)MSDN Magazine - February 2008 - Contents (Page 2)MSDN Magazine - February 2008 - Contents (Page 3)MSDN Magazine - February 2008 - Contents (Page 4)MSDN Magazine - February 2008 - Contents (Page 5)MSDN Magazine - February 2008 - Contents (Page 6)MSDN Magazine - February 2008 - Contents (Page 7)MSDN Magazine - February 2008 - Contents (Page 8)MSDN Magazine - February 2008 - Contents (Page 9)MSDN Magazine - February 2008 - Contents (Page 10)MSDN Magazine - February 2008 - Toolbox (Page 11)MSDN Magazine - February 2008 - Toolbox (Page 12)MSDN Magazine - February 2008 - Toolbox (Page 13)MSDN Magazine - February 2008 - Toolbox (Page 14)MSDN Magazine - February 2008 - Toolbox (Page 15)MSDN Magazine - February 2008 - Toolbox (Page 16)MSDN Magazine - February 2008 - Toolbox (Page 17)MSDN Magazine - February 2008 - Toolbox (Page 18)MSDN Magazine - February 2008 - CLR Inside Out (Page 19)MSDN Magazine - February 2008 - CLR Inside Out (Page 20)MSDN Magazine - February 2008 - CLR Inside Out (Page 21)MSDN Magazine - February 2008 - CLR Inside Out (Page 22)MSDN Magazine - February 2008 - CLR Inside Out (Page 23)MSDN Magazine - February 2008 - CLR Inside Out (Page 24)MSDN Magazine - February 2008 - Basic Instincts (Page 25)MSDN Magazine - February 2008 - Basic Instincts (Page 26)MSDN Magazine - February 2008 - Basic Instincts (Page 27)MSDN Magazine - February 2008 - Basic Instincts (Page 28)MSDN Magazine - February 2008 - Basic Instincts (Page 29)MSDN Magazine - February 2008 - Basic Instincts (Page 30)MSDN Magazine - February 2008 - Data Points (Page 31)MSDN Magazine - February 2008 - Data Points (Page 32)MSDN Magazine - February 2008 - Data Points (Page 33)MSDN Magazine - February 2008 - Data Points (Page 34)MSDN Magazine - February 2008 - Data Points (Page 35)MSDN Magazine - February 2008 - Data Points (Page 36)MSDN Magazine - February 2008 - Data Points (Page 37)MSDN Magazine - February 2008 - Data Points (Page 38)MSDN Magazine - February 2008 - Data Points (Page 39)MSDN Magazine - February 2008 - Data Points (Page 40)MSDN Magazine - February 2008 - Data Points (Page 41)MSDN Magazine - February 2008 - Data Points (Page 42)MSDN Magazine - February 2008 - Cutting Edge (Page 43)MSDN Magazine - February 2008 - Cutting Edge (Page 44)MSDN Magazine - February 2008 - Cutting Edge (Page 45)MSDN Magazine - February 2008 - Cutting Edge (Page 46)MSDN Magazine - February 2008 - Cutting Edge (Page 47)MSDN Magazine - February 2008 - Cutting Edge (Page 48)MSDN Magazine - February 2008 - Cutting Edge (Page 49)MSDN Magazine - February 2008 - Cutting Edge (Page 50)MSDN Magazine - February 2008 - Cutting Edge (Page 51)MSDN Magazine - February 2008 - Cutting Edge (Page 52)MSDN Magazine - February 2008 - Office Space (Page 53)MSDN Magazine - February 2008 - Office Space (Page 54)MSDN Magazine - February 2008 - Office Space (Page 55)MSDN Magazine - February 2008 - Office Space (Page 56)MSDN Magazine - February 2008 - Office Space (Page 57)MSDN Magazine - February 2008 - Office Space (Page 58)MSDN Magazine - February 2008 - Office Space (Page 59)MSDN Magazine - February 2008 - Office Space (Page 60)MSDN Magazine - February 2008 - Office Space (Page 61)MSDN Magazine - February 2008 - Roll Your Own (Page 62)MSDN Magazine - February 2008 - Roll Your Own (Page 63)MSDN Magazine - February 2008 - Roll Your Own (Page 64)MSDN Magazine - February 2008 - Roll Your Own (Page 65)MSDN Magazine - February 2008 - Roll Your Own (Page 66)MSDN Magazine - February 2008 - Roll Your Own (Page 67)MSDN Magazine - February 2008 - Roll Your Own (Page 68)MSDN Magazine - February 2008 - Roll Your Own (Page 69)MSDN Magazine - February 2008 - Roll Your Own (Page 70)MSDN Magazine - February 2008 - Roll Your Own (Page 71)MSDN Magazine - February 2008 - Roll Your Own (Page 72)MSDN Magazine - February 2008 - Roll Your Own (Page 73)MSDN Magazine - February 2008 - WinUnit (Page 74)MSDN Magazine - February 2008 - WinUnit (Page 75)MSDN Magazine - February 2008 - WinUnit (Page 76)MSDN Magazine - February 2008 - WinUnit (Page 77)MSDN Magazine - February 2008 - WinUnit (Page 78)MSDN Magazine - February 2008 - WinUnit (Page 79)MSDN Magazine - February 2008 - WinUnit (Page 80)MSDN Magazine - February 2008 - WinUnit (Page 81)MSDN Magazine - February 2008 - WinUnit (Page 82)MSDN Magazine - February 2008 - WinUnit (Page 83)MSDN Magazine - February 2008 - WinUnit (Page 84)MSDN Magazine - February 2008 - WinUnit (Page 85)MSDN Magazine - February 2008 - Silverlight (Page 86)MSDN Magazine - February 2008 - Silverlight (Page 87)MSDN Magazine - February 2008 - Silverlight (Page 88)MSDN Magazine - February 2008 - Silverlight (Page 89)MSDN Magazine - February 2008 - Silverlight (Page 90)MSDN Magazine - February 2008 - Silverlight (Page 91)MSDN Magazine - February 2008 - Silverlight (Page 92)MSDN Magazine - February 2008 - PIAB And WCF (Page 93)MSDN Magazine - February 2008 - PIAB And WCF (Page 94)MSDN Magazine - February 2008 - PIAB And WCF (Page 95)MSDN Magazine - February 2008 - PIAB And WCF (Page 96)MSDN Magazine - February 2008 - PIAB And WCF (Page 97)MSDN Magazine - February 2008 - PIAB And WCF (Page 98)MSDN Magazine - February 2008 - PIAB And WCF (Page 99)MSDN Magazine - February 2008 - PIAB And WCF (Page 100)MSDN Magazine - February 2008 - WF How-To (Page 101)MSDN Magazine - February 2008 - WF How-To (Page 102)MSDN Magazine - February 2008 - WF How-To (Page 103)MSDN Magazine - February 2008 - WF How-To (Page 104)MSDN Magazine - February 2008 - WF How-To (Page 105)MSDN Magazine - February 2008 - WF How-To (Page 106)MSDN Magazine - February 2008 - WF How-To (Page 107)MSDN Magazine - February 2008 - WF How-To (Page 108)MSDN Magazine - February 2008 - WF How-To (Page 109)MSDN Magazine - February 2008 - WF How-To (Page 110)MSDN Magazine - February 2008 - WF How-To (Page 111)MSDN Magazine - February 2008 - WF How-To (Page 112)MSDN Magazine - February 2008 - WF How-To (Page 113)MSDN Magazine - February 2008 - WF How-To (Page 114)MSDN Magazine - February 2008 - Test Run (Page 115)MSDN Magazine - February 2008 - Test Run (Page 116)MSDN Magazine - February 2008 - Test Run (Page 117)MSDN Magazine - February 2008 - Test Run (Page 118)MSDN Magazine - February 2008 - Test Run (Page 119)MSDN Magazine - February 2008 - Test Run (Page 120)MSDN Magazine - February 2008 - Test Run (Page 121)MSDN Magazine - February 2008 - Test Run (Page 122)MSDN Magazine - February 2008 - Foundations (Page 123)MSDN Magazine - February 2008 - Foundations (Page 124)MSDN Magazine - February 2008 - Foundations (Page 125)MSDN Magazine - February 2008 - Foundations (Page 126)MSDN Magazine - February 2008 - Foundations (Page 127)MSDN Magazine - February 2008 - Foundations (Page 128)MSDN Magazine - February 2008 - Foundations (Page 129)MSDN Magazine - February 2008 - Foundations (Page 130)MSDN Magazine - February 2008 - Foundations (Page 131)MSDN Magazine - February 2008 - Foundations (Page 132)MSDN Magazine - February 2008 - .NET Matters (Page 133)MSDN Magazine - February 2008 - .NET Matters (Page 134)MSDN Magazine - February 2008 - .NET Matters (Page 135)MSDN Magazine - February 2008 - .NET Matters (Page 136)MSDN Magazine - February 2008 - .NET Matters (Page 137)MSDN Magazine - February 2008 - .NET Matters (Page 138)MSDN Magazine - February 2008 - .NET Matters (Page 139)MSDN Magazine - February 2008 - {End Bracket} (Page 140)MSDN Magazine - February 2008 - {End Bracket} (Page Cover3)MSDN Magazine - February 2008 - {End Bracket} (Page Cover4)http://www.nxtbookMEDIA.com

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.