一、需求: check user 对SharePoint list 的permission

代码如下:

    private static string GetListPermission(SPList list, string loginName)

         {

             string perStr = string.Empty;

             SPSecurity.RunWithElevatedPrivileges(() =>

             {

                 try

                 {

                     SPUser user = list.ParentWeb.Users[loginName];

                     SPRoleAssignment roleAssignment = list.RoleAssignments.GetAssignmentByPrincipal(user);

                     SPRoleDefinitionBindingCollection defColl = roleAssignment.RoleDefinitionBindings;

                     foreach (SPRoleDefinition roleDef in defColl)

                     {

                         perStr += roleDef.Name + ";";

                     }

                 }

                 catch (Exception)

                 {

                     logger.Debug("Get user permission by list.GetUserEffectivePermissionInfo method, list title: {0}, loginName: {1}.", list.Title, loginName);

                     try

                     {

                         SPPermissionInfo permissionInfo = list.GetUserEffectivePermissionInfo(loginName);

                         var roleAssignments = permissionInfo.RoleAssignments;

                         foreach (SPRoleAssignment roleAssignment in roleAssignments)

                         {

                             SPRoleDefinitionBindingCollection roleDefColl = roleAssignment.RoleDefinitionBindings;

                             foreach (SPRoleDefinition roleDef in roleDefColl)

                             {

                                 perStr += roleDef.Name + ";";

                             }

                         }

                     }

                     catch (Exception ex)

                     {

                         logger.Error("An error occurred while getting permission by list.GetUserEffectivePermissionInfo method, list title: {0}, loginName: {1}, exception; {2}.",

                             list.Title, loginName, ex.ToString());

                     }

                 }

             });

             return perStr;

         }

注意: catch中的代码作用是check,当user是AD group中的member,但却不单独存在于web userInformation list中,此时如果直接获取user  SPRoleAssignment,则抛‘Index is out of range’, 所以这样的user可以通过

list.GetUserEffectivePermissionInfo(loginName); 来获取SPPermissionInfo,然后再获取user的SPRoleDefinition,有的读者会问,为什么不直接通过catch中的方法获取,这样无论这个user是否只存在于AD group中都不会抛异常

可以正确的获取到SPRoleDefinition,其实是可以的,之所以这样做,原因在于效率问题。

二、需求: set permission to list

代码如下:

 private static void SetLibPermission(SPList list,  bool isRead)

         {

             try

             {

                 SPSecurity.RunWithElevatedPrivileges(() =>

                 {

                     bool hasUnique = list.HasUniqueRoleAssignments;

                     list.ParentWeb.AllowUnsafeUpdates = true;

                     if (!hasUnique)

                     {

                         list.BreakRoleInheritance(false);

                         list.Update();

                     }

                        try

                         {

                             SPUser user = list.ParentWeb.EnsureUser(userInfo.Key);

                             SPRoleDefinitionCollection objDefiColl = list.ParentWeb.RoleDefinitions;

                             SPRoleAssignment objRoleAssign = new SPRoleAssignment(user);

                             SPRoleDefinition roleDefination = null;

                             if (isRead)

                             {

                                 roleDefination = objDefiColl.GetByType(SPRoleType.Reader);

                             }

                             else

                             {

                                 roleDefination = objDefiColl.GetByType(SPRoleType.Contributor);

                             }

                             objRoleAssign.RoleDefinitionBindings.Add(roleDefination);

                             list.RoleAssignments.Add(objRoleAssign);

                         }

                         catch (Exception ex)

                         {

                         }

                     list.Update();

                     list.ParentWeb.AllowUnsafeUpdates = false;

                 });

             }

             catch (Exception ex)

             {

             }

         }

注意:给list赋权限,需要打破继承,具体可以根据实际需求

代码中的userInfo.Key即为loginName

list.ParentWeb.EnsureUser(userInfo.Key);即把user保存到user information list中

SharePoint 2103 Check user permission on list的更多相关文章

  1. SharePoint Security and Permission System Overview

    转:http://www.sharepointblues.com/2010/09/01/sharepoint-security-and-permission-system-overview/ Shar ...

  2. The Managed Metadata Service or Connection is currently not available 分类: Sharepoint 2015-07-09 13:28 5人阅读 评论(0) 收藏

    Does the following error message looks familiar to you? (When you go to Site Actions –> Site Sett ...

  3. 【转】必需知道的 SharePoint 权限 Tips

    SharePoint Tips about Permissions: What you need to know         I have been writing tips about Shar ...

  4. Installing FIM 2010 R2 SP1 Portal on SharePoint Foundation 2013

    http://www.fimspecialist.com/fim-portal/installing-fim-2010-r2-sp1-portal-on-sharepoint-foundation-2 ...

  5. How does Web Analytics works under sharePoint 2010

    [http://gokanx.wordpress.com/2013/06/15/how-does-web-analytics-works-under-sharepoint-2010/] You nee ...

  6. SharePoint REST api

    http://msdn.microsoft.com/en-us/magazine/dn198245.aspx Understanding and Using the SharePoint 2013 R ...

  7. permission 文档 翻译 运行时权限

    文档位置:API24/guide/topics/security/permissions.html  System Permissions 系统权限 Android is a privilege-se ...

  8. SharePoint自动化系列——通过PowerShell创建SharePoint Site Collection

    通过PowerShell创建SharePoint Site Collection,代码如下: Add-PSSnapin microsoft.sharepoint.powershell function ...

  9. Failed to start NodeManager caused by "/var/lib/hadoop-yarn/yarn-nm-recovery/yarn-nm-state/LOCK: Permission denied"

      Hadoop 安装步骤: 0. 安装前准备(节点机器,环境设置,yum源设置) 1. 配置并安装Cloudera-Manager 2. 启动 CM 服务 3. 安装CDH,并配置集群 4. 启动 ...

随机推荐

  1. 在SQL2008查找某数据库中的列是否存在某个值

    在SQL2008查找某数据库中的列是否存在某个值 --SQL2008查找某数据库中的列是否存在某个值 create proc spFind_Column_In_DB ( @type int,--类型: ...

  2. 使用 Roslyn 编译器服务

    .NET Core和 .NET 4.6中 的C# 6/7 中的编译器Roslyn 一个重要的特性就是"Compiler as a Service",简单的讲,就是就是将编译器开放为 ...

  3. 【小计】新人Tostring前忘记Null判断的处理

    ToString和string.Concat(可屏蔽Null的异常)性能相差不大,一些中小项目完全可以用Concat(新人容易忘记判断Null的情况,遇到太多了,所以建议重写tostring方法,内部 ...

  4. HTML5 localStorage本地存储

    介绍 localStorage(本地存储)的使用方式.包括对存储对象的添加.修改.删除.事件触发等操作. 目录 1. 介绍 1.1 说明 1.2 特点 1.3 浏览器最小版本支持 1.4 适合场景 2 ...

  5. 对百度WebUploader开源上传控件的二次封装,精简前端代码(两句代码搞定上传)

    前言 首先声明一下,我这个是对WebUploader开源上传控件的二次封装,底层还是WebUploader实现的,只是为了更简洁的使用他而已. 下面先介绍一下WebUploader 简介: WebUp ...

  6. bash字符串操作

    参考 http://www.cnblogs.com/chengmo/archive/2010/10/02/1841355.html 问题:bash怎么提取字符串的最后一位?例如python中strin ...

  7. HTML简单入门内容

    常用属性: Width=宽度 Height=高度 Size=大小 Color=颜色 Align=布局方向,值包括(top,bottom,left,right,center)上,下,左,右,中. Bor ...

  8. unity3d导出到IOS程序下 集成unity3dAR功能

    转载自: 来自AR学院(www.arvrschool.com),原文地址为:http://www.arvrschool.com/index.php?c=post&a=modify&ti ...

  9. Maven安装

    开发分布式的商场系统,用到了一些新的技术,做一个记录和分享 这里讲一下maven安装 首先什么是Maven Maven作为一个构建工具,不仅帮我们自动化构建,还能抽象构建过程,提供构建任务实现.他跨平 ...

  10. Ford-Fulkerson 最大流算法

    流网络(Flow Networks)指的是一个有向图 G = (V, E),其中每条边 (u, v) ∈ E 均有一非负容量 c(u, v) ≥ 0.如果 (u, v) ∉ E 则可以规定 c(u, ...