OAuth authentication mode - Error in SO

4 years ago
18 December 2019
5 replies
1 view

Madhu1
6 replies

Hi All,

I have a question regarding OAuth authentication mode. I have two sharepont sites and I have registered K2 for shaarepoint inside those sites. Now I am able to get these inside Sharepoint 2013 in Smart Object tester. Authentication mode for both these sites are kept as OAuth with alll parameters same except the url. Now I have created smart object out of these libraries. I am able to get the result if I execute a method from one smart object but I am getting Access Denied error.

I am not sure how OAuth works with sharepont site. What all permission I should have in sharepoint site for OAuth to work

Regards,

Madhu

5 replies

Good day Madhu

Please see the following:

What is OAuth?

By definition, OAuth is an open standard for authorization. Being an open standard means it has become the default standard for authorizing one app to do something on a person's behalf in another app. An example of this would be your workout app tweeting an update of your latest run on your Twitter profile. When you first set up the permission (sometimes apps refer to it as a partnership), you authorize an application to do something on your behalf in another application. This something is usually called the scope of the authorization and can be anything from accessing your information to performing some action. An OAuth authorization, along with its scope, typically expires after a period of time and can be refreshed. The authorization can also be revoked at any time.

It is important to note that OAuth is not Claims-Based Authentication (CBA). While CBA and OAuth often work hand-in-hand because they are becoming de facto standards for authentication and authorization, they are not dependent on each other or share the same architecture.

(OAuth allows K2 to interact with OAuth-enabled services (such as SalesForce, LinkedIn, SharePoint, Twitter and other systems that use OAuth as an authorization mechanism) on behalf of a user. OAuth is effectively protocol that allows users to approve an application to act on their behalf, without the system storing their username and password.)

OAuth: https://help.k2.com/onlinehelp/k2blackpearl/userguide/4.7/default.htm#K2_Management_Site/Authentication/OAuth.htm,

Outbound Authorization and OAuth in K2: https://help.k2.com/kb002028,

How To: Configure OAuth in K2: https://help.k2.com/kb001702.

Best,

Sunrise

Hello @Madhu ,

Please review the content bleow :

Authentication and Authorization in K2

https://help.k2.com/kb002026

Configure AAD and K2 Services for Inbound OAuth

https://help.k2.com/kb002784

All the best.

Hi Madhu,

Kindly take a look at some helpful links below in regards with your query

Configure AAD and K2 Services for Inbound OAuth

https://help.k2.com/kb002784

Claims and OAuth Configuration for SharePoint

https://help.k2.com/onlinehelp/K2Five/ICG/5.3/default.htm#Configure/ClaimsOAuth.htm

Introduction to OAuth

https://help.k2.com/onlinehelp/K2Five/ICG/5.3/default.htm#Plan/Authentication/Auth-OAuth.htm

Hope this helps

Cheers,

Kate

Userlevel 4

+13

Hi @Madhu ,

This sounds like a permissions-related issue. I suggest checking whether you have at least Read permissions to access the SharePoint list/library where the SmartObjects are created from. Either grant the user explicitly or ensure that the user is a member of the SharePoint group which has the appropriate permissions.

Understanding permissions levels in SharePoint:

https://docs.microsoft.com/en-us/sharepoint/understanding-permission-levels

Regards,

Kimberly

K2 will not accept any liability for any issues arising from actions taken in respect of information provided by any forum member.