SharePoint - Grant permission

Declaration

Description: Adds a user or group to an existing role assignment.

Practical Usage

To grant a user or group permission to securable content, you create a role assignment then set the user or group for the role assignment, add the appropriate role definitions, and add the object to the collection of role assignments for the securable object.

Parameters

Connection

Property	Type	Required	Default	Markup	Description
Connection	---	---	---	---	Indicates where this activity's SharePoint credentials should originate from. This is a design-time parameter used only during task construction, thus, contains no properties or markups. The available options are: Host - Specifies that a custom set of credentials will be entered for this activity. This option is normally selected if only a single SharePoint activity is required to complete the operation. Session - Specifies that credentials should derive from a session created in a previous Create session step. This allows several activities to be linked to a specific session, eliminating redundancy. Multiple sessions can exist within a single task, allowing several SharePoint operations to be automated simultaneously.
Session	Text	Yes if Connection set to Session	SharePoint Session1	SESSION="mySession1"	The name of the session to associate this activity with. This parameter is active only if the Connection parameter is set to Session. The default value is SharePointSession1. NOTE: Use the End Session activity to end an active SharePoint session.
Version	Text (options)	Yes if Connection set to Host	SharePoint 2010	VERSION="sharepointonline" VERSION="sharepoint2010" VERSION="sharepoint2007"	The SharePoint version to associate with this session. The available options are: SharePoint Online - A cloud-based service, hosted by Microsoft as an alternative to installing and deploying SharePoint Server on premises. SharePoint 2010 and newer (default) - SharePoint version 2010 or newer - includes SharePoint Foundation 2010/2013 and SharePoint Server 2010/2013. SharePoint 2007 and older - SharePoint 2007 version - includes Windows SharePoint Services (WSS) v3 edition and Microsoft Office SharePoint Server 2007 (MOSS 2007) edition. NOTE: Some SharePoint activities are only supported in SharePoint 2010 or newer.
Site	Text	Yes	(Empty)	SITE="http://myServer/tech"	An existing SharePoint site to associate with this session. SharePoint sites are, functionally, ASP.NET 2.0 web applications that are served using IIS and a SQL Server database as a data storage back end. Active only if the Version parameter is set to SharePoint Online or SharePoint 2010 and newer.
Authentication type	Text (options)	No	Basic	AUTHTYPE="form" AUTHTYPE="anonymous" AUTHTYPE="basic" AUTHTYPE="digest" AUTHTYPE="proprietary" AUTHTYPE="ntlm"	The method of authentication to use. Certain parameters become active depending on which authentication method is selected. Authentication types vary depending on the SharePoint version. Below lists available authentication methods and their compatibility. Default - Compatible with SharePoint 2010 or newer. Form - Compatible with SharePoint 2010 or newer. Anonymous - Compatible with SharePoint 2010 or newer. Basic - Compatible with all SharePoint versions. Digest - Compatible with SharePoint 2007 or older. Proprietary - Compatible with SharePoint 2007 or older. None - Compatible with SharePoint 2007 or older. NTLM - Compatible with SharePoint 2007 or older.
Username	Text	Yes	(Empty)	USERNAME="theUserName"	A valid SharePoint username. This parameter may or may not be active depending on which option is selected under the Authentication type parameter.
Password	Text	Yes	(Empty)	PASSWORD="encryptedText"	A valid SharePoint password. This parameter may or may not be active depending on which option is selected under the Authentication type parameter.
Domain	Text	Yes	(Empty)	DOMAIN="myServer"	The domain that the username (specified in the Username parameter) belongs to. This parameter may or may not be active depending on which option is selected under the Authentication type parameter.
Certificate	Text	No	(Empty)	CERTIFICATE="C:\Temp\file.cer"	The (DER encoded) certificate to use for SharePoint authentication. This parameter may or may not be active depending on which option is selected under the Authentication type parameter.
Ignore invalid certificate	Yes/No	No	No	IGNOREINVALIDCERTIFICATE="yes"	If set to YES, specifies that invalid server certificates that are detected will be automatically ignored. Set to NO by default.
Timeout (seconds)	Number	No	600	TIMEOUT="500"	The total number of seconds allowed to connect to the SharePoint server, otherwise a time out error is generated. The default value is 600 seconds.
Proxy type	Text (options)	No	Default	PROXYTYPE="none" PROXYTYPE="http"	The proxy type to use. Required for SharePoint connections that pass through a proxy server. The available options are: System default (default) - Points to the default proxy used by the system. None - No proxy authentication required. HTTP - Proxy type is HTTP.
Use authentication	---	---	---	---	If enabled, specifies that proxy authentication is required, enabling authentication-based parameters (disabled by default). This is a design-time parameter, therefore, contains no properties or markups. It is active only if the Proxy type parameter is set to HTTP.
Proxy server	Text	No	(Empty)	PROXYSERVER="proxy.host.com"	The host name (server.domain.com) or IP address (xxx.xxx.xxx.xxx) of the proxy server. This parameter is available only if the Proxy type parameter is set to HTTP.
Proxy username	Text	No	(Empty)	PROXYUSERNAME=username	The proxy username to authenticate with. This parameter is available only if the Use Authentication parameter is enabled.
Proxy password	Text	No	(Empty)	PROXYPASSWORD="encrypted"	The proxy password to authenticate with. This parameter is available only if the Use Authentication parameter is enabled.
Proxy port	Number	No	808	PROXYPORT="8080"	The port that should be used to connect to the proxy server. The default port is 8080. This parameter is available only if the Proxy type parameter is set to HTTP.

Role

Property	Type	Required	Default	Markup	Description
Role Name	Text	Yes	(Empty)	LIST="theRoleName"	The name of the role assignment in which to add the user or group to.
User Logon	Text	No	(Empty)	LOGIN="theLoginName"	If this option is enabled, specifies the user login name of the user in which to add to the role assignment. If this options is selected, the Group ID parameter is ignored.
Group ID	Text	No	(Empty)	ID="theGroupID"	If this option is enabled, specifies the group ID of the group in which to add to the role assignment. If this options is selected, the User Logon parameter is ignored.

Description

Error Causes

On Error

Example

NOTE: The sample AML code below can be copied and pasted directly into the Steps panel of the Task Builder.

Example 1

Adding a group to a role assignment.

Example 2

Adding a user to a role assignment.

This help file is for the Advanced Workflow Engine v10. For other versions, please refer to http://help.globalscape.com/help/index.html

(If the Index and Contents are hidden, click the icon in the top left corner.)

If this help topic did not help you, try searching the Knowledgebase.
For the most up-to-date information, to view version history, updates, and activation instructions, visit the Support Center at http://www.globalscape.com/support-home.
For information about Globalscape, visit www.globalscape.com.

Last modified: 28-Jun-19 at 14:01:29