Checking user permission doubt

Similar Messages

• Check user permission level using jquery/javascript

  On a sharepoint page I need to check permission level for a user and based on permission level he is having i need to hide few elements on that page.any pointers on how to check user permission level using jquery/javascript.
  for eg: i need to do something like this
  if(userpermissionlevel=="custom read"){//hide some elements}
  Any pointers will be helpful.

  Try below
  function checkifUserHasEditPermissions()
  context = new SP.ClientContext.get_current();
  web = context.get_web();
  this._currentUser = web.get_currentUser();
  context.load(this._currentUser);
  context.load(web,'EffectiveBasePermissions');
  context.executeQueryAsync(Function.createDelegate(this, this.onSuccessMethod), Function.createDelegate(this, this.onFailureMethod));
  function onSuccessMethod(sender, args)
  if (web.get_effectiveBasePermissions().has(SP.PermissionKind.editListItems))
  //User Has Edit Permissions
  http://social.technet.microsoft.com/Forums/sharepoint/en-US/f21ad6b1-445a-497d-a286-d3ba8c2928a6/how-to-get-the-current-user-permission-level-on-a-list-item-with-ecmascript
  or
  http://stackoverflow.com/questions/22122139/check-if-current-users-belongs-to-sp-group-using-javascript-client-side-object-m
  http://blog.fidelityfactory.com/2011/11/29/sharepoint-client-ecma-script-check-user-permissions/

• Disappearing user permission

  Hi
  Yesterday I was called by one our sharepoint user and he told me that he does not have access to a folder from library. The day before he had access to this folder. To find out what happed with user permission I ran Security Audit Report on Sharepoint and
  did not find some security modification for this folder. That folder has broken permission .  Could you tell me what could cause user disappearing from folder permision ??
  We use Sharepoint 2010 SP2.
  Thanks

  You may have:
  1- An automated agent reseting permissions (a software, a script...)
  2- A corrupted NTFS object
  3- Another administrator on your company (maybe he's created a thread to report misteriously permissions appearing)
  Either way, auditing permission changes will do the trick. Proceed as follows:
  1- Enable auditing for oject access (secpol.msc or via policy)
  2- In the folder's security tab click on advanced, auditing.
  3- Click on Add, type Everyone and click OK.
  4- In Apply onto, select "this folder only"
  5- Check "change permissions" for successful and failed.
  6- OK
  Permission changes will appear in security event log.
  reference url
  https://social.technet.microsoft.com/Forums/windowsserver/en-US/c17ba53a-5919-4327-a9b9-727d6be299eb/permissions-disappearing-from-folders
  Thanks
  Jaison A
  http://infomoss.blogspot.in

• Show link based on user permission

  hello ,
  i have a user control that display a simple link to a list and i would like to show link only for users who have access to the list.
  if the user has not access to list , he should no see the link.
  How to reach my goal ? 
  Thanks

  You can use JavaScript client object model code to check the permissions of the user on the list. Specifically, you will need to check for viewListItems permissions. Here is a smple code to get permissions of the user on the list.
  Note that this code will retrieve the current user's permissions. 
  var list
  function getUserPermissions() {
  var clientContext = SP.ClientContext.get_current();
  list = clientContext.get_web().get_lists().getByTitle('L5'); clientContext.load(list, 'EffectiveBasePermissions'); clientContext.executeQueryAsync(onQuerySucceeded, onQueryFailed);}
  function onQuerySucceeded() {
  if(list.get_effectiveBasePermissions().has(SP.PermissionKind.viewListItems)) {
  //Show link
  else {
  //Don't show link
  function onQueryFailed(sender, args) {   
  alert('Request failed. ' + args.get_message() +  '\n' + args.get_stackTrace());
  SP.SOD.executeFunc('sp.js', 'SP.ClientContext',getUserPermissions);
  However, if you are comfortable with Server side object model code, you can use:
  var currentUser = SPContext.Current.Web.User;
  SPList.DoesUserHavePermissions(currentUser, SPBasePermissions.ViewListItems);
  See this for more information: http://www.mindfiresolutions.com/Checking-current-users-permission-on-a-SharePoint-list-using-C-1642.php
  Nadeem Yousuf

• Check User Can Access the site collection Are Not?

  Hi All 
  I have some requirement to check user can access site are not through powershell?
  Recently we done migration from 2010 to 2013 SP after that i got some problem some users can not access site  but this user have permission in sp 2010 site .
  Regarding this i need to check specific user can loing or Access  the site collection are not. using powershell
  Some one said impersonate user we can check user can open the web are not but i don't know this impersonate.
  Please help me guys.... 

  Hi,
  You can check the permission for specific user with powershell. Here is the link. Hope this will help.

• Check user entry in Customer Exit Variable in i_step2

  Hi Folks,
  at the moment I'm facing a challenging problem. In an BW Query i have a Customer Exit defined as "not ready for Input" to catch the Variable in I_Step = 2 and fill by a certain algorithm. When i change the CE Variable to "Inputready", the user can enter values, but i have no chance to react on these values as i_step = 2 will not b reached during execution- And this behaviour is correct. BUT is there any chance to Check user entries in an Customer Exit variable and change this somehow in des code?
  Thanks for all replies.
  BR,
  Maik

  Hi there,
  It is possibel depending on what you wish to accomplish.
  You can create two variables for the same characteristic.
  The first is an input ready variable for the user to enter the data and the second is a not input ready variable CE where you can in step 2 process the data entered from the variable ready for input.
  You can than fill the CE variable with any data, but you will have the variable restricted by the two variables (the ready for input and the CE).
  But for validating you could throw an error message based on the variable input ready.
  Diogo.

• I purchased a IMac in Feb later I added a Seagate ext. hard drive. On April 29 I received an errors that the ext. Drive may be a read only and not backing up files. I'm unable to check disk permission or correct errors. Help would be appreciated.

  I purchased a IMac in Feb later I added a Seagate ext. hard drive. On April 29 I received an errors that the ext. Drive may be a read only and not backing up files. I'm unable to check disk permission or correct errors. Help would be appreciated.

  Click on the hard drive on the desktop, then File > Get Info. What does it say about permissions?  If this is just a data drive you may want to consider "ignore ownership on this volume".
  Otherwise I can only say I have not been reading good things about Seagate drives recently.  I have some of their rock-solid ones from about 10 years ago (still running well), but now...?

• End user permission ignored

  Hello,
  I have a problem with an end user permission that seems to get ignored: I wanted to demonstrate the usage of the end user permission and assigned a role to a User (for simplicity's sake as an entry point, no worksets, pages etc. involved) and enabled end user permission on the role for that particular user.
  Now when that user logs in he gets to see the according entry in the navigation bar as expected. However if I disable the end user permission, log out and again log in the user, he stills sees the link. The end user permission setting is simply ignored. Can someone shed light onto this, could there be something wrong with the installation)?
  I don't think this is an issue of permission inheritance (the role permissions are set explicitly anyway) or overlapping permissions due to membership in several groups - the user is only member of the single standard  group 'authenticated users'.
  Regards,
  Sebastian
  P.S. What's the use of a role assignment to a user without end user permission anyway (I mean why the option)? What happens if you don't add permissions on a Role for a certain user at all (I tried it, but the effect is the same as described above - end user permission seem to be irrelevant)?

  Hi Robert,
  thanks for your answer and for the link (and I thought I had read everything). I am not so sure however if I really understand the term 'runtime environment' for a user. I thought runtime vs. design-time meant the difference between the content a user sees when he is actually using the portal and the content an administrator has access to in the portal content catalog, i.e. a meta-environment accessible only through certain tools like the permission editor or similar.
  I don't understand what you want to express with "<i>It's used to restrict ... end user runtime environment</i>" and why the "Page Personalization" is an example.
  I realize that for roles the availability for a user is solely defined by the assignment of that role to the user - end user permissions have no effect on this. Confusing, because I tought this availability (i.e. showing links in the toplevel or detailed navigation) was what was meant by 'runtime environment' but I seem to be wrong here.
  The docu says "<i>for roles the end user permission setting does enable you to define which users/groups/roles are able to preview the role content using the portal design-time tools</i>". Again, I am confused, I thought this was exactly the meaning of design-time environment.
  Great if you or someone else could comment on this..
  Regards,
  Sebastian

• Document search error in webshop(Error in authorization check: user unknow)

  Hi All
  actually we have implemented the document search functionality in webshop to access all the documents in webshop who have created order in the webshop.
  actually when i am logging into the portal with userid "skumar" after that there was role called "Document Search" when i click that document search role then the document search will be opened, based on the selections in the selection criteria then the documents will be displayed generally.
  actually come to my error when i select in the selection criteria "order acknowledgement" and i select the one more column called "period" after that i click the search button then i am getting the error as follows.
  <b>Error in authorization check: user unknown.</b>
  Can you please help me where to check the authorizations in the system for accessing the documents.
  Regards
  Sunil

  Hi Sunil generally this kind of error will occur when you choose acknoledgement
  for Future Periods,eventhough input is past date if the same problem occurs you should check for Su05 Internet USer authoriasations
  Reward if helpful
  Venkat

• To extract the users permission on files and folders in sharepoint 2010 using client object model

  To extract the users permission on files and folders in sharepoint 2010 using client object model

  Hello,
  This is sample code to get item level permisison: (Just written in notepad so it is not tested)
  public void ItemLevelPermission()
  SecurableObject curObj = null;
  ListItem curItem = ctx.Web.Lists.GetByTitle("LibraryName").GetItemById(ItemId); -> Use Id of file or folder.
  IEnumerable roles = null;
  roles = ctx.LoadQuery(
  curObj.RoleAssignments.Include(
  roleAsg => roleAsg.Member,
  roleAsg => roleAsg.RoleDefinitionBindings.Include(
  roleDef => roleDef.Name, // for each role definition, include roleDef’s Name
  roleDef => roleDef.Description)));
  ctx.ExecuteQuery();
  Hope it could help
  Hemendra:Yesterday is just a memory,Tomorrow we may never see
  Please remember to mark the replies as answers if they help and unmark them if they provide no help

• Limited-access user permission lockdown mode and allowing anon users to view list items

  I'm working on setting up a public-facing SharePoint website that will need to support anonymous user access. I'm using the Enterprise Publishing Portal site collection template, so the Limited-access user permission lockdown mode feature is turned on.
  Everything is working great, except allowing users to view a list item. One of the key features I was hoping to leverage was the ability to display custom lists on a web page using a List View web part. Then they could click on an item and see the DispForm.aspx
  so the item's content was accessible, including any file attachments.
  A real-world example is adding an RSS viewer web part to the home page and allowing anon users to click on one of the events to see the details of it. Currently, in lockdown mode, the users gets an authentication prompt. 
  I toyed with the idea of turning the lockdown feature off. However, I'm uncertain of the full impact that would have on security. For example, I know it will allow anonymous users to see who created and modified an item, which we don't want exposed to the
  public (i.e. our employee names). Seems like opening a can of worms by disabling the lockdown mode... 
  Any ideas on how to tackle this would be greatly appreciated.

  So far, this is the most promising solution I've come across:
  http://soerennielsen.wordpress.com/2012/05/29/how-to-make-list-items-visible-to-anonymous-users-in-search

• How to menage user permission

  Hi all!
  I'm developing a WEB application for menaging the information on the inside of an industry.
  I use struts and JSF.
  The problem is that I've different type of user that can connect to the server. (sell manager, engeneer, custumer, segretary...)
  Every kind of user must have a diffrent level of access.
  Example:the secretary can't access in the "engeneer" zone.
  Another problem is:
  for the same page,the user must see a different level of details.
  Example:in the production page,the engeneer must see all the data,the chemical analist must see only the chemical analisis,and so on...
  how can I structure the DB for managing that?
  And how can I implement it?
  What do you think about creating a level between the DAO to data and the application.
  Every data have a specific permission to be see.
  When a request for see the data comes,I match the required permission with the user permission.
  If the user can't access to data, I throw an exception,that is catch above.
  Anybody knows of any kind of articles on this argument?
  Any advice?
  sorry for my english.

  Can I revoke this permissions once I grant?
  You can use DROP and REVOKE commands to do the opposite.
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentOperatorRole] DROP MEMBER [TestLogin1]
  GO
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentReaderRole] DROP MEMBER [TestLogin1]
  GO
  USE [msdb]
  GO
  ALTER ROLE [SQLAgentUserRole] DROP MEMBER [TestLogin1]
  GO
  use [master]
  GO
  REVOKE ALTER ANY CREDENTIAL TO [TestLogin1] AS [sa]
  GO
  Cheers,
  Vaibhav Chaudhari
  [MCTS],
  [MCP]

• Can't Check User rights in CMC

  Post Author: jayh
  CA Forum: Administration
  We have a new installation of Business Objects Enterprise Xi.
  When trying the Check User (or group) Rights screen, we can select the target, however when we click 'Show Rights' we get an error:
  Retrieve Error
  There was an error while retrieving data from the server: One or more arguments are invalid
  Other screens in CMC are working properly. What could be causing this?
  Jay Holovacs
  ASCO Valve Inc.

  Post Author: gjelley
  CA Forum: Administration
  try downloading the service pack2 fixes
  ADAPT00747233 FixPack2.2Description:In Crystal Reports Server, when the "Show rights" option for a user account is clicked, the following error message appears:There was an error while retrieving data from the server: One or more arguments are invalid.New Behavior:This problem is resolved.Components:win32_x86CMSAdmin.dll

• Installing iTunes after registry user permission error

  I'm just going to keep this simple. I ran CCleaner and cleaned the registry, then i ran Glary Utilities to clean up whatever CCleaner couldnt. THEN I downloaded iTunes from the apple website. I used winrar and extracted the install into a folder. I removed Bonjour64 from the folder and ran iTunes64. This bypassed Bonjour64 and installed iTunes flawlessly. When when I first opened iTunes it told me Bonjour64 needs to be running in my services...ingore it and continue. Bonjour64 is already running as it wont uninstall from windows when you have the innsufficient user permission error on the registry so its still installed. iTunes opened and I was able to use it as if the error never existed. Hope this helps! (ps after using other peoples tecniques i found that no-one elses worked without reinstalling windows...so I set out for my own solution.)
  -Toast

  Hi,
  Try diactivating your antivirus software. This seems to work for alot of people. Tell me if this works for you as well.
  xxmitchxx90

• Check user role/authorization during Web report run-time?

  Hello again,
  I ran into a problem. I need to check <b>user's authorization during webtemplate execution (run-time)</b>. I want to have a possibility to allow in one web template extra functionality (through template menu) to key users. Normal users, who are running same report, should not have this extra menu visible.
  Is it possible to check user authorizations or roles during web-template run-time?
  Thank you!
  Vitaliy

  Hi Harinam,
  From my logic your are right.
  The restriction is in two new roles (Requestor and Approver role).
  But ->
  If I assign my approver role the selection possiblities of the request types during the AR creation is restricted and the AR search function does not work.
  If I assign my requestor role the restriction of the request type is not there, but the AR search function works again. :-(
  If I assign the original approver role of sap I have the same behavoiur for the AR search.
  Both new roles are a 1:1 copy of the SAP standard roles - > Exception, ristriction on request type 'Execption Approval' is not displ.
  I have execute ST01 now. If I try to open the log, the system syst "No records that correspond to these search criteria".
  But I have found something else.
  The problem appears only if I search for Process ID "Access Request Approval Workflow".
  If I select other Process ID such as "Control Assignment Approval Workflow" or "Fire Fighter Log Report Review Workflow", everything works fine.
  Very strange!
  BR
  Melanie