Sharepoint 2010 Articles

Submit Article
Home » Articles » Sharepoint 2010 » GeneralRSS Feeds

OAuth in SharePoint 2013?

Posted By: Destin Joy     Category: Sharepoint 2010     Views: 443259

To authorize requests by an app for SharePoint to access SharePoint resources on behalf of a user and to authenticate apps in the Office Store, an app catalog, or a developer tenant.

In the case of app authentication, the authentication process verifies a claim that is made by a subject that it should be allowed to act on behalf of a given principal. Apps can be authenticated in several different ways. When a call is made to an app web, for example, unless that call is an OAuth call, the call is attributed to the app associated with the app web. If it is an OAuth call, SharePoint 2013 uses the Windows Azure Access Control Service as the app identity provider. OAuth is one of several ways for an app to be authenticated, but authorization is consistent across all apps, regardless of whether the apps use OAuth.


OAuth 2.0 is an open standard for authorization. OAuth is designed to enable users to provide third

parties with access to their resources without sharing their credentials. Instead of credentials, an OAuth

access token is issued to the third party. The token grants access to a specific resource, on a specific site,

for a defined duration (for example, 30 minutes), on behalf of a specific user. The Microsoft server-toserver

protocol relies on OAuth to share information across server platforms.

For example, suppose a user creates an eDiscovery case in SharePoint. The purpose of the eDiscovery case

is to identify content, both in SharePoint sites and Exchange mailboxes, which must be preserved as part

of a legal hold. In this case, the Exchange server will issue an OAuth token that grants the SharePoint

server access to the required mailboxes for a fixed period of time. In the same way, workflows hosted on

Windows Azure Workflow Server must be able to retrieve data from SharePoint. The SharePoint server will

issue an OAuth token that grants the Windows Azure Workflow Server access to the requested SharePoint

content for a fixed period of time.

It is important to understand that OAuth tokens are issued on behalf of users. When a user action results

in a server-to-server request, the user is effectively authorizing SharePoint to issue an OAuth token on his

or her behalf.


Didn't find what you were looking for? Find more on OAuth in SharePoint 2013? Or get search suggestion and latest updates.

Destin Joy
Destin Joy author of OAuth in SharePoint 2013? is from Pathanamthitta, India. Destin Joy says

 Hello Everyone,

I am Destin Joy from India I have MCPD in SharePoint 2010, MCTS SharePoint 2010 application development and MCTS in SharePoint 2007. I am mostly working in  core part of SharePoint (2010-2007) and passionate about new Microsoft technologies. Born and brought up in Kerala You can reach me  @ Destin.Joy@hotmail.com


View All Articles

Please enter your Comment

  • Comment should be atleast 30 Characters.
  • Please put code inside [Code] your code [/Code].

No Comment Found, Be the First to post comment!