Security Scopes

When you absolutely have to use unique permissions while building SharePoint applications; do it the fastest way possible.

In the case of an application where every item in a list is meant to have broken inheritance and uniquely assigned permissions you see a lot of guys doing this. A case where you passed the BreakRoleInheritance method a value of true then looped over the ACL collection of SPRoleAssignments to strip everything off.


Figure 1.

A much more scalable practice is to pass false to the BreakRoleInheritance method.


Figure 1.

Here’s a great post on what Unique Permissions really mean in SharePoint; “Clarify the Security Scope limits in SharePoint lists,” Joel Plaut 2012. Regarding the limit of unique permissions a List can contain be 50k; “The limit is not the unique combinations of ACLs, but instead the number of times permissions has been broken from a parent.”

Of course the moral of this story is to build SharePoint apps that don’t use unique permissions. But when you have to, do it fast.

Posted in sharepoint

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Activity

  • Lunch Run
    On January 3, 2018 11:07 am rode 3.00 mi. during 00:30:00 hours climbing 0.00 ft.
  • Yoga
    On January 2, 2018 8:13 pm rode 0.00 mi. during 01:00:00 hours climbing 0.00 ft.
  • Treadmill
    On January 2, 2018 11:45 am rode 3.00 mi. during 00:30:00 hours climbing 0.00 ft.
  • Weight training
    On November 13, 2017 4:00 am rode 0.00 mi. during 00:30:00 hours climbing 0.00 ft.
  • Weight lifting
    On November 7, 2017 1:10 pm rode 0.00 mi. during 00:30:00 hours climbing 0.00 ft.
  • Afternoon Walk
    On November 3, 2017 5:00 pm rode 1.10 mi. during 00:20:00 hours climbing 0.00 ft.