You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/solution-guidance/security-apponly.md
+4-2Lines changed: 4 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: Accessing SharePoint using an application context, also known as app-only
3
3
description: Accessing SharePoint using an application context, also known as app-only
4
-
ms.date: 04/22/2020
4
+
ms.date: 03/03/2022
5
5
ms.prod: sharepoint
6
6
author: vesajuvonen
7
7
ms.author: vesaj
@@ -12,10 +12,12 @@ ms.localizationpriority: medium
12
12
# Accessing SharePoint using an application context, also known as app-only
13
13
14
14
There are two approaches for doing app-only for SharePoint:
15
+
15
16
- Using an **Azure AD application**: this is the preferred method when using SharePoint Online because you can also grant permissions to other Office 365 services (if needed) + you’ve a user interface (Azure portal) to maintain your app principals.
16
17
- Using a **SharePoint App-Only principal**: this method is older and only works for SharePoint access, but is still relevant. This method is also the recommended model when you’re still working in SharePoint on-premises since this model works in both SharePoint on-premises as SharePoint Online.
17
18
18
19
Both methods are detailed in following articles:
20
+
19
21
-[Granting access via Azure AD App-Only](security-apponly-azuread.md)
20
22
-[Granting access using SharePoint App-Only](security-apponly-azureacs.md)
21
23
@@ -25,7 +27,7 @@ App-Only does not work in following cases:
25
27
26
28
- Updating taxonomy service entries (write) - read works
27
29
- Creating modern team sites does not support app-only when you [use the SharePoint API](https://github.com/SharePoint/PnP-Sites-Core/blob/master/Core/OfficeDevPnP.Core/Sites/SiteCollection.cs) for it. When modern team sites are created [using Microsoft Graph](https://github.com/SharePoint/PnP-Sites-Core/blob/master/Core/OfficeDevPnP.Core/Framework/Graph/UnifiedGroupsUtility.cs) to create the group then app-only is a supported scenario
28
-
- Creating communication sites is supported in app-only context, but owner property is required. [using the SharePoint API](https://docs.microsoft.com/sharepoint/dev/apis/site-creation-rest)
30
+
- Creating communication sites is supported in app-only context, but owner property is required. [using the SharePoint API](/sharepoint/dev/apis/site-creation-rest)
29
31
- Search when using SharePoint On-Premises. SharePoint Online support for it has been added ([blog post](https://blogs.msdn.microsoft.com/vesku/2016/03/07/using-add-in-only-app-only-permissions-with-search-queries-in-sharepoint-online/))
30
32
- User Profile CSOM write operations do not work with **Azure AD application** - read operations work. Both read and write operations work through **SharePoint App-Only principal**
31
33
- User Profile Bulk Update API can be used with app-only permissions
0 commit comments