not the last of his kind
Common coding issues when working with anonymous SharePoint sites
Working with anonymous SharePoint sites can be tricky sometimes. If you’re not careful, your customization codes (Web parts, custom controls, custom pages, etc.) can popup the login dialog box to anonymous users. As anonymous users they don’t have a user account, so obviously they won’t be able to enter their user ID and password. Or it simply produces an error page that either way, prevents anonymous users from accessing your site.
This post addresses some common coding issues when you work with anonymous SharePoint sites, so you can avoid it earlier.
1. Determining whether the current user is an anonymous user
How to check whether the current user is an anonymous user? I may have overlooked it, but as far as I know there is no built-in API methods for this purpose. Fortunately it’s very easy and terse. You can test the value of SPContext.Current.Web.CurrentUser. If it is null then it is accessed by an anonymous user. Here is a sample code:
if (SPContext.Current.Web.CurrentUser == null) { // Anonymous user section } else { // Authenticated user section }
2. Beware when using SPWeb.CurrentUser
As described on the previous point, when an anonymous user is accessing a Site, the value of SPContext.Current.Web.CurrentUser will always be null. Double-check whenever you are using the property. Always make sure that you have checked for the null value, or you will end up getting the nasty “System.NullReferenceException – Object reference not set to an instance of an object.” exception.
3. Anonymous user does not have a user profile
It is an obvious yet easily overlooked one. It is a common practice to utilize the UserProfile API to store user’s personalization. Since an anonymous user does not have a user profile, provide another mean to store his/her personalization data. It could be SharePoint lists, database tables, files, or even browser cookies.
4. Working with the Publishing Feature API
I’m referring to the API under the Microsoft.SharePoint.Publishing assembly and namespace. I haven’t checked all of the API members, but not all will work with anonymous users. For example, the PublishingWeb.IsPublishingWeb(SPWeb web) works, but the PublishingWeb.GetPublishingWeb(SPWeb web) doesn’t. In fact, it will prompt the anonymous user to login by entering the user ID and password. The workaround is get an elevated SPWeb instance that has the System Account’s credential and then use the GetPublishingWeb() method on that instance. The following snippet illustrates it:
var currentWeb = SPContext.Curent.Web; // the method is available to anonymous users if (PublishingWeb.IsPublishingWeb(currentWeb)) { SPSecurity.RunWithElevatedPrivileges(delegate() { using (var site = new SPSite(curentWeb.Url)) { using (var web = site.OpenWeb()) { // the method is not available to anonymous users var pubWeb = PublishingWeb.GetPublishingWeb(web); // Do something with pubWeb } } }); }
I will update this post when I find more things related to anonymous SharePoint sites. Please leave a comment if you have something to contribute, too.
| Print article | This entry was posted by denni on June 8, 2010 at 5:09 pm, and is filed under Programming. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |
No trackbacks yet.
InfoPath 2010 breaks SharePoint 2007 installation
about 2 months ago - 1 comment
Last time I wrote that the stsadm -o copyappbincontent command didn’t work if you had installed Office 2010 on the same machine with your SharePoint 2007. Later I found the same problem on more scenarios:
When running the stsadm -o copyappbincontent command.
When attaching a content db to Web application.
When running the psconfig command or running the More >
Office 2010 breaks stsadm -o copyappbincontent
about 3 months ago - 3 comments
*Update: InfoPath 2010 is the real cause, please check this post.
I love Microsoft Office 2010. It’s more beautiful and faster than Microsoft Office 2007. I downloaded and installed the product immediately after its RTM version arrived on the MSDN download page. I even installed it on my Windows Server 2003 virtual machine that runs More >
Flowchart: which open source license should I use?
about 3 months ago - 1 comment
This is a common question when one wants to publish a new open source project, especially if he/she is new to open source licensing scheme. The many available choices of the license can be very confusing and many people simply pick a license without really understanding the meaning or the clauses in the license. More >
System.Net.WebException: An exception occurred during a WebClient request
about 4 months ago - No comments
When using either WebClient or HttpWebRequest to download file from a remote location, sometimes I got the following exception:
System.Net.WebException: An exception occurred during a WebClient request
For some reasons, IIS (the Web server) may deny to serve a request that doesn’t specify the user-agent property in the request header. So, although it’s not really obvious, this More >
Typing ASCII or accented characters in Linux rdesktop
about 5 months ago - No comments
My thin-client desktop is running Debian Linux with the Gnome window manager. When I use it to connect to my Windows Server VM using rdesktop, I usually get a problem when trying to type ASCII or accented (French) characters. For example, when typing Alt 130, I am expecting to get the é character. Instead, it’s More >
A singleton base class to implement the singleton pattern in C#
about 6 months ago - No comments
The singleton design pattern is one of the most controversial pattern. Some people even call it anti-pattern, evil, or stupid. I won’t go into the debate now, but I just want to share something for those who need to use singletons.
Although it is one of the easiest pattern to understand, it is also very easy More >
LiquidSilver switches to Mercurial on CodePlex
about 6 months ago - No comments
As you may have noticed, CodePlex now supports Mercurial as the source control. Mercurial is a free and distributed version control system. It’s currently gaining a high momentum that big projects like Mozilla, OpenSolaris, OpenOffice.org, Symbian OS, and many others are now using it. Aside from CodePlex, other project hosting sites like Google Code, bitbucket, More >
Refreshing the LINQ to SQL DataContext by Clearing the Cache
about 7 months ago - No comments
LINQ to SQL DataContext can sometimes be difficult to deal with. Especially when combined with the use of stored procedures. For example, there is a case where I want to delete multiple records with a stored procedure rather than using the LINQ to SQL API for performance reason. After executing the stored procedure, the DataContext More >
LiquidSilver 0.1.0.0 Released
about 8 months ago - No comments
LiquidSilver 0.1.0.0 has been released on Codeplex. This is still a beta version but the functionalities are quite complete and I have used many parts of it in production environment.
If you want to try it, you can download the code and binary from Codeplex. Kindly submit bug reports to the issue tracker.
If you haven’t done More >
Working with SharePoint Lists in LiquidSilver
about 8 months ago - No comments
In this post, I’ll cover some common operations on SharePoint lists which you can simplify with LiquidSilver. For this purpose, I continue using the Actors list we created earlier.
1. Clearing all items in a list
One day, Katie — one of Tom’s client — came by and asked whether she could empty the Actors list in one More >
about 1 month ago
Hi,
your article helped in solving my errors…Thanks !
Keep up the good work