Comments (11)
I'm taking a stab at this one, as my customer has a project that needs extended webapps.
That said, what conditions should trigger the Set method?
Obviously, the Set method will support creating or removing the extended zone based on the ensure property.
But I'm thinking about how to handle other situations... for example, the desired zone exists, but say the host header doesn't match, or the port? I'd rather not modify IIS settings directly for supportability, and I'm thinking in situations like that it may be best for the user to just remove the extended zone and recreate it with desired settings?
thoughts?
from sharepointdsc.
So I think what I want to do with this one is to make Zone name and web app URL the keys for this one, so that if you set Ensure = "present" every other property should be set to match - but those would only be the SharePoint specific bits. Anything to do with settings that are actually set in IIS I think can and should continue to be managed through xWebsite in the xWebAdministration module. Does that make sense?
from sharepointdsc.
make sense... looking at the SPWebApp.IisSettings[[Microsoft.SharePoint.Administration.SPUrlZone] object properties, it looks like we can support changing an existing zone's AllowAnonymous and Kerberos / NTLM auth settings as well. For actual bindings, I agree, leave that with xWebSite.
from sharepointdsc.
Hello,
@MikeLacher448 I saw you started to work on on SPWebAppExtension and it's awesome, but in your current version you allow only Windows NTLM or Kerberos authentication modes.
But:
- it should be possible to set FBA or federated authentication
- it should be possible to combine multiple authentication modes.
In example below, I add both NTLM and federated authentication:
$winAp = new-SPAuthenticationProvider -UseWindowsIntegratedAuthentication
$trust = Get-SPTrustedIdentityTokenIssuer "Proseware"
Get-SPWebApplication http://sp16/ | New-SPWebApplicationExtension -Name "SharePoint - 443" -SecureSocketsLayer -Zone "Intranet" -URL "https://spsites.proseware.com" -AuthenticationProvider $trust, $winAp
Maybe a possible way to implement that would be to use a parameter of type Microsoft.Management.Infrastructure.CimInstance[] in the script (I used that in SPTrustedIdentityTokenIssuer).
Can you please make sure that those scenarios are covered?
from sharepointdsc.
sure, I just did a direct copy / paste from the SPWebApplication resource for the authentication, but this makes perfect sense. I'll see what I can do.
from sharepointdsc.
@MikeLacher448 @Yvand I would rather see us put in the extension option with just the NTLM/Kerb support we have elsewhere as a starting point rather than make Mike slow down here trying to make this one perfect first go. I think we should raise another issue about "Lack of claims support in Web Applications" and track that as a separate piece of work. @ykuijs your thoughts?
from sharepointdsc.
Agreed! But if @MikeLacher448 already has some code in place, lets port leave this in and port it back to the SPWebApplications resource
from sharepointdsc.
I do not have support for claims in place yet, and was just thinking over the weekend that I should commit this resource as-is (once I fix the failing tests ofcourse). That way it can be used for folks (like my current customer), that just need support for an extended web application with Windows Authentication while I (or anyone else who'd like to tackle it) work on adding claims support for a future update.
from sharepointdsc.
I agree that adding support for FBA/Federated authentication should not delay the release of the resource, especially considering that SPWebApplication resource misses it for a while.
But it's a very important feature to integrate in a future version, and I'm very glad that @MikeLacher448 is already working on this for a later release, thanks a lot for this it will be very useful!
from sharepointdsc.
OK I'll raise a new issue to add that claims support in to these resources and we can track that separately to this one.
from sharepointdsc.
Resource created in PR #510
from sharepointdsc.
Related Issues (20)
- [SPFarmPropertyBag] Resource is only able to configure string values HOT 2
- SPDistributedCacheClientSetting: Missing SP2019 and SE Values HOT 5
- SPUserProfileServiceApp: PSDSCRunAsCredential does not become a db_owner
- Pass empty string to parameter HOT 1
- [SPSearchIndexPartition] Regression introduced with with the fix for issue #1376
- [SPProductUpdate] Resource does not support SPSE yet
- [SPProductUpdate] Resource pauses the Search Service
- [SPInstallPrereqs] Multiple instances of the VC++ Redist causes issues
- [SPShellAdmins] Get-SPDatabase cmdlet cannot be found
- [SPConfigWizard] Add possibility to temporarily dismount content databases during config wizard
- SPHybridConfig: New resource proposal HOT 1
- SPTrustedRootAuthority - Error while adding Trusted Root Authority via CertificateThumbprint
- SPInstallPrereqs: sqlncli.msi is no longer required after November 2021 CU HOT 2
- SPPublishServiceApplication - Set-TargetResource does not work
- Issue while exporting the site configurations with certificate thumbprint HOT 2
- [Export] Export doesn't work in SPSE
- [SPFarm] Import-Module SharePointServer causes exception in SharePoint Subscription 23H1 HOT 3
- SPCertificateSettings: Unable to set contacts when previously blank
- Intro and SPSite Enhancement
- DSC Resource HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sharepointdsc.