cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
BP-PT
Helper III
Helper III

SharePoint: Breaking Folder Inheritance and Applying manual permissions

‎03-07-2022 03:42 AM

Hello,

 

I've got a flow that creates a parent folder in SharePoint with some child folders. That works okay. However, I cannot get it to break inheritance from some of the child folders.

 

Please see below example. Trying to break inheritance against the following folder in the example:

Shared Documents/<automatically created parent folder>/Administration

 

BPPT_0-1646653241558.png

 

Would really appreciate any help.


Thanks!

 

Labels:
Message 1 of 15
459 Views
0 Kudos
14 REPLIES 14
fchopo
Super User
Super User

‎03-07-2022 07:41 AM

Hi @BP-PT 

That should work! What's exactly your problem? Is with this single folder?

Regards,

Ferran

Did I answer your question? Please consider to mark my post as a solution to help others.
Proud to be a Flownaut!
Message 2 of 15
414 Views
0 Kudos
BP-PT
Helper III
Helper III
In response to fchopo

‎03-07-2022 08:48 AM

Hi @fchopo 

 

Thanks for your response.

 

Here's the error I get:

 

The expression "web/lists/getByTitle('Shared Documents/NewFolder')/items(Administration)/breakroleinheritance(true)" is not valid.
clientRequestId: 8872a491-c14c-42cf-82cc-2b9a1f84beed
serviceRequestId: 2f7727a0-30be-3000-bfec-3ab8aa9f624e

Message 3 of 15
411 Views
0 Kudos
fchopo
Super User
Super User

‎03-07-2022 01:28 PM

Hi @BP-PT 

Could you try using the following expression?:

_api/web/GetFolderByServerRelativeUrl('Shared%20Documents/NewFolder')/ListItemAllFields/breakroleinheritance(copyRoleAssignments=true,clearSubscopes=true)

Hope it helps!

Ferran

Did I answer your question? Please consider to mark my post as a solution to help others.
Proud to be a Flownaut!
Message 4 of 15
406 Views
BP-PT
Helper III
Helper III
In response to fchopo

‎03-08-2022 12:23 AM

Hi @fchopo ,

 

Thank you!! That worked!!

 

So now all I need to do is clear and assign an existing O365 security group to said folder(s). How would you suggest I'd be best achieve that please?

 

Thanks again,

B

Message 5 of 15
404 Views
0 Kudos
fchopo
Super User
Super User

‎03-09-2022 12:58 AM

Hi @BP-PT 

If you want to assign permissions to an O365 security group, you should then use the following expression (POST):

_api/web/GetFolderByServerRelativeUrl('Shared%20Documents/NewFolder')/ListItemAllFields/roleAssignments/addroleassignment(principalid=<your_O365_group_Id>,roledefId=1073741827)


In order to get your_=365_group_id you have to make another call to Graph API using the following expression (GET):

_api/web/siteusers('c:0t.c|tenant|<your_aad_group_id>')


RoleDefId=1073741827 equals to contribute permissions. You can read all role definition id's in the following post: SharePoint Blog: Get SharePoint Role Definition IDs (Out of the box + Custom Permission set) (builds...

You can also have a look at this excellent blog post on how to do that: Setting SharePoint item-level permissions to Azure AD Group with API - NETWORG Blog (thenetw.org)
Hope it helps!

Ferran

Did I answer your question? Please consider to mark my post as a solution to help others.
Proud to be a Flownaut!
Message 6 of 15
397 Views
BP-PT
Helper III
Helper III
In response to fchopo

‎03-09-2022 09:00 AM

Hi @fchopo ,

 

Thanks again for your continued help, much appreciated. Feel like I'm so close to achieving the entire thing now...

 

Please can you advise on what's happening when I'm trying to load the O365 group into the flow before applying that group to have permissions to such folders. I expect I've gone wrong somewhere obvious here, but I'm not familiar with this process at all, so apologies for that:

BPPT_0-1646845117434.png

 

It says bad gateway in the more info around this?

 

Also, how am I able to remove all existing permissions to such a folder first, before just adding to it? Or do the previously mentioned stages you gave me do this all in one go anyway?

 

Thanks,

Billy

 

Message 7 of 15
390 Views
0 Kudos
BP-PT
Helper III
Helper III
In response to fchopo

‎03-11-2022 01:35 AM

Would really appreciate some help with the previous issues I've raised with these steps.. Feels so close to being complete :'( 

 

Thank you!

Message 8 of 15
383 Views
0 Kudos
fchopo
Super User
Super User
In response to BP-PT

‎03-11-2022 01:55 AM

HI @BP-PT 

When making that HTTP Request Post, you need the Office 365 Group id, not the group name (Management):

_api/web/siteusers('c:0t.c|tenant|<your_aad_group_id>')

 You should go the Azure AD and try to get group id there (should be a guid).

Hope it helps!

Ferran

Did I answer your question? Please consider to mark my post as a solution to help others.
Proud to be a Flownaut!
Message 9 of 15
381 Views
0 Kudos
BP-PT
Helper III
Helper III
In response to fchopo

‎03-11-2022 01:57 AM

@fchopo ,

 

Thanks for that. However, I have already done this to no avail.

Message 10 of 15
380 Views
0 Kudos
BP-PT
Helper III
Helper III
In response to fchopo

‎03-11-2022 01:57 AM

Are you able to send me a screenshot of what these parts of a flow should look like. Also means I can make sure that I have the right type of component that I'm using for this part of the flow.

Message 11 of 15
380 Views
0 Kudos
fchopo
Super User
Super User

‎03-11-2022 01:59 AM

Please, share your workflow or the part where you're having problems so we can help you.

Regards,

Ferran

Did I answer your question? Please consider to mark my post as a solution to help others.
Proud to be a Flownaut!
Message 12 of 15
379 Views
0 Kudos
BP-PT
Helper III
Helper III
In response to fchopo

‎03-11-2022 02:47 AM

@fchopo ,

 

Thank you very much!! Please see below.

 

At this point, I have successfully stopped inheritance. Now I am trying to Remove leftover permissions from the initial inheritance and then add a 'Management' group to these folders.

 

BPPT_0-1646995540095.png

BPPT_1-1646995625980.png

 

Message 13 of 15
375 Views
0 Kudos
BP-PT
Helper III
Helper III

‎03-11-2022 08:51 AM

@fchopo ,

 

I've been playing with this flow some more. I think I've made positive progress, but still not quite there. Please see below - I've given some of the earlier components to see how/where it breaks hopefully.

 

BPPT_0-1647017497221.png

 

 

Thanks,

Billy 

Message 14 of 15
365 Views
0 Kudos
BP-PT
Helper III
Helper III

‎03-14-2022 04:45 AM

Hi @fchopo ,

 

Would really appreciate any further advise on this if possible 🙂

 

Thanks,

Billy 

Message 15 of 15
349 Views
0 Kudos

Helpful resources

Announcements
Microsoft 365 Conference – December 6-8, 2022

Microsoft 365 Conference – December 6-8, 2022

Join us in Las Vegas to experience community, incredible learning opportunities, and connections that will help grow skills, know-how, and more.

Difinity Conference 2022

Difinity Conference 2022

Register today for two amazing days of learning, featuring intensive learning sessions across multiple tracks, led by engaging and dynamic experts.

European SharePoint Conference

European SharePoint Conference

The European SharePoint Conference returns live and in-person November 28-December 1 with 4 Microsoft Keynotes, 9 Tutorials, and 120 Sessions.

View All
Users online (4,904)