cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
EliasMerabet
Advocate II
Advocate II

Give Access to Power APP and its Sharepoint List problem

‎10-26-2021 06:02 AM

Hello Team,

 

After share my Power APP with my colleagues, I had to grant access to them to a few Sharepoint Lists. I manage the access to the lists inside the APP. But If the user get the Sharepoint List URL, doesn´t he change the lists outside the app? That could be problematic for me.

 

Thanks

Message 1 of 6
755 Views
0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
Pstork1
Dual Super User
Dual Super User

‎10-26-2021 06:09 AM

Unfortunately, that is the way Power Apps is designed to work.  Power Apps is not a security layer so users need to have whatever permissions are necessary in the app for the back end data source.  You can't use SharePoint as a data source without giving users access to SharePoint.  So yes, if they get the URL for the list they would be able to bypass the app and make changes directly.  That's the way its designed to work and there is no real way to get around that.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.

Join me at 365 and PWR EduCon in Chicago
EduCon Chicago 2022

View solution in original post

Message 2 of 6
746 Views
5 REPLIES 5
Pstork1
Dual Super User
Dual Super User

‎10-26-2021 06:09 AM

Unfortunately, that is the way Power Apps is designed to work.  Power Apps is not a security layer so users need to have whatever permissions are necessary in the app for the back end data source.  You can't use SharePoint as a data source without giving users access to SharePoint.  So yes, if they get the URL for the list they would be able to bypass the app and make changes directly.  That's the way its designed to work and there is no real way to get around that.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.

Join me at 365 and PWR EduCon in Chicago
EduCon Chicago 2022

Message 2 of 6
747 Views
EliasMerabet
Advocate II
Advocate II

‎10-26-2021 06:10 AM

Thanks @Pstork1 

Message 3 of 6
745 Views
0 Kudos
EliasMerabet
Advocate II
Advocate II

‎10-26-2021 06:10 AM

Does it happen the same with a SQL connection? @Pstork1 

Message 4 of 6
745 Views
0 Kudos
Pstork1
Dual Super User
Dual Super User
In response to EliasMerabet

‎10-26-2021 06:15 AM

Not quite the same. The SQL connector uses a connection account with an embedded ID and password.  The user has access to the connection in Power Apps, but not outside.  So if they have access to create apps in Power Apps they can use the connection to create their own app.  But they have no direct access to SQL outside the Power App.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.

Join me at 365 and PWR EduCon in Chicago
EduCon Chicago 2022

Message 5 of 6
742 Views
EliasMerabet
Advocate II
Advocate II
In response to Pstork1

‎10-26-2021 06:16 AM

@Pstork1 Great! Thanks!

Message 6 of 6
741 Views
0 Kudos

Helpful resources

Announcements
Ignite 2022

WHAT’S NEXT AT MICROSOFT IGNITE 2022

Explore the latest innovations, learn from product experts and partners, level up your skillset, and create connections from around the world.

Power Apps Africa Challenge 2022

Power Apps Africa Challenge

Your chance to join an engaging competition of Power Platform enthusiasts.

View All
Users online (1,566)