cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
EliasMerabet
Advocate II
Advocate II

Give Access to Power APP and its Sharepoint List problem

‎10-26-2021 06:02 AM

Hello Team,

 

After share my Power APP with my colleagues, I had to grant access to them to a few Sharepoint Lists. I manage the access to the lists inside the APP. But If the user get the Sharepoint List URL, doesn´t he change the lists outside the app? That could be problematic for me.

 

Thanks

Message 1 of 6
403 Views
0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
Pstork1
Dual Super User
Dual Super User

‎10-26-2021 06:09 AM

Unfortunately, that is the way Power Apps is designed to work.  Power Apps is not a security layer so users need to have whatever permissions are necessary in the app for the back end data source.  You can't use SharePoint as a data source without giving users access to SharePoint.  So yes, if they get the URL for the list they would be able to bypass the app and make changes directly.  That's the way its designed to work and there is no real way to get around that.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.

View solution in original post

Message 2 of 6
394 Views
5 REPLIES 5
Pstork1
Dual Super User
Dual Super User

‎10-26-2021 06:09 AM

Unfortunately, that is the way Power Apps is designed to work.  Power Apps is not a security layer so users need to have whatever permissions are necessary in the app for the back end data source.  You can't use SharePoint as a data source without giving users access to SharePoint.  So yes, if they get the URL for the list they would be able to bypass the app and make changes directly.  That's the way its designed to work and there is no real way to get around that.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.
Message 2 of 6
395 Views
EliasMerabet
Advocate II
Advocate II

‎10-26-2021 06:10 AM

Thanks @Pstork1 

Message 3 of 6
393 Views
0 Kudos
EliasMerabet
Advocate II
Advocate II

‎10-26-2021 06:10 AM

Does it happen the same with a SQL connection? @Pstork1 

Message 4 of 6
393 Views
0 Kudos
Pstork1
Dual Super User
Dual Super User
In response to EliasMerabet

‎10-26-2021 06:15 AM

Not quite the same. The SQL connector uses a connection account with an embedded ID and password.  The user has access to the connection in Power Apps, but not outside.  So if they have access to create apps in Power Apps they can use the connection to create their own app.  But they have no direct access to SQL outside the Power App.



-------------------------------------------------------------------------
If I have answered your question, please mark your post as Solved.
If you like my response, please give it a Thumbs Up.
Message 5 of 6
390 Views
EliasMerabet
Advocate II
Advocate II
In response to Pstork1

‎10-26-2021 06:16 AM

@Pstork1 Great! Thanks!

Message 6 of 6
389 Views
0 Kudos

Helpful resources

Announcements
PA Virtual Workshop Carousel 768x460.png

Register for a Free Workshop

This training provides practical hands-on experience in creating Power Apps solutions in a full-day of instructor-led App creation workshop.

Microsoft Build 768x460.png

Microsoft Build is May 24-26. Have you registered yet?

Come together to explore latest innovations in code and application development—and gain insights from experts from around the world.

May UG Leader Call Carousel 768x460.png

What difference can a User Group make for you?

At the monthly call, connect with other leaders and find out how community makes your experience even better.

View All
Top Solution Authors
View All
Top Kudoed Authors
View All
Users online (1,454)