Life, the universe and whatever

Something to say about most things

Archive for the month “January, 2010”

12 Jan 2010

SUGUK meetings for January 2010

The early signs are good that the new regional organisational structure of the SharePoint User Group UK (SUGUK) is working in terms of getting more members involved in regular meetings.

This month there are four meetings confirmed:

Thursday 14th January 2010 – Nottingham

The next Nottingham event will be a Designer/Branding special! Penny Coventry will be joining us to do a SharePoint Designer 2007/2010 session, covering what’s possible in 07, and what’s new in 2010!!  We will then have some ‘tales from the trenches’ where a few individuals will be showing off their real project examples of SharePoint branding/theming with discussion around what’s possible, and the trials and tribulations along the way!

The usual fayre of pizzas, drinks and of course SharePint in the Broad Oak pub, Strelley Village.  Everyone welcome, whatever your background or experience. For further details and sign up, check out the meeting post.

Wednesday 27th January 2010 – Bristol

The south user group will be meeting in Bristol at 6:30pm on 27th Jan 2010.  HP Labs have kindly allowed us to use their auditorium and are going to be providing pizzas! To attend please post a response to the meeting post giving names of attendees by Monday 25th January.  Directions to the venue can be found here, and there is plenty of free parking.

The agenda is below and there is still a 15 minute "new speaker" slot available so if you would like to take this please get in touch with Ian Woodgate – this is a great chance for you to tell us all about some cool stuff you have been doing in SharePoint!

6:30pm Welcome

6:40 – 7:20pm Andy Ginn: An overview of HP white papers and tools organisations can use when adopting SharePoint Andy introduces some useful tools for sizing and configuration of SharePoint environments, and reviews research from HP labs looking at the performance of SharePoint on Windows Server 2003/SQL Server 2005 versus Windows Server 2008/SQL Server 2008 – come along and see if the results are as you would expect! Best practice guidance on the use of virtualised solutions is also reviewed.

7:20 – 7:35pm New Speaker Slot

Contact Ian Woodgate if you’re interested!

7:35 – 8pm Break, pizzas

8 – 9pm Mark Macrae: Utilising SQL Reporting Services in Integrated Mode for SharePoint and Empowering Information Managers with Report Builder In this session Mark will be focussing on Reporting Services – a ‘free’ but often forgotten Business Intelligence tool which has much improved with SQL 2008. Mark will discuss the steps required to install and configure SSRS in SharePoint Integrated Mode, complete with the much improved Report Builder 2.0. He will then demonstrate how Report Builder can be used by Power Users to quickly build reports, manage and version them in SharePoint, approve and publish to an audience. Finally, Mark will examine the improvements which SharePoint 2010, SQL 2008 R2 and Report Builder 3 will offer when they are released.

Thursday 28th January 2010 – Newcastle

We kick off the new year with a very informative session from Steve Smith MVP on some of the new highlights and features of SharePoint 2010, co-hosted by John Timney. Steve will add his own insight to a well balanced presentation on the replacement for the product we have all come to know, specifically highlighting the new metadata management model and the new records management and records routing features of 2010, the Ribbon, Office integration, migration options, architecture and new facets of the product likely to keep you employed well into the next few years. The session will be an open forum to allow participants to ask questions as the session progresses

Everyone welcome, whatever your background or experience. For further details and sign up, check out the meeting post.

Thursday 28th January 2010 – London

Kicking off the new year with a meeting hosted by Microsoft at their Cardinal Place, Victoria offices.

Session 1 – An Introduction to SharePoint Designer 2010: Top Ten Great Things to Know – Ben Robb (SharePoint MVP)

SharePoint Designer 2010 is the tool to design powerful no-code solutions and applications in SharePoint 2010. In this session get a broad overview of some of the new capabilities of the tool, from site customisations such as modifying Site Metadata, managing Site Security, or creating Site Content, to building List or Site-based Workflows and connecting to a variety of Data Sources.

Session 2 – Ask the Experts: How and Why Should I Migrate to 2010?

The early signs are that Microsoft have put even more thought and planning into migrating and upgrading to SharePoint 2010 but the reality is it’s an enterprise level platform and a non-trivial undertaking. So what are the benefits to the business? Why would you upgrade (or why wouldn’t you)? What can you be doing now to minimise the impact? We have assembled a panel of technical and non-technical SharePoint experts who have all had good exposure to the beta products and are all looking forward to discussing and debating your questions.

Microsoft will very kindly be providing refreshments and half time pizza.  For further details and to sign up check out the meeting post. Plan to arrive from 18:00 for a 18:30 sharp start and SharePint at a local watering hole from 21:00.

I’m planning to get along to 3 of these events so if you can make it along to one or more then why not show your support, learn something new and even go for SharePint.  See you there.

Technorati Tags: ,,
Posted in Community, SharePoint and tagged , ,
11 Jan 2010
1 Comment

Search index configuration for FBA MOSS

I am working with a client on a public facing internet site that includes a public area for unauthenticated users and a ‘members’ area for which there is already a bespoke SQL database holding all members’ credentials (including clear text passwords!)  Given the tight timeframe and the amount of bespoke development required for other areas of the site I decided that it would be best to use the standard .NET Framework forms based authentication (FBA).  The site owners manually process new member applications and maintain the existing database so we will create an additional administration screen to maintain the FBA database via SharePoint.  The site owners would use Windows authentication (NTLM) via an ’authoring.companyname.co.uk’ URL and members will use FBA via an ’internal.companyname.co.uk’ URL.

The requirement

At least two document libraries will be included in the members area of the site but they will not be directly exposed to members.  Instead, each library will have a dedicated page on the site where members can browse through all the documents in the library or submit a basic search.  The documents will be displayed in a formatted table (grid) for both browsing and search results.

The solution

As the CSS formatting of the page was so bespoke I decided that my starting point would be a clone of a WCM page from elsewhere on the site to which I would add an ASP.NET GridView control.  When a user first visits the page it displays all the documents in the related document library by binding the grid (called searchResultsTable) to an SPDataSource object that has had the List property set to reference the document library.

bind to SPDataSource

figure 1 – binding to an SPDataSource

That was the easy part.  To perform the search I added a text box and an image button as per the following screen shot.

formatted results page

figure 2 – formatted results with paging

When the user submits a search the grid is bound to the results of an SPQuery that has been loaded into a DataTable.  The important thing to note here is that the AuthenticationType property of the SPQuery object must be correctly set depending on whether the user is NTLM or FBA authenticated as per the highlighted section in the code below.

SPQuery code

figure 3 – binding to an SPQuery filled DataTable

The problem

Before any of this will work the search indexer has to be configured to index the FBA version of the site.  The NTML site is automatically included in the default search content source (typically named ‘Local Office SharePoint Server sites’) and therefore any documents stored anywhere in the site are automatically indexed.  However, FBA authenticated users trying to search the site don’t see anything in that index as they are accessing the site through a separate URL.  I therefore added a search content source that I dedicated to indexing the site via the FBA URL.

FBA content source

figure 4 – adding a dedicated FBA search content source

As per the code in figure 3 the query passed into the SPQuery object via the QueryText property specifies the name of the search scope to be queried similar to this (where x, y, z are the fields to return and scope_name is the name of the search scope);

SELECT x, y, z FROM Scope() WHERE "scope"=’scope_name’

I therefore needed to set up a search scope for the document library but ensure it worked from both the NTLM and FBA sites.

NTLM & FBA search scope

figure 5 – document library search scope for NTLM & FBA

The final piece of the puzzle is ensuring that the search indexer has access to the FBA site.  As per the following screen shot, on a standard SharePoint Shared Service Provider the default content access account (used for indexing site content) is an NTLM account.

image

figure 6 – default content access account

Therefore the default content access account cannot create an index that FBA users can query.  I tried to add a crawl rule that would use a specific FBA account to crawl the FBA site.

add crawl rule 

figure 7 – add a crawl rule

The FBA site is currently using the default SharePoint FBA log in page which unauthenticated users are automatically redirected to when they first attempt to access an area of the site that requires authentication.  I entered the URL of the log in page (http://internal.companyname.co.uk/_layouts/login.aspx) in the Form URL field (under the Specify Authentication section) but when I clicked the Enter Credentials button I got a 403 error.

Enter Credentials 403 error

figure 8 – 403 error when entering FBA credentials

I noticed that every time a user is redirected to the log in page a ‘ReturnUrl’ query string is appended to the URL something like this:

http://internal.companyname.co.uk/_layouts/login.aspx?ReturnUrl=%2f_layouts%2fAuthenticate.aspx%3fSource%3d%252f&Source=%2f

When I used this extended URL on the Add Crawl Rule page and and clicked the Enter Credentials button the site log in page was correctly displayed.  I entered the credentials of the FBA search content access account and was redirected to the default FBA site page.  The following dialog popped up asking if the log in had succeeded.

image

figure 9 – successful log in with FBA credentials

After clicking OK I was returned to the Add Crawl Rule page and a message (highlighted below) indicated that the credentials had been accepted.

apparently correct

figure 10 – apparently correct FBA credentials

However, when I clicked OK I got an error telling me the credentials had either not been entered or had not been accepted?!

credentials not accepted!

figure 11 – credentials not accepted?!

 

This got very frustrating.  I couldn’t find anything useful in my excellent reference book Inside the Index and Search Engines: Microsoft Office SharePoint Server 2007 because it is nearly 2 years old and there have been some significant advances since then such as the infrastructure updates.  Just like my book, the most relevant information I got from searches was about using the addrule.exe command line tool which didn’t seem right for an installation up-to-date with service packs and hotfixes. 

The fix

One blog post I found explaining how to add a crawl rule caught my attention because of the log in page URL that was specified.  It was similar to the URL I had used but the ‘ReturnUrl’ query string parameter was notably shorter (just ‘%2f’) so I tried creating the crawl rule again using the shortened URL:

http://internal.companyname.co.uk/_layouts/login.aspx?ReturnUrl=%2f

This time everything worked and the crawl rule was successfully added!

crawl rule added

figure 12 – crawl rule added

With the crawl rule in place the indexer had FBA credentials and details of the log in page but the FBA account still needs to be given permission to read all the content in the FBA site.  This is accomplished in exactly the same way that the default access account is granted rights to browse an entire (NTLM) site, by means of a policy.  From the Application tab in Central Administration click on the Policy for Web application link.

image

figure 13 – Policy for Web application

On the Policy for Web application page click the Add Users button and ensure that the appropriate Web Application is selected.  Select the zone that the FBA site is running under then click the Next button.  Then enter the FBA user account and check the “Full Read – Has full read-only access” check box before clicking the Finish button.

And finally I could run a full crawl against the FBA site content source…

start a full crawl

figure 14 – start a full crawl of the FBA site

… and watch the index grow!

finally an FBA index!

figure 15 – finally the FBA site is indexed!

Posted in Development, SharePoint and tagged , , , ,

Post Navigation

Follow

Get every new post delivered to your Inbox.