Although not recommended, there may be times when you need your code to perform certain functions that the current user does not have the necessary permissions to perform.
The SPSecurity class provides a method (RunWithElevatedPrivileges) that allows you to run a subset of code in the context of an account with higher privileges than the current user.
The premise is that you wrap the RunWithElevatedPrivileges method around your code.
And also In certain circumstances, such as when working with Web forms, you may also need to set the AllowSafeUpdates method to true to temporarily turn off security validation within your code.
If you use this technique, it is imperative that you set the AllowSafeUpdates method back to false to avoid any potential security risks.
The SPSecurity class provides a method (RunWithElevatedPrivileges) that allows you to run a subset of code in the context of an account with higher privileges than the current user.
The premise is that you wrap the RunWithElevatedPrivileges method around your code.
And also In certain circumstances, such as when working with Web forms, you may also need to set the AllowSafeUpdates method to true to temporarily turn off security validation within your code.
If you use this technique, it is imperative that you set the AllowSafeUpdates method back to false to avoid any potential security risks.
No comments:
Post a Comment