5.1 KiB
Dienstag, 10. April 2018
09:54
Claims des Benutzers anzeigen lassen :
Hierfür benötigt man eine ASPX-Datei mit folgendem Inhalt, die im _layouts Ordner vom SharePoint abgespeichert wird:
<%@ Page Language="C#" %>
<%@ Assembly Name="Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL" %>
<%@ Import Namespace="Microsoft.IdentityModel.Claims" %>
<script type="text/C#" runat="server">
protected override void OnLoad(EventArgs e)
{
try
{
IClaimsIdentity identity = HttpContext.Current.User.Identity as IClaimsIdentity;
if (null != identity)
{
repeater1.DataSource = identity.Claims;
repeater1.DataBind();
}
}
catch (Exception ex)
{
Response.Write(ex.ToString());
}
}
</script>
<html>
<body>
<table>
<thead>
<tr>
<td><strong>Issuer</strong></td>
<td><strong>OriginalIssuer</strong></td>
<td><strong>ClaimType</strong></td>
<td><strong>Subject</strong></td>
<td><strong>Value</strong></td>
<td><strong>ValueType</strong></td>
</tr>
</thead>
<tbody>
<asp:Repeater ID="repeater1" runat="server">
<ItemTemplate>
<tr>
<td><nobr><%# Eval("Issuer") %></nobr></td>
<td><nobr><%# Eval("OriginalIssuer") %></nobr></td>
<td><nobr><%# Eval("ClaimType") %></nobr></td>
<td><nobr><%# Eval("Subject") %></nobr></td>
<td><nobr><%# Eval("Value") %></nobr></td>
<td><nobr><%# Eval("ValueType") %></nobr></td>
</tr>
</ItemTemplate>
</asp:Repeater>
</tbody>
</table>
</body>
</html>
**Format **
SharePoint 2013 and SharePoint 2010 display identity claims with the following encoding format:
<IdentityClaim>:0<ClaimType><ClaimValueType><AuthMode>|<OriginalIssuer (optional)>|<ClaimValue>
Components explained
<IdentityClaim>
-
<IdentityClaim> indicates the type of claim and is the following:
-
"i" for an identity claim
-
"c" for any other claim
-
<ClaimType>
-
<ClaimType> indicates the format for the claim value and is the following:
-
"#" for a user logon name
-
"." for an anonymous user
-
"5" for an email address
-
"!" for an identity provider
-
"+" for a Group security identifier (SID)
-
"-" for a role
-
"%" for a farm ID
-
"?" for a name identifier
-
"\" for a private personal identifier (PPID)
-
"e" for a user principal name (UPN)
-
""" for a user ID
-
"$" for a distribution list security identifier (SID)
-
"&" for a process identity security identifier (SID)
-
"'" for a process identity logon name
-
"(" for an authenticated user
-
")" for a primary security identifier (SID)
-
"*" for a primary group security identifier (SID)
-
"0" for an authorization decision
-
"1" for a country
-
"2" for a date of birth
-
"3" for a deny only security identifier (SID)
-
"4" for DNS
-
"6" for a gender
-
"7" for a given name
-
"8" for a hash
-
"9" for a home phone
-
"<" for a locality
-
"=" for a mobile phone
-
">" for a name
-
"@" for other phone
-
"[" for a postal code
-
"]" for RSA
-
"^" for a secure identifier (SID)
-
"_" for a service principal name (SPN)
-
"`" for a state or province
-
"a" for a street address
-
"b" for a surname
-
"c" for a system
-
"d" for a thumbprint
-
"f" for a uniform resource name (URI)
-
"g" for a web page
-
<ClaimValueType>
-
<ClaimValueType> indicates the type of formatting for the claim value and is the following:
-
"." for a string
-
"+" for an RFC 822-formatted name
-
")" for an integer
-
""" for a Boolean
-
"#" for a date
-
"$" for a date with time
-
"&" for a double
-
"!" for a Base64 formatted binary
-
"0" for a X.500 formatted name
-
<AuthMode>
-
<AuthMode> indicates the type of authentication used to obtain the identity claim and is the following:
-
"w" for Windows claims (no original issuer)
-
"s" for the local SharePoint security token service (STS) (no original issuer)
-
"t" for a trusted issuer
-
"m" for a membership issuer
-
"r" for a role provider issuer
-
"f" for forms-based authentication
-
"c" for a claim provider
-
<OriginalIssuer>
- <OriginalIssuer> indicates the original issuer of the claim.
<ClaimValueType>
- <ClaimValueType> indicates the value of the claim in the <ClaimType> format.