add role assignment sharepoint rest api

SharePointCass

SharePoint Online REST APIs (Part VI): Permissions

In the SharePoint Online REST APIs series, I’ll be sharing the most common APIs I use. I mainly use these APIs in Power Automate, so I’ll base the information in this series on the data you need for a Send an HTTP request to SharePoint action.

This article explores how to break and grant permissions to users and SharePoint Online groups. This is not a comprehensive list; rather a list of calls that I use when I can’t use predefined Power Automate actions. I have used the color red to identify interchangeable values.

Check if a subsite has unique permissions

_api/web?$select=HasUniqueRoleAssignments

This call checks to see if a site is inheriting from its parents, or has broken inheritance. This call can also work on lists, libraries, folders and items (see below).

Check if an item has unique permissions

_api/web/lists(guid' GUID ')/items( 40 )?$select=HasUniqueRoleAssignments

As mentioned above, this call checks to see if a specific item has unique permissions. In this example, I am looking at an item in a specific library that has an ID of 40 .

Break permission inheritance on an item

_api/web/lists/GetByTitle(' Site Pages ')/items( 5 )/BreakRoleInheritance(CopyRoleAssignments=true, ClearSubscopes=true)

This example breaks inheritance on a site page. However, you can also use this call to break permission inheritance on a site, list, library or item. BreakRoleInheritance essentially breaks the inheritance. The CopyRoleAssignments and ClearSubscopes are parameters which can be true or false. For more information on these parameters, read this article .

Get user principal ID

_api/web/SiteUsers/GetByEmail(' [email protected] ')/Id

After you’ve broken inheritance, you need to add users (or groups; which is explored next). Before you can add a user to an item/site/list etc., you’ll need to get their Id .

Get group principal ID

_api/web/SiteGroups/GetByName(' Site Name Owners ')?$select=Id

This is the same concept as above, however, it is getting the Id of a SharePoint group.

Give permissions to a user or group

_api/web/lists/GetByTitle(' Site Pages ')/items( 5 )/RoleAssignments/AddRoleAssignment(PrincipalId= 9 ,RoleDefId= 1073741827 )

Finally, we can grant permissions to a user or group. To do this, we need the principal Id (which we got in the above calls) and the value for RoleDefId . These values are not straight forward. I have included the main permissions in the table below, but Microsoft details some more on their site .

Published by SharePointCass

I've been in the Microsoft world for over 10 years. I started out as a SharePoint developer but have since found myself intrigued by other aspects of Microsoft 365 including the Power Platform, Stream and Teams. I like to consider myself a sucker for organizational collaboration business systems, and this blog explores how to achieve the best out of these applications. View all posts by SharePointCass

4 Replies to “SharePoint Online REST APIs (Part VI): Permissions”

• Pingback: Resolved: how to manage people that can access to folders in SharePoint using API - Daily Developer Blog

Hi. Unfortunately, my groupID and userID are the same (yes, the same integer number). How can I grant permissions to a library item only with user email address?

Hi , I want create a sharing link of SharePoint documents for external users using REST API with PHP.Could me help me out how I can achieve this. waiting for your reply.

Hi, how do I create a new user group please? That part was missing in the article. Thanks much.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Save my name, email, and website in this browser for the next time I comment.

Notify me of follow-up comments by email.

Notify me of new posts by email.

Managing Role Assignments/Permissions with SharePoint REST Part2

In my last post I described many of the REST endpoints available in SharePoint to manage role assignments. In this post, I will provide a concrete example of using these endpoints in a provisioning-like scenario. I say provision-like because real provisioning scenarios tend to be very specific and one-offs (i.e. I need 7 sites, each with 5 lists and 3 groups, based on a naming convention by organization, and these permissions, and blah and blah and blah). Such specific requirements can’t be written into a one size fits all solution, so I’m just going to mimic them by creating a whole bunch of role assignments, and then deal with some of the issues of initiating a bunch of ajax calls in a short period of time.

What We’re Building

I want to build a page that demonstrates what a provisioning scenario might look like. Namely, this is a whole lot of individual REST service calls, which presents some unique challenges when implementing in JavaScript in the browser.

In the interface below, you can choose a SharePoint group, one or more SharePoint lists in the current site, and one or more role definitions, and with one click you can assign each of those role definitions to that SharePoint group for each of those SharePoint lists. As filled out below, there are 6 lists and 4 role definitions to be applied to the group “CSRDemos Members”.

So the first thing I need to do is check each list to see if role inheritance isn’t broken (that’s 6 lists, so 6 REST calls and 6 network connections). Then if role inheritance isn’t broken, I need to break it (6 more REST service calls), and if it is already broken I need to delete each list’s role assignments for the SharePoint group (also 6 REST service calls, so stage 2 is 6 calls either way). And finally, I need to make 4 role assignments for each of 6 lists (i.e. 4×6 = 24 more REST service calls). Hmmm…that seems like a lot:

(6 hasuniquepermissions) + (6 breakroleinheritance/roleassignments) + (6 lists * 4 role definitions) = 36 REST calls

Piece of cake…right?

And while you’re waiting, I pop up this nifty CSS-only spinner! What more could you ask for? I’ve said in previous REST posts that I could probably use some sort of busy indicator here or there, but this time I really need it.

Actually, it’s just not as bad as you might imagine. Below I show the console output from a run with these inputs. I log a bunch of console messages with things like how many connections I currently have open, the results from each service call, and finally the elapsed time. In the screenshot below, the elapsed time is 5.6 seconds. 36 REST calls in 5.6 seconds, I can live with that. And in fact, it could be much faster. I implement some throttling in my code, which is fancy tech talk for I slow it down some. Without that throttling, it takes roughly .7 to 1.5 seconds.

Don’t believe me? It’s pretty clearly shown in the screenshot below. This is IE’s network tab in developer tools. It is currently showing the output from one button click with the above parameters, in other words the 36 REST service calls I described above. Notice how the network connections are bunched together in groups of 5. And as time progresses, a gap is clearly noticeable between those bunches.

That’s because I only open 5 network connections at a time. When I need more, I pause in one-second intervals and wait for old connections to be released before initiating new requests. This actually slows down the client quite a bit, but also reduces the load on the server quite a bit. It’s a trade-off, and you need to be aware of it if you’re going to implement anything that does bulk operations with SharePoint (REST or not). You can’t always pound the server full-throttle without eventually getting nasty calls from your farm administrators (or if you are a farm admin, you’re customers).

Now one of the knocks on REST vs CSOM is that CSOM has support for batch operations. In truth, so does SharePoint REST, but it’s very cumbersome and not even available until 2016. And anyway, realize that batching is a trade-off too. By opening multiple connections you can perform many operations in parallel, but at a cost of more resources used on both the client and the server, and you can tweak that with throttling. By doing batch operations I use a lot fewer resources on both the client and the server, but quite possibly the result appears slower to the end user because now all operations are executed on the server in serial, and the only way to tweak that is with more and better hardware. Or at least changesets are executed in serial (see the second Andrew Connell post referenced below). Batch operations within a changeset may be serial or may be parallel, but either way it’s not up to you.

Now let’s say I had a more realistic scenario like say I had the same 6 lists in 10 sub-sites, and I needed to add role assignments to 3 different groups. But as long as we’re shooting for realism, let’s say I only need one role definition for each group, because there is really no reason to ever need more than one. If I need the union of permissions of 2 permission levels I can create a custom level with those permissions. And most permission levels have a privilege/subordinate relationship anyway, meaning Designer is Contributor+. So there’s no reason to assign a group Contributor and Designer, just Designer will do. I just did it above to generate a lot of connections and see how it performed. So anyway, here’s what this scenario looks like:

10 sites * 6 lists * 2 service calls (hasuniquerollassignments and breakinheritance/removeperms) = 120 service calls

10 sites * 6 lists * 3 groups * 1 role assignment = 180 service calls

So if I can do 36 REST calls in 5.6 seconds with throttling, I can extrapolate that 300 similar REST calls would take approximately 46 seconds with the same throttling. And I can adjust the throttling to reduce the server load or increase the speed as needed (to a degree). 46 seconds might seems like a lot of time, but at least you get to look at my beautiful spinner while you’re waiting, and that would be roughly on the order of magnitude of 10 seconds without any throttling. And keep in mind that this is provisioning code. It probably only needs to be run once, or maybe once each time a new sub-site is added, can probably be run on off-peak hours, and therefore maybe neither performance nor server load is that much of a consideration. And if you want to do a lot of work, it’s going to take a bit of time. Even if you do it all manually, the server’s still going to end up doing the same work, albeit not all at once.

Either way, this is starting to look doable, even from JavaScript in the browser. There does come a point where it starts to look more like a job for PowerShell, but since many SCAs have neither the skills nor the option to run PowerShell against their site, anything in the range of 30-60 seconds is reasonably doable in the browser. Even longer really, but ideally you should provide a bit more than a pretty spinner to show that something is happening if it’s going to go much longer. Like maybe show the most recent console log message above the spinner. Some quick changing text like that can be very reassuring to the user that they’re not just locked up, even if it’s too fast to read.

Provisioning Role Assignments with Code

The sample code for this post is pretty big, so I’ll make no effort to show it all here. Much of it is just the same stuff I showed in my last post with the $.ajax calls converted to fetch. I’m just going to show some of the more interesting bits. Most of the code is encapsulated in an object literal called roleDefinitionManager (or rdm for short). The action starts with the rmd.init method:

First it initializes the options for the 3 select elements for group, lists, and role definitions. Then it sets up a click handler for the terribly named “Do it now” button. When that button is clicked, it summarizes what is to be done in a member property called todo, and then calls setRoleAssignments shown below. It also initializes some member properties used for connection management, but that will be easier to explain in a later code block.

setRoleAssignments just loops through the lists and calls setRollAssignmentsOnList. It just mostly does a call to the REST endpoint hasuniquerollassignments on the list. It does this to see if it should then break role inheritance, or just delete any role assignments from the list for the principal id. The code for these methods is omitted as uninteresting, but either of them ultimately calls a method that creates the new role assignments on the list. The more interesting thing in the above code is that the web service call is encapsulated in the nested method doListInternal, and the setRollAssignmentsOnList method ends with a call to executeOrDelayUntilConnectionAvailable.

If you’ve been doing any SharePoint JavaScript code, you must have heard about ExecuteOrDelayUntilScriptLoaded. executeOrDelayUntilConnectionAvailable (shown below) does basically the same thing but with different criteria for delaying. reserveConnection just increments a counter of connections and returns the current counter if a connection is available (i.e. max connections would not be exceeded). If no connection is available, it returns 0. releaseConnection just decrements that counter. So executeOrDelayUntilConnectionAvailable tries to reserve a connection and call the callback. If it cannot, it calls setInterval with the interval passed in and upon waking up tries again, over and over every interval until it successfully reserves a connection and calls the callback. Obviously, this is where the throttling can be tweaked, mostly by adjusting the maximum connections and/or the interval.

Note that each browser has a maximum number of concurrent connections and a lower maximum number of concurrent connections per host. When I started this, a fundamental misunderstanding led me to believe I had to do something like this reserve connection scheme because of these limits. But if you ask for more connections than the browser allows it doesn’t fail (at least not until a very high number in modern browsers). The browser just queues up your request and makes the connection when one is available much as I am doing. Still, doing it myself does allow me to throttle my requests which is quite useful. So if I set the maximum to 100, I’ll always reserve a connection as soon as I ask so I’ll plow ahead as soon as the browser will let me. If you look at the network tab of the developer tools, you’ll see that it still doesn’t open up 36 connections at once, there are just no appreciable gaps between close and open. I wouldn’t be surprised if there is still some high limit beyond which the browser will barf, but I haven’t hit it, and it’s probably browser specific.

And that’s really all the code I’m going to dump on you here. The rest of it is more of the same, I described the more interesting REST-related bits in my last post, and as usually I’ll include a download to a complete working page at the end of the post.

Sum Up Role Assignments Sample

The code for this sample was really quite the PITA, which is why I split this post into two parts. At some point it would be interesting to redo this using batch operations à la the Andrew Connell articles referenced below. But I wouldn’t do that without writing some kind of wrapper around the painfully tedious multi-part mime parsing described in those articles, and I’ll make no promises about when I might get around to that.

ManageRoleAssignments.aspx

• Browserscope – information about connection limits in many modern browsers
• Part 1 – SharePoint REST API Batching – Understanding Batching Requests – Andrew Connell
• Part 2 – SharePoint REST API Batching – Exploring Batch Requests, Responses and Changesets – Andrew Connell

Share this:

• Click to share on Twitter (Opens in new window)
• Click to share on LinkedIn (Opens in new window)
• Click to share on Facebook (Opens in new window)
• Click to share on Pinterest (Opens in new window)
• Click to share on Pocket (Opens in new window)

Leave a Comment Cancel reply

You must be logged in to post a comment.

Access SharePoint API with application account – my ultimate guide

Table of contents:

I have been struggling with this topic for some time. Almost every time, when I was supposed to work with SharePoint API in Power Apps or Logic Apps, I was googling and going through the same partial solutions.

Just to find out in the end, that it is missing some crucial pieces or that despite all, it doesn’t work. This is why I decided to write this post to help myself in the future and maybe you as well! Let’s get started. For the solution I am going to use Azure Key Vault to store important secrets.

Step 1 – generate new self-signed certificate in Azure Key Vault

When in Azure Key Vault, navigate to Certificates and click “Generate/Import” button:

Next, give it a name you will remember, and under subject type: CN=sharepoint.com. You can set additional options per your needs:

Once a certificate is “Completed”, click on its name:

Then on the latest, aka current version:

And from there click on “Download in CER format”. Save it somewhere, and we will get back to it 😉

Next navigate to “Access configuration” of the Key Vault, and switch the permission model to use Azire role-based access control (RBAC) – it will be important later:

Step 2 – register application in Azure Entra ID

Now, navigate to Entra ID and register new application :

Give it a name and select the “Accounts in this organizational directory only” option. Then hit register. Once the app is registered, navigate to “Certificate & secrets” page:

Switch to “Certificates” area and click “Upload certificate”:

Select the *.cer file you have downloaded in the last action from step no. 1. Give it a description. Click “Add”:

Step 3 – grant api permissions

Now you need to define what permissions the app is going to have. Navigate to API permissions and click “+ Add permission”:

As this post is about SharePoint access, I will focus on granting the app application permissions to access SharePoint. So from APIs, select SharePoint:

Next “Application permissions”, and then depending on what your app will need to do. If just read – grant it Sites.Read.All, if more – up to. I grant my app Sites.FullControll.All:

Once you have granted these permissions, you will need to grant admin consent on behalf of the whole organisation. If you have sufficient permissions – good for you. If not, you need to find the right admin to grant that:

After the consent is granted:

Step 4 – create logic app

Now create a new Logic App. Select whichever hosting option suits your needs the best. Then grant its name and select region. Remember, that the region is THE SAME AS THE AZURE KEY VAULT . Once a new Logic App is created, go to the resource. Expand “Settings” and navigate to “Identity”. Switch the status to “On” (and Save):

Wait a while, then click “Azure role assignments” button:

Next click the “Add role assignment” button, next set the below values:

• Scope – Key Vault
• Subscription – the one under which you have created the key vault from step no. 1
• Resource – Azure Key Vault you created.
• Role – Key Vault Certificate User

And click Save.

Navigate back to the logic app details. And switch to the Designer! Let’s build the process! 🙂

Step 5 – build the process

After placing a trigger action, add the “Get secret” action from Azure Key Vault set of actions. Then, configure the connection. Under “Authentication Type” select “Managed identity”:

And then name the connection, and type in the name of the Key Vault from Step no. 1 😉 Next, select the certificate you created in Step no. 1:

Now, add the “HTTP” action, and configure it as below:

• URI – this is the site URL and the SharePoint API endpoint + any odata parameters.
• Method – depending on the method
• Headers – again, depending on the method. For GET, you need just Accept header. For POST, as well the Content-Type and so on…
• Body – sometimes when doing POST requests, this is where you put request body.
• Advanced parameters – select Authentication.

• Authentication – select Active Directory OAuth.
• Tenant – GUID representing Tenant ID. You can get it from the “Overview” page in Azure Entra ID:

• Audience – your SharePoint URL, e.g., https://poszytek.sharepoint.com.
• Client ID – ID of the app registered in Step no. 2. You can get the value from “Overview” page of the registered app:

• Credential Type – switch to Certificate
• Pfx – Value from the “Get secret” action

Step 6 – tests!

Having these all steps completed, it is now time to save your Logic App and test it. Click “Save”, then refresh the designer, and click “Run”! And voilà! Congratulations! You made it work! 🙂

Related Posts

Access Graph API with application account – my ultimate guide

PVA series – authentication in Power Virtual Agent

Add Office 365 group members using Microsoft Flow

Tomasz Poszytek

Hi, I am Tomasz. I am expert in the field of process automation and business solutions' building using Power Platform. I am Microsoft MVP and Nintex vTE.

No Comments

Post a comment cancel reply.

Save my name, email, and website in this browser for the next time I comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed .

Book consultancy services with me! Fill in the form below and let’s setup a call.

Name and lastname (required)

E-mail address (required)

Your message (required)

Bits & Pieces – A blog by Kannan Balasubramanian

Item level permission in SharePoint using REST and Power Automate

March 9, 2021 / Kannan / 0 Comments

Sometimes when an item is created we might need to set item level permission for those items. Fortunately, SharePoint’s REST API can help with this and Power Automate / Flow supports SharePoint HTTP calls.

For this to work, make sure the Power Automate is created with an account having site collection administrator access.

First the basics of how this works

Step 1 is to identify to whom the permissions should be granted to. It can be either a person or a group.

Step 2 is to identify what kind of permission i.e. role should be granted.

Step 3 is breaking the inheritance.

Step 4 is assigning the permission.

Second is knowing the supporting APIs to gather the information

Step 1: to whom the permission should be granted, individual user.

To identify the individual user the following API can be used. Commonly everyone relies on e-mail ID so lets take that as an example

When you use Power Automate, make sure to extract the ID and place it in a variable.

To identify the site group the following API can be used.

Step 2: What kind of permission?

This is defined by the role definitions available in the site. The following API will help in identifying the role definitions and their ID.

Step 3: Breaking the inheritance

For this first thing is we need to identify the target for which the inheritance should be broken. In the following example it’s a list item.

Step 4: Assigning permission

As said before permission can be assigned to an individual or a group. The following API will help with that

Following is the list of out of the box role definitions which I came across in the internet

You can refer the following URL which has code example to use REST api.

Set custom permissions on a list by using the REST interface

# Power Automate # SharePoint Online

Leave a Reply Cancel reply

Your email address will not be published / Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed .

This browser is no longer supported.

Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.

Role Assignments - Get

Get a role assignment by scope and name.

URI Parameters

Permissions

To call this API, you must be assigned a role that has the following permissions. For more information, see Azure built-in roles .

Microsoft.Authorization/roleAssignments/read

Azure Active Directory OAuth2 Flow

Type: oauth2 Flow: implicit Authorization URL: https://login.microsoftonline.com/common/oauth2/authorize

Get role assignment by scope and name

Sample request.

To use the Azure SDK library in your project, see this documentation . To provide feedback on this code sample, open a GitHub issue

Sample response

Definitions.

Error Additional Info

The resource management error additional info.

Error Detail

The error detail.

Error Response

Error response

Principal Type

The principal type of the assigned principal ID.

Role Assignment

Role Assignments

Additional resources

• Stack Overflow for Teams Where developers & technologists share private knowledge with coworkers
• Advertising & Talent Reach devs & technologists worldwide about your product, service or employer brand
• OverflowAI GenAI features for Teams
• OverflowAPI Train & fine-tune LLMs
• Labs The future of collective knowledge sharing
• About the company Visit the blog

Collectives™ on Stack Overflow

Find centralized, trusted content and collaborate around the technologies you use most.

Q&A for work

Connect and share knowledge within a single location that is structured and easy to search.

Get early access and see previews of new features.

Not able to fetch role assignments of an item in a list via SharePoint rest APIs

I am using azure AD credentials(username, password, client id and client secret) to create access token. I am able to fetch all the data from SharePoint except ACLs/ Role Assignments using SharePoint rest APIs. Need to know what permission is required in Azure to fetch ACL data from SharePoint?

• azure-active-directory

The issue was with permission. With AllSites.FullControl permission, I was able to retrieve data.

Your Answer

Reminder: Answers generated by artificial intelligence tools are not allowed on Stack Overflow. Learn more

Sign up or log in

Post as a guest.

Required, but never shown

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy .

Not the answer you're looking for? Browse other questions tagged sharepoint azure-active-directory or ask your own question .

• The Overflow Blog
• Where developers feel AI coding tools are working—and where they’re missing...
• He sold his first company for billions. Now he’s building a better developer...
• Featured on Meta
• User activation: Learnings and opportunities
• Preventing unauthorized automated access to the network
• Should low-scoring meta questions no longer be hidden on the Meta.SO home...
• Announcing the new Staging Ground Reviewer Stats Widget

Hot Network Questions

• If I was ever deported, would it only be to my country of citizenship? Or can I arrange something else?
• FIFO capture using cat not working as intended?
• How can I grep to include the surrounding lines?
• Image localisation and georeference
• Pulling myself up with a pulley attached to myself
• What is the simplest formula for calculating the circumference of a circle?
• Could you compress chocolate such that it has the same density and shape as a real copper coin?
• Could you suffocate someone to death with a big enough standing wave?
• Are there individual protons and neutrons in a nucleus?
• How was the year spoken in late 1800s England?
• is it okay to mock a database when writing unit test?
• Player sprite becomes smaller during attack animation (Java)
• An everyday expression for "to dilute something with two/three/four/etc. times its volume of water"
• What exactly is a scratch file (starting with #)? Does it still work today?
• How do I link a heading containing spaces in Markdown?
• Does legislation on transgender healthcare affect medical researchers?
• God and Law of Identity Paradox
• Complexity of computing minimum unsatisfiable core
• A sweet Nonodoku - Nonodoku
• Is BitLocker susceptible to any known attacks other than bruteforcing when used with a very strong passphrase and no TPM?
• Could a Project like Orion be built today with non nuclear weapons?
• Lovecraftian (but not written by Lovecraft himself) horror story featuring a body of water that glowed blue at night due to the creatures in it
• What causes, and how to avoid, finger numbness?
• Using car seat in a plane

Stack Exchange Network

Stack Exchange network consists of 183 Q&A communities including Stack Overflow , the largest, most trusted online community for developers to learn, share their knowledge, and build their careers.

Q&A for work

Connect and share knowledge within a single location that is structured and easy to search.

sharepoint workflow rest api add role assignment exception

I develop a workflow and i want to grant unique permission on item in list using sharepoint rest api

the rest service return exception

Value does not fall within the expected range

please advice

• sharepoint-designer
• sharepoint-server

• i see their is no single quotes in the Items(1)...could you please put that and try again –  Waqas Sarwar MVP ♦ Commented Mar 2, 2015 at 18:31
• Guess you would get another exception, but did you use POST verb? –  eirikb Commented Mar 2, 2015 at 20:54

Know someone who can answer? Share a link to this question via email , Twitter , or Facebook .

Your answer, sign up or log in, post as a guest.

Required, but never shown

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy .

Browse other questions tagged sharepoint-designer workflow sharepoint-server rest roles or ask your own question .

• The Overflow Blog
• Where developers feel AI coding tools are working—and where they’re missing...
• He sold his first company for billions. Now he’s building a better developer...
• Featured on Meta
• User activation: Learnings and opportunities
• Preventing unauthorized automated access to the network

Hot Network Questions

• Sticky goo making it hard to open and close the main 200amp breaker
• Why would an escrow/title company not accept ACH payments?
• Is BitLocker susceptible to any known attacks other than bruteforcing when used with a very strong passphrase and no TPM?
• What should you list as location in job application?
• How was the year spoken in late 1800s England?
• What is the flaw in Cooper's argument?
• Thunderbird will not create profile in chosen folder on a different partition
• Lovecraftian (but not written by Lovecraft himself) horror story featuring a body of water that glowed blue at night due to the creatures in it
• Is it common in modern classical music for timpani to play chromatic passages?
• Purpose of sleeve on sledge hammer handle
• How long have people been predicting the collapse of the family?
• Musicians wearing Headphones
• Can I breed fish in Minecraft?
• Why do (some) LaTeX fonts have separate 8pt and 10pt font files?
• Solving a "One Away.." connections group with nine guesses
• CH in non-set theoretic foundations
• What does mean by "offer accepted" in Mathjobs portal?
• Player sprite becomes smaller during attack animation (Java)
• A sweet Nonodoku - Nonodoku
• A time-travel short story where the using a time-travel device, its inventor provided an alibi for his future murderer (his wife)
• How important exactly is the Base Attack Bonus?
• Could you suffocate someone to death with a big enough standing wave?
• FIFO capture using cat not working as intended?
• "Chrisma" and "Him"

• TECHNOLOGIES
• An Interview Question

Deleting Current Role Definition to the Group in SharePoint Using REST

• Gowtham Rajamanickam
• Apr 06, 2015
• Other Artcile

In this example you will see how to delete the current role definition of the group in SharePoint using the REST.

• Publish Your App

• Close the Properties window.

• Add a role assignment for the group to the list using the AddRoleAssignment method that binds the group to the role definition and adds the role to the list.

• Office 365 Development Tools

SharePoint Framework (SPFx) A Developers Guide