SlideShare a Scribd company logo

Calling APIs with SharePoint Framework

Download as PPTX, PDF
Giuseppe Marchi
Giuseppe Marchi

The document discusses connecting SPFx with secured APIs, focusing on calling third-party APIs, SharePoint REST APIs, and Graph APIs. It highlights the need for tenant administration permissions to access these APIs and outlines considerations for architecture, including API security through Azure AD app registration. Additionally, it introduces isolated web parts and their configuration within the application package.

Technology
1 of 16
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
CONNECT SPFX WITH SECURED APIS GIUSEPPE MARCHI – DEV4SIDE WWW.PEPPEDOTNET.IT - WWW.DEV4SIDE.COM
HELLO, I AM PEPPE  Founder of Dev4Side S.r.l.  Microsoft MVP for 10 years in a row  Speaker on community of official Microsoft events in Italy  "SharePointer" from 2005  Father of www.peppedotnet.it   Office 365 advisor for www.office365italia.com  Author of the book "Pocket C#“ - Apogeo  One of the SharePoint and Office 365 influencers (for 2014 e 2015)
AGENDA  CALLING THIRD PARTY APIS  CALLING SHAREPOINT REST APIS  CALLING GRAPH APIS  CALLING ENTERPRISE APIS  ISOLETED WEB PARTS
DEMO HOW TO CALL THIRD PARTY APIS (ANONYMOUS) AND SHAREPOINT REST APIS
CALLING GRAPH APIS CONSIDERATIONS
CALLING ENTERPRISE APIS - CONSIDERATIONS You will need to have tenant administration permission to grant access to Graph APIs Granted permissions for the Graph API apply to all customizations running in the tenant
CALLING ENTERPRISE APIS CONSIDERATIONS AND ARCHITECTURE
CALLING ENTERPRISE APIS - CONSIDERATIONS Even though API is hosted in the same Azure AD, there’s no access to it by default You will need to have tenant administration permission to grant access to APIs Granted permissions for the API apply to all customizations running in the tenant If you are hosting the API in a different Azure AD, you need admin consent (multi-tenant)
ARCHITECTURE
CALLING ENTERPRISE APIS – HOW TO  Secure the API with a new Azure AD app registration  Enable CORS  Insert the needed permission inside package-solution.json  Build and deploy the solution in the app catalog  Approve the requested permissions from SharePoint Administration portal  … now you can start debugging!
DEMO HOW TO CALL ENTERPRISE APIS
ISOLATED WEB PARTS WHAT ARE THESE?
ISOLETED WEB PARTS Even though API is hosted in the same Azure AD, there’s no access to it by default You will need to have tenant administration permission to grant access to APIs Granted permissions for the API apply to all customizations running in the tenant If you are hosting the API in a different Azure AD, you need admin consent (multi-tenant)
ISOLETED WEB PARTS - ARCHITECTURE
ISOLATED WEB PARTS  The choice to have an isolated web part can be done during new project generation or anytime modifying the property "isDomainIsolated" available inside package-solution.json file  So is the entire package that is "domain isolated" !  Isolated web parts run inside an iframe  Pay attention at UI and UX!  A specific App Registration is automatically created inside your Azure AD once permissions are approved  If you need to revert back an isolated web part, remember to first remove the package from the App Catalog
GRAZIE  GIUSEPPE MARCHI – DEV4SIDE

More Related Content

What's hot (17)

PDF
Automating the API Product Lifecycle
Pronovix
 
PPTX
OnTime Partner Webinar September 2011
Mikkel Flindt Heisterberg
 
PDF
The Future of Headless
WP Engine
 
PDF
Don't use create react app
Nikhil Kumaran S
 
PPTX
Build 2017 - B8033 - Give your conversations superpowers: Building intelligen...
Windows Developer
 
PDF
Leaping Forward: Finding The Future of Your API Docs
Pronovix
 
PPTX
Build 2017 - B8083 - The future of Visual Studio
Windows Developer
 
PPTX
Visual Studio: The best tool for web developers.
Robert MacLean
 
PDF
Transporting Data at Warp Speed: How to Connect Spring Boot Apps Quickly, Pow...
VMware Tanzu
 
PDF
Developer cloud roadmap keynote
Moaid Hathot
 
PDF
Lessons Learned from Revamping Our Doc Site
Pronovix
 
PDF
Are you ready to adopt GraphQL?
Siva Prasad Rao Janapati
 
PDF
O365Con18 - Yo I want to extend - Stefan Bauer
NCCOMMS
 
PPTX
Idea to production
Roi Ezra
 
PPTX
SPFx (SharePoint Framework)
Małgorzata Borzęcka
 
PPTX
What’s new in LightSwitch 2013?
Robert MacLean
 
PDF
Vue js & vue cli 3 plugins to boost up the performance of your application
Katy Slemon
 
Automating the API Product Lifecycle
Pronovix
 
OnTime Partner Webinar September 2011
Mikkel Flindt Heisterberg
 
The Future of Headless
WP Engine
 
Don't use create react app
Nikhil Kumaran S
 
Build 2017 - B8033 - Give your conversations superpowers: Building intelligen...
Windows Developer
 
Leaping Forward: Finding The Future of Your API Docs
Pronovix
 
Build 2017 - B8083 - The future of Visual Studio
Windows Developer
 
Visual Studio: The best tool for web developers.
Robert MacLean
 
Transporting Data at Warp Speed: How to Connect Spring Boot Apps Quickly, Pow...
VMware Tanzu
 
Developer cloud roadmap keynote
Moaid Hathot
 
Lessons Learned from Revamping Our Doc Site
Pronovix
 
Are you ready to adopt GraphQL?
Siva Prasad Rao Janapati
 
O365Con18 - Yo I want to extend - Stefan Bauer
NCCOMMS
 
Idea to production
Roi Ezra
 
SPFx (SharePoint Framework)
Małgorzata Borzęcka
 
What’s new in LightSwitch 2013?
Robert MacLean
 
Vue js & vue cli 3 plugins to boost up the performance of your application
Katy Slemon
 

Similar to Calling APIs with SharePoint Framework (20)

PPTX
06.SharePointApps
EaswariSP
 
PDF
O365con14 - the new sharepoint online apps - napa in action
NCCOMMS
 
PPTX
App Model For SharePoint 2013
Toni Il Caiser
 
PPTX
API Platform Cloud Service best practice - OOW17
Phil Wilkins
 
PPTX
SPCA2013 - Once you go app you don't go back
NCCOMMS
 
PDF
How AWS Mobile Services Providers Will Benefit From Amplify Studio_.pdf
Moon Technolabs Pvt. Ltd.
 
PPTX
harePoint Framework Webinar Series: Consume Graph APIs in SharePoint Framework
Jenkins NS
 
PPTX
Relearning SharePoint Development
bgerman
 
PPTX
Getting started with office 365 add ins development 3 may 2018 - v2
Nilesh Shah
 
PPTX
Tech UG - Newcastle 09-17 - logic apps
Michael Stephenson
 
PPTX
App modernization-What you need to know before planning a migration to office...
Oliver Wirkus
 
PDF
APIdays Paris - How to Build Your Web API
Restlet
 
PPTX
L1 Overview SAP API Business Hub
SAP Cloud Platform
 
PDF
MuleSoft Madrid Meetup #3 slides 2nd July 2020
Ieva Navickaite
 
PDF
From API-First to SDK-First
Nordic APIs
 
PPTX
OracleDeveloperMeetup - London 19-12-17
Phil Wilkins
 
PPTX
Prepararsi a spostare le proprie applicazioni share point su office 365
Giuseppe Marchi
 
PDF
Rebooting APIs at scale
Rahul Dighe
 
PPTX
Expo - Zero to App.pptx
😎 Anthony Kariuki
 
PPTX
Visual Studio 2017 - Montreal Launch Event
Guy Barrette
 
06.SharePointApps
EaswariSP
 
O365con14 - the new sharepoint online apps - napa in action
NCCOMMS
 
App Model For SharePoint 2013
Toni Il Caiser
 
API Platform Cloud Service best practice - OOW17
Phil Wilkins
 
SPCA2013 - Once you go app you don't go back
NCCOMMS
 
How AWS Mobile Services Providers Will Benefit From Amplify Studio_.pdf
Moon Technolabs Pvt. Ltd.
 
harePoint Framework Webinar Series: Consume Graph APIs in SharePoint Framework
Jenkins NS
 
Relearning SharePoint Development
bgerman
 
Getting started with office 365 add ins development 3 may 2018 - v2
Nilesh Shah
 
Tech UG - Newcastle 09-17 - logic apps
Michael Stephenson
 
App modernization-What you need to know before planning a migration to office...
Oliver Wirkus
 
APIdays Paris - How to Build Your Web API
Restlet
 
L1 Overview SAP API Business Hub
SAP Cloud Platform
 
MuleSoft Madrid Meetup #3 slides 2nd July 2020
Ieva Navickaite
 
From API-First to SDK-First
Nordic APIs
 
OracleDeveloperMeetup - London 19-12-17
Phil Wilkins
 
Prepararsi a spostare le proprie applicazioni share point su office 365
Giuseppe Marchi
 
Rebooting APIs at scale
Rahul Dighe
 
Expo - Zero to App.pptx
😎 Anthony Kariuki
 
Visual Studio 2017 - Montreal Launch Event
Guy Barrette
 
Ad

More from Giuseppe Marchi (11)

PPTX
Wiriting applications for Microsoft Teams
Giuseppe Marchi
 
PPTX
What's new in SharePoint 2016
Giuseppe Marchi
 
PPTX
SharePoint 2013 REST APIs
Giuseppe Marchi
 
PPTX
SharePoint 2013 REST API tips & tricks
Giuseppe Marchi
 
PPTX
Apps for SharePoint Online 2013
Giuseppe Marchi
 
PPTX
Sviluppare App per Office 2013 e SharePoint 2013
Giuseppe Marchi
 
PPTX
Sp real world solutions - field permissions
Giuseppe Marchi
 
PPTX
Introduction to Umbraco
Giuseppe Marchi
 
PPTX
Integrazione tra SharePoint 2010 e Windows Azure (Azure Day)
Giuseppe Marchi
 
PPTX
Introduzione a SharePoint 2010 per sviluppatori (.NET Campus 2011)
Giuseppe Marchi
 
PPTX
Introduzione a SharePoint Online (Microsoft Community Tour)
Giuseppe Marchi
 
Wiriting applications for Microsoft Teams
Giuseppe Marchi
 
What's new in SharePoint 2016
Giuseppe Marchi
 
SharePoint 2013 REST APIs
Giuseppe Marchi
 
SharePoint 2013 REST API tips & tricks
Giuseppe Marchi
 
Apps for SharePoint Online 2013
Giuseppe Marchi
 
Sviluppare App per Office 2013 e SharePoint 2013
Giuseppe Marchi
 
Sp real world solutions - field permissions
Giuseppe Marchi
 
Introduction to Umbraco
Giuseppe Marchi
 
Integrazione tra SharePoint 2010 e Windows Azure (Azure Day)
Giuseppe Marchi
 
Introduzione a SharePoint 2010 per sviluppatori (.NET Campus 2011)
Giuseppe Marchi
 
Introduzione a SharePoint Online (Microsoft Community Tour)
Giuseppe Marchi
 
Ad

Recently uploaded (20)

PPTX
Webinar: Introduction to LF Energy EVerest
DanBrown980551
 
PPTX
MSP360 Backup Scheduling and Retention Best Practices.pptx
MSP360
 
PDF
HCIP-Data Center Facility Deployment V2.0 Training Material (Without Remarks ...
mcastillo49
 
PDF
LLMs.txt: Easily Control How AI Crawls Your Site
Keploy
 
PDF
SWEBOK Guide and Software Services Engineering Education
Hironori Washizaki
 
PDF
Impact of IEEE Computer Society in Advancing Emerging Technologies including ...
Hironori Washizaki
 
PDF
Predicting the unpredictable: re-engineering recommendation algorithms for fr...
Speck&Tech
 
PPTX
Extensions Framework (XaaS) - Enabling Orchestrate Anything
ShapeBlue
 
PDF
NewMind AI Journal - Weekly Chronicles - July'25 Week II
NewMind AI
 
PDF
Wojciech Ciemski for Top Cyber News MAGAZINE. June 2025
Dr. Ludmila Morozova-Buss
 
PDF
Human-centred design in online workplace learning and relationship to engagem...
Tracy Tang
 
PDF
How Startups Are Growing Faster with App Developers in Australia.pdf
India App Developer
 
PDF
Fl Studio 24.2.2 Build 4597 Crack for Windows Free Download 2025
faizk77g
 
PDF
Windsurf Meetup Ottawa 2025-07-12 - Planning Mode at Reliza.pdf
Pavel Shukhman
 
PDF
CloudStack GPU Integration - Rohit Yadav
ShapeBlue
 
PPTX
WooCommerce Workshop: Bring Your Laptop
Laura Hartwig
 
PPTX
Top iOS App Development Company in the USA for Innovative Apps
SynapseIndia
 
PPTX
Building and Operating a Private Cloud with CloudStack and LINBIT CloudStack ...
ShapeBlue
 
PPTX
Darren Mills The Migration Modernization Balancing Act: Navigating Risks and...
AWS Chicago
 
PDF
Français Patch Tuesday - Juillet
Ivanti
 
Webinar: Introduction to LF Energy EVerest
DanBrown980551
 
MSP360 Backup Scheduling and Retention Best Practices.pptx
MSP360
 
HCIP-Data Center Facility Deployment V2.0 Training Material (Without Remarks ...
mcastillo49
 
LLMs.txt: Easily Control How AI Crawls Your Site
Keploy
 
SWEBOK Guide and Software Services Engineering Education
Hironori Washizaki
 
Impact of IEEE Computer Society in Advancing Emerging Technologies including ...
Hironori Washizaki
 
Predicting the unpredictable: re-engineering recommendation algorithms for fr...
Speck&Tech
 
Extensions Framework (XaaS) - Enabling Orchestrate Anything
ShapeBlue
 
NewMind AI Journal - Weekly Chronicles - July'25 Week II
NewMind AI
 
Wojciech Ciemski for Top Cyber News MAGAZINE. June 2025
Dr. Ludmila Morozova-Buss
 
Human-centred design in online workplace learning and relationship to engagem...
Tracy Tang
 
How Startups Are Growing Faster with App Developers in Australia.pdf
India App Developer
 
Fl Studio 24.2.2 Build 4597 Crack for Windows Free Download 2025
faizk77g
 
Windsurf Meetup Ottawa 2025-07-12 - Planning Mode at Reliza.pdf
Pavel Shukhman
 
CloudStack GPU Integration - Rohit Yadav
ShapeBlue
 
WooCommerce Workshop: Bring Your Laptop
Laura Hartwig
 
Top iOS App Development Company in the USA for Innovative Apps
SynapseIndia
 
Building and Operating a Private Cloud with CloudStack and LINBIT CloudStack ...
ShapeBlue
 
Darren Mills The Migration Modernization Balancing Act: Navigating Risks and...
AWS Chicago
 
Français Patch Tuesday - Juillet
Ivanti
 

Calling APIs with SharePoint Framework

  • 1. CONNECT SPFX WITH SECURED APIS GIUSEPPE MARCHI – DEV4SIDE WWW.PEPPEDOTNET.IT - WWW.DEV4SIDE.COM
  • 2. HELLO, I AM PEPPE  Founder of Dev4Side S.r.l.  Microsoft MVP for 10 years in a row  Speaker on community of official Microsoft events in Italy  "SharePointer" from 2005  Father of www.peppedotnet.it   Office 365 advisor for www.office365italia.com  Author of the book "Pocket C#“ - Apogeo  One of the SharePoint and Office 365 influencers (for 2014 e 2015)
  • 3. AGENDA  CALLING THIRD PARTY APIS  CALLING SHAREPOINT REST APIS  CALLING GRAPH APIS  CALLING ENTERPRISE APIS  ISOLETED WEB PARTS
  • 4. DEMO HOW TO CALL THIRD PARTY APIS (ANONYMOUS) AND SHAREPOINT REST APIS
  • 6. CALLING ENTERPRISE APIS - CONSIDERATIONS You will need to have tenant administration permission to grant access to Graph APIs Granted permissions for the Graph API apply to all customizations running in the tenant
  • 8. CALLING ENTERPRISE APIS - CONSIDERATIONS Even though API is hosted in the same Azure AD, there’s no access to it by default You will need to have tenant administration permission to grant access to APIs Granted permissions for the API apply to all customizations running in the tenant If you are hosting the API in a different Azure AD, you need admin consent (multi-tenant)
  • 10. CALLING ENTERPRISE APIS – HOW TO  Secure the API with a new Azure AD app registration  Enable CORS  Insert the needed permission inside package-solution.json  Build and deploy the solution in the app catalog  Approve the requested permissions from SharePoint Administration portal  … now you can start debugging!
  • 11. DEMO HOW TO CALL ENTERPRISE APIS
  • 13. ISOLETED WEB PARTS Even though API is hosted in the same Azure AD, there’s no access to it by default You will need to have tenant administration permission to grant access to APIs Granted permissions for the API apply to all customizations running in the tenant If you are hosting the API in a different Azure AD, you need admin consent (multi-tenant)
  • 14. ISOLETED WEB PARTS - ARCHITECTURE
  • 15. ISOLATED WEB PARTS  The choice to have an isolated web part can be done during new project generation or anytime modifying the property "isDomainIsolated" available inside package-solution.json file  So is the entire package that is "domain isolated" !  Isolated web parts run inside an iframe  Pay attention at UI and UX!  A specific App Registration is automatically created inside your Azure AD once permissions are approved  If you need to revert back an isolated web part, remember to first remove the package from the App Catalog
  • 16. GRAZIE  GIUSEPPE MARCHI – DEV4SIDE