We have built an asp.net web application (portal) to create records in Dynamic CRM Online instance. The webform has several file upload controls, Does microsoft crm online scan them for viruses automatically before uploading? Right now I am able to upload malicious files.
Any links that suggest how microsoft handles malicious file uploads are welcome.
Thanks in advance.
Attachments saved to Dynamics CRM Online are not virus scanned.
If you are receiving files from the public and saving them to Dynamics CRM you are responsible for checking the contents of those files as part of the submission portal you have developed.
Related
I have a Outlook Add-in developed using VSTO,that among other features allows a user to select attachments from an email and then upload it to a website. The uploading is done by calling an web-service that resides on the website. I want to convert the VSTO add-in to a Office add-in for making the add-in available on platforms other than Windows. I was searching how this can be achieved. As per the SO post here, Access to the attachment in Outlook web add-in, Outlook Add-in cannot pass the attachments of a selected item directly to the remote service that runs on your server. Instead, the add-in can use the attachments API to send information about the attachments to the remote service. The service can then contact the Exchange server directly to retrieve the attachments.
My clients do not use an Exchange server. If Outlook Add-in cannot pass the attachments directly, I need to download the attachments to a temporary folder on the user's machine and then upload it to the web service from the outlook add-in. Is this possible ? Is there any other alternative to achieve what I want ?
I need to download the attachments to a temporary folder on the user's machine and then upload it to the web service from the outlook add-in. Is this possible ?
This is exactly what I do. Get the path to a folder like Roaming with
Environment.GetFolderPath(Environment.SpecialFolder.ApplicationData) //C#
download the attachments, encode them, create a json object and send them to your service.
This is the most convenient solution imo
As per this link, Office Add-ins are not supported for Outlook using POP or IMAP accounts.
Requirements for running Office Add ins
I am pasting below the relevant text from the article.
This is unfortunate. This means there is no way to provide customized solutions in Outlook for the following use-cases.
Outlook on Mac or IPad with a POP or an IMAP email account.
My local school allows me to log in to their online portal and access an email account using Outlook 365 within the browser, despite the fact I do not have a license for outlook/office 365.
Is it possible to create a web application where users of this app could click a link to edit a document directly in their browser using Word 365, with us/the developers of such app being the licensee of Word and not the end-user? The remote document would be held in a Sharepoint/Webdav capable service.
If this is possible, which MS-technologies should we investigate to develop such a system? Is it the MS-Graph API or something else?
A pointer in the right direction would be greatly appreciated.
Thanks!
You can use the Graph to create a sharing link to a document. But the user will have to sign in to view the document I believe. I'm not sure what licensing they need but you can try this with your users to see.
https://learn.microsoft.com/en-us/graph/api/driveitem-createlink?view=graph-rest-1.0&tabs=http
You can use the Google Docs API to work with documents stored in Google Drive. If you are using Java there is a "Quickstart" at the following link:
https://developers.google.com/docs/api/quickstart/java
I am developing an Outlook Add-In, that will work in Office365 for both Web version and Desktop client and will able to upload files attached with the email to One-drive. Is it possible to authenticate and upload the files without user interaction(i.e. like opening popup, and providing user id and password etc).
Thanking all for your suggestions in advance.
Yes, Its possible.
What you have to do is :
1) create OutlookAddin solution with help of visual studio template.
2) It will add two projects in that solution OutlookAddin and OutlookAddinWeb.
3) Here OutlookAddinWeb is simple asp.net project that you have to covert into MVC Web API or you can add in new MVC Web API project after removing the existing OutlookAddinWeb.
4) Now,You can Microsoft Graph Client dll to use graph api functionalities to upload file in One Drive.
Note : The important thing you shouldn't forget about implementing authentication using OWIN API that is providing single sign-on as it is your main concern here
samples: https://developer.microsoft.com/en-us/outlook/code-samples
I want to do CRUD operations through HTML page without adding that page in Dynamics CRM's webresource.
Using C# we can connect with dynamics crm and can do get/add/edit/delete operations using CRM's dlls but I don't know the way of doing same from html page which is independent from CRM's webresource.
Can anybody please suggest me that is this possible or not and if yes then the way if there is any.
You can perform CRUD operations on Dynamics CRM 2016 and above using the Web API.
You mention that your application will be independent of CRM, thus it will be on a separate domain. You will therefore need to register CRM in Azure and query the Web API with CORS.
Here is a good example from Microsoft demonstrating how to use ADAL to connect an application with Dynamics CRM.
I am using MVC 3 and Dynamics CRM 2011.
IIS 7 on 2008
I placed my app in the ISV folder.
This application works outside of CRM.
My controller name is User, siteurl/user does not work
site/user/index does work
it constantly adds default.aspx to the end of the url. I am running in 4.0 integrated mode.
I have removed the default.aspx entry from default document. Though it's fine to hang out on a standard IIS.
Please I am in so much mental pain.
You won't get it working in a supported way.
The ISV directory is deprecated and should not be used anymore. It was never really ment to host complete web applications. It was meant for small apps which run in the context of Dynamics CRM. Instead use a separate website which connects to Dynamics CRM
Dynamics CRM 2011 has it's own URL-rewriting which extracts the information about the tenant from the requested URI. This will conflict with your app