SharePoint URLs to rescue!

Below are the few URLs which might be useful for your SharePoint applications

Application page for registering SharePoint apps
/_layouts/15/appregnew.aspx

App inventory page to lookup based on the App ID
/_layouts/15/appinv.aspx

Site settings page
/_layouts/settings.aspx

View all site content page (Site content)
/_layouts/viewlsts.aspx

Manage site collection features – CASE SENSITIVE
/_layouts/ManageFeatures.aspx?Scope=Site

Manage site features
/_layouts/ManageFeatures.aspx

Sandboxed Solution Gallery:
/_catalogs/solutions/Forms/AllItems.aspx

Workflow history hidden list:
/lists/Workflow History

Filter toolbar for Lists and libraries
?Filter=1

Site usage page
/_layouts/usage.aspx

Site content and structure page
/_layouts/sitemanger.aspx

Get the version of the SharePoint server (Patch level)
/_vti_pvt/Service.cnf

Web Part Maintenance Page
?Contents=1

Show Page in Dialog View
?isdlg=1

Save Site as a template
/_layouts/savetmpl.aspx

Sign in as a different user
/_layouts/closeConnection.aspx?loginasanotheruser=true

Enable SharePoint designer
/_layouts/SharePointDesignerSettings.aspx

Welcome Page (Default page settings)
/_layouts/AreaWelcomePage.aspx

Change Site Master Page
/_layouts/ChangeSiteMasterPage.aspx

Page Layouts and Site Templates
/_Layouts/AreaTemplateSettings.aspx

Master Pages library
/_catalogs/masterpage/Forms/AllItems.aspx

User Information List
_catalogs/users/simple.aspx

Quick Deploy List
Quick%20Deploy%20Items/AllItems.aspx

Open Page in Edit Mode
?ToolPaneView=2

Taxonomy Hidden List (MMS)
Lists/TaxonomyHiddenList/AllItems.aspx

User Information List:
_catalogs/users/simple.aspx

Force displaying the user profile in the site
collection:
/_layouts/userdisp.aspx?id={UserID}&Force=True

Ref link – http://blogs.msdn.com/b/how24/archive/2013/05/23/famous-sharepoint-urls-amp-locations.aspx

SharePoint 2013 Provider Hosted App (High Trust) – 401 Unauthorized Error

I have been facing this problem for a quite instances & every time it was a different issue. [I know you agree ;)]

Below are the instances when I have faced the issue & it has got resolved.

1. Client ID / Issuer ID

This is a most common issue & you need to make sure these values are correct.

Issuer ID – You can get the issuer ID by executing the below script on SharePoint Management Shell on SharePoint server.

Get-SPTrustedIdentityTokenIssuer

Client ID – You can cross verify the Client ID used in web.config file with the client id registered on SharePoint site.

Go to Site Settings > Site Collection App Permissions [You will find registered client id on this page]

2. User Profile on SharePoint User Profile Service Application

Make sure user profile of the user who is launching the application is available on User Profile Service Application. Also, setup the user profile sync to avoid these issues with other users.

3. High Trust S2S setup

You need to make sure High Trust S2S setup is correct & working fine. [Ignore this if some other provider hosted applications are working]

You can follow the blog post to configure High Trust for provider hosted environment

SharePoint 2013 Server configuration for App Model – Provider hosted app with High Trust

I know there are lot many blogs around this topic but this one captures the steps with screenshots & proven by following the below steps for setting up SharePoint 2013 server for provider hosted application app model configuration with high trust s2s.

It has been configured on over 50 SharePoint development servers.

The below steps have been documented in here SharePoint App Model Steps

SP 2013 Server App Model Configuration – ONE TIME

Create an isolated app domain on your development computer

Ensure that the spadmin and sptimer services are running by opening a command prompt and typing the following commands.

net start spadminv4
net start sptimerv4

Create your isolated app domain by running the SharePoint Management Shell as an administrator and typing the following command.

Set-SPAppDomain "wbmsspdev19"

Ensure that the SPSubscriptionSettingsService and AppManagementServiceInstance services are running by typing the following command in the SharePoint Management Shell.

Get-SPServiceInstance | where{$_.GetType().Name -eq "AppManagementServiceInstance" -or $_.GetType().Name -eq "SPSubscriptionSettingsServiceInstance"} | Start-SPServiceInstance

Verify that the SPSubscriptionSettingsService and AppManagementServiceInstance services are running by typing the following command in the SharePoint Management Shell. The output will indicate whether each service is online.

Get-SPServiceInstance | where{$_.GetType().Name -eq "AppManagementServiceInstance" -or $_.GetType().Name -eq "SPSubscriptionSettingsServiceInstance"}

Specify an account, application pool, and database settings for the SPSubscriptionService and AppManagementServiceInstance services by typing the following code in the SharePoint Management Shell. If you created a SPManagedAccount in the preceding step, use that account name here.

$account = Get-SPManagedAccount "wb\spm13dev"  (spm13dev is a service account)
$appPoolSubSvc = New-SPServiceApplicationPool -Name SettingsServiceAppPool -Account $account
$appPoolAppSvc = New-SPServiceApplicationPool -Name AppServiceAppPool -Account $account
$appSubSvc = New-SPSubscriptionSettingsServiceApplication –ApplicationPool $appPoolSubSvc –Name SettingsServiceApp –DatabaseName SettingsServiceDB
$proxySubSvc = New-SPSubscriptionSettingsServiceApplicationProxy –ServiceApplication $appSubSvc
$appAppSvc = New-SPAppManagementServiceApplication -ApplicationPool $appPoolAppSvc -Name AppServiceApp -DatabaseName AppServiceDB
$proxyAppSvc = New-SPAppManagementServiceApplicationProxy -ServiceApplication $appAppSvc

Specify your tenant name by typing the following code in the SharePoint Management Shell.

Set-SPAppSiteSubscriptionName -Name "app" -Confirm:$false

Create a web application & site collection with Developer site template.

Ex: http://wbmsspdev19:1001/

To create a self-signed test .pfx certificate file

1. When you are debugging a high-trust app for SharePoint in Visual Studio, the remote web application is hosted in IIS Express on the machine where Visual Studio is installed. So the remote web application computer doesn’t have an IIS Manager where you can create the certificate. For this reason, you use the IIS on the SharePoint test server to create the certificate. In IIS manager, select the ServerName node in the tree view on the left.
2. Select the Server Certificates icon, as shown in Figure 1.
   

   Figure 1. Server Certificates option in IIS

   

3. Select the Create Self-Signed Certificate link from the set of links on the right side, as shown in Figure 2.
   

   Figure 2. Create Self-Signed Certificate link

   

4. Name the certificate WBMSSPDEV19HighTrustCert, select Web Hosting and then choose OK.
5. Right-click the certificate, and then select Export, as shown in Figure 3.
   

   Figure 3. Exporting a test certificate

   

6. In Windows, or at a command line, create a folder called C:\Certs.
7. Back in IIS Manager, export the file to C:\Certs and give it a password. In this example, the password is password.

To create a corresponding .cer file

1. In IIS manager, select the ServerName node in the tree view on the left.
2. Double-click Server Certificates.
3. In Server Certificates view, double-click WBMSSPDEV19HighTrustCert to display the certificate details.
4. On the Details tab, choose Copy to File to launch the Certificate Export Wizard, and then choose Next.
5. Use the default value No, do not export the private key, and then choose Next.
6. Use the default values. Choose Next.
7. Choose Browse, browse to C:\Certs, name the certificate WBMSSPDEV19HighTrustCert, and then choose Save. The certificate is saved as a .cer file.
8. Choose Next.
9. Choose Finish.

Configure SharePoint 2013 to use certificates and configure trust for your app

$publicCertPath = "C:\Certs\WBMSSPDEV19HighTrustCert.cer"
$certificate = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2($publicCertPath)
New-SPTrustedRootAuthority -Name "WBMSSPDEV19HighTrustCert" -Certificate $certificate
$realm = Get-SPAuthenticationRealm
$specificIssuerId = "11111111-1111-1111-1111-111111111119"
$fullIssuerIdentifier = $specificIssuerId + '@' + $realm
New-SPTrustedSecurityTokenIssuer -Name "WBMSSPDEV19 High Trust Cert" -Certificate $certificate -RegisteredIssuerName $fullIssuerIdentifier –IsTrustBroker
iisreset
$serviceConfig = Get-SPSecurityTokenServiceConfig
$serviceConfig.AllowOAuthOverHttp = $true
$serviceConfig.Update()

New Provider app creation – (Follow steps for every new provider app)

1. Open visual studio & create provider-hosted app
   

   

2. On the certificate screen, select the certificate from C:\Cerfts folder & mention the issuer id 11111111-1111-1111-1111-111111111119
   

   

3. Generate app id by the below URL appregnew.aspxEx- http://wbmsspdev19:1001/_layouts/15/Appregnew.aspx

4. Paste the app id as client id on both the app & web projects.
   AppManifest.xml & web.config file.

   

   

5. Create a web site on IIS & update this website info on appmanifest.xml & project url under web properties.
   

   

   Ex: <StartPage>http://wbmsspdev19:10001/SharePointApp1Web/Pages/Default.aspx?{StandardTokens}</StartPage>

   

   

6. Register every new provider app model app with the below script.
   1. clientID – generated in step 3 above
   2. targetSiteUrl – Provider app site url

      $appDisplayName = "SharePointApp1"
      $clientID = "53006f1e-5d06-4679-a449-f4cfff9c1f5f"
      $targetSiteUrl = "http://wbmsspdev19:1001/"
      $targetSite = Get-SPSite $targetSiteUrl
      $realm = Get-SPAuthenticationRealm -ServiceContext $targetSite
      $fullAppPrincipalIdentifier = $clientID + '@' + $realm
      $registeredAppPrincipal = Register-SPAppPrincipal -NameIdentifier $fullAppPrincipalIdentifier -Site $targetSite.RootWeb -DisplayName $AppDisplayName
      $registeredAppPrincipal | select * | Format-List
      $registeredAppPrincipal | select * | Format-List | Out-File -FilePath "Output.txt"
      

References

App domain & Dev setup

http://msdn.microsoft.com/en-us/library/fp179923(v=office.15).aspx

High trust app creation S2S

http://msdn.microsoft.com/en-us/library/fp179901(v=office.15).aspx