The Blog

Setting up Umbraco Azure AD Authentication

Posted 21 June 2019

l recently had a requirement to add Azure Active Directory authentication to a client's Umbraco Back Office, with the added request of managing the CMS group membership via Azure AD as well.

To do this, we're going to use an Azure AD Application Registration, with some custom roles - by using roles we remove the need to share more information about the User and their memberships with our application, and we make the application more portable - we can deploy the application manifest into any directory and the same role names are returned to the calling web site, rather than a unique group ID, and because they are textual names we can also easily wire up our Umbraco group aliases to the role names, without working with unwieldy GUIDs (Umbraco also requires that a group alias doesn't start with a number).

Restricting access to Sitecore Media Items

Posted 03 March 2015

I recently had a requirement to lock down some media items (PDFs in this case) within Sitecore so that only certain logged in users could access them. In principle this is trivially easy - ensure the users are in the right roles, remove read access from the extranet\anonymous user and grant read access to the specific roles. However, as always, the devil is in the details.

The Gallery

Heavy Metal over the Lakes at Sunset

Heavy Metal over the Lakes at Sunset

From the album Screenshots.

Tagged: Computer graphics, Screenshots, X-Plane
Heat haze on the tarmac

Heat haze on the tarmac

From the album Screenshots.

Tagged: Computer graphics, Screenshots, X-Plane
Caroline and Andy cross-country skiing

Caroline and Andy cross-country skiing

From the album Our Wedding.

Tagged: Ben, Snow, Holidays, Skiing, Honeymoon, Canada