web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Apps / Using SharePoint lists...
Power Apps
Answered

Using SharePoint lists as a datasource

(0) ShareShare
ReportReport
Posted on by BillYoung-arm 133

I recently found that simply providing permissions to a SharePoint list didn't enable the users to access the data in their PowerApp. The user also needed read access to the site. This hadn't previously been a problem, as I had used a SharePoint "PowerApps" site collection as the parent of all my apps, created a new sub-site for each App and shared the subsite with the users.

I like this sub-site per app approach but am conscious that we are being discouraged from sub-sites. In this scenario, it seems appropriate, however. Does anyone have any opinions whether this is good or bad practice?

Thanks - Bill

Categories:
Building Power Apps
I have the same question (0)
  • Pstork1 Profile Picture
    Pstork1 68,717 Most Valuable Professional on at

    From a sharing point of view users have already needed at least viewOnly access to the site collection to access a list in either the root or a sub site.  I suspect that is where the requirement is coming from since access to the data source is controlled through sharing permissions.

  • Verified answer
    v-siky-msft Profile Picture
    v-siky-msft on at

    Hi @BillYoung-arm ,

     

    I think that there is no difference between a SharePoint site and a SharePoint subsite. they are almost the same.

    The only difference is that subsite inherits the permission from top level site in a site collection.

    I think it is good to use subsite per app if you can handle the permissions.

    Best regards,

    Sik

    If my post is helpful for you, please click on “Accept as Solution” to help other members find it more quickly.

  • BillYoung-arm Profile Picture
    BillYoung-arm 133 on at

    I also posted on Twitter and got this reply from @iAm_ManCat

    https://twitter.com/iAm_ManCat/status/1194291637205291009?ref_src=twsrc%5Etfw

  • Verified answer
    iAm_ManCat Profile Picture
    iAm_ManCat 18,228 Most Valuable Professional on at

    Hi,

     

    Just going to give my experience of using site collections / subsites - our users have ZERO access permissions to both the site and subsite level. None. There is nobody in visitors/members and only our projects team with full access.


    On the actual SharePoint list, I have the following permissions set:
    image.png

    ..and within Visitors/Members there are no members, and the Owners are just the Projects team.

     

    By breaking permission inheritance on the SharePoint lists by granting this group permissions, an entry is created as an exception on the parent sites with 'limited access'.

     

    If I look at the top-level parent site's advanced permissions, I see that the group has been given limited permission, and does not have read access to the site or subsite, but only to specific lists (i.e the ones where I've broken permission and explicitly added them)

     

    Site-level:

    image.png

    image.png

    If I try edit their permissions:

    image.png

     

     

    Then let's move to subsite-level, which in my case inherits its strict permissions from the site collection:

    image.png

    so we can see that the same user group has the same limited access permission levels at site-level:

    image.png

     

    Then at the List-level I've broken the inheritance and set that group to have contribute access JUST to that list:

    image.png

     

     

    So the way I currently do it is to have a site collection which is our data storage 'container' for subsites with no access permissions for standard employees, then each subsite represents a different App (again with no access for standard employees), then within each subsite I may have between 2 and 20+ SharePoint Lists, each with broken permission inheritance that grants that user permissions to edit/add items by giving them contribute rights.

     

     

    Another great tip is to then change the settings of the Lists to stop them from being found via SharePoint searches, and in the unlikely event that they do guess both the name of the collection and of the subsite, we also disable quick edit & detail edit, and we customise the form to create a Power App that is just one giant button/label, and clicking that opens the actual standalone App.
    image.png

    image.png

     

    I hope this information has been helpful!

     

    Cheers,

    Sancho

     

  • BillYoung-arm Profile Picture
    BillYoung-arm 133 on at

    Thanks Sancho. Some of that I was already doing but you've given a great description and useful tips

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Apps

#1
WarrenBelz Profile Picture

WarrenBelz 721 Most Valuable Professional

#2
Michael E. Gernaey Profile Picture

Michael E. Gernaey 320 Super User 2025 Season 2

#3
Power Platform 1919 Profile Picture

Power Platform 1919 268

Last 30 days Overall leaderboard

Featured topics

Auto-Populate field Power Pages
Gallery Tabs - Show or Hide Tabs based on Field Value
How to patch multiple records at once
Enable Copilot for end users in model-driven apps
Question for everyone : How are you using Create Text GPT in AI Builder?
Community content - sample components, blogs etc. - Link to this page (http://aka.ms/PCFdemos)
Welcome to the Power Apps forum!

Product updates

Microsoft Power Platform Community release plans