web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Apps / Deny sharepoint list a...
Power Apps
Answered

Deny sharepoint list access, and grant acces through powerapps

(0) ShareShare
ReportReport
Posted on by mandelbrot 15

Hi guys,

 

i have the following problem:

 

i build an powerapp for casemanagment which stores data in sharepoint online.

i have 2 permission groups

group1: "backendusers": have full access

group2: "PA users": have sharepoint contribute permission for adding and editing list item via powerapps

 

BUT: "PA users" should not be able to login to sharepoint online and edit existing list items!

 

i was able to deny acces for "PA users" to https://mycompany.sharepoint.com/sites/MYSITE

but i was nat able to deny the acces to the SP list  https://mycompany.sharepoint.com/sites/MYSITE/MYLIST

 

is there a was to deny sharepoint webacces but grant list access through powerapps?

 

Thanks for your replies

Categories:
Building Power Apps
I have the same question (0)
  • Shanescows Profile Picture
    Shanescows 2,218 Most Valuable Professional on at

    No. 😞 Sorry. 

  • Verified answer
    v-monli-msft Profile Picture
    v-monli-msft on at

    Hi @mandelbrot,

     

    Please understand that in PowerApps, data is stored in a data source(in your case, it's a SharePoint list), and you bring that data into your app by creating a connection. The connection uses a specific connector to talk to the data source. So data you cannot access in the original data source, you cannot use it in PowerApps either.

     

    When you enter your credential to SharePoint within PowerApps, the connection is connected, but your credential cannot get the items in SharePoint list, so nothing would be displayed in the app.

     

    Regards,

    Mona

  • harzicn Profile Picture
    harzicn 76 on at

    I have a similar issue. I have a form that I created with PowerApps but I absolutely do not want the users to be able to find their way to the SharePoint list to see other confidential submissions.

    This is my fairly simple solution.

    I created a second list called Admin with exactly the same fields as the submission list. Using Microsoft Flow, I set a workflow to create a new item in the Admin list whenever an item is created. I set the fields to match the fields in the submission list. Then set the submission list item to be deleted.

    This leaves the submission list empty and I set the permissions on the Admin list so that only admin users can access it.

    I hope this helps.

  • Birchenall Profile Picture
    Birchenall 6 on at
    Has this been resolved or is it still not possible?
  • Birchenall Profile Picture
    Birchenall 6 on at

    @mandelbrot I believe I have found a work around for this.

     

    1. Settings> Site Permissions> Advanced Site Permissions
    2. Select Permission Levels from the Browse section at top.
    3. Add a Permission Level can call it something like "Contributor" (that's what I named it).
    4.  Select the following permissions only
      1. Add Items
      2. View Items
      3. Open Items
      4. View Versions
      5. View Pages
      6. Use Remote Interfaces
      7. Use Client Integration Features
      8. Open
        1. (I'm not 100% sure on these permissions; what I was able to deduce was that they had access to the homepage, however it does not appear in their list of personal pages, but if they entered the sharepoint URL then they could see the home page, however they can not view any other pages (e.g. documents, list, etc.) as the permissions are not available) If they do find a way of stumbling on the Home Page, I have removed all view for them to any sensitive information.
    5. Return to the Permissions page -> Create Group - give it a name ("App User")
    6. Set Permissions level to the one named above (Contributor)
    7. Add New groups or user to the list (you can invite them without sending an email so they will not get a link).

    Now they have access to contribute to the Sharepoint list without seeing it. At least from my testing it has worked with some small groups, but I haven't tested it when inviting the entire org yet.

  • Verified answer
    AntonioMarinell Profile Picture
    AntonioMarinell on at

    Yes! Take a look at this:

    https://michelcarlo.wordpress.com/2020/04/15/powershell-script-prevent-power-apps-users-from-accessing-lists-from-sharepoint-ui/

     

    Enjoy 😉

  • mandelbrot Profile Picture
    mandelbrot 15 on at

    thanks @AntonioMarinell !

    this was exactly what i'm looking for.

    the main solution was "removing the View Application Pages permission" 💡

  • smakhan Profile Picture
    smakhan 2 on at

    Though the above mentioned way of creating the group of "Contributors" almost solves the problem.

     

    When the group of contributors is created, they can successfully create,edit,delete list items of the sharepoint through powerapps but though they are contributors they can easily access all the lists by creating their own powerapp through their accounts and adding these lists as datasource.

     

    How can be team members be prevented from adding this team's site lists as datasource in their powerapps?

     

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Apps

#1
WarrenBelz Profile Picture

WarrenBelz 721 Most Valuable Professional

#2
Michael E. Gernaey Profile Picture

Michael E. Gernaey 320 Super User 2025 Season 2

#3
Power Platform 1919 Profile Picture

Power Platform 1919 268

Last 30 days Overall leaderboard

Featured topics

Auto-Populate field Power Pages
Gallery Tabs - Show or Hide Tabs based on Field Value
How to patch multiple records at once
Enable Copilot for end users in model-driven apps
Question for everyone : How are you using Create Text GPT in AI Builder?
Community content - sample components, blogs etc. - Link to this page (http://aka.ms/PCFdemos)
Welcome to the Power Apps forum!

Product updates

Microsoft Power Platform Community release plans