Part 4: ASP.NET Applications on the CRM Server

December 25, 2007 11:47 by author

In CRM 3.0 if you wanted to run an ASP.NET application on the same server as CRM (by CRM I mean the Web/App server) you needed to use your own application pool. This apps would then connect to CRM like an external application (see Part 3) if they needed to read/write data in CRM. For credentials these apps would simply use Integrated Windows Authentication - since a majority of customers used this configuration.

With the introduction of Internet Facing Deployment (IFD) which uses Forms Authentication for your Active Directory Credentials - this now means that developers cannot rely on Integrated Windows Authentication for their applications. It's important to recognize that all partner hosted customers will use IFD and most on-premise customers will configure their systems to use IFD + Windows Auth. As developers you must always consider IFD as a primary usage pattern for your applications.

Since IFD uses a Forms Authentication technology to collect your Active Directory credentials your own apps are faced with a problem. You can't use Integrated Windows Auth (as your app might be running outside the firewall where this auth type becomes very 'fragile') and you don't want to have to prompt the user for their credentials.

To cater for this situation we have provided a special class in the Microsoft.Sdk.dll called CrmImpersonator. This class allows an app which runs inside our context to use the credentials of the logged on user. When designing an app which runs on the CRM server you will need to observe some specific code patterns.

Here is the basic ASP.NET code behind which will create an new Lead when it opens and display the GUID of the record it created. The aspx and aspx.cs files will be placed on the CRM server in a folder called ISV. In a later post I'll cover off exactly how to deploy the solution. The Microsoft.Crm.Sdk and Microsoft.Crm.SdkTypeProxy namespaces derive from two DLLs of the same name. These DLLs are always present with CRM so you don't need to package them with your solution. You'll want to reference them in your project however and you'll find the DLLs in the \Server\GAC folder of your install files.

Let's examine the anatomy of this code pattern:

You need to possess some pre-requisites: Page.Context, Organization Name and if you are using the Metadata Service you'll also need the MetadataService URL.
All the CRM code is wrapped in in the using(new CrmImpersonator()) { } block.
The CrmAuthenticationToken was created using the static method ExtractCrmAuthenticationToken of the CrmAuthenticationToken class.
There is no need to use the Discovery Service. This code can only access the CRM Server which the code is running on.
You must manually set the owner of objects using the CalledId property of the CrmAuthenticationToken.

I have a helper class which I use which provides me with the pre-requisites. I'll be cleaning this up in the next few weeks and I'll publish it for download and use (with a relatively free license).

In the next part we will examine using this technique in the offline client and in a later post we will examine the deployment considerations for this type of app.

Currently rated 5.0 by 2 people

Currently 5/5 Stars.
1
2
3
4
5

Categories:
Actions: E-mail | Kick it! | Permalink | comment

Comments (11) | RSS comment feed

Comment RSS

Part 3: Applications which Connect to CRMPart 5: ASP.NET Applications on the CRM Offline ClientOffice 12 Server + Reporting Servers + CRM = ?

Comments

December 28. 2007 18:33

Pingback from monsieurcrm.com

DÃ©veloppement d’applications avec Microsoft Dynamics CRM 4.0 | Monsieur CRM

monsieurcrm.com

January 1. 2008 23:37

Pingback from crm.davidyack.com

- MrDave's (David Yack) CRM Blog! - Check the Organization Name your passing

crm.davidyack.com

January 4. 2008 06:46

Thank you for the explanation. I'm trying to see if it'll solve a problem I have ("SocketException: Connection was refused by target" when attempting to use callouts on CRM 4.0), but am unfortunately unable to add a reference to the two dll's. I get the following error:
"A reference to '...\gac\microsoft.crm.sdk.dll' could not be added. This is not a valid assembly or COM component. Only assemblies with extension 'dll' and COM components can be referenced."
I have to admit to being quite confused. Is this an error message you have any experience with and could shed some light upon?

Thanks.

Maria

January 17. 2008 01:56

Where was this page being called from?

i.e. Was it called from a URL entry in the sitemap or an IFRAME. If either of the two what URL do you use to access the page when in a multi-tenant setup.

I would have thought something along the lines of,

http://crmproduction:5555/tenant4/TitanWebTest/Default.aspx

The reason I ask is I am having trouble getting this to work for more details please see,

forums.microsoft.com/.../ShowPost.aspx

John Grace

January 24. 2008 14:30

Question.. I noticed the Context you pass into the ExtractCrmAuthenticationToken call is the Page.Context.. What if I'm doing the CRM calls from a DLL (specifically a Custom WebPart DLL that is being used on an ASPX page in the CRM Server)? Is there a similar way to do this?

Thanks,
Gary

Gary P

January 29. 2008 02:05

Hi,
Just wanted to ask you what is the best way to use a rich text editor for a ntext type attribute on a form. I can see that out of box only email activity has a custom control which is html rich text field editor. But out of box CRM does not allow rich text to be saved in ntext. Is there anyway to use standard rich text edition feature in a custom entity? Or one have to write custom aspx page in a iframe with some dynamic javascript code to do load and save using third party rich text editing. Do you have any ideas?
Thanks.

Sanjay Munjal

February 11. 2008 06:37

Pingback from crm.georged.id.au

Exporting CRM records as vCards

crm.georged.id.au

March 10. 2008 14:59

Hi,

I'm finding I have problems when using this in an Internet Facing Deployment where the user has security for more than one organisation. Every thing is fine if they user authenticates from the internal sub-net, but when they authenticate from the Internet the context always seems to be returned for the FIRST organisation they have access to. This means it works for the first organisation, but for the second you get an error. What happens (for the 2nd organisation) is that:

Token = crmauthenticationtoken.extractcrmauthentication(context, orgname) returns me a token for the first organisation even though the orgname contains the 2nd organisation name ...

Can you help?

Derek

June 12. 2008 11:48

Hi Philip Richardson,

My name is Leonardo Lopes and I work for L3 Brazil. I'd like to know if you happen to have in your sleeve a sample of CrmImpersonator Class for Custom Entities, since is the only way to develop for IFD scenarios and I could not find an example in the SDK (for a custom entity).

The issue we're having is that the method ExtractCrmAuthenticationToken exists only in the CrmAuthenticationToken Class from the CrmSdk.dll that ships with the SDK. And the token generated from this class is not the same type as CrmAuthenticationToken Class from the Web Service. And I need the CrmService Class from the Web Service because I need to work with custom entities (that obviously does not exist on the CrmSdk.dll)

I'd really appreciate ny help of info on this.

Best Regards,
Leo Lopes @ L3

Leo Lopes @ L3

June 24. 2008 23:28

Hi Philip/Leo,

I tried to run the Lead Create Code but all in vain....
I am facing the same kind of problem.
Can u suggest me some thing on the same???

Further, I always get an error when I enclose the code within

using (new CrmImpersonator())

{
}

these lines..
The error says
Server Error in '/TestCRMSite' Application.
--------------------------------------------------------------------------------

OpenThreadToken failed with hr = 1008
Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.InvalidOperationException: OpenThreadToken failed with hr = 1008

Source Error:

Line 27: //Wrap all your CRM Web Service Code in a using block
Line 28:
Line 29: using (new CrmImpersonator())
Line 30: {
Line 31:

Source File: c:\Documents and Settings\Administrator\My Documents\Visual Studio 2005\TestCRMSite\Default.aspx.cs Line: 29

Stack Trace:

Thanks In advance

Susan

June 25. 2008 17:49

Hi,

I have a lot of trouble working with the disco service.

In my case - my code needs to work with web services since it is not always running on the CRM server.

When ever i try and call the CRM disco service, if i am not using default credentials - i create new network credentials - i get error 401 unauthorized.

The user have access, i tried with http://localhos:5555 and with http://<machine name>:5555.
Also tried .../ad/... and .../SPLA/... and no success in all combinations.

Is it possible to work with CRM web services from outside the server? Why would we need web services if they are only available on the server itself....

I would really appreciate any help with this.

my email is shaibs at gmail.com

Thanks.

Shai

Feed

RSS Feed

Inside CRM Top 20 Bloggers

I'm at the #4 spot.

Contact

Work Email: philipri@microsoft.com

Personal Email: philip@philiprichardson.org

Search

Calendar

Su	Mo	Tu	We	Th	Fr	Sa
27	28	29	30	31	1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31	1	2	3	4	5	6

Disclaimer

The opinions expressed herein are my own personal opinions and do not represent my employer's view in anyway. All postings and code samples are provided 'AS IS' with no warranties, and confers no rights.

Philip Richardson