Question about impersonation

Sep 25, 2013 at 10:35 AM
Edited Sep 25, 2013 at 10:40 AM
my client doesn't want to give access on our configuration data entity where we keep our settings data and etc.. so i need to get something on the configuration data entity through javascript by impersonation. How can I do that by using your toolkit?
Sep 26, 2013 at 1:38 PM
Edited Sep 26, 2013 at 1:51 PM

As far as I understand, it is not easy to impersonate in JavaScript especially for CRM 2011 oData/ Soap. You will need to implement the whole WCF interface to replace CRM 2011 service endpoint. Also impersonation will break the business or license model for CRM framework itself and make your application insecure.

For your case, you should either discuss the necessity with the client that why you will need access to configuration data entity or alter the approach with JavaScript access ( use plugins, out-of-box security model for this )

Hope this helps.

Dec 26, 2013 at 5:47 PM
Hi Jaimieji. I think with SOAP calls to crm, impersonation should be a matter of optionally supplying a different user guid to the call? It will only work if certain security within crm is in place. See here for more info.

This would be a very useful feature of the toolkit, at least for me...:)
Jan 16, 2014 at 11:20 AM

My understanding so far is impersonation is not support / ignored since CRM 2011 in JavaScript. There are some discussions on the web regarding to this topic, but I do not think it is achievable using the current SDK.