cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Anonymous
Not applicable

Flow inside managed solution cannot be shared (run-only users) with a SharePoint list

I have  a Flow inside a managed solution that is an instant flow. It get triggered manually by a selected file inside a SharePoint document library (Approval Workflow).

 

I deployed the solution to the customer and re-configured the actions to point to the right libraries and approval actions etc.

 

For the users to be able to start the Flow I wanted to add the SharePoint list (library) where the Flow is attached to to the run-only users. So in the Flow "Dashboard" in the "Run-Only Users" section I wanted to click on "SharePoint" and select the site and library, but there is no "SharePoint" option available. I see only the option to invite users or teams directly.

 

I then created a test Flow inside the customer tenant, with the same type (instant flow for selected item/file) and added it to the same library. When I open up "Run-Only Users" section of this flow, I see the "SharePoint" option there.

 

So, my question is. Is this a bug or a normal behaviour? Can Flows of managed solution (and unmanaged?) not be shared with SharePoint lists?

 

I read in another post that a user had a similar issue and it worked for him suddenly and that the Power Automate Platform has issues with flows not directly created but coming from a solution - is this still true and I have to wait... some days (which would be not very cool)?

23 REPLIES 23

I have the same issue, in that the options for run-only permissions for a flow stored in a Solution are different from those in "My Flows" - and broken.

 

For a flow in "My Flows", if it is triggered "For a specific (SharePoint) Item", then you have the option to grant run-only permissions to the users of that SharePoint Site, thus:

My Flows.png

There is a specific tab for sharing with "SharePoint" - and in this case I've shared this particular flow with all users of the "Contracting" sharepoint site (which is a team site).

 

However if you create the flow in a Solution (for example, so you can call child flows), the "Run-only permissions" dialog is different:

Solution.png

It purports to allow you to invite "teams", but has no tab to add permissions linked to SharePoint.  

 

In addition if you try to add a team, it errors out (even though it claims you can add a team):

Add Team.png

 

You also cannot grant the run-only permissions to groups (such as "Everyone") - so this is basically broken.  I would have to add every single person in the organisation manually to be able to grant them run access to the flow (which is just crazy).

 

A similar question (also unanswered) has been posted here:

https://powerusers.microsoft.com/t5/Building-Flows/Sharing-Flows-in-quot-Solutions-quot/td-p/539596

 

Same issue here. I want my manually triggered workflows inside a solution to be available for everyone in the company (over 1000 user) and I don't manage to add them as run-only user 😞

 

Any news here?

WConsulting
Frequent Visitor

Any update to this one? Migrating a lot of flows for a customer here and now have to tell them that some flows can't be inside of a solution. But should be under the 'my flows' to share them with a security group, which is very messy to get a lot of flows under 'my flows'. Any input from Microsoft here?

Clos
Regular Visitor

I believe I have a solution for this, which I must have found some information on before, trawling through forums. It works in my environment so I hope it would work in yours too.

 

Although you can't add groups or lists as a run only user to a flow in a solution, you can add business unit teams. You can set these teams up to point to an Azure AD security group, so anyone in this group should be able to run the workflow.

 

Before setting up the business unit team, you'll need to create a security group in Azure AD and get the Object Id on the overview page, as you'll need this when setting up the team.

 

To set up the business unit team go to the Powerapps admin center > Environments > Settings for your environment > Users + permissions > Business units > Your business unit (you might have to create one?) > Teams > New Team button

 

In the new team window, give it a name, select the correct business unit and an Administrator. You then need to change the Team Type to: AAD Security Group and set the Azure AD Object Id for a group to your groups Object Id. The membership type should be Members and guests. Save and close the team, then it should be available when you go to set a run only user. For some reason the teams take a long time to populate, so if you have a lot of users it could take a while.

 

Hopefully this information is clear and you can follow it, and it works for you. I did a few of the steps a long time ago so can't actually remember if there were extra steps I had to take at the time.

@Clos I have doubts this will work, since Dataverse Teams are only populated when user from AAD groups log into Dataverse! Login in Sharepoint would not do this... Can anybody confirm?

@MicaelLev  Thanks for the information. So to support my post, I created a new group at the time which has slowly been filling up (I admit I'm not sure how, as far as I'm aware my users aren't logging in to the Dataverse directly).

 

I have been able to test the permissions using this team though and it does enable/disable the ability for my users to run the workflows in the solution based on the team being a run only user. If the team is not a run only user, they just don't see the workflow in the list.

@Clos oh cool thanks for confirming that it does work! We will also try it out within our environment. As a last question, no need for Dataverse licences with your users inside the team?

@MicaelLev I'll be interested in the outcome! The users have a mix between O365 E1 and M365 E3 licenses and no specific Dataverse licensing yet.

Hi, did you manage to get this to work? I can't seem to get it to. Any information would be really helpful. 

Lawrenceharvey
Frequent Visitor

An update on this one.

 

Been able to get this to work. Our environment is secured by a security group. Our new team assigned AAD group needed to be added as a nested group to one controlling the environment. The team also needed to be given the basic user security role.

 

Additionally users needed to access a dataverse URL before they could use the SharePoint button (in our case). We used the flow URL in the solution for them to visit. 

 

After this the resource was available to the user.

I can also confirm that the original suggestion by @Clos  is correct.  In order to create the business unit team you need to be an administrator (so much for this being a citizen developer platform), but once done, "All Users" is available to add as a run-only user, and this seems to work great.

MicaelLev
Frequent Visitor

Se have a conclusion from our tests. All of the above is true, but only in the default environment maker. If you use any other environment, the flow will never ever ever ever ever appear. For nobody, not even the owner. As we use solutions with different environments to be able to test before production, this is a pain. What we had to do is json format the SharePoint lists and adding the flow call with his envID/flowid.

 

This shows the button to everybody, but people without authorization get a blank flow panel....

PabloD
Advocate II
Advocate II

Good lord... Good solution, but with such a limited applicability...

We have flows that have child flows so we HAVE to add them to a solution, but now we have to do backflips to expose them to users and even with that we cannot use a proper development/production environment.

 

Every time I feel that PowerAutomate is "finally there", we find another roadblock. This is getting old, Microsoft.

It's all about par for the course really, with Power Automate.

 

It's even worse when you have a flow that wasn't in a solution, and need to add it into a solution so it can be called as a child flow, or call other child flows, then find out:

  1. Once imported into a solution and have a child flow call, there is no way to export it back out, or duplicate it.
  2. Your trigger action is broken and you therefore have to rebuild the entire workflow (that's like saying you have a flat tyre, so you need to go and buy a new car ...)
  3. You have one action (or many actions!) in the flow that prevents it from being called as a child flow (this is a huge one and almost impossible to fix) - so you can't call it as a child flow, you have to turn it into a HTTP triggered flow, which you could have done in the first place outside of the solution.  Or you could go and rebuild it from scratch again (see above ... buying a new car because your tyres are last year's model)

 

Hi zylantha, there is a fallback to this problem. If requires to be confortable with editing directly json definitions.

 If the flow is fairly big, create a new blank flow with all the connector types so all the references are inside this flow. Export your solution ans unzip it. Open it with vscode and find your first broken flow. Copy the core definition and replace the New flow with this part. Make sure that references all match. Rezip, and import again. If you have worked well, your new flow will be now a New converted solution flow and you can remove the first one. 

Ok, so to fix the flat tyre, you first remove the engine, radiator, and the seats, disassemble the dashboard, then undo the lug nuts, take the tyre off the rim, before putting it back on, reinflating the tyre, and reassembling the rest of the car.  Piece of cake!

 

I love low code tyre changing, this means anybody can write their own automation scripts without ever touching a line of code.

Thats why i still have a job!

Not only that, but it takes you 10x as long to create or update anything in Power Automate than it would do in any other programming language, so you get to charge 10x as much!  What a cunning plan!

MicaelLev
Frequent Visitor

I mean, it's only Microsoft who says it is citizen developper, not me! 😛 And as a real example, we did a powerApps project that we came first with a quote that custom development would be more suited to the client. But Microsoft convinced them that it did not require developpers. It finished with 5x over budget and needing 2 developpers since nobody knew how to...

Helpful resources

Announcements

Community will be READ ONLY July 16th, 5p PDT -July 22nd

Dear Community Members,   We'd like to let you know of an upcoming change to the community platform: starting July 16th, the platform will transition to a READ ONLY mode until July 22nd.   During this period, members will not be able to Kudo, Comment, or Reply to any posts.   On July 22nd, please be on the lookout for a message sent to the email address registered on your community profile. This email is crucial as it will contain your unique code and link to register for the new platform encompassing all of the communities.   What to Expect in the New Community: A more unified experience where all products, including Power Apps, Power Automate, Copilot Studio, and Power Pages, will be accessible from one community.Community Blogs that you can syndicate and link to for automatic updates. We appreciate your understanding and cooperation during this transition. Stay tuned for the exciting new features and a seamless community experience ahead!

Summer of Solutions | Week 4 Results | Winners will be posted on July 24th

We are excited to announce the Summer of Solutions Challenge!    This challenge is kicking off on Monday, June 17th and will run for (4) weeks.  The challenge is open to all Power Platform (Power Apps, Power Automate, Copilot Studio & Power Pages) community members. We invite you to participate in a quest to provide solutions to as many questions as you can. Answers can be provided in all the communities.    Entry Period: This Challenge will consist of four weekly Entry Periods as follows (each an “Entry Period”)   - 12:00 a.m. PT on June 17, 2024 – 11:59 p.m. PT on June 23, 2024 - 12:00 a.m. PT on June 24, 2024 – 11:59 p.m. PT on June 30, 2024 - 12:00 a.m. PT on July 1, 2024 – 11:59 p.m. PT on July 7, 2024 - 12:00 a.m. PT on July 8, 2024 – 11:59 p.m. PT on July 14, 2024   Entries will be eligible for the Entry Period in which they are received and will not carryover to subsequent weekly entry periods.  You must enter into each weekly Entry Period separately.   How to Enter: We invite you to participate in a quest to provide "Accepted Solutions" to as many questions as you can. Answers can be provided in all the communities. Users must provide a solution which can be an “Accepted Solution” in the Forums in all of the communities and there are no limits to the number of “Accepted Solutions” that a member can provide for entries in this challenge, but each entry must be substantially unique and different.    Winner Selection and Prizes: At the end of each week, we will list the top ten (10) Community users which will consist of: 5 Community Members & 5 Super Users and they will advance to the final drawing. We will post each week in the News & Announcements the top 10 Solution providers.  At the end of the challenge, we will add all of the top 10 weekly names and enter them into a random drawing.  Then we will randomly select ten (10) winners (5 Community Members & 5 Super Users) from among all eligible entrants received across all weekly Entry Periods to receive the prize listed below. If a winner declines, we will draw again at random for the next winner.  A user will only be able to win once overall. If they are drawn multiple times, another user will be drawn at random.  Individuals will be contacted before the announcement with the opportunity to claim or deny the prize.  Once all of the winners have been notified, we will post in the News & Announcements of each community with the list of winners.   Each winner will receive one (1) Pass to the Power Platform Conference in Las Vegas, Sep. 18-20, 2024 ($1800 value). NOTE: Prize is for conference attendance only and any other costs such as airfare, lodging, transportation, and food are the sole responsibility of the winner. Tickets are not transferable to any other party or to next year’s event.   ** PLEASE SEE THE ATTACHED RULES for this CHALLENGE**   Week 1 Results: Congratulations to the Week 1 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge.   Community MembersNumber SolutionsSuper UsersNumber Solutions Deenuji 9 @NathanAlvares24  17 @Anil_g  7 @ManishSolanki  13 @eetuRobo  5 @David_MA  10 @VishnuReddy1997  5 @SpongYe  9JhonatanOB19932 (tie) @Nived_Nambiar  8 @maltie  2 (tie)   @PA-Noob  2 (tie)   @LukeMcG  2 (tie)   @tgut03  2 (tie)       Week 2 Results: Congratulations to the Week 2 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 2: Community MembersSolutionsSuper UsersSolutionsPower Automate  @Deenuji  12@ManishSolanki 19 @Anil_g  10 @NathanAlvares24  17 @VishnuReddy1997  6 @Expiscornovus  10 @Tjan  5 @Nived_Nambiar  10 @eetuRobo  3 @SudeepGhatakNZ 8     Week 3 Results: Congratulations to the Week 3 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 3:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji32ManishSolanki55VishnuReddy199724NathanAlvares2444Anil_g22SudeepGhatakNZ40eetuRobo18Nived_Nambiar28Tjan8David_MA22   Week 4 Results: Congratulations to the Week 4 qualifiers, you are being entered in the random drawing that will take place at the end of the challenge. Week 4:Community MembersSolutionsSuper UsersSolutionsPower Automate Deenuji11FLMike31Sayan11ManishSolanki16VishnuReddy199710creativeopinion14Akshansh-Sharma3SudeepGhatakNZ7claudiovc2CFernandes5 misc2Nived_Nambiar5 Usernametwice232rzaneti5 eetuRobo2   Anil_g2   SharonS2  

Check Out | 2024 Release Wave 2 Plans for Microsoft Dynamics 365 and Microsoft Power Platform

On July 16, 2024, we published the 2024 release wave 2 plans for Microsoft Dynamics 365 and Microsoft Power Platform. These plans are a compilation of the new capabilities planned to be released between October 2024 to March 2025. This release introduces a wealth of new features designed to enhance customer understanding and improve overall user experience, showcasing our dedication to driving digital transformation for our customers and partners.    The upcoming wave is centered around utilizing advanced AI and Microsoft Copilot technologies to enhance user productivity and streamline operations across diverse business applications. These enhancements include intelligent automation, AI-powered insights, and immersive user experiences that are designed to break down barriers between data, insights, and individuals. Watch a summary of the release highlights.    Discover the latest features that empower organizations to operate more efficiently and adaptively. From AI-driven sales insights and customer service enhancements to predictive analytics in supply chain management and autonomous financial processes, the new capabilities enable businesses to proactively address challenges and capitalize on opportunities.    

Updates to Transitions in the Power Platform Communities

We're embarking on a journey to enhance your experience by transitioning to a new community platform. Our team has been diligently working to create a fresh community site, leveraging the very Dynamics 365 and Power Platform tools our community advocates for.  We started this journey with transitioning Copilot Studio forums and blogs in June. The move marks the beginning of a new chapter, and we're eager for you to be a part of it. The rest of the Power Platform product sites will be moving over this summer.   Stay tuned for more updates as we get closer to the launch. We can't wait to welcome you to our new community space, designed with you in mind. Let's connect, learn, and grow together.   Here's to new beginnings and endless possibilities!   If you have any questions, observations or concerns throughout this process please go to https://aka.ms/PPCommSupport.   To stay up to date on the latest details of this migration and other important Community updates subscribe to our News and Announcements forums: Copilot Studio, Power Apps, Power Automate, Power Pages

Users online (1,340)