%3CLINGO-SUB%20id%3D%22lingo-sub-23343%22%20slang%3D%22en-US%22%3EUpdated%20guidance%20and%20tooling%20for%20governing%20sandbox%20solutions%20in%20SharePoint%20Server%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-23343%22%20slang%3D%22en-US%22%3E%3CP%3ECode-based%20sandbox%20solutions%20were%20deprecated%20in%20SharePoint%20Server%202013%20and%20in%20SharePoint%20Online%20in%20January%20of%202014.%20We%20began%20removing%20code-based%20sandbox%20solutions%20from%20SharePoint%20Online%20in%20recent%20months%2C%20and%20as%20another%20step%20in%20that%20journey%20we%E2%80%99re%20updating%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Fkb%2F3192601%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Eour%20guidance%3C%2FA%3E%20for%20code-based%20sandbox%20solutions%20in%20SharePoint%20Server%20on%20premises.%20In%20addition%2C%20we%E2%80%99re%20releasing%20a%20new%20capability%20to%20help%20you%20manage%20code-based%20sandbox%20solutions%20in%20running%20SharePoint%202010%2C%202013%20and%202016.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EWhat%20are%20sandbox%20solutions%3F%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3ESandbox%20solutions%20are%20a%20model%20for%20extending%20SharePoint%20that%20was%20introduced%20in%20SharePoint%202010.%20They%20provide%20a%20way%20for%20site%20collection%20administrators%20to%20add%20functionality%20without%20the%20intervention%20of%20farm%20administrators.%20A%20site%20collection%20administrator%20uploads%20a%20sandbox%20solution%20(a%20%E2%80%9C.wsp%E2%80%9D%20file)%20to%20the%20solutions%20gallery%2C%20activates%20it%2C%20and%20new%20functionality%20provided%20by%20the%20sandbox%20solution%20becomes%20available.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThere%20are%20two%20types%20of%20sandbox%20solutions%3A%20declarative%20and%20code-based.%20Declarative%20sandbox%20solutions%20contain%20no%20code%2C%20so%20they%E2%80%99re%20often%20referred%20to%20as%20%E2%80%9Cno%20code%20sandbox%20solutions%E2%80%9D.%20Instead%2C%20they%20add%20functionality%20through%20XML%20configuration%20and%20assets.%20When%20you%20save%20a%20site%20as%20a%20template%2C%20or%20save%20a%20design%20package%20with%20Design%20Manager%2C%20you%20create%20a%20declarative%20sandbox%20solution.%20You%20can%20also%20create%20a%20declarative%20sandbox%20solution%20using%20Visual%20Studio.%20Declarative%20sandbox%20solutions%20are%20fully%20supported%2C%20and%20there%20is%20no%20change%20or%20update%20related%20to%20declarative%20sandbox%20solutions.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ECode-based%20sandbox%20solutions%20include%20a%20custom%20assembly%E2%80%94custom%20code%E2%80%94and%20are%20used%20to%20add%20functionality%20that%20isn%E2%80%99t%20available%20in%20declarative%20sandbox%20solutions.%20Developers%20create%20sandbox%20solutions%20to%20create%20custom%20web%20parts%2C%20custom%20workflow%20actions%2C%20event%20receivers%2C%20feature%20receivers%2C%20and%20more.%20Some%20InfoPath%20forms%20include%20code%20as%20well%2C%20to%20connect%20with%20data%20sources%20or%20to%20perform%20custom%20validation%20logic%2C%20for%20example.%20When%20InfoPath%20forms%20contain%20code%2C%20they%20are%20a%20type%20of%20code-based%20sandbox%20solution.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EWhat%20guidance%20has%20changed%20regarding%20code-based%20sandbox%20solutions%3F%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3ECode-based%20sandbox%20solutions%20were%20deprecated%20in%20SharePoint%20Server%202013.%20Deprecation%20is%20a%20notification%2C%20so%20on-premises%20customers%20running%20SharePoint%202013%20and%20SharePoint%202016%20are%20aware%20that%20the%20feature%20will%20be%20removed%20in%20a%20future%20version%20of%20SharePoint%20Server.%20Code-based%20sandbox%20solutions%20were%20deprecated%20in%20SharePoint%20Online%20in%20January%20of%202014.%20We%20began%20taking%20steps%20to%20remove%20code-based%20sandbox%20solutions%20from%20SharePoint%20Online%20in%20recent%20months.%20Customers%20with%20code-based%20sandbox%20solutions%20in%20SharePoint%20Online%20have%20been%20notified%20via%20the%20message%20center%20of%20updates%20to%20the%20service.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAs%20technology%20evolves%20and%20features%20are%20introduced%20or%20deprecated%2C%20we%20regularly%20evaluate%20our%20product%20guidance%20for%20how%20features%20are%20used.%20Previously%2C%20code-based%20sandbox%20solutions%20were%20supported%20as%20%E2%80%9Csecurity%20boundaries%E2%80%9D%2C%20meaning%20that%20code%20in%20a%20sandbox%20solution%20had%20limited%20scope%20and%20could%20not%26nbsp%3Breach%20beyond%20a%20set%20of%20defined%20capabilities.%20We%E2%80%99re%20no%20longer%20supporting%20such%20a%20security%20boundary%20with%20code-based%20sandbox%20solutions%2C%20so%20we%E2%80%99ve%20updated%20our%20guidance%2C%20and%20are%20letting%20customers%20know%20that%20they%20should%20allow%20only%20known%20and%20trusted%20code-based%20sandbox%20solutions%20to%20execute%20in%20their%20on-premises%20SharePoint%20farms.%20We%20advise%20against%20executing%20sandbox%20solutions%20with%20code%20of%20unknown%20or%20untrusted%20origins.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EHow%20can%20I%20govern%20code-based%20sandbox%20solutions%20in%20light%20of%20these%20changes%3F%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3ETo%20help%20customers%20improve%20their%20governance%20of%20code-based%20sandbox%20solutions%20and%20prepare%20for%20their%20removal%2C%20we%E2%80%99ve%20released%20the%20Managed%20Solutions%20Gallery%20in%20the%20October%20update%20for%20SharePoint%20Server%202010%2C%202013%20and%202016.%3C%2FP%3E%0A%3CP%3EThe%20Managed%20Solutions%20Gallery%20creates%20a%20document%20library%20that%20defines%20known%20and%20trusted%20code-based%20sandbox%20solutions.%20Administrators%20with%20permissions%20to%20the%20library%20(Farm%20Administrators%20or%20delegated%20admins%20that%20have%20been%20granted%20Contribute%20permission%20to%20the%20library)%20upload%20code-based%20sandbox%20solutions%20(%E2%80%9C.wsp%E2%80%9D%20files)%20and%2C%20by%20doing%20so%2C%20approve%20the%20solutions%20for%20activation%20in%20the%20Web%20application.%20When%20a%20site%20collection%20administrator%20attempts%20to%20activate%20a%20solution%20in%20his%20or%20her%20site%20collection%2C%20activation%20is%20allowed%20only%20if%20the%20same%20solution%E2%80%94and%20the%20same%20version%20of%20the%20solution%E2%80%94exists%20in%20the%20Managed%20Solutions%20Gallery.%20This%20ensures%20that%20site%20collection%20administrators%20introduce%2C%20activate%2C%20and%20execute%20only%20the%20code-based%20sandbox%20that%20have%20been%20approved%20by%20administrators.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ENote%3A%20If%20you%20want%20to%20implement%20the%20Managed%20Solutions%20Gallery%20and%20you%20have%20InfoPath%20forms%20with%20custom%20code%20that%20are%20viewed%20by%20users%20in%20the%20browser%20(rather%20than%20the%20InfoPath%202013%20client%20application)%2C%20please%20read%20the%20article%20listed%20in%20the%20Resources%20section.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3ENext%20steps%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EWe%20encourage%20you%20to%20continue%20migrating%20sandbox%20solutions%20to%20alternative%20models.%20We%E2%80%99ve%20published%20documentation%20to%20MSDN%20to%20facilitate%20the%20transition.%20In%20that%20effort%2C%20use%20the%20tools%20documented%20in%20the%20MSDN%20documentation%20to%20inventory%20code-based%20sandbox%20solutions%20in%20your%20environment.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EConsider%20implementing%20the%20Managed%20Solutions%20Gallery%2C%20which%20enables%20you%20to%20centrally%20manage%20code-based%20sandbox%20solutions%20so%20that%20only%20trusted%20code%20is%20activated%20and%20executed.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAs%20you%20improve%20the%20governance%20of%20code-based%20sandbox%20solutions%2C%20you%20can%20increase%20your%20understanding%20of%20how%20they%20are%20used%20and%20establish%20a%20dialog%20and%20roadmap%20for%20migration%20with%20business%20owners%20of%20the%20solutions.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EImportant%20resources%3C%2FSTRONG%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2Fsandbox-removal%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3EDocumentation%20and%20tools%20on%20MSDN%3C%2FA%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Faka.ms%2Fsharepoint-managedsolutionsgallery%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3EManaged%20Solutions%20Gallery%20for%20SharePoint%202010%2C%202013%20and%202016%3C%2FA%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Fkb%2F3192601%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3EUpdated%20guidance%20regarding%20support%20of%20code-based%20sandbox%20solutions%3C%2FA%3E%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Fkb%2F3192603%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3EGuidance%20regarding%20the%20interaction%20of%20the%20Managed%20Solutions%20Gallery%20and%20InfoPath%20forms%20with%20code%20that%20are%20rendered%20in%20the%20browser%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-23343%22%20slang%3D%22en-US%22%3E%3CP%3ECode-based%20sandbox%20solutions%20were%20deprecated%20in%20SharePoint%20Server%202013%20and%20in%20SharePoint%20Online%20in%20January%20of%202014.%20We%20began%20removing%20code-based%20sandbox%20solutions%20from%20SharePoint%20Online%20in%20recent%20months%2C%20and%20as%20another%20step%20in%20that%20journey%20we%E2%80%99re%20updating%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Fkb%2F3192601%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Eour%20guidance%20%3C%2FA%3Efor%20code-based%20sandbox%20solutions%20in%20SharePoint%20Server%20on%20premises.%20In%20addition%2C%20we%E2%80%99re%20releasing%20a%20new%20capability%20to%20help%20you%20manage%20code-based%20sandbox%20solutions%20in%20running%20SharePoint%202010%2C%202013%20and%202016.%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-23343%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EProduct%20Updates%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Microsoft

Code-based sandbox solutions were deprecated in SharePoint Server 2013 and in SharePoint Online in January of 2014. We began removing code-based sandbox solutions from SharePoint Online in recent months, and as another step in that journey we’re updating our guidance for code-based sandbox solutions in SharePoint Server on premises. In addition, we’re releasing a new capability to help you manage code-based sandbox solutions in running SharePoint 2010, 2013 and 2016.

 

What are sandbox solutions?

Sandbox solutions are a model for extending SharePoint that was introduced in SharePoint 2010. They provide a way for site collection administrators to add functionality without the intervention of farm administrators. A site collection administrator uploads a sandbox solution (a “.wsp” file) to the solutions gallery, activates it, and new functionality provided by the sandbox solution becomes available.

 

There are two types of sandbox solutions: declarative and code-based. Declarative sandbox solutions contain no code, so they’re often referred to as “no code sandbox solutions”. Instead, they add functionality through XML configuration and assets. When you save a site as a template, or save a design package with Design Manager, you create a declarative sandbox solution. You can also create a declarative sandbox solution using Visual Studio. Declarative sandbox solutions are fully supported, and there is no change or update related to declarative sandbox solutions.

 

Code-based sandbox solutions include a custom assembly—custom code—and are used to add functionality that isn’t available in declarative sandbox solutions. Developers create sandbox solutions to create custom web parts, custom workflow actions, event receivers, feature receivers, and more. Some InfoPath forms include code as well, to connect with data sources or to perform custom validation logic, for example. When InfoPath forms contain code, they are a type of code-based sandbox solution.

 

What guidance has changed regarding code-based sandbox solutions?

Code-based sandbox solutions were deprecated in SharePoint Server 2013. Deprecation is a notification, so on-premises customers running SharePoint 2013 and SharePoint 2016 are aware that the feature will be removed in a future version of SharePoint Server. Code-based sandbox solutions were deprecated in SharePoint Online in January of 2014. We began taking steps to remove code-based sandbox solutions from SharePoint Online in recent months. Customers with code-based sandbox solutions in SharePoint Online have been notified via the message center of updates to the service.

 

As technology evolves and features are introduced or deprecated, we regularly evaluate our product guidance for how features are used. Previously, code-based sandbox solutions were supported as “security boundaries”, meaning that code in a sandbox solution had limited scope and could not reach beyond a set of defined capabilities. We’re no longer supporting such a security boundary with code-based sandbox solutions, so we’ve updated our guidance, and are letting customers know that they should allow only known and trusted code-based sandbox solutions to execute in their on-premises SharePoint farms. We advise against executing sandbox solutions with code of unknown or untrusted origins.

 

How can I govern code-based sandbox solutions in light of these changes?

To help customers improve their governance of code-based sandbox solutions and prepare for their removal, we’ve released the Managed Solutions Gallery in the October update for SharePoint Server 2010, 2013 and 2016.

The Managed Solutions Gallery creates a document library that defines known and trusted code-based sandbox solutions. Administrators with permissions to the library (Farm Administrators or delegated admins that have been granted Contribute permission to the library) upload code-based sandbox solutions (“.wsp” files) and, by doing so, approve the solutions for activation in the Web application. When a site collection administrator attempts to activate a solution in his or her site collection, activation is allowed only if the same solution—and the same version of the solution—exists in the Managed Solutions Gallery. This ensures that site collection administrators introduce, activate, and execute only the code-based sandbox that have been approved by administrators.

 

Note: If you want to implement the Managed Solutions Gallery and you have InfoPath forms with custom code that are viewed by users in the browser (rather than the InfoPath 2013 client application), please read the article listed in the Resources section.

 

Next steps

We encourage you to continue migrating sandbox solutions to alternative models. We’ve published documentation to MSDN to facilitate the transition. In that effort, use the tools documented in the MSDN documentation to inventory code-based sandbox solutions in your environment.

 

Consider implementing the Managed Solutions Gallery, which enables you to centrally manage code-based sandbox solutions so that only trusted code is activated and executed.

 

As you improve the governance of code-based sandbox solutions, you can increase your understanding of how they are used and establish a dialog and roadmap for migration with business owners of the solutions.

 

Important resources
Documentation and tools on MSDN
Managed Solutions Gallery for SharePoint 2010, 2013 and 2016
Updated guidance regarding support of code-based sandbox solutions
Guidance regarding the interaction of the Managed Solutions Gallery and InfoPath forms with code tha...