samedi 23 juin 2012 01:02
I've created a Container Access Policy for a container I want another person to have full access to, but I don't want them to have access to the rest of the storage account. Now that I have a CAP are there any UI tools out there that would allow them to view the contents and upload/download/delete files?
All of the tools I have come across require the full storage account access key.
Toutes les réponses
lundi 25 juin 2012 03:04Modérateur
I am trying to involve someone familiar with this topic to further look at this issue. There might be some time delay.
Appreciate your patience.
jeudi 28 juin 2012 03:17
The only way is we can use Shared Access Signature
Elements of a Shared Access Signature URL
The URL for a Shared Access Signature includes components that specify the resource to make accessible, the interval over which the Shared Access Signature is valid, the permissions associated with the signature, an optional access policy identifier associated with the request, and the signature itself. The following figure represents the parts of the Shared Access Signature URL. Required parts appear in orange. The parts of the URL are described in the subsequent sections.
We can create the Shared Access Signature URL to the user who you want to grant the permission and access the spceifed contain or blob.
jeudi 28 juin 2012 13:45Yes I do understand how Shared Access Signature work. What I am wondering is if there are any nice UI tools that allow you to manage files that you have access to via SAS. Everything seems to require a full storage account key.
jeudi 12 juillet 2012 03:28
Yes, it needs full storage account key first to set each container permission.
We don't have any role base security by default, it depends on your code to manage files permission for different users.