Working with Shared Access Signatures

Lab Details

  1. In this lab we will walk through the steps on how to access blobs using shared access signatures.

  2. Duration: 45 minute

Introduction

What is Blob Storage?

  • Blob storage is a feature in Microsoft Azure that lets developers store unstructured data in Microsoft's cloud platform. This data can be accessed from anywhere in the world and can include audio, video and text.

  • Blob storage allows Microsoft Azure to store arbitrarily large amounts of unstructured data and serve them to users over HTTP and HTTPS.

  • Microsoft defines three types of blobs: block blobs, append blobs and page blobs.

What are Shared Access Signatures?

  • A shared access signature (SAS) provides secure delegated access to resources in your storage account. With a SAS, you have granular control over how a client can access your data. For example:What resources the client may access, What permissions they have to those resources, How long the SAS is valid.

  • A shared access signature is a signed URI that points to one or more storage resources and includes a token that contains a special set of query parameters. The token indicates how the resources may be accessed by the client. One of the query parameters, the signature, is constructed from the SAS parameters and signed with the key that was used to create the SAS. This signature is used by Azure Storage to authorize access to the storage resource.

Task Details

  1. Launching Lab Environment

  2. Create blob storage using CLI

  3. Create a container using CLI

  4. Upload a blob on to storage account using CLI

  5. Create shared access signature at the blob level

  6. Create shared access signature at the Storage Account level