![]() Your source container or file must have designated read and list access.Select the file where you wish to delegate SAS access and right-click to display the options menu. They'll only be displayed once and can't be retrieved once the window is closed.Įxpand your storage node and select Blob Containers.Įxpand the Blob Containers node and select a container node to display the contents in the main window. Define your container Permissions by checking and/or clearing the appropriate check box.Ī new window will appear with the Container name, URI, and Query string for your container.Ĭopy and paste the container, URI, and query string values in a secure location.Select the Time zone for the Start and Expiry date and time (default is Local).A short lifespan is recommended because, once generated, a SAS can't be revoked. Specify the signed key Start and Expiry date and time.Select your Access policy (the default is none). ![]() In the Shared Access Signature window, make the following selections: Open the Azure Storage Explorer app on your local machine and navigate to your connected Storage Accounts.Įxpand the Storage Accounts node and select Blob Containers.Įxpand the Blob Containers node and right-click a storage container node to display the options menu. Follow these steps to create tokens for a storage container or specific blob file: You'll need the Azure Storage Explorer app installed in your Windows, macOS, or Linux development environment.Īfter the Azure Storage Explorer app is installed, connect it to the storage account you're using for Document Translation. To construct a SAS URL, append the SAS token (URI) to the URL for a storage service.Ĭreate SAS tokens with Azure Storage ExplorerĪzure Storage Explorer is a free standalone app that enables you to easily manage your Azure cloud storage resources from your desktop. They'll only be displayed once and cannot be retrieved once the window is closed. The Blob SAS token query string and Blob SAS URL will be displayed in the lower area of window.Ĭopy and paste the Blob SAS token and URL values in a secure location. Review then select Generate SAS token and URL. The Allowed protocols field is optional and specifies the protocol permitted for a request made with the SAS. If the request IP address doesn't match the IP address or address range specified on the SAS token, it won't be authorized. The Allowed IP addresses field is optional and specifies an IP address or a range of IP addresses from which to accept requests. The value for the expiry time is a maximum of seven days from the creation of the SAS token.Consider setting a longer duration period for the time you'll be using your storage account for Translator Service operations.After 48 hours, you'll need to create a new token. When you create a shared access signature (SAS), the default duration is 48 hours.Specify the signed key Start and Expiry times. Your target container or file must have designated write and list access. Your source container or file must have designated read and list access. Select Signing method → User delegation key.ĭefine Permissions by checking and/or clearing the appropriate check box: Right-click the container or file and select Generate SAS from the drop-down menu. Your storage account → containers → your container→ your file Your storage account → containers → your container Go to the Azure portal and navigate to your container or a specific file as follows and continue with these steps: Create SAS token for a container When you create your container, set Public access level to Container (anonymous read access for containers and files) in the New Container window. When you create your storage account, select Standard performance in the Instance details > Performance field. If you don't know how to create an Azure storage account with a storage container, follow these quickstarts: You'll create containers to store and organize your files within your storage account. If you don't have one, you can create a free account.Ī standard performance Azure Blob Storage account. To get started, you'll need the following resources:Īn active Azure account. Operations that use SAS tokens should be performed only over an HTTPS connection, and SAS URIs should only be distributed on a secure connection such as HTTPS. SAS tokens are used to grant permissions to storage resources, and should be protected in the same manner as an account key.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |