Communication between Azure SAS allows services and allowed resource types
I am reading the Azure SAS documentation ( https://docs.microsoft.com/en-us/rest/api/storageservices/fileservices/constructing-a-service-sas ) and I am confused about the relationship between allowed resource types and Azure services.
If I go to the storage account -> share signing, the first thing I have to do is select Allowed Services (Blob, file, queue, table). Then the allowed resource types (Service, Container and Object).
The Blob service now has a container, but there are no containers in the file, queue, or table. So why is the Container option listed in the allowed resource type for the file, queue and table service?
source to share
The Blob service now has a container, but the file, queue, or table has no containers. So why is the Container option provided in the allowed resource type for the file, queue and table service?
Don't think of container
being mentioned there as blob container
. Think of it as something that will have children (objects in this case).
In context, blobs container
will refer to blob container
that will contain blobs
.
In the context of a file service, it container
will refer to share
that will contain files
and directories
.
In the context of the service, the table container
will refer to table
that will contain entities
.
In the context of the service, the queue container
will refer to queue
that will contain messages
.
source to share
As far as I know, the resource type you can consider below:
- Service (s): Access to the service level API (e.g. Get / Set Service Properties, Get Service Statistics, List Containers / Queues / Tables / Stocks)
- Container (c): Access to APIs at the container level (e.g. create / delete container, create / delete queue, create / delete table, create / delete shared, list of blocks / files and directories)
- Object (o): Access object-level APIs for blobs, queue messages, entities, and table files (e.g. Put Blob, Query Entity, Get Messages, Create File, etc.).
source to share