Specify Scope in Azure Storage Blob for REST requests while requesting token?
Can anyone confirm that to make a REST requestd to Azure storage we have to do these steps?
- Create an App Registration and get its
client IDandclient secret - Goto
API permissions->Add permission->Azure storage, adduser_impersonationas API permission that would allow the Application to access the Storage account on behalf of the signed-in user. - Goto
Access control IAM->Add role-> assign the givensigned-in user (email)whichever role that you like. - Next you can now access the token to make the request.
In this logic, one has to grant the read/write/complete-storage-account access to the Role in step 3 and then impersonate that behavior to App created.
But let's say that I want to grant these levels of access while the token request. Shown in fig:
Can I do so? That I get these read/write/owner kind of different permissions while accessing the token. If not then how can I manage different access levels?
- Should I use multiple users
- Should I use multiple applications
You don't need multiple applications, but multiple users are needed, when you use the Delegated permission user_impersonation of Azure Storage API i.e. https://storage.azure.com/user_impersonation in the scope, the app will get all the permissions of the user in the storage account after user login. Besides, I notice you used https://myaccount.blob.core.windows.net/user_impersonation, which just works for a specific storage account, make sure it meets your requirement.
- Django REST Framework Login
- api platform - Unable to generate an IRI for the item
- How can I make Laravel return a custom error for a JSON REST API
- Spark Send DataFrame as body of HTTP Post request
- Use $batch to bulk break SharePoint List items permission inheritance
- GET request not supported in custom API in Business Central. "BadRequest_MethodNotAllowed"
- Hyphen, underscore, or camelCase as word delimiter in URIs?
- Should I use Singular or Plural name convention for REST resources?
- RESTful resources: Plural vs. singular when a resource is always singular in the database
- Which is better for Dynamic querying String Builder or string buffer?
- Customize Global Exception Handler in java Spring Boot
- Custom @ControllerAdvice in Spring for exception handling
- How to handle MethodArgumentTypeMismatchException and set a custom error message in spring boot?
- POST fails with invalid or missing data
- How to make a get body travel method?
- What does .+ mean in Path Variable?
- Does Spring wait for each @PostConstruct to finish when loading ApplicationContext
- Import "rest_framework" could not be resolved. But I have installed djangorestframework, I don't know what is going wrong
- REST API design: one endpoint with if/else logic or two separate role based endpoints
- My Component in React JS application don't read the Headers from REST-Api - Headers is Empty
- {"the request was aborted: the connection was closed unexpectedly."}. I got this message when all api in for loop
- HTTP Status Code for Resource not yet available
- LinkedIn Rich Media Shares API error 'Not enough permissions to access media resource'
- Why i can access dahsboard even when my login fail?
- What’s the best RESTful method to return total number of items in an object?
- Is it still possible to use the NASA Insights API for Mars weather?
- JavaScript API Response - if clause for 'null' response
- SQLSTATE=1H52/ SQLCODE=+462 with UPS API Tracking HTTPGETCLOBVERBOSE Request
- User's password update via WordPress REST API
- Is it ok to create entity in GET REST controller method with name getOrCreateIfNotExist?