azure - Create Shared Access Token with Microsoft.WindowsAzure.Storage returns 403 -


i have simple method uses new storage api create sas , copy blob 1 container another.

i trying use copy blob between storage accounts. have 2 storage accounts, exact same containers, , trying copy blob storage account's container storage account's container.

i don't know if sdk built that, seems common scenario.

some additional information:

  1. i create token on destination container. token need created on both source , destination? take time register token? need create each request, or once per token "lifetime"?

i should mention 403 unauthorized result http error code.

  private static string createsharedaccesstoken(cloudblobclient blobclient, string containername)     {         var container = blobclient.getcontainerreference(containername);         var blobpermissions = new blobcontainerpermissions();          // shared access policy provides read/write access container 10 hours:          blobpermissions.sharedaccesspolicies.add("solutionpolicy", new sharedaccessblobpolicy()         {             // ensure sas valid don’t set start time              // can avoid failures caused small clock differences:              sharedaccessexpirytime = datetime.utcnow.addhours(1),             permissions = sharedaccessblobpermissions.write |                           sharedaccessblobpermissions.read         });           blobpermissions.publicaccess = blobcontainerpublicaccesstype.blob;          container.setpermissions(blobpermissions);          return container.getsharedaccesssignature(new sharedaccessblobpolicy(), "solutionpolicy");      }

down line use token call copy operation, returns 403:

  var uri = new uri(srcblob.uri.absoluteuri + blobtoken);             destblob.startcopyfromblob(uri);

my version of azure.storage 2.1.0.2.

here full copy method in case helps:

    private static void copyblobs(         cloudblobcontainer srccontainer, string blobtoken,         cloudblobcontainer destcontainer)     {         var srcbloblist             = srccontainer.listblobs(string.empty, true, bloblistingdetails.all); // set none in prod (4perf)          //// sas token use blobs          //string token = srccontainer.getsharedaccesssignature(         //    new sharedaccessblobpolicy(), "solutionpolicy");          bool pendingcopy = true;          foreach (var src in srcbloblist)         {             var srcblob = src icloudblob;              // determine blobtype:              icloudblob destblob;             if (srcblob.properties.blobtype == blobtype.blockblob)             {                 destblob = destcontainer.getblockblobreference(srcblob.name);             }             else             {                 destblob = destcontainer.getpageblobreference(srcblob.name);             }              // determine copy state:              if (destblob.copystate != null)             {                 switch (destblob.copystate.status)                 {                     case copystatus.failed:                         log.info(destblob.copystate);                         break;                      case copystatus.aborted:                         log.info(destblob.copystate);                         pendingcopy = true;                         destblob.startcopyfromblob(destblob.copystate.source);                         return;                      case copystatus.pending:                         log.info(destblob.copystate);                         pendingcopy = true;                         break;                 }             }               // copy using policy id:             var uri = new uri(srcblob.uri.absoluteuri + blobtoken);             destblob.startcopyfromblob(uri);               //// copy using src blob sas             //var source = new uri(srcblob.uri.absoluteuri + token);             //destblob.startcopyfromblob(source);          }     }

and account , client (vetted) code:

       var credentials = new storagecredentials("bar", "foo");         var account = new cloudstorageaccount(credentials, true);         var blobclient = account.createcloudblobclient();         var sastoken = createsharedaccesstoken(blobclient, "content");

when use rest client seems work... ideas?

consider problem:

var uri = new uri(srcblob.uri.absoluteuri + blobtoken);

probably calling "tostring" method of uri produce "human redable" version of url. if blobtoken contain special caracters example "+" cause token malformed error on storage server refuse give access.

use instead:

string uri = srcblob.uri.absoluteuri + blobtoken;

Comments

Post a Comment

Popular posts from this blog

c++ - CryptStringToBinary API behavior -

i seeing strange behavior cryptstringtobinary cryptography api. please see below code (config: x64 debug): #include "stdafx.h" #include <windows.h> #include <strsafe.h> #include <iostream> #include <exception> void main() { dword dwskip; dword dwflags; dword dwdatalen; //lpcwstr pszinput = l"jaaaaaecaaadzgaaakqaagdnnl1l56bwgfjdgr3rpxtqqqn6daw3usv2emkjym4t"; //this works fine lpcwstr pszinput = l"mytest"; //doesnt work, api returns false,error code 0x0000000d // determine size of byte array , allocate memory. if(! cryptstringtobinary( pszinput, _tcslen( pszinput ) + 1, crypt_string_base64, null, &dwdatalen, &dwskip, &dwflags ) ) { dword dw = getlasterror(); //0x0000000d: data invalid throw std::exception( "error computing byte length." ); } byte *pbytebyte = null; try { ...
Read more

c++ - Correct method for redrawing a layered window -

i have window created ws_ex_layered window style. drawing onto memory bitmap using gdi+, , using updatelayeredwindow update graphical content of layered window. intend use window main window of application, require redraw frequently. seeing layered windows not receive wm_paint windows message [?] , need come appropriate method re-drawing window. optimisation not essential , it's nice have cake , eat too. therefore, in search of "correct" method use. here thoughts far: i guess it's idea render onto off-screen bitmap before bitblt ing or similar. 60 frames rendered per second should (more than?) enough (but how compare other applications' frame rates?). possible solutions: use settimer send wm_timer message on regular basis. useful because through specifying time-out value, can achieve desired frames per second, without requirement measure duration "frame" takes rendered. would cause input or other lags due frequency , speed of m...
Read more

java.util.scanner - How to read and add only numbers to array from a text file -

i'm learning java , have question regarding reading file want read numbers file contains strings well. here example of file: 66.56 "3 java 3-43 5-42 2.1 1 and here coding: public class test { public static void main (string [] args){ if (0 < args.length) { file x = new file(args[0]); try{ scanner in = new scanner( new fileinputstream(x)); arraylist<double> test = new arraylist<>(); while(in.hasnext()){ if(in.hasnextdouble()){ double f=in.nextdouble(); test.add(f);} else {in.next();} } catch(ioexception e) { system.err.println("exception during reading: " + e); } } my problem add 66.56,2.1 , 1 doesn't add 3 after "3 or ignores 3-43 , 5-42 can tell me how skip strings , add doubles here? thanks all said 3 ie; "3, 3-43 , 4-42 strings either u read string , split , check number @ " , - or put in space between characters , integers. jvm after compilation tre...
Read more