Open edoboker opened 1 year ago
Hi, I would like to work on this.
Hi, I would like to work on this.
That would be great, @aleeekhaan. As we don't have Azure blob storage currently to test with, it would be important that you test as much as you can on your side.
Sure. Will do.
Currently, Athens supports Azure Blob Storage as a storage backend but only supports authenticating to that storage account via a storage account key (as documented here). In some environments (usually due to security concerns) the usage of SAS tokens is encouraged (as they have a limited lifetime, and can be narrowed down to specific roles and scopes); support for such configuration would only require some slightly different authentication process.
A potential solution might look like this:
Currently, there's no alternative to SAS tokens. In my environment, the only solution was to create a dedicated storage account to Athens where an exception to the security policy could be made (the exception being a storage account where account keys are used instead of SAS tokens).
Additional details: