DimosthenisK
commented
5 years ago I have already created a quick service like that, and you are free to modify it and add it to the core module. It currently looks like this:
import { Injectable } from '@nestjs/common';
import * as azure from '@azure/storage-blob';
import { ConfigService } from '../config/config.service';
import {
AccountSASServices,
AccountSASResourceTypes,
} from '@azure/storage-blob';
@Injectable()
export class AzureSASService {
private credential: azure.SharedKeyCredential;
constructor(private readonly configService: ConfigService) {
this.credential = new azure.SharedKeyCredential(
this.configService.get('AZURE_STORAGE_ACCOUNT'),
this.configService.get('AZURE_STORAGE_ACCOUNT_KEY')
);
}
getNewSASKey() { //We should probably add a config object here
let expiryTime = new Date();
let startTime = new Date();
expiryTime.setMonth(new Date().getMonth() + 1);
startTime.setFullYear(startTime.getFullYear() - 10);
return (
'?' +
azure
.generateAccountSASQueryParameters(
{
expiryTime,
services: AccountSASServices.parse('b').toString(),
resourceTypes: AccountSASResourceTypes.parse(
'sco'
).toString(),
permissions: azure.ContainerSASPermissions.parse(
'racwdl'
).toString(),
startTime,
ipRange: { start: '0.0.0.0', end: '255.255.255.255' },
protocol: azure.SASProtocol.HTTPSandHTTP,
version: '2018-11-09',
},
this.credential
)
.toString()
);
}
}
Roytangrb
I'm submitting a...
Current behavior
Currently, you pass the SAS key during the module registering with the withConfig method. This is undesirable, as they keys expire and you might want to change them or configure them better.
Expected behavior
There should be an option to generate the SAS key via the module, using an account name and key.
Minimal reproduction of the problem with instructions
What is the motivation / use case for changing the behavior?
SAS keys expire and there should be more control over them.
Environment