• Azure:Manage anonymous read access to containers and blobs


    Grant anonymous users permissions to containers and blobs

    By default, a container and any blobs within it may be accessed only by the owner of the storage account. To give anonymous users read permissions to a container and its blobs, you can set the container permissions to allow public access. Anonymous users can read blobs within a publicly accessible container without authenticating the request.

    Containers provide the following options for managing container access:

    • Full public read access: Container and blob data can be read via anonymous request. Clients can enumerate blobs within the container via anonymous request, but cannot enumerate containers within the storage account.

    • Public read access for blobs only: Blob data within this container can be read via anonymous request, but container data is not available. Clients cannot enumerate blobs within the container via anonymous request.

    • No public read access: Container and blob data can be read by the account owner only.

    Features available to anonymous users

    The following table shows which operations may be called by anonymous users when a container's ACL is set to allow public access.

    REST Operation Permission with full public read access Permission with public read access for blobs only
    List Containers Owner only Owner only
    Create Container Owner only Owner only
    Get Container Properties All Owner only
    Get Container Metadata All Owner only
    Set Container Metadata Owner only Owner only
    Get Container ACL Owner only Owner only
    Set Container ACL Owner only Owner only
    Delete Container Owner only Owner only
    List Blobs All Owner only
    Put Blob Owner only Owner only
    Get Blob All All
    Get Blob Properties All All
    Set Blob Properties Owner only Owner only
    Get Blob Metadata All All
    Set Blob Metadata Owner only Owner only
    Put Block Owner only Owner only
    Get Block List (committed blocks only) All All
    Get Block List (uncommitted blocks only or all blocks) Owner only Owner only
    Put Block List Owner only Owner only
    Delete Blob Owner only Owner only
    Copy Blob Owner only Owner only
    Snapshot Blob Owner only Owner only
    Lease Blob Owner only Owner only
    Put Page Owner only Owner only
    Get Page Ranges All All
    Append Blob Owner only Owner only

    选项“公共容器”对应Full public read access(可匿名访问本容器中的blob,可访问本容器的元数据,可枚举本容器的blob)

    选项“公共Blob”对应Public read access for blobs only(可匿名访问本容器中的blob,但是不能枚举blob,也不能访问容器元数据)

    选项“私有”对应No public read access(禁止匿名访问)

  • 相关阅读:
    SQL数据类型详解
    将Excel表格导入DataTable的方法
    .net的反射机制
    经典SQL语句大全(一)
    c# Invoke和BeginInvoke 区别
    c#中两种常用的异步调用方法
    SQL存储过程参数问题
    API 函数大全(下)
    API函数大全 (上)
    javascript 常用function
  • 原文地址:https://www.cnblogs.com/imust2008/p/5165660.html
Copyright © 2020-2023  润新知