|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Delphi ActiveX) Create an Azure Service SASShows how to generate an Azure Service SAS.
uses Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics, Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Chilkat_TLB; ... procedure TForm1.Button1Click(Sender: TObject); var authSas: TChilkatAuthAzureSAS; dt: TCkDateTime; sasToken: WideString; fac: TCkFileAccess; begin // This requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // ---------------------------------------------------------------------------------------------- // Create a Shared Access Signature (SAS) token for an Azure Service (Blob, Queue, Table, or File) // ----------------------------------------------------------------------------------------------- // See https://docs.microsoft.com/en-us/rest/api/storageservices/create-service-sas // for details. authSas := TChilkatAuthAzureSAS.Create(Self); authSas.AccessKey := 'AZURE_ACCESS_KEY'; // Specify the format of the string to sign. // Each comma character in the following string represents a LF ("\n") character. // The names specified in the StringToSign are replaced with the values specified // in the subsequent calls to SetTokenParam and SetNonTokenParam,. // Note: The trailing comma in the StringToSign is intentional and important. This indicates that the // string to sign will end with a "\n". // Also note: The names in the StringToSign are case sensitive. The names // specified in the 1st argument in the calls to SetNonTokenParam and SetTokenParam should // match a name listed in StringToSign. // Version 2018-11-09 and later // // Version 2018-11-09 adds support for the signed resource and signed blob snapshot time fields. // These must be included in the string-to-sign. To construct the string-to-sign for Blob service resources, use the following format: // // StringToSign = signedpermissions + "\n" + // signedstart + "\n" + // signedexpiry + "\n" + // canonicalizedresource + "\n" + // signedidentifier + "\n" + // signedIP + "\n" + // signedProtocol + "\n" + // signedversion + "\n" + // signedResource + "\n" // signedSnapshotTime + "\n" + // rscc + "\n" + // rscd + "\n" + // rsce + "\n" + // rscl + "\n" + // rsct // authSas.StringToSign := 'signedpermissions,signedstart,signedexpiry,canonicalizedresource,signedidentifier,signedIP,signedProtocol,signedversion,signedResource,signedSnapshotTime,rscc,rscd,rsce,rscl,rsct'; authSas.SetTokenParam('signedpermissions','sp','rw'); dt := TCkDateTime.Create(Self); dt.SetFromCurrentSystemTime(); authSas.SetTokenParam('signedstart','st',dt.GetAsIso8601('YYYY-MM-DDThh:mmTZD',0)); // This SAS token will be valid for 30 days. dt.AddDays(30); authSas.SetTokenParam('signedexpiry','se',dt.GetAsIso8601('YYYY-MM-DDThh:mmTZD',0)); // The canonicalizedresouce portion of the string is a canonical path to the signed resource. It must include the service name (blob, table, queue or file) for version // 2021-08-06 or later, the storage account name, and the resource name, and must be URL-decoded. Names of blobs must include the blob�s container. Table names must be // lower-case. The following examples show how to construct the canonicalizedresource portion of the string, depending on the type of resource. // For example: // URL = https://chilkat.blob.core.windows.net/mycontainer/starfish.jpg // canonicalizedresource = "/blob/chilkat/mycontainer/starfish.jpg" // IMPORTANT: See https://docs.microsoft.com/en-us/rest/api/storageservices/create-service-sas for all details.. authSas.SetNonTokenParam('canonicalizedresource','/blob/chilkat/mycontainer/starfish.jpg'); authSas.SetTokenParam('signedProtocol','spr','https'); // Specifiy values and query param names for each field. // If a field is not specified, then an empty string will be used for its value. authSas.SetTokenParam('signedversion','sv','2018-11-09'); // Indicate that we are creating a service SAS that is limited to the blob resource. // (Specify b if the shared resource is a blob. This grants access to the content and metadata of the blob. // Specify c if the shared resource is a container. This grants access to the content and metadata of any blob in the container, and to the list of blobs in the container. ) authSas.SetTokenParam('signedResource','sr','b'); // Note that we did not call SetTokenParam for "signedIP", "signedSnapshotTime", "rscc", and others. For any omitted fields // the value will default to the empty string. // Generate the SAS token. sasToken := authSas.GenerateToken(); if (authSas.LastMethodSuccess <> 1) then begin Memo1.Lines.Add(authSas.LastErrorText); Exit; end; Memo1.Lines.Add('SAS token: ' + sasToken); // Save the SAS Service token to a file. // We can then use this pre-generated token for future Azure Storage Account operations. fac := TCkFileAccess.Create(Self); fac.WriteEntireTextFile('qa_data/tokens/azureStorageServiceSas.txt',sasToken,'utf-8',0); end; |
||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.