Sample code for 30+ languages & platforms
Unicode C

How to Generate an Azure Storage Account Shared Access Signature (SAS)

See more Azure Cloud Storage Examples

Shows how to generate a Shared Access Signature (SAS) for an Azure Storage Account.

Note: This example requires Chilkat v9.5.0.65 or greater.

Chilkat Unicode C Downloads

Unicode C
#include <C_CkAuthAzureSASW.h>
#include <C_CkDateTimeW.h>
#include <C_CkFileAccessW.h>

void ChilkatSample(void)
    {
    HCkAuthAzureSASW authSas;
    HCkDateTimeW dt;
    const wchar_t *sasToken;
    HCkFileAccessW fac;

    // Note: Requires Chilkat v9.5.0.65 or greater.

    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // --------------------------------------------------------------------------
    // Create a Shared Access Signature (SAS) token for an Azure Storage Account.
    // --------------------------------------------------------------------------

    // See https://docs.microsoft.com/en-us/rest/api/storageservices/fileservices/constructing-an-account-sas 
    // for details regarding the Azure Storage Account SAS fields.

    authSas = CkAuthAzureSASW_Create();
    CkAuthAzureSASW_putAccessKey(authSas,L"AZURE_ACCESS_KEY");

    // Specify the format of the string to sign.
    // Each comma character in the following string represents a LF ("\n") character.
    // The names specified in the StringToSign are replaced with the values specified
    // in the subsequent calls to SetTokenParam and SetNonTokenParam,.

    // Note: The trailing comma in the StringToSign is intentional and important. This indicates that the 
    // string to sign will end with a "\n".

    // Also note: The names in the StringToSign are case sensitive.  The names
    // specified in the 1st argument in the calls to SetNonTokenParam and SetTokenParam should
    // match a name listed in StringToSign. 
    CkAuthAzureSASW_putStringToSign(authSas,L"accountname,signedpermissions,signedservice,signedresourcetype,signedstart,signedexpiry,signedIP,signedProtocol,signedversion,");

    //  The account name is "chilkat".  Use your own account name instead of "chilkat".
    //  Also use your own container name instead of "mycontainer".
    CkAuthAzureSASW_SetNonTokenParam(authSas,L"accountname",L"chilkat");

    CkAuthAzureSASW_SetTokenParam(authSas,L"signedpermissions",L"sp",L"rwdlacup");
    CkAuthAzureSASW_SetTokenParam(authSas,L"signedservice",L"ss",L"bfqt");
    CkAuthAzureSASW_SetTokenParam(authSas,L"signedresourcetype",L"srt",L"sco");

    dt = CkDateTimeW_Create();
    CkDateTimeW_SetFromCurrentSystemTime(dt);
    CkAuthAzureSASW_SetTokenParam(authSas,L"signedstart",L"st",CkDateTimeW_getAsIso8601(dt,L"YYYY-MM-DDThh:mmTZD",FALSE));

    // This SAS token will be valid for 30 days.
    CkDateTimeW_AddDays(dt,30);
    CkAuthAzureSASW_SetTokenParam(authSas,L"signedexpiry",L"se",CkDateTimeW_getAsIso8601(dt,L"YYYY-MM-DDThh:mmTZD",FALSE));

    CkAuthAzureSASW_SetTokenParam(authSas,L"signedProtocol",L"spr",L"https");

    //  Specifiy values and query param names for each field.
    //  If a field is not specified, then an empty string will be used for its value.
    CkAuthAzureSASW_SetTokenParam(authSas,L"signedversion",L"sv",L"2015-04-05");

    // Note that we did not call SetTokenParam for "signedIP".  For any omitted fields
    // the value will default to the empty string.

    // Generate the SAS token.
    sasToken = CkAuthAzureSASW_generateToken(authSas);
    if (CkAuthAzureSASW_getLastMethodSuccess(authSas) != TRUE) {
        wprintf(L"%s\n",CkAuthAzureSASW_lastErrorText(authSas));
        CkAuthAzureSASW_Dispose(authSas);
        CkDateTimeW_Dispose(dt);
        return;
    }

    wprintf(L"SAS token: %s\n",sasToken);

    // Save the SAS token to a file.
    // We can then use this pre-generated token for future Azure Storage Account operations.
    fac = CkFileAccessW_Create();
    CkFileAccessW_WriteEntireTextFile(fac,L"qa_data/tokens/azureStorageAccountSas.txt",sasToken,L"utf-8",FALSE);


    CkAuthAzureSASW_Dispose(authSas);
    CkDateTimeW_Dispose(dt);
    CkFileAccessW_Dispose(fac);

    }