Shared access signatures (SAS) offer a secure way to grant temporary access to specific resources within your storage account. SAS provides granular control over how clients interact with your data. This includes:
- Resource access: You can define which resources (blobs, files, queues, etc.) the client can access.
- Permission level: You can determine the level of permission granted to the client (read, write, delete, etc.).
- Validity period: You can set an expiration time for the SAS, ensuring access is only granted for a specific duration.
Below are the step by step guide to generate SAS token or URL in Azure.
- Go to storage browser, select the container or folder and got to the file for that you need a public accessible URL. Click on the options(...) of the file. Below is the screenshot for better clearity.
- Now click on the Generate SAS (shared access signatures). This will open a popup model where we need to configure the SAS to generate the public URL.
- After filling the Generate SAS form, simple click on Generate SAS token and URL. Once a user clcik on this, Blob SAS token or URL will be generated and populate below Generate SAS token and URL button from where you could can and share with your team or external users.