Storage to have readonly key for blobs
Allow for Storage to have Read only keys that can be used in client tools like Azure Storage explorer or Cloudberry for read only access.
Often times, a client tool needs to be given to customer to access files and it is not feasible to give the shared key which has full access.
Even better would be to allow for a "user" key to be generated with granular permissions on containers that can be set from Azure portal.
Thank you for you feedback. Currently we are in public preview of Azure Active Directory authentication for storage. This feature set allows you to use Azure’s role-based access control framework to grant specific permissions to users, groups and applications down to the scope of an individual blob container or queue. You can see the public preview announcement here: https://azure.microsoft.com/en-us/blog/announcing-the-preview-of-aad-authentication-for-storage/
For any further questions, or to discuss your specific scenario, send us an email at firstname.lastname@example.org.
How is this not a thing.
Union Palenshus commented
Would love this as well. SAS tokens do not solve this scenario. I use VS as my storage explorer and would love the ability to browse in read-only mode