Azure Storage Account
In one of our use case, we would like to use Azure Storage for sharing it with customers so that they can upload their data to us. In that context, we are planning to create storage account per customer. In order for customer to access the account, we are planning to share the storage account keys.
We are facing following issues
- How to create keys specific to azure storage account container, so that customer can only access specific container.
- Is it possible to have individual keys and access at container level.
- For certain container, we want to give read-write access.
- For others, we want to give only read access.
- If i have storage account keys, does that mean i have access to everything under that storage account.
Is there a better solution to this ? Essentially we need a ftp site for customers to upload data.
Sounds like you want to use a shared access signature (SAS):
https://learn.microsoft.com/en-us/azure/storage/common/storage-sas-overview