Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
1.2.0
-
None
Description
Azure's account name and key are treated as admin, 'root' access credentials. If one has those, every container under this account is fully accessible. An MSFT-recommended approach is to use SAS policies, which provide for a fine grained permission and object control, as well as defined expiration.
I already have working code, filing this ticket to formally track and submit PR against next.