azure-storage-common/12.10.0/account__sas__builder_8hpp_source.html

// Copyright (c) Microsoft Corporation.

// Licensed under the MIT License.


#pragma once


#include "azure/storage/common/internal/constants.hpp"

#include "azure/storage/common/storage_credential.hpp"


#include <azure/core/datetime.hpp>

#include <azure/core/nullable.hpp>


#include <string>

#include <type_traits>


namespace Azure { namespace Storage { namespace Sas {


  enum class SasProtocol

  {

    HttpsAndHttp,


    HttpsOnly,

  };


  namespace _detail {

    inline std::string SasProtocolToString(SasProtocol protocol)

    {

      return protocol == SasProtocol::HttpsAndHttp ? "https,http" : "https";

    }

  } // namespace _detail


  enum class AccountSasResource

  {

    Service = 1,


    Container = 2,


    Object = 4,


    All = ~0,

  };


  inline AccountSasResource operator|(AccountSasResource lhs, AccountSasResource rhs)

  {

    using type = std::underlying_type_t<AccountSasResource>;

    return static_cast<AccountSasResource>(static_cast<type>(lhs) | static_cast<type>(rhs));

  }


  inline AccountSasResource operator&(AccountSasResource lhs, AccountSasResource rhs)

  {

    using type = std::underlying_type_t<AccountSasResource>;

    return static_cast<AccountSasResource>(static_cast<type>(lhs) & static_cast<type>(rhs));

  }


  enum class AccountSasServices

  {

    Blobs = 1,


    Queue = 2,


    Files = 4,


    All = ~0,

  };


  inline AccountSasServices operator|(AccountSasServices lhs, AccountSasServices rhs)

  {

    using type = std::underlying_type_t<AccountSasServices>;

    return static_cast<AccountSasServices>(static_cast<type>(lhs) | static_cast<type>(rhs));

  }


  inline AccountSasServices operator&(AccountSasServices lhs, AccountSasServices rhs)

  {

    using type = std::underlying_type_t<AccountSasServices>;

    return static_cast<AccountSasServices>(static_cast<type>(lhs) & static_cast<type>(rhs));

  }


  enum class AccountSasPermissions

  {

    Read = 1,


    Write = 2,


    Delete = 4,


    DeleteVersion = 8,


    List = 16,


    Add = 32,


    Create = 64,


    Update = 128,


    Process = 256,


    Tags = 512,


    Filter = 1024,


    SetImmutabilityPolicy = 2048,


    PermanentDelete = 4096,


    All = ~0,

  };


  inline AccountSasPermissions operator|(AccountSasPermissions lhs, AccountSasPermissions rhs)

  {

    using type = std::underlying_type_t<AccountSasPermissions>;

    return static_cast<AccountSasPermissions>(static_cast<type>(lhs) | static_cast<type>(rhs));

  }


  inline AccountSasPermissions operator&(AccountSasPermissions lhs, AccountSasPermissions rhs)

  {

    using type = std::underlying_type_t<AccountSasPermissions>;

    return static_cast<AccountSasPermissions>(static_cast<type>(lhs) & static_cast<type>(rhs));

  }


  struct AccountSasBuilder final

  {

    SasProtocol Protocol = SasProtocol::HttpsOnly;


    Azure::Nullable<Azure::DateTime> StartsOn;


    Azure::DateTime ExpiresOn;


    Azure::Nullable<std::string> IPRange;


    AccountSasServices Services;


    AccountSasResource ResourceTypes;


    std::string EncryptionScope;


    void SetPermissions(AccountSasPermissions permissions);


    void SetPermissions(std::string rawPermissions) { Permissions = std::move(rawPermissions); }


    std::string GenerateSasToken(const StorageSharedKeyCredential& credential);


    std::string GenerateSasStringToSign(const StorageSharedKeyCredential& credential);


  private:

    std::string Permissions;

  };


}}} // namespace Azure::Storage::Sas

Azure::Storage::StorageSharedKeyCredential
A StorageSharedKeyCredential is a credential backed by a storage account's name and one of its access...
Definition storage_credential.hpp:30

Azure::Storage::Sas::AccountSasBuilder
AccountSasBuilder is used to generate an account level Shared Access Signature (SAS) for Azure Storag...
Definition account_sas_builder.hpp:219

Azure::Storage::Sas::AccountSasBuilder::Protocol
SasProtocol Protocol
The optional signed protocol field specifies the protocol permitted for a request made with the SAS.
Definition account_sas_builder.hpp:224

Azure::Storage::Sas::AccountSasBuilder::EncryptionScope
std::string EncryptionScope
Optional encryption scope to use when sending requests authorized with this SAS url.
Definition account_sas_builder.hpp:261

Azure::Storage::Sas::AccountSasBuilder::ExpiresOn
Azure::DateTime ExpiresOn
The time at which the shared access signature becomes invalid. This field must be omitted if it has b...
Definition account_sas_builder.hpp:236

Azure::Storage::Sas::AccountSasBuilder::StartsOn
Azure::Nullable< Azure::DateTime > StartsOn
Optionally specify the time at which the shared access signature becomes valid.
Definition account_sas_builder.hpp:230

Azure::Storage::Sas::AccountSasBuilder::SetPermissions
void SetPermissions(AccountSasPermissions permissions)
Sets the permissions for an account SAS.

Azure::Storage::Sas::AccountSasBuilder::GenerateSasToken
std::string GenerateSasToken(const StorageSharedKeyCredential &credential)
Uses the StorageSharedKeyCredential to sign this shared access signature, to produce the proper SAS q...

Azure::Storage::Sas::AccountSasBuilder::SetPermissions
void SetPermissions(std::string rawPermissions)
Sets the permissions for the SAS using a raw permissions string.
Definition account_sas_builder.hpp:276

Azure::Storage::Sas::AccountSasBuilder::Services
AccountSasServices Services
The services associated with the shared access signature. The user is restricted to operations with t...
Definition account_sas_builder.hpp:250

Azure::Storage::Sas::AccountSasBuilder::GenerateSasStringToSign
std::string GenerateSasStringToSign(const StorageSharedKeyCredential &credential)
For debugging purposes only.

Azure::Storage::Sas::AccountSasBuilder::IPRange
Azure::Nullable< std::string > IPRange
Specifies an IP address or a range of IP addresses from which to accept requests. If the IP address f...
Definition account_sas_builder.hpp:244

Azure::Storage::Sas::AccountSasBuilder::ResourceTypes
AccountSasResource ResourceTypes
Definition account_sas_builder.hpp:256