Ejemplo n.º 1
0
def create_file_share_saskey(
        storage_settings, file_share, kind, create_share=False):
    # type: (StorageCredentialSettings, str, str, bool) -> str
    """Create a saskey for a file share with a 7day expiry time
    :param StorageCredentialsSettings storage_settings: storage settings
    :param str file_share: file share
    :param str kind: ingress or egress
    :param bool create_share: create file share
    :rtype: str
    :return: saskey
    """
    file_client = azurefile.FileService(
        account_name=storage_settings.account,
        account_key=storage_settings.account_key,
        endpoint_suffix=storage_settings.endpoint)
    if create_share:
        file_client.create_share(file_share, fail_on_exist=False)
    if kind == 'ingress':
        perm = azurefile.SharePermissions(read=True, list=True)
    elif kind == 'egress':
        perm = azurefile.SharePermissions(
            read=True, write=True, delete=True, list=True)
    else:
        raise ValueError('{} type of transfer not supported'.format(kind))
    return file_client.generate_share_shared_access_signature(
        file_share, perm,
        expiry=datetime.datetime.utcnow() +
        datetime.timedelta(days=_DEFAULT_SAS_EXPIRY_DAYS)
    )
Ejemplo n.º 2
0
def create_saskey(
        storage_settings, path, file, create, list_perm, read, write, delete,
        expiry_days=None):
    # type: (settings.StorageCredentialsSettings, str, bool, bool, bool, bool,
    #        bool, bool, int) -> None
    """Create an object-level sas key
    :param settings.StorageCredentialsSetting storage_settings:
        storage settings
    :param str path: path
    :param bool file: file sas
    :param bool create: create perm
    :param bool list_perm: list perm
    :param bool read: read perm
    :param bool write: write perm
    :param bool delete: delete perm
    :param int expiry_days: expiry in days
    :rtype: str
    :return: sas token
    """
    if expiry_days is None:
        expiry_days = _DEFAULT_SAS_EXPIRY_DAYS
    if file:
        client = azurefile.FileService(
            account_name=storage_settings.account,
            account_key=storage_settings.account_key,
            endpoint_suffix=storage_settings.endpoint)
        tmp = path.split('/')
        if len(tmp) < 1:
            raise ValueError('path is invalid: {}'.format(path))
        share_name = tmp[0]
        if len(tmp) == 1:
            perm = azurefile.SharePermissions(
                read=read, write=write, delete=delete, list=list_perm)
            sas = client.generate_share_shared_access_signature(
                share_name=share_name, permission=perm,
                expiry=datetime.datetime.utcnow() +
                datetime.timedelta(days=expiry_days)
            )
        else:
            if len(tmp) == 2:
                directory_name = ''
                file_name = tmp[1]
            else:
                directory_name = tmp[1]
                file_name = '/'.join(tmp[2:])
            perm = azurefile.FilePermissions(
                read=read, create=create, write=write, delete=delete)
            sas = client.generate_file_shared_access_signature(
                share_name=share_name, directory_name=directory_name,
                file_name=file_name, permission=perm,
                expiry=datetime.datetime.utcnow() +
                datetime.timedelta(days=expiry_days)
            )
    else:
        client = azureblob.BlockBlobService(
            account_name=storage_settings.account,
            account_key=storage_settings.account_key,
            endpoint_suffix=storage_settings.endpoint)
        tmp = path.split('/')
        if len(tmp) < 1:
            raise ValueError('path is invalid: {}'.format(path))
        container_name = tmp[0]
        if len(tmp) == 1:
            perm = azureblob.ContainerPermissions(
                read=read, write=write, delete=delete, list=list_perm)
            sas = client.generate_container_shared_access_signature(
                container_name=container_name, permission=perm,
                expiry=datetime.datetime.utcnow() +
                datetime.timedelta(days=expiry_days)
            )
        else:
            blob_name = '/'.join(tmp[1:])
            perm = azureblob.BlobPermissions(
                read=read, create=create, write=write, delete=delete)
            sas = client.generate_blob_shared_access_signature(
                container_name=container_name, blob_name=blob_name,
                permission=perm,
                expiry=datetime.datetime.utcnow() +
                datetime.timedelta(days=expiry_days)
            )
    return sas