Storage Contributor Role can't help as I think
Roles starting with 'Storage Blob Data' should be assigned. 'Storage Blob Data Contributor' should help !
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
The app service has a storage contributor role in blob storage, it is throwing AuthorizationPermissionMismatch exception
Storage Contributor Role can't help as I think
Roles starting with 'Storage Blob Data' should be assigned. 'Storage Blob Data Contributor' should help !
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
Storage Blob Data Contributor doesn't have permission to update index tags. we've given a role
Defender for Storage Data Scanner.
then it is started working. Thanks for the help.
App service has Storage Blob Data Contributor.
I have a similar issue, which I reported here : https://stackoverflow.com/questions/77095628/azure-durable-function-403-and-409-errors-when-writing-internally-to-blob-queu
It seems like the "Storage XXX Data Contributor" roles (Storage queue, Storage Blob and Storage Table) are not enough, maye just in some corner cases.
Those 3 roles are the ones suggested by the documentation, as seen here : https://learn.microsoft.com/en-us/azure/azure-functions/durable/durable-functions-configure-durable-functions-with-credentials
But do they have sufficient access to, for example, create a new queue? What about when there's no queue yet (at all)? Is there some kind of preliminary creation task required, which needs more permissions? Something's not right.