How to download a json file to Blob storage container using keys or connection string

Question

How to download a json file to Blob storage container using keys or connection string

Gabe 1

Dear Microsoft do you have any tutorial on how to download a json file to Blob storage container using Access keys or connection string from the storage account instead of Shared access tokens. I am having a hard time updating storage account(dev, UAT and Prod) and expiring date.

SAMIT SARKAR 546 Reputation points Microsoft Employee

2023-11-09T17:09:41.6+00:00

Hello Gabe,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that you are trying to Download JSON file with SAS token but due to expiy date you are not finding user friendly. If that is scenario you can try creating a SAS token with longer Expiry date.

You can also leverage the storage explorer tool and plug into the storage account with the Connection string. Please note sharing Connection string could be scurity breach it provide full access to the configuration of a storage account, as well as the data.

Refer https://learn.microsoft.com/en-us/azure/vs-azure-tools-storage-explorer-blobs

Kindly let us know if the above helps or you need further assistance on this issue.

Hope this helps.

Thanks
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-11-14T12:37:16.04+00:00

@Gabe- Just checking in to see if the below-answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Gabe 1 Reputation point

2023-11-14T20:52:29.47+00:00

Unfortunately it did not resolve my, issue.
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-12-04T12:01:35.07+00:00

Hi Gabe, we regret the inconvenience. For better understanding, could you please elaborate on whether there has been any progress following any of the suggestions shared here? Have you tried all the suggestions? If yes, are you still facing the same issue, or is there any update on it?
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-12-06T12:08:47.9433333+00:00

Just checking in to see if the below-answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Gabe 1 Reputation point

2023-12-06T13:45:32.94+00:00

Hi Anand, I was able to work with a consultant to get it resolved. We used key vault. Saved the cred in key vault and called it in the api activity. None of the answers here were helpful. They were too deep.

SAMIT SARKAR 546 Reputation points Microsoft Employee

2023-11-09T17:09:41.6+00:00

Hello Gabe,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that you are trying to Download JSON file with SAS token but due to expiy date you are not finding user friendly. If that is scenario you can try creating a SAS token with longer Expiry date.

You can also leverage the storage explorer tool and plug into the storage account with the Connection string. Please note sharing Connection string could be scurity breach it provide full access to the configuration of a storage account, as well as the data.

Refer https://learn.microsoft.com/en-us/azure/vs-azure-tools-storage-explorer-blobs

Kindly let us know if the above helps or you need further assistance on this issue.

Hope this helps.

Thanks
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-11-14T12:37:16.04+00:00

@Gabe- Just checking in to see if the below-answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Gabe 1 Reputation point

2023-11-14T20:52:29.47+00:00

Unfortunately it did not resolve my, issue.
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-12-04T12:01:35.07+00:00

Hi Gabe, we regret the inconvenience. For better understanding, could you please elaborate on whether there has been any progress following any of the suggestions shared here? Have you tried all the suggestions? If yes, are you still facing the same issue, or is there any update on it?
Anand Prakash Yadav 845 Reputation points Microsoft Vendor

2023-12-06T12:08:47.9433333+00:00

Just checking in to see if the below-answer helped. If this answers your query, do click "Accept the answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Gabe 1 Reputation point

2023-12-06T13:45:32.94+00:00

Hi Anand, I was able to work with a consultant to get it resolved. We used key vault. Saved the cred in key vault and called it in the api activity. None of the answers here were helpful. They were too deep.

Answer 1

Hello Gabe,

Thank you for posting your query here!

I understand that you are trying to download a json file from Blob storage container using Access keys or connection string from the storage account instead of Shared access tokens.

Here is a JavaScript code that uses the @azure/storage-blob library to download a blob from Azure Blob Storage. The code provided is using a connection string for authentication.

const { BlobServiceClient } = require('@azure/storage-blob');
const fs = require("fs");

const connectionString = "<your-connection-string>"; // Replace with your actual connection string
const containerName = "<your-container-name>"; // Replace with your actual container name
const blobName = "<your-blob-name>"; // Replace with your actual blob name

const blobServiceClient = BlobServiceClient.fromConnectionString(connectionString);
const containerClient = blobServiceClient.getContainerClient(containerName);
const blobClient = containerClient.getBlobClient(blobName);

// Download the blob
const downloadBlockBlobResponse = await blobClient.download();

// Convert the readable stream to a string
const downloadedContent = await streamToString(downloadBlockBlobResponse.readableStreamBody);

console.log("Downloaded blob content:", downloadedContent);

// Function to convert a readable stream to a string
async function streamToString(readableStream) {
  return new Promise((resolve, reject) => {
    const chunks = [];
    readableStream.on("data", (data) => {
      chunks.push(data.toString());
    });
    readableStream.on("end", () => {
      resolve(chunks.join(""));
    });
    readableStream.on("error", reject);
  });
}

Please note that using keys in code is not considered a recommended practice for security reasons. It's generally better to use Azure Managed Identities or Shared Access Signatures (SAS) for better security and easier rotation. If possible, consider using Azure Key Vault to store and manage secrets securely.

As you are facing issue with SAS token due to expiry, I would recommend checking the following article to configure SAS expiration policy: https://learn.microsoft.com/en-us/azure/storage/common/sas-expiration-policy?tabs=azure-portal#how-to-configure-a-sas-expiration-policy

You can also upload and download data between your local machine and Azure Storage accounts with the help of Azure Storage Explorer, you can connect it to Storage accounts using connection strings: https://learn.microsoft.com/en-us/azure/vs-azure-tools-storage-manage-with-storage-explorer?tabs=windows#account-name-and-key

Please let us know if you have any further queries. I’m happy to assist you further.

Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

Answer 2

You don't mention a preferred language but here is an example in C# to both upload and download a file to/from blob storage. It uses the Azure.Storage.Blob NuGet SDK and dynamically builds the connection string with the storage account name and account key.
Ideally, you would keep your key secure in an Azure KeyVault or secured configuration file, but this should get you started.

using Azure.Storage.Blobs;
using System.IO;
using System.Threading.Tasks;

public class BlobStorageService
{
    private string storageAccountName = "<Your Storage Account Name>";
    private string storageAccountKey = "<Your Storage Account Key>";
    private string containerName = "<Your Container Name>";

    public async Task DownloadFromBlob(string fileName)
    {
        string connectionString = $"DefaultEndpointsProtocol=https;AccountName={storageAccountName};AccountKey={storageAccountKey};EndpointSuffix=core.windows.net";
        var blobClient = new BlobClient(connectionString, containerName, fileName);
        BlobDownloadInfo download = await blobClient.DownloadAsync();

        using (FileStream file = File.OpenWrite(fileName))
        {
            await download.Content.CopyToAsync(file);
        }
    }

    public async Task UploadToBlob(string filePath, string blobName)
    {
        string connectionString = $"DefaultEndpointsProtocol=https;AccountName={storageAccountName};AccountKey={storageAccountKey};EndpointSuffix=core.windows.net";
        var blobClient = new BlobClient(connectionString, containerName, blobName);

        using (FileStream file = File.OpenRead(filePath))
        {
            await blobClient.UploadAsync(file, true);
        }
    }
}

How to download a json file to Blob storage container using keys or connection string

2 answers

Activity