This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 20%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERJ%3C/text%3E%3C/svg%3E)
I have the code below to generate a URL that can be used to download a blob. When I run the code locally and trigger it with an HTTP request, it returns a URL that works. I can use it to download the blob.
However, when I deploy the code to Azure, it returns a URL that looks similar to the one generated locally, but when I try to use that URL, I get the error mentioned in the title.
Here's the code:
def main(req: func.HttpRequest) -> func.HttpResponse:
region = req.params.get('region')
category = req.params.get('category')
if region and category:
blob_name = f'{category}_{region}.csv'
sas_token = generate_account_sas(
account_name = os.environ['STORAGE_ACCOUNT'],
account_key = os.environ['STORAGE_ACCOUNT_KEY'],
resource_types = ResourceTypes(object = True),
permission = AccountSasPermissions(read = True),
expiry = datetime.now() + timedelta(hours = int(os.environ['DOWNLOAD_TIME_LIMIT']))
)
return func.HttpResponse(f'{os.environ["STORAGE_CONTAINER_URI"]}/{blob_name}?{sas_token}')
else:
logging.warning('GenerateSignedUrl received a bad request')
return func.HttpResponse(
"Required parameters not found in the request.",
status_code=400
)
When I deploy the code to Azure and trigger it with an HTTP request, it works and returns a URL. However, when I try to use that URL to download the blob, I get the error below:
<Error>
<Code>AuthenticationFailed</Code>
<Message>Server failed to authenticate the request. Make sure the value of Authorization header is formed correctly including the signature.
RequestId:c35ecfe2-801e-0015-38da-a8cc16000000
Time:2022-08-05T14:48:42.3053987Z</Message>
<AuthenticationErrorDetail>Signature did not match. String to sign used was stp20220331
r
b
o
2022-08-07T14:33:10Z
2021-06-08
</AuthenticationErrorDetail>
</Error>
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 92%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
I am facing the same problem. Also, there are no parameters as comp in the query, yet it is giving me the same error. I didn't find any solution. Is there any way to work around this ?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 78%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
I've saw this also and spent hours on it. Thank you for the Answer but now a question/code request. Why did the SasToken generation Azure API not throw an error given a bad STORAGE_ACCOUNT, STORAGE_ACCOUNT_KEY combination.
It would be more helpful to the developer to throw an error on the call that makes the incorrect SaSToken instead of later if the token is bad. Also the wording of the error could be a little more descriptive.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 98%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Hello @Robson, James - I am glad that you are able to identity the issue from your end. Yeah - that particular ERROR CODE always points to either Incorrect
Storage Account Key
(or)
SAS Key
(or)
Sometimes, there might be some special characters in the SAS Key.
It turns out there was an error in the config settings. Specifically, the STORAGE_ACCOUNT_KEY had an incorrect value.
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more