Well, below are my notes on using account Shared access signatures in Azure using Azure PowerShell modules.
Let's get the basics out of the way first.
A shared access signature is a way to delegate access to resources in a storage account, without sharing the storage account keys.
SAS gives us granular control over the delegated access by :
- Specifying the start and expiry time.
- Specifying the permissions granted e.g Read/Write/Delete
- Specifying the Source IP address where the requests will originate from.
- Specifying the protocol to be used e.g HTTP/HTTPS.