What components of Azure should I use to give my users a file sharing service?

Richard Byrne 20 Reputation points
2024-06-05T14:21:05.6766667+00:00

My users need a way to share files using Azure.

As the files are financial I need to be able to:

  • create a folder
  • add files to the folder
  • ensure that the folder times out after a few hours and becomes inaccessible
  • only allow certain users access to the folder/files

The users must use a web interface to do this.

What parts of Azure should I be considering?

N.B. The tag is because the forum insisted. I have no idea if it's relevant.

Azure Files
Azure Files
An Azure service that offers file shares in the cloud.
1,213 questions
0 comments
Accepted answer
  1. Anand Prakash Yadav 7,775 Reputation points Microsoft Vendor
    2024-06-06T08:17:34.6866667+00:00

    Hello Richard Byrne,

    Thank you for posting your query here!

    You may create a Storage Account in Azure and then create a Blob Container within the Storage Account to organize files. Then you can generate SAS tokens with permissions for creating folders and uploading files, and set an expiration time. Implement a Function App to generate the SAS tokens.

    You can add your users to Azure AD and then use Azure AD for user authentication in your web application. Once this is done, create a web application using a framework and integrate Azure AD for user authentication. Implement features for creating folders and uploading files:

    • Call the Azure Function to generate SAS tokens.
    • Use the SAS token to interact with Azure Blob Storage.

    Finally, deploy the web application to Azure App Service.

    Workflow:

    • User logs in through the web application using Azure AD.
    • User requests folder creation; web app calls Azure Function to generate SAS token.
    • User uploads files using the generated SAS token, which grants temporary access.
    • SAS token expires after the specified time, making the folder inaccessible.

    This workflow ensures secure and temporary access to files using Azure Blob Storage and SAS tokens, with user authentication managed by Azure AD.

    Do let us know if you have any further queries. I’m happy to assist you further.

    Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members. 

    1 person found this answer helpful.
    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. akinbade abiola 7,280 Reputation points
    2024-06-05T20:21:37.22+00:00

    Hello Richard Byrne,

    Thanks for your question.

    Please consider using SAS tokens and storage account.

    You can create a web interface that interacts with your blob storage and when the user creates a folder you generate a SAS token which expires at your needed time you can then upload your files.

    See below for more about SAS:

    https://video2.skills-academy.com/en-us/azure/storage/common/storage-sas-overview

    If the above information was useful, please remember to 'Accept Answer'

    0 comments