Hello Richard Byrne,
Thank you for posting your query here!
You may create a Storage Account in Azure and then create a Blob Container within the Storage Account to organize files. Then you can generate SAS tokens with permissions for creating folders and uploading files, and set an expiration time. Implement a Function App to generate the SAS tokens.
You can add your users to Azure AD and then use Azure AD for user authentication in your web application. Once this is done, create a web application using a framework and integrate Azure AD for user authentication. Implement features for creating folders and uploading files:
- Call the Azure Function to generate SAS tokens.
- Use the SAS token to interact with Azure Blob Storage.
Finally, deploy the web application to Azure App Service.
Workflow:
- User logs in through the web application using Azure AD.
- User requests folder creation; web app calls Azure Function to generate SAS token.
- User uploads files using the generated SAS token, which grants temporary access.
- SAS token expires after the specified time, making the folder inaccessible.
This workflow ensures secure and temporary access to files using Azure Blob Storage and SAS tokens, with user authentication managed by Azure AD.
Do let us know if you have any further queries. I’m happy to assist you further.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.