Reputation: 1218
Give Azure Table Storage access to Azure AD B2C users
I would like to use Azure Table Storage (not Cosmos DB - I know Cosmos DB supports Azure AD but is too expensive for my usecase) in an Angular App which already authenticates users via the npm package @azure/msal-angular. I only require an "Editor" group and editors should be allowed to edit data in Table Storage while everyone else is allowed to read.
What I would like to achieve is the ability to assign the "Editor" role in Azure AD B2C and then I want to securely access Table Storage from Angular with write access.
I read that this is somehow doable with Azure Key Vault as an intermediary, but I cannot figure out how that works. I could use an Azure Function in the middle and access Key Vault and build the Table Storage url with an SAS token inside the function - but I would like to get this to work without the Function in the middle - is that at all possible?
Upvotes: 0
Views: 207
Answers (1)
Reputation: 11315
Azure AD B2C users can only gain access to your applications. Azure AD B2C users cannot gain access to Azure/O365 services/APIs - you have to use Azure AD.
Upvotes: 1
Related Questions
- How to authorize Azure B2C user to read blob storage
- Access Azure Table Storage with Azure MSI
- How to grant azure active directory B2C users permissions on storage account containers?
- readonly access to azure storage account
- Azure Storage Account for Tables
- Authorization of Azure Storage service REST API for table
- Azure storage table permission
- Windows Azure Tables REST Api Authentication
- azure table services authentication
- Allowing access to Azure Storage nodes to select users?