Skip to content

Move fundCode metadata to a storage table instead of blob metadata #156

New issue
New issue
Open
Open
Move fundCode metadata to a storage table instead of blob metadata#156
Labels
questionFurther information is requestedresearch neededThis feature or request needs research to determine viability or the optimal solution
@SvenAelterman

Description

@SvenAelterman
SvenAelterman
opened on Dec 13, 2022

Issue

Anyone with write permission on the blob can modify or delete the fundCode metadata key/value.

There is no RBAC permission to separately control access to blob metadata.

Proposed Design

Each storage account managed by SaaS gets a table with a well-known name (TBD).

The identity executing the app needs permissions on storage accounts to create tables and read tables.

Table keys:

  • Partition key: container name
  • Row key: metadata key value

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requestedresearch neededThis feature or request needs research to determine viability or the optimal solution

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions