exclude some checks or options for SAS authorisation

idseefeld · idseefeld · commit cea90802b0ad · 2018-09-12T20:43:59.000+02:00
diff --git a/src/UmbracoFileSystemProviders.Azure/AzureFileSystem.cs b/src/UmbracoFileSystemProviders.Azure/AzureFileSystem.cs
@@ -615,8 +615,20 @@ private static CloudBlobContainer CreateContainer(CloudBlobClient cloudBlobClien
             }
 
             CloudBlobContainer container = cloudBlobClient.GetContainerReference(containerName.ToLowerInvariant());
-            container.CreateIfNotExists();
-            container.SetPermissions(new BlobContainerPermissions { PublicAccess = accessType });
+            if (!cloudBlobClient.Credentials.IsSAS)
+            {
+                // Shared access signatures (SAS) have some limitations compared to shared access keys
+                // read more on: https://docs.microsoft.com/en-us/azure/storage/common/storage-dotnet-shared-access-signature-part-1
+                string[] sasTokenProperties = cloudBlobClient.Credentials.SASToken.Split("&".ToCharArray(), StringSplitOptions.RemoveEmptyEntries);
+                bool isAccountSas = sasTokenProperties.Where(k => k.ToLowerInvariant().StartsWith("si=")).FirstOrDefault() == null;
+                if (isAccountSas)
+                {
+                    container.CreateIfNotExists();
+                }
+
+                container.SetPermissions(new BlobContainerPermissions { PublicAccess = accessType });
+            }
+
             return container;
         }
 
