Grant anonymous users permissions to containers and blobs
By default, a container and any blobs within it is accessed only by the owner of the storage account. To give anonymous users read permissions to a container and their blobs, can set the container permissions to allow publ IC Access. Anonymous users can read blobs within a publicly accessible container without authenticating the request.
Containers provide the following options for managing container access:
Full public read Access:container and BLOB data can be read via anonymous request. Clients can enumerate blobs within the container via anonymous request, but cannot enumerate containers within the storage Account.
Public read access for BLOBs Only:blob data within this container can is read via anonymous request, but container data i s not available. Clients cannot enumerate blobs within the container via anonymous request.
No public read Access:container and BLOB data can is read by the account owner only.
Features available to anonymous users
The following table shows which operations may being called by anonymous users when a container ' s ACL are set to allow public Access.
REST operation |
Permission with full public read access |
Permission with public read access for BLOBs only |
List Containers |
Owner only |
Owner only |
Create Container |
Owner only |
Owner only |
Get Container Properties |
All |
Owner only |
Get Container Metadata |
All |
Owner only |
Set Container Metadata |
Owner only |
Owner only |
Get Container ACL |
Owner only |
Owner only |
Set Container ACL |
Owner only |
Owner only |
Delete Container |
Owner only |
Owner only |
List Blobs |
All |
Owner only |
Put Blob |
Owner only |
Owner only |
Get Blob |
All |
All |
Get Blob Properties |
All |
All |
Set Blob Properties |
Owner only |
Owner only |
Get Blob Metadata |
All |
All |
Set Blob Metadata |
Owner only |
Owner only |
Put Block |
Owner only |
Owner only |
Get Block List (committed blocks only) |
All |
All |
Get Block List (uncommitted blocks only or all blocks) |
Owner only |
Owner only |
Put Block List |
Owner only |
Owner only |
Delete Blob |
Owner only |
Owner only |
Copy Blob |
Owner only |
Owner only |
Snapshot Blob |
Owner only |
Owner only |
Lease Blob |
Owner only |
Owner only |
Put Page |
Owner only |
Owner only |
Get Page Ranges |
All |
All |
Append Blob |
Owner only |
Owner only |
The option "Common container" corresponds to full public read access (can access the BLOB in this container anonymously, can access the metadata of this container, can enumerate the blob of this container) option "Public blob" corresponding to the publicly read access for BLOBs Only (you can anonymously access blobs in this container, but you cannot enumerate blobs, and you cannot access container metadata) option "private" for no public read access (disallow anonymous access)
Azure:manage Anonymous read access to containers and blobs