Statements (26)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
authentication mechanism
|
| gptkbp:bestPractice |
use HTTPS endpoints
use least privilege permissions use short expiry times |
| gptkbp:canBe |
gptkb:Azure_Queue_Storage
gptkb:Azure_Table_Storage gptkb:Azure_Blob_Storage Azure File Storage |
| gptkbp:contains |
signature
permissions expiry time resource URI URI parameters |
| gptkbp:generation |
gptkb:Azure_Active_Directory
Azure Storage account key |
| https://www.w3.org/2000/01/rdf-schema#label |
SAS tokens
|
| gptkbp:purpose |
grant limited access to Azure resources
|
| gptkbp:riskFactor |
can be misused if leaked
|
| gptkbp:standsFor |
Shared Access Signature tokens
|
| gptkbp:type |
account SAS
service SAS user delegation SAS |
| gptkbp:usedFor |
delegating access to storage resources
|
| gptkbp:usedIn |
gptkb:Microsoft_Azure
|
| gptkbp:bfsParent |
gptkb:Azure_Event_Grid
|
| gptkbp:bfsLayer |
6
|