上下文:
我分别使用以下带有Azure DevOps的ARM模板和资源部署任务来部署存储帐户以及一个或多个容器:
{
"$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#",
"contentVersion": "1.0.0.0",
"parameters": {
"storageAccountName": {
"type": "string",
"metadata": {
"description": "The name of the Azure Storage account."
}
},
"containerNames": {
"type": "array",
"metadata": {
"description": "The names of the blob containers."
}
},
"location": {
"type": "string",
"metadata": {
"description": "The location in which the Azure Storage resources should be deployed."
}
}
},
"resources": [
{
"name": "[parameters('storageAccountName')]",
"type": "Microsoft.Storage/storageAccounts",
"apiVersion": "2018-07-01",
"location": "[parameters('location')]",
"kind": "StorageV2",
"sku": {
"name": "Standard_LRS",
"tier": "Standard"
},
"properties": {
"accessTier": "Hot"
}
},
{
"name": "[concat(parameters('storageAccountName'), '/default/', parameters('containerNames')[copyIndex()])]",
"type": "Microsoft.Storage/storageAccounts/blobServices/containers",
"apiVersion": "2018-03-01-preview",
"dependsOn": [
"[parameters('storageAccountName')]"
],
"copy": {
"name": "containercopy",
"count": "[length(parameters('containerNames'))]"
}
}
],
"outputs": {
"storageAccountName": {
"type": "string",
"value": "[parameters('storageAccountName')]"
},
"storageAccountKey": {
"type": "string",
"value": "[listKeys(parameters('storageAccountName'), '2018-02-01').keys[0].value]"
},
"storageContainerNames": {
"type": "array",
"value": "[parameters('containerNames')]"
}
}
}
输入可以是
-storageAccountName 'stor1' -containerNames [ 'con1', 'con2' ] -location 'westeurope'
下一步,我为部署的容器创建存储访问策略。
问题:
我第一次这样做,一切正常。但是,如果我第二次执行管道,则部署模板会删除存储的访问策略。存储帐户本身及其容器和Blob不会被删除(应该删除)。不幸的是,因为我想将存储访问策略的开始时间和到期时间保留为首次部署,而且我希望SAS也无效(到目前为止尚未测试)。
问题:
为什么会这样? 如何避免此问题分别保留存储访问策略?
谢谢
答案 0 :(得分:0)
经过一些调查,这似乎是设计使然。在为存储帐户部署ARM模板时,将使用PUT操作,即删除模板中未指定的元素。由于无法为存储帐户的ARM模板中的容器指定共享访问策略,因此当重新部署模板时,现有容器将被删除...