NodeJS Azure存储返回403

时间:2018-03-05 19:23:47

标签: node.js azure azure-storage hapijs

我有一个访问Azure存储的NodeJS API。 API托管在带有IISNode的Windows Server 2016,IIS 10.0上。我正在使用HapiJS框架。

API与Azure存储模拟器配合良好,当我们移动到分阶段环境并将连接字符串更改为azure存储时,Azure存储返回403,禁止使用。

以下是记录的信息:

[2018-03-05T16:06:36.257Z]debug : FINAL REQUEST OPTIONS:
{ uri: 'https://some-container.blob.core.windows.net:443/images?restype=container',
method: 'HEAD',
headers: 
   { 'x-ms-client-request-id': '2e2ea0a0-208f-11e8-9345-559bff0df7cf',
 'user-agent': 'Azure-Storage/2.7.0 (NODE-VERSION v9.5.0; Windows_NT 10.0.14393)',
 'x-ms-version': '2017-04-17',
 'x-ms-date': 'Mon, 05 Mar 2018 16:06:36 GMT',
 accept: 'application/atom+xml,application/xml',
 'Accept-Charset': 'UTF-8',
 'content-type': '',
 'content-length': 0,
 authorization: 'SharedKey container:someKeyHere' },
mode: 'disable-fetch',
encoding: undefined,
timeout: 120000,
forever: true }

[2018-03-05T16:06:37.188Z]debug : RESPONSE:
{ error: 
   { StorageError: Forbidden
at Function.StorageServiceClient._normalizeError (C:\Load2.0\Staged\Backend\node_modules\azure-storage\lib\common\services\storageserviceclient.js:1191:23)
at BlobService.StorageServiceClient._processResponse (C:\Load2.0\Staged\Backend\node_modules\azure-storage\lib\common\services\storageserviceclient.js:738:50)
at Request.processResponseCallback [as _callback] (C:\Load2.0\Staged\Backend\node_modules\azure-storage\lib\common\services\storageserviceclient.js:311:37)
at Request.self.callback (C:\Load2.0\Staged\Backend\node_modules\azure-storage\node_modules\request\request.js:188:22)
at Request.emit (events.js:160:13)
at Request.<anonymous> (C:\Load2.0\Staged\Backend\node_modules\azure-storage\node_modules\request\request.js:1171:10)
at Request.emit (events.js:160:13)
at IncomingMessage.<anonymous> (C:\Load2.0\Staged\Backend\node_modules\azure-storage\node_modules\request\request.js:1091:12)
at Object.onceWrapper (events.js:255:19)
at IncomingMessage.emit (events.js:165:20)
at endReadableNT (_stream_readable.js:1101:12)
at process._tickCallback (internal/process/next_tick.js:152:19)
 name: 'StorageError',
 message: 'Forbidden',
 code: 'Forbidden',
 statusCode: 403,
 requestId: '2354daf1-001e-007c-25ac-b48832000000' },
  response: 
   { isSuccessful: false,
 statusCode: 403,
 body: '',
 headers: 
  { 'transfer-encoding': 'chunked',
    server: 'Microsoft-HTTPAPI/2.0',
    'x-ms-request-id': '2354daf1-001e-007c-25ac-b48832000000',
    date: 'Mon, 05 Mar 2018 18:06:36 GMT' },
 md5: undefined } }

我不知道为什么我会得到403,我已经从Azure门户复制了连接字符串并多次双重检查。

以下是我正在使用的源代码:

const azureStorage = require("azure-storage");
const shortId = require("shortid");

class AzureBlobService {
    constructor(connectionString){
        this.connectionString = connectionString;
        this.blobService = azureStorage.createBlobService(this.connectionString);
    }

    /**
     * Upload a file
     * @param {*} fileBuffer 
     * @param {*} filename
     * @param {*} container
     * @param {*} callback
     */
    uploadFile(fileBuffer, filename, container, callback) {
        let fileExtension = filename.slice((filename.lastIndexOf(".") - 1 >>> 0) + 2);
        this.blobService.createContainerIfNotExists(containerToUse, err => {
            if (err) {
                callback(err, { message: "Failed to create blob container" });
            } else {
                let blobName = shortId.generate() + "." + fileExtension;
                this.blobService.createBlockBlobFromStream(containerToUse, blobName, 
                this._bufferToStream(fileBuffer), fileBuffer.length, err => {
                if (err) {
                    callback(err, { message: "Failed to upload blob" });
                } else {
                    let sasToken = this.blobService.generateSharedAccessSignature(containerToUse, blobName, 
                        { AccessPolicy: { Expiry: azureStorage.date.minutesFromNow(10) } });
                        let sasUrl = this.blobService.getUrl(containerToUse, blobName, sasToken, true);

                        // TODO: return URL
                        callback(null, { url: sasUrl, blobName: blobName });
                    }
                });
            }
        });
    }

    /**
     * Convert a buffer to stream
     * @param {*} buffer 
     */
    _bufferToStream(buffer) {
        let stream = new Duplex();
        stream.push(buffer);
        stream.push(null);
        return stream;
    }
}

1 个答案:

答案 0 :(得分:0)

对于azure-storage-node,您可以通过帐户密钥或SAS令牌创建blobService对象。例如,使用从Azure门户生成的存储帐户密钥时:

&#xA;&#xA; 
  var blobService = azureStorage.createBlobService(accountName,accountKey).withFilter(new azureStorage.ExponentialRetryPolicyFilter( ));&#xA;&#xA; blobService.logger = new azureStorage.Logger();&#xA; blobService.createContainerIfNotExists('1mycontainer',function(err,res){&#xA; if(!err) {&#xA; blobService.createBlockBlobFromLocalFile('1mycontainer','taskblob','task1.txt',函数(错误,结果,响应){&#xA; if(!error){&#xA; console.log( “上传”);&#xA;}其他{&#xA; console.log(错误);&#xA;}&#xA;});&#xA;}&#xA;});&#xA ;
&#XA;
相关问题
最新问题