Regression in recent version of Storage Explorer fails to download files due to response 403 ServiceCode=AuthenticationFailed #2457
Labels
🪲 bug
Issue is not intended behavior
⚙️ azcopy
Related to AzCopy integration
❔ external
Root cause of this issue is in another component, product, or service
Milestone
Storage Explorer Version: 1.11.1
Build Number: 20191121.1
Platform/OS: Windows 10
Architecture: ia32
Regression From: Another recent version, probably 1.1x. My coworker's 1.0 version does not have this issue.
Bug Description
Microsoft Service Fabric team uses Azure Storage Explorer to download specific files from storage accounts using SAS keys generated through ACIS. I am able to open and list the set of files contained in the Azure Storage container through ASE, but when I go to download a file I receive the error:
The ACIS job owner had expressed we have not changed the SAS key generation logic so there has been no change in privileges in our workflow from our end that could result in this issue. My coworker's 1.0 version does not hit this issue. The SAS key we use is minimum privilege and not all access so a delta in the required privilege to download files is a regression for us.
Seems like there may have been a perf optimization or other change in ASE that resulted in a change to minimum privilege to download files from Azure Storage.
Steps to Reproduce
Expected Experience
File is downloaded successfully.
Actual Experience
Error response 403; ServiceCode=AuthenticationFailed
Additional Context
The SAS key we use is minimum privilege. I can supply this directly over IM. My alias is maburlik.
The text was updated successfully, but these errors were encountered: