matejskubic · November 3, 2022 18:08 · matejskubic · Nov 3, 2022
diff --git a/createSqlSharedAccessSignature.ps1 b/createSqlSharedAccessSignature.ps1
 [CmdletBinding()]
 Param(
    # subscription name
    [parameter()]
    [string]$subscriptionName = 'EA - MSDN - AX - ProdDev - 01'
    ,
    
    # resource group name
    [parameter()]
    [string]$resourceGroupName='adaxbackup'
    ,

    # storage account name
    [parameter()]
    [string]$storageAccountName = 'adaxbackup'
    ,

    # container name - defaulto is machine host name
    [parameter()]
    [string]$containerName = [System.Environment]::MachineName
    ,

    # Shared Access Signature policy name
    [parameter()]
    [string]$policyName = "sql_$containerName"
 )

 #$locationName = 'West Europe'
 $containerName = $containerName.ToLowerInvariant()

 #Login-AzAccount -SubscriptionName $subscriptionName #-Tenant 


 #New-AzResourceGroup -Name $resourceGroupName -Location $locationName   

 #New-AzStorageAccount -Name $storageAccountName -ResourceGroupName $resourceGroupName -Type Standard_GRS -Location $locationName   

 $accountKeys = Get-AzStorageAccountKey -ResourceGroupName $resourceGroupName -Name $storageAccountName  

 $storageContext = New-AzStorageContext -StorageAccountName $storageAccountName -StorageAccountKey $accountKeys[0].Value 

 try
 {
    $container = Get-AzStorageContainer -Context $storageContext -Name $containerName -ErrorAction Stop
 }
 catch [Microsoft.WindowsAzure.Commands.Storage.Common.ResourceNotFoundException]
 {
    $container = New-AzStorageContainer -Context $storageContext -Name $containerName
 }

 $cbc = $container.CloudBlobContainer  

 $permissions = $cbc.GetPermissions();  
 $policy = New-Object Microsoft.Azure.Storage.Blob.SharedAccessBlobPolicy
 $policy.SharedAccessStartTime = [datetime]"2017-01-01"
 $policy.SharedAccessExpiryTime = [datetime]"2049-12-31"
 $policy.Permissions = "Read,Write,List"
 $permissions.SharedAccessPolicies.Add($policyName, $policy)
 $cbc.SetPermissions($permissions)

 $sas = $cbc.GetSharedAccessSignature($policy, $policyName)  
 Write-Host 'Credential T-SQL'  
 $tSql = "CREATE CREDENTIAL [{0}] WITH IDENTITY='Shared Access Signature', SECRET='{1}'" -f $cbc.Uri,$sas.Substring(1)   
 Write-Host $tSql
	[CmdletBinding()]
	Param(
	# subscription name
	[parameter()]
	[string]$subscriptionName = 'EA - MSDN - AX - ProdDev - 01'
	,

	# resource group name
	[parameter()]
	[string]$resourceGroupName='adaxbackup'
	,

	# storage account name
	[parameter()]
	[string]$storageAccountName = 'adaxbackup'
	,

	# container name - defaulto is machine host name
	[parameter()]
	[string]$containerName = [System.Environment]::MachineName
	,

	# Shared Access Signature policy name
	[parameter()]
	[string]$policyName = "sql_$containerName"
	)

	#$locationName = 'West Europe'
	$containerName = $containerName.ToLowerInvariant()

	#Login-AzAccount -SubscriptionName $subscriptionName #-Tenant


	#New-AzResourceGroup -Name $resourceGroupName -Location $locationName

	#New-AzStorageAccount -Name $storageAccountName -ResourceGroupName $resourceGroupName -Type Standard_GRS -Location $locationName

	$accountKeys = Get-AzStorageAccountKey -ResourceGroupName $resourceGroupName -Name $storageAccountName

	$storageContext = New-AzStorageContext -StorageAccountName $storageAccountName -StorageAccountKey $accountKeys[0].Value

	try
	{
	$container = Get-AzStorageContainer -Context $storageContext -Name $containerName -ErrorAction Stop
	}
	catch [Microsoft.WindowsAzure.Commands.Storage.Common.ResourceNotFoundException]
	{
	$container = New-AzStorageContainer -Context $storageContext -Name $containerName
	}

	$cbc = $container.CloudBlobContainer

	$permissions = $cbc.GetPermissions();
	$policy = New-Object Microsoft.Azure.Storage.Blob.SharedAccessBlobPolicy
	$policy.SharedAccessStartTime = [datetime]"2017-01-01"
	$policy.SharedAccessExpiryTime = [datetime]"2049-12-31"
	$policy.Permissions = "Read,Write,List"
	$permissions.SharedAccessPolicies.Add($policyName, $policy)
	$cbc.SetPermissions($permissions)

	$sas = $cbc.GetSharedAccessSignature($policy, $policyName)
	Write-Host 'Credential T-SQL'
	$tSql = "CREATE CREDENTIAL [{0}] WITH IDENTITY='Shared Access Signature', SECRET='{1}'" -f $cbc.Uri,$sas.Substring(1)
	Write-Host $tSql