Our application server rejected by the storage account.
We generated the correct SAS token and we can reach the container in the local. (docker, intelliJ, postman)
- WebbApp and the Storage Account are in the same location (Germany West Central UTC+2).
- We have standard subsrciption/plan
- We set containers to public.
- We set IP address to firewall.
- We use azure sdk java
We try to call the Blob service.
We got an error message when the app runs on the Azure servers.
com.azure.storage.blob.models.BlobStorageException at jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance
If you are using a SAS token, and the server returned an error message that says 'Signature did not match', you can compare the string to sign with the one generated by the SDK. To log the string to sign, pass in the context key value pair 'Azure-Storage-Log-String-To-Sign': true to the appropriate generateSas method call.
Please remember to disable 'Azure-Storage-Log-String-To-Sign' before going to production as this string can potentially contain PII.
Status code 403, "<?xml version="1.0" encoding="utf-8"?><Error><Code>AuthorizationFailure</Code><Message>This request is not authorized to perform this operation.
RequestId:959d813f-601e-0057-262f-4351a4000000
Time:2021-05-07T10:53:45.0157340Z</Message></Error>"
UPDATE
We set the time zone to UTC-0. It solved our problem. The serve run in UTC-0 time zone.
