Large media uploads to azure blob service for authenticated users

Question

I am new to azure and attempting to create a REST API that uploads large media files (4gb) to azure blob service. I'm using Django to create the API. The API should only allow authenticated users to upload files. I would like the upload to be handled by the front end because I am running my Django instance in a container on Azure and would like to reduce memory / compute load on it to reduce cost. I was wondering if I could dynamically generate a time-sensitive token that is sent to the front end to allow users to upload directly to my Azure blob instance. Is it practical to generate a new SAS token for every authenticated upload? Any suggestions on how I can achieve this in a production-safe manner?

Thanks!

Answer 1

I'm from the Microsoft for Founders Hub team. Yes, you can generate a SAS token to your authenticated users, and you can also specify a safe duration for it, like 30 minutes for example.

You can see how to do this in this paper.

You'll find on the Getting Started section the sample that dynamically generates the SAS token and uses it to access the Blob Storage.