| title | titleSuffix | description | author | ms.author | ms.date | ms.service | ms.topic | ms.devlang | ms.custom |
|---|---|---|---|---|---|---|---|---|---|
Quickstart: Azure Blob Storage client module for Go | Azure Storage | In this quickstart, you learn how to use the Azure Blob Storage client module for Go to create a container and a blob in Blob (object) storage. Next, you learn how to download the blob to your local computer, and how to list all of the blobs in a container. | pauljewellmsft | pauljewell | 09/13/2024 | azure-blob-storage | quickstart | golang | mode-api, passwordless-go, devx-track-go |
Get started with the Azure Blob Storage client module for Go to manage blobs and containers. Follow these steps to install the package and try out example code for basic tasks.
API reference documentation | Library source code | Package (pkg.go.dev)
- Azure subscription - create one for free
- Azure storage account - create a storage account
- Go 1.18+
This section walks you through preparing a project to work with the Azure Blob Storage client module for Go.
The sample application used in this quickstart is a basic Go application.
Use git to download a copy of the application to your development environment.
git clone https://github.com/Azure-Samples/storage-blobs-go-quickstart This command clones the repository to your local git folder. To open the Go sample for Blob Storage, look for the file named storage-quickstart.go.
To work with blob and container resources in a storage account, install the azblob package using the following command:
go get github.com/Azure/azure-sdk-for-go/sdk/storage/azblobTo authenticate with Microsoft Entra ID (recommended), install the azidentity module using the following command:
go get github.com/Azure/azure-sdk-for-go/sdk/azidentityApplication requests to Azure Blob Storage must be authorized. Using DefaultAzureCredential and the Azure Identity client library is the recommended approach for implementing passwordless connections to Azure services in your code, including Blob Storage.
You can also authorize requests to Azure Blob Storage by using the account access key. However, this approach should be used with caution. Developers must be diligent to never expose the access key in an unsecure location. Anyone who has the access key is able to authorize requests against the storage account, and effectively has access to all the data. DefaultAzureCredential offers improved management and security benefits over the account key to allow passwordless authentication. Both options are demonstrated in the following example.
DefaultAzureCredential is a credential chain implementation provided by the Azure Identity client library for Go. DefaultAzureCredential supports multiple authentication methods and determines which method to use at runtime. This approach enables your app to use different authentication methods in different environments (local vs. production) without implementing environment-specific code.
To learn more about the order and locations in which DefaultAzureCredential looks for credentials, see Azure Identity library overview.
For example, your app can authenticate using your Azure CLI sign-in credentials with when developing locally. Once it's deployed to Azure, your app can then use a managed identity. This transition between environments doesn't require any code changes.
[!INCLUDE assign-roles]
You can authorize access to data in your storage account using the following steps:
Make sure you're authenticated with the same Microsoft Entra account you assigned the role to on your storage account. The following example shows how to authenticate via the Azure CLI:
az loginTo use
DefaultAzureCredentialin a Go application, install the azidentity module using the following command:go get github.com/Azure/azure-sdk-for-go/sdk/azidentity
Azure CLI authentication isn't recommended for applications running in Azure. When deployed to Azure, you can use the same code to authorize requests to Azure Storage from an application running in Azure. However, you need to enable managed identity on your app in Azure and configure your storage account to allow that managed identity to connect. For detailed instructions on configuring this connection between Azure services, see the Auth from Azure-hosted apps tutorial.
To learn more about different authentication methods, check out Azure authentication with the Azure SDK for Go.
The code example performs the following actions:
- Creates a client object authorized for data access via
DefaultAzureCredential - Creates a container in a storage account
- Uploads a blob to the container
- Lists the blobs in the container
- Downloads the blob data into a buffer
- Deletes the blob and container resources created by the app
Before you run the sample, open the storage-quickstart.go file. Replace <storage-account-name> with the name of your Azure storage account.
Then run the application using the following command:
go run storage-quickstart.goThe output of the app is similar to the following example:
Azure Blob storage quick start sampleCreating a container named quickstart-sample-containerUploading a blob named sample-blobListing the blobs in the container:sample-blobBlob contents:Hello, world! This is a blob.Press enter key to delete resources and exit the application.Cleaning up.Deleting the blob sample-blobDeleting the container quickstart-sample-containerWhen you press the enter key at the prompt, the sample program deletes the blob and container resources created by the app.
Tip
You can also use a tool such as the Azure Storage Explorer to view the files in Blob storage. Azure Storage Explorer is a free cross-platform tool that allows you to access your storage account information.
Next, we walk through the sample code to understand how it works.
Working with any Azure resource using the SDK begins with creating a client object. To create the client object, the code sample calls azblob.NewClient with the following values:
- serviceURL - the URL of the storage account
- cred - a Microsoft Entra credential obtained via the
azidentitymodule - options - client options; pass nil to accept the default values
The following code example creates a client object to interact with container and blob resources in a storage account:
// TODO: replace <storage-account-name> with your actual storage account nameurl:="https://<storage-account-name>.blob.core.windows.net/"ctx:=context.Background() credential, err:=azidentity.NewDefaultAzureCredential(nil) handleError(err) client, err:=azblob.NewClient(url, credential, nil) handleError(err)The code sample creates a new container resource in the storage account. If a container with the same name already exists, a ResourceExistsError is raised.
Important
Container names must be lowercase. To learn more about naming requirements for containers and blobs, see Naming and Referencing Containers, Blobs, and Metadata.
The following code example creates a new container called quickstart-sample-container in the storage account:
// Create the containercontainerName:="quickstart-sample-container"fmt.Printf("Creating a container named %s\n", containerName) _, err=client.CreateContainer(ctx, containerName, nil) handleError(err)To learn more about creating a container, and to explore more code samples, see Create a blob container with Go.
The code sample creates a byte array with some data, and uploads the data as a buffer to a new blob resource in the specified container.
The following code example uploads the blob data to the specified container using the UploadBuffer method:
data:= []byte("\nHello, world! This is a blob.\n") blobName:="sample-blob"// Upload to data to blob storagefmt.Printf("Uploading a blob named %s\n", blobName) _, err=client.UploadBuffer(ctx, containerName, blobName, data, &azblob.UploadBufferOptions{}) handleError(err)To learn more about uploading blobs, and to explore more code samples, see Upload a blob with Go.
The code sample lists the blobs in the specified container. This example uses NewListBlobsFlatPager, which returns a pager for blobs starting from the specified Marker. Here, we use an empty Marker to start enumeration from the beginning, and continue paging until there are no more results. This method returns blob names in lexicographic order.
The following code example lists the blobs in the specified container:
// List the blobs in the containerfmt.Println("Listing the blobs in the container:") pager:=client.NewListBlobsFlatPager(containerName, &azblob.ListBlobsFlatOptions{ Include: azblob.ListBlobsInclude{Snapshots: true, Versions: true}, }) forpager.More() { resp, err:=pager.NextPage(context.TODO()) handleError(err) for_, blob:=rangeresp.Segment.BlobItems { fmt.Println(*blob.Name) } }To learn more about listing blobs, and to explore more code examples, see List blobs with Go.
The code sample downloads a blob using the DownloadStream method, and creates a retry reader for reading data. If a connection fails while reading, the retry reader makes other requests to re-establish a connection and continue reading. You can specify retry reader options using the RetryReaderOptions struct.
The following code example downloads a blob and writes the contents to the console:
// Download the blobget, err:=client.DownloadStream(ctx, containerName, blobName, nil) handleError(err) downloadedData:= bytes.Buffer{} retryReader:=get.NewRetryReader(ctx, &azblob.RetryReaderOptions{}) _, err=downloadedData.ReadFrom(retryReader) handleError(err) err=retryReader.Close() handleError(err) // Print the contents of the blob we createdfmt.Println("Blob contents:") fmt.Println(downloadedData.String())To learn more about downloading blobs, and to explore more code examples, see Download a blob with Go.
If you no longer need the blobs uploaded in this quickstart, you can delete the individual blob using the DeleteBlob method, or the entire container and its contents using the DeleteContainer method.
// Delete the blobfmt.Printf("Deleting the blob "+blobName+"\n") _, err=client.DeleteBlob(ctx, containerName, blobName, nil) handleError(err) // Delete the containerfmt.Printf("Deleting the container "+containerName+"\n") _, err=client.DeleteContainer(ctx, containerName, nil) handleError(err)To learn more about deleting blobs and containers, and to explore more code examples, see Delete a blob with Go and Delete a container with Go.
[!div class="nextstepaction"] Azure Blob Storage developer guides for Go
