[Storage] set/get_access_policy for ContainerClient

Cargo.toml

@@ -110,7 +110,6 @@ getrandom = { version = "0.3" }
 gloo-timers = { version = "0.3" }
 hmac = { version = "0.12" }
 include-file = { version = "0.5.1", default-features = false }
-litemap = "0.7.4"
 openssl = { version = "0.10.72" }
 opentelemetry = { version = "0.30", features = ["trace"] }
 opentelemetry_sdk = "0.30"
@@ -151,7 +150,6 @@ url = "2.2"
 uuid = { version = "1.18", features = ["v4"] }
 wasm-bindgen-futures = "0.4"
 wasm-bindgen-test = "0.3"
-zerofrom = "0.1.5"
 zip = { version = "4.0.0", default-features = false, features = ["deflate"] }
 moka = { version = "0.12", features = ["future"] }
 

sdk/storage/.dict.txt

@@ -22,6 +22,7 @@ RAGRS
 restype
 ruleid
 secondtag
+subsecond
 testblob1
 testblob2
 testblob3

sdk/storage/azure_storage_blob/CHANGELOG.md

@@ -4,6 +4,12 @@
 
 ### Features Added
 
+- Added support for `set_access_policy` to `BlobContainerClient`.
+- Added support for `get_access_policy` to `BlobContainerClient`.
+
+### Breaking Changes
+
+- Changed conversion implementation from `BlobTags` to `HashMap<String, String>` from `TryFrom` to `From`.
 - Added `continuation_token` to `PagerOptions` for methods that return a `Pager`.
 
 ### Breaking Changes

sdk/storage/azure_storage_blob/Cargo.toml

@@ -21,7 +21,7 @@ async-trait.workspace = true
 azure_core = { workspace = true, features = ["xml"] }
 serde.workspace = true
 serde_json.workspace = true
-typespec_client_core = { workspace = true, features = ["derive"] }
+time.workspace = true
 url.workspace = true
 uuid.workspace = true
 

sdk/storage/azure_storage_blob/assets.json

@@ -1,6 +1,6 @@
 {
   "AssetsRepo": "Azure/azure-sdk-assets",
   "AssetsRepoPrefixPath": "rust",
-  "Tag": "rust/azure_storage_blob_1e5e3b2c6c",
+  "Tag": "rust/azure_storage_blob_e59ab40a70",
   "TagPrefix": "rust/azure_storage_blob"
 }

sdk/storage/azure_storage_blob/src/clients/blob_container_client.rs

@@ -9,12 +9,13 @@ use crate::{
         BlobContainerClientBreakLeaseOptions, BlobContainerClientBreakLeaseResult,
         BlobContainerClientChangeLeaseOptions, BlobContainerClientChangeLeaseResult,
         BlobContainerClientCreateOptions, BlobContainerClientDeleteOptions,
-        BlobContainerClientFindBlobsByTagsOptions, BlobContainerClientGetAccountInfoOptions,
-        BlobContainerClientGetAccountInfoResult, BlobContainerClientGetPropertiesOptions,
-        BlobContainerClientGetPropertiesResult, BlobContainerClientListBlobFlatSegmentOptions,
-        BlobContainerClientReleaseLeaseOptions, BlobContainerClientReleaseLeaseResult,
-        BlobContainerClientRenewLeaseOptions, BlobContainerClientRenewLeaseResult,
-        BlobContainerClientSetMetadataOptions,
+        BlobContainerClientFindBlobsByTagsOptions, BlobContainerClientGetAccessPolicyOptions,
+        BlobContainerClientGetAccountInfoOptions, BlobContainerClientGetAccountInfoResult,
+        BlobContainerClientGetPropertiesOptions, BlobContainerClientGetPropertiesResult,
+        BlobContainerClientListBlobFlatSegmentOptions, BlobContainerClientReleaseLeaseOptions,
+        BlobContainerClientReleaseLeaseResult, BlobContainerClientRenewLeaseOptions,
+        BlobContainerClientRenewLeaseResult, BlobContainerClientSetAccessPolicyOptions,
+        BlobContainerClientSetMetadataOptions, SignedIdentifiers,
     },
     models::{FilterBlobSegment, ListBlobsFlatSegmentResponse, StorageErrorCode},
     pipeline::StorageHeadersPolicy,
@@ -25,7 +26,7 @@ use azure_core::{
     error::ErrorKind,
     http::{
         policies::{BearerTokenAuthorizationPolicy, Policy},
-        NoFormat, Pager, Pipeline, Response, StatusCode, Url, XmlFormat,
+        NoFormat, Pager, Pipeline, RequestContent, Response, StatusCode, Url, XmlFormat,
     },
     tracing, Result,
 };
@@ -365,4 +366,51 @@ impl BlobContainerClient {
             Err(e) => Err(e),
         }
     }
+
+    /// Sets the permissions for the specified container. The permissions indicate whether blobs in a
+    /// container may be accessed publicly.
+    ///
+    /// # Arguments
+    ///
+    /// * `container_acl` - The access control list for the container. You can create this from a
+    ///   [`HashMap<String, AccessPolicy>`] using [`SignedIdentifiers::from()`] and then wrapping it into a RequestContent.
+    /// * `options` - Optional configuration for the request.
+    ///
+    /// # Example
+    ///
+    /// ```rust, ignore
+    /// use azure_core::http::RequestContent;
+    /// use azure_storage_blob::models::{AccessPolicy, SignedIdentifiers};
+    /// use typespec_client_core::time::OffsetDateTime;
+    ///
+    /// let mut policies = HashMap::new();
+    /// policies.insert("some_policy_id".to_string(), AccessPolicy {
+    ///     start: Some(OffsetDateTime::now_utc()),
+    ///     expiry: Some(OffsetDateTime::now_utc() + Duration::from_secs(10)),
+    ///     permission: Some("rwd".to_string()),
+    /// });
+    ///
+    /// let request_content = RequestContent::try_from(SignedIdentifiers::from(policies))?;
+    /// container_client.set_access_policy(request_content, None).await?;
+    /// ```
+    pub async fn set_access_policy(
+        &self,
+        container_acl: RequestContent<SignedIdentifiers, XmlFormat>,
+        options: Option<BlobContainerClientSetAccessPolicyOptions<'_>>,
+    ) -> Result<Response<(), NoFormat>> {
+        self.client.set_access_policy(container_acl, options).await
+    }
+
+    /// Gets the permissions for the specified container. The permissions indicate whether container data
+    /// may be accessed publicly.
+    ///
+    /// # Arguments
+    ///
+    /// * `options` - Optional configuration for the request.
+    pub async fn get_access_policy(
+        &self,
+        options: Option<BlobContainerClientGetAccessPolicyOptions<'_>>,
+    ) -> Result<Response<SignedIdentifiers, XmlFormat>> {
+        self.client.get_access_policy(options).await
+    }
 }