Recently I got a requirement to connect to ADLS Gen2 and download all the files from ADLS to a linux machine. I had prepared a python program that connects to the storage account using connection string. But when I requested the connection string, the IT team told me that they cannot provide the connection string and they requested me to connect using a service principle. So I had to modify the program to make it connect using service principle.

We need two python packages to run this program. The packages are given below.

azure-storage-blob
azure-identity

The core part of the program that establishes connection to the storage account is given below.

from azure.identity import ClientSecretCredential
from azure.storage.blob import BlobServiceClient
# Tenant ID for your Azure Subscription
TENANT_ID = "85XXX93e-XXXX-XXXX-XXXXX-96150XXX893e"
# Your Service Principal App ID (Client ID)
CLIENT_ID = "a3XXX40d-xxxxxxx-0ff72XXXX66a"
# Your Service Principal Password (Client Secret)
CLIENT_SECRET = "5XXXIdPxGEXXXX_1H8XXy0kao_7"
ACCOUNT_NAME = "azXXXxxxXX"
CONTAINER_NAME = "XXXXXXXXXX"
credentials = ClientSecretCredential(TENANT_ID, CLIENT_ID, CLIENT_SECRET)
blobService = BlobServiceClient(
"https://{}.blob.core.windows.net".format(ACCOUNT_NAME),
credential=credentials
)
print("\n==============LIST OF ALL BLOBS=================")
# Path in the container. If you want to list everything in the root path, keep it empty
prefix = ""
container = blobService.get_container_client(CONTAINER_NAME)
for blob in container.list_blobs(name_starts_with=prefix):
print("\t Blob name: " + blob.name)
view raw python_adls_connect_service_principle.py hosted with ❤ by GitHub

I hope this tip helps someone šŸ™‚ . Feel free to comment if you have any questions.

Advertisement