Authenticate with Azure Blob Storage using SAS tokens

AzureBlobConfig now supports Shared Access Signature (SAS) token authentication as an alternative to connection strings and service principal credentials. This makes it easier to grant time-scoped, permission-limited access to Azure Blob Storage without exposing full account credentials, which is useful for automated pipelines, temporary access grants, and least-privilege storage configurations.

# Clone and setup repo
git clone https://github.com/agno-agi/agno.git
cd agno/cookbook/07_knowledge/cloud

# Create and activate virtual environment
./scripts/demo_setup.sh
source .venvs/demo/bin/activate

# Optiona: Run PgVector (needs docker)
./cookbook/scripts/run_pgvector.sh

python azure_blob.py

‍

Details:

Pass a SAS token directly to AzureBlobConfig alongside the account URL
Complements existing authentication paths; no migration required for configurations already using connection strings or service principal auth

‍

See the Azure Blob Storage Content Source for Knowledge docs for more.