Client Credentials Flow for Azure DevOps
I have been looking at this issue for days and I know from experience that I usually work these things out but this time I have hit a brick wall.
Scenario
I have a python app that gets instantiated inside an Azure DevOps YAML pipeline. The app calls the Azure DevOps REST API to create a repository
The app uses a PAT (personal access token) to authenticate
Firstly issue is, a personal access token is connected to me as a human user. If I leave the company the PAT will be revoked which is not good for an app that needs to run in a non-user context.
So now I want to setup my Python app to authenticate to the Azure DevOps REST API using client credentials flow.
My issue is, I can't find consistent information about this.
I have created an app in Azure DevOps:
My plan would be to get this all working in Postman and then port my finding to Python code. So really, I am looking for help with the setup I do in Postman and I can work the rest out myself in Python.
Many posts talk about Azure DevOps and Azure AAD (Azure Active Directory) together but, seeing as I create my app registration in Azure DevOps, as shown in the picture, I don't see why I would do anything in AAD. (Note, my Azure DevOps instance was created outside Azure. Azure knows nothing about my Azure DevOps instance)
Any pointers to the CORRECT information about how to do this would be good. And remember, I definitely need the client credentials type flow. There is no human interaction between my app and the Azure DevOps REST API.
Update
Here is what I have in Postman right now:
Note:
- You can see the check boxes which I am using to toggle application/x-www-form-urlencoded key / value pairs on and off
- the resource - 499b84ac-1321-427f-aa17-267ca6975798 is apparently the GUID for Azure DevOps and doesn't change
- If I look inside the HTML from the 500 error I see this: Could not find partition for hostId: 499b84ac-1321-427f-aa17-267ca6975798 which is the DevOps resource GUID mentioned above.
And here is the 500 error I get from Azure Devops:
It's all very confusing but I am sure I just need to tweak one or two things to get it working.
I want to use client_credential flow in Azure DevOps for the same reasons as you! Last time I spoke to support they told me it was planned for Q3 2020. Reviewing the roadmap I can't see it on there at the moment. I also couldn't see any feature requests currently raised on Dev Community so you could consider trying to raise the profile of this issue on there.
- AttributeError: module 'pkgutil' has no attribute 'ImpImporter'. Did you mean: 'zipimporter'?
- textblob error 'list' object has no attribute 'strip'
- Jupyter notebook never finishes processing using multiprocessing (Python 3)
- How to zip files properly on mac for unzipping via python from s3?
- Python Pandas to match a string based on the prefix
- Python Telegram Bot does not receive data from the web mini-app
- TypeError: issubclass() arg 1 must be a class when importing langchain in Flask
- Nested JSON files in python to CSV file
- Changing text color in AnchoredText object
- Java Wildfly POST method multipart/form-data: "Unable to get boundary..."
- nlst return error while connect ftps server with Python
- pytube.exceptions.RegexMatchError: get_throttling_function_name: could not find match for multiple
- Multiprocessing causes Python to crash and gives an error may have been in progress in another thread when fork() was called
- Using multiprocessing Pool with a function that takes a list of arrays
- Getting counts in MultiLabelBinarizer
- reading multiple files contained in a zip file with pandas
- Alias python to python3 in /bin/sh
- Python: pyautogui mouse movement in Thread is slow and unreliable
- how to create a venv with a different python version
- How do you name the PostgreSQL indexes when using Haystack's PgvectorDocumentStore?
- Python lru_cache decorator with Sqlite database
- How do I iterate over all the sheets in a google sheet using python 3?
- Cannot install opencv-python with pipenv and Python 3.8
- How can I stop the alembic logger from deactivating my own loggers after using an alembic command in code?
- python regex to get text within a pattern defined
- Image to radar values
- When using PyPDF2 for Python, how do I transfer data in CSV format to an existing PDF with blank form fields?
- Why am I getting an error message in Python 'cannot import name NoneType'?
- ImportError: cannnot import name 'Imputer' from 'sklearn.preprocessing'
- Do I need to use Named Entity Recognition (NER) in tokenization?