How to use azure devops authorization bearer token and clone a repo?
I am trying to clone a repo using an authorization bearer token I created using a service connection in Azure. The service principal has reader access to the repo I'm trying to clone. And in Azure I've given the following API permissions for the AAD app (since this didn't help I'm not sure if this is necessary):
Setup the default organization and project:
az devops configure --defaults organization="$org" project="$project"
$org is the azure devops organization and $project is the project where the git repo is.
Get the access token using the following command:
$token = az account get-access-token --resource "499b84ac-1321-427f-aa17-267ca6975798" --query "accessToken" --output tsv
The above steps are done in a powershell script which is run using AzureCLI@2 task in the pipeline. The obtained token is saved in git config using the following command:
git config --local http.<repo base URL>.extraheader "AUTHORIZATION bearer: $token"
When the git clone command is run, I get the following error:
error: failed to execute prompt script (exit code 1)
fatal: could not read Username for '<repo URL>': No such file or directory
Any idea why I'm getting this error? Am I missing any steps?
You can get the devops repo url following doc:
Steps below:
Create the service connection as you did, find the service principal and add it as
contributor role +Basic access levelof the target devops repo(if onlyclonethe repo,project reader + basic access levelpermission is enough). So that the bearer token has permission to access the repo.DevOps pipeline yaml sample below. set at git config at
globallevel.
pool:
vmImage: Windows-latest
steps:
- task: AzureCLI@2
inputs:
azureSubscription: 'ARMConn1'
scriptType: 'ps'
scriptLocation: 'inlineScript'
inlineScript: |
$token = az account get-access-token --resource "499b84ac-1321-427f-aa17-267ca6975798" --query "accessToken" --output tsv
git config --global http.extraheader "AUTHORIZATION: Bearer $token"
git clone https://<orgname>@dev.azure.com/<orgname>/<project>/_git/<reponame>
- Create a counter variable in Azure Devops for every pipeline successful run
- How to properly use Azure Function Build and Deploy in Azure DevOps with multiple projects
- Azure devops - build number vs build id
- Run script on Azure VM Scale Set when deprovisioning
- Azure Pipeline to trigger Pipeline using YAML
- Make Azure Keyvault secrets available in entire pipeline
- Cannot authorize variable group in Azure Pipelines
- How to set up a simple Next.js web app with CI/CD on Azure?
- How to override the object and array parameters in the Arm template?
- Azure DevOps Oryx build of my ReactJS app fails with 'unable to resolve' error
- Secret Pipeline Parameter in Azure Devops
- Build validation on Azure DevOps branch: YAML in different repository?
- Azure Devops yml pipeline if else condition with variables
- How to Generate .AAB file and Sign Android app Bundle using azure pipeline
- Azure DevOps Yaml pipeline - GitVersionfor additional repository
- Azure Web App Cannot Access Azure Container Registry Using Managed Identity
- Azure pipeline - run shell script on the remote server
- How to Enable Docker layer caching in Azure DevOps
- Notification send when second pipeline run completes
- Variable evaluates fine for displayName but not for condition, why is that?
- Not possible to use containers in Azure Pipelines self-hosted agents deployed as Azure K8s pods
- Triggering 2nd Azure Pipeline After Successful Run on 1st pipeline
- Unexpected value 'condition'
- mvn release + azure pipeline - deploy
- Azure DevOps Pipeline trying to access Git: you do not have permissions error
- Azure DevOps - More Than One Build Agent?
- How to deploy .NET Core 3.1 project to webjob?
- How to securely login in Az CLI from a DevOps Pipeline
- Azure Devops Pipeline - Job Display Name Based on Matrix
- Add dummy agent to agent pool