Open robbert-nlo opened 1 year ago
@robbert-nlo you may may need full access permission instead of custom permission: Ref: https://docs.microsoft.com/en-us/azure/devops/organizations/accounts/manage-pats-with-policies-for-administrators?view=azure-devops#restrict-creation-of-full-scoped-pats
@xuzhang3 It seems a bit overkill to give full permissions only to disable some features. I'd prefer to make this PAT's permissions follow least privilege principle. Is it not possible to allow this functionality with specific permissions?
@robbert-nlo this is a service permission is with v6 APIs, to handle this issue. One way is using the null_resource to call the features APIs(v5) with curl
etc.
Hi,
I'm trying to create a new Azure DevOps project with only specific features enabled. I'm using a PAT with the following permissions:
Terraform:
This results in:
What permissions do I need to assign to the PAT to be able to disable project features?