Azure DevOps通过Rest Api访问控制列表设置权限
我正在尝试使用具有项目权限名称空间的ACL设置权限。在请求bodyInfo中,我为允许传递了“ 16”,这样我将允许该组的Administer Build(16)权限,但是什么也没有发生。
$securityNamespaceId = "52d39943-cb85-4d7f-8fa8-c6baac873819"
$groupDesc = "Microsoft.TeamFoundation.Identity;S-1-9-1551374245-3474010476-3658975049-2966243200-2961816057-1-3769221364-1224424009-2749800435-4143997070"
$projectId = "12313142-eec0-4c3d-b9b5-44d0c3973b3e"
$token = "`$PROJECT:vstfs:///Classification/TeamProject/$($projectId)"
$allowMask = 16
$denyMask = 0
$bodyInfo = @"
{
"token": "$Token",
"merge": false,
"accessControlEntries": [
{
"descriptor": "$groupDesc",
"allow": $AllowMask,
"deny": $DenyMask,
"extendedinfo": {}
}
]
}
"@
$uri = "https://dev.azure.com/{organization}/_apis/accesscontrolentries/52d39943-cb85-4d7f-8fa8-c6baac873819?api-version=5.0"
$result = (Invoke-RestMethod -Method Post -Uri $uri -Body $bodyInfo -Headers $headers -ContentType "application/json")
计数值
1 {@{descriptor=Microsoft.TeamFoundation.Identity;S-1-9-1551374245-3474010476-3658975049-2966243200-2961816057-1-3769221364-1224424009-2749800435-4143997070; allow=16; deny=0}}
bit name displayName namespaceId
--- ---- ----------- -----------
1 GENERIC_READ View project-level information 52d39943-cb85-4d7f-8fa8-c6baac873819
2 GENERIC_WRITE Edit project-level information 52d39943-cb85-4d7f-8fa8-c6baac873819
4 DELETE Delete team project 52d39943-cb85-4d7f-8fa8-c6baac873819
8 PUBLISH_TEST_RESULTS Create test runs 52d39943-cb85-4d7f-8fa8-c6baac873819
16 ADMINISTER_BUILD Administer a build 52d39943-cb85-4d7f-8fa8-c6baac873819
32 START_BUILD Start a build 52d39943-cb85-4d7f-8fa8-c6baac873819
64 EDIT_BUILD_STATUS Edit build quality 52d39943-cb85-4d7f-8fa8-c6baac873819
128 UPDATE_BUILD Write to build operational store 52d39943-cb85-4d7f-8fa8-c6baac873819
256 DELETE_TEST_RESULTS Delete test runs 52d39943-cb85-4d7f-8fa8-c6baac873819
512 VIEW_TEST_RESULTS View test runs 52d39943-cb85-4d7f-8fa8-c6baac873819
2048 MANAGE_TEST_ENVIRONMENTS Manage test environments 52d39943-cb85-4d7f-8fa8-c6baac873819
4096 MANAGE_TEST_CONFIGURATIONS Manage test configurations 52d39943-cb85-4d7f-8fa8-c6baac873819
8192 WORK_ITEM_DELETE Delete and restore work items 52d39943-cb85-4d7f-8fa8-c6baac873819
16384 WORK_ITEM_MOVE Move work items out of this project 52d39943-cb85-4d7f-8fa8-c6baac873819
32768 WORK_ITEM_PERMANENTLY_DELETE Permanently delete work items 52d39943-cb85-4d7f-8fa8-c6baac873819
65536 RENAME Rename team project 52d39943-cb85-4d7f-8fa8-c6baac873819
131072 MANAGE_PROPERTIES Manage project properties 52d39943-cb85-4d7f-8fa8-c6baac873819
262144 MANAGE_SYSTEM_PROPERTIES Manage system project properties 52d39943-cb85-4d7f-8fa8-c6baac873819
524288 BYPASS_PROPERTY_CACHE Bypass project property cache 52d39943-cb85-4d7f-8fa8-c6baac873819
1048576 BYPASS_RULES Bypass rules on work item updates 52d39943-cb85-4d7f-8fa8-c6baac873819
2097152 SUPPRESS_NOTIFICATIONS Suppress notifications for work item updates 52d39943-cb85-4d7f-8fa8-c6baac873819
4194304 UPDATE_VISIBILITY Update project visibility 52d39943-cb85-4d7f-8fa8-c6baac873819
8388608 CHANGE_PROCESS Change process of team project. 52d39943-cb85-4d7f-8fa8-c6baac873819
16777216 AGILETOOLS_BACKLOG Agile backlog management. 52d39943-cb85-4d7f-8fa8-c6baac873819
1 个答案:
答案 0 :(得分:1)
在脚本中,您要使用项目级别的令牌来修改构建安全性中的“管理构建”权限。 我在邮递员上进行了测试,发现使用项目级令牌修改构建安全权限,响应状态为200,但在UI中,权限实际上并未更改。您可以尝试使用构建级令牌进行更改建立安全许可。
希望这会有所帮助。
相关问题
- VSTS - 所有设置为当前日期的用户的上次访问日期
- 获取谁有权访问git存储库的列表
- 通过REST API将更新推送到VSTS
- 通过az webapp设置cors-缺少Access-Control-Allow-Credentials选项
- 使用Rest API为Azure DevOps中的不同名称空间设置权限
- Azure DevOps-使用Rest API访问控制列表设置项目权限
- Azure DevOps通过Rest Api访问控制列表设置权限
- 是否可以通过REST API在变量组上设置权限?
- 通过Azure Repos API设置组的分支权限
- 如何通过REST API在Azure Devops的团队设置中设置DefaultIterationPath?
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?