Forum Widgets
Latest Discussions
DevOps and Jira Cloud integration plugins?
Hi Everyone, Just wondering if anyone has any experience with using plugins to allow integration between Azure DevOps and Jira Cloud? We are looking for a hybrid solution whereby we are Jira Cloud as a Service Desk. And if a Service Desk ticket becomes a project ticket, a project ticket is created within DevOps under the relevant project, and our PM and Devs will work on the project ticket within DevOps, and the business will use the stakeholder license in Devops to comment, attach screenshots etc. We have tried the getint.io plugin from the Jira app marketplace, however, it not work well for the above scenario. Thanks for any ideas. Sean
Bicep Error While Integration API Management with Function App
Team, We are trying to automate the deployment of Azure Function App with Azure API Management so that when there is a schema change, we dont have to manually update the APIM with the functionApp schema changes. Our API Management and Function App are inside different resource groups, but inside the same subscription. I have a main.bicep file withe following relevant parts. main.bicep targetScope = 'resourceGroup' parameter definisions Modules defined inside the bicep file like this module functionapp 'modules/funcapp.bicep' = { name: 'funappDeploy' params: { tags: tags location: location application: application environment: environment instrumentationKey: appinsight.outputs.instrumentationKey storageAccountName: storageaccount.outputs.storageAccountName functionSubNetId: networking.outputs.functionSubnetId appInsightsConSting: appinsight.outputs.appInsightsConSting } } module apimanagement 'modules/apimanagement.bicep' = { name: 'apimdeploy' params: { application: application environment: environment } } API Management resource is already existing and API's including my relevant API is deployed inside. This was done early without automation. And here is my apimanagement.bicep targetScope = 'resourceGroup' param environment string param application string = 'gcob-ncino' var apimName = 'apim-rxx-${application}-${environment}' var resourceGroupName = 'rg-rxx-apim-${application}-${environment}' resource apiManagement 'Microsoft.ApiManagement/service@2024-05-01' existing = { name: apimName scope: resourceGroup(resourceGroupName) } resource apimApi 'Microsoft.ApiManagement/service/apis@2024-05-01' = { name: 'yourApimApiName' parent: apiManagement properties: { name: 'risk-rating' // This is the API name within APIM path: '/' // The base path for this API displayName: 'risk-rating' } } resource apimBackend 'Microsoft.ApiManagement/service/backends@2024-05-01' = { name: 'my-function-app' parent: apiManagement properties: { protocol: 'https' // Or https url: 'azfun-my-dev.azurewebsites.net' } } resource apimApiBackendLink 'Microsoft.ApiManagement/service/apis/backends@2021-08-01' = { name: 'my-function-app-link' parent: apimApi properties: { backendId: apimBackend.id } } While deploying through the Azure DevOps, I see the below error in the pipeline. A resource's computed scope must match that of the Bicep file for it to be deployable. This resource's scope is computed from the "scope" property value assigned to ancestor resource "apiManagement". You must use modules to deploy resources to a different scope. [https://aka.ms/bicep/core-diagnostics#BCP165] Can someone suggest, how to fix this problem? Thanks DD
Azure DevOps - More than One Build Agent?
Hi, My organisation is using the cloud hosted version of Azure DevOps. We are currently working on building out our CI\CD pipelines. We are trying to speed up the build process by using parallel jobs. I can see from the link below that for private projects, we should be allowed One free parallel job that can run for up to 60 minutes each time and a total of 1800 free minutes per month: https://learn.microsoft.com/en-us/azure/devops/pipelines/licensing/concurrent-jobs?view=azure-devops&tabs=ms-hosted Currently when we run two jobs at the same time they are queued up one after the other rather than in parallel. I believe the issue is that there is only one Microsoft Hosted Build Agent in the Agent Pool. We would much prefer to get a second Microsoft Hosted Build Agent rather than provisioning a self hosted build agent ourselves. Can you get a second Microsoft Hosted Build Agent? I have used the Microsoft Form referenced in the link above to request an increase in the allowance. Thanks, Stephen Mulryan
Azure Boards Approval on Work Item/ Tasks
Hi Azure DevOps Community, We are currently implementing Azure Boards as our project management tool, but one major requirement in our project is to integrate task approval in the work item by management / team leads. Our current process is to seek manual email approval and attach it to the work item. Is there any way to implement this feature in Azure Boards? Here is our expected flow: App team creates work item -> Management leads will approve -> DevOps will do the taskGitHub's pull_request_target in ADO ?
Hi When some user open a PR from a branch/fork including some modification on the pipeline, ADO executes the "modified" pipeline instead of the original one. This is an open door to PPE (Poisoned Pipeline Execution). In GitHub the "original" pipeline can use pull_request_target as a trigger. In that case, in the above case the original pipeline is executed instead of the modified one. Does anyone know how to make ADO to run the "original" pipeline instead of the modified one ? Thanks
Disassociated unknown user with same display name
In boards/wiki/comments etc. we have a user with a known display name, but when hovering over that user it says "unknown user". That user has the same display name as another user account, however the unknown user account only appears in boards, etc. and not as a user in permissions in the org. I want to merge these accounts with the same display name or figure out some way to re associate the unknown user with the original user. Obviously i can just reassign all the stories to the original user, but that is not a solution to the original problem as the user would still be left without the possibility of editing their comments. Another observation; When i go to edit the comments of the unknown user as PCA, the comments reassign to me, however the PA can't edit the comments to take over the ownership of the comment. I haven't been able to find a solution for this, been searching through the API as well to figure out a way to edit the "IdentityRef" parameter, but that does not seem to be an option through the API. Can't find any discussion on this either. If someone has a good solution for this that would be very welcome.
bypass of MFA for Admin portals
Hello, I have a conditional access policy that bypasses MFA for custom enterprise apps when working from our trusted IPs. Since this policy is working as designed and expected, I thought it would be a simple matter to add the admin portal apps to it so sites like portal.azure.com are also bypassed. But for some reason it doesn't work even though sign-in logs reflect that the password only policy is indeed being applied to the sign in. Is there something additional I need to do? Are admin portals hardcoded for MFA? I have included some screenshots of the policy and logs for review. Thanks,
