Forum Widgets
Latest Discussions
How to delete pipeline tags with special characters?
I want to delete specific tags attached to Azure pipeline builds, for example "hello: world". I've come to the conclusion that the ADO REST API endpoint for handling Tag deletions cannot parse special characters in the URL's slug i.e. colons and whitespaces. According to the docs here, the tag should be specified in the URL slug, followed by query string parameters if applicable. I tried the following: 1. If I insert the tag directly into the URL it will look like this: https://dev.azure.com/organisation/project/_apis/build/builds/1234567/tags/hello: world?api-version=7.1 This returns: "Response status code does not indicate success: 400 (Bad Request)." 2. But if I encode my slug using `[System.Web.HttpUtility]::UrlEncode($tag)`, the URL looks like this: https://dev.azure.com/organisation/project/_apis/build/builds/1234567/tags/hello%3a+world?api-version=7.1 This returns "Response status code does not indicate success: 404 (Not Found)." So it seems the encoding might have worked, although it appears to be searching for a tag without decoding the URL first? Does anyone know if there is a way for deleting tags with special characters? I have over 1600+ tags that need to be deleted so manually doing this through the UI would not be a viable option. EDIT: I just realised the documentation has a small note saying: This API will not work for tags with special characters. To remove tags with special characters, use the PATCH method instead (in 6.0+) Tried the PATCH method instead of DELETE and still not working. And there's no examples provided in the docs.Learning Azure with Ofek ☁️ Episode 1 What Is WAF and Why Should You Care?
Welcome to Learning Azure with Ofek—a series where we explore the essential tools, services, and best practices in Microsoft Azure, in a simple and practical way. In this first episode, we’re diving into WAF. Ever heard of the term WAF? Let’s break it down together and understand why it’s such a powerful security layer for your apps and websites. When it comes to protecting your web assets, WAF (Web Application Firewall) provides centralized protection. Beyond individual resource security, a WAF adds a smart, scalable layer that detects and blocks common vulnerabilities like SQL Injection and XSS (cross-site scripting) across your entire app. Another key role of a WAF is protecting against crawlers—automated bots that roam the internet gathering information. • A “good” crawler (like Google) indexes your site for search results, respects your site rules, and ignores areas you’ve marked as private. • A “malicious crawler”, however, scans the web looking for sensitive data, security loopholes, and organizational vulnerabilities. From my experience, Azure makes deploying WAF even easier. You can integrate it with services like Azure Application Gateway, Azure Front Door, and Azure CDN—each tailored for different use cases. In the image below, you can see how WAF works with Application Gateway at Layer 7 (L7), protecting the environment from web-based threats and securely routing requests to server pools like Site1 and Site2. So instead of stressing over every little threat—give WAF a serious look. It might just save your environment.
Adding connected organizations with powershell
Hi, When adding connected organizations using Powershell, the connected organization is added with auth type: OTP/Microsoft account. When adding the connected org using Entra portal, the org is correctly added as a Microsoft Entra ID tenant. Is there any way to add the org as a Microsoft Entra ID tenant programatically?Azure Billing Credit - No Explanation
Hello, I have a customer who received a larger credit on their February bill without any explanation. The customer is seeking clarification on the reason behind this credit. We compared the Azure billing and Azure portal cost management and noticed discrepancies in charges for compute and some PaaS services. Unfortunately, support has not been able to provide any answers or assistance. Could you please suggest a way to identify the source of this credit and the reason for it? Is there a specific team or group that might be able to assist us in resolving this issue? Thank you in advance for your help! TerruLinux Virtual Machine Agent Status "Not Ready"
We currently have a CEF server deployed in Azure which is a Linux VM. This morning I had no logs in sentinel and checked on the vm and noticed there was an error stating the Agent Status is "Not Ready". Having a hard time finding a solution to this problem, has anyone had this issue before? Thanks.Introducing the Azure Analysis Services web designer
Today we are releasing a preview of the Azure Analysis Services web designer. This new browser-based experience will allow developers to start creating and managing Azure Analysis Services (AAS) semantic models quickly and easily. While SQL Server Data Tools (SSDT) and SQL Server Management Studio (SSMS) are still the primary tools for development, this new experience is intended to make simple changes fast and easy. It is great for getting started on a new model or to do things such as adding a new measure to a development or production AAS model. This initial release includes three major capabilities, model creation, model editing, and doing queries. The model can be created directly from Azure SQL Database and SQL Data Warehouse, or imported from Power BI Desktop PBIX files. When creating from a database, you can chose which tables to include and the tool will create a Direct Query model to your data source. Then you can view the model metadata, edit the Tabular Model Scripting Language (TMSL) JSON, and add measures. There are shortcuts to open a model in Power BI Desktop, Excel, or even open a Visual Studio project which is created from the model on the fly. You can also create simple queries against the model to see the data or test out a new measure. Read about it on the Azure blog.Azure Function managed identity is raising this error "Access Denied"
We have an Azure Function on .NET 8.0. and we enabled the managed identity of the Azure Function. Then we run those commands as per this official MS link https://learn.microsoft.com/en-us/sharepoint/dev/apis/webhooks/sharepoint-webhooks-using-azd-template#grant-the-function-app-access-to-sharepoint-online:- Power shell command: # This script requires the modules Microsoft.Graph.Authentication, Microsoft.Graph.Applications, Microsoft.Graph.Identity.SignIns, which can be installed with the cmdlet Install-Module below: # Install-Module Microsoft.Graph.Authentication, Microsoft.Graph.Applications, Microsoft.Graph.Identity.SignIns -Scope CurrentUser -Repository PSGallery -Force Connect-MgGraph -Scope "Application.Read.All", "AppRoleAssignment.ReadWrite.All" $managedIdentityObjectId = "d3e8dc41-94f2-4b0f-82ff-ed03c363f0f8" # 'Object (principal) ID' of the managed identity $scopeName = "Sites.Selected" $resourceAppPrincipalObj = Get-MgServicePrincipal -Filter "displayName eq 'Office 365 SharePoint Online'" # SPO $targetAppPrincipalAppRole = $resourceAppPrincipalObj.AppRoles | ? Value -eq $scopeName $appRoleAssignment = @{ "principalId" = $managedIdentityObjectId "resourceId" = $resourceAppPrincipalObj.Id "appRoleId" = $targetAppPrincipalAppRole.Id } New-MgServicePrincipalAppRoleAssignment -ServicePrincipalId $managedIdentityObjectId -BodyParameter $appRoleAssignment | Format-List And this pnp command: Connect-PnPOnline -Url "https://YOUR_SHAREPOINT_TENANT_PREFIX.sharepoint.com/sites/YOUR_SHAREPOINT_SITE_NAME" -Interactive -ClientId "YOUR_PNP_APP_CLIENT_ID"` Grant-PnPAzureADAppSitePermission -AppId "3150363e-afbe-421f-9785-9d5404c5ae34" -DisplayName "YOUR_FUNC_APP_NAME" -Permissions Manage Here is the code for the Azure Function, which uses the login user credential if I am inside development machine and uses the Azure Function managed identity on the hosted app: if (Environment.GetEnvironmentVariable("AZURE_FUNCTIONS_ENVIRONMENT") == "Development")` { var credential = new InteractiveBrowserCredential(); // or AzureCliCredential graphClient = new GraphServiceClient(credential); } else { var credential = new DefaultAzureCredential(); // Managed Identity graphClient = new GraphServiceClient(credential); var token = await new DefaultAzureCredential().GetTokenAsync( new TokenRequestContext(new[] { "https://graph.microsoft.com/.default" }) ); _logger.LogInformation("Token acquired: " + token.Token.Substring(0, 20) + "..."); } //Call to get the "Call Transfer Log Data" sharepoint list data` try { var sitePath = "e**87"; var listId = "6*`*`*`*`"; var allItems = new List<ListItem>(); // Initial page request with Expand = fields var page = await graphClient .Sites[sitePath] .Lists[listId] .Items .GetAsync(config => { config.QueryParameters.Top = 100; config.QueryParameters.Expand = new string[]{ "fields($select=*)" }; }); allItems.AddRange(page?.Value ?? []); // code goes here... } Then I verified the setting, but running this command: Get-PnPAzureADAppSitePermission -Site "<Site URL>" I get this result: Id : ***...-.... Roles : {Manage} App : Microsoft.Azure.Functions – 3150363e-afbe-421f-9785-9d5404c5ae34 In the development environment, the code is working fine, while in the hosted Azure Function, the code raised an exception: Access Denied Any advice? It seems I use all the needed settings.
progress status in percentage on tasks
For an Agile-managed project using DevOps as the tool, I would like to know if there is a command to input the progress status in percentage on tasks. This should impact not only the progress status of the user story but also its corresponding epic, not just based on quantity but on a weight assigned to the task.Azure DevOps - More than One Build Agent?
Hi, My organisation is using the cloud hosted version of Azure DevOps. We are currently working on building out our CI\CD pipelines. We are trying to speed up the build process by using parallel jobs. I can see from the link below that for private projects, we should be allowed One free parallel job that can run for up to 60 minutes each time and a total of 1800 free minutes per month: https://learn.microsoft.com/en-us/azure/devops/pipelines/licensing/concurrent-jobs?view=azure-devops&tabs=ms-hosted Currently when we run two jobs at the same time they are queued up one after the other rather than in parallel. I believe the issue is that there is only one Microsoft Hosted Build Agent in the Agent Pool. We would much prefer to get a second Microsoft Hosted Build Agent rather than provisioning a self hosted build agent ourselves. Can you get a second Microsoft Hosted Build Agent? I have used the Microsoft Form referenced in the link above to request an increase in the allowance. Thanks, Stephen Mulryan
