dosubot[bot] commented on issue #8691: URL: https://github.com/apache/incubator-devlake/issues/8691#issuecomment-3799993627
<!-- Answer --> For DevLake to collect Azure DevOps data (beyond just listing repositories), your Personal Access Token (PAT) must have the "Full access" scope and be created with "All accessible organizations" selected in the Organization field. Repository read access alone isn't enough—data collection covers pipelines, jobs, pull requests, and more, which require broader permissions. If your PAT is expired, invalid, or missing these scopes, you'll see authentication errors like HTTP 401 during data collection. See the official guidance for details: [DevLake Azure DevOps token requirements](https://github.com/apache/incubator-devlake/blob/main/config-ui/public/onboard/step-2/azuredevops.md). The "Associate Scope Config" button is only enabled if the plugin supports scope config association. If it's disabled, it's likely because the Azure DevOps plugin or your current configuration doesn't support this feature. The button becomes active when scope config is available and supported by the plugin logic in the UI codebase. If you can't select "All accessible organizations" when creating the PAT, that's a restriction from your Azure DevOps organization or admin policy, not DevLake. In that case, you may need to contact your Azure DevOps admin to adjust permissions if you need broader access [details](https://github.com/apache/incubator-devlake/discussions/8683). <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=hallucination) | [Report 🐛](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/821e4ed4-6ccf-4103-b2b2-65074ef2d290?feedback_type=other)</sup> [](https://app.dosu.dev/b4e8e847-d479-4541-83a8-d88d83fea5c9/ask?utm_source=github) [](https://cursor.com/link/prompt?text=For%20DevLake%20to%20collect%20Azure%20DevOps%20data%20%28beyond%20just%20listing%20repositories%29%2C%20your%20Personal%20Access%20Token%20%28PAT%29%20must%20have%20the%20%22Full%20access%22%20scope%20and%20be%20created%20with%20%22All%20accessible%20organizations%22%20selected%20in%20the%20Organization%20field.%20Repository%20read%20access%20alone%20isn%27t%20enough%E2%80%94data%20collection%20covers%20pipelines%2C%20jobs%2C%20pull%20requests%2C%20and%20more%2C%20which%20require%20broader%20permissions.%20If%20your%20PAT%20is%20expired%2C%20invalid%2C%20or%20missing%20these%20scopes%2C%20you%27ll%20see%20authentication%20errors%20like%20HTTP%20401%20during%20data%20collection.%20See%20the%20official%20guidance%20for%20details%3A%20%5BDevLake%20Az ure%20DevOps%20token%20requirements%5D%28https%3A//github.com/apache/incubator-devlake/blob/main/config-ui/public/onboard/step-2/azuredevops.md%29.%0A%0AThe%20%22Associate%20Scope%20Config%22%20button%20is%20only%20enabled%20if%20the%20plugin%20supports%20scope%20config%20association.%20If%20it%27s%20disabled%2C%20it%27s%20likely%20because%20the%20Azure%20DevOps%20plugin%20or%20your%20current%20configuration%20doesn%27t%20support%20this%20feature.%20The%20button%20becomes%20active%20when%20scope%20config%20is%20available%20and%20supported%20by%20the%20plugin%20logic%20in%20the%20UI%20codebase.%0A%0AIf%20you%20can%27t%20select%20%22All%20accessible%20organizations%22%20when%20creating%20the%20PAT%2C%20that%27s%20a%20restriction%20from%20your%20Azure%20DevOps%20organization%20or%20admin%20policy%2C%20not%20DevLake.%20In%20that%20case%2C%20you%20may%20need%20to%20contact%20your%20Azure%20DevOps%20admin%20to%20adjust%20permissions%20if%20you%20need%20broader%20access%20%5Bdetails%5D%28h ttps%3A//github.com/apache/incubator-devlake/discussions/8683%29.) [](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/incubator-devlake/issues/8691) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
