You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When you use a service that's integrated with Azure DevOps, the industry-standard OAuth 2.0 authorization framework provides safe and secure access to your resources by those other services.
19
-
With OAuth, you grant a service the authorization to access your Azure DevOps resources, such as work items, source code, and build results.
18
+
When you use a service that's integrated with Azure DevOps, you can grant the service access your Azure DevOps resources, such as work items, source code, and build results.
20
19
21
-
- Authorizations are bound to your credentials, so the service can use the authorization to access your resources in Azure DevOps.
22
-
- Use your Microsoft account or your work account to authorize the service.
23
-
- The service that you authorize never has access to your Azure DevOps credentials.
24
-
- Revoke any authorizations that you've granted to other services.
20
+
Azure DevOps uses the industry-standard OAuth 2.0 authorization framework to grant the service access to your resources.
21
+
22
+
- Authorizations are bound to your credentials, so the service can use an authorization to access your resources in Azure DevOps.
23
+
- You use your Microsoft account or your work account to authorize the service.
24
+
- The service that you authorize doesn't have access to your Azure DevOps credentials.
25
+
- You can revoke any authorizations that you grant to other services.
25
26
26
27
## Prerequisites
27
28
@@ -33,29 +34,30 @@ With OAuth, you grant a service the authorization to access your Azure DevOps re
33
34
34
35
## Authorize a service
35
36
36
-
A typical authorization flow might go like this:
37
+
A typical authorization flow might include the following steps:
37
38
38
39
1. You're using a service that uses Azure DevOps resources, so the service requests authorization.
40
+
39
41
1. If you're not already signed in, Azure DevOps prompts you for your credentials.
40
42
41
43
42
44
43
-
2. After you sign in, you get the authorization approval page.
45
+
1. After you sign in, you get the authorization approval page.
44
46
45
47
46
48
47
-
Services can only request full access to all of the resources that are available to you through the REST APIs, so the authorization request might not be specific.
49
+
Services can only request full access to all the resources that are available to you through the REST APIs, so the authorization request might not be specific.
48
50
49
-
3. Review the request and approve the authorization.
51
+
1. You review the request and approve the authorization.
50
52
51
-
The authorized service uses that authorization to access resources in your Visual Studio account.
53
+
1. The authorized service uses that authorization to access resources in your Visual Studio account.
52
54
53
-
To ensure an authorization request is legitimate:
55
+
To ensure an authorization request is legitimate, take the following steps:
54
56
55
57
- Look for the Azure DevOps branding across the upper portion of the authorization approval page.
56
-
- Ensure the authorization approval page URL begins with ```https://app.vssps.visualstudio.com/```.
58
+
- Ensure the authorization approval page URL begins with `https://app.vssps.visualstudio.com/`.
57
59
- Pay attention to any HTTPS-related security warnings in your browser.
58
-
-Remember that other services don't ask for your credentials directly. They let you provide them to Azure DevOps through the authorization approval page.
60
+
-Don't give your credentials to other services directly. Enter your credentials only through the authorization approval page in Azure DevOps.
0 commit comments