azuredevops_area_permissions

Manages permissions for an Area (Component)

Permission levels

Permission for Areas within Azure DevOps can be applied on two different levels. Those levels are reflected by specifying (or omitting) values for the arguments project_id and path.

Example Usage

resource "azuredevops_project" "example" {
  name               = "Example Project"
  work_item_template = "Agile"
  version_control    = "Git"
  visibility         = "private"
  description        = "Managed by Terraform"
}

data "azuredevops_group" "example-project-readers" {
  project_id = azuredevops_project.example.id
  name       = "Readers"
}

resource "azuredevops_area_permissions" "example-root-permissions" {
  project_id = azuredevops_project.example.id
  principal  = data.azuredevops_group.example-project-readers.id
  path       = "/"
  permissions = {
    CREATE_CHILDREN = "Deny"
    GENERIC_READ    = "Allow"
    DELETE          = "Deny"
    WORK_ITEM_READ  = "Allow"
  }
}

Argument Reference

The following arguments are supported:

Permission Description
GENERIC_READ View permissions for this node
GENERIC_WRITE Edit this node
CREATE_CHILDREN Create child nodes
DELETE Delete this node
WORK_ITEM_READ View work items in this node
WORK_ITEM_WRITE Edit work items in this node
MANAGE_TEST_PLANS Manage test plans
MANAGE_TEST_SUITES Manage test suites
WORK_ITEM_SAVE_COMMENT Edit work item comments in this node

Import

The resource does not support import.

PAT Permissions Required