Azure Repos · Authentication Profile

Microsoft Azure Repo Authentication

Authentication

Azure Repos secures its APIs with http and oauth2 across 2 declared security schemes, as derived from its OpenAPI definitions. OAuth 2.0 is offered via the authorizationCode flow(s).

DevOpsGitRepositoriesSource ControlTFVCVersion Control
Methods: http, oauth2 Schemes: 2 OAuth flows: authorizationCode API key in:

Security Schemes

oauth2 oauth2
· flows: authorizationCode
basicAuth http
scheme: basic

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/azure-repo-git-api-openapi.yml
summary:
  types:
  - http
  - oauth2
  oauth2_flows:
  - authorizationCode
schemes:
- name: oauth2
  type: oauth2
  flows:
  - flow: authorizationCode
    authorizationUrl: https://app.vssps.visualstudio.com/oauth2/authorize
    tokenUrl: https://app.vssps.visualstudio.com/oauth2/token
    scopes: 3
  description: OAuth 2.0 authorization code flow for Azure DevOps Services. Requires the vso.code
    scope for read operations and vso.code_write for write operations.
  sources:
  - openapi/azure-repo-git-api-openapi.yml
- name: basicAuth
  type: http
  scheme: basic
  description: HTTP Basic authentication using a Personal Access Token (PAT). Use any string
    for the username and the PAT as the password.
  sources:
  - openapi/azure-repo-git-api-openapi.yml