securitytfsazure-devopsvisual-studio-2019devops
How to restrict Devs to specific project in TFS
we are using TFS in azure devops i have a solution in visual studio 2019 and we have created a project in TFS this project is connected to the solution in vs2019
This solution has 5 projects
there are 2 admin which are currently developing these projects now we are planning to add 2 more devs but we want to restrict new devs to only 2 projects in that solution. for security purpose Thanks
Solution
If you are using TFVC as source control, you can refer to the steps below:
- Select Security tab for the folder of the project (one of the project in your solution folder)
- Set Read permissions for the devs to Deny.
If you are using Git as source control, you can’t set the security for an item (project in a solution) in the repository. As workaround, you can split projects into multiple repo(submodules), and then set permissions for each repo.
Here is a case with similar issue you can refer to.
- How to grant save dashboard permission in OpenSearch Dashboards
- Which procedure is more secure for encryption using Password and Seed
- Storing API keys & secrets on servers
- How can I tell password managers what pattern to use?
- Mac OS X: Application with NX flag, Stack Cookies and ASLR enabled?
- Where to save a JWT in a browser-based application and how to use it
- Does my code prevent directory traversal?
- How to securely store access token and secret in Android?
- What's the difference between retrieving WindowsPrincipal from WindowsIdentity and Thread.CurrentPrincipal?
- Can't find class org.bouncycastle.cms.CMSSignedData
- Safety of leaking memory
- Security Warning when running scripts - Unblock-File not unblocking file
- Why do people put code like "throw 1; <dont be evil>" and "for(;;);" in front of json responses?
- Secure method to download files in Ruby
- Amazon Web Services : Setting S3 policy to allow putObject and getObject but deny listBucket
- Escaping strings for use in XML
- Limiting the scopes of an OAuth 2.0 flow
- Protecting against MitM (https) seeing password with encryption using included pub. key in iOS/Android app
- Why are iframes considered dangerous and a security risk?
- Vulnerabilities in spring-webmvc-5.3.39 to 5.3.40
- Limit GraphQL Queries by Breadth
- Securing a UDP connection
- Cross Domain Form POSTing
- How is PHP's mt_rand seeded?
- Customize android app preview when it is in background with secure flag
- Can a client-side login be safe?
- How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
- How to validate if a URL is an Okta domain?
- How to make Google Analytics respond to "Do Not Track"
- My Vercel API tokens leaked on GitHub. How do I regenerate them?