Search code examples
azurepostmanazure-data-factoryazure-rbac

Trigger Azure Data Factory Pipeline using Postman

I'm kinda lost, I'm trying to trigger a pipeline manually using the following:

POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.DataFactory/factories/{factoryName}/pipelines/{pipelineName}/createRun?api-version=2018-06-01

I use to generate an access token using the following: enter image description here

But I encountered the following error:

enter image description here

I'm not sure if it's related but I am assigned as a Data Factory Contributor Role, I can make pipelines but I could not publish them. But token does not says it is account related so.

I'm not sure if my client id and client secret are correct, it is the same as the one used for the database same subscription but different resource group.

How can I obtain the correct access token or is this even possible?

Solution

  • I tried to reproduce the same in my environment and got below results:

    I registered one Azure AD application and added API permission like this:

    enter image description here

    Now, I generated access token via Postman same as you with below parameters:

    GET https://login.microsoftonline.com/<tenantID>/oauth2/token

grant_type:client_credentials
client_id: <appID>
client_secret: <secret>
resource: https://management.azure.com/

    Response:

    enter image description here

    When I ran the same query to trigger Azure Data Factory pipeline by including above access token via Postman, I got same error as below:

    POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.DataFactory/factories/{factoryName}/pipelines/{pipelineName}/createRun?api-version=2018-06-01

    Response:

    enter image description here

    To resolve the error, you need to assign Data Factory Contributor Role to service principal/application with client ID in error response, before generating access token.

    Go to Azure Portal -> Data factories -> Your Data Factory -> Access control (IAM) -> Add role assignment

    enter image description here

    After assigning role to service principal, generate access token again and use it to run query.

    When I ran query with new access token, I got response successfully like below:

    POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.DataFactory/factories/{factoryName}/pipelines/{pipelineName}/createRun?api-version=2018-06-01

    Response:

    enter image description here

    In your case, make sure to assign Data Factory Contributor role to service principal(Azure AD application) to resolve the error.