Mh - I’m running into a very interesting security issue when running a build task.
The task is making API calls to Azure DevOps to retrieve work items via a query.
The task succeeds in calling the /_apis/wit/fields
endpoint but fails calling /_apis/wit/wiql/...
returning The query ... does not exist, or you do not have permission to read it
.
The url opens fine in the browser and returns the result as JSON.
So for some reason the account (Project Collection Build Service) seems not to have permissions to read work item data. I can’t find any security setting that would explain this any pointers?