{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Deceive 欺骗 的问题《Cloning Git Repo using TFS Personal Access Token》','https://www.manongdao.com/q-1313691.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I am trying to programmatically clone a git repository. My ASP.NET MVC application is creating and starting a process. The code to handle the processes works correctly however the authentication is failing when trying to use a TFS on premise PAT to clone a git repository. I cannot use NTLM or require the user to enter credentials. I can confirm my C# code handling creating processes to use the git bash shell programmatically works as I have no issue on my local machine but in production on IIS the issue arises. I have tried the following two methods.
Method 1: git clone http://anyusername:PAT@tfs2017:8080/tfs/DefaultCollection/_git/Git%20Repository
PAT is the token I have generated for my user. I have tried to encode it in base64 as well.
Method 2: As suggested by a person on a MS social forum.
git -c http.extraheader="AUTHORIZATION:bearer {base64encodedPAT}" clone {url}
Original MS Forum Question for Reference: https://social.msdn.microsoft.com/Forums/vstudio/en-US/0107cf1f-7fe4-4429-af74-ca7d2be7405e/using-personal-access-tokens-in-tfs-2017?forum=tfsversioncontrol
If you have a PAT, you should not need a password: the PAT would act as your username.
See if the following works:
You can use the CredentialManager by programmatically adding the token to the machine, the same way CredentialManager would do it.
On Windows I use the
cmdkeytools as follow:On MacOS add an entry in the keychain:
Note: Avoid using -A which allows any application to access it.
As long as the CredentialManager is installed on Git, it should work.
Just adding my 2c since I've spent hours on this.
I generated the PAT from DevOps and copied the clone URL but I kept get "repository not found"
Note the project has a space in it and is URLEncoded
This won't work in DOS - it resolves to
You need to double escape it like so:
I was a bit confused after reading the article from MS. After trying out some ways, I was finally able to use my PAT against TFS and VSTS GIT Repos.
The only way I was able to get a clone of my GIT repo using a PAT was setting the
http.extraheaderin the GIT commandline.The authorization tag must point to basic authentication, the protocol must be
HTTPS, and the token must be BASE64 encoded, including a (fictional) user name.Example:
Used basic token BASE64 encoded:
TXlHaXRTeW5jVXNlcjo2bHFqNXJkcHEzdXBxZWVmd2o3bDduZXN5NTR3d3gxNHFobDVlanl5NTVkb2g0M3d4YzRhBasic Token BASE64 decoded:
Token is constructed from
<fictional user name>:<PAT from a user with rights in the project>In this example:
The TFS/VSTS doesn't accept "
AUTHORIZATION: Bearer" headers at the moment :(Maybe this will help someone using the PATs in TFS/VSTS.
Note: HTTPS is needed for BASIC Authentication!