Azure DevOps

Akto's integration with Azure DevOps allows you to maintain API security through Azure Pipelines. With this integration, you'll be able to:

Check status of Akto CICD tests directly from Azure DevOps through quality gates
Generate tests from live functional traffic for targeted security testing
Insert security seamlessly into existing functional tests with complete automation

Prerequisites

Azure DevOps project with administrator access
Akto dashboard access
Akto API credentials (API key and dashboard URL)
Valid test ID from Akto test

Steps to Configure Azure DevOps Pipeline

1. Create Pipeline Configuration

Create a new file named azure-pipelines.yml in your repository root:

trigger:
- main  # Adjust this based on the branch to trigger the pipeline

pool:
  vmImage: 'ubuntu-latest'  # Defines the agent where the pipeline will run

variables:
  AKTO_DASHBOARD_URL: "https://app.akto.io"
  AKTO_API_KEY: "<token>"
  AKTO_TEST_ID: "<test-id>"
  WAIT_TIME_FOR_RESULT: "1000"

stages:
- stage: Build
  displayName: 'Build Stage'
  jobs:
  - job: BuildJob
    displayName: 'Building the Project'
    steps:
    - script: |
        echo "Compiling the code..."
        echo "Compile complete."
      displayName: 'Compile'

- stage: Test
  displayName: 'Test Stage'
  jobs:
  - job: TestScan
    displayName: 'Run Akto Security Test'
    container:  # Use container for this job
      image: aktosecurity/akto-testing-scan:latest
    steps:
    - script: |
        cd /usr/src/app
        echo $(AKTO_DASHBOARD_URL)
        echo $(AKTO_API_KEY)
        echo $(AKTO_TEST_ID)
        node index.js
      displayName: 'Running Akto Test Scan'

2. Configure Pipeline Variables

Go to Pipelines > Edit > Variables

Add the following required variables:

AKTO_DASHBOARD_URL: Your Akto dashboard URL
AKTO_API_KEY: Your Akto API key (mark as secret)
AKTO_TEST_ID: Your Akto test ID
WAIT_TIME_FOR_RESULT: Time to wait for test results

Save it and then hit the run button

3. Set Up Branch Policies [OPTIONAL - to configure pipeline for all builds]

Navigate to Project Settings > Repositories
Select your repository branch
Add build policy:
- Add build pipeline
- Make it required

4. Verify Integration [OPTIONAL]

Create a new pull request
Verify that Akto security checks appear in the pipeline
Check test results in the Azure DevOps pipeline interface

Viewing Results

Navigate to your pipeline run
Check the 'Test Stage' logs
Review security test results
Access detailed reports in Akto dashboard

PreviousJenkins NextGitLab

Last updated 1 year ago

hashtagPrerequisites

hashtagSteps to Configure Azure DevOps Pipeline

hashtag1. Create Pipeline Configuration

hashtag2. Configure Pipeline Variables

hashtag3. Set Up Branch Policies [OPTIONAL - to configure pipeline for all builds]

hashtag4. Verify Integration [OPTIONAL]

hashtagViewing Results