I have a space in Octopus. In this space, there is a project set up that uses the API to select work items to send in an email using Powershell. This project works fine. It uses a token under my account and I am the admin.
I have a second space with a project. The project uses the identical Powershell code except the token is for a service account. When the email is generated, I get an error:
ERROR retrieving package release notes info: The remote server returned an error: (401) Unauthorized.
Both projects use a single on-prem tentacle server.
Based on documentation I’ve read, using a service account is advised for API stuff. The service account I am using is set up with a domain account in Octopus and is the same account under which the tentacle runs.
Questions: What permissions does a service account need in order make API calls? Is there a specific role I can assign to the service account so that the token will work without generating a 401?