Prerequisites
To install Qodo on Azure DevOps you need:- A single-tenant Qodo environment configured for Azure DevOps, including the Qodo webhook endpoint, provided by Qodo. Azure connection details (tenant ID, client ID, and client secret) are generated as part of the Microsoft Entra ID application registration during setup. Multi-tenant customers should contact Qodo to discuss the appropriate configuration.
- Permissions to create an app registration in Microsoft Entra ID.
- Permissions to create users in Microsoft Entra ID and add users to the Azure DevOps organization (Microsoft Entra ID User Administrator and Azure DevOps Organization Owner), and access to the Azure DevOps projects that will be integrated with Qodo.
Step 1: Create an application registration [Microsoft Azure]
Sign in to the Microsoft Azure portal.
Click New registration and enter the following:
- Application Name: Qodo
- Supported account types: Select Accounts in any organizational directory (Any Microsoft Entra ID tenant – Multitenant)
- Application Logo: https://www.qodo.ai/wp-content/uploads/2025/03/qodo-logo.svg
Navigate to Manage → Authentication → Add Redirect URL
a. In the popup, select Web Applications → Web
b. Enter the callback URL. The webhook URL is unique per customer. For example:
c. Click Configure.
a. In the popup, select Web Applications → Web
b. Enter the callback URL. The webhook URL is unique per customer. For example:
https://admin.<customer-domain>.st.qodo.ai/api/ado/oauth/callbackc. Click Configure.
Navigate to Manage → Certificates & secrets → New client secret
a. In the popup, add a description and select an expiration.
b. Click Add to generate a client secret and save the Value. This will not be visible later.\
a. In the popup, add a description and select an expiration.
b. Click Add to generate a client secret and save the Value. This will not be visible later.\
Step 2: Create a new user [Microsoft Azure]
Step 3: Create a service account [Azure DevOps]
The Microsoft Entra ID user that authenticates and creates the OAuth token must be the same user (same email / UPN) that is added to the Azure DevOps organization. If these do not match, the integration will not work.When using non-Azure domains (for example, Gmail), Azure may automatically create an
@onmicrosoft.com user. In this case, ensure that the same identity (email / UPN) is used consistently in both Microsoft Entra ID and Azure DevOps.Navigate to Organization settings → Users, and add the
Qodo user created in the previous step to the Azure DevOps organization.Step 4: Register the application with Qodo [Qodo]
This step is performed using a Qodo-hosted registration page to connect your Microsoft Entra ID application to your Qodo environment.Open an incognito or private browser window and verify that no Microsoft account is currently signed in. This step is important to ensure you authenticate using the correct service (bot) account.
In the same browser window, navigate to:
https://admin.<customer-domain>.st.qodo.ai/?tab=split Scroll down to the Azure DevOps section.Click ✎ Edit and in the registration form, provide the following details from the app registration in the Microsoft Azure portal:
- OAuth Application ID from the Overview tab (Application (client) ID)
- OAuth Application Secret (use the secret value, not the secret ID)
-
Entra Tenant ID where the application was created (from the Overview tab, Directory (tenant) ID)
Step 5: Set up webhooks [Azure DevOps]
Webhooks are required to enable two-way communication, allowing Qodo to receive pull request events from Azure DevOps.A single-tenant Qodo environment is required.
Configure the web hook to trigger on the relevant pull request events, such as:
- PR Created
- PR Updated
- PR Commented
- PR Merged
Set the URL to your single-tenant Qodo endpoint (provided by your Qodo contact). The webhook URL is unique per customer. (For example:
https://qodo-merge.<customer-domain>.st.qodo.ai)