الملاحظات

Azure Key Vault

  • Reference

Azure Key Vault is a service to securely store and access secrets.

This connector is available in the following products and regions:

Service Class Regions
Logic Apps Standard All Logic Apps regions
Power Automate Premium All Power Automate regions
Power Apps Premium All Power Apps regions
Connector Metadata
Publisher Microsoft
Website https://azure.microsoft.com/services/key-vault/

Known Limits

  1. The actions to get secrets and to get keys return maximum 25 items.

Creating a connection

The connector supports the following authentication types:
Bring your own application Log in using your own Azure Active Directory app. Integration service environments (ISE) only Not shareable
Default Log in with your credentials. All regions except Integration service environments (ISE) Not shareable

Bring your own application

Auth ID: oauthBYOA

Applicable: Integration service environments (ISE) only

Log in using your own Azure Active Directory app.

This is not shareable connection. If the power app is shared with another user, another user will be prompted to create new connection explicitly.

Name Type Description Required
Vault name string Name of the vault True
Tenant string Tenant ID of your Azure Active Directory application. True
Client ID string Client (or Application) ID of your AAD application. True
Client Secret securestring Client secret of your Azure Active Directory application. True

Default

Applicable: All regions except Integration service environments (ISE)

Log in with your credentials.

This is not shareable connection. If the power app is shared with another user, another user will be prompted to create new connection explicitly.

Name Type Description Required
Vault name string Name of the vault True

Throttling Limits

Name Calls Renewal Period
API calls per connection200060 seconds

Actions

Decrypt data with key

Decrypt data using the latest version of a key. Output of this operation is typically classified as secret and can be visible in the run history.
Decrypt data with key version

Decrypt data using a specific version of a key. Output of this operation is typically classified as secret and can be visible in the run history.
Encrypt data with key

Encrypt data using the latest version of a key.
Encrypt data with key version

Encrypt data using a specific version of a key.
Get key metadata

Gets metadata of a key.
Get key version metadata

Gets metadata of a version of a key.
Get secret

Gets a secret. Output of this operation is typically classified as secret and can be visible in the run history.
Get secret metadata

Gets metadata of a secret.
Get secret version

Gets a version of a secret. Output of this operation is typically classified as secret and can be visible in the run history.
Get secret version metadata

Gets metadata of a version of a secret.
List key versions

List versions of a key.
List keys

List keys.
List secret versions

List versions of a secret.
List secrets

List secrets.

Decrypt data with key

Operation ID:
DecryptData

Decrypt data using the latest version of a key. Output of this operation is typically classified as secret and can be visible in the run history.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.
Algorithm
 algorithm True string

Algorithm to use for decrypting the data
Encrypted data
 encryptedData True string

Data to decrypt

Returns

Result of decryption operation

Body
KeyDecryptOutput

Decrypt data with key version

Operation ID:
DecryptDataWithVersion

Decrypt data using a specific version of a key. Output of this operation is typically classified as secret and can be visible in the run history.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.
Version of the key
 keyVersion True string

Version of the key.
Algorithm
 algorithm True string

Algorithm to use for decrypting the data
Encrypted data
 encryptedData True string

Data to decrypt

Returns

Result of decryption operation

Body
KeyDecryptOutput

Encrypt data with key

Operation ID:
EncryptData

Encrypt data using the latest version of a key.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.
Algorithm
 algorithm True string

Algorithm to use for encrypting the data
Raw data
 rawData True string

Data to encrypt

Returns

Result of encryption operation

Body
KeyEncryptOutput

Encrypt data with key version

Operation ID:
EncryptDataWithVersion

Encrypt data using a specific version of a key.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.
Version of the key
 keyVersion True string

Version of the key.
Algorithm
 algorithm True string

Algorithm to use for encrypting the data
Raw data
 rawData True string

Data to encrypt

Returns

Result of encryption operation

Body
KeyEncryptOutput

Get key metadata

Operation ID:
GetKeyMetadata

Gets metadata of a key.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.

Returns

Metadata of a key

Body
KeyMetadata

Get key version metadata

Operation ID:
GetKeyVersionMetadata

Gets metadata of a version of a key.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.
Version of the key
 keyVersion True string

Version of the key.

Returns

Metadata of a key

Body
KeyMetadata

Get secret

Operation ID:
GetSecret

Gets a secret. Output of this operation is typically classified as secret and can be visible in the run history.

Parameters

Name Key Required Type Description
Name of the secret
 secretName True string

Name of the secret.

Returns

The secret

Body
Secret

Get secret metadata

Operation ID:
GetSecretMetadata

Gets metadata of a secret.

Parameters

Name Key Required Type Description
Name of the secret
 secretName True string

Name of the secret.

Returns

Metadata of a secret

Body
SecretMetadata

Get secret version

Operation ID:
GetSecretVersion

Gets a version of a secret. Output of this operation is typically classified as secret and can be visible in the run history.

Parameters

Name Key Required Type Description
Name of the secret
 secretName True string

Name of the secret.
Version of the secret
 secretVersion True string

Version of the secret.

Returns

The secret

Body
Secret

Get secret version metadata

Operation ID:
GetSecretVersionMetadata

Gets metadata of a version of a secret.

Parameters

Name Key Required Type Description
Name of the secret
 secretName True string

Name of the secret.
Version of the secret
 secretVersion True string

Version of the secret.

Returns

Metadata of a secret

Body
SecretMetadata

List key versions

Operation ID:
ListKeyVersions

List versions of a key.

Parameters

Name Key Required Type Description
Name of the key
 keyName True string

Name of the key.

Returns

Collection of keys

Body
KeyMetadataCollection

List keys

Operation ID:
ListKeys

List keys.

Returns

Collection of keys

Body
KeyMetadataCollection

List secret versions

Operation ID:
ListSecretVersions

List versions of a secret.

Parameters

Name Key Required Type Description
Name of the secret
 secretName True string

Name of the secret.

Returns

Collection of secrets

Body
SecretMetadataCollection

List secrets

Operation ID:
ListSecrets

List secrets.

Returns

Collection of secrets

Body
SecretMetadataCollection

Definitions

KeyMetadataCollection

Collection of keys

Name Path Type Description
value
 value array of KeyMetadata

The keys
continuationToken
 continuationToken string

Continuation token

KeyMetadata

Metadata of a key

Name Path Type Description
name
 name string

Name of the key
version
 version string

Version of the key
isEnabled
 isEnabled boolean

A flag indicating whether the key is enabled
createdTime
 createdTime date-time

Time when the key was created
lastUpdatedTime
 lastUpdatedTime date-time

Time when the key was last updated
validityStartTime
 validityStartTime date-time

Time when the key validity starts.
validityEndTime
 validityEndTime date-time

Time when the key validity ends.
allowedOperations
 allowedOperations array of string

Operations allowed using the key
keyType
 keyType string

Type of the key

KeyEncryptOutput

Result of encryption operation

Name Path Type Description
encryptedData
 encryptedData string

Encrypted data

KeyDecryptOutput

Result of decryption operation

Name Path Type Description
rawData
 rawData string

Raw data

SecretMetadataCollection

Collection of secrets

Name Path Type Description
value
 value array of SecretMetadata

The secrets
continuationToken
 continuationToken string

Continuation token

SecretMetadata

Metadata of a secret

Name Path Type Description
name
 name string

Name of the secret
version
 version string

Version of the secret
contentType
 contentType string

Content type of the secret
isEnabled
 isEnabled boolean

A flag indicating whether the secret is enabled
createdTime
 createdTime date-time

Time when the secret was created
lastUpdatedTime
 lastUpdatedTime date-time

Time when the secret was last updated
validityStartTime
 validityStartTime date-time

Time when the secret validity starts.
validityEndTime
 validityEndTime date-time

Time when the secret validity ends.

Secret

The secret

Name Path Type Description
value
 value string

Value of the secret
name
 name string

Name of the secret
version
 version string

Version of the secret
contentType
 contentType string

Content type of the secret
isEnabled
 isEnabled boolean

A flag indicating whether the secret is enabled
createdTime
 createdTime date-time

Time when the secret was created
lastUpdatedTime
 lastUpdatedTime date-time

Time when the secret was last updated
validityStartTime
 validityStartTime date-time

Time when the secret validity starts.
validityEndTime
 validityEndTime date-time

Time when the secret validity ends.