Azure Logic Apps
An Azure service that automates the access and use of data across clouds without writing code.
2,855 questions
Details about security options with Logic Apps "export to PowerApps" option
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 30%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
epress
0
Reputation points
After reading about securing a Logic App (including options for Azure Active Directory authorization policies and API Management), how secure is the "export to PowerApps" option in Logic Apps? It creates a custom connector that appears to use "OpenAPIconnection" as they type, but I can't see any information about the authentication model it uses.
My use case requires that the Logic App can only be triggered by a call from a PowerApp (through Power Automate) to allow end-users to trigger the logic app through a friendly front-end. I'm concerned the logs or flow run history will contain the Logic App SAS value, API key or other confidential values.
I'm also concerned that if I lock down the Logic App using the AAD authorization policies, API Management, or restrict IP addresses, the "export to PowerApps" custom connection it creates will stop working.
Is there any information about the behind the scenes for this connector? Or have experience implementing it securely?
A lot of the information is about calling Logic Apps from Postman or other more 'codey' end-clients, but PowerApps/PowerAutomate is a bit more limited
Thanks in advance