Overview:
We have several ways to secure the Logic App endpoints like restricting inbound IP addresses, using SAS keys and API management instance. API management allows us to secure endpoints with various authentication modes such as client certificates, Oauth and basic credentials authentication.
We can also authorize Logic App HTTP endpoints using Oauth token with the new feature in Logic App "Authorization".You can follow the steps below for implementing this.
Implementation:
Issuer: https://sts.windows.net/{{TenantId}}/
Audience: https://management.azure.com
URL: https://login.microsoftonline.com/{{tenantId}}/oauth2/token
Verb: POST
Parameters:
Client_Secret: client secret collected in App registration
grant_type: client_credentials
client_id : Application Id of App registration
resource: https://management.azure.com
Example: https://prod-17.centralindia.logic.azure.com:443/workflows/d04bc34e3fdd403091de956ed28c48cd/triggers...&sig=Bq9fGp3wZ0Q7mDTdozBtvlljpXBIrGevi394_19RuHY
References:
https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-securing-a-logic-app#secure-triggers
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.