services / Azure / API Management self-hosted gateways
A self-hosted gateway is a containerized API Management gateway registered with an APIM service instance that proxies and applies policies to API traffic for backend services, deployable outside Azure.
Gateways front a single API surface/function; their keys and tokens are connection credentials, and their configuration can embed backend secrets and named values.
Microsoft.ApiManagement/service/gateways/listTrace/action
Lists trace data collected by the gateway, exposing captured request/response payloads, headers, and tokens flowing through the API surface.
Risks
Scope: HIGH
This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog