services / Azure / Logic App workflow run action request history
The recorded request/response payloads (HTTP bodies, headers, query parameters) that a Logic App workflow run action exchanged with endpoints during execution.
Request histories capture the actual data that flowed through the integration, frequently including sensitive business data and credentials carried in headers.
Microsoft.Logic/workflows/runs/actions/repetitions/requestHistories/read
Per-repetition (loop/retry iteration) variant; reading it discloses the actual request/response payloads of each iteration, leaking sensitive workflow data.
Risks
Scope: HIGH
This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.
Links
Contributed by P0 Security
© 2023–present P0 Security and contributors to the IAM Privilege Catalog