services / Azure / Logic Apps API connection
A managed API connection (Logic Apps / connector instance) that stores the configuration and authentication binding linking workflows to a backend service.
Connections embed reusable backend credentials/OAuth tokens; secret material is exposed only via dedicated listsecrets/listconnectionkeys actions, while the resource itself supports a single integration function.
Microsoft.Web/apimanagementaccounts/apis/connections/confirmConsentCode/action
Confirms the OAuth consent code that finalizes the connection's delegated authorization, binding an identity/token the connection then acts as to reach the backend service and persisting that access.
Risks
Scope: HIGH
This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.
Links
Contributed by P0 Security