services / Azure / Logic Apps API connection

A managed API connection (Logic Apps / connector instance) that stores the configuration and authentication binding linking workflows to a backend service.

Connections embed reusable backend credentials/OAuth tokens; secret material is exposed only via dedicated listsecrets/listconnectionkeys actions, while the resource itself supports a single integration function.


Microsoft.​Web/​apimanagementaccounts/​apis/​connections/​confirmConsentCode/​action

Confirms the OAuth consent code that finalizes the connection's delegated authorization, binding an identity/token the connection then acts as to reach the backend service and persisting that access.

Risks

Scope: HIGH

This privilege may grant access to sensitive data from a single organizational function, or allow interruption of a service supporting a single organizational function.

Links

  • https:​/​/​azure.​permissions.​cloud/​iam/​microsoft.​web
  • https:​/​/​learn.​microsoft.​com/​en-​us/​azure/​role-​based-​access-​control/​resource-​provider-​operations
  • Contributed by P0 Security

    © 2023–present P0 Security and contributors to the IAM Privilege Catalog