Reputation: 31
Is the "When an HTTP request is received" trigger in PowerAutomate secure?
Currently i am sending an HTTP post to power automate with https://vba-tools.github.io/VBA-Web/
I know anyone can trigger the flow if they know the URL however that is not what worries me.
I am concerned with the security of the data in transit. The generated URL is https however the connector is called HTTP which makes me unsure if it is secure.
I havent been able to find anything in the documentation about this. Other than potentially adding an extra header to limit who can trigger the flow.
The generated URL looks like this.
https://prod-21.westus.logic.azure.com
Upvotes: 0
Views: 714
Answers (1)
Reputation: 11262
A quick check in Chrome tells me it's secure. The lock is there and Chrome states very clearly that it's secure.
Microsoft aren't going to allow a non-secured endpoint without being very explicit and in my limited knowledge, I would think if the URL is https then anything backend related would need ensure that it conforms and is secure.
Upvotes: 1
Related Questions
- How to pass login and password via POST VBA Httprequest?
- call a https REST service from VBA
- DirectApiAuthorizationRequired with Microsoft Flow calling Microsoft Flow
- HTTPS POST request using VBA for Excel
- Does PowerApps allow for untracked email or create security vulnerabilities?
- VBA ServerXMLHTTP https request with self signed certificate
- Using Power Automate I need to perform a HTTP request on a site that is protected by Azure AD
- Making a VBA API Request with Auth and 2 Headers?
- POST request from Excel vba on ssl enabled url
- VBA API POST with X-Auth-Token