If I create a connection, is there any level of user who can access that connection (like a system admin for example)? I know that some connections are implicitly shared via Power Apps. I am trying to understand what else I would need to be aware of, if anything, when creating connections that allow access to sensitive data.
Good morning @Cooper01, your use case seems standard and no one else other than those whom you shared the app with will have access to the connection. Two things you might need to take into consideration:
Regards,
Ahmed
If my reply helped you, please give a 👍. And if it has solved your issue, please consider a 👍 & Accepting it as the Solution to help other members of the community find it more.
My Blog: www.powerplatformplace.com
It would come down to identifying what privileges that connection allows to do with with the target system of the connnection, or if the connection is used to retrieve data, what's the risks posed with giving a user access to reuse the connection.
For example, imagine you setup a connection to a 3rd party api, that either deleted or retrieved data. If you shared that connection with the user, then they could, in theory create their own Flow, or app, that calls these actions, so they could also delete a record or possibly retrieve the data and export it somewhere else (fortunately you can apply DLP policies to restrict this but generally better to give as little access as required)
Thanks so much for the links @AhmedSalih . For a specific use case, let's say I create a SQL Server connection using SQL Server Authentication. I can then use that connection in my apps and flows to write to whatever server/database I specified. My understanding is that because SQL Server connection is implicitly shared via any Power Apps I may create, other users can use the same connection. That is okay, since I would only share the apps with the people who should be able to interact with its underlying data.
So given that use case, are there any other measures I should take in order to guard the connection for use outside of my own and the users who have access to the apps I create that implicitly share the connection?
Hello, @Cooper01 , this is a very broad topic, I would recommend that you start here:
https://docs.microsoft.com/en-us/power-apps/maker/data-platform/create-connection-reference
And then, here:
Then, if you have any specific use case, let me know.
Regards,
Ahmed
If my reply helped you, please give a 👍. And if it has solved your issue, please consider a 👍 & Accepting it as the Solution to help other members of the community find it more.
My Blog: www.powerplatformplace.com
WarrenBelz
146,745
Most Valuable Professional
RandyHayes
76,287
Super User 2024 Season 1
Pstork1
66,091
Most Valuable Professional