web

You’re offline. This is a read only version of the page.

News and Announcements icon

Power Platform CommunityForums Power Pages How to secure the flow...

Power Pages

Answered

How to secure the flows that called from the portal?

(0) Share

Report

Report

Posted on by Community Power Pla... Microsoft Employee

Hello,

I'm triggering the Power Automate flows(When a HTTP request is received) from the Power Portal, what would be the best practice to secure them?

Can i reuse the Anti-forgery token for this purpose? If so, how to validate it inside the flow?

Best regards,

Elena

Categories:

Power Apps portals

I have the same question (0)

All responses Img

All responses (1)

Answers Img

Answers (1)

Verified answer

justinburch Microsoft Employee on at

Like (2)

Report
Copy link

Link copied!

I haven't tried it myself, but I assume you would need some way to validate the token via the implicit grant flow process (Use OAuth 2.0 implicit grant flow within your portal - Power Apps | Microsoft Docs). Your Power Automate would need to store (or query for) the Portal's public key, then use that to validate the API call's token, and then the user from the token.

Was this reply helpful? Yes No

Join the conversation

Helpful resources

News and Announcements

Welcome to the Power Platform Communities

Quick Links

Subscribe to this forum!

Stay up to date on forum activity by subscribing.

Leaderboard > Power Pages

#1

#2

#2

oliver.rodrigues 35 Most Valuable Professional

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals

Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans