使用托管标识从 Azure 数据工厂触发逻辑应用程序工作流
[英]Triggering Logic Apps Workflow from Azure Data Factory using Managed Identity
问题描述
For a project I am working on, we need to trigger a Logic App workflow from Azure Data Factory.
对于我正在处理的项目,我们需要从 Azure 数据工厂触发逻辑应用工作流。
We were thinking to do the integration/authentication in a secure way by using Managed Identity and hence avoiding the use of any client secrets.我们正在考虑通过使用托管身份以安全的方式进行集成/身份验证,从而避免使用任何客户端机密。
Practically, we have a Web activity in ADF which needs to call the Logic App workflow endpoint (in a secure way) avoiding the SAS values in the url or using any client secrets in body.实际上,我们在 ADF 中有一个 Web 活动,它需要调用逻辑应用工作流端点(以安全方式),避免 Z572D4E421E5E6B9BC11D815E8A027121 中的 Z572D4E421E5E6B9BC11D815E8A027121 中的 SAS 值。
Has anyone had any experience with this?有没有人有这方面的经验?
1 个解决方案
解决方案1
1 已采纳 2021-04-16 13:55:57
This should be what you are looking for:这应该是您正在寻找的:
And here is the detailed REST API URL to trigger it.这里是详细的 REST API URL 来触发它。 Keep in mind this method requires you to give your ADF RBAC to whatever Logic App you are wanting ADF to trigger.请记住,此方法要求您将 ADF RBAC 提供给您希望 ADF 触发的任何逻辑应用程序。
https://management.azure.com/subscriptions/{YourSubscriptionID}/resourceGroups/{YourResourceGroupName}/providers/Microsoft.Logic/workflows/{YourLogicAppName}/triggers/Manual/run?api-version=2016-06-01
I tested this using a Simple SendGrid Email test and it worked.我使用 Simple SendGrid Email 测试对此进行了测试,并且它有效。
If you for some reason don't like this method, you could also have ADF drop a Message Queue into Azure Storage, then have your Logic App listening to that Storage Queue and trigger when a new message is received.如果您出于某种原因不喜欢此方法,您也可以让 ADF 将消息队列放入 Azure 存储中,然后让您的逻辑应用程序监听该存储队列并在收到新消息时触发。 In that case ADF and the logic app just need access to the same Queue, and not directly to each other.在这种情况下,ADF 和逻辑应用只需要访问同一个队列,而不是直接相互访问。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.