query(arm): logicapp_callbackurl_exposed

[Kaloszer]

Platform

Arm

Provider

Azure

Description

Logic apps expose a callback URL with a secret token that is appended to the end

listCallbackURL('logicappid/triggers/manual', logicApp.apiVersion).value

[listCallbackURL('logicappid/triggers/manual', 'version').value]

This should be considered a secret and not exposed in output/input - so if this property is used in a module it should be provided as a @secure() parameter to a module and not provided directly to a deployment (e.g. in the same file).