Callback Url (for HTTP-triggered workflows) — Polysync auto-discovers
this; you can override.
Authentication methods
Polysync Service Principal ⭐ (recommended) — no extra attributes;
grant the Polysync Enterprise Application Logic App Contributor on the
Logic App. This is the standard method for all Polysync tenants.
Service Principal — Tenant Id, Client Id, Client Secret. Use
when you need a dedicated SPN per Logic App. Rotate the secret regularly.
SAS / Callback Key — for HTTP-triggered workflows that authenticate
via the signed callback URL.
Permissions checklist
The chosen identity must hold the Logic App Contributor role on the
Logic App.
For SAS / Callback authentication, treat the signed URL as a secret —
store it in a vault and rotate by regenerating the access keys.