I have created a bot using power virtual agent which will assist user in changing their password. User need to pass their current and new password for this. And then I am calling power automate flow and then making use of API https://graph.microsoft.com/v1.0/me/changePassword to change password by passing body as
{ "currentPassword": "Test123456", "newPassword": "Test12345678" }
I see a security issue here wherein execution history gets stored in power automate and admin can see users passwords using it. Any idea on how to overcome this?
Hi @Manusinh,
You can use secure input and output settings within the Power Automate actions.
I see you also posted on the Power Automate forum about this, I have shared a bit more details over there: