🔥 3-day streak
Microsoft Power Platform Developer50 / 140
Question 50 of 140

You are building a custom API message named contoso_RecalculateInventory that performs a sensitive, long batch operation. Business requirements state that only users who hold a specific security privilege should be able to invoke it, and the operation must be callable both from the Web API and from within other plug-ins. When defining the Custom API record in Dataverse, which configuration correctly enforces the privilege requirement without writing extra authorization code?

Reviewed for accuracy · Report an issueNext question