Views:

Applies to Product - Power Pages


What’s happening?
Customers are experiencing difficulties in identifying the sources of anonymous traffic to their portals and understanding the origin of records in the Incident table.


Reason:
The underlying cause for this includes the presence of custom flows that may allow anonymous users to create records in the Incident table, potentially bypassing security measures such as CAPTCHA.


Resolution:
Analyze Traffic Sources:

  1. Access the Power Platform admin center.
  2. Navigate to Resources > Power Apps sites.
  3. Use the analytics view to monitor daily, weekly, and monthly active users (DAU, WAU, MAU) for both authenticated and anonymous users.
  4. Filter the data by date range to compare month-over-month traffic patterns.
Review Incident Records:
  1. Confirm the validity of the records in the Incident table.
  2. Identify the record ID (IncidentID) and the timestamp of when the records were created.
  3. Check if the Incident table allows writing by anonymous users; if so, consider limiting access to authenticated users only.
Investigate Custom Flows:
  1. Review the custom flows that may be contributing to the creation of records by anonymous users.
  2. Ensure that any forms associated with these flows have appropriate security measures in place.
Monitor and Adjust:
  1. Continuously monitor the traffic and incident records to identify any unusual patterns or discrepancies.
  2. Adjust licensing or reporting setups as necessary based on the analysis of traffic and incident records.
Future Updates:
  1. Be aware that analytics regarding traffic per page on different sites will be added in future updates, which will provide more insights into specific pages accessed by anonymous users.
If further assistance is needed, please provide additional details regarding the specific records or traffic patterns observed.