What are the correct claims to use in a logic app when calling from a synapse workspace that has managed identity?
Scenario: A Synapse Workspace with a Managed Identity is used to make an HTTP call to a Logic App. The Workspace identity is granted the Contributor role in the Logic App.
On the logic app trigger, using default claims (Audience, Issuer) with or without custom claims (v1 token claims appid and appidacr, or v2 token claims azp, azpacr) return a token mismatch error to the caller.
On Synapse side, a Web Activity is used with authentication set to "Managed Identity", with the same Audience as in the Logic App trigger in the "Resource" field of the Activity settings.
How can I get this working?