[D] Would anyone use Recordless rest message in realtime integrations?

Go to solution
Suggy
Giga Sage

‎02-16-2025 10:18 AM - edited ‎03-10-2025 03:41 AM

1. Would anyone use Recordless Rest message in real-time integrations? It exposes the password right which is not a best practice.

So just wondering if anyone use Recordless Rest message in real-time integrations........

2. If used, what are the consequences as password is visible ? Would it be logged anywhere? Can password be logged using any methods (not to my knowledge, hence asking here)

Thanks in advance!

0 Helpfuls
  • 743 Views
1 ACCEPTED SOLUTION

Go to solution
Kieran Anson
Kilo Patron

‎02-16-2025 01:03 PM

Recordless REST doesn't need to expose the password , you can easily pull credentials from a credentials record / property / encrypted field if needed. Storing the authentication details in the script is largely due to a lack of knowledge. 

 

I've used it where I needed to dynamically cycle through endpoints and credentials based on a decision table. No credentials exposed, no logging of protected values

View solution in original post

0 Helpfuls
6 REPLIES 6

Go to solution
Kieran Anson
Kilo Patron

‎02-16-2025 01:03 PM

Recordless REST doesn't need to expose the password , you can easily pull credentials from a credentials record / property / encrypted field if needed. Storing the authentication details in the script is largely due to a lack of knowledge. 

 

I've used it where I needed to dynamically cycle through endpoints and credentials based on a decision table. No credentials exposed, no logging of protected values

0 Helpfuls

Go to solution
Suggy
Giga Sage
In response to Kieran Anson

‎02-17-2025 12:13 AM

Hi @Kieran Anson Can you share the syntax to pull/read the credentials from credentials table in Recordless rest message method please?

0 Helpfuls

Go to solution
Kieran Anson
Kilo Patron
In response to Suggy

‎02-17-2025 05:29 AM

The most basic option would be to use the GlideRecord API to query the credential record on discovery_credentials and then return the unencrypted value of the password field.

 

 A better option would be to create a connection & credential alias, and relate the credential to the alias. 

 

KieranAnson_0-1739798850027.png

https://developer.servicenow.com/dev.do#!/reference/api/xanadu/server/sn_cc-namespace/standard-crede... would be the API to use

0 Helpfuls

Go to solution
Suggy
Giga Sage
In response to Kieran Anson

‎02-17-2025 05:35 AM

Thanks Kieran, but I see those APIs are available in scoped application only and in Global scope.

Any solution for global?

0 Helpfuls