details required on glide.script_processor.authorized_script_module_role property.

Karishma Dubey · ‎03-16-2023

Hello,

Can i get some input on below property.

Authorization for script execution - glide.script_processor.authorized_script_module_role.

What is the use of this property and how to test this?

After creating this property what we can achieve?

Following this document but i am not getting more inputs on this.

Authorization for script execution (servicenow.com)

Also, below article is not accessible for me.

Authorization for script execution - Product Documentation: San Diego - Now Support Portal (servicen...

Sai Shravan · ‎03-16-2023

Hi @Karishma Dubey ,

The property "glide.script_processor.authorized_script_module_role" is used to restrict which roles are allowed to execute server-side scripts within a specific module.

When this property is set, only users with the specified role can execute scripts within the designated module. This helps ensure that only authorized personnel can run potentially sensitive or critical scripts. For example, this property can be used to restrict access to scripts that handle financial data or perform system maintenance tasks.

To test this property, you can create a user with a role that is not authorized to execute scripts within the designated module and attempt to execute a script. You should receive an error message indicating that you do not have the necessary permissions to run the script.

After creating this property, you can achieve greater control over who can execute scripts within a specific module. This can help improve security and ensure that only authorized personnel can run potentially sensitive or critical scripts.

Regards,
Shravan

Please mark this as helpful and correct answer, if this helps you

Regards,
Shravan
Please mark this as helpful and correct answer, if this helps you

View solution in original post

Sai Shravan · ‎03-16-2023

Hi @Karishma Dubey ,

The property "glide.script_processor.authorized_script_module_role" is used to restrict which roles are allowed to execute server-side scripts within a specific module.

When this property is set, only users with the specified role can execute scripts within the designated module. This helps ensure that only authorized personnel can run potentially sensitive or critical scripts. For example, this property can be used to restrict access to scripts that handle financial data or perform system maintenance tasks.

To test this property, you can create a user with a role that is not authorized to execute scripts within the designated module and attempt to execute a script. You should receive an error message indicating that you do not have the necessary permissions to run the script.

After creating this property, you can achieve greater control over who can execute scripts within a specific module. This can help improve security and ensure that only authorized personnel can run potentially sensitive or critical scripts.

Regards,
Shravan

Please mark this as helpful and correct answer, if this helps you

Regards,
Shravan
Please mark this as helpful and correct answer, if this helps you

Karishma Dubey · ‎03-16-2023

@Sai Shravan ,

I created this property and a role test_authorization in my PDI.

However, i am trying to run background script with the system administrator user i am able to run the script i did not gave role test_authorization to the system administrator.

Is there any other way to test this property?

Ricky S Larsson · ‎05-03-2023

System administrator has the admin role and overrides this property. Instead, impersonate a non-admin user, with itil role and the property should work.

rahulrajkumarsn · ‎09-20-2024

Can you please provide testing step if possible