To allow an non-authenticated user to make an API call to attach a file on CSM, how can we set?

maitakiguch · ‎01-22-2025

I want to create a form for non-authenticated users in CSM and implement a feature to attach files there. Since it is impossible to achieve the file attachment feature for non-authenticated users with only CSM, I am considering a method to call an external API and store the files externally.

When calling an external API, I intend to call the API from the ServiceNow instance in order to restrict the source IP. If the user's file attachment window is implemented with client-side scripting, the source IP when calling the API will not be the instance's IP, so I want to avoid this.

Please tell me how to implement it so that non-authenticated users can select files from the file attachment window and call the API from the ServiceNow instance.

Ankur Bawiskar · ‎01-23-2025

@maitakiguch

this link has the solution

Allow Guest users to add attachments on Catalog Items/Record Producers

Note: It's not recommended to do this as lot of unauthenticated users can add files and flood the Attachment table

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

View solution in original post

maitakiguch · ‎01-26-2025

@Ankur Bawiskar
Thank you for your advice. We are currently trying the linking method you provided and will let you know the results.

maitakiguch · ‎02-02-2025

@Ankur Bawiskar
I have confirmed that I can implement it using the API you advised me about.
Thank you very much.