Where can I find this end point? api/now/ui/navigator/favorites

Go to solution
reginabautista
Kilo Sage

‎09-16-2020 10:43 AM

Hi guys I need to deactivate the endpoint below or ensure it's not available if user is not logged in. Would anyone know where I could find this endpoint? 

https://[your instance].service-now.com/api/now/ui/navigator/favorites

 

Thanks

Regina

 

0 Helpfuls
  • 1,731 Views
1 ACCEPTED SOLUTION

Go to solution
reginabautista
Kilo Sage
In response to Anks1

‎09-30-2020 09:11 AM

Hi Ankit,

It seems there is no way for us to access this endpoint. This is meant to be accessible by non-authenticaed users.

 

HI Support came back with the following answer:

We have known Problem related to this issue 'PRB1397853' and it was closed as working as expected with following comments from our development.


"This API is intended to be accessible for unauthenticated users, it returns the correct information for this case. This endpoint was designed to be accessible for non-authenticated users. The endpoint is "secured" as it only returns the information that was configured to be public and nothing else. There is no security issues here"

View solution in original post

10 REPLIES 10

Go to solution
reginabautista
Kilo Sage
In response to MrMuhammad

‎09-16-2020 11:44 AM

Just saw the update to the scripts. Trying that now...

0 Helpfuls

Go to solution
MrMuhammad
Giga Sage
In response to reginabautista

‎09-16-2020 11:48 AM

Yes, please try updated. That script will not let non-logged in user to interact. 

Regards,
Muhammad
0 Helpfuls

Go to solution
reginabautista
Kilo Sage
In response to MrMuhammad

‎09-16-2020 11:54 AM

Hi Muhammad, still no joy...

0 Helpfuls

Go to solution
Anks1
Kilo Contributor

‎09-29-2020 10:14 PM

Hi Regina,

We are also trying to restrict this API, did you find a solution?

Thanks
Ankit

0 Helpfuls

Go to solution
reginabautista
Kilo Sage
In response to Anks1

‎09-30-2020 09:11 AM

Hi Ankit,

It seems there is no way for us to access this endpoint. This is meant to be accessible by non-authenticaed users.

 

HI Support came back with the following answer:

We have known Problem related to this issue 'PRB1397853' and it was closed as working as expected with following comments from our development.


"This API is intended to be accessible for unauthenticated users, it returns the correct information for this case. This endpoint was designed to be accessible for non-authenticated users. The endpoint is "secured" as it only returns the information that was configured to be public and nothing else. There is no security issues here"