"Specify Download" property in Instance Security Dashboard

Go to solution
anubhavkapoor76
ServiceNow Employee
ServiceNow Employee

‎10-11-2018 09:01 AM

Hey Folks,

I have an unusual situation where we are trying to restrict download the file types in ServiceNow instance by means of "Instance security dashboard"

So i have specified the file types under system property 'glide.ui.strict_customer_uploaded_content_types' like doc,docx,xls, and xlsx and I want only these types of files to be downloaded in the instance.

However I can download type 'txt' also!! 

KB for Security Hardening Document: KB0550654 (Section 6.3)

Also read standard docs from :General Security Settings and in this obviously 'glide.ui.strict_customer_uploaded_static_content' is not visible in Instance.

I have tried this in Personal Instance too!!

Cheers!!

Anubhav

Cheers!!
Anu

Conect me at LinkedIn
  • 1,753 Views
1 ACCEPTED SOLUTION

Go to solution
Jon Williams
ServiceNow Employee
ServiceNow Employee

‎03-20-2019 11:28 AM

Hi Anubhav,

I believe I have the answer to your question. The "glide.ui.strict_customer_uploaded_static_content" property is likely not set up properly as JeffCsn stated.

This property turns on the ability to restrict the types of files that can be downloaded when they have been uploaded using the "Upload File" functionality of the platform, and it is used in conjunction with "glide.ui.strict_customer_uploaded_content_types". 

When the "glide.ui.strict_customer_uploaded_static_content_types" parameter is configured with a list of comma delimited file types, then these will be the only file types that can be downloaded as static content from an instance.

The "glide.ui.strict_customer_uploaded_static_content" property is configured in the Security section of System Properties.

1. Start by navigating to "System Properties" > "Security".find_real_file.png

2. In the "Security" page scroll down to the section "Attachment limits and behavior". In this section you'll find the area where you can configure the "glide.ui.strict_customer_uploaded_static_content" property by specifying the type of file extensions that can be downloaded. find_real_file.png

Let me know if this helps, hopefully it's what you need to get it working!

Thank you,

Jon Williams

View solution in original post

Preview file
901 KB
Preview file
218 KB
0 Helpfuls
9 REPLIES 9

Go to solution
Jeff Currier
ServiceNow Employee
ServiceNow Employee
In response to anubhavkapoor76

‎10-15-2018 05:37 AM

Did you get any help on your incident?  The Community might like to know the result/fix/resolution.

0 Helpfuls

Go to solution
anubhavkapoor76
ServiceNow Employee
ServiceNow Employee
In response to Jeff Currier

‎10-15-2018 06:32 AM

Hi JeffCsn,

The issue is still pending in Hi Portal. Will post the solution once done in this post.

Cheers!!

Anubhav

Cheers!!
Anu

Conect me at LinkedIn

Go to solution
simongilding
Kilo Explorer
In response to anubhavkapoor76

‎02-12-2019 02:42 AM

Hi. Have you received any updates on this one yet? Thx.

0 Helpfuls

Go to solution
chrisayres
ServiceNow Employee
ServiceNow Employee
In response to Jeff Currier

‎03-06-2019 03:06 AM

Jeff, I have a customer who has flagged this and I want to know if this has been resolved.

0 Helpfuls

Go to solution
Jon Williams
ServiceNow Employee
ServiceNow Employee

‎03-20-2019 11:28 AM

Hi Anubhav,

I believe I have the answer to your question. The "glide.ui.strict_customer_uploaded_static_content" property is likely not set up properly as JeffCsn stated.

This property turns on the ability to restrict the types of files that can be downloaded when they have been uploaded using the "Upload File" functionality of the platform, and it is used in conjunction with "glide.ui.strict_customer_uploaded_content_types". 

When the "glide.ui.strict_customer_uploaded_static_content_types" parameter is configured with a list of comma delimited file types, then these will be the only file types that can be downloaded as static content from an instance.

The "glide.ui.strict_customer_uploaded_static_content" property is configured in the Security section of System Properties.

1. Start by navigating to "System Properties" > "Security".find_real_file.png

2. In the "Security" page scroll down to the section "Attachment limits and behavior". In this section you'll find the area where you can configure the "glide.ui.strict_customer_uploaded_static_content" property by specifying the type of file extensions that can be downloaded. find_real_file.png

Let me know if this helps, hopefully it's what you need to get it working!

Thank you,

Jon Williams

Preview file
901 KB
Preview file
218 KB
0 Helpfuls