Enable Cross Scope Privilege Checks on Service Portal Form
Use a system property to enforce cross scope privilege checks on the Service Portal form widget and prevent unauthorized retrieval of forms and table data between scopes.
In Yokohama and later releases, queries enforce cross scope privilege checks on the table before reading the given sys_id information.
When the glide.service_portal.enforce_cross_scope_check_in_form property is set to the recommended value of true, cross scope privilege checks are enforced on the table. When set to false, the cross-scope privilege check isn’t enforced.
Set the glide.service_portal.enforce_cross_scope_check_in_form system property to true or confirm that the property doesn’t exist in the System Properties [sys_properties] table. If a record doesn’t exist in the sys_properties table, the value defaults to true.
More information
| Attribute | Description |
|---|---|
| Configuration name | glide.service_portal.enforce_cross_scope_check_in_form |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | Boolean |
| Recommended value | true |
| Default value | true |
| Category | Access control |
| Security risk |
|
| Dependencies and prerequisites | None |