Restrict downloadable files types in static content [Updated in Security Center 1.3]
Use the glide.ui.strict_customer_uploaded_static_content property to enable restrictions on the file types that can be downloaded when they have been uploaded using the Upload File functionality.
You use this property with the glide.ui.strict_customer_uploaded_content_types property, which creates a comma-delimited list of restricted downloadable file types.
경고:
The value for this property is a no DB override. It can't be altered or overridden.
More information
| Attribute | Description |
|---|---|
| Property name | glide.ui.strict_customer_uploaded_static_content |
| Configuration type | System Properties (/sys_properties_list.do) |
| Category | File and resources |
| Purpose | To ensure that safe file types are permitted to be downloaded from the application. |
| Recommended value | true |
| Default value | true |
| Security risk rating | 3.1 |
| Functional impact | This remediation enforces restriction of file downloads based on the values specified in the glide.ui.strict_customer_uploaded_content_types property. |
| Security risk | (Low) File download restrictions should be applied to any untrusted user input sources. |