Cross-Scope Privilege API - ServiceNow Fluent

Australia Build or modify applications

Release

australia

ft:locale

fr-FR

ft:publication_title

Australia Build or modify applications

ft:clusterId

cadev

bundleId

cadev

workflow

Development, Data, and Analytics

Cross-Scope Privilege API - ServiceNow Fluent

Rversion finale: Australia

Mis à jour 12 mars 2026

1 minute de lecture

The Cross-Scope Privilege API defines cross-scope privileges [sys_scope_privilege] for runtime access tracking.

Runtime access tracking allows administrators to manage script access to application resources by creating a list of script operations and targets that the system authorizes to run. For general information about cross-scope privileges, see Cross-scope privilege record.

CrossScopePrivilege object

Configure cross-scope privileges [sys_scope_privilege] that determine which script operations and targets the system allows to run in the application.

Tableau 1. Properties
Name	Type	Description
$id	String or Number	Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. For more information, see ServiceNow Fluent language constructs. Format: `Now.ID['String' or Number]`
status	String	Required. The authorization for this record. Valid values: requested allowed denied
operation	String	Required. The operation that the script performs on the target. The target type determines the available operations. Tables [sys_db_object] support the read, write, create, and delete operations. Script includes [sys_script_include] and script objects [sys_db_object] only support the execute operation. Valid values: create delete read write execute
targetName	String	Required. The name of the table, script include, or script object being requested.
targetScope	String	Required. The application scope from which resources are requested.
targetType	String	Required. The type of request: script include, script object, or table. Valid values: sys_script_include scriptable sys_db_object
$meta	Object	Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific circumstances. `$meta: { installMethod: 'String' }` Valid values for installMethod: demo: Outputs the application metadata to the metadata/unload.demo directory to be installed with the application when the Load demo data option is selected. first install: Outputs the application metadata to the metadata/unload directory to be installed only the first time an application is installed on an instance.

import { CrossScopePrivilege } from '@servicenow/sdk/core'

CrossScopePrivilege({
   $id: Now.ID['cross_1'],
   status: 'allowed',
   operation: 'execute',
   targetName: 'Script type',
   targetScope: 'x_snc_example',
   targetType: 'scriptable',
})