Enforce Scope Access Controls on New Tables

  • リリースバージョン: Australia
  • 更新日 2026年03月12日
  • 所要時間:2分

    • Use a system property to enforce cross-scope access checks for newly created tables.

    The table dictionary attribute enforce_dot_walk_cross_scope_access=true enforces dot-walk cross-scope access enforcement for the applicable table. This enforcement applies to dot-walking across scope boundaries using a reference field to the applicable table. When the glide.script.dot_walk.add_attribute_on_table_create system property is not set to false, the attribute is added to the dictionary element of all new tables. This attribute is only added for new tables created after zBoot.

    Ensure that the glide.script.dot_walk.add_attribute_on_table_create system property set to true in the System Properties [sys_properties] table.

    More information

    Attribute Description
    Configuration name glide.script.dot_walk.add_attribute_on_table_create
    Configuration type System Properties (/sys_properties_list.do)
    Data type Boolean
    Recommended value true
    Default value true
    Fallback value null
    Category Access control
    Security risk
    • Severity score: 5.3
    • CVSS score: Medium
    • Security risk details: An application can access data in tables outside of it's application scope, leading to information disclosure.
    Functional impact Cross-scope access checks are enforced by default for newly created tables. This prevents applications from accessing data outside their scope through a bypass. The behavior could be turned off on a table-by-table basis.
    Dependencies and prerequisites