Require write access to access service catalog add item page

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Use the glide.sc.request.add_item_write_access property to prevent unauthorized operations from being performed on catalog items.

    When the glide.sc.request.add_item_write_access system property is not set to true, any logged in user can access the Add Catalog Item UI page. This could result in unauthorized operations performed on catalog items.

    Set glide.sc.request.add_item_write_access property to true.

    More information

    Attribute Description
    Configuration name glide.sc.request.add_item_write_access
    Configuration type System Properties (/sys_properties_list.do)
    Data type Boolean
    Recommended value true
    Default value <none>
    Fallback value false
    Category Configuration
    Security risk
    • Severity score: 4.3
    • CVSS score: Medium
    • Security risk details: This creates a risk of unauthorized modifications or additions to catalog items, potentially leading to service disruption, fraudulent requests, or exposure of sensitive data. Misconfigured access controls in catalog management can undermine system integrity.
    Dependencies and prerequisites None
    Functional impact When the property is true, the user must have write access to the record in the context of the UI page.