Enable contextual security plugin
Activate the Contextual Security Plugin (com.glide.role_management) plugin to enable contextual security, which secures a record/information using create, read, write, and delete functionality.
The Contextual Security Plugin (com.glide.role_management) plugin helps manage user groups and roles to protect information through role-based access controls. The plugin efficiently consolidates duplicate entries for inherited roles, and secures a record/information using create, read, write, and delete functionality. After it is installed and activated, the dictionary roles (created by security manager) are no longer tested. Instead, the Now Platform looks for ACL rules on fields and tables. It secures the data with the help of ACL rules instead of traditional, role-based dictionary rules implemented by simple security manager. Even if you configure the dictionary form and add roles to a dictionary entry, no change in rights occurs.
Ensure that the plugin com.glide.role_management is activated.
More information
| Attribute | Description |
|---|---|
| Configuration name | com.glide.role_management |
| Configuration type | System Definition > Plugins |
| Data type | N/A |
| Recommended value | The Contextual Security Plugin (com.glide.role_management) plugin is active. |
| Default value | The Contextual Security Plugin (com.glide.role_management) plugin is not active by default. |
| Fallback value | The Contextual Security Plugin (com.glide.role_management) plugin is not active by default. |
| Category | Access control |
| Security risk |
|
| Functional impact | This remediation enforces functional level of access controls, which would let application determine the access restrictions based on ACL table alone. |
| Dependencies and prerequisites | None |