Ensure archive table ACLs are checked
The glide.security.enable_archive_table_acls property controls whether access control lists (ACLs) of the original table, the table the archive table was created from, are evaluated to false.
The glide.security.enable_archive_table_acls system property controls whether ACLs added to archive tables are evaluated (true) or if only the ACLs of the original table (the table the archive table was created from) are evaluated (false). There is no reason for this property to not be true since the original table ACLs will be evaluated regardless of its value and since a customer can simply avoid additional ACLs for an archive table by not adding them.
Ensure that the value of glide.security.enable_archive_table_acls is set to true.
More information
| Attribute | Description |
|---|---|
| Configuration name | glide.security.enable_archive_table_acls |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | Boolean |
| Recommended value | true |
| Default value | <none> |
| Fallback value | true |
| Category | Access control |
| Security risk |
|
| Functional impact | When this property is set to true, any active read ACLs on archive tables will be honored. If no active read ACLs exist or the property is set to false, the original table's (table from which data was archived) will
apply to the archive table. Note: Only read ACLs are supported on archive tables. Other operations on archive tables are governed internally through an Access Handler. |
| Dependencies and prerequisites | None |