Require authorization for script requests

Release version: Australia

Updated March 12, 2026

1 minute to read

Use the glide.basicauth.required.scriptedprocessor property to designate if incoming script requests should require basic authentication.

The glide.basicauth.required.scriptedprocessor system property determines whether basic auth is required to invoke a scripted processor. Any records accessed by the scripted processor still use other access controls, such as ACLs, before returning any data. If glide.basicauth.required.scriptedprocessor isn't set to the recommended value of true, then an attacker could access sensitive information such as an unauthenticated (guest) user attempting to access an email through the EmailDisplay sys_processor.

Ensure the property glide.basicauth.required.scriptedprocessor exists in the System Properties [sys_properties] table and is set to true.

Warning:

This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.

More information


Attribute	Description
Configuration name	glide.basicauth.required.scriptedprocessor
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	<none>
Fallback value	false
Category	API and web service
Security risk	Severity score: 7.2 CVSS rating: High Security risk details: This property may allow unauthenticated users to invoke scripted processors, potentially exposing sensitive information despite existing ACLs.
Functional impact	This remediation enforces the authentication in the form of Basic authorization. It performs this authentication while processing script requests on the instance. It restricts any guest users who are currently accessing this data. If applicable, you may need to create a new account for users who need access to this content, with necessary access control permissions.
Dependencies and prerequisites	None