Authorization for script execution

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • Use the glide.script_processor.authorized_script_module_role property to restrict the usage of running scripts from sys_app_module table to the defined role within the property.

    This property will restrict all system users of running any script from the sys_app_module unless they have the role specified within the property. Use the glide.script_processor.authorized_script_module_role property to specify the role that can run scripts.

    More information

    Attribute Description
    Property name glide.script_processor.authorized_script_module_role
    Configuration type System Properties (/sys_properties_list.do)
    Configure in Instance Security Center Yes
    Purpose To require a designated role to run a script from the sys_app_module.
    Recommended value TextBox with a comma delimited list of roles.
    Functional ImpactThis remediation enforces the authentication in the form of authorization by defined role.
    • It performs this authentication while processing script requests on the instance.
    • It restricts any guest users who are currently accessing this data. If applicable, you may need to create a new account for users who need access to this content, with necessary access control permissions.
    Security risk (High) Without appropriate authorization configured on script requests, unauthorized users may access sensitive content/data on the instance.
    References Access Control

    To learn more about adding or creating a system property, see Add a system property.