Double check inbound transactions (instance security hardening)
The glide.security.strict.updates property to enables double-checking of security on inbound transactions during form submission, and adds an extra layer of table validation before a form renders in the browser. This property is set to true by default
More information
Note:
This property is set to true by default in Vancouver and later releases, and can't be changed by administrators. For a use case where the property has to be changed, contact customer support.
| Attribute | Description |
|---|---|
| Property name | glide.security.strict.updates |
| Configuration type | System Properties (/sys_properties_list.do) |
| Configure in Instance Security Center | Yes |
| Purpose | To ensure an added layer of verification of user permissions before presenting the form in the browser. |
| Recommended value | true |
| Functional Impact | This remediation adds an extra layer of validation to check for user permissions on the target table/page on the instance. As long as the access controls are set appropriately on the customer instance, there should be no impact. |
| Security risk | (High) You should always check access request when transactions happen between two zones. This operation checks for permissions when the form is requested and before form rendering happens. |
| References |