Downloadable file types (instance security hardening)
Use the glide.ui.strict_customer_uploaded_content_types property to create a comma-delimited list of restricted downloadable file types. The specified files types are the only ones that can be downloaded as static content from an instance.
More information
| Attribute | Description |
|---|---|
| Property name | glide.ui.strict_customer_uploaded_content_types |
| Configuration type | System Properties (/sys_properties_list.do) |
| Configure in Instance Security Center | Yes |
| Purpose | To ensure that only file types in inclusion lists are allowed to be downloaded. |
| Recommended value | User Specified (Common: doc, docx, xls, xlsx, pdf, and the like) |
| Functional Impact | Only files that are in inclusion lists can be downloaded which might affect the organization policy. The comma-separated inclusion list must be modified to comply with organization's policy for acceptable downloadable file types. |
| Security risk | (Low) File download restrictions should be applied to any untrusted user input sources. |
| References |
Steps to configure
- Navigate to .
- Search for the glide.ui.strict_customer_uploaded_content_types property.
- Specify the acceptable downloadable file types in a comma-separated list as shown, then click Update. An example of a correctly formatted value for the list would be ico,gif,png,jpg,jpeg,bmp,ogg,mp3,doc,docx,xls,pdf.