Require authorization for pdf requests [Updated in Security Center 1.3]

  • Release version: Zurich
  • Updated July 31, 2025
  • 1 minute to read

    • Use the glide.basicauth.required.pdf property to designate if incoming PDF requests should require basic authentication.

    Ensure the property glide.basicauth.required.pdf exists in the sys_properties table and is set to true.

    More information

    Warning:
    This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.
    Attribute Description
    Property name glide.basicauth.required.pdf
    Configuration type System Properties (/sys_properties_list.do)
    Category API and web service
    Purpose To enforce basic authentication on PDF requests.
    Recommended value true
    Default value true
    Security risk rating

    7.5
    Functional impactThis remediation enforces a combination of authentication methods, in the form of basic authentication and system level access control.
    • It performs this authentication while retrieving data from tables/pages in the form of PDF data on the instance.
    • It restricts any guest users who are currently accessing this data. If applicable, you may need to create a new account for users who need access to this content, with necessary access control permissions.

    To learn more, see Web service import sets.
    Security risk (High) Without appropriate authorization configured on the incoming PDF requests, an unauthorized user can get access to sensitive content/data on the target instance.

    To learn more about adding or creating a system property, see Add a system property.