SN System Properties Reference
Property reference

glide.cms.catalog_uri_relative

The glide.cms.catalog_uri_relative property enforces the use of relative links on the /ess/catalog.do page. Admins should care about this setting to prevent unauthorized external links, as the default behavior allows only relative URLs when enabled.

Default: true Type: boolean Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? This property restricts the URI parameter on /ess/catalog.do to accept only relative URLs, enhancing security by preventing external link access.
What area does it affect? Catalog Management
What does the default mean? The default value is "true", which means this behavior is enabled by default.
When should you review it? Review this property when configuring security settings for catalog links or during audits of external content access.

Out of the box property record

Raw metadata from the property record.

Property name glide.cms.catalog_uri_relative
Sys ID 93c235a637001000dada973ebebe5d1d
Type boolean
Application Global
Default value true
Description Enforce relative links from the URI parameter on /ess/catalog.do. If checked, then only relative URLs are permitted through the /ess/catalog.do page using the parameter 'uri'. If unchecked, all URLs are permitted, which may permit linking to external unauthorized content.
Updated 2024-05-25 04:03:25

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... risk when being used as a part of parameter or a field value, and thus redirecting the source page to an adversary controlled website. Either update the value of the glide.cms.catalog_uri_relative system property to true OR insert this system property with a value of true. Documentation sn_SE10210 1 Act X-Frame- Options: SAMEORIGIN should be enabled "Same Origin policy" allows to restrict ...
Documentation excerpt View supporting context
Context preview Snippet 2
... guess passwords, increasing the likelihood of unauthorized access and credential compromise. Proper lockout configuration is critical to maintaining strong authentication security. Enforce relative links • Description ◦(Old‎ <blank> ◦(New‎ The "glide.cms.catalog_uri_relative" property enforces relative links from the URI parameter on /ess/catalog.do. If "glide.cms.catalog_uri_relative" is not set to the recommended value of "true", then the URL will not be sanitized with the ...
Additional source link Another external reference for this property
Open reference