glide.oauth.allow.parameters.in.post.body.only

ServiceNow property description:

Ensures that oauth_token.do processor accepts only POST body parameters as input for all supported grant types

Attributes

  • Sys ID: 653e15e2872003008f64bd6ec7cb0bdc
  • Type: true | false
  • Application: Global
  • Default value: true
AI Logo

AI generated property description:

The ServiceNow property `glide.oauth.allow.parameters.in.post.body.only` ensures that the `oauth_token.do` processor accepts only POST body parameters as input for all supported grant types. This property enhances security by restricting the method through which OAuth parameters can be submitted, thereby preventing potential vulnerabilities associated with URL query parameters. When enabled, it mandates that all OAuth-related parameters must be included in the body of the POST request. This setting is particularly useful for mitigating risks related to parameter exposure in URLs. The property can be configured to enforce stricter compliance with OAuth standards and improve overall security posture.

Source

Related property: glide.oauth.state.parameter.required