SN System Properties Reference
Property reference

glide.sc.req_for.roles.default

The glide.sc.req_for.roles.default property sets the default behavior for item requests when no roles are specified. If set to 'allow', any user can request items for others; if 'deny', no user can do so.

Default: deny Type: choice list Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? This property determines whether users can request items for others when no roles are defined in the glide.sc.req_for.roles property.
What area does it affect? Service Catalog Requests
What does the default mean? The default value is "deny", which is the baseline setting used unless it is changed.
When should you review it? Review this property when configuring user permissions for item requests in the Service Catalog.

Out of the box property record

Raw metadata from the property record.

Property name glide.sc.req_for.roles.default
Sys ID d27e754053302010bddaddeeff7b120e
Type choice list
Application Global
Default value deny
Description This property defines a default behavior when there are no roles given in property "glide.sc.req_for.roles". When the value is "allow" and the value of glide.sc.req_for.roles is empty, then any user can request items for other users. While the value is "deny" and the value of glide.sc.req_for.roles is empty then no user can request items for other users.
Updated 2024-05-25 05:07:09

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... Quantity of the item. Cannot be a negative number. Data type: Number sysparm_requested_for Sys_id of the user for whom to order the specified item. The settings of the glide.sc.req_for.roles and glide.sc.req_for.roles.default properties determine the level at which a user can request items. • If a value is specified in the glide.sc.req_for.roles property, the system checks if the user has the specified ...
Documentation excerpt View supporting context
Context preview Snippet 2
... Script Include 'ScriptServiceCatalogGetLocation' can be called by any unprivileged logged-in user and can retrieve the address of any other users in the system. • Security Risk ◦(Old‎ <blank> ◦(New‎ If "glide.sc.req_for.roles.default" is not set to the recommended value of "deny" (allow‎ and the value of glide.sc.req_for.roles is empty, then any user can request items for other users allowing unauthorized resource access. ...
Documentation excerpt View supporting context
Context preview Snippet 3
... this task The glide.sc.req_for.roles property specifies the list of roles who can request items for other users. When no roles are specified, then the default behavior is defined by the glide.sc.req_for.roles.default property. For information about the glide.sc.req_for.roles property, see Service Catalog properties. Following are the possible values for the glide.sc.req_for.roles.default property. • When the property is set to allow, then any ...
Additional source link Another external reference for this property
Open reference