SN System Properties Reference
Property reference

glide.script.use.sandbox

The glide.script.use.sandbox property enables the execution of client-generated scripts within a restricted rights environment. This setting ensures that only specific business rules and script includes are accessible, enhancing security by limiting back-end API calls.

Default: true Type: boolean Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? It restricts the execution of client scripts to those marked as 'Client callable', preventing unauthorized access to certain back-end APIs.
What area does it affect? Client script execution
What does the default mean? The default value is "true", which means this behavior is enabled by default.
When should you review it? Review this property when configuring client scripts or enhancing security measures.

Out of the box property record

Raw metadata from the property record.

Property name glide.script.use.sandbox
Sys ID 523dcc1e0a0a0b6b007d420647b65e93
Type boolean
Application Global
Default value true
Description Run client generated scripts (AJAXEvaluate and query conditions) inside of a reduced rights "sandbox". If enabled, only those business rules and script includes with the "Client callable" checkbox set to true are available and certain back-end API calls are disallowed.
Updated 2024-05-25 05:06:21

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... Documentation sn_SE10150 1 Act Client- script queries should be validated There is a potential for an attacker to perform unauthorized operations against the platform. Either update the value of the glide.script.use.sandbox system property to true OR insert this system property with a value of true. Documentation sn_SE10151 1 Act Embedded HTML code should be disabled Leveraged by attackers to steal session ...
Documentation excerpt View supporting context
Context preview Snippet 2
... be trademarks of the respective companies with which they are associated. 82 • Type: string • Default value: admin • Location: Add the property to the System Property [sys_properties] table. glide.script.use.sandbox Enables the "script sandbox" feature. The script sandbox is mainly used when executing client-generated scripts such as query conditions and GlideAjax expressions. For more information, see . • Type: true ...
Documentation excerpt View supporting context
Context preview Snippet 3
... Description ◦(Old‎ <blank> ◦(New‎ This property enables the "script sandbox" feature. The script sandbox is mainly utilized when executing client- generated scripts (such as query conditions and GlideAjax expressions‎. If "glide.script.use.sandbox" is not set to the recommended value of "true", then the script sandbox feature will be disabled. • security risk ◦(Old‎ <blank> ◦(New‎ Without the script sandbox, unauthorized/ unauthenticated users ...
Additional source link Another external reference for this property
Open reference