Impact of Relaxing the TERR Service Security Settings
If you have scripts that cannot run in restricted mode because they need access to resources on the system or network, then you can change the settings to enable those scripts to run.
This table shows the resulting execution mode, given user role, service configuration, and whether the script is marked as trusted in the library.
| Script Author | terr.restricted.execution.mode | disable.spotfire.trust.checks | Trusted Script | Use evalREX |
|---|---|---|---|---|
| * | True
|
* | * | Yes |
| Yes | False
|
* | * | No |
| No | False
|
True
|
* | No |
| No | False
|
False
|
True | No |
| No | False
|
False
|
False
|
Yes |
A
TERR data function runs without
evalREX only if
terr.restricted.execution.mode is
False and one of the following conditions also exists.
- The data function is trusted in the Spotfire library.
- The request to run the data function originates from a member of the Script author group.
- TERR service is configured with
disable.spotfire.trust.checks=True.