简体繁体中英

How can I store user-provided data anonymously and still allow users to retrieve their data?

原文 2019-10-16 11:39:32 9 1 servicenow/ anonymize/ user-identification

I am writing a Service Now Application that shall store data for each user and day anonymously. This means the records should not be relatable to a user by an admin, howecver, the user should still be able to see their records.

I thought about that I need to suppress the usual created and modified columns, this I plan to du using a workflow. Then I wanted to add an ID column that stores some hash, but if this is a hash of known data (like the user ID), any admin could easily de-anonymize the data. Also, using an additional value that is stored per-user may also be recoverable by an admin. I want the process to be as simple as possible, so for example if the user has to re-enter some password every time they interact, this would not be feasible. Ideally, the value in question is only known to the user and stored on the client, but if they switch browsers or clear cookies, that might cause issues.

I am quite sure this is a problem that was solved before...

Thanks for any input on this!

1 answers

If your admins have access to your server side scripts, I don't see a way where you could secretly generate and compare hashes per user, without them being able to take the code and run it against usercriteria of the user they want to look into.

If you have serverside code which you can protect from the admins you can just hash usercriteria + currentDate, store this in the database and read it, if there already is a record.

How to retrieve data from ServiceNow using Camel framework?

Is there a way to retrieve User data from sys_updated_by field on Incident/Task?

How to get all users from assignment group in service now?While creating an INCIDENT i need to assign a User from the particular group

SNOW ODBC trying to get to the data in the screenshot but it just wouldn't give it(I have access to the data/permissions)

How does my user access a ServiceNow application that I created?

How can i call VBscript from Javascript

UI page (jelly) - how to use dynamic data in g:evaluate

ServiceNow - What are the security roles user needs to have to add/delete sys_users via the Rest api?

Azure DevOps - How do I create a Personal Access Token (PAT) so that it will show up for another user?

How can we check if data is being generated for google analytics tracking profile?

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to retrieve data from ServiceNow using Camel framework? Is there a way to retrieve User data from sys_updated_by field on Incident/Task? How to get all users from assignment group in service now?While creating an INCIDENT i need to assign a User from the particular group SNOW ODBC trying to get to the data in the screenshot but it just wouldn't give it(I have access to the data/permissions) How does my user access a ServiceNow application that I created? How can i call VBscript from Javascript UI page (jelly) - how to use dynamic data in g:evaluate ServiceNow - What are the security roles user needs to have to add/delete sys_users via the Rest api? Azure DevOps - How do I create a Personal Access Token (PAT) so that it will show up for another user? How can we check if data is being generated for google analytics tracking profile?

Related Tags

How can I store user-provided data anonymously and still allow users to retrieve their data?

Question

1 answers

solution1 0 2019-10-18 08:22:50

solution1
0 2019-10-18 08:22:50