Merge branch 'ServiceNowDevProgram:main' into SNTips

Author: dvn-lazywinner

Background Scripts/SQL Checker/SQLChecker.js

@@ -0,0 +1,12 @@
+// This example demonstrates how it is possible to see the generated SQL query without enabling the SQL debug feture in the navigator
+try {
+	gs.trace(true);
+	var incGr = new GlideRecord("incident");
+	incGr.setLimit(10);
+	incGr.orderByDesc("sys_created_on");
+	incGr.query();
+  // TODO any other logic comes here...
+}
+finally {
+	gs.trace(false);
+}

Background Scripts/SQL Checker/readme.md

@@ -0,0 +1,160 @@
+There is a simple way, how the generated SQL query can be checked, without activating the SQL Debugger feature in the navigator.
+
+Here you can see a small code snippet:
+```JS
+try {
+	gs.trace(true);
+	var incGr = new GlideRecord("incident");
+	incGr.setLimit(10);
+	incGr.orderByDesc("sys_created_on");
+	incGr.query();
+}
+finally {
+	gs.trace(false);
+}
+```
+By enabling the trace feature, the generated SQL query will be visible in the output:
+```SQL
+SELECT task0.`sys_id`
+FROM task task0
+IGNORE index(sys_created_on)
+WHERE task0.`sys_class_name` = 'incident'
+ORDER BY task0.`sys_created_on` DESC
+LIMIT 0, 10
+```
+
+Another example:
+```JS
+try {
+	gs.trace(true);
+	var incGr = new GlideRecord("incident");
+	incGr.setLimit(10);
+	incGr.orderByDesc("sys_created_on");
+	incGr.query();
+	while (incGr.next()) {
+		gs.info("Number: " + incGr.getValue("number") + " Created: " + incGr.getValue("sys_created_on"));
+	}
+}
+finally {
+	gs.trace(false);
+}
+```
+
+```SQL
+SELECT task0.`sys_id`
+FROM task task0
+IGNORE index(sys_created_on)
+WHERE task0.`sys_class_name` = 'incident'
+ORDER BY task0.`sys_created_on` DESC
+LIMIT 0, 10
+```
+```SQL
+SELECT task0.`parent`,
+       task0.`a_ref_3` AS `caused_by`,
+       task0.`watch_list`,
+       task0.`upon_reject`,
+       task0.`sys_updated_on`,
+       task0.`a_str_5` AS `origin_table`,
+       task0.`approval_history`,
+       task0.`skills`,
+       task0.`number`,
+       task0.`state`,
+       task0.`sys_created_by`,
+       task0.`knowledge`,
+       task0.`order`,
+       task0.`cmdb_ci`,
+       task0.`delivery_plan`,
+       task0.`impact`,
+       task0.`contract`,
+       task0.`active`,
+       task0.`work_notes_list`,
+       task0.`priority`,
+       task0.`sys_domain_path`,
+       task0.`rejection_goto`,
+       task0.`business_duration`,
+       task0.`group_list`,
+       task0.`approval_set`,
+       task0.`wf_activity`,
+       task0.`universal_request`,
+       task0.`short_description`,
+       task0.`correlation_display`,
+       task0.`work_start`,
+       task0.`delivery_task`,
+       task0.`additional_assignee_list`,
+       task0.`a_int_1` AS `notify`,
+       task0.`sys_class_name`,
+       task0.`service_offering`,
+       task0.`closed_by`,
+       task0.`follow_up`,
+       task0.`a_ref_7` AS `parent_incident`,
+       task0.`a_ref_5` AS `reopened_by`,
+       task0.`reassignment_count`,
+       task0.`assigned_to`,
+       task0.`variables`,
+       task0.`sla_due`,
+       task0.`comments_and_work_notes`,
+       task0.`agile_story`,
+       task0.`escalation`,
+       task0.`upon_approval`,
+       task0.`correlation_id`,
+       task0.`made_sla`,
+       task0.`a_int_6` AS `child_incidents`,
+       task0.`a_int_8` AS `hold_reason`,
+       task0.`task_effective_number`,
+       task0.`a_ref_6` AS `resolved_by`,
+       task0.`sys_updated_by`,
+       task0.`opened_by`,
+       task0.`user_input`,
+       task0.`sys_created_on`,
+       task0.`sys_domain`,
+       task0.`route_reason`,
+       task0.`a_int_4` AS `calendar_stc`,
+       task0.`closed_at`,
+       task0.`business_service`,
+       task0.`a_str_11` AS `business_impact`,
+       task0.`a_ref_2` AS `rfc`,
+       task0.`time_worked`,
+       task0.`expected_start`,
+       task0.`opened_at`,
+       task0.`work_end`,
+       task0.`a_dtm_1` AS `reopened_time`,
+       task0.`a_dtm_2` AS `resolved_at`,
+       task0.`a_ref_4` AS `caller_id`,
+       task0.`a_str_3` AS `subcategory`,
+       task0.`work_notes`,
+       task0.`a_str_7` AS `close_code`,
+       task0.`assignment_group`,
+       task0.`a_int_5` AS `business_stc`,
+       task0.`a_str_10` AS `cause`,
+       task0.`description`,
+       task0.`a_str_2` AS `origin_id`,
+       task0.`calendar_duration`,
+       task0.`close_notes`,
+       task0.`sys_id`,
+       task0.`contact_type`,
+       task0.`a_int_2` AS `incident_state`,
+       task0.`urgency`,
+       task0.`a_ref_1` AS `problem_id`,
+       task0.`company`,
+       task0.`activity_due`,
+       task0.`a_int_3` AS `severity`,
+       task0.`comments`,
+       task0.`approval`,
+       task0.`due_date`,
+       task0.`sys_mod_count`,
+       task0.`a_int_7` AS `reopen_count`,
+       task0.`location`,
+       task0.`a_str_1` AS `category`
+FROM task task0
+WHERE task0.`sys_class_name` = 'incident'
+  AND task0.`sys_id` IN ('9060975f472d4210a53cdbe4116d4311',
+                         '9e7f9864532023004247ddeeff7b121f',
+                         'd71f7935c0a8016700802b64c67c11c6',
+                         'a9a16740c61122760004fe9095b7ddca',
+                         'd71b3b41c0a8016700a8ef040791e72a',
+                         'd7195138c0a8016700fd68449cfcd484',
+                         'd7158da0c0a8016700eef46c8d1f3661',
+                         'ef43c6d40a0a0b5700c77f9bf387afe3',
+                         'ef4225a40a0a0b5700d0b8a790747812',
+                         'a9e30c7dc61122760116894de7bcc7bd')
+```

Background Scripts/Set update sets to Complete/readme.md

@@ -0,0 +1,5 @@
+Executing this script would help the administrators to set all the inprogress update sets to complete state.
+
+Most of the times this script comes in handy before setting up the instance to patching or upgradation as during that time updatesets need to be set complete and a backup has to be taken.
+
+Be cautious while using this script as this sets all the update sets whose state is inprogress and name does not start with "default" to complete.

Background Scripts/Set update sets to Complete/set_update_sets_to_complete.js

@@ -0,0 +1,7 @@
+//note : this script is going to mark all the update sets that are in progress to complete so make sure the query meets your requirements.
+
+var gr = new GlideRecord("sys_update_set"); //querying the update sets table to check update sets which are in progress  
+gr.addEncodedQuery("state=in progress^nameNOT LIKEdefault");
+
+gr.setValue("state","complete"); //marking them to complete and updating multiple records using updateMultiple()
+gr.updateMultiple();

Background Scripts/Stale Tasks Auto-Close/Stale Tasks Auto-Close.js

@@ -0,0 +1,18 @@
+var staleDays = 7;
+var closeDays = 14;
+var reminderGR = new GlideRecord('task');
+reminderGR.addActiveQuery();
+reminderGR.addEncodedQuery('sys_updated_onRELATIVELE@dayofweek@ago@' + staleDays);
+reminderGR.query();
+while (reminderGR.next()) {
+    gs.eventQueue('task.reminder', reminderGR, reminderGR.assigned_to, staleDays + ' days without update.');
+    }
+
+var closeGR = new GlideRecord('task');
+closeGR.addActiveQuery();
+closeGR.addEncodedQuery('sys_updated_onRELATIVELE@dayofweek@ago@' + closeDays);
+closeGR.query();
+while (closeGR.next()) {
+    closeGR.state = 3; // Closed
+    closeGR.update();
+    }

Background Scripts/Stale Tasks Auto-Close/readme.md

@@ -0,0 +1 @@
+The script identifies tasks that haven’t been updated for a set period, sends reminder notifications to assigned users, and, if still inactive after additional time, automatically closes them. This helps keep task lists current and reduces manual follow-ups.

Background Scripts/encryptAndDecryptNonPasswordFields/encryptAndDecryptNonPasswordFields.js

@@ -0,0 +1,21 @@
+//To Encrypt password field
+var grIncident = new GlideRecord('incident');
+if (grIncident.get('dc1c4143476202101b589d2f316d4390')) {
+ grIncident.setDisplayValue('u_pass', 'demo@123');
+ grIncident.update();
+}
+//NOTE: You can't use the setValue() API for the Password2 field
+
+//To print cipher text
+var grIncident = new GlideRecord('incident');
+if (grIncident.get('dc1c4143476202101b589d2f316d4390')) {
+ gs.info('Encrypted cipher test of password ' + grIncident.getValue('u_pass'));
+}
+
+//To decrypt password field
+var grIncident = new GlideRecord('incident');
+if (grIncident.get('dc1c4143476202101b589d2f316d4390')) {
+ var result = grIncident.u_pass.getDecryptedValue();
+ gs.info("Decrypted password- " +result);
+}
+//NOTE: The getDecryptedValue() API isn't scoped. It's available globally.

Background Scripts/encryptAndDecryptNonPasswordFields/readme.md

@@ -0,0 +1,10 @@
+Dear ServiceNow Community,
+
+
+The GlideEncrypter API uses 3DES encryption standard with NIST 800-131 A Rev2 has recommended against using to encrypt data after 2023. ServiceNow offers alternative cryptographic solutions to the GlideEncrypter API. 
+
+Glide Element API to encrypt/decrypt password2 values through GlideRecord.
+
+Below are the sample scripts I ran in my PDI: For Password fields. 
+
+Note: 'u_pass' is Password (2 Way Encrypted) field.

Background Scripts/encryptAndDecryptPasswordFields/Encrypt and Decrypt Non-Password Fields.js

@@ -0,0 +1,15 @@
+//For Non-password fields Encryption syntax using Key Management Framework Cryptographic module
+
+var password = "Hello World";
+var encryptOp = new sn_kmf_ns.KMFCryptoOperation("global.vamsi_glideencrypter", "SYMMETRIC_ENCRYPTION")
+ .withInputFormat("KMFNone");
+var encryptedText = encryptOp.doOperation(password); //Encrypting Hello world
+gs.info("After Encryption: " + encryptedText);
+
+
+//For Non-password fields Decryption syntax using Key Management Framework Cryptographic module
+
+var encryptOp = new sn_kmf_ns.KMFCryptoOperation("global.vamsi_glideencrypter", "SYMMETRIC_DECRYPTION")
+ .withOutputFormat("KMFNone");
+var clear_text = encryptOp.doOperation('91ddbb5d47c012101b589d2f316d438012p3lgrR72vEQW5yLk-WXKQ==aGqxYzUXuyLt3HTqcW6-HA=='); //Pass Cipher text of Hello World (Which is the output of first script)
+gs.info("After decryption: " + clear_text);

Background Scripts/encryptAndDecryptPasswordFields/readme.md

@@ -0,0 +1,11 @@
+Generally when you want to encrypt or decrypt any Non-password fields earlier we have Glide Encrypter API methods for encryption and decryption. 
+The GlideEncrypter API uses 3DES encryption standard with NIST 800-131 A Rev2 has recommended against using to encrypt data after 2023. 
+ServiceNow offers alternative cryptographic (Key Management Framwork) solutions to the GlideEncrypter API. 
+
+Note: ServiceNow recommending to deprecate GlideEncrypter API with in the instances as soon as possible. The actual dead line is September 2025.
+
+These are the sample scripts I ran in my PDI: For Non-password fields. I used AES 256 algorithm for Symmetric Data Encryption/Decryption.
+
+To test the scripts you need to create Cryptographic module and generate the key. 
+
+"global.vamsi_glideencrypter" is my cryptographic module name.

Business Rules/Automatic Group Membership Updates via API/README.md

@@ -0,0 +1,18 @@
+# Overview
+This code snippet helps ServiceNow developers manage group memberships automatically by integrating with an external API. It retrieves group membership data from a specified API endpoint and updates user-group relationships in ServiceNow accordingly. 
+
+This is useful for organizations where user groups are managed dynamically in external systems, and developer want a seamless and up-to-date integration with ServiceNow.
+
+# How It Works
+The script:
+- Fetches API Data: It connects to an external API (specified by the `apiEndpoint` variable) to retrieve the current group membership details.
+- Parses API Response: The response is parsed to extract user information (based on email) and group identifiers.
+- Updates Group Memberships:
+    - For each member in the response, the script queries the `sys_user` table to locate the user in ServiceNow based on their email address.
+    - Once a user is found, the script creates a new record in the `sys_user_grmember` table, associating the user with the appropriate group.
+
+# Implementation
+- Define the `apiEndpoint` URL, replacing `https://your-group-api.com/members` with the actual endpoint from which group membership data will be fetched.
+- Ensure that any necessary authentication for the API is configured, such as API keys or tokens.
+- This script uses email as a unique identifier for users. Adjust `userGR.addQuery('email', member.email)`; if another identifier is needed.
+- Deploy the script as a Business Rule in ServiceNow, setting the appropriate table and conditions under which it should execute. For example, it could run on a schedule or be triggered by a specific update.

Business Rules/Automatic Group Membership Updates via API/autoGroupMembershipUpdate.js

@@ -0,0 +1,25 @@
+// Script to update group memberships based on API data
+(function executeRule(current, previous /*null when async*/) {
+    var apiEndpoint = 'https://your-group-api.com/members';
+    var request = new sn_ws.RESTMessageV2();
+    request.setEndpoint(apiEndpoint);
+    request.setHttpMethod('GET');
+
+    var response = request.execute();
+    var responseData = JSON.parse(response.getBody());
+    
+    // Update group memberships
+    responseData.members.forEach(function(member) {
+        var userGR = new GlideRecord('sys_user');
+        userGR.addQuery('email', member.email);
+        userGR.query();
+        
+        if (userGR.next()) {
+            var groupMembership = new GlideRecord('sys_user_grmember');
+            groupMembership.initialize();
+            groupMembership.group = member.group_id;
+            groupMembership.user = userGR.sys_id;
+            groupMembership.insert();
+        }
+    });
+})(current, previous);

Business Rules/Backup Critical Table Data/README.md

@@ -0,0 +1,12 @@
+# Overview
+This ServiceNow script automates backing up critical record data (such as task or incident records) to an external storage solution. Designed to run as a Business Rule, it helps maintain redundancy for sensitive information by copying specific record details to a backup API whenever a record is created or modified.
+
+# How It Works
+- Data Extraction: Collects key record fields (such as `sys_id`, `number`, `short_description`) from `current`.
+- API Call: Sends a `POST` request with record data to an external backup endpoint.
+- Logging: Outputs API response for monitoring.
+
+# Implementation
+1. Update the `setEndpoint` URL to match your backup API endpoint.
+2. Modify the `recordData` with table data structure as needed.
+3. Ensure the Business Rule is triggered on the appropriate conditions (e.g., on record insert/update) in the target table.

Business Rules/Backup Critical Table Data/backupCriticalTableData.js

@@ -0,0 +1,18 @@
+// Script to back up critical table data to external storage
+(function executeRule(current, previous /*null when async*/) {
+    var recordData = {
+        sys_id: current.sys_id.toString(),
+        number: current.number.toString(),
+        short_description: current.short_description.toString()
+    };
+    
+    // Call external API to store data
+    var request = new sn_ws.RESTMessageV2();
+    request.setEndpoint('https://your-backup-api.com/backup');
+    request.setHttpMethod('POST');
+    request.setRequestBody(JSON.stringify(recordData));
+    
+    var response = request.execute();
+    gs.info("Backup response: " + response.getBody());
+})(current, previous);
+

Client Scripts/Conditional Form Section based on Role/README.md

@@ -0,0 +1,13 @@
+# Conditional Form Sections Based on User Role
+
+## Overview
+This client script dynamically shows or hides specific sections of a form based on the logged-in user’s role. It ensures that only authorized users, such as managers, can view and interact with sensitive sections (e.g., budget approvals).
+
+## Use Case
+- Managers: Can see the Budget Approval section.
+- Other Users: The section remains hidden.
+
+## How It Works
+- The script runs onLoad of the form.
+- It checks if the logged-in user has the specified role (manager in this example).
+- If the user has the role, the Budget Approval section is shown. If not, it remains hidden.

Client Scripts/Conditional Form Section based on Role/script.js

@@ -0,0 +1,9 @@
+function onLoad() {
+  var userHasRole = g_user.hasRole('case_manager'); // Check if user has specific role
+
+  if (userHasRole) {
+    g_form.setSectionDisplay('budget_approval', true);  // Show section if user has specific role
+  } else {
+    g_form.setSectionDisplay('budget_approval', false);
+  }
+}

Client Scripts/Display Section on State/README.md

@@ -0,0 +1,9 @@
+# Display Section Based on State
+
+## Overview
+This client script dynamically displays specific sections on a form based on the selected State field value. It improves user experience by hiding or showing relevant sections as needed.
+
+## How It Works
+- When the State field changes, the script checks the new value.
+- For Example, if the state is changed to "Resolved", the Resolution Section becomes visible.
+- For other states, the section remains hidden.

Client Scripts/Display Section on State/script.js

@@ -0,0 +1,10 @@
+function onChange(control, oldValue, newValue, isLoading, isTemplate) {
+   if (isLoading || newValue === '') {
+      return;
+   }
+
+   if (newValue == 6)  //State on which section needs to be displayed
+		 g_form.setSectionDisplay('resolution_information', true);  //Section which needs to be display
+	else
+		g_form.setSectionDisplay('resolution_information', false);   
+}