Discussions

Check out Oracle NetSuite upcoming events and conferences here
Now is the time to ask your NetSuite-savvy friends and colleagues to join the NetSuite Support Community! Refer now! Click here to watch and learn more!
Update your Profile with your Support type to get your Support Type badge.
Expand your NetSuite knowledge by joining our Ask A Guru Live sessions. RSVP on this event now.
Get ready to take on exciting new challenges and become the next SuiteMaster of the Month!

Banning SuiteScript functions for making HTTP(s) requests in an unauthenticated client-side context

edited Feb 16, 2023 4:16PM in Announcements

This notice is intended for customers who are using SuiteScript functions for making outbound HTTP(s) requests in an unauthenticated client-side context. Affected users must hide such requests behind a suitelet, available without login.

What is Changing?

Effective March 13, 2023, the usage of the following SuiteScript functions will be forbidden in an unauthenticated client-side context:

  • SuiteScript 1
  • nlapirequestURL()
  • SuiteScript 2
  • N/http: request(), get(), post(), put(), delete()
  • N/https: request(), get(), post(), put(), delete()

The only exception is inbound (same domain) requests.

Recommended Actions

Identify which scripts are affected. This involves checking suitelets available without login and their dependencies (particularly client scripts). Look for the usages of the affected functions there.

Regards,

@Robert Nedelkow-Oracle | NetSuite Support Community Administrator

Earn Community badges now! Refer a Member | Answer Accepter

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!

Leaderboard

Community Whiz

Quarter 3 (Jul-Sep 2024)

This Week's Leaders

This Month's Leaders

All Time Leaders