go to the variable> permission tab

masked variables:

see https://support.servicenow.com/kb?id=kb\_article\_view&sysparm\_article=KB0681163

other ideas:

Push sensitive variables into a single multi-line variable on submit of the cat item

Example onsubmit client script:

function onSubmit*()* {

//Type appropriate comment here, and begin script below

var sVars = g_form*.getValue('test_variable_1')* + '\n' + g_form*.getValue('test_variable_2');*

g_form*.setValue('sensitive_data',* sVars*);*

g_form*.setMandatory('test_variable_1',* false );

g_form*.setMandatory('test_variable_2',* false );

g_form*.setValue('test_variable_1',* '');

g_form*.setValue('test_variable_2',* '');

}

Use display business rule with g_scratchpad to determine visibility

Business rule

( function executeRule*(current,* previous /*null when async*/) {

// Add your code here

var reqFor*=current.requested_for;*

var opBy*=current.opened_by;*

g_scratchpad*.reqFor=reqFor.toString();*

g_scratchpad*.opBy=opBy.toString();*

gs*.addInfoMessage('requested for: ' *+** current*.requested_for);*

gs*.addInfoMessage('opened by: ' *+** current*.opened_by);*

})(current*,* previous*);*

Client script (on RITM, task)

function onLoad*()* {

//Type appropriate comment here, and begin script below

alert ('scratchpad req for: '+g_scratchpad*.reqFor);*

alert ('scratchpad op by: '+g_scratchpad*.opBy);*

}

Use a UI policy to hide the blanked variables on RITM and Task

## Or, set the rules directly on the variable with access granted via a role

Haven't tested these all recently within global/local scopes, so feel free to have a play! option 1 use an encoded query embedded in the GlideRecord , e.g. var grProf = new GlideRecord ( 'x_cls_clear_skye_i_profile' ); grProf . addQuery ( 'status=1^ owner=NULL ' ); grProf . query (); even better use the glideRecord addNotNullQuery or addNullQuery option 2 JSUtil.nil / notNil (this might be the most powerful. See this link ) example: if ( current . operation () == 'insert' && JSUtil . notNil ( current . parent ) && ! current . work_effort . nil ()) option 3 there might be times when you need to get inside the GlideRecord and perform the check there, for example if the code goes down 2 optional routes depending on null / not null can use gs.nil : var grAppr = new GlideRecord ( 'sysapproval_approver' ); var grUser = new GlideRecord ( 'sys_user' ); if ( grUser . get ( 'sys_id' , current . approver )){

Classic UI : var sURL_editparam = gs . action . getGlideURI (). getMap (). get ( ' sysparm_aparameter ' ); if ( sURL_editparam == 'true' ) { gs . addInfoMessage ( 'parameter passed ); } Portal : var sURL_editparam = $sp . getParameter ( " sysparm_aparameter " ); if ( sURL_editparam == 'true' ) { gs . addInfoMessage ( 'parameter passed ); }

Call a script include to apply a reference qualifier on a catalog item variable: - variable reference qualifier dependent on another variable selection, in this case a variable referencing sys_user (requested_for) On the catalog item form. variable name to apply ref qual filter : retail_equipment variable reference qualifier (on cmdb table ): javascript : new refqual_functions (). lostStolen_getAssignedCIs (); client-callable script include ( refqual_functions) function : lostStolen_getAssignedCIs : function (){ //--called from variable set client script, for lost/stolen request (service catalog) gs . log ( current . variables . requested_for , 'retail_lostStolen_getAssignedCIs' ); return ( 'install_statusNOT IN8,7owned_by=' + current . variables . requested_for ); //owned_by=1269b79937f1060041c5616043990e41install_statusNOT IN8,7 },