Here is a question from a government client:
Q. How does the Pega platform scan attachments prior to upload to validate any malicious content?
@Will Cho At the moment the documentation I found does not go into sufficient detail: Pega 8.8:
We have an open Enhancement Request for this feature: FDBK-20857 (Virus check for files being uploaded) We do not yet have the workaround documented (although we have something similar written for How to restrict File Attachments by file type [SDR-94]" ) but attached you can find a possible solution for your client.
I was led to believe that there are plans for the main Case Management documentation to cover this feature in the future (via US-367584-1) but my search has led to a dead-end.
@Jan Biskup @LeonBrown @AZHAM I believe you were involved in getting this functionality documented in the Product Help - do you have any update for us?cc @potlv
*** Update ********
Documentation can be found here:
Configuring anti-virus scanning of attachments_draft.docx (17.3 KB)
@Will Cho Have also found this - Pegasystems Documentation, which seems to contain what client needs.
File and attachment uploads
- Protected? - Yes, for standard upload flows that use the out-of-the-box Pega file attachment rule. Client-created custom upload flows are not protected.
- Response to flagged file - Quarantined
- What will a user see if a file they upload is flagged by Pega’s Anti-Virus? - Pega Platform will display an error message such as, “Unable to get the file from repository. There was issue with the file path or repository configuration/connection.”