Blocked Attachment Types

FICO^® Xpress Insight Server blocks the ability to upload or download attachments with blocklisted filename extensions. If a blocklisted attachment is accessed or created during model execution, it will cause the execution to complete with errors, and write an error message into the run log. The server will block any import or upload of a Repository, App, Folder, or Scenario that contains one or more attachments with blocklisted filename extensions, and will display an error message to the user.

The default list of blocked filename extensions is: apk, asp, aspx, bat, bin, c, cc, class, conf, cpp, css, dll, exe, gif, iso, java, js, jse, jsp, lib, php, phps, phtml, properties, ps1, rar, rpm, sh, swf, tar, tga, tiff, vb, vbe, vbs, vbscript, war, xlm, xlsm, xltm, xsdt

The functionality also operates if multiple extensions are appended to a file, so for example, "test.exe.txt" will be blocked.

Configure the attachment extensions blocklist

If Xpress Insight Server is installed on-premise, the blocklist of filename extensions can be customized in the server standalone.xml configuration by setting the property com.fico.xpress.insight.FileExtensionBlackList to a comma-separated list of extensions.

1. Open the standalone.xml file (located at <xpressdir>\insight\server\wildfly-x.y.z.Final\standalone\configuration\, when using the default installation settings).
2. The FileExtensionBlocklist is in the <system-properties> block.

   <property name="com.fico.xpress.insight.FileExtensionBlocklist" value="apk, asp, aspx, bat, bin, c, cc, class, conf, cpp, css, dll, exe, gif, iso, java, js, jse, jsp, lib, php, phps, phtml, properties, ps1, rar, rpm, sh, swf, tar, tga, tiff, vb, vbe, vbs, vbscript, war, xlm, xlsm, xltm, xsdt"/>

   To prohibit a file extension type, add the extension, without a dot prefix, as a new entry in the comma separated list. To permit a file extension type, remove it from the list.

Note This capability is not available when using the DMP version of Xpress Insight.