Creates a Cross Scope Privilege — a declaration that your application needs runtime access to resources owned by a different application scope (sysscopeprivilege). Required when your scripts read/write tables, call script includes, or use scriptable objects from other scopes.
Implement ServiceNow application security using ACLs (syssecurityacl), Roles (sysuserrole), Security Attributes (syssecurityattribute), and Security Data Filters (syssecuritydata_filter). This guide covers the layered security model -- from defining roles, to creating ACL rules, to row-level filtering with data filters and reusable security predicates.
Creates a Role -- a named permission that can be assigned to users and groups to control access to application features, data, and APIs (sysuserrole). Roles are referenced by ACLs, UI Actions, and other access-controlled entities.