Add, View, and Remove Waivers

Waiver Permissions
Viewing Waivers
- Applicable Waivers for Violation
- Viewing Waivers from the Dashboard
  - Filtering Dashboard for Stale Waivers
Adding a Waiver
Requesting a Waiver
Removing a Waiver

Overview

On this page, you'll find the basic actions for viewing, adding, requesting, and removing waivers.

Read Waiver Best Practices and Waiver Concepts for more details and use cases on using waivers.

Waiver Permissions

The ability to add waivers is limited based on the permissions included in the user's role. The Edit IQ Elements permission is needed to add waivers. Users without these edit permissions have the option to request a waiver by sharing an API call with a user who has the correct permissions. Read Requesting a Waiver section for details.

Review the documentation for User Management to learn how to view and edit user roles.

Viewing Waivers

Manage waivers from any policy violation page or tab, or directly from the dashboard waiver view.

Violation Details page - click on any violation in the dashboard violation view.
Policy Violations Tab - click on a violation in the application composition report.

Manage Waivers button in the dashboard violation view

Fig 1: Violation details page in the dashboard violation view

Fig 2: Policy Violations tab from a violation in the Application Composition Report

Applicable Waivers for Violation

Clicking on the Manage Waivers button from the Policy Violations tab inside an application composition report will navigate to the Waivers for Violation page.

A summary of the violation details, along with a list of any applicable waivers and their corresponding status is displayed.

Viewing Waivers from the Dashboard

To view a list of waivers from the Dashboard, click the Waivers tab.

This shows a list of waivers from applications or organizations you have permissions to view. Click on any row to go to the Waiver Detail View and see more details about the waiver.

Filtering Dashboard for Stale Waivers

Filter your results by clicking the Filter button on the right side. By default, the list includes all waivers, including stale and expired waivers. To limit your results to just active and stale waivers, use the Expiration Date filter and select any option other than all.

Adding a Waiver

Click on the Add Waiver button in the Applicable Waivers table to go to the Add Waiver page.

The component's name and coordinates, the selected policy, and severity is shown here. You'll also see the Constraint Name and the Conditions that the waiver will cover.

Refer to the table below to configure the waiver.

Scope	Choose the scope where the waiver is applied. Application - This current application Organization - This application's parent organization and all organizations and applications under it. Root Organization - All applications and organizations For Firewall waivers, choose from the current Repository, All Repositories, or Root Organization.
Components	Choose the component scope for which the waiver applies to. All versions and all components include future components which have not been released. Component Name - hash matching to this specific version Component Name (all versions) - name based wild card matching to all current and future versions of that component NEW IN RELEASE 140 All Components - any current and future components matching the violation criteria
Waiver Expiration	Select an expiration duration for this waiver. Waivers expire on the end of the given day. Never - the waiver will remain in place until deleted (7, 14, 30, 60, 90, 120) days - number of days until the waiver expires Custom - configure a specific date for the waiver to expire. Must be later than the current date NEW IN RELEASE 139
Comments	Add reference details to the waiver. Common use cases: justification for the waiver validation and testing process reference links for additional documentation
Created By	The current user to log with the request.

Requesting a Waiver

If you do not have permission to create waivers, click on Request Waiver. This will generate the necessary component and policy violation details to communicate to individuals with waiving permissions.

Note that clicking the Request Waiver does not send an automatic request.

Removing a Waiver

To delete a waiver, either:

Go to the Waiver Detail View and click Delete Waiver at the bottom right.
Go to the Waivers for Violation Page and click the Delete icon on the right side of a row.
Go to the View Existing Waivers pullout and click the Delete icon on the right side of the row.