Last modified: May 28, 2024

Virus scan

How to configure virus scan for an app

Each application owner storage is protected by Windows Defender, however, if your application requires feedback in realtime on whether or not an uploaded file is infected, enabling virus scan for some or all data types is the way to go. Enabling virus scan results in scan of the file immediately after it uploaded to storage. The scan result will later be added to the metadata for the data element and can be reviewed by any entity that is authorized to read the instance.

Enable file scan in your application

To allow generating events for your application it must refer to nuget version >= 7.4.0. See how you update nuget references for your application here.

Deep scan of files is not enabled by default, to activate this a manual step is required. If a file is scanned and found to be infected before the process is complete, this will cause a validation error.

In the file applicationmetadata.json in the folder App/config the following should be added for each datatype that should be scanned.

      "enableFileScan": true

If you would like to customize the error message for infected files you can do that by adding a text with key DataElementFileInfected.

Validation error when waiting for file scan

If the ValidationService should should trigger a validation error and prevent the completion of the process before the scan is complete, another value should be added for the datatype. .

      "validationErrorOnPendingFileScan": true

If you would like to customize the error message for pending files you can do that by adding a text with key DataElementFileScanPending.

Example of applicationmetadata.json with file scan enabled for datatype egenerklaring, no validation error on pending scan.

{
  "id": "digdir/egenerklaring-2022",
  "org": "digdir",
  "title": {
    "nb": "egenerklaring-2022"
  },
  "dataTypes": [
    {
      "id": "ref-data-as-pdf",
      "allowedContentTypes": [
        "application/pdf"
      ],
      "maxCount": 0,
      "minCount": 0,
      "enablePdfCreation": true,
      "enableFileScan": false,
      "validationErrorOnPendingFileScan": false
    },
    {
      "id": "egenerklaring",
      "allowedContentTypes": [
        "application/xml"
      ],
      "appLogic": {
        "autoCreate": true,
        "classRef": "Altinn.App.Models.egenerklaring",
        "allowAnonymousOnStateless": false,
        "autoDeleteOnProcessEnd": false
      },
      "taskId": "Task_1",
      "maxCount": 1,
      "minCount": 1,
      "enablePdfCreation": true,
      "enableFileScan": true,
      "validationErrorOnPendingFileScan": false
    }
  ],
  "partyTypesAllowed": {
    "bankruptcyEstate": false,
    "organisation": false,
    "person": false,
    "subUnit": false
  },
  "autoDeleteOnProcessEnd": false,
  "created": "2023-02-01T13:16:50.1330774Z",
  "createdBy": "altinn",
  "lastChanged": "2023-02-01T13:16:50.1330784Z",
  "lastChangedBy": "altinn"
}