- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2025 10:02 PM
Hello all,
Good day!
I got a task to create a table API on task table and then create a user for this where I can use this account for authentication.
So, the user should be able to only Get the task data, like Incident or Change requests or Catalog tasks data but he should not be able to update or delete the data in those tables.
(the user should only be able to read the data but not modify it)
So, can someone provide me the steps to achieve this please?
Regards,
Lucky
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-05-2025 10:55 PM - edited 05-05-2025 11:13 PM
Hello @Lucky1 ,
Thanks for the feedback. Since your original question has been answered it should also be marked as such.
Regarding your additional question, as per the OOTB ACLs the Transaction Log table can only be accessed by users with the admin role. So you would either have to grant that role to the integration account (not recommended), or you create a new Role (e.g. "transaction.read") and a "Read" ACL for the syslog_transaction table that requires this role. Then grant the role to the integration account.
Regards,
Robert
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2025 10:54 PM
Ideally I won't recommend using Table API as it will allow that user to read everything
For your current requirement you will have to check each task extended table level READ ACL and see what role is present and give that role to that API user.
Example: incident, change table please check table level READ ACL
But remember if that user satisfies any OOTB table level WRITE ACL because of the role you gave earlier user can edit, you can't restrict that
I will recommend using Scripted REST API which gives you more control on what can be seen and retrieved or updated.
If my response helped please mark it correct and close the thread so that it benefits future readers.
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2025 11:07 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2025 11:12 PM
you can check but I haven't used it.
I still recommend using Scripted REST API over table API
If my response helped please mark it correct and close the thread so that it benefits future readers.
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2025 11:25 PM
Ok Ankur,
Let me check and get back.
Thank you once again.
Regards,
Lucky
