ACL not restricting data

Anubhav24 · ‎09-11-2023

Hi All,

I have a custom table which has table.none and table.* ACLs with custom roles to restrict access.

Now I want to show only those records to the logged in user if the user is part of the Assignment group on the record.

Created an ACL as table.* and in conditions mentioned assignment group is(dynamic) one of my groups, and added the role which is needed to give read/view access on the table.

Result : The records are not restricted and user is able to see other assignment group records as well of which user is not part of.

Tried debugging it all ACLs are being passed by the user. Should I write the condition in the script tab ? Going to try this next.

Samaksh Wani · ‎09-11-2023

Hello @Anubhav24

answer = true;

write the above code into the script.

Plz Mark my Solution as Accept and Give me thumbs up, if you find it helpful.

Regards,

Samaksh

Ashutosh Singh2 · ‎09-11-2023

Hi Anubhav,

To restrict access at record level, you should write condition at row level . Add the condition for assignment group as well on table.none acl.

regards

Ashutosh

Ankur Bawiskar · ‎09-11-2023

@Anubhav24

table.None READ ACL should be sufficient for table level READ.

Why you created table.* READ ACL?

Please share your screenshots of ACLs created

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

Anubhav24 · ‎09-11-2023

Changed the .* ACL to None but still it is not restricting data

The role specified in description has been added in the role tab