Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

ACL question

Go to solution
mrosok
Tera Expert

‎02-29-2024 01:46 AM

Hello, I'm having a hard time with an ACL issue so maybe there is something fundamental that I don't understand. I hope someone can help me.

 

We have a custom case type table (sn_customerservice_gc_fastpris) that extends sn_customerservice_case (itself extending the task table). This table is pretty much locked down, with r/w access limited to a specific role. The records are not visible to anyone except users with that role, so this is working as intended.

 

 

However, we would like the short_description field on the table to be visible for everyone. That is, in a list view on related table (that references task in some field) we would like to add the column Task.short_description and have the information visible if the record in question belongs to this case type  (sn_customerservice_xxxxx).

 

I have tried creating an ACL on the field in question sn_customerservice_gc_fastpris.short_description, read operation and setting a basic role that all internal users have. I assumed this would work but it does not. As a non-admin user I cannot read the short description field in the situation described above. I have attached a screenshot.

 

Anyone know where I'm going wrong? Any help would be appreciated.

Preview file
180 KB
0 Helpfuls
  • 1,366 Views
1 ACCEPTED SOLUTION

Go to solution
Sandeep Rajput
Tera Patron
Tera Patron
In response to mrosok

‎02-29-2024 02:04 AM

@mrosok You would need to grant the user the table level access if you wish to make a field readable. For other fields you can create another ACLs and specify role other than snc_internal so that the user with snc_internal only role wont be able to access them.

View solution in original post

5 REPLIES 5

Go to solution
Harish KM
Kilo Patron
Kilo Patron

‎02-29-2024 01:51 AM

Hi @mrosok does the snc_internal user have access on the table level? i.e sn_customerservice_gc_fastpris.none ACL? this will be the first check for granting access then the field level ACL will be checked

Regards
Harish

Go to solution
mrosok
Tera Expert
In response to Harish KM

‎02-29-2024 01:59 AM

It does not. If I do that then would not any snc_internal user be able to read the whole record?

0 Helpfuls

Go to solution
Sandeep Rajput
Tera Patron
Tera Patron
In response to mrosok

‎02-29-2024 02:04 AM

@mrosok You would need to grant the user the table level access if you wish to make a field readable. For other fields you can create another ACLs and specify role other than snc_internal so that the user with snc_internal only role wont be able to access them.

Go to solution
Harish KM
Kilo Patron
Kilo Patron
In response to mrosok

‎02-29-2024 02:04 AM

Hi @mrosok without table level access how user can access field inside the table? you can block other fields using table name.* ACL (all fields)

Regards
Harish