ACL question

mrosok · ‎02-29-2024

Hello, I'm having a hard time with an ACL issue so maybe there is something fundamental that I don't understand. I hope someone can help me.

We have a custom case type table (sn_customerservice_gc_fastpris) that extends sn_customerservice_case (itself extending the task table). This table is pretty much locked down, with r/w access limited to a specific role. The records are not visible to anyone except users with that role, so this is working as intended.

However, we would like the short_description field on the table to be visible for everyone. That is, in a list view on related table (that references task in some field) we would like to add the column Task.short_description and have the information visible if the record in question belongs to this case type (sn_customerservice_xxxxx).

I have tried creating an ACL on the field in question sn_customerservice_gc_fastpris.short_description, read operation and setting a basic role that all internal users have. I assumed this would work but it does not. As a non-admin user I cannot read the short description field in the situation described above. I have attached a screenshot.

Anyone know where I'm going wrong? Any help would be appreciated.

Sandeep Rajput · ‎02-29-2024

@mrosok You would need to grant the user the table level access if you wish to make a field readable. For other fields you can create another ACLs and specify role other than snc_internal so that the user with snc_internal only role wont be able to access them.

View solution in original post

mrosok · ‎02-29-2024

I see. So instead of opening up access to one field, I need to restrict all others.

I have tried creating an ACL table_name.* given to a restricted role, but it seems that table_name.none to snc_internal takes priority? Everything is still visible for snc_internal. I can create single ACL records for all the fields and that seems to work.

In any case I understand this better now and have a way forward. Thank you!