The CreatorCon Call for Content is officially open! Get started here.

ACL "description" field for Rest API

Go to solution
Anna6
Giga Contributor

‎07-24-2020 03:14 AM

Hi,

I need to open an incident through REST API. I've an account with "web_service_admin" permissions, but it's not enabled to write into "Description" field of the incident.

I can't have an "admin" role to use this webservice, but I need to set a value into "description" field.

How should I do?

Thanks in advance

Ciao

Anna

Labels:
0 Helpfuls
  • 2,354 Views
1 ACCEPTED SOLUTION

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron

‎07-24-2020 03:24 AM

Hi Anna,

Basically if you have "snc_internal" role then you should be able to create an incident and write to most of the fields.

If you have specific field level WRITE ACLs on short description or any other fields then you would require that role as well.

Regards
Ankur

 

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

View solution in original post

0 Helpfuls
10 REPLIES 10

Go to solution
Jaspal Singh
Mega Patron
Mega Patron

‎07-24-2020 03:23 AM

Hi Anna,

 

As you rightly pointed its ACL.

You need to create new or update existing ACL of type Write on the Description field of Incident Table by adding 'web_service_admin' in the Role field of ACL.

 

0 Helpfuls

Go to solution
Anna6
Giga Contributor
In response to Jaspal Singh

‎07-24-2020 03:41 AM

Thanks, I've tried it, but in "Role" tab I can't find out where setting the role on that field.

 

By the way, reading the other response, I've changed the role associated to the "rest account" from "web_service_admin" to "sn_incident_write" and I've created succesfully an incident from Rest Console.

0 Helpfuls

Go to solution
Jaspal Singh
Mega Patron
Mega Patron
In response to Anna6

‎07-24-2020 03:45 AM

Good to know that you got it working but if I understand better the account is now changed to have role

sn_incident_write instead of web_service_admin which may possibly have some implications.

As web_service_admin comes with more privelges & if the account is used for other integrations it will cause issue.

So, better would be to change the ACL role. Only reason you are not able to edit the role is because you need to do an Elevate Roles.

find_real_file.png

 

Then open required ACL of type read & try adding role web_service_admin & save the ACL.

@Ankur Bawiskar kindly shed light if this will not be the case.

Preview file
52 KB
0 Helpfuls

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Jaspal Singh

‎07-24-2020 06:55 AM

Hi Jaspal,

users with "web_service_admin" are allowed to read, create, modify Scripted REST APIs and resources.

Considering the above case where Table API is used the user who is consuming the API should have the Create/Write ACL so that record can be inserted into the target table.

Not that much aware of "sn_incident_write" role.

Regards
Ankur

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader