ACL Understanding

sainath3
Mega Guru

‎12-07-2024 08:15 AM

Hi All,

 

I have created a table: u_database

 

Created user's with roles are:

Test user 1 having Demo role, test user 2 having Demo2 role,  both these users having table level ACL(u_database_user).

 

Now i have modified existing Create ACL ( table.None 😞 removed table acl & added Demo role.

sainath3_0-1733587620712.png

 

Output:

Only Test user1 having access to create the record from both list view & form view, Test user2 don't have access to create a record from both list view & form view.

 

My question's :

1. what is the difference between table.None & Table.*.

in both the scenarios who don't have a role they are able to access it from both list view & Form view.

 

2. even If I uncheck the Admin override, how Admin is able to access the records, because Admin don't have table level acl.

 

my requirement:

User can't create a record from list view & but he should create it from form view.

 

 

0 Helpfuls
  • 895 Views
10 REPLIES 10

sainath3
Mega Guru
In response to Runjay Patel

‎12-07-2024 09:03 AM

Hi Runjay,

 

Thanks for quick response.

 

table.none - this acl provides you access to your record, assume if you wanna enter to your house then you need key, table.none is the key.

Now assume you have the key to enter to your house but if you want to enter to any room inside the house you need another key that table.* or table.fieldname. * denotes to all rooms for that house.

 

In this example if User have only table.none he can enter the house but not room.

 

here room means  fields right, but in my scenario I have created Read ACL(table.None) & role Demo,  test user 1 have Demo role, he is able to see the table (House) & fields(rooms), able to open the form view.

 

0 Helpfuls

Runjay Patel
Giga Sage
In response to sainath3

‎12-07-2024 09:08 AM

Yes user1 will have access to table, if table.none returning true for this user.

now what’s your issue?

 

0 Helpfuls

sainath3
Mega Guru
In response to Runjay Patel

‎12-07-2024 09:21 PM

I want a clear example what table.none can't do , but table.* can do it.

0 Helpfuls

Runjay Patel
Giga Sage
In response to sainath3

‎01-01-2025 11:09 PM

Hi @sainath3 ,

 

You need to understand the hierarchy of acl execution.

See below blog, i have explained in details.

https://servicenowwithrunjay.com/access-control-list-acl/

 

-------------------------------------------------------------------------

If you found my response helpful, please consider selecting "Accept as Solution" and marking it as "Helpful." This not only supports me but also benefits the community.


Regards
Runjay Patel - ServiceNow Solution Architect
YouTube: https://www.youtube.com/@RunjayP
LinkedIn: https://www.linkedin.com/in/runjay

-------------------------------------------------------------------------

0 Helpfuls

sainath3
Mega Guru
In response to Runjay Patel

‎01-01-2025 11:01 PM

Thanks

0 Helpfuls