Create a role
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-19-2024 01:51 AM
We have a scoped application "Billing Task". How can I create a role which give user a read only access to the module but do need to ensure this role is able to write to comments and work_notes on the task table
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-19-2024 01:57 AM
Did you create table to store this task? OOB read ACL should already be present. That role you need to give to someone when you want to give the read access.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-19-2024 02:15 AM
This is a custom scoped application which was present, now a user needs read only access to this . I could not find any specific role
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-19-2024 02:45 AM
Grant the same access as 'normal' user, but add the 'read-only' to it as well.
Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-19-2024 02:28 AM
Hello @Anna_Servicenow ,
If you don't have any existing role, you can create a new role by -
- Navigate to System Security > Roles.
- Click New to create a new role.
- Enter a name for the role, such as billing_task_read_only_with_comments.
- Save the role.
Set Up Read-Only Access to the Module:
- Navigate to System Definition > Modules.
- Locate the module you want to control access to.
- Open the module record and scroll down to the Roles tab.
- Add your newly created role to the module's roles list.
- Ensure that the permissions for this module are configured to allow only read access.
Configure Table-Level Permissions:
- Navigate to System Security > Access Control (ACL).
- Create or update (If OOB ACL is available)ACLs for the task table:
- Read ACL: Ensure the read ACLs for the task table only grant read access. This will ensure the user can view the tasks.
- Write ACLs for Comments and Work Notes:
Create a new ACL for the task table with the operation set to write.
In the conditions or script, restrict the ACL so it only applies to comments and work notes fields. You can use a script like:
(current.field_name == 'comments' || current.field_name == 'work_notes')
3. Ensure this ACL has the new role granted the necessary write access to these fields.
If my answer helps you in any way, please mark it as Accepted✔️ and Helpful👍.
