Disable attachment remove option for non admins on a custom table

Go to solution
Balaraju K B
Tera Expert

‎07-31-2023 04:52 AM

Hi Everyone,

 

I have a requirement to "disable/make it read only" the 'remove' option for Custom table please refer the below screenshot.

BalarajuKB_0-1690804024424.png

And I tried creating the Delete ACL on sys_attachment table with condition as "table name is <custom table name>" and script as if(gs.getUser().hasRole('admin')){

answer = true;

}else{

answer = false;

}

But still not working Is there anything I should update for this in order to work.

 

Thanks in Advance,

Bala

 

 

0 Helpfuls
  • 1,111 Views
2 ACCEPTED SOLUTIONS

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Balaraju K B

‎07-31-2023 05:47 AM

@Balaraju K B 

Did you debug the security rules from left nav?

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

View solution in original post

0 Helpfuls

Go to solution
Balaraju K B
Tera Expert
In response to Ankur Bawiskar

‎07-31-2023 07:03 AM

@Ankur BawiskarI did Debug security rules but no ACL's were showing up in the debug screen most of them are angular

View solution in original post

0 Helpfuls
11 REPLIES 11

Go to solution
Tushar
Kilo Sage
Kilo Sage

‎07-31-2023 05:21 AM

Hi @Balaraju K B ,

 

I think the condition field in an ACL should be a GlideFilter or a standard query that evaluates to true or false.

Using "table name is <custom table name>" directly as the condition will not work.

 

condition -

current.table_name == 'custom_table_name' && !gs.hasRole('admin')

 

script can be something like this -

 

answer = current.table_name != 'custom_table_name' || gs.hasRole('admin');

 

 

Please, don't forget to mark my answer as correct if it solves your issue or mark it as helpful if it is relevant for you!

Regards,
Tushar

0 Helpfuls

Go to solution
Balaraju K B
Tera Expert
In response to Tushar

‎07-31-2023 05:25 AM - edited ‎07-31-2023 05:26 AM

@Tushar    We cannot use current.table_name in the condition as its a dropdown filter.

 

Thank you for the reply,

Bala

0 Helpfuls

Go to solution
Balaraju K B
Tera Expert

‎07-31-2023 05:29 AM

@Ankur Bawiskar Any solution for this to restrict the Deletion of the attachment for non admins on a specific table?

0 Helpfuls

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Balaraju K B

‎07-31-2023 05:32 AM

@Balaraju K B 

if the user has write access to your table then user can add/remove the attachment

Why not use before delete BR on sys_attachment table then?

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls