How to prevent users from seeing other RITM request by going into sc_req_item.list

Go to solution
Peter Williams
Kilo Sage

‎07-31-2024 11:41 AM

Good Day, 

 

i need to be able to restrict users that is non-itil to prevent them from seeing other ritm request when they go into sc_req_item.list

 

at the moment they can see this:

 

PeterWilliams_0-1722451255122.png

 

i want them to only see items they submitted or of they are apart of the watch list.

 

i tried the ACL but it doesnt filter the list for it

 

how can i do this please?

0 Helpfuls
  • 668 Views
1 ACCEPTED SOLUTION

Go to solution
Sumanth16
Kilo Patron

‎07-31-2024 11:52 AM

Hi @Peter Williams ,

 

 

 

ACLs, while normally the perfect answer to security questions, always result in the 'Number of rows removed' issue when using a 'Read' operation for records.

 

 

 

In order to avoid this, you need to use a 'before query' business rule on the 'sc_req_item' table.   A script like this should do the trick...it's based off of the out-of-box 'incident query' business rule that does the same thing for incidents.



if (!gs.hasRole("itil") && gs.isInteractive()) {

 

  var u = gs.getUserID();

 

  var qc = current.addQuery("request.requested_for", u).addOrCondition("opened_by", u).addOrCondition("watch_list", "CONTAINS", u);

 

  gs.print("query restricted to user: " + u);

 

}

 

Plz mark my solution as Accept, If you find it helpful.

 

 

Thanks & Regards,

Sumanth meda

View solution in original post

0 Helpfuls
10 REPLIES 10

Go to solution
jMarshal
Mega Sage
Mega Sage
In response to Peter Williams

‎07-31-2024 12:17 PM

It's something you have to install, but provided by ServiceNow. It think you can find it in plugins - try this link with your instance:

https://INSTANCE-NAME.service-now.com/now/app-manager/home/plugin/id/com.glide.data_filtration/details  

0 Helpfuls