How to Restrict creation of scripts in a scope from other scope?

Suggy · ‎01-11-2025

I have created a custom app called HOTEL with a custom table in it. I want to allow other scoped apps read data in this custom table but dont want to allow creation of scripts like Business rules and client scripts in this table.

Hence I have unchecked ''Allow Configuration" and checked 'Can Read'.

But still, from other applications scope, developers are able to choose above table.

ie I have another app called 'AIR LINE'. From that scope, developers can create business rules, client scripts on the table created in HOTEL application.

I don't want that to happen. How to control?

As per docs that should not happen when 'Allow configuration' is not checked.

Suggy · ‎01-12-2025

Hi @Nishant8 My whole point is, my requirement is something that should be covered OOB. Why its not working as expected? What could be the issue? That is why I posted this question.

My requirement should have been achieved using the 'Allow configuration' field (setting it to false) - as simple as that.

The docs also explain the same and this blog as well - Securing an application using Cross Scope Access, ... - ServiceNow Community

Nishant8 · ‎01-12-2025

Hello @Suggy, In my view, there seems to be no issue and functionalities too seem working as expected since allow configuration only enable/disable table related configuration for e.g. modifying table, creating ui action and client script, which appears when table is loaded; BR run at the server independently against the table and hence table appears for selection for BR when can read is selected.

I wonder whether you requirements can be achieved OOB.

Regards,

Nishant

Suggy · ‎01-14-2025

sorry you got wrong understanding.

Suggy · ‎01-14-2025

Anyone knows?

Suggy · ‎01-19-2025