HR Core Scope - User does not have read access to HR record producers.

Fernando Diaz
Tera Contributor

‎06-02-2025 02:44 PM - edited ‎06-02-2025 02:53 PM

Hi Team, we have encontered an issue with the HR scope and record producers:
1.- User has catalog and catalog editor roles.
2.- User is able to see HR record producers through the maintain item module (sc_cat_item_list).
3.- User clicks on any HR record producer (#human resources core)
3.1.- Record opens in sc_cat_item_producer table, and can't read any field (while with sc_cat_item has read access to all fields) User is unable to read any HR record produer.

 

I've tried to create an ACL within the HR scope, but i can't select any fields(only system fields). also tried to create the ACL for the record produer table, didn't helped. Is there a system property for this? the only role seems to work is hr_admin, but user does not require full access. How is it possible that I can't create scoped ACLs for global tables? is there any configuration that i'm missing? Thanks.

Preview file
166 KB
Preview file
113 KB
0 Helpfuls
  • 510 Views
2 REPLIES 2

SANDEEP DUTTA
Tera Patron
Tera Patron

‎06-02-2025 11:10 PM

Hi @Fernando Diaz ,

Since the Record Producer (sc_cat_item_producer) table extends the Catalog Item (sc_cat_item) table, ACLs applied at the parent level will cascade down unless explicitly overridden.

Since OOTB  there are no Read ACLs directly defined on sc_cat_item_producer, it inherits all ACLs from sc_cat_item. The best way to verify whether a user can read the data is to check ACLs at the Catalog Item (sc_cat_item) level from their perspective.

 

You should have a read ACL in the Record Producer [sc_cat_item_producer] table as per that user role perspective such that the user can read.

 

 

Thanks,
Sandeep Dutta

Please mark the answer correct & Helpful, if i could help you.
0 Helpfuls

Fernando Diaz
Tera Contributor
In response to SANDEEP DUTTA

‎06-03-2025 06:54 AM - edited ‎06-04-2025 02:08 PM

Thanks Sandeep for your answer. I've tried to create both ACLs within cat item table and record producer table, both led the same problem, the user is unable to read the record, this is only for HR core scope, user can read other reccords of other scopes, this has to be a property enforcing this. I think the solution is to create an ACL within the HR scope for cat item table, but the system is not letting me do that. 

Preview file
162 KB
0 Helpfuls