Is there a special ACL for Work Notes and Additional Comments?

mark141230
Tera Expert

‎03-14-2016 08:38 PM

Hi Everyone,

I created a new application and was extend to task table.

I created a table with the generic ACL.

I noticed that after granting a read-only role to a use. The Work notes and Additional Comments didn't show while others are okay.

is there a special ACL for those to fields?

Many thanks

0 Helpfuls
  • 7,193 Views
17 REPLIES 17

Brian Dailey1
Kilo Sage
In response to jasonkist

‎02-09-2018 10:16 AM

Hi Jason,



I believe ACL #1 is the issue.   This is the record-level ACL and needs to be opened up to ALL itil users, not just those who are in the Assignment Group.   (i.e., if they are not in the current assignment group, this is preventing them from being able to write to the record at all in any field)



Having ACL #2 should prevent anyone with the itil role from writing to any field other than what you've specified in ACLs #3 and #4.   Try opening up the record access to itil by either removing the condition from ACL #1 or adding another ACL identical to #1 but without the condition.   Let me know how it goes.



Also, for understanding of how ACLs are evaluated, please checkout the graphics here... pictures are worth 10E3 words





Thanks,


-Brian


0 Helpfuls

Geni1
Tera Contributor

‎09-11-2018 06:54 PM

To fix this you must go to the following ACLs and add your conditions:

 

task.workflow

task.workflow_list

For both the Read and Write operations. Workflow is a unique field which requires both the read and write operation to by in sync.

 

Also please reference the ACL Process Order to understand the ACL call order:

 

https://docs.servicenow.com/bundle/helsinki-platform-administration/page/administer/contextual-security/concept/c_ProcessOrderForRecordACLRules.html

 

0 Helpfuls

Paul Kunze
Tera Guru

‎12-20-2024 02:22 AM - edited ‎12-20-2024 02:25 AM

Hi, let's give this thread a solution after 8 years 😄

 

You need to pay attention to two things:

  1. Did you add the correct fields to the form?
  2. Did you overwrite the correct ACLs from the task table?

 

Explanation for 1:

There are several fields that are related to the comments and the work notes, in total 4 different ones.

  • If you add "Comments and Work notes then users can decide what to post.
  • If you add "Additional comments" then users can only write comments.
  • If you add "Work notes" then users can only write work notes.
  • If you add "Activities (filtered)" then users can read comments and/ or work notes.

PaulKunze_0-1734689557006.png

 

 

Explanation for 2:
Depending on the field you added to the form, you also need to add the matching ACL. Note that the task table has its own ACLs for the comments and work notes fields so you need to overwrite them.

For example if you add the field "Work notes" but create an ACL for "Comments and Work notes" then you will not be able to see the input field.
Also if you create a read ACL for Work notes but you don't add the field "Activities (filtered)" to the form then you won't see anything.

 

 

That means for your new extended table you should create read and write ACLs that have an effect like this:

PaulKunze_3-1734690261383.png
PaulKunze_4-1734690295474.png

 

0 Helpfuls