Need Help with ACL in scoped application

joshuamayes
Giga Expert

‎12-05-2018 11:04 AM

I'm running into a problem where any time I try to grant a custom role read permissions on an out-of-the-box table (or a table that extends an out-of-the-box table) the user cannot read the out-of-the-box columns.

I want to allow users with an "HR Manager" role the ability to watch the [sys_audit_role] table for records that match a condition where the role name starts with <appID>.

To do this I created the sys_audit_role (read) acl.  But it appears I also need the sys_audit_role.* (read) acl in order for the user to actually see any data.

The problem here is that I can't add a <table>.* acl to the application.

 

There's got to be a way to grant view access to a table without having to make an update set in global to support my application, right?

Labels:
0 Helpfuls
  • 1,732 Views
2 REPLIES 2

Pradeep Sharma
ServiceNow Employee
ServiceNow Employee

‎12-05-2018 11:50 AM

Hi Joshua,

 

There are few restrictions that are applicable to configuration record type when target Table is in another application scope. Please refer below link for more details.

https://developer.servicenow.com/app.do#!/document/content/app_store_doc_custom_application_demonstration_kingston_r_CreationRestrsAcrossAppScopes?v=kingston

 

-Pradeep Sharma 

joshuamayes
Giga Expert
In response to Pradeep Sharma

‎12-10-2018 08:07 AM

Sooo... that's a no then?

0 Helpfuls