- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-20-2022 09:55 AM
Is it possible to give anyone with the role "snc_internal" access to read/view (not edit) sys_user table? I need this so my catalog item would work... there is a variable in the catalog item that references that table and right now it is coming up blank.
I do not want them to be able to edit anything... just read.
Where can I change this?
Thanks,
M
Solved! Go to Solution.
- Labels:
-
Service Portal Development
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-20-2022 10:59 AM
Hi,
There is a query business rule on the sys_user table, out of box, that limits the ability to see inactive users. You'd need to adjust this to ignore people with your custom role. So navigate to: System Definition > Business Rules. Then filter for the business rule named "user query" and then you'll see it.
If you don't mind, definitely give all the details as best you can in your original post (example condition filters, screenshots, etc.). as you can see, this changes what we'd reply with.
So in the condition in that query business rule on the sys_user table, you'd want to change it around to something like:
gs.getSession().isInteractive() && !(gs.hasRole("admin") || gs.hasRole("user_admin") || gs.hasRole("custom_role_here"))Please mark reply as Helpful/Correct, if applicable. Thanks!
Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-20-2022 10:13 AM
Hi,
Out of box, normally, users have access to this by default. If that's not the case for you, you'd want to review your "read" ACLs that currently exist as something could have been changed on the instance to now allow it.
Additionally, you may want to double-check the reference table the field is pointing to as it could be incorrect.
Please mark reply as Helpful/Correct, if applicable. Thanks!
Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-20-2022 10:47 AM
Thanks, Allen.
The reference field is correct. I can see all the users. However, if I impersonate a regular user, none of it shows up.
Just to further explain, this field is a lookup to "inactive" users from the sys_users table. I just realized that this is different from "active".
Do you know how I can allow a certain role (I can create a new role for this) to be given access to inactive users?
Thanks much!
M
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-20-2022 10:59 AM
Hi,
There is a query business rule on the sys_user table, out of box, that limits the ability to see inactive users. You'd need to adjust this to ignore people with your custom role. So navigate to: System Definition > Business Rules. Then filter for the business rule named "user query" and then you'll see it.
If you don't mind, definitely give all the details as best you can in your original post (example condition filters, screenshots, etc.). as you can see, this changes what we'd reply with.
So in the condition in that query business rule on the sys_user table, you'd want to change it around to something like:
gs.getSession().isInteractive() && !(gs.hasRole("admin") || gs.hasRole("user_admin") || gs.hasRole("custom_role_here"))Please mark reply as Helpful/Correct, if applicable. Thanks!
Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!
