I'm following through this course: ServiceNow Scripted REST APIs
There is a point where he begins discussing security, ACLs, etc. and all that appears to work in my PDI. I am able to use my test account in Postman to GET records from my scripted REST API.
Then, in Part 15, he goes back to to show the Table API in Postman and he is able to retrieve records, which he says is expected because the user he is using has permissions to view the records.
This is where I'm hung up because now NO user in my instance is able to view records from my table through the Table API. In REST API Explorer I get 403 Forbidden, as my admin account. In Postman, for all users I have tested including my admin account, I get:
"error": {
"message": "User Not Authorized",
"detail": "Failed API level ACL Validation"
},
"status": "failure"I have disabled all of the ACLs on the table, I have set Admin Overrides on all the ACLs, the table is Accessible from All application scopes and Allow access to this table via web services is checked. My users are able to view the list of records in the table and my users are not blocked in any way when I use the Access Analyzer.
As the videos in this series were created two years ago, I assume that some amount of security updates have happened that may have some impact but for the life of me I cannot find a fix. My PDI is running Yokohama patch 3.
Has anyone seen this and fixed it?
