restrict access to attachments on ritm

DreDay3000
Giga Guru

‎06-24-2024 05:32 AM

I am trying to write an acl to restrict attachments for users who are not a member of 3 different groups. Also is the ritm is not assigned to you as the requester, the attachments should be restricted. Members of the groups should be able to rename, delete and add documents at any time. The requester/user can not delete attachments after submission or approvals

 

I started with a acl script to restrict but is not working as expected:
if (gs.getUser().isMemberOf('GPC A/BO') && current.cat_item.name == 'Purchase Request') {
    answer = true;
} else {
    answer = false;
}
0 Helpfuls
  • 804 Views
8 REPLIES 8

DreDay3000
Giga Guru
In response to OlaN

‎06-24-2024 07:24 AM

should I add this code (lines 1-5) to this oob acl?

DreDay3000_0-1719238961769.png

 

0 Helpfuls

DreDay3000
Giga Guru
In response to OlaN

‎06-24-2024 07:27 AM

should I add this to the oob write acl? lines 1-5

DreDay3000_0-1719239223537.png

 

0 Helpfuls

sasi_v
Tera Guru

‎06-24-2024 07:19 AM

Hi @DreDay3000 ,

 

According to the script, it appears that you are configuring ACL on the request item table, but you actually need to configure it on the attachment table.

 

Regards,

Sasikanth

0 Helpfuls

DreDay3000
Giga Guru
In response to sasi_v

‎06-24-2024 07:51 AM

this is on the sys_attachment table

0 Helpfuls