Work notes only for ITIL users

Brian Lancaster
Tera Sage

We have a requirement to make a certain group of ITIL users to have write access to only work notes.  I was thinking of giving them an extra role that would prevent them to write to all fields except work notes.  This seems like a lot of ACLs to write.  Is there a better way to do this?  Am I overthinking how I would write my ACLs?

1 ACCEPTED SOLUTION

I found something on the ServiceNow Guru site that let me get all fields that have change in an array.  It then allowed me to loop through them so I could determine if anything other then work notes was updated.

(function executeRule(current, previous /*null when async*/) {

	// Add your code here
	if (gs.hasRole('pmo_itil')){
		var gru = GlideScriptRecordUtil.get(current);
		var changedFields = gru.getChangedFieldNames().toString().split(',');
		//gs.log ("Changed Fields: " + changedFields);
		for (var i = 0; i < changedFields.length; i++){
			gs.log ("Changed Field: " + changedFields[i]);
			if (changedFields[i] != '[work_notes]'){
				gs.addErrorMessage('You do not have writes to change any fields but Work Notes');
				current.setAbortAction(true);
				return;
			}
		}
	}

})(current, previous);

 

View solution in original post

11 REPLIES 11

I think you should remove itil roles from those users, if they don't need access to other modules and just need to update work notes.. And provide them an interface to update worknotes. may be a different table though which they can enter their notes. They should be added to the watchlist to be able to read the incident record if required. Let me know if you think otherwise


Please mark this response as correct or helpful if it assisted you with your question.

Eventually we will be enabling the other modules and they will need access.

Also I need them to be able to view all info in the tickets including the activity we just only want to allow them to update work notes on incidents and requests.

Ok. In that case we can add a client script to make every field readonly except the worknotes

 

https://community.servicenow.com/community?id=community_question&sys_id=2ba28f21dbd8dbc01dcaf3231f96...

 

 


Please mark this response as correct or helpful if it assisted you with your question.

A client script would not work as that would not run on list layout.