ACL Script help

will_smith
Mega Guru

‎12-04-2015 08:20 AM

Hello, I am needing some help with an ACL on a custom table. I have a UI action that is ran from the incident table that shows the u_temp_credential table and writes some fields to it. Then ONLY the logged in user should be able to see the u_temp_credential table to see the username that was created just for them. When I impersonate the user I get a security constraints error. I appreciate all of your help from the start, as I'm learning ACL's - they remind me of Windows server group policies, ugh!

For an ACL, is a record type the same as a field on a form?

ACL-WESCODEV - ServiceNOW.png 

answer = ifScript();
function ifScript(){
   //gs.log('ACL: sys_class_name is ' + current.u_parent.sys_class_name);
   if(current.u_parent.sys_class_name == 'sc_req_item'){
   //gs.log('ACL: table is sc_req_item');
   if(current.u_parent.u_requested_for == gs.getUserID() || current.u_parent.opened_by == gs.getUserID()){
   return true;
   }
   } else if(current.u_parent.sys_class_name == 'incident') {
   //gs.log('ACL: table is incident');
   if(current.u_parent.caller_id == gs.getUserID()){
   return true;
   }
   }
   return false;
}
Preview file
21 KB
0 Helpfuls

will_smith
Mega Guru

‎12-04-2015 09:02 AM

Here's my ACL output for the dialog window, as the impersonated user...



2015-12-04 11_56_51-WESCODEV - ServiceNOW.png


Preview file
53 KB
0 Helpfuls

Michael Fry1
Kilo Patron
In response to will_smith

‎12-04-2015 09:45 AM

Is your new table extended from another table? I asked because some of your fields start with u_ and others don't. You should double check those.


0 Helpfuls

will_smith
Mega Guru

‎12-04-2015 10:29 AM

Hi Michael, it is not.



Temporary Credential table does not have anything in the Extends Table column. But the UI Action is called from the Incident table and launches the Temporary Credential table. Hope I explained that right.


0 Helpfuls

Michael Fry1
Kilo Patron
In response to will_smith

‎12-04-2015 11:01 AM

What if you just did the conditions and not checked the table it came from?



if (current.u_parent.u_requested_for == gs.getUserID() || current.u_parent.opened_by == gs.getUserID() || current.u_parent.caller_id == gs.getUserID()){  



and for testing, since you are just dealing with Incident to start, just use the statement:   if (current.u_parent.caller_id == gs.getUserID()){  


0 Helpfuls