Policy Exception Request Extension Button - Allow a certain group to request extension

Nabilah · ‎01-19-2024

Hi All,

Currently, only the requestor can request an extension on policy exceptions. I have a requirement to allow a certain group for e.g risk managers to also have that ability to request an extension on a policy exception. What will be the best way to do so?

Anand-Pandu1 · ‎01-20-2024

@Nabilah

In the policy exception screen, there is a UI action named "Request Extension". The condition for this UI exception is "current.canRead() && new PolicyException().canRequestExtention(current) && current.source_record_table != 'sn_compliance_policy_acknowledgement_instance';"

You would have to modify canRequestExtension function which is in PolicyExceptionBase Script Utils or you can write your own function and call that instead.

Nabilah · ‎01-22-2024

Hi Anand,

I have extended the script include as follows:

I still cannot see the request extension button when impersonating the risk manager.

Anand-Pandu1 · ‎01-22-2024

Before modifying the script include, I would suggest removing canRequestExtension call from condition field and see if the button available for risk manager. This clearly prove that canRequestExtension function is blocking this. Once you complete that, I would suggest you check if the user has has sn_risk.manager role. sn_risk roles are mainly used for risks, policy exception is sn_compliance. So, it may be sn_compliance.manager depends on your implementation.

Nabilah · ‎01-23-2024

Hi Anand,

Removing the canRequestExtension call from condition field, users other than the requester e.g the risk managers are able to see the request extension button. However, I receive the following error when trying to submit the extension:

"Could not update the exception". Not sure why this is the case? The user has the risk manager role