Lists on base HR Workspace not visible for non-admin users

Lukasz Bojara · ‎01-08-2024

Hello HR Experts,

We have an issue in our implementation. All non-admin users can not see lists in the HR Agent Workspace.

To clarify:

Users have sn_hr_core.basic role
Users have workspace_user role
Users have canvas_user role
Users have access to HR cases as they have no issues while working from the "standard" UI.
Audience for those lists is set to sn_hr_core.case_writer role, which they have.
Lists are there, admin can see it.
It is not a custom workspace, it an OOTB one.

So to summarize, the issue is only connected to Agent Workspace for HR Case Management and only for non-admin users.

I have debuged the Securty Rules, I see that access those lists is denied but the 4 ACLs listed below are not evaluated at all, maybe becouse those are OOTB ones from global scope, but you can not just replicated them for Workspace scope, the * ones can only be created from global.

Any Ideas?

Abhay Kumar1 · ‎11-11-2024

@Lukasz Bojara HR Agent Workspace typically uses data brokers to fetch list data. If the data broker has an additional security configuration or applies different criteria (e.g., Query Business Rule or additional filters), it might restrict non-admin users.

And I have also seen one of recent scenario this might not be related but one of scope ACL was blocking a global artifact to non-admin user to edit and as per Hi case that scope ACL is blocking somehow which has come through a new plugin.

CelesteGro · ‎11-12-2024

I checked all of the data brokers in the Agent Workspace for HR Case Management scope. I found 2 that had the HR admin role. I first deactivated both and then tried to add the HR reader role. Neither of those worked. Could you elaborate on the Global ACL one. Do you know which one it was?

Pamela Long · ‎02-10-2025

Has this ever been solved? If so, please share the resolution.