Catalog item variable permissions question

Valon Sheremeti
Kilo Guru

ā€Ž09-20-2018 07:19 AM

Hi all,

I'm creating Catalog Item where one of the variables I use is needed to collect PII information (SSN).

I want this variable to be visible only to certain fulfiller group member (with 'pii_access' role) , so I took advantage "Read Roles" field within variable (so now only users with 'pii_access' roles can see this information). That works great!!!

 

Problem I am facing is: now submitter of the request (regular user without any roles) cannot see SSN field and cannot type their SSN since they don't have 'pii_access' roles. I was hoping all fields would be available for submitters (Catalog Item view) however this is not the case.

Any idea how to make this variable visible (and writable by any user) in Catalog Item view?

Thanks

 

find_real_file.png

Labels:
Preview file
42 KB
0 Helpfuls
  • 1,537 Views
1 REPLY 1

Allen Andreas
Administrator
Administrator

ā€Ž09-21-2018 06:42 AM

This link should help give you some ideas: https://community.servicenow.com/community?id=community_question&sys_id=4a4813fbdb7f5b405129a851ca96...

Basically one method is to take this variable and move it via workflow script to an encrypted field on the record itself which is THEN only viewable by the role you've chosen.

Which of course you'd want to clear the previous variable value and hide or something because now it'll be blank...

There's other methods to try and control this by client script as well, checking if user hasRole and if so, show field A...BUT client scripts can be snuck around by something as simple as the browser glitching and then fields can show for anyone...

Take a look and see what you think!

Please mark reply as Helpful/Correct, if applicable. Thanks!


Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!
0 Helpfuls