How to create read only ACL for custom table?

evogel · ‎08-18-2017

Hello!

How to create read only ACL for custom table? This worked in the dev, but not the test instance.

To be specific:

A catalog request uses a variable that references this table.
The catalog request is open to any SN user that can log in.
All values in the table should be accessible with ready-only permission to any user. Just a long list of available systems.
Only admins should create or modify.
Catalog item variable works in the dev instance, but not our test instance?

Steps taken:

Using elevated role security_admin.
Recreated the ACL on test.
Checked "Create access controls" and used 'user.'
Removed "user" role from the ACL with read operation.
Added an ACL record to read all table contents, and removed user role requirement from below.

This thread is closely related, but no resolution there either.

Same setup for Dev and Test

ACL execution in Dev:

ACL execution in Test:

The additional ACL record created to just read, without role required.

End result in Test. Dev shows all the choices while impersonating the same user (who has no roles assigned).

What am I missing here?

Jaspal Singh · ‎08-19-2017

Hi Edward,

Try changing it to None.

kartik8 · ‎08-28-2017

Hi Edward,

Please turn on security debugger and check for the ACLs which failing. That would help to figure out which ACL is restricting it.

Thanks!!

Jaspal Singh · ‎08-19-2017

Hi Edward,

Try changing it to None.

evogel · ‎08-25-2017

Same issue. Test User gets no results from list collector on the catalog item.

evogel · ‎08-28-2017

Issue is resolved. Much thanks to the posters in this thread.

Deleted the ACL records on the table and start fresh by clicking checkbox for Create Access Controls.
User role = user
Edited the ACL record for read:
- Admin overrides
- Active
- Deleted 'user' role so there are none
Clicked ACL execution plan, and there are matching records.

Bob17 · ‎10-26-2021

This was helpful. Thanks for posting!