Read ACL on Incident - Troubleshooting

Go to solution
jshatney
Mega Expert

‎08-15-2014 10:36 AM

Creating a pretty standard READ ACL on the Incident table. The requirement is to allow users in the same department the ability to read other user's incidents.

 

Type: Record

Operation: read

Name: Incident

 

ourUser = gs.getUser();

department = ourUser.getDepartmentID();

 

if (current.caller_id.department == department || current.opened_by.department == department){

      answer = true;

}

 

This same ACL is working without issues on the Request and Requested Item tables (obviously with small changes). The conditions are coming back as true on the Incident table, however, it does not display all records for the user's department - only their records.

 

I cannot seem to write an ACL that allows a user to view any other records on the Incident table than their own.   I checked for an onQuery business rule or other ACLs that may be conflicting with this.

 

Does anyone have any idea what may be going on here?

 

Thanks~!

0 Helpfuls
  • 3,499 Views
1 ACCEPTED SOLUTION

Go to solution
Brad Tilton
ServiceNow Employee
ServiceNow Employee

‎08-15-2014 10:42 AM

You mentioned you checked onquery business rules, but there is an out of box business rule no incident called 'incident query' that restricts incidents for ess users so they only see incidents they've opened or are the caller on. Could you double check for that business rule? It would be there and be active unless you've deleted or deactivated it.


View solution in original post

5 REPLIES 5

Go to solution
Pradeep Sharma
ServiceNow Employee
ServiceNow Employee

‎08-15-2014 10:45 AM

Have you also modified the business rule "incident query" which restricts incidents for ess users.


Also you can use "Debug security rules" to debug which ACL is restricting the access.