Restrict access to incident records

Poorva Bhawsar · ‎02-20-2024

Hi Community,

I have a requirement when incidents are assigned to xyz group, they should be able to edit anything on the incident record. Also, worknotes and additional comments can be modified by any person but other fields should only be editable to xyz group.

I tried acls but those are creating issues. I have also created query BR but its completely hiding the incident record if it belongs to xyz group.

What is the best way to achieve this and how?

Harish KM · ‎02-22-2024

Hi @Poorva Bhawsar you should not add the script in this ACL incident.none. Please add it to incident.*(all fields) then it should work, because, incident.none works on table level which is not allowing end users visibility for work notes and additional comments.

Regards
Harish

Poorva Bhawsar · ‎02-22-2024

In that case incident.* which i have created and added my script inside that is not working. I mean its not making the incident records read only.

Harish KM · ‎02-22-2024

Hi @Poorva Bhawsar debug the acl or share your ACL configuration here

Regards
Harish

Poorva Bhawsar · ‎02-22-2024

I have a incident.* acl which contains snc_internal role and this code.

if (gs.getUser().isMemberOf('xyz')) {

answer = true;

} else {

answer = false;

}

Harish KM · ‎02-22-2024

Hi @Poorva Bhawsar Based on your ACL above, this ACL checks if user is member of 'xyz' grp and then allows edit access for all fields in incident table excluding field level acls ,and it makes readonly for other users. Is this what you need?

Regards
Harish