Survey overview & scorecard report access for survey_reader

Go to solution
Mary S
Mega Sage

‎04-22-2022 10:37 AM

We would like the survey_reader to have access to the overview & scorecard reports.  They have access to the pages, but the reports all display "Access to this content denied based on report_view ACLs."

I tried adding ACLs as shown here, but still have the access denied message.

Any suggestions are appreciated!

Labels:
0 Helpfuls
  • 1,040 Views
1 ACCEPTED SOLUTION

Go to solution
Mary S
Mega Sage

‎04-29-2022 06:37 AM

More ACLs were necessary for survey_reader to see the survey definition reports and the scorecard reports.

survey_reader added to ACLs:

sys_report/read
asmt_assessment_instance/report_view
asmt_assessment_instance/read
asmt_metric_result/report_view
asmt_metric_result/read
asmt_metric_type/report_view
asmt_metric_type/read
asmt_metric_definition/report_view
asmt_metric_definition/read

sys_report was needed to see the 2 reports on the survey definition page.

asm_metric_definition is needed to see the question report on the scorecard.

ServiceNow support did mention that this will give survey_reader access to many other reports, but that doesn't matter in our situation.

View solution in original post

0 Helpfuls
3 REPLIES 3

Go to solution
Mary S
Mega Sage

‎04-29-2022 06:37 AM

More ACLs were necessary for survey_reader to see the survey definition reports and the scorecard reports.

survey_reader added to ACLs:

sys_report/read
asmt_assessment_instance/report_view
asmt_assessment_instance/read
asmt_metric_result/report_view
asmt_metric_result/read
asmt_metric_type/report_view
asmt_metric_type/read
asmt_metric_definition/report_view
asmt_metric_definition/read

sys_report was needed to see the 2 reports on the survey definition page.

asm_metric_definition is needed to see the question report on the scorecard.

ServiceNow support did mention that this will give survey_reader access to many other reports, but that doesn't matter in our situation.

0 Helpfuls

Go to solution
DrewW
Mega Sage
Mega Sage
In response to Mary S

‎08-23-2022 08:31 AM

I had to look at this exact thing today and I do not think you need these ACL's.

asmt_metric_result/read
asmt_metric_type/read
asmt_metric_definition/read

There is an ACL on those tables that checks the "Assessment Metric Type" (asmt_metric_type) tables roles field to see if the user has one of those roles.  Most of them have survey_reader as a role.  So you should be able to just leave the OOB ACL's in place.

 

Go to solution
Michael H
Giga Guru
In response to DrewW

‎06-14-2023 10:24 PM - edited ‎06-14-2023 10:28 PM

This is a good answer.

 

There is an existing read ACL that applies to many of the related/child survey record tables.

Most surveys require a 'survey_admin' or 'survey_reader' role by default to read.

 

I found that if you reveal the "Roles" field in via form design you can add a new role to read access to a specific survey. This will only apply to that specific survey definition record ('asmt_metric_type') and related tables that have the same ACL rules. 

 

i.e. you can create a new role ("survey_1_role") and associate to the survey definition ("survey_1") and it will only allow users with that role to read assessment tables related to that specific survey.

 

MichaelH_0-1686806468938.png

 

0 Helpfuls