Update sets for non admins ACL issue

Go to solution
Marcin Witosla1
Tera Expert

‎09-22-2020 12:16 AM

Hello ,

I have created new role update_set_admin to manage update set. Users with this role can:

  • see update set picker (System property glide.ui.update_set_picker.role set to true and write roles (my new role added))
  • see update sets created by themselves (ACL on sys_update_set READ CREATE DELETE WRITE) but they can see all Update sets ACL script is needed Please help with this
  • see Local Update sets application module (new role added to module)
  • they cannot  move update sets (ACL READ created on sys_remote_update and sys_update_XML)
  • edit other user update set Please help with this

 

Kind Regards

Marcin

Labels:
0 Helpfuls
  • 1,690 Views
1 ACCEPTED SOLUTION

Go to solution
Ashutosh Munot1
Kilo Patron
Kilo Patron
In response to Marcin Witosla1

‎09-24-2020 12:14 AM

Ah. This is not create issue. This is read issue.


So you also have to create one * ACL.  Try sys_update_set.* ACL.

 

Thanks,
Ashutosh

View solution in original post

8 REPLIES 8

Go to solution
Ashutosh Munot1
Kilo Patron
Kilo Patron

‎09-22-2020 12:54 AM

Hi,

So you have two questions

1) You want to restrict the edit option for update set if they created it? If that right then try below ACL: use your role and check user_name field in your instance.

find_real_file.png

2) 

  • edit other user update set Please help with this? What do you want to do here?

Thanks,
Ashutosh

Preview file
83 KB

Go to solution
Marcin Witosla1
Tera Expert
In response to Ashutosh Munot1

‎09-23-2020 04:50 AM

Hello ,

Thank you for your response

I want to non admin users with update_set_admin role be able to  create and read only Update sets created by them (not admin Update sets ).For example:

Abel Tuter with update_admin role can see only own update sets.

i have created ACL WRITE nad READ with your code and role update_set_admin.

I have added this role to CREATE ACL

but cannot create new update set

find_real_file.png

Kind regards

Marcin

 

Preview file
10 KB
0 Helpfuls

Go to solution
Miguel Donayre
ServiceNow Employee
ServiceNow Employee

‎09-23-2020 11:20 AM

Take a look at this post. I used to this to limit the update sets to show only the one the user-created or the default ones. 

 

https://community.servicenow.com/community?id=community_question&sys_id=24390554dbe4b3c85129a851ca96...

Go to solution
Marcin Witosla1
Tera Expert

‎09-23-2020 11:20 PM

Hello ,

Thank you for your help.

Only thing that is not solved is user with update_admin role cannot create Update set.

find_real_file.png

ACL CREATE:

find_real_file.png

Preview file
51 KB
Preview file
10 KB
0 Helpfuls