URGENT: Query Script
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-03-2024 11:41 AM
Hi Community,
I am landed in a situation where I am unable to correct my script to allow access to users for particular RITMS.
Scenario:
There are few items under Category "Restriction" and when any of these items are requested then the RITMs should only be visible to two groups Group1 & Group2 along with the user who raised the request (he should not see others requests of these items).
Situation:
I am either able to control the access to other users including opened by or all users are able to access it. Means when an end user or some other user other than group member from the above groups raise the request then they don't see the RITM.
Catch here is the above two groups are ITIL role based.
I can't use ACL's here to control the access as there are almost 7K+ items exist and updating one may impact on other items.
Ask:
If anyone have an idea on how to achieve this with the script would be much appreciated.
Thank you
Lakshmi K
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-19-2024 12:38 AM
Why not use ACL's? You can easily create a read ACL with the condition 'category = restriction' and allow for 'opened_by = dynamic me' and add both of the groups in the security_attribute_condition. No scripting needed and it won't collide with existing ACL's, unless those give access to others as well. In that case, you need to fix those.
Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark
