Report View ACL Effects?

Go to solution
chuckn
Kilo Guru

‎08-05-2022 06:39 AM

We are having an issue that I believe is related to report view ACLs (RVAs), but I can't tell for sure.

We have a user who has been granted a custom role that has report_view access via custom ACLs to asmt_metric_result and asmt_assessment_instance. We can create reports on each of the asmt_metric_result, asmt_assessment_instance, and task tables, and said user can see all relevant data. However, in a report on asmt_metric_result that is grouped by Instance (reference to asmt_assessment_instance) -> Task (reference to task) -> Task Type, the report results are removed due to security constraints:

find_real_file.png

 

find_real_file.png

Has anyone experienced something similar? Any ideas on what's required to address the issue?

Thanks!

Labels:
Preview file
15 KB
Preview file
71 KB
0 Helpfuls
  • 2,219 Views
1 ACCEPTED SOLUTION

Go to solution
chuckn
Kilo Guru
In response to Tim Grindlay

‎11-28-2022 10:55 AM

Ah, yes...I should have updated the post! We created a Now Support Case. Turns out we needed to create a read ACL for asmt_assessment_instance and ensured the users had the role we added to that ACL (in this case we have a role for RVAs for Assessments). Hope that helps!

 

-Chuck

View solution in original post

10 REPLIES 10

Go to solution
Mark Manders
Mega Patron

‎08-05-2022 06:45 AM

This user needs to have at least the read role on the task type, otherwise it won't work (and of course also the task, otherwise you are missing a step in the process here). 

If it's due to the RVA's, I'm not sure: did it work before they were implemented?

 

If my answer helped you in any way, please then mark it as helpful.

Mark


Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark
0 Helpfuls

Go to solution
chuckn
Kilo Guru
In response to Mark Manders

‎08-08-2022 05:48 AM

Hi Mark,

Thanks for your response. The user in question has the itil role, which allows them to see the INCs and REQs related to the surveys.

I also tried creating a custom report_view ACL for the task table, and that didn't have any effect.

I don't recall behavior for similar reports pre-RVA, but I've got to believe it was working fine...otherwise, I believe someone would have raised the issue to us since they wouldn't have been able to see the survey comments.

I just tried adding incident and sc_request report_view ACLs for itil, but that didn't work either.

Thanks!

-Chuck

0 Helpfuls

Go to solution
Tim Grindlay
Kilo Sage
In response to chuckn

‎11-27-2022 03:50 PM

Hi Chuck, 

We may be experiencing something similar. Keen to hear if you solved this and how?

Thanks, Tim

0 Helpfuls

Go to solution
chuckn
Kilo Guru
In response to Tim Grindlay

‎11-28-2022 10:55 AM

Ah, yes...I should have updated the post! We created a Now Support Case. Turns out we needed to create a read ACL for asmt_assessment_instance and ensured the users had the role we added to that ACL (in this case we have a role for RVAs for Assessments). Hope that helps!

 

-Chuck