Error - "ACL Exception Insert Failed due to security constraints"

shubham23 · ‎06-19-2020

Hi,

I am trying to upload an attachment in the incident table using API. But I am getting below error:

status: failure
The remote server returned an error: (403) Forbidden.
message: Operation Failed
detail: ACL Exception Insert Failed due to security constraints

I am using non-admin user and don't know which ACL rules operation should be applied to which table. So, that user can upload the attachments

Could anyone please help me ?.

Thanks!

shubham23 · ‎04-28-2021

Working:
Added below ACL and now able to upload the attachment:

sys_attachment_doc (create)
sys_attachment (create)
ecc_queue (create)

For Downloading attachment provided below ACL:

sys_attachment_doc (read)
sys_attachment (read)
ecc_queue (read)

View solution in original post

shubham23 · ‎06-20-2020

Hi @Ankur Bawiskar,

This User can create and edit tables using API but cannot add the attachment to the table.

Thanks,

Shubham

Ankur Bawiskar · ‎06-21-2020

Hi Shubham,

check any before insert BR on sys_attachment table which restricts adding attachment

Since you told this user is able to created or edit record; please check whether this user is able to add attachment from the record itself using paper clip icon

Regards
Ankur

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

Ashutosh Munot1 · ‎06-21-2020

HI,

There will be an acl which restrict that user to add attachment. check acl on attachment table and not incident table.

Thanks,
Ashutosh

Nikhil Bahurup1 · ‎06-19-2020

Hi,

try adding "itil" role to user which you are using while calling this API and check.

shubham23 · ‎06-19-2020

@Nikhil Bahurupi - User have below roles:
1. import_transformer

2. itil

3. itil_admin

4. personalize

5. personalize_dictionary

6. rest_service

And below ACL rules:

1. Read and Create operation for table sys_attachment and sys_attachment_doc.

2. Create an operation for ecc_queue.