ACL for for restricting user to create records

Deepansh Jain
Kilo Contributor

‎07-29-2020 05:18 AM

Hello,

 

I need to create an ACL so that user is not able to create any new records except for rest/Soap users , but all the users should be  able to edit the records as per there roles .

 

Will it be possible?

Labels:
0 Helpfuls
  • 2,067 Views
6 REPLIES 6

Ashutosh Munot1
Kilo Patron
Kilo Patron
In response to Deepansh Jain

‎07-29-2020 05:53 AM

Hi,

I will suggest to do it based on roles.


So if the user has soap or rest role then allow always and if the ticket is opened then allow to write to it and if active is false dont allow.

 

So i will write a acl script as below:

var flag = false;
var actFlag = false;
if(gs.hasRole('soap,rest')){
flag = true;
}
else{
flag = false;
}

if(current.active==true && !current.isNewRecord())
actFlag = true;
else
actFlag = false;

if(flag == true || actFlag == true)
answer=true;
else
answer=false;

 

Thanks,
Ashutosh

0 Helpfuls

Ankur Bawiskar
Tera Patron
Tera Patron
In response to Deepansh Jain

‎07-29-2020 07:54 AM

Hi Deepansh,

In that case I would suggest this approach

1) Create a group "SOAP/REST Users"

2) Add the soap or rest users which you are using for integration to this above group

3) Now use the group membership in the ACL

The above solution will be scalable in the terms i.e. in future if soap user is not used you can remove that user from the group and no need to update anything in ACL script

answer = gs.getUser().isMemberOf('SOAP/REST Users');

Regards
Ankur

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls