End impersonation for users with low roles

Go to solution
Evren Yamin
Tera Contributor

‎10-05-2022 05:15 PM

Hello,

 

I was building a script on the existing script include "ImpersonateEvaluator" and I was able to to check that if a user that I'm trying to impersonate has a change_manager role, then the current user should have both itil and change_manager role. If the current user only has the itil then the current user will not be able to impersonate a user with a change_manager role.

 

My issue now is the end impersonation. Since I was able to impersonate the change_manager user, I was unable to end the impersonation since the current user that I am currently logged in have both change_manager and itil role.

 

Is there a way to check that if I am impersonating a user with only one role and not both then I can be able to go back to my account? I know this is OOB but I think since I have made changes on the script include it's no longer working.

 

Appreciate all the help

0 Helpfuls
  • 952 Views
1 ACCEPTED SOLUTION

Go to solution
Arav
Tera Guru
Tera Guru
In response to Evren Yamin

‎10-07-2022 12:21 AM

It would be something like this.

 

if(!gs.hasRole("change_manager"))

   current.addEncodedQuery("roles!=change_manager");

View solution in original post

0 Helpfuls
5 REPLIES 5

Go to solution
Arav
Tera Guru
Tera Guru
In response to Evren Yamin

‎10-07-2022 12:21 AM

It would be something like this.

 

if(!gs.hasRole("change_manager"))

   current.addEncodedQuery("roles!=change_manager");

0 Helpfuls