Hello All,

I have an interesting requirement where I need to allow users who do not have the ITIL role to close out catalog tasks, and they need to be able to do it from the Service Portal. I'm not sure what the best way to achieve this would be. Currently, I have set up on our Service Portal page a Simple List widget called My Catalog Tasks. It pulls directly on the sc_task table and filters dynamically for the user logged in to show their tasks. This works great as long as the logged in user has the itil role.

If they have no role at all, they don't see the Simple List widget at all, and if they search for 'task' or 'catalog task' they get no search results. I found that the module for Catalog Tasks should give access to those with the 'catalog' role, so I tested this and got a strange result. The user with this role cannot see the Simple List widget from the Service Portal either, but when they search for catalog tasks they get this:

From what I'm seeing here it looks like a security issue, so I started looking into ACLs on the sc_task table. There was already a rule existing that allowed the role to read records from the table, so I tried adding the role to the write rule on the table, but unfortunately I get the same result. I think the issue is still ACL related but I'm not sure.

Overall what I'm looking for is to be able to assign someone to a group that has the catalog role. They inherit that role and can then go to the service portal, pull up a SCTASK record, set the state to Closed Complete, and then save the record. Any help would be much appreciated!