Permission to view the activity stream of the service portal approval form

SAI156 · ‎05-30-2022

Hi,all.

I can see the activity stream in the approval form of the service portal.

To see here, I need a role called sn_request_write.

However, this role is too powerful and I can view records that are not related to me on the instance.

Please let me know if you know how to check the activity stream without using sn_request_write.

For example, how to make it viewable using ACL.

SAI156 · ‎06-17-2022

I found that it can be solved by using the sn_request_comments_write role.

Thank you for answering.

View solution in original post

Community Alums · ‎05-30-2022

Hi SAI,

sn_request_write: Gives write access to the Request (sc_request) or Requested Item (sc_req_item). It contains additional roles such as task_editor, dependency_views, agent_workspace_user, view_changer, cmdb_read, cmdb_query_builder_read, sn_request_read.

so what i mean here is since it's a powerful role, you can instead go with "approver_user" role.

Also, to make it more secured you can create a READ ACL for the approvers having "Approver_user" role something like this:

Mark my answer correct & Helpful, if Applicable.

Thanks,
Sandeep

SAI156 · ‎05-30-2022

Hi,Sandeep.
Thank you. This is very helpful.
Creat an ACL and READ is allowed to approver_user,I can reference the activity stream now.
I also want to be able to comment, but even if I have created an ACL for write in approver_user, I still can't comment.
Do you know any solution to this as well?

Community Alums · ‎05-30-2022

can you show what you have done here

SAI156 · ‎06-01-2022

I would like to be able to leave a comment from here as shown in the image below.

However, to leave comments, I couldn't even create an ACL for write additional comments in approver_user.