Solution a way for a user to attach a file to a record they do not have write access to.

thilehoffer
Tera Contributor

We have custom table with "orders" when we set a status field to complete users in certain groups do not have read access to the table. However, we would like for them to attach files. Any ideas?

4 REPLIES 4

James Schwab
Tera Guru

Hi,

 

The most straight-forward solution would be to create 2 ACLs on your custom table.

 

1. Create a row-level ACL on your custom table that allows write-access to the particular group you would like to give access to attach files.

2. Create a wildcard (*) ACL on your custom table that restricts write-access on fields to a high level group (like admin or security_admin).

 

This way you can grant write access to the table for attachments, but stop the user from actually having write access to any field. 

Ankur Bawiskar
Tera Patron
Tera Patron

@thilehoffer 

they should have table write access to upload file.

you can handle this via table level WRITE access with proper conditions, etc for that group users and then they can add files

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect  ||  ✨ 9x ServiceNow MVP  ||  ✨ ServiceNow Community Leader

@thilehoffer 

Thank you for marking my response as helpful.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect  ||  ✨ 9x ServiceNow MVP  ||  ✨ ServiceNow Community Leader

yuvarajkate
Giga Guru

I think that would not work. You would first need to give the user read access for the table and then write access for the attachments, because the system first evaluates table level access and then the field level, if the user doesn't have read access in the first place how will it be able to attach files.

 

I am new to ServiceNow and this is my thought on your question do tell me if I am wrong and like to work this problem with you.