Restrict ritm creation via table API

Mujahid Sharief
Tera Contributor

3 weeks ago

The above requirement is not getting achieved with before insert BR, I need to block ritm creation via table api and only authorized channels like service catalog/approved API should be able to create.
Please help, if anyone has implemented such requirement. 

0 Helpfuls
  • 714 Views
8 REPLIES 8

Mujahid Sharief
Tera Contributor
In response to Mujahid Sharief

Monday

(function executeRule(current, previous /*null when async*/) {

    if (!current.subcategory.nil()) {
        valCatSubcat(current.category, current.subcategory);
    } else {
        valCat(current.category);
    }

    // --- Always move Pending → Work in Progress ---
    // Replace -5 and 2 with the actual backend values for your instance
    if (current.state == -5) {
        current.state = 2; // Work in Progress
    }

    function valCatSubcat(category, subcategory) {
        var qry = gs.getMessage(
            "name=incident^element=category^ORelement=subcategory^dependent_value={0}^value={1}",
            [category, subcategory]
        );

        var ch = new GlideRecord('sys_choice');
        ch.addEncodedQuery(qry);
        ch.query();

        var result = ch.hasNext();

        if (!result) {
            current.setAbortAction(true);
        }
    }

    function valCat(category) {
        var qry = gs.getMessage(
            "name=incident^element=category^value={0}",
            [category]
        );

        var ch = new GlideRecord('sys_choice');
        ch.addEncodedQuery(qry);
        ch.query();

        var result = ch.hasNext();

        if (!result) {
            current.setAbortAction(true);
        }
    }

})(current, previous);
 
0 Helpfuls

Mujahid Sharief
Tera Contributor
In response to Mujahid Sharief

Tuesday

(function executeRule(current, previous /*null when async*/) {

    // Ensure Pending Target Date exists
    if (current.state == 3 && current.pending_target_date) {
       
        // Compare with current date/time
        var now = new GlideDateTime();
        var target = new GlideDateTime(current.pending_target_date);

        if (target.before(now)) {
            // Move to Work in Progress
            current.state = 2;  // numeric value for "Work in Progress"
        }
    }

})(current, previous);

 
 
0 Helpfuls

Tanushree Maiti
Giga Patron

3 weeks ago

Hi @Mujahid Sharief ,

In this scenario,

 

We identified the integration user which we shared with the business (- years ago) who was using the table api.

We deactivated the integration user.

Created scripted api.

With that scripted API, we shared a new integration user credential  which has  limited permission / can only create RITM.

 

 

 

Please mark this response as Helpful & Accept it as solution if it assisted you with your question.
Regards
Tanushree Maiti
ServiceNow Technical Architect
Linkedin:
0 Helpfuls

Ankur Bawiskar
Tera Patron

3 weeks ago

@Mujahid Sharief 

but why are you giving Table API access on RITM table for 3rd party?

Regards,
Ankur
Certified Technical Architect  ||  10x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls