Skip navigation

Vendor permissions concept in Smart IT

score 10
You have not voted. Not Planned

Our customer wanted incidents created and handled inside company A to be visible for people from selected other companies where non of the staff is member of any group in company A.

This was implemented with the Row-level security feature of ARS in ITSM as follows.

 

- Create a group in the Group form with ID 60265 and name ‘ExtViewers’, group type “Change”

- Create a new field with name ‘ExtViewers’, fieldID 60265 on form HPD:Help Desk

- Add permission group ‘ExtViewers_sIT’, ID 60265, to the field ‘Entry ID’ (fieldID 1) of HPD:Help Desk

 

 

The result is, when the Group ID of any other company is entered into the field ‘ExtViewers’ of an incident then all people of this company can view the incident.

 

After introducing Smart IT it was found this customization did not work anymore.

 

With Smart IT these additional customizations are required:

- Create the field ‘ExtViewers’, ID 60265 to  the form HPD:IncidentInterface_Create

- Add permission group ‘ExtViewers_sIT’, ID 60265, to the field ‘Entry ID’ (fieldID 1) of HPD:IncidentInterface_Create

- Add the field ‘ExtViewers’ to the join forms HPD:IncidentInterface and HPD:HelpDesk_SLM_Join_Outer with "Add from HPD:HelpDesk

- Add permission group ‘ExtViewers_sIT’, ID 60265, to the field ‘Entry ID’ (fieldID 1) of both join forms

 

This IDEA is that Smart IT should come ootb with this feature.

Comments

Vote history