191 views

Fixing image attachments in service catalog item descriptions after upgrading

Overview


In recent versions of the platform, Access Control List (ACL) rules on attachment tables have been tightened. While this better secures access, the ACLs can cause problems when images are attached to catalog items that are used within the item description. When users view the item in the catalog, the images appear broken.

 

ACL rules and conditions


Rather than weaken the ACLs, you can make the image attachments visible to all users by taking advantage of the ACLs conditions. The rules of the base system ACL only allow you to see the attachment if you can read the record that to which it is  attached – in this case, the catalog item definition that only catalog administrators can see –  but this does not apply if there is no record linked to the specific attachment.


Solution


Remove the table and sys_id values from the attachment table for these attachments. They remain in the system with the same sys_id, so your descriptions do not need to be modified. No ACLs need to be modified either, so all other attachments stay protected:

  1. As an admin, list all image attachments currently linked to catalog item definition records. This filter includes all Fuji catalog item classes:

    https://<instance>.service-now.com/sys_attachment_list.do?sysparm_query=content_typeSTARTSWITHimage%5Etable_nameINsc_cat_item%2Csc_cat_item_guide%2Csc_cat_item_producer%2Csc_cat_item_producer_service%2Csc_cat_item_wizard%2Csc_cat_item_service%2Csc_cat_item_content%2Cpc_product_cat_item%2Cpc_hardware_cat_item%2Cpc_software_cat_item
  1. Clear the values from the Table name and Table sys ID fields.

 

 

 

Article Information

Last Updated:2015-07-22 12:08:00
Published:2015-07-22