Notifications

466 views

Description

ACL conditions are not working when attempting to view a workflow (context_workflow.do) even though they're working when you view the record directly.  Upon clicking "Show Workflow" UI action from a record a blank browser tab is opened.

 

Steps to Reproduce

(this could happen with any record, not just service catalog)

  1. Order an item from service catalog as System Administrator
  2. Enable Debug Security & Impersonate ITIL User
  3. Open a RITM with Item using "Service Catalog" as the Catalog.
  4. Click on Show Workflow, the workflow loads correctly, check the Security Logs.
  5. Impersonate System Administrator
  6. Go to https://<instance-name>.service-now.com/nav_to.do?uri=sys_security_acl.do?sys_id=d9694407c3923000c111113e5bba8ffd
    • This above passed since no condition was present
  7. Now add any condition to this ACL (such as Active is true).  Perform Steps 2 to 4 again, see the workflow didn't load this time as the condition failed for the above ACL. 

The same condition passed when the RITM was viewed.

Workaround

This issue has been fixed. If you are able to upgrade, review the Fixed In or Intended Fix Version fields to determine whether any versions have a planned or permanent fix.


Related Problem: PRB1341033

Seen In

SR - Security - Integration Framework - Madrid 2019 Q2
SR - Security - Support Common - Madrid 2019 Q2
SR - Security - Support Orchestration - Madrid 2019 Q2
SR - SIR - Qradar SIEM Integration - Madrid 2019 Q1
SR - SIR - Security Incident Response - Madrid 2019 Q2
SR - SIR - Store SecOps Setup Assistant - Madrid 2019 Q2
SR - SIR - Store Threat Core - Madrid 2019 Q2
SR - SIR - Store Trusted Security Circles Client - New York 2019 Q3
SR - SIR - Threat intelligence - New York 2019 Q3
SR - SIR - VirusTotal Integration - New York 2019 Q3

Fixed In

Madrid Patch 5
New York

Associated Community Threads

There is no data to report.

Article Information

Last Updated:2019-10-31 17:26:56
Published:2019-06-24