File upload/download permissions issue

Reasons

As of version 12.0.4, file operations are controlled by the same security framework used in the UUX for object visibility. 

The file is always related to an object, and an object belongs to some Configuration Item, so the system checks that at least one Data Query is allowed for the user for any Data Definition included in the Configuration Item.

Access is granted only if:

• The user has "Read" CI permissions for the object.

• Either:

  • No Data Query is configured for the CI, or

  • A Data Query exists with an Audience that includes the user

This affects both file uploads and downloads.

See also, Important or Breaking Changes: File/Attachment Security and SolutionBuilder Architecture: Data Access pages.

Resolution Steps

To resolve the issue:

1. Check Configuration Item Permissions:
   Ensure the user has "Read" CI permissions for the object in question.
   See also: CRUD Security Management in UX

2. Go to the Administration application → Schema → Data Definitions and check for related Data Definitions that have the classbase in the name (except of SPSCommonClassBase) and cardinality equals mandatory:

    Name like '%ClassBase' and Name <> 'SPSCommonClassBase' and Cardinality = Mandatory

3. Verify Data Query:

   • Confirm that at least one Data Query based on the found Data Definition exists for the CI.

   • Check that the Data Query has an Audience that includes the user.
     See also: How to Set Audience in SolutionBuilder

4. Adjust Access If Needed:

   • Update the User Role permissions if "Read" access for the Configuration Item is missing.
     See also: CRUD Security Management in UX

   • Add the user to the Data Query Audience, or create a new Data Query if necessary.
     See also: Creating and Editing Data Query