Use admin_project policy instead of access check (!119438) · Merge requests · GitLab.org / GitLab

Andy Schoenen requested to merge andysoiron/use-policy-for-protected-branch-creation-access-check into master May 03, 2023

What does this MR do and why?

This replaces the manual access level check with a policy. This will make it easier to manage policies in the future.

I came across it while working on security policy bot users where I wanted to create a user that is a guest member of a project but has the access rights to create a pipeline. Using policies over manual access level checks will make it easier to implement such exceptions.

How to set up and validate locally

There should be no change. Everything should work as before.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Use admin_project policy instead of access check

What does this MR do and why?

How to set up and validate locally

MR acceptance checklist

Merge request reports