Add Manage group access tokens custom permission (!140115) · Merge requests · GitLab.org / GitLab

Alex Buijs requested to merge add-manage_group_access_tokens-custom-permission into master Dec 18, 2023

What does this MR do and why?

This MR adds 'Manage group access tokens' as a customizable permission, so that it can be added onto any base role.

This makes managing group access tokens available to all roles, as the Owner role might have too many privileges for all use cases.

Issue: #428353 (closed)

Screenshots or screen recordings

Adding the permission as group owner	Group member with custom role

How to set up and validate locally

Create a namespace and a project within that namespace and apply the Ultimate license to the namespace.
Create a new custom role that enables Manage group access tokens from Group -> Settings -> Roles and Permissions
Invite a user to the group and select the new custom role.
Log in as the user with the custom permission and check if you can:
- Manage access tokens from the UI
- Manage acces tokens via REST API

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Dec 21, 2023 by Alex Buijs

Add Manage group access tokens custom permission

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports