Enable reading custom roles for more users
What does this MR do and why?
It enables reading custom roles for more users
- instance level roles can be read by all registered users
- group level roles can be read by all members of a group
Reasoning
- on self-managed, anyone who can create a group, can do so and therefore see the custom roles anyway
- on SaaS, we should try to unify the visibilities with self-managed as much as possible. Lets consider a self-managed instance as an organization, I think we can compare that with a group on SaaS (organization in the future, but I'll ignore this for now). So if a member of a organisation (user of an instance) can see the custom roles, the same should be for self-managed (member of a group)
Approved by product
MR acceptance checklist
Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Screenshots or screen recordings
How to set up and validate locally
Numbered steps to set up and validate the change are strongly suggested.
Related to #465445 (closed)