Skip to content

Fix issue where project maintainers can not assign compliance frameworks

What does this MR do?

  • Fixes the regression described in #321380 (closed).
  • Reinstates the ability for maintainers to assign a compliance framework to a project by placing the upcoming policy change behind the feature flag.
Before this MR After this MR Later, once feature flag is enabled
Lower than maintainer
Maintainer
Owner

What happens if we don't merge this MR?

  • Project maintainers cannot set a compliance framework for a project, despite the UI making it appear as though they can.

Does this MR meet the acceptance criteria?

Conformity

Availability and Testing

Security

If this MR contains changes to processing or storing of credentials or tokens, authorization and authentication methods and other items described in the security review guidelines:

  • Label as security and @ mention @gitlab-com/gl-security/appsec
  • The MR includes necessary changes to maintain consistency between UI, API, email, or other methods
  • Security reports checked/validated by a reviewer from the AppSec team

Related to #321380 (closed)

Edited by Thong Kuah

Merge request reports

Loading