Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
1d320ade
Commit
1d320ade
authored
Jul 13, 2020
by
Kyle Mann
Committed by
Ash McKenzie
Jul 13, 2020
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Add 'License-Approval' to license compliance page
parent
c83daaeb
Changes
8
Show whitespace changes
Inline
Side-by-side
Showing
8 changed files
with
39 additions
and
27 deletions
+39
-27
doc/user/application_security/index.md
doc/user/application_security/index.md
+10
-8
doc/user/compliance/license_compliance/img/policies_maintainer_add_v13_0.png
.../license_compliance/img/policies_maintainer_add_v13_0.png
+0
-0
doc/user/compliance/license_compliance/img/policies_maintainer_add_v13_2.png
.../license_compliance/img/policies_maintainer_add_v13_2.png
+0
-0
doc/user/compliance/license_compliance/img/policies_maintainer_edit_v13_0.png
...license_compliance/img/policies_maintainer_edit_v13_0.png
+0
-0
doc/user/compliance/license_compliance/img/policies_maintainer_edit_v13_2.png
...license_compliance/img/policies_maintainer_edit_v13_2.png
+0
-0
doc/user/compliance/license_compliance/index.md
doc/user/compliance/license_compliance/index.md
+23
-18
ee/app/controllers/projects/licenses_controller.rb
ee/app/controllers/projects/licenses_controller.rb
+1
-1
ee/changelogs/unreleased/kmann-master-patch-89285.yml
ee/changelogs/unreleased/kmann-master-patch-89285.yml
+5
-0
No files found.
doc/user/application_security/index.md
View file @
1d320ade
...
@@ -296,14 +296,16 @@ An approval is optional when a security report:
...
@@ -296,14 +296,16 @@ An approval is optional when a security report:
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/13067) in [GitLab Ultimate](https://about.gitlab.com/pricing/) 12.3.
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/13067) in [GitLab Ultimate](https://about.gitlab.com/pricing/) 12.3.
To enable License Approvals, a
[
project approval rule
](
../project/merge_requests/merge_request_approvals.md#multiple-approval-rules-premium
)
`License-Check`
is an approval rule you can enable to allow an individual or group to approve a
must be created with the case-sensitive name
`License-Check`
. This approval group must be set
merge request that contains a
`denied`
license.
with the number of approvals required greater than zero.
You can enable
`License-Check`
one of two ways:
Once this group is added to your project, the approval rule is enabled for all Merge Requests. To
configure how this rule behaves, you can choose which licenses to
`allow`
or
`deny`
in the
-
Create a
[
project approval rule
](
../project/merge_requests/merge_request_approvals.md#multiple-approval-rules-premium
)
[
project policies for License Compliance
](
../compliance/license_compliance/index.md#policies
)
with the case-sensitive name
`License-Check`
.
section.
-
Create an approval group in the
[
project policies section for License Compliance
](
../compliance/license_compliance/index.md#policies
)
.
You must set this approval group's number of approvals required to greater than zero. Once you
enable this group in your project, the approval rule is enabled for all merge requests.
Any code changes cause the approvals required to reset.
Any code changes cause the approvals required to reset.
...
...
doc/user/compliance/license_compliance/img/policies_maintainer_add_v13_0.png
deleted
100644 → 0
View file @
c83daaeb
21.6 KB
doc/user/compliance/license_compliance/img/policies_maintainer_add_v13_2.png
0 → 100644
View file @
1d320ade
13.1 KB
doc/user/compliance/license_compliance/img/policies_maintainer_edit_v13_0.png
deleted
100644 → 0
View file @
c83daaeb
39.8 KB
doc/user/compliance/license_compliance/img/policies_maintainer_edit_v13_2.png
0 → 100644
View file @
1d320ade
19.9 KB
doc/user/compliance/license_compliance/index.md
View file @
1d320ade
...
@@ -46,7 +46,7 @@ When GitLab detects a **Denied** license, you can view it in the [license list](
...
@@ -46,7 +46,7 @@ When GitLab detects a **Denied** license, you can view it in the [license list](
You can view and modify existing policies from the
[
policies
](
#policies
)
tab.
You can view and modify existing policies from the
[
policies
](
#policies
)
tab.
![
Edit Policy
](
img/policies_maintainer_edit_v13_
0
.png
)
![
Edit Policy
](
img/policies_maintainer_edit_v13_
2
.png
)
## Use cases
## Use cases
...
@@ -657,34 +657,39 @@ and the associated classifications for each.
...
@@ -657,34 +657,39 @@ and the associated classifications for each.
Policies can be configured by maintainers of the project.
Policies can be configured by maintainers of the project.
![
Edit Policy
](
img/policies_maintainer_edit_v13_
0
.png
)
![
Edit Policy
](
img/policies_maintainer_edit_v13_
2
.png
)
![
Add Policy
](
img/policies_maintainer_add_v13_
0
.png
)
![
Add Policy
](
img/policies_maintainer_add_v13_
2
.png
)
Developers of the project can view the policies configured in a project.
Developers of the project can view the policies configured in a project.
![
View Policies
](
img/policies_v13_0.png
)
![
View Policies
](
img/policies_v13_0.png
)
##
License Compliance report under pipelines
##
# Enabling License Approvals within a project
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/
5491) in [GitLab Ultimate](https://about.gitlab.com/pricing/) 11.2
.
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/
13067) in [GitLab Ultimate](https://about.gitlab.com/pricing/) 12.3
.
From your project's left sidebar, navigate to
**CI/CD > Pipelines**
and click on the
`License-Check`
is an approval rule you can enable to allow an approver, individual, or group to
pipeline ID that has a
`license_scanning`
job to see the Licenses tab with the listed
approve a merge request that contains a
`denied`
license.
licenses (if any).
![
License Compliance Pipeline Tab
](
img/license_compliance_pipeline_tab_v13_0.png
)
You can enable
`License-Check`
one of two ways:
<!-- ## Troubleshooting
-
Create a
[
project approval rule
](
../../project/merge_requests/merge_request_approvals.md#multiple-approval-rules-premium
)
with the case-sensitive name
`License-Check`
.
-
Create an approval group in the
[
project policies section for License Compliance
](
#policies
)
.
You must set this approval group's number of approvals required to greater than zero. Once you
enable this group in your project, the approval rule is enabled for all merge requests.
Include any troubleshooting steps that you can foresee. If you know beforehand what issues
Any code changes cause the approvals required to reset.
one might have when setting this up, or when something is changed, or on upgrading, it's
important to describe those, too. Think of things that may go wrong and include them here.
This is important to minimize requests for support, and to avoid doc comments with
questions that you know someone might ask.
Each scenario can be a third-level heading, e.g.
`### Getting error message X`
.
An approval is required when a license report:
If you have none to add when creating a doc, leave this section in place
but commented out to help encourage others to add to it in the future. -->
-
Contains a dependency that includes a software license that is
`denied`
.
-
Is not generated during pipeline execution.
An approval is optional when a license report:
-
Contains no software license violations.
-
Contains only new licenses that are
`allowed`
or unknown.
## Troubleshooting
## Troubleshooting
...
...
ee/app/controllers/projects/licenses_controller.rb
View file @
1d320ade
...
@@ -5,7 +5,7 @@ module Projects
...
@@ -5,7 +5,7 @@ module Projects
before_action
:authorize_read_licenses!
,
only:
[
:index
]
before_action
:authorize_read_licenses!
,
only:
[
:index
]
before_action
:authorize_admin_software_license_policy!
,
only:
[
:create
,
:update
]
before_action
:authorize_admin_software_license_policy!
,
only:
[
:create
,
:update
]
before_action
do
before_action
do
push_frontend_feature_flag
(
:license_approvals
,
default_enabled:
fals
e
)
push_frontend_feature_flag
(
:license_approvals
,
default_enabled:
tru
e
)
push_frontend_feature_flag
(
:license_compliance_denies_mr
,
default_enabled:
false
)
push_frontend_feature_flag
(
:license_compliance_denies_mr
,
default_enabled:
false
)
end
end
...
...
ee/changelogs/unreleased/kmann-master-patch-89285.yml
0 → 100644
View file @
1d320ade
---
title
:
Add license approval rule section and enable feature by default
merge_request
:
35246
author
:
type
:
added
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment