Merge branch '350249-remove-compliance-violations-graphql-type-feature-flag' into 'master'

[Feature flag] Remove compliance_violations_graphql_type See merge request gitlab-org/gitlab!82603

Merge branch '350249-remove-compliance-violations-graphql-type-feature-flag' into 'master'
[Feature flag] Remove compliance_violations_graphql_type See merge request gitlab-org/gitlab!82603
43fe5cae · Dylan Griffith · 7ca1f91b · 085a7f27 · 43fe5cae · 43fe5cae
Commit 43fe5cae authored Mar 14, 2022 by Dylan Griffith
14 changed files
--- a/doc/api/graphql/reference/index.md
+++ b/doc/api/graphql/reference/index.md
@@ -9611,7 +9611,7 @@ Represents a ComplianceFramework associated with a Project.
 ### `ComplianceViolation`
-Compliance violation associated with a merged merge request. Available only when feature flag `compliance_violations_graphql_type` is enabled. This flag is disabled by default, because the feature is experimental and is subject to change without notice.
+Compliance violation associated with a merged merge request.
 #### Fields
@@ -11550,7 +11550,7 @@ four standard [pagination arguments](#connection-pagination-arguments):
 ##### `Group.mergeRequestViolations`
-Compliance violations reported on merge requests merged within the group. Available only when feature flag `compliance_violations_graphql_type` is enabled. This flag is disabled by default, because the feature is experimental and is subject to change without notice.
+Compliance violations reported on merge requests merged within the group.
 Returns [`ComplianceViolationConnection`](#complianceviolationconnection).
--- a/ee/app/finders/compliance_management/merge_requests/compliance_violations_finder.rb
+++ b/ee/app/finders/compliance_management/merge_requests/compliance_violations_finder.rb
@@ -26,7 +26,7 @@ module ComplianceManagement
      end
      def execute
-        return ::MergeRequests::ComplianceViolation.none unless allowed?
+        return unless allowed?
        items = init_collection
@@ -42,8 +42,7 @@ module ComplianceManagement
      attr_reader :current_user, :group, :params
      def allowed?
-        ::Feature.enabled?(:compliance_violations_graphql_type, group, default_enabled: :yaml) &&
+        Ability.allowed?(current_user, :read_group_compliance_dashboard, group)
-          Ability.allowed?(current_user, :read_group_compliance_dashboard, group)
      end
      def init_collection

--- a/ee/app/graphql/ee/types/group_type.rb
+++ b/ee/app/graphql/ee/types/group_type.rb
@@ -105,9 +105,9 @@ module EE
        field :merge_request_violations,
              ::Types::ComplianceManagement::MergeRequests::ComplianceViolationType.connection_type,
              null: true,
-              description: 'Compliance violations reported on merge requests merged within the group.' \
+              description: 'Compliance violations reported on merge requests merged within the group.',
-                           ' Available only when feature flag `compliance_violations_graphql_type` is enabled. This flag is disabled by default, because the feature is experimental and is subject to change without notice.',
+              resolver: ::Resolvers::ComplianceManagement::MergeRequests::ComplianceViolationResolver,
-              resolver: ::Resolvers::ComplianceManagement::MergeRequests::ComplianceViolationResolver
+              authorize: :read_group_compliance_dashboard
        def billable_members_count(requested_hosted_plan: nil)
          object.billable_members_count(requested_hosted_plan)

--- a/ee/app/graphql/resolvers/compliance_management/merge_requests/compliance_violation_resolver.rb
+++ b/ee/app/graphql/resolvers/compliance_management/merge_requests/compliance_violation_resolver.rb
@@ -4,11 +4,16 @@ module Resolvers
  module ComplianceManagement
    module MergeRequests
      class ComplianceViolationResolver < BaseResolver
+        include Gitlab::Graphql::Authorize::AuthorizeResource
        alias_method :group, :object
        type ::Types::ComplianceManagement::MergeRequests::ComplianceViolationType.connection_type, null: true
        description 'Compliance violations reported on a merged merge request.'
+        authorize :read_group_compliance_dashboard
+        authorizes_object!
        argument :filters, Types::ComplianceManagement::MergeRequests::ComplianceViolationInputType,
                 required: false,
                 default_value: {},

--- a/ee/app/graphql/types/compliance_management/merge_requests/compliance_violation_type.rb
+++ b/ee/app/graphql/types/compliance_management/merge_requests/compliance_violation_type.rb
@@ -5,8 +5,7 @@ module Types
    module MergeRequests
      class ComplianceViolationType < ::Types::BaseObject
        graphql_name 'ComplianceViolation'
-        description 'Compliance violation associated with a merged merge request.' \
+        description 'Compliance violation associated with a merged merge request.'
-                    ' Available only when feature flag `compliance_violations_graphql_type` is enabled. This flag is disabled by default, because the feature is experimental and is subject to change without notice.'
        authorize :read_group_compliance_dashboard

--- a/ee/app/services/compliance_management/merge_requests/create_compliance_violations_service.rb
+++ b/ee/app/services/compliance_management/merge_requests/create_compliance_violations_service.rb
@@ -15,8 +15,7 @@ module ComplianceManagement
      private
      def permitted?(group)
-        ::Feature.enabled?(:compliance_violations_graphql_type, group, default_enabled: :yaml) &&
+        group.licensed_feature_available?(:group_level_compliance_dashboard)
-          group.licensed_feature_available?(:group_level_compliance_dashboard)
      end
    end
  end

--- a/ee/app/services/ee/merge_requests/post_merge_service.rb
+++ b/ee/app/services/ee/merge_requests/post_merge_service.rb
@@ -18,8 +18,7 @@ module EE
      private
      def compliance_violations_enabled?(group)
-        ::Feature.enabled?(:compliance_violations_graphql_type, group, default_enabled: :yaml) &&
+        group.licensed_feature_available?(:group_level_compliance_dashboard)
-          group.licensed_feature_available?(:group_level_compliance_dashboard)
      end
    end
  end

--- a/ee/config/feature_flags/development/compliance_violations_graphql_type.yml
+++ b/ee/config/feature_flags/development/compliance_violations_graphql_type.yml
---
-name: compliance_violations_graphql_type
-introduced_by_url: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/77954
-rollout_issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/350249
-milestone: '14.8'
-type: development
-group: group::compliance
-default_enabled: false
--- a/ee/spec/finders/compliance_management/merge_requests/compliance_violations_finder_spec.rb
+++ b/ee/spec/finders/compliance_management/merge_requests/compliance_violations_finder_spec.rb
@@ -29,83 +29,67 @@ RSpec.describe ComplianceManagement::MergeRequests::ComplianceViolationsFinder d
  describe '#execute' do
    subject { finder.execute }
-    context 'when feature is disabled' do
+    context 'when the user is unauthorized' do
-      before do
+      it 'returns nil' do
-        stub_feature_flags(compliance_violations_graphql_type: false)
+        expect(subject).to be_nil
-      end
-      it 'returns no compliance violations' do
-        expect(subject).to eq(::MergeRequests::ComplianceViolation.none)
      end
    end
-    context 'when feature is enabled' do
+    context 'when the user is authorized' do
      before do
-        stub_feature_flags(compliance_violations_graphql_type: true)
+        group.add_owner(current_user)
      end
-      context 'when the user is unauthorized' do
+      context 'without any filters or sorting' do
-        it 'returns no compliance violations' do
+        it 'finds all the compliance violations' do
-          expect(subject).to eq(::MergeRequests::ComplianceViolation.none)
+          expect(subject).to contain_exactly(compliance_violation, compliance_violation2)
        end
      end
-      context 'when the user is authorized' do
+      context 'filtering the results' do
-        before do
+        context 'when given an array of project IDs' do
-          group.add_owner(current_user)
+          let(:params) { { project_ids: [project.id] } }
-        end
-        context 'without any filters or sorting' do
+          it 'finds the filtered compliance violations' do
-          it 'finds all the compliance violations' do
+            expect(subject).to contain_exactly(compliance_violation)
-            expect(subject).to contain_exactly(compliance_violation, compliance_violation2)
          end
        end
-        context 'filtering the results' do
+        context 'when given merged at dates' do
-          context 'when given an array of project IDs' do
+          where(:merged_params, :result) do
-            let(:params) { { project_ids: [project.id] } }
+            { merged_before: 2.days.ago } | lazy { compliance_violation }
+            { merged_after: 2.days.ago } | lazy { compliance_violation2 }
-            it 'finds the filtered compliance violations' do
+            { merged_before: Date.current, merged_after: 2.days.ago } | lazy { compliance_violation2 }
-              expect(subject).to contain_exactly(compliance_violation)
-            end
          end
-          context 'when given merged at dates' do
+          with_them do
-            where(:merged_params, :result) do
+            let(:params) { merged_params }
-              { merged_before: 2.days.ago } | lazy { compliance_violation }
-              { merged_after: 2.days.ago } | lazy { compliance_violation2 }
-              { merged_before: Date.current, merged_after: 2.days.ago } | lazy { compliance_violation2 }
-            end
-            with_them do
-              let(:params) { merged_params }
-              it 'finds the filtered compliance violations' do
+            it 'finds the filtered compliance violations' do
-                expect(subject).to contain_exactly(result)
+              expect(subject).to contain_exactly(result)
-              end
            end
          end
        end
+      end
-        context 'sorting the results' do
+      context 'sorting the results' do
-          where(:direction, :result) do
+        where(:direction, :result) do
-            'SEVERITY_LEVEL_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'SEVERITY_LEVEL_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'SEVERITY_LEVEL_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'SEVERITY_LEVEL_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'VIOLATION_REASON_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'VIOLATION_REASON_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'VIOLATION_REASON_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'VIOLATION_REASON_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'MERGE_REQUEST_TITLE_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'MERGE_REQUEST_TITLE_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'MERGE_REQUEST_TITLE_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'MERGE_REQUEST_TITLE_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'MERGED_AT_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'MERGED_AT_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'MERGED_AT_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'MERGED_AT_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'UNKNOWN_SORT' | lazy { [compliance_violation, compliance_violation2] }
+          'UNKNOWN_SORT' | lazy { [compliance_violation, compliance_violation2] }
-          end
+        end
-          with_them do
+        with_them do
-            let(:params) { { sort: direction } }
+          let(:params) { { sort: direction } }
-            it 'finds the filtered compliance violations' do
+          it 'finds the filtered compliance violations' do
-              expect(subject).to match_array(result)
+            expect(subject).to match_array(result)
-            end
          end
        end
      end

--- a/ee/spec/graphql/resolvers/compliance_management/merge_requests/compliance_violation_resolver_spec.rb
+++ b/ee/spec/graphql/resolvers/compliance_management/merge_requests/compliance_violation_resolver_spec.rb
@@ -29,79 +29,67 @@ RSpec.describe Resolvers::ComplianceManagement::MergeRequests::ComplianceViolati
    subject(:resolve_compliance_violations) { resolve(described_class, obj: group, args: args, ctx: { current_user: current_user }) }
-    context 'feature flag is disabled' do
+    context 'user is unauthorized' do
-      before do
+      it 'returns nil' do
-        stub_feature_flags(compliance_violations_graphql_type: false)
+        expect(subject).to be_nil
      end
+    end
-      it 'returns an empty collection' do
+    context 'user is authorized' do
-        expect(subject).to be_empty
+      before do
+        group.add_owner(current_user)
      end
-    end
-    context 'feature flag is enabled' do
+      context 'without any filters or sorting' do
-      context 'user is unauthorized' do
+        it 'finds all the compliance violations' do
-        it 'returns an empty collection' do
+          expect(subject).to contain_exactly(compliance_violation, compliance_violation2)
-          expect(subject).to be_empty
        end
      end
-      context 'user is authorized' do
+      context 'filtering the results' do
-        before do
+        context 'when given an array of project IDs' do
-          group.add_owner(current_user)
+          let(:args) { { filters: { project_ids: [::Gitlab::GlobalId.as_global_id(project.id, model_name: 'Project')] } } }
-        end
-        context 'without any filters or sorting' do
+          it 'finds the filtered compliance violations' do
-          it 'finds all the compliance violations' do
+            expect(subject).to contain_exactly(compliance_violation)
-            expect(subject).to contain_exactly(compliance_violation, compliance_violation2)
          end
        end
-        context 'filtering the results' do
+        context 'when given merged at dates' do
-          context 'when given an array of project IDs' do
+          where(:merged_params, :result) do
-            let(:args) { { filters: { project_ids: [::Gitlab::GlobalId.as_global_id(project.id, model_name: 'Project')] } } }
+            { merged_before: 2.days.ago } | lazy { compliance_violation }
+            { merged_after: 2.days.ago } | lazy { compliance_violation2 }
-            it 'finds the filtered compliance violations' do
+            { merged_before: Date.current, merged_after: 2.days.ago } | lazy { compliance_violation2 }
-              expect(subject).to contain_exactly(compliance_violation)
-            end
          end
-          context 'when given merged at dates' do
+          with_them do
-            where(:merged_params, :result) do
+            let(:args) { { filters: merged_params } }
-              { merged_before: 2.days.ago } | lazy { compliance_violation }
-              { merged_after: 2.days.ago } | lazy { compliance_violation2 }
-              { merged_before: Date.current, merged_after: 2.days.ago } | lazy { compliance_violation2 }
-            end
-            with_them do
-              let(:args) { { filters: merged_params } }
-              it 'finds the filtered compliance violations' do
+            it 'finds the filtered compliance violations' do
-                expect(subject).to contain_exactly(result)
+              expect(subject).to contain_exactly(result)
-              end
            end
          end
        end
+      end
-        context 'sorting the results' do
+      context 'sorting the results' do
-          where(:direction, :result) do
+        where(:direction, :result) do
-            'SEVERITY_LEVEL_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'SEVERITY_LEVEL_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'SEVERITY_LEVEL_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'SEVERITY_LEVEL_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'VIOLATION_REASON_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'VIOLATION_REASON_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'VIOLATION_REASON_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'VIOLATION_REASON_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'MERGE_REQUEST_TITLE_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'MERGE_REQUEST_TITLE_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'MERGE_REQUEST_TITLE_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'MERGE_REQUEST_TITLE_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'MERGED_AT_ASC' | lazy { [compliance_violation, compliance_violation2] }
+          'MERGED_AT_ASC' | lazy { [compliance_violation, compliance_violation2] }
-            'MERGED_AT_DESC' | lazy { [compliance_violation2, compliance_violation] }
+          'MERGED_AT_DESC' | lazy { [compliance_violation2, compliance_violation] }
-            'UNKNOWN_SORT' | lazy { [compliance_violation, compliance_violation2] }
+          'UNKNOWN_SORT' | lazy { [compliance_violation, compliance_violation2] }
-          end
+        end
-          with_them do
+        with_them do
-            let(:args) { { sort: direction } }
+          let(:args) { { sort: direction } }
-            it 'finds the filtered compliance violations' do
+          it 'finds the filtered compliance violations' do
-              expect(subject).to match_array(result)
+            expect(subject).to match_array(result)
-            end
          end
        end
      end

--- a/ee/spec/requests/api/graphql/compliance_management/merge_requests/compliance_violations_spec.rb
+++ b/ee/spec/requests/api/graphql/compliance_management/merge_requests/compliance_violations_spec.rb
@@ -70,88 +70,70 @@ RSpec.describe 'getting the compliance violations for a group' do
    merge_request2.metrics.update!(merged_at: 1.day.ago)
  end
-  context 'when feature is disabled' do
+  context 'when the user is unauthorized' do
-    before do
+    it 'returns nil' do
-      stub_feature_flags(compliance_violations_graphql_type: false)
-    end
-    it 'returns empty' do
      post_graphql(query, current_user: current_user)
-      expect(compliance_violations).to be_empty
+      expect(compliance_violations).to be_nil
    end
  end
-  context 'when feature is enabled' do
+  context 'when the user is authorized' do
    before do
-      stub_feature_flags(compliance_violations_graphql_type: true)
+      group.add_owner(current_user)
    end
-    context 'when the user is unauthorized' do
+    context 'without any filters or sorting' do
-      it 'returns empty' do
+      it 'finds all the compliance violations' do
        post_graphql(query, current_user: current_user)
-        expect(compliance_violations).to be_empty
+        expect(compliance_violations).to contain_exactly(violation_output, violation2_output)
      end
    end
-    context 'when the user is authorized' do
+    context 'filtering the results' do
-      before do
+      context 'when given an array of project IDs' do
-        group.add_owner(current_user)
-      end
-      context 'without any filters or sorting' do
        it 'finds all the compliance violations' do
-          post_graphql(query, current_user: current_user)
+          post_graphql(query({ filters: { projectIds: [project.to_global_id.to_s] } }), current_user: current_user)
-          expect(compliance_violations).to contain_exactly(violation_output, violation2_output)
+          expect(compliance_violations).to contain_exactly(violation_output)
        end
      end
-      context 'filtering the results' do
+      context 'when given merged at dates' do
-        context 'when given an array of project IDs' do
+        where(:merged_params, :result) do
-          it 'finds all the compliance violations' do
+          { 'mergedBefore' => 2.days.ago.to_date.iso8601 } | lazy { violation_output }
-            post_graphql(query({ filters: { projectIds: [project.to_global_id.to_s] } }), current_user: current_user)
+          { 'mergedAfter' => 2.days.ago.to_date.iso8601 } | lazy { violation2_output }
+          { 'mergedBefore' => Date.current.iso8601, 'mergedAfter' => 2.days.ago.to_date.iso8601 } | lazy { violation2_output }
-            expect(compliance_violations).to contain_exactly(violation_output)
-          end
        end
-        context 'when given merged at dates' do
+        with_them do
-          where(:merged_params, :result) do
+          it 'finds all the compliance violations' do
-            { 'mergedBefore' => 2.days.ago.to_date.iso8601 } | lazy { violation_output }
+            post_graphql(query({ filters: merged_params }), current_user: current_user)
-            { 'mergedAfter' => 2.days.ago.to_date.iso8601 } | lazy { violation2_output }
-            { 'mergedBefore' => Date.current.iso8601, 'mergedAfter' => 2.days.ago.to_date.iso8601 } | lazy { violation2_output }
-          end
-          with_them do
-            it 'finds all the compliance violations' do
-              post_graphql(query({ filters: merged_params }), current_user: current_user)
-              expect(compliance_violations).to contain_exactly(result)
+            expect(compliance_violations).to contain_exactly(result)
-            end
          end
        end
      end
+    end
-      context 'sorting the results' do
+    context 'sorting the results' do
-        where(:direction, :result) do
+      where(:direction, :result) do
-          :SEVERITY_LEVEL_ASC | lazy { [violation_output, violation2_output] }
+        :SEVERITY_LEVEL_ASC | lazy { [violation_output, violation2_output] }
-          :SEVERITY_LEVEL_DESC | lazy { [violation2_output, violation_output] }
+        :SEVERITY_LEVEL_DESC | lazy { [violation2_output, violation_output] }
-          :VIOLATION_REASON_ASC | lazy { [violation_output, violation2_output] }
+        :VIOLATION_REASON_ASC | lazy { [violation_output, violation2_output] }
-          :VIOLATION_REASON_DESC | lazy { [violation2_output, violation_output] }
+        :VIOLATION_REASON_DESC | lazy { [violation2_output, violation_output] }
-          :MERGE_REQUEST_TITLE_ASC | lazy { [violation_output, violation2_output] }
+        :MERGE_REQUEST_TITLE_ASC | lazy { [violation_output, violation2_output] }
-          :MERGE_REQUEST_TITLE_DESC | lazy { [violation2_output, violation_output] }
+        :MERGE_REQUEST_TITLE_DESC | lazy { [violation2_output, violation_output] }
-          :MERGED_AT_ASC | lazy { [violation_output, violation2_output] }
+        :MERGED_AT_ASC | lazy { [violation_output, violation2_output] }
-          :MERGED_AT_DESC | lazy { [violation2_output, violation_output] }
+        :MERGED_AT_DESC | lazy { [violation2_output, violation_output] }
-        end
+      end
-        with_them do
+      with_them do
-          it 'finds all the compliance violations' do
+        it 'finds all the compliance violations' do
-            post_graphql(query({ sort: direction }), current_user: current_user)
+          post_graphql(query({ sort: direction }), current_user: current_user)
-            expect(compliance_violations).to match_array(result)
+          expect(compliance_violations).to match_array(result)
-          end
        end
      end
    end

--- a/ee/spec/services/compliance_management/merge_requests/create_compliance_violations_service_spec.rb
+++ b/ee/spec/services/compliance_management/merge_requests/create_compliance_violations_service_spec.rb
@@ -26,17 +26,8 @@ RSpec.describe ComplianceManagement::MergeRequests::CreateComplianceViolationsSe
    it_behaves_like 'does not call process_merge_request'
  end
-  context 'when the compliance violations graphql type is disabled' do
+  context 'when the compliance report feature is enabled' do
    before do
-      stub_feature_flags(compliance_violations_graphql_type: false)
-    end
-    it_behaves_like 'does not call process_merge_request'
-  end
-  context 'when the compliance violations graphql type is enabled' do
-    before do
-      stub_feature_flags(compliance_violations_graphql_type: true)
      stub_licensed_features(group_level_compliance_dashboard: true)
    end

--- a/ee/spec/services/ee/merge_requests/post_merge_service_spec.rb
+++ b/ee/spec/services/ee/merge_requests/post_merge_service_spec.rb
@@ -41,17 +41,8 @@ RSpec.describe MergeRequests::PostMergeService do
        it_behaves_like 'does not call the compliance violations worker'
      end
-      context 'when the compliance violations graphql type is disabled' do
+      context 'when the compliance report feature is licensed' do
        before do
-          stub_feature_flags(compliance_violations_graphql_type: false)
-        end
-        it_behaves_like 'does not call the compliance violations worker'
-      end
-      context 'when the compliance violations graphql type is enabled' do
-        before do
-          stub_feature_flags(compliance_violations_graphql_type: true)
          stub_licensed_features(group_level_compliance_dashboard: true)
        end

--- a/spec/requests/api/graphql/group_query_spec.rb
+++ b/spec/requests/api/graphql/group_query_spec.rb
@@ -20,8 +20,6 @@ RSpec.describe 'getting group information' do
      fields = all_graphql_fields_for('Group')
      # TODO: Set required timelogs args elsewhere https://gitlab.com/gitlab-org/gitlab/-/issues/325499
      fields.selection['timelogs(startDate: "2021-03-01" endDate: "2021-03-30")'] = fields.selection.delete('timelogs')
-      # TODO: Remove when `compliance_violations_graphql_type` feature flag is removed in https://gitlab.com/gitlab-org/gitlab/-/issues/350249
-      fields.selection.delete('mergeRequestViolations')
      graphql_query_for(
        'group',