Merge branch '257514-doc-relocate-audit-events-menu-and-update-permission' into 'master'

Update permissions and navigation to audit events See merge request gitlab-org/gitlab!49930

Merge branch '257514-doc-relocate-audit-events-menu-and-update-permission' into 'master'
Update permissions and navigation to audit events See merge request gitlab-org/gitlab!49930
a34698cb · Mike Jang · 67eab3e5 · fab381bc · a34698cb · a34698cb
Commit a34698cb authored Dec 16, 2020 by Mike Jang
Show whitespace changes
Inline Side-by-side

Showing with 10 additions and 8 deletions

doc/administration/audit_events.md doc/administration/audit_events.md +6 -6

doc/user/permissions.md doc/user/permissions.md +4 -2

No files found.
--- a/doc/administration/audit_events.md
+++ b/doc/administration/audit_events.md
@@ -44,10 +44,10 @@ Impersonation is where an administrator uses credentials to perform an action as

 ### Group events **(STARTER)**

-NOTE:
-You need Owner [permissions](../user/permissions.md) to view the group Audit Events page.
+A user with a Owner role (or above) can retrieve group audit events of all users.
+A user with a Developer or Maintainer role is limited to group audit events based on their individual actions.

-To view a group's audit events, navigate to **Group > Settings > Audit Events**.
+To view a group's audit events, navigate to **Group > Security & Compliance > Audit Events**.
 From there, you can see the following actions:

 - Group name or path changed.
@@ -74,10 +74,10 @@ Group events can also be accessed via the [Group Audit Events API](../api/audit_

 ### Project events **(STARTER)**

-NOTE:
-You need Maintainer [permissions](../user/permissions.md) or higher to view the project Audit Events page.
+A user with a Maintainer role (or above) can retrieve project audit events of all users.
+A user with a Developer role is limited to project audit events based on their individual actions.

-To view a project's audit events, navigate to **Project > Settings > Audit Events**.
+To view a project's audit events, navigate to **Project > Security & Compliance > Audit Events**.
 From there, you can see the following actions:

 - Added or removed deploy keys

--- a/doc/user/permissions.md
+++ b/doc/user/permissions.md
@@ -167,7 +167,7 @@ The following table depicts the various user permission levels in a project.
 | Reposition comments on images (posted by any user)|✓ (*11*) | ✓ (*11*)   |  ✓ (*11*)   | ✓        | ✓      |
 | Manage Error Tracking                             |         |            |             | ✓        | ✓      |
 | Delete wiki pages                                 |         |            |             | ✓        | ✓      |
-| View project Audit Events                         |         |            |             | ✓        | ✓      |
+| View project Audit Events                         |         |            |  ✓ (*12*)   | ✓        | ✓      |
 | Manage [push rules](../push_rules/push_rules.md)  |         |            |             | ✓        | ✓      |
 | Manage [project access tokens](project/settings/project_access_tokens.md) **(CORE ONLY)** |         |            |             | ✓        | ✓      |
 | Switch visibility level                           |         |            |             |          | ✓      |
@@ -195,6 +195,7 @@ The following table depicts the various user permission levels in a project.
   [Eligible approvers](project/merge_requests/merge_request_approvals.md#eligible-approvers).
 1. Owner permission is only available at the group or personal namespace level (and for instance admins) and is inherited by its projects.
 1. Applies only to comments on [Design Management](project/issues/design_management.md) designs.
+1. Users can only view events based on their individual actions.

 ## Project features permissions

@@ -279,7 +280,7 @@ group.
 | Delete group                                           |       |          |           |            | ✓     |
 | Delete group epic **(PREMIUM)**                       |       |          |           |            | ✓     |
 | Edit SAML SSO Billing **(SILVER ONLY)**                | ✓     | ✓        | ✓         | ✓          | ✓ (4) |
-| View group Audit Events                                |       |          |           |            | ✓     |
+| View group Audit Events                                |       |          | ✓ (7)     | ✓ (7)      | ✓     |
 | Disable notification emails                            |       |          |           |            | ✓     |
 | View Contribution analytics                            | ✓     | ✓        | ✓         | ✓          | ✓     |
 | View Insights **(ULTIMATE)**                           | ✓     | ✓        | ✓         | ✓          | ✓     |
@@ -298,6 +299,7 @@ group.
 1. Does not apply to subgroups.
 1. Developers can push commits to the default branch of a new project only if the [default branch protection](group/index.md#changing-the-default-branch-protection-of-a-group) is set to "Partially protected" or "Not protected".
 1. In addition, if your group is public or internal, all users who can see the group can also see group wiki pages.
+1. Users can only view events based on their individual actions.

 ### Subgroup permissions