Skip to content

G
gitlab-ce
Commit bbcc3fcc authored by Robert Hunt's avatar Robert Hunt
Browse files
Options

Fix :admin_compliance_framework to only be true if the user is an owner 

The documentation states that only owners can set a projects compliance
framework. This was erroneously changed to maintainers when removing the
custom compliance frameworks feature flag

Changelog: fixed
MR: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/66745
EE: true
parent b61000b6
Hide whitespace changes
Inline Side-by-side
Showing with 2 additions and 2 deletions
ee/app/policies/ee/project_policy.rb
View file @ bbcc3fcc
......@@ -373,7 +373,7 @@ module EE
rule { quality_management_available & can?(:reporter_access) & can?(:create_issue) }.enable :create_test_case
rule { compliance_framework_available & can?(:maintainer_access) }.enable :admin_compliance_framework
rule { compliance_framework_available & can?(:owner_access) }.enable :admin_compliance_framework
rule { status_page_available & can?(:owner_access) }.enable :mark_issue_for_publication
rule { status_page_available & can?(:developer_access) }.enable :publish_status_page
......
ee/spec/policies/project_policy_spec.rb
View file @ bbcc3fcc
......@@ -1476,7 +1476,7 @@ RSpec.describe ProjectPolicy do
:reporter | true | nil | false
:developer | false | nil | false
:maintainer | false | nil | false
:maintainer | true | nil | true
:maintainer | true | nil | false
:owner | false | nil | false
:owner | true | nil | true
:admin | false | false | false
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7