Removed group user can check confidential EPIC updates using TODOS
- As a group member (User A) add a confidential Epic as TODO
- As a group owner (User B) remove
User A
from the group
After it was removed from group User A
can review EPIC updates (label, description, etc) using the API:
curl -i -s -k -X $'GET' \
-H $'Host: gitlab.local' -H $'User-Agent: curl/7.64.1' -H $'Accept: */*' -H $'PRIVATE-TOKEN: <TOKEN>' -H $'Connection: close' \
$'http://gitlab.local/api/v4/todos'