API call `/groups/:id/projects` does not respect available parameters
Summary
According the docs I should be able to filter out various types of projects based on their visibility
.
However, when using the listed parameters I get all projects back instead regardless of specified visibility
in my request.
Steps to reproduce
I'm using a private access token.
Make an api call to get all of the projects of a group via /groups/:id/projects?private_token=[myprivatetoken]&visibility=public
Tested against an on-premise server as well as GitLab.com
Expected behavior
I expect to only get back projects that are listed as public
.
Actual behavior
I get back all projects owned by this group including ones marked public
, internal
and private
.
Relevant logs and/or screenshots
There are no reported errors in the response and return code is 200.
Output of checks
(If you are reporting a bug on GitLab.com, write: This bug happens on GitLab.com)
Tested with an on-premise server running GitLab Community Edition 8.13.5 as well as GitLab.com.
Results of GitLab environment info
System information
System: Ubuntu 14.04
Current User: git
Using RVM: no
Ruby Version: 2.3.1p112
Gem Version: 2.6.6
Bundler Version:1.13.6
Rake Version: 10.5.0
Sidekiq Version:4.2.1
GitLab information
Version: 8.13.5
Revision: 09cedb5
Directory: /opt/gitlab/embedded/service/gitlab-rails
DB Adapter: postgresql
URL: https://gitlab.mydomain.net
HTTP Clone URL: https://gitlab.mydomain.net/some-group/some-project.git
SSH Clone URL: git@gitlab.mydomain.net:some-group/some-project.git
Using LDAP: yes
Using Omniauth: no
GitLab Shell
Version: 3.6.6
Repository storage paths:
- default: /var/opt/gitlab/git-data/repositories
Hooks: /opt/gitlab/embedded/service/gitlab-shell/hooks/
Git: /opt/gitlab/embedded/bin/git
Possible fixes
(If you can, link to the line of code that might be responsible for the problem)