Add User#full_private_access? to check if user has access to all private groups & projects (!12373) · Merge Requests · GitLab.org / GitLab FOSS

Add User#full_private_access? to check if user has access to all private groups & projects

What does this MR do?

In CE only the admin has access to all private groups & projects. In EE also an auditor can have full private access.

To overcome merge conflicts, or accidental incorrect access rights, abstract this out in User#full_private_access?.

User#admin? now only should be used for admin-only features. For private access-related features User#full_private_access? should be used.

Are there points in the code the reviewer needs to double check?

Any other situations where this method should be used?

I searched the EE codebase for the use of admin_or_auditor? and replaced those.

Why was this MR needed?

Backported from gitlab-org/gitlab-ee!2199

Does this MR meet the acceptance criteria?

Changelog entry added, if necessary
Documentation created/updated
API support added
Tests
- Added for this feature/bug
- All builds are passing
Conform by the merge request performance guides
Conform by the style guides
Branch has no merge conflicts with master (if it does - rebase it please)
Squashed related commits together

What are the relevant issue numbers?

Closes #31745 (closed).

## What does this MR do?

In CE only the admin has access to all private groups & projects. In EE also an
auditor can have full private access.

To overcome merge conflicts, or accidental incorrect access rights, abstract this out in `User#full_private_access?`.

`User#admin?` now only should be used for admin-only features. For private
access-related features `User#full_private_access?` should be used.

## Are there points in the code the reviewer needs to double check?

Any other situations where this method should be used?

I searched the EE codebase for the use of `admin_or_auditor?` and replaced those.

## Why was this MR needed?

Backported from gitlab-org/gitlab-ee!2199

## Does this MR meet the acceptance criteria?

- [x] [Changelog entry](https://docs.gitlab.com/ce/development/changelog.html) added, if necessary
- [x] [Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md)
- [x] API support added
- Tests
  - [x] Added for this feature/bug
  - [ ] All builds are passing
- [x] Conform by the [merge request performance guides](http://docs.gitlab.com/ce/development/merge_request_performance_guidelines.html)
- [x] Conform by the [style guides](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CONTRIBUTING.md#style-guides)
- [x] Branch has no merge conflicts with `master` (if it does - rebase it please)
- [x] [Squashed related commits together](https://git-scm.com/book/en/Git-Tools-Rewriting-History#Squashing-Commits)

## What are the relevant issue numbers?

Closes #31745.

Edited Jun 23, 2017 by Toon Claes