Global push rules that apply to all projects
Implement global push rules that apply to all projects
Larger customers often have policies that are enforced with push rules and that apply to their entire server. Push rules are implemented at the admin permission level such that they are used as a template copied into each project as it is created. This does not prevent the owner of a project from modifying whatever templated defaults were applied.
For example, if a policy concerning maximum file size or prohibited filenames were implemented at the admin level, nothing would prevent the administrator of a project from modifying these either by accident or by design.
Further details
It appears that the some push rules are enforced if set by the admin (non-admins cannot override if enabled):
- Committer restriction
- Reject unsigned commits push rules
All other push rules can be bypassed
Proposal
Provide a way to enforce global push rules that are set at the admin level of the server across all projects.
There are other topics that this idea can apply to. These include issue and merge request templates.
As this is appropriate for larger customers, this is proposed as an EE Premium feature.