2020-04-06 - Triage report for "group::access"

Hi, @jeremy @dennis @lmcandrew @amandakhughes

This is a group or stage level triage report that aims to summarize the feature proposals and bugs which have not been scheduled or triaged. For more information please refer to the handbook:

• https://about.gitlab.com/handbook/engineering/quality/triage-operations/index.html#triage-reports

Scheduling the workload is a collaborative effort by the Product Managers and Engineering Managers for that group. Please work together to provide a best estimate on priority and milestone assignments. For each issue please:

• Determine if the issue should be closed if it is no longer relevant or a duplicate.
• If it is still relevant please assign either a best estimate versioned milestone, the %Backlog or the %Awaiting further demand milestone.
• Specifically for ~bug, if there is no priority or clarity on a versioned milestone, please add a Priority label. Priority labels have an estimate SLO attached to them and help team members and the wider community understand roughly when it will be considered to be scheduled.
  • https://docs.gitlab.com/ee/development/contributing/issue_workflow.html#priority-labels
• Once a milestone has been assigned please check off the box for that issue.
• Please work with your team to complete the list by the due date set.

Feature Proposal Section

For the following feature proposals. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone.

Unscheduled feature with customer

• #213415 (closed) SCIM should auto confirm/skip confirmation for new users ~"Category:Authentication and Authorization", customer, devopsmanage, ~"enhancement", feature, gitlab.com, ~"group::access", scim
• #213380 (closed) Add wording to make shared group max role clear ~"Category:Authentication and Authorization", UX debt, customer, devopsmanage, ~"enhancement", feature, ~"group::access"
• #212834 (closed) List shared with groups in Group API ~"Category:Authentication and Authorization", customer, devopsmanage, feature, gitlab.com, ~"group::access"
• #211962 (closed) Allow at least one group owner to bypass SSO enforce customer, devopsmanage, ~"enhancement", feature, ~"group::access", internal customer, saml
• #211952 Add ability to toggle the ldap_readonly_attributes feature customer, devopsmanage, feature, ~"group::access", ldap
• #210576 Allow admins to resynchronize state for blocked LDAP users via UI customer, devopsmanage, feature, ~"group::access", ldap
• #209898 (closed) Support admin/external/required groups for OpenID Connect Enterprise Edition, External Authorization, authentication, customer, devopsmanage, feature, ~"group::access"
• #209341 (closed) Custom Landing Page for Blocked Users ~"Category:Authentication and Authorization", Category:User Management, customer, devopsmanage, feature, ~"group::access"
• #208956 OAuth2 Group Claims ~"Category:Authentication and Authorization", customer, devopsmanage, feature, ~"group::access"
• #208361 (confidential) ~"(confidential)"
• #207371 Associate a role to a project's deploy key ~"Category:Authentication and Authorization", customer, ~"devops", devopsmanage, feature, ~"group::access"
• #205403 (closed) Group-level option to enable read-only code access to Private repos for Guest users ~"Category:Authentication and Authorization", customer, customer+, devopsmanage, feature, ~"group::access"
• #202677 Add Applications API for User applications Category:API, api, customer, devopsmanage, feature, ~"group::access", oauth
• #39123 Additional LDAP login form custmomization customer, devopsmanage, feature, ~"group::access", ldap
• #36802 Groups provisionning using SAML SSO authentication, customer, devopsmanage, ~"enhancement", feature, ~"group::access", saml
• #36676 Hide ability to invite members to groups where SSO is enforced ~"Category:Authentication and Authorization", Enterprise Edition, customer, devopsmanage, feature, gitlab.com, ~"group::access"
• #36192 Account for Okta's LDAP Interface implementation quirks customer, devopsmanage, feature, ~"group::access", ldap
• #35001 (closed) Improved Admin Dashboard with User Information ~"Category:Authentication and Authorization", customer, devopsmanage, feature, ~"group::access"
• #34262 (closed) Make syncable attributes read-only as soon as LDAP is enabled ~"Category:Authentication and Authorization", Category:User Management, backend, customer, devopsmanage, feature, ~"group::access", missed:12.6, missed:12.7, ~"on deck", planning priority, security, workflowsolution validation
• #33143 (closed) Group members domain whitelist should allow multiple domains ~"Category:Authentication and Authorization", auto updated, customer, devopsmanage, feature, ~"group::access", potential proposal
• #21862 Groups SSO SAML: Support for Duo Access Gateway customer, devopsmanage, feature, gitlab.com, ~"group::access", saml
• #30409 (closed) Allow Terms of Service to link to public repository on same GitLab Instance ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"P4", ~"S4", customer, devopsmanage, feature, ~"group::access"
• #12975 (closed) The field "Enter new password" in Service Templates pages should show asterisks in the password field ~"Category:Authentication and Authorization", Enterprise Edition, Manage [DEPRECATED], UX, customer, devopsmanage, feature, frontend, ~"group::access", settings
• #30219 Configure session timeouts with Okta SSO ~"Category:Authentication and Authorization", customer, devopsmanage, feature, ~"group::access"
• #29842 Create Alert/Notification When Username is Modified (LDAP Integration) ~"Category:Authentication and Authorization", customer, devopsmanage, feature, ~"group::access"
• #12153 (closed) ForgeRock Identity Provider - for SAML/SCIM SSO-enabled group management Enterprise Edition, Manage [DEPRECATED], authentication, customer, devopsmanage, ~"enhancement", feature, gitlab.com, ~"group::access", saml, scim
• #29426 (closed) Add API endpoint to get users without projects ~"Category:Authentication and Authorization", Manage [DEPRECATED], api, customer, devopsmanage, feature, ~"group::access"
• #29161 Add API ability to disabled shared runners ~"Category:Authentication and Authorization", Category:Runner, Manage [DEPRECATED], api, customer, devopsmanage, feature, gitlab.com, ~"group::access", movingtogitlab
• #29110 Incoming connections for user auth ~"Category:Authentication and Authorization", Manage [DEPRECATED], customer, devopsmanage, feature, ~"group::access"
• #11854 Allow Group SAML sign in from main sign in page Enterprise Edition, UX, authentication, customer, devopsmanage, feature, gitlab.com, ~"group::access", saml

---

Unscheduled feature (non-customer)

• #213000 Validate LDAP attribute configuration ~"Category:Authentication and Authorization", ~"P4", ~"S4", devopsmanage, feature, ~"group::access", ldap
• #211803 (closed) Prioritize adding members to sub-groups / projects based on users in parent-groups ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #209975 (closed) OpenID Connect claim for group with membership level ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #209932 [Feature request] Connect multiple social sign-ins of the same type ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #209274 (closed) Add an API call to identify a username related to the personal or impersonation token ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #208699 (closed) Zapier integration - Add basic Auth login ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #208299 (confidential) ~"(confidential)"
• #208236 (closed) Alert for remove project owner ~"Category:Authentication and Authorization", Category:User Management, devopsmanage, feature, ~"group::access"
• #208130 Email notification about login email changed is not received when using verified linked email address ~"Category:Authentication and Authorization", HackerOne, devopsmanage, feature, ~"group::access"
• #207903 Provide one time tokens for HTTPS clones when 2FA is enabled authentication, devopsmanage, feature, ~"group::access", personal access tokens
• #207792 Make it possible to setup multiple 2FA apps 2FA, authentication, devopsmanage, feature, ~"group::access"
• #207562 (closed) 2FA: Proposal - Use inputmode=numeric on OTP input fields 2FA, authentication, devopsmanage, feature, frontend, ~"group::access", security
• #207264 Scoping CODEOWNERS to a set of branches ~"Category:Authentication and Authorization", Category:Source Code Management, devopsmanage, ~"enhancement", feature, ~"group::access"
• #207262 (closed) Allow forking to namespaces where Developers/Maintainers are allowed to create projects ~"Category:Authentication and Authorization", backend, devopsmanage, feature, ~"group::access"
• #207193 (closed) adding web_hooks reset proceure to backing up and restoring page ~"Accepting merge requests", ~"Category:Authentication and Authorization", Category:Backup/Restore of GitLab instances, devopsmanage, docs-only, feature, ~"group::access"
• #205492 (closed) UX issue with "ensure recovery settings are up to date" message 2FA, UX, devopsmanage, feature, ~"group::access"
• #205147 (closed) No way to actually test a webhook ~"Category:Authentication and Authorization", api, devopsmanage, feature, ~"group::access", ~"webhooks"
• #204763 API Feature: List group projects with authenticated user permissions ~"Category:Authentication and Authorization", api, devopsmanage, feature, ~"group::access", permissions
• #202644 API - Allow to search projects by membership level ~"Category:Authentication and Authorization", api, devopsmanage, feature, ~"group::access"
• #201790 (closed) Automaticlly remove unconfirmed accounts ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access", spam fighting
• #201788 Self-hosted alternative to Recaptcha ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access", spam fighting
• #198662 (closed) Support a read-only scope for API access for OAuth applications ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #198634 (closed) Unique login-URLs (browser shortcuts) for people with multiple accounts ~"Category:Authentication and Authorization", ~"devops", devopsmanage, feature, ~"group::access"
• #198054 Docs feedback: More detail in the GitLab DocsGitLab integrationsSAML OmniAuth Provider ~"Category:Authentication and Authorization", authentication, devopsmanage, documentation, feature, ~"group::access", saml
• #196248 (closed) Simplify Projects page by seperating All and Personal section ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #196244 (closed) Set up a properly capitalized label for Microsoft OAuth2 ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"
• #121595 Include fork information in GraphQL Repository response ~"Category:Authentication and Authorization", GraphQL, devopsmanage, feature, forking, ~"group::access", project
• #118873 Allow reporters to create projects in a group ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access", permissions
• #39482 (closed) Add avatar to Ghost user ~"Category:Authentication and Authorization", component:avatar, devopsmanage, feature, ~"group::access"
• #39463 (closed) Allow 'Guest' role to read and pull from private repositories ~"Category:Authentication and Authorization", devopsmanage, feature, ~"group::access"

---

Unscheduled UX Debt Issues

• #213380 (closed) Add wording to make shared group max role clear ~"Category:Authentication and Authorization", UX debt, customer, devopsmanage, ~"enhancement", feature, ~"group::access"
• #29200 (closed) Follow-up from "Fix alignment of resend button in members page" ~"Category:Authentication and Authorization", Manage [DEPRECATED], UX debt, devopsmanage, frontend, ~"group::access"
• #20456 Better Feedback For 2 Factor Auth With HTTP 2FA, UX debt, devopsmanage, ~"group::access"

---

Bug Section

For the following bugs. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone and ensure that a priority label is set.

Heatmap for all bugs

Bugs for their priority and severity label are counted here. Every bug should have severity and priority labels applied. Please take a look at the bugs which fall into the columns indicating that the priority or severity labels are currently missing.

	~S1	~S2	~S3	~S4	No severity
~P1	1	1	0	0	0
~P2	2	6	0	0	2
~P3	0	2	46	5	3
~P4	0	2	37	25	0
No priority	0	12	50	44	112

---

Unscheduled frontend ~bug with customer

• #205513 (closed) Create subgroup button missing ~"Category:Authentication and Authorization", ~"bug", customer, devopsmanage, frontend, ~"group::access", reproduced on GitLab.com
• #29126 (closed) Enabled OAuth sign-in sources has confusing UI for disabling / enabling Omniauth providers ~"Category:Authentication and Authorization", Manage [DEPRECATED], UX, ~"bug", customer, devopsmanage, frontend, ~"group::access"

---

Unscheduled frontend ~bug (non-customer)

• #202300 (closed) SAML SSO config toggle buttons change state on navigating to the Settings page ~"S3", ~"bug", devopsmanage, frontend, ~"group::access", saml
• #38355 (closed) User popovers don't work in system notes ~"Category:Authentication and Authorization", ~"S4", ~"bug", devopsmanage, frontend, ~"group::access"
• #35125 (closed) Extra trailing %hr when using LDAP without smartcard ~"bug", devopsmanage, frontend, ~"group::access", ldap
• #34961 (closed) Autofocus authentication-code field during login ~"Category:Authentication and Authorization", ~"S4", ~"bug", devopsmanage, frontend, ~"group::access"
• #30561 (closed) Avatar/profile picture position of assignee on issue creation ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S4", ~"bug", devopsmanage, frontend, ~"group::access"
• #30169 (closed) Avatar consistency ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S4", UI polish, ~"bug", devopsmanage, frontend, ~"group::access"
• #30090 (closed) Description in Group's projects list is overflown ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S4", UX, ~"bug", devopsmanage, frontend, ~"group::access"
• #12640 (closed) Externalized string using namespaces in new user form in admin area is missing required prefix ~"Category:Authentication and Authorization", Enterprise Edition, Manage [DEPRECATED], UI polish, ~"bug", devopsmanage, frontend, ~"group::access"
• #29511 (closed) On new project, modifying project name field updates project slug even if slug is customized ~"Category:Authentication and Authorization", Manage [DEPRECATED], UX, ~"bug", devopsmanage, frontend, ~"group::access", project, reproduced on GitLab.com, settings
• #29187 (closed) Filter by author is not working when you change a search or sorting filter in Todos ~"Category:Authentication and Authorization", Manage [DEPRECATED], UX, ~"bug", devopsmanage, frontend, ~"group::access", todos
• #28884 (closed) Large Branch name breaks UI in the settings page ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S4", UI polish, ~"bug", devopsmanage, frontend, ~"group::access"
• #28875 (closed) Project Icons are not displaying for some projects in explore page ~"Category:Authentication and Authorization", Manage [DEPRECATED], awaiting feedback, ~"bug", devopsmanage, frontend, ~"group::access"
• #28874 (closed) Long Branch name breaks profile page activity design ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S4", UI polish, ~"bug", devopsmanage, frontend, ~"group::access"
• #28808 (closed) Important parts of the top nav truncated on mobile Safari ~"Category:Authentication and Authorization", Manage [DEPRECATED], UX, ~"bug", devopsmanage, frontend, ~"group::access"
• #26855 (closed) Impersonation dropdown style is broken ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"P4", ~"S4", UX, admin dashboard, ~"bug", devopsmanage, frontend, global nav, ~"group::access", workflowverification
• #9196 (closed) License button is misaligned ~"Category:Authentication and Authorization", Enterprise Edition, Manage [DEPRECATED], ~"P4", ~"S4", admin dashboard, ~"bug", devopsmanage, frontend, ~"group::access"
• #24451 (closed) Settings are not auto-expanded in GitLab 11.0+ when searching over them with Ctrl+F ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"P4", ~"S3", admin dashboard, ~"bug", devopsmanage, frontend, ~"group::access", regression, regression:11.0, settings
• #22965 (closed) Permissions don't cascade from subgroup to private repo ~"Category:Authentication and Authorization", UX, ~"bug", customer+, devopsmanage, frontend, ~"group::access", workflowplanning breakdown
• #22868 (closed) Alignment of 'Remove' button in Broadcast Messages (Admin Area) seems not okay ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"P4", ~"S4", admin dashboard, ~"bug", devopsmanage, frontend, ~"group::access"
• #5623 (closed) LDAP user filter not being displayed in full on admin setting and members UI pages Enterprise Edition, Manage [DEPRECATED], ~"P4", ~"S4", ~"bug", customer+, devopsmanage, frontend, ~"group::access", ldap
• #17262 (closed) Unable to Disable GitLab Appearance Customization ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"P4", ~"S2", admin dashboard, ~"bug", default-priority, devopsmanage, frontend, ~"group::access", settings

---

Unscheduled ~bug with customer

• #212733 (closed) Documented Azure SCIM Attribute Mapping no longer works ~"Category:Authentication and Authorization", ~"P1", ~"S2", ~"bug", customer, devopsmanage, docs-only, docsfix, documentation, ~"group::access", scim
• #211312 (closed) Shared group are not shown in members page of subgroup and projects ~"Category:Authentication and Authorization", ~"bug", customer, devopsmanage, gitlab.com, ~"group::access"
• #209047 (closed) When LDAP doesn't supply email address the user is no longer allowed to set it in the UI UI component, ~"bug", customer, devopsmanage, ~"group::access", ldap, regression, regression:12.8, user settings
• #208970 (closed) Group share project accessibility issue ~"Category:Authentication and Authorization", ~"bug", customer, devopsmanage, ~"group::access", reproduced on GitLab.com, subgroups
• #207548 (closed) License isn't consumed immediately when new Admin account logs in via LDAP Category:User Management, Enterprise Edition, ~"bug", customer, devopsmanage, ~"group::access", ldap
• #204762 (closed) 12.7.5-ee upgrade causes emails sent to the users with the "Never Expire" PAT's ~"Category:Authentication and Authorization", ~"S2", ~"bug", customer, devopsmanage, ~"group::access"
• #199363 (closed) SAML Response with UTF-8 encoded characters not supported ~"bug", customer, devopsmanage, ~"group::access", saml
• #197659 OpenSSL Cipher Recaptcha error on login page ~"Category:Authentication and Authorization", ~"S3", ~"bug", customer, devopsmanage, ~"group::access"
• #196131 (closed) SAML - bypass 2 factor authentication - don't require GitLab 2FA to exist ~"P4", ~"S4", ~"bug", customer, devopsmanage, ~"group::access", saml
• #195963 (closed) Guest user cannot see code in 'internal' project ~"Category:Authentication and Authorization", ~"bug", customer, devopsmanage, ~"group::access"
• #195161 LDAP subgroup sync fails when user-to-be-synced has requested (but not received) higher permissions in parent group ~"S3", ~"bug", customer, devopsmanage, ~"group::access", ldap
• #39520 (closed) Group Search doesn't work as described in the https://docs.gitlab.com/ee/user/search/#groups ~"Category:Authentication and Authorization", Category:Global Search, ~"bug", customer, devopsmanage, ~"group::access"
• #36671 (confidential) ~"(confidential)"
• #36077 (closed) Regular user access tokens unable to see external accounts ~"Category:Authentication and Authorization", api, ~"bug", customer, devopsmanage, ~"group::access"
• #34411 (closed) admins get misleading error message while creating a project when project limit is reached ~"Category:Authentication and Authorization", ~"S4", ~"bug", customer, devopsmanage, ~"group::access"
• #33046 (closed) "Namespace is not valid" error when trying to create a project through the admin area ~"Category:Authentication and Authorization", ~"S4", ~"bug", customer, devopsmanage, ~"group::access"
• #32346 Group still visible even with IP restriction ~"Category:Authentication and Authorization", ~"P2", ~"S1", ~"bug", customer, devopsmanage, ~"group::access", ~"missed-SLO"
• #14731 (closed) Auditor users cannot access public and internal projects when files access is limited to project members ~"Category:Authentication and Authorization", ~"bug", customer, devopsmanage, ~"group::access", permissions
• #30369 (closed) 500 Internal Server Error: GET https://gitlab.com/api/v4/groups/group_id ~"Category:Authentication and Authorization", Manage [DEPRECATED], api, ~"bug", customer, devopsmanage, ~"group::access"
• #30278 (closed) Unblocked users cannot see group projects added while they are blocked ~"Category:Authentication and Authorization", ~"S4", ~"bug", customer, devopsmanage, ~"group::access"
• #12856 Membership requests are taken into account for access level validation Enterprise Edition, Manage [DEPRECATED], ~"S3", ~"bug", customer, devopsmanage, ~"group::access", ldap
• #12178 (closed) Omniauth 500 when blocking new users Enterprise Edition, Manage [DEPRECATED], authentication, ~"bug", customer, devopsmanage, ~"group::access", oauth, saml
• #29447 (closed) ActiveRecord::StatementInvalid: PG::QueryCanceled: ERROR: canceling statement due to statement timeout ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access", reproduced on GitLab.com
• #29285 Inconsistent 2FA enforcement for subgroups ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access"
• #29279 (closed) Improve the Login Experience for an Unverified User ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access", reproduced on GitLab.com
• #28978 (closed) Download a release asset from GitLab via curl redirects to login page ~"Category:Authentication and Authorization", Manage [DEPRECATED], ~"S3", ~"bug", customer, devopsmanage, ~"group::access"
• #11444 Users with developer access cannot access custom group-level project templates ~"Category:Authentication and Authorization", Enterprise Edition, Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access"
• #207180 (closed) GitLab Grafana OAuth redirection Manage [DEPRECATED], authentication, ~"bug", customer, devopsmanage, ~"group::access", oauth
• #11320 (closed) 500 Internal Server Error ActionView::Template::Error PG::NotNullViolation: ERROR ~"Category:Authentication and Authorization", Enterprise Edition, Manage [DEPRECATED], ~"S2", ~"bug", customer, database, devopsmanage, ~"group::access", personal access tokens
• #26682 (confidential) ~"(confidential)"

---

Unscheduled ~bug (non-customer)

• #213227 (closed) SAML 500 error when XML response is missing AttributeStatement ~"bug", devopsmanage, ~"group::access", saml
• #212999 (closed) New users can't complete profile ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #212977 (confidential) ~"(confidential)"
• #212505 (closed) Signed in user asked to re-login post SSO authorization ~"Category:Authentication and Authorization", backend, ~"bug", devopsmanage, ~"group::access"
• #212434 (closed) Admin mode does not work with LDAP authentication ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access"
• #211822 (closed) Listing of shared projects / groups should be paginated ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access", ~"performance"
• #211769 (closed) Aborting 2FA when Azure AD SSO is enabled never returns to 2FA page ~"S2", ~"bug", devopsmanage, ~"group::access", saml
• #210516 (closed) New repositories from shared groups not visible ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access"
• #210494 (closed) Docs - product feedback: /keys endpoint should list all keys Category:API, ~"Category:Authentication and Authorization", api, ~"bug", ~"devops::configure", documentation, ~"group::access"
• #210000 (closed) about using omniauth crowd ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access"
• #209667 (closed) LDAP User / Local User Assignment does not work when the LDAP User has multiple E-Mail addresses ~"Category:Authentication and Authorization", authentication, ~"bug", devopsmanage, ~"group::access", ldap
• #208953 (closed) 400 Bad request when trying to get token ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #208522 (closed) Maintainer getting "401 Unauthorized" error ~"Category:Authentication and Authorization", ~"S4", ~"bug", devopsmanage, ~"group::access"
• #207991 (closed) Opening the notifications settings page with a large amount of groups (1246 groups) causes unusability ~"Category:Authentication and Authorization", Quality, ~"S4", ~"bug", devopsmanage, ~"group::access", ~"performance", reproduced on GitLab.com
• #207818 (closed) Cannot update external flag and can_create_group at once ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #207795 (closed) Every browser close clearing GitLab session on Android authentication, ~"bug", devopsmanage, ~"group::access"
• #207624 Cannot add SSH key (Fingerprint has already been taken) even though none a registered ~"S4", authentication, ~"bug", devopsmanage, ~"group::access"
• #207555 Group Membership Permission Changes not taking Effect ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #207354 (closed) uploading user avatar recieve error 411 ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #205902 (closed) Hide "Initialize repository with a README" when permissions aren't sufficient ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access", permissions
• #205645 (closed) After removing the project history of contributions looks corrupted and inconsistent ~"Category:Authentication and Authorization", ~"S4", ~"bug", devopsmanage, ~"group::access"
• #204906 (closed) Filtered users get "Invalid credentials" message even if its the filter that let them out ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #204784 (closed) No longer able to (as administrator) update email address for users or create an 'already validated' user ~"Category:Authentication and Authorization", ~"S4", ~"bug", devopsmanage, ~"group::access"
• #204744 (closed) Group SAML Enforce SSO not enabled after navigating back to Group Settings page. ~"S3", ~"bug", devopsmanage, ~"group::access", saml
• #202366 (closed) Can't pull LDAP groups from AD (search error: Referral) ~"Category:Authentication and Authorization", ~"S3", ~"bug", devopsmanage, ~"group::access"
• #202291 (closed) Sign out link broken on 404 page ~"S3", authentication, ~"bug", devopsmanage, ~"group::access"
• #201878 (closed) Group access to other group ~"Category:Authentication and Authorization", ~"bug", devopsmanage, ~"group::access"
• #201868 (closed) Handle 422 ActionController::InvalidAuthenticityToken error more gracefully ~"UX Bug", authentication, ~"bug", devopsmanage, ~"group::access"
• #200058 (closed) Docs - product feedback: can't delete account authentication, ~"bug", devopsmanage, documentation, ~"group::access"
• #199808 (closed) Gitlab as openidc provider for AWS Cognito ~"S4", authentication, aws, ~"bug", devopsmanage, ~"group::access"

---

Heatmap for ~missed-SLO bugs

	~S1	~S2	~S3	~S4
~P1	1	0	0	0
~P2	1	5	0	0
~P3	0	0	0	0
~P4	1	0	0	0

---

---

This is a group level triage report that aims to collate the latest bug reports (for frontend and otherwise) and feature proposals. For more information please refer to the handbook:

• https://about.gitlab.com/handbook/engineering/quality/triage-operations/index.html#triage-reports

---

If assignees or people mentioned in this individual triage report need to be amended, please edit team-summary.yml.

changed due date to April 13, 2020

added groupauthentication and authorization [DEPRECATED] triage report labels

mentioned in issue #212802 (closed)

closed

added auto closed label