Skip to content

GitLab Next

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
GitLab
GitLab
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 36,991
    • Issues 36,991
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
    • Iterations
  • Merge requests 1,425
    • Merge requests 1,425
  • Requirements
    • Requirements
    • List
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Operations
    • Operations
    • Metrics
    • Incidents
    • Environments
  • Packages & Registries
    • Packages & Registries
    • Container Registry
  • Analytics
    • Analytics
    • CI/CD
    • Code Review
    • Insights
    • Issue
    • Repository
    • Value Stream
  • Snippets
    • Snippets
  • Members
    • Members
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • GitLab.org
  • GitLabGitLab
  • Issues
  • #32095

Closed
Open
Created Sep 16, 2019 by David Kloc@dtkloc0 of 1 task completed0/1 task

Allow administrators to force access control for gitlab pages (disable public pages)

Problem to solve

Currently Gitlab pages with access control enabled does not allow for the administrator to disable public access to pages and it is up to the owner of the repository can make the pages site up with public access. This may lead to sensitive information being leaked out due to user error. Opened support ticket #25 (closed)

Intended users

  • All Pages Users

Proposal

Add the ability to configure pages access across the application overriding / disabling repository owners from making the pages publicly accessible

  • This will be achieved by adding a checkbox into the admin panel

Permissions and Security

Allow administrators to set the level of public access for pages across the application.

Documentation

  • Pages Administration Docs

Testing

  • This change will not update all the config.json files on the disc. But we can ignore this problem for now, and once we will finish refactoring it will go away automatically.

What is the type of buyer?

  • Community Edition
Edited Dec 18, 2019 by Vladimir Shushlin
Assignee
Assign to
12.7
Milestone
12.7 (Past due)
Assign milestone
Time tracking