Skip to content

GitLab Next

    • GitLab: the DevOps platform
    • Explore GitLab
    • Install GitLab
    • How GitLab compares
    • Get started
    • GitLab docs
    • GitLab Learn
  • Pricing
  • Talk to an expert
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
    • Menu
    Projects Groups Snippets
  • Sign up now
  • Login
  • Sign in / Register
  • GitLab GitLab
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 43,113
    • Issues 43,113
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 1,372
    • Merge requests 1,372
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages & Registries
    • Packages & Registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar

GitLab 15.0 has launched! Please visit Breaking changes in 15.0 and 15.0 Removals to see which breaking changes may impact your workflow.

  • GitLab.org
  • GitLabGitLab
  • Issues
  • #32095
Closed
Open
Created Sep 16, 2019 by David Kloc@dtkloc0 of 1 task completed0/1 task

Allow administrators to force access control for gitlab pages (disable public pages)

Problem to solve

Currently Gitlab pages with access control enabled does not allow for the administrator to disable public access to pages and it is up to the owner of the repository can make the pages site up with public access. This may lead to sensitive information being leaked out due to user error. Opened support ticket #25 (closed)

Intended users

  • All Pages Users

Proposal

Add the ability to configure pages access across the application overriding / disabling repository owners from making the pages publicly accessible

  • This will be achieved by adding a checkbox into the admin panel

Permissions and Security

Allow administrators to set the level of public access for pages across the application.

Documentation

  • Pages Administration Docs

Testing

  • This change will not update all the config.json files on the disc. But we can ignore this problem for now, and once we will finish refactoring it will go away automatically.

What is the type of buyer?

  • Community Edition
Edited Dec 18, 2019 by Vladimir Shushlin
Assignee
Assign to
Time tracking