2019-11-25 - Triage report for "group::access"
Hi, @jeremy @dennis @lmcandrew
This is a group or stage level triage package that aims to summarize the feature proposals and bugs which have not been scheduled or triaged. For more information please refer to the handbook:
Scheduling the workload is a collaborative effort by the Product Managers and Engineering Managers for that group. Please work together to provide a best estimate on priority and milestone assignments. For each issue please:
- Determine if the issue should be closed if it is no longer relevant or a duplicate.
- If it is still relevant please assign either a best estimate versioned milestone, the %Backlog or the %Awaiting further demand milestone.
- Specifically for ~bug, if there is no priority or clarity on a versioned milestone, please add a Priority label. Priority labels have an estimate SLO attached to them and help team members and the wider community understand roughly when it will be considered to be scheduled.
- Once a milestone has been assigned please check off the box for that issue.
- Please work with your team to complete the list by the due date set.
Feature Proposal Section
For the following feature proposals. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone.
Unscheduled feature with customer
-
#36676 Hide ability to invite members to groups where SSO is enforced Enterprise Edition, customer, devopsmanage, feature, gitlab.com, ~"group::access" -
#36192 Account for Okta's LDAP Interface implementation quirks customer, devopsmanage, feature, ~"group::access", ldap -
#35001 (closed) Improved Admin Dashboard with User Information customer, devopsmanage, feature, ~"group::access" -
#33143 (closed) Group members domain whitelist should allow multiple domains auto updated, customer, devopsmanage, feature, ~"group::access", potential proposal -
#21862 Groups SSO SAML: Support for Duo Access Gateway customer, devopsmanage, feature, gitlab.com, ~"group::access", saml -
#14729 (closed) Group Deploy Tokens/Keys Enterprise Edition, customer, devopsmanage, feature, ~"group::access", settings -
#31104 Allow for overriding the "Restricted visibility levels" at the group layer ~"Category:Groups", ~"S3", ~"bug", customer, devopsmanage, feature, ~"group::access", project creation -
#13679 (closed) Add GET endpoint to LDAP group link API ~"Category:Groups", api, customer, devopsmanage, feature, ~"group::access", ldap -
#30857 (closed) Audit logs for CI / CD variables Category:Audit Management, Manage [DEPRECATED], customer, devopsmanage, ~"enhancement", feature, ~"group::access" -
#30409 (closed) Allow Terms of Service to link to public repository on same GitLab Instance Manage [DEPRECATED], ~"P4", ~"S4", customer, devopsmanage, feature, ~"group::access" -
#30343 (closed) Disable option to upload ssh keys by users in their profile Manage [DEPRECATED], customer, devopsmanage, feature, ~"group::access", ~"user management", user profile -
#12975 (closed) The field "Enter new password" in Service Templates pages should show asterisks in the password field Enterprise Edition, Manage [DEPRECATED], UX, customer, devopsmanage, feature, frontend, ~"group::access", settings -
#30219 Configure session timeouts with Okta SSO customer, devopsmanage, feature, ~"group::access" -
#30094 (closed) Get list of runners associated with specific group ~"Category:Groups", Manage [DEPRECATED], api, customer, customer+, devopsmanage, feature, ~"group::access" -
#29842 Create Alert/Notification When Username is Modified (LDAP Integration) customer, devopsmanage, feature, ~"group::access"
Unscheduled feature (non-customer)
-
#37016 (closed) Reduce config.max_attemptsfor devise logins to 6 devopsmanage, feature, ~"group::access" -
#36872 (closed) Add admin mode endpoints to rack-attack devopsmanage, feature, ~"group::access" -
#36802 Groups provisionning using SAML SSO authentication, devopsmanage, feature, ~"group::access", saml -
#36750 (closed) Add "Is using license seat:" to Users API api, devopsmanage, feature, ~"group::access", ~"user management" -
#36681 (closed) No way to add group avatar using api ~"Accepting merge requests", api, devopsmanage, feature, ~"group::access" -
#36641 (closed) Inherited group members to access shared group backend, devopsmanage, feature, ~"group::access" -
#36151 (closed) Add "show all" button to groups page ~"Category:Groups", devopsmanage, feature, frontend, ~"group::access" -
#36025 (closed) Code Owners as eligible approvers: should Developers be able to approve by default? approvals, devopsmanage, feature, ~"group::access", merge requests -
#35417 As an administrator, I cannot see that a user has been locked for using too many IPs devopsmanage, feature, ~"group::access" -
#35407 Add role with delete issues permission, but less powerful to remove the project. devopsmanage, feature, ~"group::access", permissions -
#35348 (closed) [2FA] Add troubleshoot info when invalid pin codeerror occurs devopsmanage, feature, ~"group::access" -
#35141 (closed) Support multi tabs post-login redirect devopsmanage, feature, ~"group::access" -
#34255 Federated Identity devopsmanage, feature, ~"group::access" -
#34008 (closed) Allow to choose if you want to inherit members from parent group or not devopsmanage, feature, ~"group::access" -
#33763 (closed) Add option for administrators to approve user sign-updevopsmanage, feature, ~"group::access", ~"user management"
Bug Section
For the following bugs. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone and ensure that a priority label is set.
Heatmap for all bugs
Bugs for their priority and severity label are counted here. Every bug should have severity and priority labels applied. Please take a look at the bugs which fall into the columns indicating that the priority or severity labels are currently missing.
| ~S1 | ~S2 | ~S3 | ~S4 | ~"No severity" | |
|---|---|---|---|---|---|
| ~P1 | 0 | 0 | 0 | 0 | 0 |
| ~P2 | 1 | 11 | 3 | 0 | 0 |
| ~P3 | 0 | 9 | 79 | 14 | 2 |
| ~P4 | 0 | 1 | 61 | 40 | 0 |
| ~"No priority" | 0 | 9 | 39 | 40 | 123 |
Unscheduled frontend ~bug with customer
-
#29126 (closed) Enabled OAuth sign-in sources has confusing UI for disabling / enabling Omniauth providers Manage [DEPRECATED], UX, ~"bug", customer, devopsmanage, frontend, ~"group::access" -
#26647 (closed) Failing to transfer a group causes UI expand buttons to lock Manage [DEPRECATED], ~"P3", ~"S3", ~"bug", customer, devopsmanage, frontend, ~"group::access", subgroups -
#20414 (closed) Admin Users not sorted by "name" as highlighted Manage [DEPRECATED], ~"P3", ~"Platform [DEPRECATED]", ~"S3", UX, admin dashboard, ~"bug", customer, default-priority, default-severity, devopsmanage, frontend, ~"group::access", ~"user management"
Unscheduled frontend ~bug (non-customer)
-
#36866 (closed) Username confirmation triggers password autocomplete on Safari ~"S4", ~"bug", devopsmanage, frontend, ~"group::access", ~"user management" -
#35125 (closed) Extra trailing %hr when using LDAP without smartcard ~"bug", devopsmanage, frontend, ~"group::access", ldap -
#34961 (closed) Autofocus authentication-code field during login ~"S4", ~"bug", devopsmanage, frontend, ~"group::access" -
#34862 (closed) Release page empty with Guest Account ~"S3", ~"bug", devopsmanage, frontend, ~"group::access", project -
#33458 (closed) Group name slug does not update after failed creation of group ~"Category:Groups", ~"bug", devopsmanage, frontend, ~"group::access" -
#30561 (closed) Avatar/profile picture position of assignee on issue creation Manage [DEPRECATED], ~"S4", ~"bug", devopsmanage, frontend, ~"group::access" -
#30205 (closed) Layout width description has two percent symbols ~"S4", ~"bug", devopsmanage, frontend, ~"group::access" -
#30169 (closed) Avatar consistency Manage [DEPRECATED], ~"S4", UI polish, ~"bug", devopsmanage, frontend, ~"group::access" -
#30090 (closed) Description in Group's projects list is overflown Manage [DEPRECATED], ~"S4", UX, ~"bug", devopsmanage, frontend, ~"group::access" -
#29993 (closed) Edit status modal displays all empty states at once Manage [DEPRECATED], ~"bug", devopsmanage, frontend, ~"group::access", regression, regression:12.1, reproduced on GitLab.com, user profile -
#12640 (closed) Externalized string using namespaces in new user form in admin area is missing required prefix Enterprise Edition, Manage [DEPRECATED], UI polish, ~"bug", devopsmanage, frontend, ~"group::access" -
#29564 (closed) Showing horizontal scroll bar in private profile Manage [DEPRECATED], ~"bug", devopsmanage, frontend, ~"group::access", reproduced on GitLab.com, user profile -
#29511 (closed) On new project, modifying project name field updates project slug even if slug is customized Manage [DEPRECATED], UX, ~"bug", devopsmanage, frontend, ~"group::access", project, reproduced on GitLab.com, settings -
#29371 (closed) Group icon missing on small viewports on profile page Manage [DEPRECATED], ~"S4", UX, ~"bug", devopsmanage, frontend, ~"group::access", user profile -
#29187 (closed) Filter by author is not working when you change a search or sorting filter in Todos Manage [DEPRECATED], UX, ~"bug", devopsmanage, frontend, ~"group::access", todos
Unscheduled ~bug with customer
-
#36753 (closed) Dashes not supported in CN for LDAP Group Sync on first login ~"bug", customer, devopsmanage, ~"group::access" -
#36671 (confidential) ~"(confidential)" -
#36069 (closed) People from one subgroup cannot tag people from other subgroup within the same repository of a same parent group ~"bug", customer, devopsmanage, ~"group::access" -
#35792 (closed) SAML - bypass 2 factor authentication function does not work with ADFS ~"S4", ~"bug", customer, devopsmanage, ~"group::access" -
#34159 (closed) Enabling "Require 2FA" forces smart card users to register an OTP / U2F 2FA, ~"bug", customer, devopsmanage, ~"group::access" -
#33046 (closed) "Namespace is not valid" error when trying to create a project through the admin area ~"S4", ~"bug", customer, devopsmanage, ~"group::access" -
#32346 Group still visible even with IP restriction ~"P2", ~"S1", ~"bug", customer, devopsmanage, ~"group::access", ~"missed-SLO" -
#14731 (closed) Auditor users cannot access public and internal projects when files access is limited to project members ~"bug", customer, devopsmanage, ~"group::access", permissions -
#31104 Allow for overriding the "Restricted visibility levels" at the group layer ~"Category:Groups", ~"S3", ~"bug", customer, devopsmanage, feature, ~"group::access", project creation -
#30369 (closed) 500 Internal Server Error: GET https://gitlab.com/api/v4/groups/group_id Manage [DEPRECATED], api, ~"bug", customer, devopsmanage, ~"group::access" -
#30278 (closed) Unblocked users cannot see group projects added while they are blocked ~"S4", ~"bug", customer, devopsmanage, ~"group::access" -
#12856 Membership requests are taken into account for access level validation Enterprise Edition, Manage [DEPRECATED], ~"S3", ~"bug", customer, devopsmanage, ~"group::access", ldap -
#12178 (closed) Omniauth 500 when blocking new users Enterprise Edition, Manage [DEPRECATED], authentication, ~"bug", customer, devopsmanage, ~"group::access", oauth, saml -
#29447 (closed) ActiveRecord::StatementInvalid: PG::QueryCanceled: ERROR: canceling statement due to statement timeout Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access", reproduced on GitLab.com -
#11444 Users with developer access cannot access custom group-level project templates Enterprise Edition, Manage [DEPRECATED], ~"bug", customer, devopsmanage, ~"group::access"
Unscheduled ~bug (non-customer)
-
#37017 (confidential) ~"(confidential)" -
#36855 (closed) (confidential) ~"(confidential)" -
#36845 (closed) Internal project: Non-added accounts cannot see Releases ~"S4", ~"bug", devopsmanage, ~"group::access", permissions -
#36826 (closed) 500 error when user authenticates with GitHub OAuth authentication, awaiting feedback, ~"bug", devopsmanage, ~"group::access", oauth -
#36560 (closed) Webbrowser (chrome, opera) window is not able to receive focus after prompt for pressing two-factor key (Yubikey) times out ~"S3", authentication, ~"bug", devopsmanage, ~"group::access" -
#36549 (closed) Shared group details are exposed in project api for member without privilege ~"Category:Groups", ~"S3", ~"bug", devopsmanage, ~"group::access" -
#36392 (closed) Impossible to change group avatar ~"Category:Groups", ~"S2", ~"bug", devopsmanage, ~"group::access" -
#36362 (closed) Set-Cookie header not well-formed ~"S4", ~"bug", cookies, devopsmanage, ~"group::access" -
#36261 (closed) deploy keys blocked when user that added deploy key deleted from LDAP ~"S3", ~"bug", devopsmanage, ~"group::access" -
#36231 (confidential) ~"(confidential)" -
#36030 (closed) Group Search Paging Bug ~"Category:Groups", ~"bug", devopsmanage, ~"group::access", reproduced on GitLab.com -
#35551 (closed) Project now suddenly gives 404 ~"S3", ~"bug", devopsmanage, ~"group::access" -
#35258 (closed) 500 error trying to archive project ~"S4", ~"bug", devopsmanage, ~"group::access", project -
#34411 (closed) admins can't create projects in their user namespace ~"S4", ~"bug", devopsmanage, ~"group::access" -
#34266 (closed) 500 Internal Server Error when ordering by last_activity_at ~"S3", ~"bug", devopsmanage, ~"group::access"
Heatmap for ~missed-SLO bugs
| ~S1 | ~S2 | ~S3 | ~S4 | |
|---|---|---|---|---|
| ~P1 | 0 | 0 | 0 | 0 |
| ~P2 | 1 | 8 | 2 | 0 |
| ~P3 | 0 | 0 | 0 | 0 |
| ~P4 | 0 | 0 | 0 | 0 |
This is a group level triage package that aims to collate the latest bug reports (for frontend and otherwise) and feature proposals. For more information please refer to the handbook: