Enforced allowlist for CI job token at group level
Problem to solve
Administrators (or de facto organization administrators) may want to enforce certain CI job token permissions at the group level. This can prevent 1) project level users from removing certain inherited allowlist permissions or 2) modifying the permissions for a specific project.
Proposal
TBD
Intended users
Feature Usage Metrics
TBD.
Does this feature require an audit event?
Yes, specific details TBD.
References/Links
- (Internal link) Dovetail
- This should be similar in concept to Enforce variables.
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.