Add "Manage Protected Tags" as a customizable permission
Problem to Solve
Project maintainers and owners currently have the ability to manage protected tags (including configuration and removal). This means that users who might need some capabilities of a maintainer (like creation/editing) also have permissions to remove these tags.
Proposal
- When creating a role, any base can be selected. A new permission is available and labeled "Manage Protected Tags" that can be selected.
- The permission actions for
admin_protected_tagincludes creating, reading, updating, and deleting protected tags.
| Group Actions | Project Actions |
|---|---|
| No group actions available |
Project Repository Settings
|
APIs
Views+Workflows include:
-
Base + permission: Can see Project-> Settings -> Repository Settings -> Protected Tags
Documentation
-
Permissions attribute: admin_protected_tags -
Permission Title: Manage Protected Tags -
Permission Description: Create, read, update, and delete protected tags. -
Update prerequisites for...
Old Description
Problem to solve
This issue has been raised when capturing the deltas in permissions between Owner and Maintainer. Owner has this permission, but Maintainer does not. Adding this as a customizable permission helps our customers lessen their reliance on the extremely privileged Owner role, and gives them flexibility when creating new roles to give them only the permissions that they need. In this case, the customer is looking to manage protected Tags.
Proposal
Add "Ability to manage protected tags" as a customizable permission using the customizable roles framework.