Design discovery for manage project protected branch unprotection permissions via UI
Added in %10.7 by https://gitlab.com/gitlab-org/gitlab-ee/issues/4800 protected branch rules can be created via the API using the unprotect_access_level attribute to restrict who can remove/edit the protected branch rule.
A user cannot create a rule that they will not be able edit or remove (e.g. a Master cannot create a protected branch rule with unprotect_access_level Owner)
We should make it possible to create protected branch rules with these restrictions using the web interface, not just that API.
Proposal
-
Update the project protected branch interface to owners and masters to add/edit/remove protected branches and set the
unprotect_access_level -
Provide feedback to users who do not have permissions to unprotect a specific rule, who does have permissions to change the rule.
Only an Owner can unprotect