Skip to content
Snippets Groups Projects

rspec-ee integration pg14 4/6

Passed Started by
🤖 GitLab Bot 🤖
@gitlab-bot
1Running with gitlab-runner 16.1.0~beta.59.g83c66823 (83c66823)
2 on green-3.private.runners-manager.gitlab.com/gitlab.com/gitlab-org QuQPoFsC, system ID: s_fc023362bf2f
3 feature flags: FF_NETWORK_PER_BUILD:true, FF_USE_FASTZIP:true, FF_USE_IMPROVED_URL_MASKING:true
4 Resolving secrets 00:00
5 Preparing the "docker+machine" executor 00:27
6Using Docker executor with image registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14:rubygems-3.4-git-2.36-lfs-2.9-chrome-113-yarn-1.22-graphicsmagick-1.3.36 ...
7Starting service registry.gitlab.com/gitlab-org/gitlab-build-images:postgres-14-pgvector-0.4.1 ...
8Authenticating with credentials from job payload (GitLab Registry)
9Pulling docker image registry.gitlab.com/gitlab-org/gitlab-build-images:postgres-14-pgvector-0.4.1 ...
10Using docker image sha256:2e09e9db92541ed81b1c00f1d5186f8c262d8b84e8d1755676ea4b25614f30c4 for registry.gitlab.com/gitlab-org/gitlab-build-images:postgres-14-pgvector-0.4.1 with digest registry.gitlab.com/gitlab-org/gitlab-build-images@sha256:afc7bd7a60824044709543a6a700385e412d750d9ab4fc72b427e335e1d0f3ec ...
11WARNING: Service registry.gitlab.com/gitlab-org/gitlab-build-images:redis-cluster-6.2.12 is already created. Ignoring.
12WARNING: Service registry.gitlab.com/gitlab-org/gitlab-build-images:redis-cluster-6.2.12 is already created. Ignoring.
13Starting service registry.gitlab.com/gitlab-org/gitlab-build-images:redis-cluster-6.2.12 ...
14Authenticating with credentials from job payload (GitLab Registry)
15Pulling docker image registry.gitlab.com/gitlab-org/gitlab-build-images:redis-cluster-6.2.12 ...
16Using docker image sha256:a9a90ece30d9630d694ab1997cd103ea8ec729789451b983a75c7b58b0062d45 for registry.gitlab.com/gitlab-org/gitlab-build-images:redis-cluster-6.2.12 with digest registry.gitlab.com/gitlab-org/gitlab-build-images@sha256:7ef36177d5d0bc554fbb63d8210ae751bcc538bea7905b51d078d9ab90a755fa ...
17Starting service redis:6.2-alpine ...
18Pulling docker image redis:6.2-alpine ...
19Using docker image sha256:d0675d033b87382205d08b598a004a99a1f6c4bd377cc86bb6df8957ce7dbb1c for redis:6.2-alpine with digest redis@sha256:740b5c973d1c9eea6e124a3905ba73d32354d0549f98ccc9e67af1af2a9ba478 ...
20WARNING: Service registry.gitlab.com/gitlab-org/gitlab-build-images:zoekt-ci-image-1.2 is already created. Ignoring.
21WARNING: Service registry.gitlab.com/gitlab-org/gitlab-build-images:zoekt-ci-image-1.2 is already created. Ignoring.
22Starting service registry.gitlab.com/gitlab-org/gitlab-build-images:zoekt-ci-image-1.2 ...
23Authenticating with credentials from job payload (GitLab Registry)
24Pulling docker image registry.gitlab.com/gitlab-org/gitlab-build-images:zoekt-ci-image-1.2 ...
25Using docker image sha256:c635f6eed733b5c5a06d4a28aff99748c4cbefca04af192e08f10d87387c6485 for registry.gitlab.com/gitlab-org/gitlab-build-images:zoekt-ci-image-1.2 with digest registry.gitlab.com/gitlab-org/gitlab-build-images@sha256:b3cc177faa2dc274a32b66866536932c39be8578316b364363735fc0b8e1f9cb ...
26Starting service elasticsearch:7.17.6 ...
27Pulling docker image elasticsearch:7.17.6 ...
28Using docker image sha256:5fad10241ffd65d817ed0ddfaf6e87eee1f7dc2a7db33db1047835560ea71fda for elasticsearch:7.17.6 with digest elasticsearch@sha256:6c128de5d01c0c130a806022d6bd99b3e4c27a9af5bfc33b6b81861ae117d028 ...
29Waiting for services to be up and running (timeout 30 seconds)...
30Authenticating with credentials from job payload (GitLab Registry)
31Pulling docker image registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14:rubygems-3.4-git-2.36-lfs-2.9-chrome-113-yarn-1.22-graphicsmagick-1.3.36 ...
32Using docker image sha256:24a9e92645b17c878623efd51b7564f81e480bd281e94d7f33971082e0ca80e0 for registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14:rubygems-3.4-git-2.36-lfs-2.9-chrome-113-yarn-1.22-graphicsmagick-1.3.36 with digest registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14@sha256:ca349d228348f199cb57f574476584f42aca338747393ed93a9032a0261afc4d ...
33 Preparing environment 00:00
34Running on runner-quqpofsc-project-278964-concurrent-0 via runner-quqpofsc-private-1691662437-f46626fc...
35 Getting source from Git repository 00:29
36Fetching changes with git depth set to 20...
37Initialized empty Git repository in /builds/gitlab-org/gitlab/.git/
38Created fresh repository.
39remote: Enumerating objects: 145438, done.
40remote: Counting objects: 100% (145438/145438), done.
41remote: Compressing objects: 100% (96447/96447), done.
42remote: Total 145438 (delta 63547), reused 98646 (delta 43407), pack-reused 0
43Receiving objects: 100% (145438/145438), 119.87 MiB | 22.17 MiB/s, done.
44Resolving deltas: 100% (63547/63547), done.
45From https://git-us-east1-c.ci-gateway.int.gprd.gitlab.net:8989/gitlab-org/gitlab
46 * [new ref] refs/pipelines/962009091 -> refs/pipelines/962009091
47Checking out 2a9b6857 as detached HEAD (ref is refs/merge-requests/128972/merge)...
48Skipping Git submodules setup
49$ git remote set-url origin "${CI_REPOSITORY_URL}"
50 Restoring cache 00:13
51Checking cache for ruby-gems-debian-bullseye-ruby-3.0-16...
52cache.zip is up to date
53Successfully extracted cache
54 Downloading artifacts 00:22
55Downloading artifacts for compile-test-assets (4841630955)...
56Downloading artifacts from coordinator... ok host=storage.googleapis.com id=4841630955 responseStatus=200 OK token=64_jD7_G
57Downloading artifacts for detect-tests (4841630974)...
58Downloading artifacts from coordinator... ok host=storage.googleapis.com id=4841630974 responseStatus=200 OK token=64_jD7_G
59Downloading artifacts for retrieve-tests-metadata (4841630985)...
60Downloading artifacts from coordinator... ok host=storage.googleapis.com id=4841630985 responseStatus=200 OK token=64_jD7_G
61Downloading artifacts for setup-test-env (4841630964)...
62Downloading artifacts from coordinator... ok host=storage.googleapis.com id=4841630964 responseStatus=200 OK token=64_jD7_G
63 Executing "step_script" stage of the job script 22:16
64Using docker image sha256:24a9e92645b17c878623efd51b7564f81e480bd281e94d7f33971082e0ca80e0 for registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14:rubygems-3.4-git-2.36-lfs-2.9-chrome-113-yarn-1.22-graphicsmagick-1.3.36 with digest registry.gitlab.com/gitlab-org/gitlab-build-images/debian-bullseye-ruby-3.0.patched-golang-1.20-rust-1.65-node-18.17-postgresql-14@sha256:ca349d228348f199cb57f574476584f42aca338747393ed93a9032a0261afc4d ...
65$ echo $FOSS_ONLY
66$ [ "$FOSS_ONLY" = "1" ] && rm -rf ee/ qa/spec/ee/ qa/qa/specs/features/ee/ qa/qa/ee/ qa/qa/ee.rb
67$ export GOPATH=$CI_PROJECT_DIR/.go
68$ mkdir -p $GOPATH
69$ source scripts/utils.sh
70$ source scripts/prepare_build.sh
71 Installing gems 00:12
102Using decomposed database config (config/database.yml.decomposed-postgresql)
103Geo DB will be set up.
104Embedding DB will be set up.
105 Setting up DBs 00:48
120$ source ./scripts/rspec_helpers.sh
121$ run_timed_command "gem install knapsack --no-document"
122$ gem install knapsack --no-document
123Successfully installed knapsack-4.0.0
1241 gem installed
125==> 'gem install knapsack --no-document' succeeded in 1 seconds.
126$ section_start "gitaly-test-spawn" "Spawning Gitaly"; scripts/gitaly-test-spawn; section_end "gitaly-test-spawn"
127 Spawning Gitaly 00:08
131$ export RSPEC_SKIPPED_TESTS_REPORT_PATH="rspec/skipped_tests-${CI_JOB_ID}.txt"
132$ export RSPEC_RETRIED_TESTS_REPORT_PATH="rspec/retried_tests-${CI_JOB_ID}.txt"
133$ rspec_paralellized_job "--fail-fast=${RSPEC_FAIL_FAST_THRESHOLD} --tag ~quarantine --tag ~level:background_migration --tag ~click_house"
134SKIP_FLAKY_TESTS_AUTOMATICALLY:
135RETRY_FAILED_TESTS_IN_NEW_PROCESS: true
136KNAPSACK_GENERATE_REPORT: true
137FLAKY_RSPEC_GENERATE_REPORT: true
138KNAPSACK_TEST_FILE_PATTERN: {ee/}spec/{commands,controllers,mailers,requests}{,/**/}*_spec.rb
139KNAPSACK_LOG_LEVEL: debug
140KNAPSACK_REPORT_PATH: knapsack/rspec-ee_integration_pg14_4_6_report.json
141FLAKY_RSPEC_SUITE_REPORT_PATH: rspec/flaky/report-suite.json
142FLAKY_RSPEC_REPORT_PATH: rspec/flaky/all_rspec-ee_integration_pg14_4_6_report.json
143NEW_FLAKY_RSPEC_REPORT_PATH: rspec/flaky/new_rspec-ee_integration_pg14_4_6_report.json
144RSPEC_SKIPPED_TESTS_REPORT_PATH: rspec/skipped_tests-4841631428.txt
145CRYSTALBALL:
146RSPEC_TESTS_MAPPING_ENABLED:
147RSPEC_TESTS_FILTER_FILE:
148Shell set options (set -o) enabled:
149braceexpand on
150hashall on
151interactive-comments on
152pipefail on
153Knapsack report generator started!
154/builds/gitlab-org/gitlab/ee/app/services/remote_development/service_response_factory.rb:41: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
155/builds/gitlab-org/gitlab/ee/app/services/remote_development/workspaces/create_service.rb:28: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
156/builds/gitlab-org/gitlab/ee/app/services/remote_development/workspaces/reconcile_service.rb:38: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
157/builds/gitlab-org/gitlab/ee/app/services/remote_development/workspaces/update_service.rb:28: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
158/builds/gitlab-org/gitlab/ee/lib/remote_development/agent_config/main.rb:32: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
159/builds/gitlab-org/gitlab/ee/lib/remote_development/agent_config/updater.rb:11: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
160/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/authorizer.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
161/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/authorizer.rb:13: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
162/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/creator.rb:17: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
163/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/creator.rb:24: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
164/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/creator.rb:25: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
165/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/creator.rb:28: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
166/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/devfile_fetcher.rb:15: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
167/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/devfile_fetcher.rb:16: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
168/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/devfile_flattener.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
169/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/editor_component_injector.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
170/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/editor_component_injector.rb:17: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
171/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/editor_component_injector.rb:18: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
172/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:43: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
173/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:54: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
174/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:102: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
175/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:126: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
176/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:159: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
177/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:202: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
178/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/post_flatten_devfile_validator.rb:235: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
179/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/pre_flatten_devfile_validator.rb:24: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
180/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/pre_flatten_devfile_validator.rb:52: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
181/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/project_cloner_component_injector.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
182/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/project_cloner_component_injector.rb:17: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
183/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/project_cloner_component_injector.rb:18: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
184/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/project_cloner_component_injector.rb:23: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
185/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/volume_component_injector.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
186/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/volume_component_injector.rb:13: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
187/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/create/volume_component_injector.rb:14: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
188/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/main.rb:43: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
189/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/update/authorizer.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
190/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/update/updater.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
191/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/input/agent_infos_observer.rb:15: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
192/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/input/params_extractor.rb:14: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
193/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/input/params_extractor.rb:16: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
194/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/input/params_to_infos_converter.rb:14: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
195/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/input/params_validator.rb:15: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
196/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/output/rails_infos_observer.rb:11: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
197/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/output/workspaces_to_rails_infos_converter.rb:15: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
198/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/persistence/orphaned_workspaces_observer.rb:12: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
199/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/persistence/workspaces_from_agent_infos_updater.rb:15: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
200/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/persistence/workspaces_to_be_returned_finder.rb:16: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
201/builds/gitlab-org/gitlab/ee/lib/remote_development/workspaces/reconcile/persistence/workspaces_to_be_returned_updater.rb:11: warning: One-line pattern matching is experimental, and the behavior may change in future versions of Ruby!
202Run options: exclude {:quarantine=>true, :level=>"background_migration", :click_house=>true}
203Test environment set up in 0.584519911 seconds
204API::VisualReviewDiscussions
205 when project is public
206 behaves like accepting request without authentication
207 behaves like handling merge request feedback
208 creates a new note
209 tracks a visual review feedback event
210 the API response
211 responds with a status 201 Created
212 returns the persisted note body
213 returns the name of the Visual Review Bot assigned as the author
214 returns the id of the merge request as the parent noteable_id
215 returns a current time stamp instead of the provided one
216 with no message body
217 returns a 400 bad request error if body not given
218 with an invalid project ID
219 does not create a new note
220 the API response
221 responds with a status 404
222 with an invalid merge request IID
223 does not create a new note
224 the API response
225 responds with a status 404
226 when anonymous_visual_review_feedback feature flag is disabled
227 does not create a new note
228 the API response
229 responds 403
230 returns error messaging specifying that the feature is disabled
231 behaves like accepting request with authentication
232 behaves like handling merge request feedback
233 creates a new note
234 tracks a visual review feedback event
235 the API response
236 responds with a status 201 Created
237 returns the persisted note body including user details
238 returns the name of the Visual Review Bot assigned as the author
239 returns the id of the merge request as the parent noteable_id
240 returns a current time stamp instead of the provided one
241 with no message body
242 returns a 400 bad request error if body not given
243 with an invalid project ID
244 does not create a new note
245 the API response
246 responds with a status 404
247 with an invalid merge request IID
248 does not create a new note
249 the API response
250 responds with a status 404
251 when anonymous_visual_review_feedback feature flag is disabled
252 does not create a new note
253 the API response
254 responds 403
255 returns error messaging specifying that the feature is disabled
256 when merge request discussion is locked and project is public
257 without authentication
258 rejects note creation
259 with visual review bot authentication
260 rejects note creation
261 when project is archived
262 without authentication
263 rejects note creation
264 with visual review bot authentication
265 rejects note creation
266 when project is private
267 behaves like accepting request with authentication
268 behaves like handling merge request feedback
269 creates a new note
270 tracks a visual review feedback event
271 the API response
272 responds with a status 201 Created
273 returns the persisted note body including user details
274 returns the name of the Visual Review Bot assigned as the author
275 returns the id of the merge request as the parent noteable_id
276 returns a current time stamp instead of the provided one
277 with no message body
278 returns a 400 bad request error if body not given
279 with an invalid project ID
280 does not create a new note
281 the API response
282 responds with a status 404
283 with an invalid merge request IID
284 does not create a new note
285 the API response
286 responds with a status 404
287 when anonymous_visual_review_feedback feature flag is disabled
288 does not create a new note
289 the API response
290 responds 403
291 returns error messaging specifying that the feature is disabled
292 behaves like rejecting request without authentication
293 returns a 404 project not found
294 and authenticated user has no project access
295 returns a 404 project not found
296 when project is internal
297 behaves like accepting request with authentication
298 behaves like handling merge request feedback
299 creates a new note
300 tracks a visual review feedback event
301 the API response
302 responds with a status 201 Created
303 returns the persisted note body including user details
304 returns the name of the Visual Review Bot assigned as the author
305 returns the id of the merge request as the parent noteable_id
306 returns a current time stamp instead of the provided one
307 with no message body
308 returns a 400 bad request error if body not given
309 with an invalid project ID
310 does not create a new note
311 the API response
312 responds with a status 404
313 with an invalid merge request IID
314 does not create a new note
315 the API response
316 responds with a status 404
317 when anonymous_visual_review_feedback feature flag is disabled
318 does not create a new note
319 the API response
320 responds 403
321 returns error messaging specifying that the feature is disabled
322 behaves like rejecting request without authentication
323 returns a 404 project not found
324 and authenticated user has no project access
325 behaves like handling merge request feedback
326 creates a new note
327 tracks a visual review feedback event
328 the API response
329 responds with a status 201 Created
330 returns the persisted note body including user details
331 returns the name of the Visual Review Bot assigned as the author
332 returns the id of the merge request as the parent noteable_id
333 returns a current time stamp instead of the provided one
334 with no message body
335 returns a 400 bad request error if body not given
336 with an invalid project ID
337 does not create a new note
338 the API response
339 responds with a status 404
340 with an invalid merge request IID
341 does not create a new note
342 the API response
343 responds with a status 404
344 when anonymous_visual_review_feedback feature flag is disabled
345 does not create a new note
346 the API response
347 responds 403
348 returns error messaging specifying that the feature is disabled
349SearchController
350 GET /search
351 when elasticsearch is enabled
352 for issues scope
353 behaves like an efficient database result
354 avoids N+1 database queries
355 for merge_request scope
356 behaves like an efficient database result
357 avoids N+1 database queries
358 for project scope
359 behaves like an efficient database result
360 avoids N+1 database queries
361 for notes scope
362 behaves like an efficient database result
363 avoids N+1 database queries
364 for milestones scope
365 behaves like an efficient database result
366 avoids N+1 database queries
367 for users scope
368 behaves like an efficient database result
369 avoids N+1 database queries
370 for epics scope
371 behaves like an efficient database result
372 avoids N+1 database queries
373 for blobs scope
374 avoids N+1 database queries
375 does not raise an exeption when blob.path is nil
376 for commits scope
377 avoids N+1 database queries
378 search index integrity
379 when project is present and group is not present
380 queues the project integrity worker
381 when project is not present and group is not present
382 does nothing
383 when project is not present and group is present
384 queues the namespace integrity worker which then schedules the project integrity worker
385 when project is present and group is present
386 queues the project integrity worker
387 when search results are returned
388 does nothing
389 when search_index_integrity feature flag is not enabled
390 does nothing
391 when scope is not blobs
392 does nothing
393API::Scim::GroupScim
394 # order random
395 when user with an email extern_uid
396 behaves like SCIM API endpoints
397 GET api/scim/v2/groups/:group/Users
398 responds with 404 for a non existent group
399 responds with 404 for a group with no SAML SSO configuration
400 responds with paginated users when there is no filter
401 responds with an error for unsupported filters
402 behaves like SCIM token authenticated
403 without token auth
404 responds with 401
405 when existing user matches filter
406 responds with 200
407 sets default values as required by the specification
408 when no user matches filter
409 responds with 200
410 GET api/scim/v2/groups/:group/Users/:id
411 responds with 404 for a non existent group
412 responds with 404 for a group with no SAML SSO configuration
413 responds with 404 if there is no user
414 behaves like SCIM token authenticated
415 without token auth
416 responds with 401
417 when existing user
418 responds with 200
419 POST api/scim/v2/groups/:group/Users
420 responds with 404 for a non existent group
421 responds with 404 for a group with no SAML SSO configuration
422 behaves like SCIM token authenticated
423 without token auth
424 responds with 401
425 when a provisioning error occurs
426 behaves like filtered params in errors
427 does not expose the password in error response
428 does not expose the access token in error response
429 without an existing user
430 responds with 201
431 has the user external ID
432 has the email
433 created the user
434 created the member with access level set in saml_provider
435 created the identity
436 marks the user as provisioned by the group
437 when existing user
438 responds with 201
439 has the user external ID
440 does not mark the user as provisioned
441 behaves like storing arguments in the application context for the API
442 places the expected params in the application context
443 with allowed domain setting switched on
444 with different domains
445 created the user
446 did not create member
447 with invalid user params
448 returns user error
449 with matching domains
450 created the user
451 created the member with access level set in saml_provider
452 PATCH api/scim/v2/groups/:group/Users/:id
453 responds with 404 for a non existent group
454 responds with 404 for a group with no SAML SSO configuration
455 responds with 404 if there is no user
456 deactivates the scim_identity
457 behaves like SCIM token authenticated
458 without token auth
459 responds with 401
460 with owner
461 responds with 412
462 returns the last group owner error
463 does not deactivate the identity
464 when reprovisioning user
465 activates the scim_identity
466 does not call reprovision service when identity is already active
467 when existing user
468 with extern UID
469 responds with 204
470 updates the extern_uid
471 with user attributes
472 with name
473 responds with 204
474 does not update the name
475 responds with an empty response
476 with email
477 does not update the email
478 responds with 204
479 with userName
480 responds with 204
481 does not update the username
482 responds with an empty response
483 DELETE /scim/v2/groups/:group/Users/:id
484 responds with 404 if there is no user
485 responds with 404 for a non existent group
486 responds with 404 for a group with no SAML SSO configuration
487 when existing user
488 responds with 204
489 responds with an empty response
490 deactivates the identity
491 when the user is not a group member
492 deactivates the identity
493 with owner
494 responds with 412
495 returns the last group owner error
496 does not deactivate the identity
497 when user with an alphanumeric extern_uid
498 behaves like SCIM API endpoints
499 GET api/scim/v2/groups/:group/Users
500 responds with 404 for a non existent group
501 responds with 404 for a group with no SAML SSO configuration
502 responds with paginated users when there is no filter
503 responds with an error for unsupported filters
504 behaves like SCIM token authenticated
505 without token auth
506 responds with 401
507 when existing user matches filter
508 responds with 200
509 sets default values as required by the specification
510 when no user matches filter
511 responds with 200
512 GET api/scim/v2/groups/:group/Users/:id
513 responds with 404 for a non existent group
514 responds with 404 for a group with no SAML SSO configuration
515 responds with 404 if there is no user
516 behaves like SCIM token authenticated
517 without token auth
518 responds with 401
519 when existing user
520 responds with 200
521 POST api/scim/v2/groups/:group/Users
522 responds with 404 for a non existent group
523 responds with 404 for a group with no SAML SSO configuration
524 behaves like SCIM token authenticated
525 without token auth
526 responds with 401
527 when a provisioning error occurs
528 behaves like filtered params in errors
529 does not expose the password in error response
530 does not expose the access token in error response
531 without an existing user
532 responds with 201
533 has the user external ID
534 has the email
535 created the user
536 created the member with access level set in saml_provider
537 created the identity
538 marks the user as provisioned by the group
539 when existing user
540 responds with 201
541 has the user external ID
542 does not mark the user as provisioned
543 behaves like storing arguments in the application context for the API
544 places the expected params in the application context
545 with allowed domain setting switched on
546 with different domains
547 created the user
548 did not create member
549 with invalid user params
550 returns user error
551 with matching domains
552 created the user
553 created the member with access level set in saml_provider
554 PATCH api/scim/v2/groups/:group/Users/:id
555 responds with 404 for a non existent group
556 responds with 404 for a group with no SAML SSO configuration
557 responds with 404 if there is no user
558 deactivates the scim_identity
559 behaves like SCIM token authenticated
560 without token auth
561 responds with 401
562 with owner
563 responds with 412
564 returns the last group owner error
565 does not deactivate the identity
566 when reprovisioning user
567 activates the scim_identity
568 does not call reprovision service when identity is already active
569 when existing user
570 with extern UID
571 responds with 204
572 updates the extern_uid
573 with user attributes
574 with name
575 responds with 204
576 does not update the name
577 responds with an empty response
578 with email
579 does not update the email
580 responds with 204
581 with userName
582 responds with 204
583 does not update the username
584 responds with an empty response
585 DELETE /scim/v2/groups/:group/Users/:id
586 responds with 404 if there is no user
587 responds with 404 for a non existent group
588 responds with 404 for a group with no SAML SSO configuration
589 when existing user
590 responds with 204
591 responds with an empty response
592 deactivates the identity
593 when the user is not a group member
594 deactivates the identity
595 with owner
596 responds with 412
597 returns the last group owner error
598 does not deactivate the identity
599OperationsController
600 GET #index
601 format html
602 renders index with 200 status code
603 behaves like unlicensed
604 renders 404
605 with an anonymous user
606 redirects to sign-in page
607 format json
608 behaves like unlicensed
609 renders 404
610 with added projects
611 returns a list of added projects
612 returns as many projects as are in the user's dashboard
613 returns a list of added projects
614 without sufficient access level
615 behaves like empty project list
616 returns an empty list
617 without projects
618 behaves like empty project list
619 returns an empty list
620 with an anonymous user
621 returns unauthorized response
622 GET #environments
623 format html
624 renders the view
625 behaves like unlicensed
626 renders 404
627 with an anonymous user
628 redirects to sign-in page
629 format json
630 behaves like unlicensed
631 renders 404
632 with an anonymous user
633 returns unauthorized response
634 with an authenticated user without sufficient access_level
635 returns an empty project list
636 with an authenticated developer
637 returns an empty project list
638 sets the polling interval header
639 returns an empty project list when the project is not in the developer's dashboard
640 with a project in the dashboard
641 returns a project without an environment
642 returns one project with one environment
643 returns multiple projects and environments
644 does not make N+1 queries with multiple environments
645 does not return environments that would be grouped into a folder
646 does not return environments that would be grouped into a folder even when there is only a single environment
647 returns an environment not in a folder
648 returns the last deployment for an environment
649 returns the last deployment's deployable
650 returns a failed deployment
651 does not return a project for which the operations dashboard feature is unavailable
652 returns seven projects when some projects do not have the dashboard feature available
653 returns a maximum of three environments for a project
654 returns a maximum of three environments for multiple projects
655 with environments pagination
656 pagination behaviour
657 with `per_page`
658 behaves like environments pagination
659 is expected to include pagination headers
660 with `page=1`
661 behaves like environments pagination
662 is expected to include pagination headers
663 with `page=2`
664 behaves like environments pagination
665 is expected to include pagination headers
666 N+1 queries
667 avoids N+1 database queries
668 with a pipeline
669 returns the last pipeline for an environment
670 returns the last pipeline details
671 returns an upstream pipeline
672 returns a downstream pipeline
673 POST #create
674 format json
675 behaves like unlicensed
676 renders 404
677 without added projects
678 adds projects to the dashboard
679 cannot add a project twice
680 does not add invalid project ids
681 with added project
682 does not add already added project
683 with an anonymous user
684 redirects to sign-in page
685 DELETE #destroy
686 behaves like unlicensed
687 renders 404
688 with added projects
689 removes a project successfully
690 without projects
691 cannot remove invalid project
692 with an anonymous user
693 redirects to sign-in page
694Projects::IssuesController
695 licensed features
696 licensed
697 #update
698 sets issue weight and epic
699 #new
700 when a vulnerability_id is provided
701 sets the vulnerability_id
702 sets the confidential flag to true by default
703 default templates
704 when a template has been set via project settings
705 does not select a default template
706 when a template has not been set via project settings
707 selects a default template
708 #create
709 sets issue weight and epic
710 when created from a vulnerability
711 overwrites the default fields
712 does not show an error message
713 creates vulnerability feedback
714 behaves like creates vulnerability issue link
715 links the issue to the vulnerability
716 when vulnerability already has a linked issue
717 shows an error message
718 unlicensed
719 #update
720 does not set issue weight
721 #new
722 when a vulnerability_id is provided
723 does not build issue from a vulnerability
724 #create
725 does not set issue weight ane epic
726 GET #show
727 when issue is of type objective
728 show action
729 behaves like redirects to show work item page
730 redirects to work item page using iid
731 edit action
732 behaves like redirects to show work item page
733 redirects to work item page using iid
734 update action
735 behaves like redirects to show work item page
736 redirects to work item page using iid
737 when issue is of type key_result
738 show action
739 behaves like redirects to show work item page
740 redirects to work item page using iid
741 edit action
742 behaves like redirects to show work item page
743 redirects to work item page using iid
744 update action
745 behaves like redirects to show work item page
746 redirects to work item page using iid
747 GET #discussions
748 with a related system note
749 when authenticated
750 behaves like user can see confidential issue
751 when a user is a reporter
752 displays related notes
753 behaves like user can see confidential issue
754 when a user is a developer
755 displays related notes
756 behaves like user can see confidential issue
757 when a user is a maintainer
758 displays related notes
759 behaves like user cannot see confidential issue
760 when a user is a guest
761 redacts note related to a confidential issue
762 when unauthenticated
763 behaves like user cannot see confidential issue
764 when a user is a 0
765 redacts note related to a confidential issue
766 PUT #update
767 when changing the assignee
768 exposes expected attributes
769 DescriptionDiffActions
770 when issuable is an issue type issue
771 behaves like DescriptionDiffActions
772
773 when license is available
774 behaves like description diff actions
775 GET description_diff
776 returns the diff with the previous version
777 returns the diff with the previous version of the specified start_version_id
778 when description version is from another issuable
779 returns 404
780 when start_version_id is from another issuable
781 returns 404
782 when start_version_id is deleted
783 returns 404
784 when description version is deleted
785 returns 404
786 DELETE description_diff
787 returns 200
788 when start_version_id is present
789 returns 200
790 when version is already deleted
791 returns 404
792 when user cannot admin issuable
793 returns 404
794 when features are available through Registration Features
795 behaves like description diff actions
796 GET description_diff
797 returns the diff with the previous version
798 returns the diff with the previous version of the specified start_version_id
799 when description version is from another issuable
800 returns 404
801 when start_version_id is from another issuable
802 returns 404
803 when start_version_id is deleted
804 returns 404
805 when description version is deleted
806 returns 404
807 DELETE description_diff
808 returns 200
809 when start_version_id is present
810 returns 200
811 when version is already deleted
812 returns 404
813 when user cannot admin issuable
814 returns 404
815 when license is not available
816 GET description_diff
817 returns 404
818 DELETE description_diff
819 returns 404
820 when issuable is a task/work_item
821 behaves like DescriptionDiffActions
822
823 when license is available
824 behaves like description diff actions
825 GET description_diff
826 returns the diff with the previous version
827 returns the diff with the previous version of the specified start_version_id
828 when description version is from another issuable
829 returns 404
830 when start_version_id is from another issuable
831 returns 404
832 when start_version_id is deleted
833 returns 404
834 when description version is deleted
835 returns 404
836 DELETE description_diff
837 returns 200
838 when start_version_id is present
839 returns 200
840 when version is already deleted
841 returns 404
842 when user cannot admin issuable
843 returns 404
844 when features are available through Registration Features
845 behaves like description diff actions
846 GET description_diff
847 returns the diff with the previous version
848 returns the diff with the previous version of the specified start_version_id
849 when description version is from another issuable
850 returns 404
851 when start_version_id is from another issuable
852 returns 404
853 when start_version_id is deleted
854 returns 404
855 when description version is deleted
856 returns 404
857 DELETE description_diff
858 returns 200
859 when start_version_id is present
860 returns 200
861 when version is already deleted
862 returns 404
863 when user cannot admin issuable
864 returns 404
865 when license is not available
866 GET description_diff
867 returns 404
868 DELETE description_diff
869 returns 404
870API::ProjectApprovalSettings
871 GET /projects/:id/approval_settings
872 when the request is correct
873 matches the response schema
874 when license is missing
875 returns 403 error
876 when target_branch is specified
877 filters the rules returned by target branch
878 private group filtering
879 excludes private groups if user has no access
880 includes private groups if user has access
881 report_approver rules
882 includes report_approver rules
883 when project is archived
884 when user has normal permissions
885 returns 403
886 when user has project admin permissions
887 allows access
888 POST /projects/:id/approval_settings/rules
889 behaves like an API endpoint for creating project approval rule
890 behaves like a restricted project approval rule API endpoint
891 when admin_merge_request_approvers_rules license feature is disabled
892 when disable_overriding_approvers_per_merge_request app setting is false
893 behaves like a user with access
894 returns 201 status
895 when disable_overriding_approvers_per_merge_request app setting is true
896 behaves like a user with access
897 returns 201 status
898 when admin_merge_request_approvers_rules license feature is enabled
899 when disable_overriding_approvers_per_merge_request app setting is false
900 behaves like a user with access
901 returns 201 status
902 when disable_overriding_approvers_per_merge_request app setting is true
903 behaves like a user without access
904 returns 403
905 when user is an admin
906 behaves like a user with access
907 returns 201 status
908 when missing parameters
909 returns 400 status
910 when user is without access
911 behaves like a user without access
912 returns 403
913 when the request is correct
914 changes settings properly
915 behaves like a user with access
916 returns 201 status
917 when protected_branch_ids param is present
918 creates approval rule associated to specified protected branches
919 when applies_to_all_protected_branches param is present
920 returns a list of project protected branches in the response
921 with rule_type set to report_approver
922 without report_type
923 returns a error http status
924 when creating a approval rule for each report_type
925 rule_name: "License-Check", report_type: :license_scanning
926 specifies `report_rule` and `report_type`
927 rule_name: "Coverage-Check", report_type: :code_coverage
928 specifies `report_rule` and `report_type`
929 with users or groups params
930 with a user
931 returns a user
932 with users_ids
933 returns a user
934 when both users and user_ids are set
935 returns a user from user_ids
936 with a group
937 returns a group
938 with group_ids
939 returns a group
940 when both groups and group_ids are set
941 returns a group from group_ids
942 with valid scanners
943 returns 201 status
944 with valid severity_levels
945 returns 201 status
946 with username
947 returns 201 status
948 with vulnerabilities_allowed
949 returns 201 status
950 PUT /projects/:id/approval_settings/:approval_rule_id
951 behaves like an API endpoint for updating project approval rule
952 behaves like a restricted project approval rule API endpoint
953 when admin_merge_request_approvers_rules license feature is disabled
954 when disable_overriding_approvers_per_merge_request app setting is false
955 behaves like a user with access
956 sets approvers
957 when applies_to_all_protected_branches param is present
958 returns a list of project protected branches in the response
959 when protected_branch_ids param is present
960 associates approval rule to specified protected branches
961 with users or groups params
962 with a user
963 sets a user
964 with users_ids
965 sets a user
966 when both users and user_ids are set
967 sets a user from user_ids
968 with a group
969 sets a group
970 with group_ids
971 sets a group
972 when both groups and group_ids are set
973 sets a group from group_ids
974 with valid scanners
975 returns 200 status
976 with nil scanners
977 returns 200 status
978 when scanners is NULL in the database
979 returns 200 status
980 with valid severity_levels
981 returns 200 status
982 when approver already exists
983 when sending json data
984 removes all approvers if empty params are given
985 with vulnerabilities_allowed
986 returns 200 status
987 when disable_overriding_approvers_per_merge_request app setting is true
988 behaves like a user with access
989 sets approvers
990 when applies_to_all_protected_branches param is present
991 returns a list of project protected branches in the response
992 when protected_branch_ids param is present
993 associates approval rule to specified protected branches
994 with users or groups params
995 with a user
996 sets a user
997 with users_ids
998 sets a user
999 when both users and user_ids are set
1000 sets a user from user_ids
1001 with a group
1002 sets a group
1003 with group_ids
1004 sets a group
1005 when both groups and group_ids are set
1006 sets a group from group_ids
1007 with valid scanners
1008 returns 200 status
1009 with nil scanners
1010 returns 200 status
1011 when scanners is NULL in the database
1012 returns 200 status
1013 with valid severity_levels
1014 returns 200 status
1015 when approver already exists
1016 when sending json data
1017 removes all approvers if empty params are given
1018 with vulnerabilities_allowed
1019 returns 200 status
1020 when admin_merge_request_approvers_rules license feature is enabled
1021 when disable_overriding_approvers_per_merge_request app setting is false
1022 behaves like a user with access
1023 sets approvers
1024 when applies_to_all_protected_branches param is present
1025 returns a list of project protected branches in the response
1026 when protected_branch_ids param is present
1027 associates approval rule to specified protected branches
1028 with users or groups params
1029 with a user
1030 sets a user
1031 with users_ids
1032 sets a user
1033 when both users and user_ids are set
1034 sets a user from user_ids
1035 with a group
1036 sets a group
1037 with group_ids
1038 sets a group
1039 when both groups and group_ids are set
1040 sets a group from group_ids
1041 with valid scanners
1042 returns 200 status
1043 with nil scanners
1044 returns 200 status
1045 when scanners is NULL in the database
1046 returns 200 status
1047 with valid severity_levels
1048 returns 200 status
1049 when approver already exists
1050 when sending json data
1051 removes all approvers if empty params are given
1052 with vulnerabilities_allowed
1053 returns 200 status
1054 when disable_overriding_approvers_per_merge_request app setting is true
1055 behaves like a user without access
1056 returns 403
1057 when user is an admin
1058 behaves like a user with access
1059 sets approvers
1060 when applies_to_all_protected_branches param is present
1061 returns a list of project protected branches in the response
1062 when protected_branch_ids param is present
1063 associates approval rule to specified protected branches
1064 with users or groups params
1065 with a user
1066 sets a user
1067 with users_ids
1068 sets a user
1069 when both users and user_ids are set
1070 sets a user from user_ids
1071 with a group
1072 sets a group
1073 with group_ids
1074 sets a group
1075 when both groups and group_ids are set
1076 sets a group from group_ids
1077 with valid scanners
1078 returns 200 status
1079 with nil scanners
1080 returns 200 status
1081 when scanners is NULL in the database
1082 returns 200 status
1083 with valid severity_levels
1084 returns 200 status
1085 when approver already exists
1086 when sending json data
1087 removes all approvers if empty params are given
1088 with vulnerabilities_allowed
1089 returns 200 status
1090 as a project admin
1091 behaves like a user with access
1092 sets approvers
1093 when applies_to_all_protected_branches param is present
1094 returns a list of project protected branches in the response
1095 when protected_branch_ids param is present
1096 associates approval rule to specified protected branches
1097 with users or groups params
1098 with a user
1099 sets a user
1100 with users_ids
1101 sets a user
1102 when both users and user_ids are set
1103 sets a user from user_ids
1104 with a group
1105 sets a group
1106 with group_ids
1107 sets a group
1108 when both groups and group_ids are set
1109 sets a group from group_ids
1110 with valid scanners
1111 returns 200 status
1112 with nil scanners
1113 returns 200 status
1114 when scanners is NULL in the database
1115 returns 200 status
1116 with valid severity_levels
1117 returns 200 status
1118 when approver already exists
1119 when sending json data
1120 removes all approvers if empty params are given
1121 with vulnerabilities_allowed
1122 returns 200 status
1123 as a global admin
1124 behaves like a user with access
1125 sets approvers
1126 when applies_to_all_protected_branches param is present
1127 returns a list of project protected branches in the response
1128 when protected_branch_ids param is present
1129 associates approval rule to specified protected branches
1130 with users or groups params
1131 with a user
1132 sets a user
1133 with users_ids
1134 sets a user
1135 when both users and user_ids are set
1136 sets a user from user_ids
1137 with a group
1138 sets a group
1139 with group_ids
1140 sets a group
1141 when both groups and group_ids are set
1142 sets a group from group_ids
1143 with valid scanners
1144 returns 200 status
1145 with nil scanners
1146 returns 200 status
1147 when scanners is NULL in the database
1148 returns 200 status
1149 with valid severity_levels
1150 returns 200 status
1151 when approver already exists
1152 when sending json data
1153 removes all approvers if empty params are given
1154 with vulnerabilities_allowed
1155 returns 200 status
1156 as a random user
1157 behaves like a user without access
1158 returns 403
1159 DELETE /projects/:id/approval_settings/rules/:approval_rule_id
1160 behaves like an API endpoint for deleting project approval rule
1161 behaves like a user with access
1162 destroys
1163 behaves like a restricted project approval rule API endpoint
1164 when admin_merge_request_approvers_rules license feature is disabled
1165 when disable_overriding_approvers_per_merge_request app setting is false
1166 behaves like a user with access
1167 destroys
1168 when disable_overriding_approvers_per_merge_request app setting is true
1169 behaves like a user with access
1170 destroys
1171 when admin_merge_request_approvers_rules license feature is enabled
1172 when disable_overriding_approvers_per_merge_request app setting is false
1173 behaves like a user with access
1174 destroys
1175 when disable_overriding_approvers_per_merge_request app setting is true
1176 behaves like a user without access
1177 returns 403
1178 when user is an admin
1179 behaves like a user with access
1180 destroys
1181 when approval rule not found
1182 returns not found
1183 when user is not eligible to delete
1184 behaves like a user without access
1185 returns 403
1186API::VulnerabilityFindings
1187 GET /projects/:id/vulnerability_findings
1188 with an authorized user with proper permissions
1189 returns all non-dismissed vulnerabilities
1190 using different finders
1191 when the `Security::PureFindingsFinder` is not available
1192 uses the `Security::FindingsFinder`
1193 when the `Security::PureFindingsFinder` is available
1194 uses the `Security::FindingsFinder`
1195 filtering
1196 returns vulnerabilities with sast report_type
1197 returns vulnerabilities with dependency_scanning report_type
1198 returns a "bad request" response for an unknown report type
1199 returns dismissed vulnerabilities with `all` scope
1200 returns vulnerabilities with low severity
1201 returns a "bad request" response for an unknown severity value
1202 returns vulnerabilities with high confidence
1203 returns a "bad request" response for an unknown confidence value
1204 when pipeline_id is supplied
1205 returns vulnerabilities from supplied pipeline
1206 pipeline has no reports
1207 returns empty results
1208 with unknown pipeline
1209 returns empty results
1210 when security dashboard feature is not available
1211 responds with 403 Forbidden
1212 permissions
1213 is expected to be allowed for :admin
1214 is expected to be allowed for :owner
1215 is expected to be allowed for :maintainer
1216 is expected to be allowed for :developer
1217 is expected to be allowed for :auditor
1218 is expected to be denied for :reporter
1219 is expected to be denied for :guest
1220 is expected to be denied for :anonymous
1221Notify
1222 for a project
1223 for merge requests
1224 that are new with approver
1225 contains the approvers list
1226 that are approved
1227 is sent as the last approver
1228 has the correct subject
1229 contains the new status
1230 contains a link to the merge request
1231 contains the names of all of the approvers
1232 contains the names of all assignees
1233 behaves like a multiple recipients email
1234 is sent to the given recipient
1235 behaves like an answer to an existing thread with reply-by-email enabled
1236 has X-GitLab-Project headers
1237 has X-GitLab-*-ID header
1238 has X-GitLab-*-IID header if model has iid defined
1239 has X-GitLab-Project headers
1240 has X-GitLab-*-ID header
1241 has X-GitLab-*-IID header if model has iid defined
1242 has the characteristics of a threaded reply
1243 when reply-by-email is enabled with incoming address with %{key}
1244 has a Reply-To header
1245 when reply-by-email is enabled with incoming address without %{key}
1246 has X-GitLab-Project headers
1247 has X-GitLab-*-ID header
1248 has X-GitLab-*-IID header if model has iid defined
1249 has the characteristics of a threaded reply
1250 has a Reply-To header
1251 behaves like it should show Gmail Actions View Merge request link
1252 is expected to have body including "View Merge request"
1253 behaves like it should have Gmail Actions links
1254 is expected to have body including "ViewAction"
1255 behaves like an unsubscribeable thread
1256 has a List-Unsubscribe header in the correct format, and a body link
1257 behaves like an unsubscribeable thread with incoming address without %{key}
1258 has a List-Unsubscribe header in the correct format, and a body link
1259 when merge request has no assignee
1260 does not show the assignee
1261 that are unapproved
1262 is sent as the last unapprover
1263 has the correct subject
1264 contains the new status
1265 contains a link to the merge request
1266 contains the names of all of the approvers
1267 contains the names of all assignees
1268 behaves like a multiple recipients email
1269 is sent to the given recipient
1270 behaves like an answer to an existing thread with reply-by-email enabled
1271 has X-GitLab-Project headers
1272 has X-GitLab-*-ID header
1273 has X-GitLab-*-IID header if model has iid defined
1274 has X-GitLab-Project headers
1275 has X-GitLab-*-ID header
1276 has X-GitLab-*-IID header if model has iid defined
1277 has the characteristics of a threaded reply
1278 when reply-by-email is enabled with incoming address with %{key}
1279 has a Reply-To header
1280 when reply-by-email is enabled with incoming address without %{key}
1281 has X-GitLab-Project headers
1282 has X-GitLab-*-ID header
1283 has X-GitLab-*-IID header if model has iid defined
1284 has the characteristics of a threaded reply
1285 has a Reply-To header
1286 behaves like it should show Gmail Actions View Merge request link
1287 is expected to have body including "View Merge request"
1288 behaves like it should have Gmail Actions links
1289 is expected to have body including "ViewAction"
1290 behaves like an unsubscribeable thread
1291 has a List-Unsubscribe header in the correct format, and a body link
1292 behaves like an unsubscribeable thread with incoming address without %{key}
1293 has a List-Unsubscribe header in the correct format, and a body link
1294 for merge requests without assignee
1295 that are unapproved
1296 contains the new status
1297 for merge request with reviewer
1298 merge request diff summary
1299 when merge_request_diff_llm_summary exists
1300 when SummarizeDiffService is disabled
1301 does not include diff summary
1302 when SummarizeDiffService is enabled
1303 includes diff summary
1304 when merge_request_diff_llm_summary is empty
1305 when SummarizeDiffService is enabled
1306 does not include diff summary
1307 for a group
1308 for epics
1309 that are new
1310 has the correct subject and body
1311 contains a link to epic author
1312 contains a link to the epic
1313 behaves like an epic email starting a new thread with reply-by-email enabled
1314 has the characteristics of a threaded email
1315 when reply-by-email is enabled with incoming address with %{key}
1316 has a Reply-To header
1317 when reply-by-email is enabled with incoming address without %{key}
1318 has the characteristics of a threaded email
1319 has a Reply-To header
1320 behaves like it should show Gmail Actions View Epic link
1321 is expected to have body including "View Epic"
1322 behaves like it should have Gmail Actions links
1323 is expected to have body including "ViewAction"
1324 behaves like an unsubscribeable thread
1325 has a List-Unsubscribe header in the correct format, and a body link
1326 behaves like an unsubscribeable thread with incoming address without %{key}
1327 has a List-Unsubscribe header in the correct format, and a body link
1328 behaves like having group identification headers
1329 has specific group headers
1330 got deleted before notification
1331 does not send email
1332 that changed status
1333 behaves like epic notifications with reply
1334 has the characteristics of a threaded reply
1335 has a Reply-To header
1336 has the correct subject and body
1337 behaves like having group identification headers
1338 has specific group headers
1339 behaves like it should show Gmail Actions View Epic link
1340 is expected to have body including "View Epic"
1341 behaves like it should have Gmail Actions links
1342 is expected to have body including "ViewAction"
1343 behaves like an unsubscribeable thread
1344 has a List-Unsubscribe header in the correct format, and a body link
1345 behaves like an unsubscribeable thread with incoming address without %{key}
1346 has a List-Unsubscribe header in the correct format, and a body link
1347 for epic notes
1348 behaves like epic notifications with reply
1349 has the characteristics of a threaded reply
1350 has a Reply-To header
1351 has the correct subject and body
1352 behaves like having group identification headers
1353 has specific group headers
1354 behaves like it should show Gmail Actions View Epic link
1355 is expected to have body including "View Epic"
1356 behaves like it should have Gmail Actions links
1357 is expected to have body including "ViewAction"
1358 behaves like an unsubscribeable thread
1359 has a List-Unsubscribe header in the correct format, and a body link
1360 behaves like an unsubscribeable thread with incoming address without %{key}
1361 has a List-Unsubscribe header in the correct format, and a body link
1362 behaves like a note email
1363 is sent to the given recipient as the author
1364 contains the message from the note
1365 contains a link to note author
1366 behaves like it should have Gmail Actions links
1367 is expected to have body including "ViewAction"
1368 for compliance frameworks
1369 example at ./ee/spec/mailers/notify_spec.rb:356
1370 is expected to have body including "Your Compliance Frameworks CSV export for the group"
1371 behaves like an email sent from GitLab
1372 has the characteristics of an email sent from GitLab
1373 mirror was hard failed
1374 has the correct subject and body
1375 behaves like an email sent from GitLab
1376 has the characteristics of an email sent from GitLab
1377 behaves like it should not have Gmail Actions links
1378 is expected not to have body including "ViewAction"
1379 behaves like a user cannot unsubscribe through footer link
1380 does not have a List-Unsubscribe header or a body link
1381 mirror was disabled
1382 has the correct subject and body
1383 behaves like an email sent from GitLab
1384 has the characteristics of an email sent from GitLab
1385 behaves like it should not have Gmail Actions links
1386 is expected not to have body including "ViewAction"
1387 behaves like a user cannot unsubscribe through footer link
1388 does not have a List-Unsubscribe header or a body link
1389 user was deleted
1390 does not send email
1391 mirror user changed
1392 has the correct subject and body
1393 behaves like an email sent from GitLab
1394 has the characteristics of an email sent from GitLab
1395 behaves like it should not have Gmail Actions links
1396 is expected not to have body including "ViewAction"
1397 behaves like a user cannot unsubscribe through footer link
1398 does not have a List-Unsubscribe header or a body link
1399 new user was created via saml
1400 delivers mail to user email
1401 contains all the useful information
1402 behaves like an email sent from GitLab
1403 has the characteristics of an email sent from GitLab
1404 behaves like it should not have Gmail Actions links
1405 is expected not to have body including "ViewAction"
1406 behaves like a user cannot unsubscribe through footer link
1407 does not have a List-Unsubscribe header or a body link
1408 behaves like appearance header and footer enabled
1409 contains header and footer
1410 behaves like appearance header and footer not enabled
1411 does not contain header and footer
1412 merge request reviews
1413 includes review summary
1414API::MergeRequestApprovals
1415 GET :id/merge_requests/:merge_request_iid/approvals
1416 retrieves the approval status
1417 lists unapproved rule names
1418 when private group approver
1419 hides private group
1420 when admin
1421 shows all approver groups
1422 when approvers are set to zero
1423 returns a 200
1424 when merge_status is cannot_be_merged_rechecking
1425 returns `checking`
1426 GET :id/merge_requests/:merge_request_iid/approval_settings
1427 retrieves the approval rules details
1428 behaves like an API endpoint for getting merge request approval state
1429 when source rule is present
1430 returns source rule details
1431 when rule has groups
1432 when user can view a group
1433 includes group
1434 when user cannot view a group included in groups
1435 excludes private groups
1436 when rule has a section
1437 exposes the value of section when set
1438 when target_branch is specified
1439 filters the rules returned by target branch
1440 GET :id/merge_requests/:merge_request_iid/approval_state
1441 retrieves the approval state details
1442 behaves like an API endpoint for getting merge request approval state
1443 when source rule is present
1444 returns source rule details
1445 when rule has groups
1446 when user can view a group
1447 includes group
1448 when user cannot view a group included in groups
1449 excludes private groups
1450 POST :id/merge_requests/:merge_request_iid/approvals
1451 behaves like POST request permissions for admin mode
1452 behaves like when admin
1453 behaves like makes request
1454 returns
1455 behaves like makes request
1456 returns
1457 behaves like when user
1458 returns
1459 behaves like makes request
1460 returns
1461 when disable_overriding_approvers_per_merge_request is true on the project
1462 does not allow you to set approvals_before_merge
1463 as a project admin
1464 behaves like user allowed to override approvals_before_merge
1465 when approval rule is missing for the merge request
1466 creates an approval rule with required number of approvals
1467 behaves like cannot update approval rules
1468 when users cannot update approval rules
1469 returns 403 error
1470 when approval rules already exist for the merge request
1471 updates any approval rule with required number of approvals
1472 behaves like cannot update approval rules
1473 when users cannot update approval rules
1474 returns 403 error
1475 as a global admin
1476 behaves like user allowed to override approvals_before_merge
1477 when approval rule is missing for the merge request
1478 creates an approval rule with required number of approvals
1479 behaves like cannot update approval rules
1480 when users cannot update approval rules
1481 returns 403 error
1482 when approval rules already exist for the merge request
1483 updates any approval rule with required number of approvals
1484 behaves like cannot update approval rules
1485 when users cannot update approval rules
1486 returns 403 error
1487 as a random user
1488 does not allow you to override approvals required
1489 POST :id/merge_requests/:merge_request_iid/approve
1490 as the author of the merge request
1491 returns a 401
1492 as a valid approver
1493 only shows group approvers visible to the user
1494 when the sha param is not set
1495 approves the merge request
1496 when the sha param is correct
1497 approves the merge request
1498 when the sha param is incorrect
1499 returns a 409
1500 does not approve the merge request
1501 when project requires force auth for approval
1502 does not approve the merge request with no password
1503 does not approve the merge request with incorrect password
1504 approves the merge request with correct password
1505 POST :id/merge_requests/:merge_request_iid/unapprove
1506 as a user who has approved the merge request
1507 unapproves the merge request
1508 only shows group approvers visible to the user
1509Projects::PushRulesController
1510 #update
1511 updates the push rule
1512 push rules unlicensed
1513 returns 404
1514 Updating reject_unsigned_commits rule
1515 as an admin in admin mode
1516 behaves like a setting with global default
1517 when disabled
1518 behaves like updateable setting
1519 does not update the setting
1520 when enabled
1521 behaves like updateable setting
1522 updates the setting
1523 when global setting is enabled
1524 behaves like updateable setting
1525 updates the setting
1526 as a maintainer user
1527 behaves like a setting with global default
1528 when disabled
1529 behaves like updateable setting
1530 does not update the setting
1531 when enabled
1532 behaves like updateable setting
1533 updates the setting
1534 when global setting is enabled
1535 behaves like updateable setting
1536 updates the setting
1537 as a developer user
1538 behaves like a setting with global default
1539 when disabled
1540 behaves like updateable setting
1541 does not update the setting
1542 when enabled
1543 behaves like updateable setting
1544 does not update the setting
1545 when global setting is enabled
1546 behaves like updateable setting
1547 does not update the setting
1548 Updating commit_committer_check rule
1549 as an admin in admin mode
1550 behaves like a setting with global default
1551 when disabled
1552 behaves like updateable setting
1553 does not update the setting
1554 when enabled
1555 behaves like updateable setting
1556 updates the setting
1557 when global setting is enabled
1558 behaves like updateable setting
1559 updates the setting
1560 as a maintainer user
1561 behaves like a setting with global default
1562 when disabled
1563 behaves like updateable setting
1564 does not update the setting
1565 when enabled
1566 behaves like updateable setting
1567 updates the setting
1568 when global setting is enabled
1569 behaves like updateable setting
1570 updates the setting
1571 as a developer user
1572 behaves like a setting with global default
1573 when disabled
1574 behaves like updateable setting
1575 does not update the setting
1576 when enabled
1577 behaves like updateable setting
1578 does not update the setting
1579 when global setting is enabled
1580 behaves like updateable setting
1581 does not update the setting
1582 Updating reject_non_dco_commits rule
1583 as an admin in admin mode
1584 behaves like a setting with global default
1585 when disabled
1586 behaves like updateable setting
1587 does not update the setting
1588 when enabled
1589 behaves like updateable setting
1590 updates the setting
1591 when global setting is enabled
1592 behaves like updateable setting
1593 updates the setting
1594 as a maintainer user
1595 behaves like a setting with global default
1596 when disabled
1597 behaves like updateable setting
1598 does not update the setting
1599 when enabled
1600 behaves like updateable setting
1601 updates the setting
1602 when global setting is enabled
1603 behaves like updateable setting
1604 updates the setting
1605 as a developer user
1606 behaves like a setting with global default
1607 when disabled
1608 behaves like updateable setting
1609 does not update the setting
1610 when enabled
1611 behaves like updateable setting
1612 does not update the setting
1613 when global setting is enabled
1614 behaves like updateable setting
1615 does not update the setting
1616 Updating commit_committer_name_check rule
1617 when commit_committer_name_check is disabled
1618 as an admin
1619 behaves like updates push rule commit_committer_name_check of project
1620 matches the given result
1621 as a maintainer user
1622 behaves like updates push rule commit_committer_name_check of project
1623 matches the given result
1624 as a developer user
1625 behaves like updates push rule commit_committer_name_check of project
1626 matches the given result
1627 when commit_committer_name_check is enabled
1628 as an admin
1629 behaves like updates push rule commit_committer_name_check of project
1630 matches the given result
1631 as a maintainer user
1632 behaves like updates push rule commit_committer_name_check of project
1633 matches the given result
1634 as a developer user
1635 behaves like updates push rule commit_committer_name_check of project
1636 matches the given result
1637Updating an epic tree
1638 when epics and subepics features are enabled
1639 when the user does not have permission
1640 returns the error message
1641 behaves like a mutation that does not update the tree
1642 does not change relative_positions
1643 when user cannot reorder issue
1644 returns the error message
1645 behaves like a mutation that does not update the tree
1646 does not change relative_positions
1647 when user cannot reorder adjacent reference
1648 returns the error message
1649 behaves like a mutation that does not update the tree
1650 does not change relative_positions
1651 when the user has permission
1652 when moving an epic
1653 when moving an epic is successful
1654 updates the epics relative positions
1655 returns nil in errors
1656 when a new_parent_id is provided
1657 updates the epics relative positions and updates the parent
1658 returns nil in errors
1659 when relative_position is invalid
1660 behaves like a mutation that returns top-level errors
1661 is expected to contain exactly "Variable $epicTreeReorderInput of type EpicTreeReorderInput! was provided invalid value for moved.relativePosition (Expected \"invalid\" to be one of: before, after)"
1662 when object being moved is not supported type
1663 returns the error message
1664 when moving an epic fails due to the parents of the relative position object and the moving object mismatching
1665 returns the error message
1666 behaves like a mutation that does not update the tree
1667 does not change relative_positions
1668 when the new parent is another epic and subepics feature is disabled
1669 returns the error message
1670 behaves like a mutation that does not update the tree
1671 does not change relative_positions
1672 when moving an issue
1673 updates the epics relative positions
1674 returns nil in errors
1675 when a new_parent_id is provided
1676 updates the epic's relative positions and parent
1677 returns nil in errors
1678 when moving an issue fails due to the parents of the relative position object and the moving object mismatching
1679 returns the error message
1680 behaves like a mutation that does not update the tree
1681 does not change relative_positions
1682getting an issue list at root level
1683 # order random
1684 when fetching issues from multiple projects
1685 when ip_restrictions feature is enabled
1686 when check_namespace_plan setting is enabled
1687 avoids N+1 queries
1688 behaves like graphql issue list request spec EE
1689 sorting and pagination
1690 when sorting by weight
1691 when ascending
1692 behaves like sorted paginated query
1693 behaves like requires variables
1694 shared example requires variables to be set
1695
1696 when sorting
1697 sorts correctly
1698 when paginating
1699 paginates correctly
1700 when descending
1701 behaves like sorted paginated query
1702 behaves like requires variables
1703 shared example requires variables to be set
1704
1705 when sorting
1706 sorts correctly
1707 when paginating
1708 paginates correctly
1709 when sorting by published incident
1710 when ascending
1711 behaves like sorted paginated query
1712 behaves like requires variables
1713 shared example requires variables to be set
1714
1715 when sorting
1716 sorts correctly
1717 when paginating
1718 paginates correctly
1719 when descending
1720 behaves like sorted paginated query
1721 behaves like requires variables
1722 shared example requires variables to be set
1723
1724 when sorting
1725 sorts correctly
1726 when paginating
1727 paginates correctly
1728 when sorting by sla due
1729 when ascending
1730 behaves like sorted paginated query
1731 behaves like requires variables
1732 shared example requires variables to be set
1733
1734 when sorting
1735 sorts correctly
1736 when paginating
1737 paginates correctly
1738 when descending
1739 behaves like sorted paginated query
1740 behaves like requires variables
1741 shared example requires variables to be set
1742
1743 when sorting
1744 sorts correctly
1745 when paginating
1746 paginates correctly
1747 filtering
1748 when filtering by weight
1749 when filtering for all issues with an assigned weight
1750 returns all issues with an assigned weight
1751 when filtering for all issues without an assigned weight
1752 returns all issues without an assigned weight
1753 when both weight and weight_wildcard_id filters are provided
1754 returns a mutually exclusive param error
1755 when filtering by iteration
1756 when filtering for issues in an iteration
1757 returns all issues in the iteration
1758 when filtering for issues in an iteration by iteration cadence
1759 returns all issues in the iteration
1760 when filtering by epic
1761 when filtering for all issues with epics
1762 returns all issues with epics
1763 when filtering for issues without epics
1764 returns all issues without epics
1765 when both epic_id and epic_wildcard_id filters are provided
1766 returns a mutually exclusive param error
1767 blocked
1768 uses the LazyLinksAggregate service
1769 returns the correct blocked count result
1770 returns the correct blocked issue detail result
1771 behaves like a working graphql query
1772 returns a successful response
1773 related_vulnerabilities
1774 avoids N+1 queries
1775Projects::MergeRequestsController
1776 GET #edit
1777 when the project requires code owner approval
1778 does not cause an extra queries when code owner rules are present
1779 does not cause extra queries when multiple code owner rules are present
1780 GET #index
1781 avoids N+1
1782 security_reports
1783 when the user can not read project security resources
1784 responds with 404
1785 when the user can read project security resources
1786 when the pipeline is pending
1787 returns 204 HTTP status along with the `Poll-Interval` header
1788 when the pipeline is not pending
1789 when the given type is invalid
1790 responds with 400
1791 when the given type is valid
1792 when comparison is being processed
1793 returns 204 HTTP status along with the `Poll-Interval` header
1794 when comparison is done
1795 when the comparison is errored
1796 responds with 400
1797 when the comparision is succeeded
1798 responds with 200 along with the report payload
1799Groups::Analytics::CycleAnalytics::StagesController
1800 behaves like Value Stream Analytics Stages controller
1801 GET #index
1802 succeeds
1803 returns correct start events
1804 does not include internal events
1805 succeeds for subgroups
1806 renders `forbidden` based on the response of the service object
1807 when `group_id` is not found
1808 renders `not_found` when group is missing
1809 when user has no lower access level than `reporter`
1810 renders `forbidden` response
1811 when feature is not available for the group
1812 renders `forbidden` response
1813 data endpoints
1814 GET #median
1815 matches the response schema
1816 when valid parameters are given
1817 succeeds
1818 accepts optional `project_ids` array
1819 succeeds
1820 when `created_before` is missing
1821 succeeds
1822 when `created_after` is missing
1823 succeeds
1824 when `created_after` is invalid, falls back to default date
1825 is expected to respond with numeric status code success
1826 when `created_before` is invalid
1827 renders `unprocessable_entity`
1828 when `created_after` is later than `created_before`
1829 renders `unprocessable_entity`
1830 when the date range exceeds 180 days
1831 renders `unprocessable_entity`
1832 GET #average
1833 matches the response schema
1834 when valid parameters are given
1835 succeeds
1836 accepts optional `project_ids` array
1837 succeeds
1838 when `created_before` is missing
1839 succeeds
1840 when `created_after` is missing
1841 succeeds
1842 when `created_after` is invalid, falls back to default date
1843 is expected to respond with numeric status code success
1844 when `created_before` is invalid
1845 renders `unprocessable_entity`
1846 when `created_after` is later than `created_before`
1847 renders `unprocessable_entity`
1848 when the date range exceeds 180 days
1849 renders `unprocessable_entity`
1850 GET #records
1851 when valid parameters are given
1852 succeeds
1853 accepts optional `project_ids` array
1854 succeeds
1855 when `created_before` is missing
1856 succeeds
1857 when `created_after` is missing
1858 succeeds
1859 when `created_after` is invalid, falls back to default date
1860 is expected to respond with numeric status code success
1861 when `created_before` is invalid
1862 renders `unprocessable_entity`
1863 when `created_after` is later than `created_before`
1864 renders `unprocessable_entity`
1865 when the date range exceeds 180 days
1866 renders `unprocessable_entity`
1867 when `group_id` is not found
1868 renders `not_found` when group is missing
1869 when user has no lower access level than `reporter`
1870 renders `forbidden` response
1871 when feature is not available for the group
1872 renders `forbidden` response
1873 sort params
1874 accepts sort params
1875 pagination
1876 exposes pagination headers
1877 GET #average_duration_chart
1878 matches the response schema
1879 fills all dates between the given range
1880 when valid parameters are given
1881 succeeds
1882 accepts optional `project_ids` array
1883 succeeds
1884 when `created_before` is missing
1885 succeeds
1886 when `created_after` is missing
1887 succeeds
1888 when `created_after` is invalid, falls back to default date
1889 is expected to respond with numeric status code success
1890 when `created_before` is invalid
1891 renders `unprocessable_entity`
1892 when `created_after` is later than `created_before`
1893 renders `unprocessable_entity`
1894 when the date range exceeds 180 days
1895 renders `unprocessable_entity`
1896 when `group_id` is not found
1897 renders `not_found` when group is missing
1898 when user has no lower access level than `reporter`
1899 renders `forbidden` response
1900 when feature is not available for the group
1901 renders `forbidden` response
1902 GET #count
1903 matches the response schema
1904 when valid parameters are given
1905 succeeds
1906 accepts optional `project_ids` array
1907 succeeds
1908 when `created_before` is missing
1909 succeeds
1910 when `created_after` is missing
1911 succeeds
1912 when `created_after` is invalid, falls back to default date
1913 is expected to respond with numeric status code success
1914 when `created_before` is invalid
1915 renders `unprocessable_entity`
1916 when `created_after` is later than `created_before`
1917 renders `unprocessable_entity`
1918 when the date range exceeds 180 days
1919 renders `unprocessable_entity`
1920 when `group_id` is not found
1921 renders `not_found` when group is missing
1922 when user has no lower access level than `reporter`
1923 renders `forbidden` response
1924 when feature is not available for the group
1925 renders `forbidden` response
1926Git HTTP requests
1927 User with no identities
1928 when Kerberos token is provided
1929 when authentication fails because of invalid Kerberos token
1930 responds with status 401 Unauthorized
1931 when authentication fails because of unknown Kerberos identity
1932 responds with status 401 Unauthorized
1933 when authentication succeeds
1934 when the user has access to the project
1935 complies with RFC4559
1936 when the user is blocked
1937 responds with status 403 Forbidden
1938 when the user isn't blocked
1939 responds with status 200 OK
1940 updates the user last activity
1941 when the user doesn't have access to the project
1942 responds with status 404 Not Found
1943 complies with RFC4559
1944 when license is not provided
1945 behaves like pulls are allowed
1946 is expected to eq "application/vnd.gitlab-workhorse+json"
1947 behaves like pushes are allowed
1948 is expected to eq "application/vnd.gitlab-workhorse+json"
1949 when SSO is enforced
1950 behaves like pulls are allowed
1951 is expected to eq "application/vnd.gitlab-workhorse+json"
1952 when user cannot use password-based login
1953 with feature flag switched off
1954 behaves like pulls are allowed
1955 is expected to eq "application/vnd.gitlab-workhorse+json"
1956 behaves like pushes are allowed
1957 is expected to eq "application/vnd.gitlab-workhorse+json"
1958 with feature flag switched on
1959 responds with status 401 Unauthorized for pull action
1960 responds with status 401 Unauthorized for push action
1961 when username and personal access token are provided
1962 behaves like pulls are allowed
1963 is expected to eq "application/vnd.gitlab-workhorse+json"
1964 behaves like pushes are allowed
1965 is expected to eq "application/vnd.gitlab-workhorse+json"
1966 when user has 2FA enabled
1967 when username and personal access token are provided
1968 rejects the push attempt for read_repository scope
1969 accepts the push attempt for write_repository scope
1970 accepts the pull attempt for read_repository scope
1971 accepts the pull attempt for api scope
1972 accepts the push attempt for api scope
1973 behaves like pulls are allowed
1974 is expected to eq "application/vnd.gitlab-workhorse+json"
1975 behaves like pushes are allowed
1976 is expected to eq "application/vnd.gitlab-workhorse+json"
1977 when namespace storage limits are enforced
1978 behaves like pushes are allowed
1979 is expected to eq "application/vnd.gitlab-workhorse+json"
1980 when the limit has been exceeded
1981 behaves like pushes are allowed
1982 is expected to eq "application/vnd.gitlab-workhorse+json"
1983API::EpicLinks
1984 GET /groups/:id/epics/:epic_iid/epics
1985 behaves like user does not have access
1986 returns 403 when subepics feature is disabled
1987 returns 404 not found error for a user without permissions to see the group
1988 unauthenticated user
1989 returns 401 unauthorized error
1990 when subepics feature is enabled
1991 returns 200 status
1992 with group hierarchy
1993 returns children from any group hierarchy
1994 executes limited number of N+1 queries
1995 POST /groups/:id/epics/:epic_iid/epics/child_epic_id
1996 behaves like user does not have access
1997 returns 403 when subepics feature is disabled
1998 returns 404 not found error for a user without permissions to see the group
1999 unauthenticated user
2000 returns 401 unauthorized error
2001 when subepics feature is enabled
2002 when user is not a member
2003 returns 403
2004 when user is guest
2005 returns 201 status
2006 when target epic cannot be read
2007 returns 404 status
2008 POST /groups/:id/epics/:epic_iid/epics
2009 behaves like user does not have access
2010 returns 403 when subepics feature is disabled
2011 returns 404 not found error for a user without permissions to see the group
2012 unauthenticated user
2013 returns 401 unauthorized error
2014 when subepics feature is enabled
2015 when user is not a member
2016 returns 403
2017 when user is a guest
2018 returns 201 status
2019 when user is a reporter
2020 returns 201 status
2021 does apply the confidential parameter if set
2022 when the parent epic is confidential
2023 copies the confidentiality status from the parent epic
2024 does not allow creating a non-confidential sub-epic
2025 and epic has errors
2026 returns 400 error
2027 PUT /groups/:id/epics/:epic_iid/epics/:child_epic_id
2028 behaves like user does not have access
2029 returns 403 when subepics feature is disabled
2030 returns 404 not found error for a user without permissions to see the group
2031 unauthenticated user
2032 returns 401 unauthorized error
2033 when subepics are enabled
2034 when user has permissions to reorder epics
2035 returns status 200
2036 when child belongs to a different group hierarchy
2037 returns status 404 if user is not a member
2038 returns status 200 if user has guest access
2039 when user does not have permissions to reorder epics
2040 returns status 403
2041 DELETE /groups/:id/epics/:epic_iid/epics
2042 behaves like user does not have access
2043 returns 403 when subepics feature is disabled
2044 returns 404 not found error for a user without permissions to see the group
2045 unauthenticated user
2046 returns 401 unauthorized error
2047 when epics feature is enabled
2048 when user is not a member
2049 returns 403
2050 when user is guest
2051 returns 200 status
2052 with confidential epic
2053 returns status 403
2054 when child belongs to a different group hierarchy
2055 when user is not a member of the child's group
2056 returns 404 status
2057 when user has guest access to child's group
2058 returns 200 status
2059 when epics feature is disabled
2060 when user is developer
2061 returns 403 status
2062API::RelatedEpicLinks
2063 GET /groups/:id/related_epic_links
2064 when user has no access to the group
2065 returns 404
2066 when user has access to the group
2067 returns only related epics links the user has access to
2068 behaves like endpoint with features check
2069 when epics feature is not available
2070 is expected to eq 403
2071 when related_epics feature is not available
2072 is expected to eq 403
2073 when filtered by updated_before
2074 returns related epic links updated before the given parameter
2075 returns no related epic links
2076 when filtered by updated_after
2077 returns related epic links updated before the given parameter
2078 returns no related epic links
2079 when filtered by created_after
2080 returns related epic links created after the given parameter
2081 returns no related epic links
2082 when filtered by created_before
2083 returns related epic links created before the given parameter
2084 returns no related epic links
2085 when epics links are in a sub-group
2086 returns linked epic from sub-group
2087 when user has access to both groups
2088 returns related epic links
2089 returns multiple links without N + 1
2090 with pagination
2091 returns first page of related epics
2092 returns the last page of related epics
2093 GET /groups/:id/epics/:epic_id/related_epics
2094 when user cannot read epics
2095 returns 404
2096 when user can read epics
2097 returns related epics
2098 returns multiple links without N + 1
2099 behaves like endpoint with features check
2100 when epics feature is not available
2101 is expected to eq 403
2102 when related_epics feature is not available
2103 is expected to eq 403
2104 POST /groups/:id/epics/:epic_id/related_epics
2105 behaves like unauthenticated resource
2106 returns 401
2107 behaves like insufficient permissions
2108 when user can not access source epic
2109 behaves like not found resource
2110 returns 404
2111 when user can only read source epic
2112 behaves like forbidden resource
2113 returns 403
2114 when user can only manage source epic
2115 behaves like not found resource
2116 returns 404
2117 when user is guest in target group
2118 behaves like successful response
2119 returns created
2120 when target epic is confidential
2121 behaves like forbidden resource
2122 returns 403
2123 when user can relate epics
2124 returns 201 when sending full path of target group
2125 returns 201 status for is_blocked_by link and contains the expected link response
2126 behaves like endpoint with features check
2127 when epics feature is not available
2128 is expected to eq 403
2129 when related_epics feature is not available
2130 is expected to eq 403
2131 behaves like successful response
2132 returns created
2133 when target epic is not found
2134 behaves like not found resource
2135 returns 404
2136 DELETE /groups/:id/epics/:epic_id/related_epics
2137 behaves like unauthenticated resource
2138 returns 401
2139 behaves like insufficient permissions
2140 when user can not access source epic
2141 behaves like not found resource
2142 returns 404
2143 when user can only read source epic
2144 behaves like forbidden resource
2145 returns 403
2146 when user can manage source epic
2147 behaves like not found resource
2148 returns 404
2149 when user is guest in target group
2150 behaves like successful response
2151 returns ok
2152 when related_epic_link_id belongs to a different epic
2153 behaves like not found resource
2154 returns 404
2155 when user can relate epics
2156 behaves like endpoint with features check
2157 when epics feature is not available
2158 is expected to eq 403
2159 when related_epics feature is not available
2160 is expected to eq 403
2161 behaves like successful response
2162 returns ok
2163getting an issue list for a project
2164 behaves like graphql issue list request spec EE
2165 sorting and pagination
2166 when sorting by weight
2167 when ascending
2168 behaves like sorted paginated query
2169 behaves like requires variables
2170 shared example requires variables to be set
2171
2172 when sorting
2173 sorts correctly
2174 when paginating
2175 paginates correctly
2176 when descending
2177 behaves like sorted paginated query
2178 behaves like requires variables
2179 shared example requires variables to be set
2180
2181 when sorting
2182 sorts correctly
2183 when paginating
2184 paginates correctly
2185 when sorting by published incident
2186 when ascending
2187 behaves like sorted paginated query
2188 behaves like requires variables
2189 shared example requires variables to be set
2190
2191 when sorting
2192 sorts correctly
2193 when paginating
2194 paginates correctly
2195 when descending
2196 behaves like sorted paginated query
2197 behaves like requires variables
2198 shared example requires variables to be set
2199
2200 when sorting
2201 sorts correctly
2202 when paginating
2203 paginates correctly
2204 when sorting by sla due
2205 when ascending
2206 behaves like sorted paginated query
2207 behaves like requires variables
2208 shared example requires variables to be set
2209
2210 when sorting
2211 sorts correctly
2212 when paginating
2213 paginates correctly
2214 when descending
2215 behaves like sorted paginated query
2216 behaves like requires variables
2217 shared example requires variables to be set
2218
2219 when sorting
2220 sorts correctly
2221 when paginating
2222 paginates correctly
2223 filtering
2224 when filtering by weight
2225 when filtering for all issues with an assigned weight
2226 returns all issues with an assigned weight
2227 when filtering for all issues without an assigned weight
2228 returns all issues without an assigned weight
2229 when both weight and weight_wildcard_id filters are provided
2230 returns a mutually exclusive param error
2231 when filtering by iteration
2232 when filtering for issues in an iteration
2233 returns all issues in the iteration
2234 when filtering for issues in an iteration by iteration cadence
2235 returns all issues in the iteration
2236 when filtering by epic
2237 when filtering for all issues with epics
2238 returns all issues with epics
2239 when filtering for issues without epics
2240 returns all issues without epics
2241 when both epic_id and epic_wildcard_id filters are provided
2242 returns a mutually exclusive param error
2243 blocked
2244 uses the LazyLinksAggregate service
2245 returns the correct blocked count result
2246 returns the correct blocked issue detail result
2247 behaves like a working graphql query
2248 returns a successful response
2249 related_vulnerabilities
2250 avoids N+1 queries
2251 filtered
2252 by negated health status
2253 only returns issues without the negated health status
2254Groups::AuditEventsController
2255 GET #index
2256 when authorized owner
2257
2258 behaves like when audit_events feature is available
2259 renders index with 200 status code
2260 tracks search event
2261 invokes AuditEventFinder with correct arguments
2262 behaves like AuditEventFinder params
2263 has the correct params
2264 author
2265 when no author entity type is specified
2266 behaves like AuditEventFinder params
2267 has the correct params
2268 when the author entity type is specified
2269 behaves like AuditEventFinder params
2270 has the correct params
2271 ordering
2272 when no sort order is specified
2273 behaves like orders by id descending
2274 orders by id descending
2275 when sorting by latest events first
2276 behaves like orders by id descending
2277 orders by id descending
2278 when sorting by oldest events first
2279 orders by id ascending
2280 when sorting by an unsupported sort order
2281 behaves like orders by id descending
2282 orders by id descending
2283 pagination
2284 sets instance variables
2285 paginates audit events, without casting a count query
2286 behaves like Snowplow event tracking with RedisHLL context
2287 behaves like Snowplow event tracking
2288 is emitted
2289 when invalid date
2290 created_before: "invalid-date", created_after: nil
2291 returns an error
2292 created_before: nil, created_after: true
2293 returns an error
2294 created_before: "2021-13-10", created_after: nil
2295 returns an error
2296 created_before: nil, created_after: "2021-02-31"
2297 returns an error
2298 created_before: "2021-03-31", created_after: "2021-02-31"
2299 returns an error
2300 when date range is greater than limit
2301 behaves like a date range error is returned
2302 created_after: "2021-01-01", created_before: "2021-02-02"
2303 returns an error
2304 created_after: "2022-01-31", created_before: nil
2305 returns an error
2306 behaves like tracking unique visits
2307 tracks unique visit if the format is HTML
2308 tracks unique visit if DNT is not enabled
2309 does not track unique visit if DNT is enabled
2310 does not track unique visit if the format is JSON
2311 when authorized auditor
2312
2313 behaves like when audit_events feature is available
2314 renders index with 200 status code
2315 tracks search event
2316 invokes AuditEventFinder with correct arguments
2317 behaves like AuditEventFinder params
2318 has the correct params
2319 author
2320 when no author entity type is specified
2321 behaves like AuditEventFinder params
2322 has the correct params
2323 when the author entity type is specified
2324 behaves like AuditEventFinder params
2325 has the correct params
2326 ordering
2327 when no sort order is specified
2328 behaves like orders by id descending
2329 orders by id descending
2330 when sorting by latest events first
2331 behaves like orders by id descending
2332 orders by id descending
2333 when sorting by oldest events first
2334 orders by id ascending
2335 when sorting by an unsupported sort order
2336 behaves like orders by id descending
2337 orders by id descending
2338 pagination
2339 sets instance variables
2340 paginates audit events, without casting a count query
2341 behaves like Snowplow event tracking with RedisHLL context
2342 behaves like Snowplow event tracking
2343 is emitted
2344 when invalid date
2345 created_before: "invalid-date", created_after: nil
2346 returns an error
2347 created_before: nil, created_after: true
2348 returns an error
2349 created_before: "2021-13-10", created_after: nil
2350 returns an error
2351 created_before: nil, created_after: "2021-02-31"
2352 returns an error
2353 created_before: "2021-03-31", created_after: "2021-02-31"
2354 returns an error
2355 when date range is greater than limit
2356 behaves like a date range error is returned
2357 created_after: "2021-01-01", created_before: "2021-02-02"
2358 returns an error
2359 created_after: "2022-01-31", created_before: nil
2360 returns an error
2361 behaves like tracking unique visits
2362 tracks unique visit if the format is HTML
2363 tracks unique visit if DNT is not enabled
2364 does not track unique visit if DNT is enabled
2365 does not track unique visit if the format is JSON
2366 unauthorized
2367 renders 404
2368getting epics information
2369 query for epics which start with an iid
2370 when a valid iidStartsWith query is provided
2371 returns the expected epics
2372 when invalid iidStartsWith query is provided
2373 fails with negative number
2374 fails with string
2375 fails if query contains line breaks
2376 query for epics by created_at and updated_at
2377 filters by createdBefore
2378 filters by createdAfter
2379 filters by updatedBefore
2380 filters by updatedAfter
2381 filters by a combination of created parameters provided
2382 filters by a combination of created/updated parameters provided
2383 returns nothing for impossible parameters
2384 query for epics by time frame
2385 when `start` and `end` are present
2386 returns epics within timeframe
2387 when only start is present
2388 raises error
2389 when only end is present
2390 raises error
2391 query for epics with events
2392 can lookahead to prevent N+1 queries
2393 query for epics with ancestors
2394 returns only ancestors up to the last accessible ancestor
2395 when user is member of cross-hierarchy group
2396 returns all ancestors
2397 when requesting awardEmoji
2398 includes award emojis
2399 N+1 query checks
2400 when requesting `award_emoji`
2401 prevents N+1 queries
2402 N+1 query test contains data
2403 when requesting `health_status`
2404 prevents N+1 queries
2405 query for epics including their count
2406 returns epics total count
2407Ldap::OmniauthCallbacksController
2408 displays LDAP sync flash on first sign in
2409 skips LDAP sync flash on subsequent sign ins
2410 for sign up
2411 does not enforce onboarding for sign up
2412 multiple ldap providers configured
2413 multiple ldap servers licensed feature available
2414 allows sign in to first provider
2415 allows sign in to other provider
2416 multiple ldap servers licensed feature not available
2417 allows sign in
2418 does not allow sign in for other providers
2419 access denied
2420 logs a failure event
2421API::ProjectPushRule ProjectPushRule
2422 GET /projects/:id/push_rule
2423 authorized user
2424 returns project push rule
2425 the commit_committer_check feature is enabled
2426 returns the commit_committer_check information
2427 the reject_unsigned_commits feature is enabled
2428 returns the reject_unsigned_commits information
2429 the reject_unsigned_commits feature is not enabled
2430 succeeds
2431 does not return the reject_unsigned_commits information
2432 push rules are not enabled
2433 is forbidden
2434 developer
2435 does not have access to project push rule
2436 POST /projects/:id/push_rule
2437 adds push rule to project with no file size
2438 returns 400 if no parameter is given
2439 maintainer
2440 is accepted
2441 indicates that it belongs to the correct project
2442 sets all given parameters
2443 commit_committer_check not allowed by License
2444 is forbidden to use this service
2445 reject_unsigned_commits not allowed by License
2446 is forbidden to use this service
2447 commit_committer_check is not enabled
2448 is forbidden to send the the :commit_committer_check parameter
2449 without the :commit_committer_check parameter
2450 sets all given parameters
2451 reject_unsigned_commits is not enabled
2452 is forbidden to send the the :reject_unsigned_commits parameter
2453 without the :reject_unsigned_commits parameter
2454 sets all given parameters
2455 invalid params
2456 returns an error
2457 when regex is too long
2458 returns an error
2459 when feature flag "add_validation_for_push_rules" is disabled
2460 is successful
2461 user with developer_access
2462 does not add push rule to project
2463 with existing push rule
2464 returns an error response
2465 PUT /projects/:id/push_rule
2466 does not update push rule for unauthorized user
2467 with existing push rule
2468 setting deny_delete_tag and commit_message_regex
2469 is successful
2470 includes the expected settings
2471 setting commit_committer_check
2472 is successful
2473 sets the commit_committer_check
2474 the commit_committer_check feature is not enabled
2475 is an error to provide this parameter
2476 setting reject_unsigned_commits
2477 is successful
2478 sets the reject_unsigned_commits
2479 the reject_unsigned_commits feature is not enabled
2480 is an error to provide the this parameter
2481 not providing parameters
2482 is an error
2483 invalid params
2484 returns an error
2485 without existing push rule
2486 returns an error response
2487 DELETE /projects/:id/push_rule
2488 for existing push rule
2489 maintainer
2490 deletes push rule from project
2491 user with developer_access
2492 returns a 403 error
2493 for non existing push rule
2494 deletes push rule from project
2495 returns a 403 error if not authorized
2496API::Admin::Search::Zoekt
2497 # order random
2498 DELETE /admin/zoekt/shards/:shard_id/indexed_namespaces/:namespace_id
2499 removes the Zoekt::IndexedNamespace for this shard and namespace pair
2500 behaves like DELETE request permissions for admin mode
2501 behaves like when admin
2502 behaves like makes request
2503 returns
2504 behaves like makes request
2505 returns
2506 behaves like when user
2507 returns
2508 behaves like makes request
2509 returns
2510 behaves like an API that returns 401 for unauthenticated requests
2511 returns not_found status
2512 with missing shard_id
2513 behaves like an API that returns 404 for missing ids
2514 returns not_found status
2515 with missing namespace_id
2516 behaves like an API that returns 404 for missing ids
2517 returns not_found status
2518 PUT /admin/zoekt/shards/:shard_id/indexed_namespaces/:namespace_id
2519 creates a Zoekt::IndexedNamespace for this shard and namespace pair
2520 behaves like PUT request permissions for admin mode
2521 behaves like when admin
2522 behaves like makes request
2523 returns
2524 behaves like makes request
2525 returns
2526 behaves like when user
2527 returns
2528 behaves like makes request
2529 returns
2530 behaves like an API that returns 401 for unauthenticated requests
2531 returns not_found status
2532 behaves like an API that returns 400 when the index_code_with_zoekt feature flag is disabled
2533 returns not_found status
2534 when it already exists
2535 returns the existing one
2536 with missing shard_id
2537 behaves like an API that returns 404 for missing ids
2538 returns not_found status
2539 with missing namespace_id
2540 behaves like an API that returns 404 for missing ids
2541 returns not_found status
2542 GET /admin/zoekt/shards/:shard_id/indexed_namespaces
2543 returns all indexed namespaces for this shard
2544 returns at most MAX_RESULTS most recent rows
2545 behaves like GET request permissions for admin mode
2546 behaves like when admin
2547 behaves like makes request
2548 returns
2549 behaves like makes request
2550 returns
2551 behaves like when user
2552 returns
2553 behaves like makes request
2554 returns
2555 behaves like an API that returns 401 for unauthenticated requests
2556 returns not_found status
2557 behaves like an API that returns 404 for missing ids
2558 returns not_found status
2559 GET /admin/zoekt/shards
2560 returns all shards
2561 behaves like GET request permissions for admin mode
2562 behaves like when admin
2563 behaves like makes request
2564 returns
2565 behaves like makes request
2566 returns
2567 behaves like when user
2568 returns
2569 behaves like makes request
2570 returns
2571 behaves like an API that returns 401 for unauthenticated requests
2572 returns not_found status
2573 PUT /admin/zoekt/projects/:projects/index
2574 triggers indexing for the project
2575 behaves like PUT request permissions for admin mode
2576 behaves like when admin
2577 behaves like makes request
2578 returns
2579 behaves like makes request
2580 returns
2581 behaves like when user
2582 returns
2583 behaves like makes request
2584 returns
2585 behaves like an API that returns 401 for unauthenticated requests
2586 returns not_found status
2587 behaves like an API that returns 400 when the index_code_with_zoekt feature flag is disabled
2588 returns not_found status
2589 behaves like an API that returns 404 for missing ids
2590 returns not_found status
2591Projects::Analytics::CycleAnalytics::ValueStreamsController
2592 # order random
2593 behaves like value stream controller actions
2594 GET index
2595 when user is a member
2596 returns the persisted value streams
2597 when user is not a member
2598 renders 404
2599 GET #show
2600 succeeds
2601 when value stream is not found
2602 renders 404
2603 behaves like authorization examples
2604 when not licensed
2605 renders 404
2606 when user is not a member
2607 renders 404
2608 GET #new
2609 succeeds
2610 behaves like authorization examples
2611 when not licensed
2612 renders 404
2613 when user is not a member
2614 renders 404
2615 GET #edit
2616 succeeds
2617 when value stream is not found
2618 renders 404 not found
2619 behaves like authorization examples
2620 when not licensed
2621 renders 404
2622 when user is not a member
2623 renders 404
2624 PUT #update
2625 succeeds
2626 when validation error happens
2627 returns 422 unprocessable entity
2628 when value stream is not found
2629 renders 404 not found
2630 when updating value stream with in-memory stages
2631 returns a successful 200 response
2632 when deleting the stage by excluding it from the stages array
2633 returns a successful 200 response
2634 behaves like authorization examples
2635 when not licensed
2636 renders 404
2637 when user is not a member
2638 renders 404
2639 POST #create
2640 succeeds
2641 when validation error happens
2642 returns 422 unprocessable entity
2643 when stage names are not unique
2644 returns 422 unprocessable entity
2645 behaves like authorization examples
2646 when not licensed
2647 renders 404
2648 when user is not a member
2649 renders 404
2650 DELETE #destroy
2651 succeeds
2652 when value stream is not found
2653 renders 404 not found
2654 behaves like authorization examples
2655 when not licensed
2656 renders 404
2657 when user is not a member
2658 renders 404
2659 GET index
2660 when user is member of the project
2661 when not licensed
2662 succeeds and returns the default value stream
2663 when the project has lower visibility level
2664 disallows deleting the record
2665Projects::Security::VulnerabilitiesController
2666 GET #new
2667 checks if the user can create a vulnerability
2668 behaves like security and compliance disabled
2669 is expected to respond with numeric status code not_found
2670 when user can admin vulnerability
2671 renders the add new finding page
2672 when user can not admin vulnerability
2673 renders 404 page not found
2674 GET #show
2675 behaves like security and compliance disabled
2676 is expected to respond with numeric status code not_found
2677 when there's an attached pipeline
2678 renders the vulnerability page
2679 renders the vulnerability component
2680 when there's no attached pipeline
2681 renders the vulnerability page
2682 GET #discussions
2683 renders discussions
2684 behaves like security and compliance disabled
2685 is expected to respond with numeric status code not_found
2686Projects::OnDemandScansController
2687 GET #index
2688 behaves like on-demand scans page
2689 when the "Security and Compliance" feature is disabled
2690 is expected to respond with numeric status code not_found
2691 feature available
2692 user authorized
2693 can access page
2694 user not authorized
2695 sees a 404 error
2696 feature not available
2697 sees a 404 error if the license doesn't support the feature
2698 GET #new
2699 user has auditor role
2700 sees a 404 error
2701 behaves like on-demand scans page
2702 when the "Security and Compliance" feature is disabled
2703 is expected to respond with numeric status code not_found
2704 feature available
2705 user authorized
2706 can access page
2707 user not authorized
2708 sees a 404 error
2709 feature not available
2710 sees a 404 error if the license doesn't support the feature
2711 GET #edit
2712 behaves like on-demand scans page
2713 when the "Security and Compliance" feature is disabled
2714 is expected to respond with numeric status code not_found
2715 feature available
2716 user authorized
2717 can access page
2718 user not authorized
2719 sees a 404 error
2720 feature not available
2721 sees a 404 error if the license doesn't support the feature
2722 feature available and user can access page
2723 dast_profile exists in the database
2724 includes a serialized dast_profile in the response body
2725 dast_profile does not exist in the database
2726 sees a 404 error
2727 user has auditor role
2728 sees a 404 error
2729Projects::Settings::MergeRequestsController
2730 # order random
2731 PUT #update
2732 updates Merge Request Approvers attributes
2733 updates Issuable Default Templates attributes
2734 when merge_pipelines_enabled param is specified
2735 updates the attribute
2736 when license is not sufficient
2737 does not update the attribute
2738 when suggested_reviewers_enabled param is specified
2739 updates the attribute
2740 when merge_trains_enabled param is specified
2741 updates the attribute
2742 when license is not sufficient
2743 does not update the attribute
2744 when only_allow_merge_if_all_status_checks_passed param is specified
2745 behaves like update only allow merge if all status checks passed
2746 when only_allow_merge_if_all_status_checks_passed param is specified
2747 updates the attribute
2748 when license is not sufficient
2749 does not update the attribute
2750 when auto_rollback_enabled param is specified
2751 updates the attribute
2752 when license is not sufficient
2753 does not update the attribute
2754 merge request approvers settings
2755 does not push security_orchestration_policies licensed feature
2756 :disable_overriding_approvers_per_merge_request
2757 behaves like merge request approvers rules
2758 can_modify: true, param_value: true, final_value: true
2759 updates project if needed
2760 can_modify: true, param_value: false, final_value: false
2761 updates project if needed
2762 can_modify: false, param_value: true, final_value: nil
2763 updates project if needed
2764 can_modify: false, param_value: false, final_value: nil
2765 updates project if needed
2766 :merge_requests_author_approval
2767 behaves like merge request approvers rules
2768 can_modify: true, param_value: true, final_value: true
2769 updates project if needed
2770 can_modify: true, param_value: false, final_value: false
2771 updates project if needed
2772 can_modify: false, param_value: true, final_value: nil
2773 updates project if needed
2774 can_modify: false, param_value: false, final_value: nil
2775 updates project if needed
2776 :merge_requests_disable_committers_approval
2777 behaves like merge request approvers rules
2778 can_modify: true, param_value: true, final_value: true
2779 updates project if needed
2780 can_modify: true, param_value: false, final_value: false
2781 updates project if needed
2782 can_modify: false, param_value: true, final_value: nil
2783 updates project if needed
2784 can_modify: false, param_value: false, final_value: nil
2785 updates project if needed
2786 with security_orchestration_policies licensed feature enabled
2787 pushes security_orchestration_policies licensed feature
2788Projects::FeatureFlagIssuesController
2789 GET #index
2790 returns linked issues
2791 does not return linked issues for a reporter
2792 orders by feature_flag_issue id
2793 returns the correct relation_path when the feature flag is linked to multiple issues
2794 returns the correct relation_path when multiple feature flags are linked to an issue
2795 returns the correct relation_path when there are multiple linked feature flags and issues
2796 does not make N+1 queries
2797 returns only issues readable by the user
2798 when feature flag related issues feature is unlicensed
2799 does not return linked issues
2800 POST #create
2801 creates a link between the feature flag and the issue
2802 creates a link for the correct feature flag when there are multiple feature flags and projects
2803 creates a cross project link for a project in the same namespace
2804 creates a cross project link for a project in another namespace
2805 does not create a link for a reporter
2806 does not create a cross project link when the user is not a member of the issue's project
2807 does not create a cross project link when the user is a guest of the issue's project
2808 does not create a link when the user cannot read the issue
2809 when feature flag related issues feature is unlicensed
2810 does not create a link between the feature flag and the issue
2811 DELETE #destroy
2812 unlinks the issue from the feature flag
2813 does not unlink the issue for a reporter
2814 when feature flag related issues feature is unlicensed
2815 does not unlink the issue
2816API::AwardEmoji
2817 GET /groups/:id/awardable/:awardable_id/award_emoji
2818 on an epic
2819 returns an array of award_emoji
2820 returns a 404 error when epic id not found
2821 GET /groups/:id/awardable/:awardable_id/notes/:note_id/award_emoji
2822 returns an array of award emoji
2823 GET /groups/:id/awardable/:awardable_id/award_emoji/:award_id
2824 on an epic
2825 returns the award emoji
2826 returns a 404 error if the award is not found
2827 GET /groups/:id/awardable/:awardable_id/notes/:note_id/award_emoji/:award_id
2828 returns an award emoji
2829 POST /groups/:id/awardable/:awardable_id/award_emoji
2830 on an epic
2831 creates a new award emoji
2832 returns a 400 bad request error if the name is not given
2833 returns a 404 if the user is not authenticated
2834 normalizes +1 as thumbsup award
2835 when the emoji already has been awarded
2836 returns a 404 status code
2837 POST /groups/:id/awardable/:awardable_id/notes/:note_id/award_emoji
2838 creates a new award emoji
2839 marks Todos on the Noteable as done
2840 normalizes +1 as thumbsup award
2841 when the emoji already has been awarded
2842 returns a 404 status code
2843 DELETE /groups/:id/awardable/:awardable_id/award_emoji/:award_id
2844 when the awardable is an Epic
2845 deletes the award
2846 returns a 404 error when the award emoji can not be found
2847 behaves like 412 response
2848 for a modified resource
2849 returns 412 with a JSON error
2850 for an unmodified resource
2851 returns 204 with an empty body
2852 DELETE /groups/:id/awardable/:awardable_id/award_emoji/:award_emoji_id
2853 deletes the award
2854 behaves like 412 response
2855 for a modified resource
2856 returns 412 with a JSON error
2857 for an unmodified resource
2858 returns 204 with an empty body
2859API::Geo
2860 GET /geo/retrieve/:replicable_name/:replicable_id
2861 valid requests
2862 returns the file
2863 allowed IPs
2864 responds with 401 when IP is not allowed
2865 responds with 200 when IP is allowed
2866 invalid requests
2867 responds with 401 with invalid auth header
2868 responds with 401 with mismatched params in auth headers
2869 responds with 404 when resource is not found
2870 POST /geo/status
2871 responds with 401 with invalid auth header
2872 responds with 401 when the db_key_base is wrong
2873 allowed IPs
2874 responds with 401 when IP is not allowed
2875 responds with 201 when IP is allowed
2876 when requesting primary node with valid auth header
2877 updates the status and responds with 201
2878 ignores invalid attributes upon update
2879 behaves like with terms enforced
2880 responds with 2xx HTTP response code
2881 /geo/proxy_git_ssh
2882 POST /geo/proxy_git_ssh/info_refs_upload_pack
2883 with all required params missing
2884 responds with 400
2885 with all required params
2886 with an invalid jwt token
2887 responds with 401
2888 where an exception occurs
2889 responds with 500
2890 with a valid secret token
2891 responds with 200
2892 POST /geo/proxy_git_ssh/upload_pack
2893 with all required params missing
2894 responds with 400
2895 with all required params
2896 with an invalid jwt token
2897 responds with 401
2898 where an exception occurs
2899 responds with 500
2900 with a valid secret token
2901 responds with 201
2902 POST /geo/proxy_git_ssh/info_refs_receive_pack
2903 with all required params missing
2904 responds with 400
2905 with all required params
2906 with an invalid jwt token issuer
2907 responds with 401
2908 with a jwt token encoded by a different secret_token
2909 responds with 401
2910 where an exception occurs
2911 responds with 500
2912 with a valid secret token
2913 responds with 200
2914 POST /geo/proxy_git_ssh/receive_pack
2915 with all required params missing
2916 responds with 400
2917 with all required params
2918 with an invalid jwt token
2919 responds with 401
2920 where an exception occurs
2921 responds with 500
2922 with a valid secret token
2923 responds with 201
2924 GET /geo/proxy
2925 rejects requests that bypassed gitlab-workhorse
2926 with valid auth
2927 when Geo is not being used
2928 returns empty data
2929 when this is a primary site
2930 returns empty data
2931 when this is a secondary site with unified URL
2932 when a primary exists
2933 returns the primary internal URL and extra proxy data
2934 when a primary does not exist
2935 returns empty data
2936 when this is a secondary site with separate URLs
2937 when a primary does not exist
2938 returns empty data
2939 when geo_secondary_proxy_separate_urls feature flag is disabled
2940 returns empty data
2941 when geo_secondary_proxy_separate_urls feature flag is enabled
2942 returns the primary internal URL and extra proxy data
2943 POST /geo/node_proxy/:id/graphql
2944 denies access if not admin
2945 requests the graphql endpoint with the post body and returns the output
2946 returns empty output if remote fails
2947 behaves like 404 response
2948 returns 404
2949Create Google Cloud logging configuration
2950 # order random
2951 when feature is unlicensed
2952 behaves like an unauthorized mutation that does not create a configuration
2953 behaves like a mutation on an unauthorized resource
2954 behaves like a mutation that returns top-level errors
2955 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
2956 behaves like a mutation that does not create a configuration
2957 does not create the configuration
2958 does not create audit event
2959 when feature is licensed
2960 when current user is a group owner
2961 resolves group by full path
2962 creates the configuration
2963 behaves like creates an audit event
2964 audits the creation
2965 when overriding log id name
2966 creates the configuration
2967 behaves like creates an audit event
2968 audits the creation
2969 when there is error while saving
2970 does not create the configuration and returns the error
2971 when current user is a group maintainer
2972 behaves like an unauthorized mutation that does not create a configuration
2973 behaves like a mutation on an unauthorized resource
2974 behaves like a mutation that returns top-level errors
2975 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
2976 behaves like a mutation that does not create a configuration
2977 does not create the configuration
2978 does not create audit event
2979 when current user is a group developer
2980 behaves like an unauthorized mutation that does not create a configuration
2981 behaves like a mutation on an unauthorized resource
2982 behaves like a mutation that returns top-level errors
2983 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
2984 behaves like a mutation that does not create a configuration
2985 does not create the configuration
2986 does not create audit event
2987 when current user is a group guest
2988 behaves like an unauthorized mutation that does not create a configuration
2989 behaves like a mutation on an unauthorized resource
2990 behaves like a mutation that returns top-level errors
2991 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
2992 behaves like a mutation that does not create a configuration
2993 does not create the configuration
2994 does not create audit event
2995RegistrationsController
2996 # order random
2997 POST #create
2998 behaves like creates a user with ArkoseLabs risk band on signup request
2999 when arkose_labs_token verification succeeds
3000 records the user's data from Arkose Labs
3001 behaves like creates the user
3002 creates the user
3003 when verification fails
3004 does not record the user's data from Arkose Labs
3005 behaves like renders new action with an alert flash
3006 renders new action with an alert flash
3007 when user is not persisted
3008 does not record the user's data from Arkose Labs
3009 when the feature flag is disabled
3010 behaves like creates the user
3011 creates the user
3012 behaves like skips verification and data recording
3013 skips verification and data recording
3014 when feature is disabled
3015 behaves like creates the user
3016 creates the user
3017 behaves like skips verification and data recording
3018 skips verification and data recording
3019 when reCAPTCHA is enabled
3020 behaves like creates the user
3021 creates the user
3022 when reCAPTCHA verification fails
3023 does not create the user
3024 when arkose_labs_token param is not present
3025 behaves like renders new action with an alert flash
3026 renders new action with an alert flash
3027 behaves like skips verification and data recording
3028 skips verification and data recording
3029 identity verification
3030 when identity verification is turned off
3031 sending confirmation instructions
3032 sends Devise confirmation instructions
3033 does not send custom confirmation instructions
3034 sets the confirmation_sent_at time
3035 sets the confirmation_token to the unencrypted Devise token
3036 setting a session variable
3037 does not set the `verification_user_id` session variable
3038 redirection
3039 redirects to the `users_almost_there_path`
3040 when identity verification is turned on
3041 sending confirmation instructions
3042 does not send Devise confirmation instructions
3043 sends custom confirmation instructions
3044 sets the confirmation_sent_at time
3045 sets the confirmation_token to the encrypted custom token
3046 preventing token collisions
3047 does not raise an error when an identical token exists in the database
3048 setting a session variable
3049 sets the `verification_user_id` session variable
3050 handling sticking
3051 sticks or unsticks the request
3052 redirection
3053 redirects to the `identity_verification_path`
3054 when user is not persisted
3055 does not try to send custom confirmation instructions
3056 with onboarding progress
3057 when on SaaS
3058 sets onboarding
3059 when ensure_onboarding is disabled
3060 does not set onboarding
3061 when not on SaaS
3062 does not set onboarding
3063Groups::HooksController
3064 with group_webhooks enabled
3065 GET #index
3066 is successful
3067 POST #create
3068 sets all parameters
3069 alerts the user if the new hook is invalid
3070 GET #edit
3071 assigns hook_logs
3072 handles when logs are present
3073 can paginate logs
3074 PATCH #update
3075 valid params
3076 is successful
3077 invalid params
3078 renders "edit" template
3079 POST #test
3080 when testing a job hook
3081 where there are no jobs
3082 reports the error
3083 when group does not have a project
3084 redirects back
3085 when group has a project
3086 when "trigger" params is empty
3087 defaults to "push_events"
3088 when "trigger" params is set
3089 uses it
3090 DELETE #destroy
3091 behaves like Web hook destroyer
3092 displays a message about synchronous delete
3093 displays a message about async delete
3094 displays an error if deletion failed
3095 When user is not logged in
3096 renders a 404
3097 with group_webhooks disabled
3098 GET #index
3099 renders a 404
3100Mutation.vulnerabilitiesDismiss
3101 # order random
3102 when the user does not have access
3103 behaves like a mutation that returns a top-level access error
3104 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3105 when the user has access
3106 when security_dashboard is disabled
3107 behaves like a mutation that returns top-level errors
3108 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3109 when security_dashboard is enabled
3110 dismisses the vulnerabilities
3111 without a comment
3112 dismisses the vulnerabilities
3113 without a dismissal reason
3114 dismisses the vulnerabilities
3115 when too many vulnerabilities are passed
3116 behaves like a mutation that returns top-level errors
3117 is expected to contain exactly /Maximum vulnerability_ids exceeded \(1\)/
3118 when vulnerability_id is nil
3119 behaves like a mutation that returns top-level errors
3120 is expected to contain exactly /Expected value to not be null/
3121 when vulnerability_ids are empty
3122 behaves like a mutation that returns top-level errors
3123 is expected to contain exactly "At least 1 value must be provided for vulnerability_ids"
3124SmartcardController
3125 #auth
3126 with smartcard_auth enabled
3127 redirects to extract certificate
3128 with provider param
3129 forwards the provider param
3130 with smartcard_auth disabled
3131 renders 404
3132 #extract_certificate
3133 with smartcard_auth enabled
3134 redirects to verify certificate
3135 with provider param
3136 forwards the provider param
3137 missing NGINX client certificate header
3138 renders unauthorized
3139 request from different host / port
3140 renders 404
3141 with smartcard_auth disabled
3142 renders 404
3143 #verify_certificate
3144 Smartcard::Certificate
3145 behaves like a client certificate authentication
3146 with smartcard_auth enabled
3147 allows sign in
3148 redirects to root
3149 logs audit event
3150 stores active session
3151 user does not exist
3152 signup allowed
3153 creates user
3154 signup disabled
3155 renders 401
3156 missing client certificate param
3157 renders unauthorized
3158 with smartcard_auth disabled
3159 renders 404
3160 user already exists
3161 finds existing user
3162 certificate header formats from NGINX
3163 escaped format
3164 behaves like valid certificate header
3165 authenticates user
3166 deprecated format
3167 behaves like valid certificate header
3168 authenticates user
3169 Smartcard::LdapCertificate
3170 sets correct parameters for LDAP search
3171 behaves like a client certificate authentication
3172 with smartcard_auth enabled
3173 allows sign in
3174 redirects to root
3175 logs audit event
3176 stores active session
3177 user does not exist
3178 signup allowed
3179 creates user
3180 signup disabled
3181 renders 401
3182 missing client certificate param
3183 renders unauthorized
3184 with smartcard_auth disabled
3185 renders 404
3186 user already exists
3187 finds existing user
3188 user has a different identity
3189 doesn't login a user
3190 doesn't create a new user entry either
3191Groups::Analytics::DashboardsController
3192 # order random
3193 GET index
3194 when user is not logged in
3195 redirects the user to the login page
3196 when user is logged in
3197 when the license is not available
3198 behaves like forbidden response
3199 returns forbidden response
3200 when the license is available
3201 succeeds
3202 when group_analytics_dashboards is disabled
3203 redirects to value stream dashboards
3204 GET value_streams_dashboard
3205 when user is not logged in
3206 redirects the user to the login page
3207 when user is not authorized
3208 behaves like forbidden response
3209 returns forbidden response
3210 when user is logged in
3211 when the license is not available
3212 behaves like forbidden response
3213 returns forbidden response
3214 when the license is available
3215 succeeds
3216 can accept a `query` params
3217 will only return the first 4 namespaces
3218 will return projects in a subgroup
3219 passes pointer_project if it has been configured
3220 does not pass pointer_project if the configured project is missing
3221 does not pass pointer_project if it was not configured
3222 tracks page view on usage ping
3223Groups::Analytics::DashboardsController
3224 # order random
3225 behaves like Snowplow event tracking with RedisHLL context
3226 behaves like Snowplow event tracking
3227 is emitted
3228 behaves like tracking unique visits
3229 tracks unique visit if the format is HTML
3230 tracks unique visit if DNT is not enabled
3231 does not track unique visit if DNT is enabled
3232 does not track unique visit if the format is JSON
3233API::Analytics::GroupActivityAnalytics
3234 GET /group_activity/issues_count
3235 behaves like GET group_activity
3236 when feature is enabled for a group
3237 is successful
3238 is returns a count
3239 when feature is not available in plan
3240 is returns `forbidden`
3241 when `group_path` is not specified
3242 returns `bad_request`
3243 when name is made of only digits
3244 is successful
3245 is returns a count
3246 when user does not have access to a group
3247 is returns `not_found`
3248 GET /group_activity/merge_requests_count
3249 behaves like GET group_activity
3250 when feature is enabled for a group
3251 is successful
3252 is returns a count
3253 when feature is not available in plan
3254 is returns `forbidden`
3255 when `group_path` is not specified
3256 returns `bad_request`
3257 when name is made of only digits
3258 is successful
3259 is returns a count
3260 when user does not have access to a group
3261 is returns `not_found`
3262 GET /group_activity/new_members_count
3263 behaves like GET group_activity
3264 when feature is enabled for a group
3265 is successful
3266 is returns a count
3267 when feature is not available in plan
3268 is returns `forbidden`
3269 when `group_path` is not specified
3270 returns `bad_request`
3271 when name is made of only digits
3272 is successful
3273 is returns a count
3274 when user does not have access to a group
3275 is returns `not_found`
3276Query.project(fullPath).pipeline(iid).securityReportSummary
3277 when the required features are enabled
3278 when user is member of the project
3279 shows the vulnerabilitiesCount and scannedResourcesCount
3280 shows the first 20 scanned resources
3281 returns nil for the scannedResourcesCsvPath
3282 when user is not a member of the project
3283 returns no scanned resources
3284 when the required features are disabled
3285 returns no scanned resources
3286API::Dependencies
3287 GET /projects/:id/dependencies
3288 behaves like a gitlab tracking event
3289 creates a gitlab tracking event view_dependencies
3290 with an authorized user with proper permissions
3291 when a pipeline does not exist
3292 returns an empty array response
3293 when a pipeline exists
3294 returns paginated dependencies
3295 returns vulnerabilities info
3296 when the license_scanning_sbom_scanner feature flag is false
3297 include license information to response
3298 when the license_scanning_sbom_scanner feature flag is true
3299 when querying uncompressed package metadata
3300 include license information to response
3301 when querying compressed package metadata
3302 include license information to response
3303 with nil package_manager
3304 returns no dependencies
3305 with filter options
3306 returns yarn dependencies
3307 with wrong key
3308 returns error message
3309 with pagination params
3310 returns paginated dependencies
3311 without permissions to see vulnerabilities
3312 returns empty vulnerabilities
3313 without permissions to see licenses
3314 returns empty licenses
3315 with authorized user without read permissions
3316 responds with 403 Forbidden
3317 with no project access
3318 responds with 404 Not Found
3319get list of epic boards
3320 when the user does not have access to the epic board group
3321 returns nil group
3322 when user can access the epic board group
3323 avoids N+1 queries
3324 sorting and pagination
3325 behaves like sorted paginated query
3326 behaves like requires variables
3327 shared example requires variables to be set
3328
3329 when sorting
3330 sorts correctly
3331 when paginating
3332 paginates correctly
3333 field values
3334 returns the correct values for collapsed
3335 returns the correct metadata values
3336 when totalWeight not requested
3337 does not required the value from the service
3338Dashboard::ProjectsController
3339 #removed
3340 when licensed
3341 for admin users
3342 returns success
3343 paginates the records
3344 returns projects marked for deletion
3345 for non-admin users
3346 returns success
3347 paginates the records
3348 for should_check_namespace_plan
3349 should_check_namespace_plan: false, removed_projects_count: 3
3350 accounts total removable projects
3351 should_check_namespace_plan: true, removed_projects_count: 2
3352 accounts total removable projects
3353 when not licensed
3354 behaves like returns not found
3355 is expected to respond with numeric status code not_found
3356API::Internal::AppSec::Dast::SiteValidations
3357 POST /internal/dast/site_validations/:id/transition
3358 when a job token header is not set
3359 returns 401
3360 when user token is set
3361 returns 400 and a contextual error message
3362 when a job token header is set
3363 when user does not have access to the site validation
3364 returns 403
3365 when site validation does not exist
3366 returns 404
3367 when site validation and job are associated with different projects
3368 returns 400
3369 when the job project belongs to the same job token scope
3370 returns 400 and a contextual error message
3371 when site validation exists
3372 when the licensed feature is not available
3373 returns 403
3374 when user has access to the site validation
3375 when the state transition is unknown
3376 returns 400 and a contextual error message
3377 when the state transition is invalid
3378 returns 400 and a contextual error message
3379 when the state transition is valid
3380 updates the record
3381 behaves like it transitions
3382 returns 200 and the new state
3383 calls the underlying transition method: #start
3384 behaves like it transitions
3385 returns 200 and the new state
3386 calls the underlying transition method: #fail_op
3387 behaves like it transitions
3388 returns 200 and the new state
3389 calls the underlying transition method: #retry
3390 behaves like it transitions
3391 returns 200 and the new state
3392 calls the underlying transition method: #pass
3393Mutations::Security::Finding::RevertToDetected
3394 # order random
3395 #resolve
3396 when the user has access to vulnerability management
3397 when user does not have access to the project
3398 behaves like a mutation that returns a top-level access error
3399 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3400 when no uuid is provided
3401 raises an error
3402 when the user has access to the project
3403 when there is a dismissal feedback
3404 when there is no vulnerability
3405 behaves like properly sets the security finding state
3406 sets the security finding state to detected
3407 when there is a vulnerability
3408 behaves like properly sets the security finding state
3409 sets the security finding state to detected
3410 behaves like properly sets the vulnerability state
3411 sets the vulnerability state to detected
3412 when the dismissal fails
3413 raises an error
3414 when the dismissal fails
3415 raises an error
3416 when there is no dismissal feedback
3417 when there is no vulnerability
3418 behaves like properly sets the security finding state
3419 sets the security finding state to detected
3420 when there is a vulnerability
3421 behaves like properly sets the security finding state
3422 sets the security finding state to detected
3423 behaves like properly sets the vulnerability state
3424 sets the vulnerability state to detected
3425 when the security dashboard is not available to the user
3426 behaves like a mutation that returns a top-level access error
3427 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3428Query.[group](fullPath).doraPerformanceScoreCounts
3429 # order random
3430 when DORA analytics feature is not available
3431 returns nil
3432 behaves like a working graphql query
3433 returns a successful response
3434 when there is some error in the service
3435 returns an error
3436 when user does not have access
3437 returns nil
3438 behaves like a working graphql query
3439 returns a successful response
3440 when there is no data for the target month
3441 working query
3442 returns all empty data
3443 behaves like a working graphql query
3444 returns a successful response
3445 when there is data for the target month
3446 working query
3447 returns the correct data
3448 behaves like a working graphql query
3449 returns a successful response
3450 when no metric count fields are requested
3451 does not fire off any data queries
3452 behaves like a working graphql query
3453 returns a successful response
3454Query.vulnerabilities.issueLinks
3455 when invalid linkType argument is provided
3456 errors with a string
3457 errors with a number
3458 errors with lowercased `created`
3459 errors with lowercased `related`
3460 when valid linkType argument is provided
3461 returns a list of VulnerabilityIssueLink with `CREATED` linkType
3462 returns a list of VulnerabilityIssueLink with `RELATED` linkType
3463 when no arguments are provided
3464 returns a list of all VulnerabilityIssueLink
3465 loading issue links in batch
3466 does not cause N+1 query issue
3467Projects::RequirementsManagement::RequirementsController
3468 GET #index
3469 private project
3470 with authorized user
3471 when feature is available
3472 renders the index template
3473 when feature is not available
3474 behaves like response with 404 status
3475 returns 404
3476 with unauthorized user
3477 when feature is available
3478 behaves like response with 404 status
3479 returns 404
3480 with anonymous user
3481 returns 302
3482 public project
3483 with requirements disabled
3484 behaves like response with 404 status
3485 returns 404
3486 with requirements visible to project members
3487 with authorized user
3488 renders the index template
3489 with unauthorized user
3490 behaves like response with 404 status
3491 returns 404
3492 with requirements visible to everyone
3493 with anonymous user
3494 renders the index template
3495 GET import_csv
3496 with authorized user
3497 when feature is available
3498 when the upload is processed successfully
3499 renders the correct message
3500 when the upload returns an error
3501 renders the error message
3502 when feature is not available
3503 behaves like response with 404 status
3504 returns 404
3505Query.gitlabSubscriptionsPreviewBillableUserChange
3506 # order random
3507 with group query
3508 behaves like preview billable user change
3509 when project_or_group does not exist
3510 returns nil
3511 when project_or_group exists
3512 when current_user has access to project_or_group
3513 with add_group_id
3514 returns successfully
3515 with add_user_emails
3516 returns successfully
3517 with add_user_ids
3518 returns successfully
3519 when missing all add_* arguments
3520 returns error
3521 when current_user does not have access to project_or_group
3522 returns error
3523 with project query
3524 behaves like preview billable user change
3525 when project_or_group does not exist
3526 returns nil
3527 when project_or_group exists
3528 when current_user has access to project_or_group
3529 with add_group_id
3530 returns successfully
3531 with add_user_emails
3532 returns successfully
3533 with add_user_ids
3534 returns successfully
3535 when missing all add_* arguments
3536 returns error
3537 when current_user does not have access to project_or_group
3538 returns error
3539API::GitlabSubscriptions::AddOnPurchases
3540 # order random
3541 POST /namespaces/:id/subscription_add_on_purchase/:add_on_name
3542 with a non-admin user
3543 returns :forbidden
3544 with admin user
3545 when feature flag is disabled
3546 behaves like not found error
3547 returns :not_found
3548 when the feature flag is enabled
3549 when the namespace cannot be found
3550 behaves like not found error
3551 returns :not_found
3552 when the add-on cannot be found
3553 behaves like not found error
3554 returns :not_found
3555 when the add-on purchase does not exist
3556 creates a new add-on purchase
3557 when the add-on purchase cannot be saved
3558 returns an error
3559 when the add-on purchase already exists
3560 does not create a new add-on purchase and does not update the existing one
3561 PUT /namespaces/:id/subscription_add_on_purchase/:add_on_name
3562 with a non-admin user
3563 returns :forbidden
3564 with admin user
3565 when feature flag is disabled
3566 behaves like not found error
3567 returns :not_found
3568 when the feature flag is enabled
3569 when the namespace cannot be found
3570 behaves like not found error
3571 returns :not_found
3572 when the add-on cannot be found
3573 behaves like not found error
3574 returns :not_found
3575 when the add-on purchase exists
3576 updates the found add-on purchase
3577 with only required params
3578 updates the add-on purchase
3579 when the add-on purchase cannot be saved
3580 returns an error
3581 when the add-on purchase does not exist
3582 returns an error
3583 GET /namespaces/:id/subscription_add_on_purchase/:add_on_name
3584 with a non-admin user
3585 returns :forbidden
3586 with admin user
3587 when feature flag is disabled
3588 behaves like not found error
3589 returns :not_found
3590 when the feature flag is enabled
3591 when the namespace cannot be found
3592 behaves like not found error
3593 returns :not_found
3594 when the add-on cannot be found
3595 behaves like not found error
3596 returns :not_found
3597 when the add-on purchase does not exist
3598 behaves like not found error
3599 returns :not_found
3600 when the add-on purchase exists
3601 returns the found add-on purchase
3602Groups::MergeRequestsController
3603 POST #bulk_update
3604 when group bulk edit feature is not enabled
3605 returns 404 status
3606 when group bulk edit feature is enabled
3607 when user has permissions to bulk update merge requests
3608 returns status 200
3609 updates merge requests milestone
3610 when user does not have permissions to bulk update merge requests
3611 returns status 404
3612 does not update merge requests milestone
3613Adding a Note to an Epic
3614 when the user does not have permission
3615 behaves like a Note mutation when the user does not have permission
3616 behaves like a Note mutation that does not create a Note
3617 is expected not to change `Note.count`
3618 behaves like a mutation that returns top-level errors
3619 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3620 when the user has permission
3621 when using internal param
3622 behaves like a Note mutation with confidential notes
3623 returns a Note with confidentiality enabled
3624 behaves like a Note mutation that creates a Note
3625 is expected to change `Note.count` by 1
3626 when using deprecated confidential param
3627 behaves like a Note mutation with confidential notes
3628 returns a Note with confidentiality enabled
3629 behaves like a Note mutation that creates a Note
3630 is expected to change `Note.count` by 1
3631 when body contains quick actions
3632 behaves like work item supports weights widget updates via quick actions
3633 updates the work item
3634 behaves like work item does not support weights widget updates via quick actions
3635 ignores the quick action
3636 behaves like work item supports health status widget updates via quick actions
3637 updates work item health status
3638 behaves like work item does not support health status widget updates via quick actions
3639 ignores the quick action
3640Unassigns scan execution policy project from a project/namespace
3641 for project
3642 behaves like unassigns security policy project
3643 when licensed feature is available
3644 when user is an owner of the container
3645 when there is no security policy project assigned to the container
3646 does not unassign the security policy project
3647 when security policy project is assigned to the container
3648 unassigns the security policy project
3649 when user is not an owner
3650 behaves like a mutation that returns top-level errors
3651 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3652 when feature is not licensed
3653 behaves like a mutation that returns top-level errors
3654 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3655 for namespace
3656 behaves like unassigns security policy project
3657 when licensed feature is available
3658 when user is an owner of the container
3659 when there is no security policy project assigned to the container
3660 does not unassign the security policy project
3661 when security policy project is assigned to the container
3662 unassigns the security policy project
3663 when user is not an owner
3664 behaves like a mutation that returns top-level errors
3665 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3666 when feature is not licensed
3667 behaves like a mutation that returns top-level errors
3668 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3669Creating an Epic
3670 when the user does not have permission
3671 does not create epic
3672 behaves like a mutation that returns a top-level access error
3673 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3674 when the user has permission
3675 when epics are disabled
3676 behaves like a mutation that returns top-level errors
3677 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3678 when epics are enabled
3679 creates the epic
3680 when using a named color
3681 sets the color correctly
3682 the color is invalid
3683 reports a coercion error
3684 when there are ActiveRecord validation errors
3685 does not create the epic
3686 behaves like a mutation that returns errors in the response
3687 is expected to contain exactly "Title can't be blank"
3688 when the list of attributes is empty
3689 does not create the epic
3690 behaves like a mutation that returns top-level errors
3691 is expected to contain exactly "The list of epic attributes is empty"
3692API::Repositories
3693 GET /projects/:id/repository/archive(.:format)?:sha
3694 when unauthenticated and project is public
3695 behaves like an auditable and successful request
3696 logs the audit event
3697 sends the archive
3698 when authenticated as a developer
3699 behaves like an auditable and successful request
3700 logs the audit event
3701 sends the archive
3702 projects download throttling
3703 when user is banned from the project's top-level group
3704 returns forbidden error
3705 when user is not banned from the project's top-level group
3706 returns the repository archive
3707Admin::ProjectsController
3708 GET /projects/:id
3709 when geo_project_repository_replication FF is disabled
3710 includes Geo Status widget partial
3711 when geo_project_repository_replication FF is enabled
3712 hides Geo Status widget partial
3713 when Geo is enabled and is a secondary node
3714 renders Geo Status widget
3715 displays a different read-only message based on skip_readonly_message
3716 without Geo enabled
3717 doesnt render Geo Status widget
3718Creating a new HTTP Integration
3719 stores the custom mapping params
3720 behaves like creating a new HTTP integration
3721 creates a new integration
3722 without required argument project_path
3723 behaves like an invalid argument to the mutation
3724 behaves like a mutation that returns top-level errors
3725 is expected to contain exactly (include "invalid value for projectPath")
3726 without required argument active
3727 behaves like an invalid argument to the mutation
3728 behaves like a mutation that returns top-level errors
3729 is expected to contain exactly (include "invalid value for active")
3730 without required argument name
3731 behaves like an invalid argument to the mutation
3732 behaves like a mutation that returns top-level errors
3733 is expected to contain exactly (include "invalid value for name")
3734 with the custom mappings feature unavailable
3735 behaves like ignoring the custom mapping
3736 creates integration without the custom mapping params
3737 behaves like validating the payload_example
3738 validates the payload_example size
3739 with invalid payloadExample attribute
3740 responds with errors
3741 behaves like validating the payload_attribute_mappings
3742 with invalid payloadAttributeMapping attribute does not contain fieldName
3743 responds with errors
3744 with invalid payloadAttributeMapping attribute does not contain path
3745 responds with errors
3746 with invalid payloadAttributeMapping attribute does not contain type
3747 responds with errors
3748Onboarding
3749 # order random
3750 .user_onboarding_enabled?
3751 ensure_onboarding?: true, should_check_namespace_plan?: true
3752 is expected to equal true
3753 ensure_onboarding?: true, should_check_namespace_plan?: false
3754 is expected to equal false
3755 ensure_onboarding?: false, should_check_namespace_plan?: true
3756 is expected to equal false
3757 ensure_onboarding?: false, should_check_namespace_plan?: false
3758 is expected to equal false
3759 .user_onboarding_in_progress?
3760 user?: true, user_onboarding?: true, ensure_onboarding?: true, should_check_namespace_plan?: true
3761 is expected to equal true
3762 user?: true, user_onboarding?: true, ensure_onboarding?: true, should_check_namespace_plan?: false
3763 is expected to equal false
3764 user?: true, user_onboarding?: true, ensure_onboarding?: false, should_check_namespace_plan?: true
3765 is expected to equal false
3766 user?: true, user_onboarding?: true, ensure_onboarding?: false, should_check_namespace_plan?: false
3767 is expected to equal false
3768 user?: true, user_onboarding?: false, ensure_onboarding?: true, should_check_namespace_plan?: true
3769 is expected to equal false
3770 user?: true, user_onboarding?: false, ensure_onboarding?: true, should_check_namespace_plan?: false
3771 is expected to equal false
3772 user?: true, user_onboarding?: false, ensure_onboarding?: false, should_check_namespace_plan?: true
3773 is expected to equal false
3774 user?: true, user_onboarding?: false, ensure_onboarding?: false, should_check_namespace_plan?: false
3775 is expected to equal false
3776 user?: false, user_onboarding?: true, ensure_onboarding?: true, should_check_namespace_plan?: true
3777 is expected to equal false
3778 user?: false, user_onboarding?: true, ensure_onboarding?: true, should_check_namespace_plan?: false
3779 is expected to equal false
3780 user?: false, user_onboarding?: true, ensure_onboarding?: false, should_check_namespace_plan?: true
3781 is expected to equal false
3782 user?: false, user_onboarding?: true, ensure_onboarding?: false, should_check_namespace_plan?: false
3783 is expected to equal false
3784 user?: false, user_onboarding?: false, ensure_onboarding?: true, should_check_namespace_plan?: true
3785 is expected to equal false
3786 user?: false, user_onboarding?: false, ensure_onboarding?: true, should_check_namespace_plan?: false
3787 is expected to equal false
3788 user?: false, user_onboarding?: false, ensure_onboarding?: false, should_check_namespace_plan?: true
3789 is expected to equal false
3790 user?: false, user_onboarding?: false, ensure_onboarding?: false, should_check_namespace_plan?: false
3791 is expected to equal false
3792view audit events
3793 GET /groups/:group/-/audit_events
3794 returns 200 response
3795 avoids N+1 DB queries
3796Rack Attack EE throttles
3797 requests to prometheus alert notify endpoint with oauth token
3798 behaves like incident management rate limiting
3799 limits set
3800 when the throttle is enabled
3801 rejects requests over the rate limit
3802 allows requests after throttling and then waiting for the next period
3803 when the throttle is disabled
3804 allows requests over the rate limit
3805 requests to generic alert notify endpoint with oauth token
3806 behaves like incident management rate limiting
3807 limits set
3808 when the throttle is enabled
3809 rejects requests over the rate limit
3810 allows requests after throttling and then waiting for the next period
3811 when the throttle is disabled
3812 allows requests over the rate limit
3813 requests to AlertManagement::HttpIntegration notify endpoint with oauth token
3814 behaves like incident management rate limiting
3815 limits set
3816 when the throttle is enabled
3817 rejects requests over the rate limit
3818 allows requests after throttling and then waiting for the next period
3819 when the throttle is disabled
3820 allows requests over the rate limit
3821TrialRegistrationsController
3822 POST create
3823 when email_opted_in does not exist in params
3824 sets user email_opted_in to false
3825 when email_opted_in is true in params
3826 sets user email_opted_in to true
3827 with snowplow tracking
3828 when the password is weak
3829 does not track failed form submission
3830 when the password is not weak
3831 tracks successful form submission
3832 with email confirmation
3833 when email confirmation settings is set to `soft`
3834 does not track an almost there redirect
3835 when email confirmation settings is not set to `soft`
3836 tracks an almost there redirect
3837 behaves like creates a user with ArkoseLabs risk band on signup request
3838 when arkose_labs_token verification succeeds
3839 records the user's data from Arkose Labs
3840 behaves like creates the user
3841 creates the user
3842 when verification fails
3843 does not record the user's data from Arkose Labs
3844 behaves like renders new action with an alert flash
3845 renders new action with an alert flash
3846 when user is not persisted
3847 does not record the user's data from Arkose Labs
3848 when the feature flag is disabled
3849 behaves like creates the user
3850 creates the user
3851 behaves like skips verification and data recording
3852 skips verification and data recording
3853 when feature is disabled
3854 behaves like creates the user
3855 creates the user
3856 behaves like skips verification and data recording
3857 skips verification and data recording
3858 when reCAPTCHA is enabled
3859 behaves like creates the user
3860 creates the user
3861 when reCAPTCHA verification fails
3862 does not create the user
3863 when arkose_labs_token param is not present
3864 behaves like renders new action with an alert flash
3865 renders new action with an alert flash
3866 behaves like skips verification and data recording
3867 skips verification and data recording
3868getting compliance frameworks for a collection of projects
3869 querying a single project
3870 avoids N+1 queries
3871 contains the expected compliance framework
3872 projects can have a compliance framework
3873 contains the correct number of compliance frameworks
3874 projects that share the same compliance framework
3875 shares the same compliance framework id
3876Getting code coverage summary in a project
3877 behaves like a working graphql query
3878 returns a successful response
3879 when project has coverage
3880 for the default branch
3881 contains code coverage summary data
3882 not for the default branch
3883 returns nil
3884 when project does not have coverage
3885 returns nil
3886CredentialsInventoryMailer
3887 #personal_access_token_revoked_email
3888 is expected to have subject of "Your Personal Access Token was revoked"
3889 is expected to have body including "The following Personal Access Token was revoked by an administrator, Revoker"
3890 is expected to have body including "PAT 782"
3891 is expected to have body including "Created on Aug 10, 2023"
3892 is expected to have body including "Scopes: api, sudo"
3893 is expected to be delivered to ["user1818@example.org"]
3894 is expected to have body including "Last used 21 days ago"
3895 #ssh_key_deleted_email
3896 is expected to have subject of "Your SSH key was deleted"
3897 is expected to have body including "The following SSH key was deleted by an administrator, Revoker"
3898 is expected to be delivered to ["user1819@example.org"]
3899 is expected to have body including "My title 511"
3900 is expected to have body including "Created on Aug 10, 2023"
3901 is expected to have body including "Last used 21 days ago"
3902API::ResourceStateEvents
3903 # order random
3904 when eventable is an Epic
3905 behaves like resource_state_events API
3906 GET /groups/:id/epics/:noteable_id/resource_state_events
3907 returns an array of resource state events
3908 returns a 404 error when eventable id not found
3909 returns 404 when not authorized
3910 GET /groups/:id/epics/:noteable_id/resource_state_events/:event_id
3911 returns a resource state event by id
3912 returns 404 when not authorized
3913 returns a 404 error if resource state event not found
3914 pagination
3915 returns the second page
3916Groups::Analytics::CycleAnalyticsController
3917 GET show
3918 when the license is available
3919 succeeds
3920 increments usage counter
3921 renders `show` template when feature flag is enabled
3922 when the initial, default value stream is requested
3923 renders the default in memory value stream
3924 when invalid name is given
3925 renders 404 error
3926 tracking events
3927 tracks redis hll event
3928 behaves like Snowplow event tracking with RedisHLL context
3929 behaves like Snowplow event tracking
3930 is emitted
3931 when the license is missing
3932 renders 403 error
3933 when non-existent group is given
3934 renders 404 error
3935 with group and value stream params
3936 builds request params with group and value stream
3937Creating Issue Links
3938 # order random
3939 when the user does not have access
3940 behaves like a mutation that returns a top-level access error
3941 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3942 when the user has access
3943 when security_dashboard is disabled
3944 behaves like a mutation that returns top-level errors
3945 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3946 when security_dashboard is enabled
3947 creates the issue links
3948 when too many vulnerabilities are passed
3949 behaves like a mutation that returns top-level errors
3950 is expected to contain exactly /Maximum vulnerability_ids exceeded \(1\)/
3951 when the user does not have access to the issue
3952 behaves like a mutation that returns a top-level access error
3953 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
3954 when issue_id is nil
3955 behaves like a mutation that returns top-level errors
3956 is expected to contain exactly /Expected value to not be null/
3957 when vulnerability_id is nil
3958 behaves like a mutation that returns top-level errors
3959 is expected to contain exactly /Expected value to not be null/
3960 when vulnerability_ids are empty
3961 behaves like a mutation that returns top-level errors
3962 is expected to contain exactly "At least 1 value must be provided for vulnerability_ids"
3963getting Alert Management HTTP Integrations
3964 with integrations
3965 without project permissions
3966 is expected to be nil
3967 behaves like a working graphql query
3968 returns a successful response
3969 with developer permissions
3970 is expected to eq []
3971 behaves like a working graphql query
3972 returns a successful response
3973 with maintainer permissions
3974 when no extra params given
3975 is expected to eq 2
3976 returns the correct properties of the integrations
3977 behaves like a working graphql query
3978 returns a successful response
3979 when HTTP Integration ID is given
3980 returns the correct properties of the integration
3981 behaves like a working graphql query
3982 returns a successful response
3983 behaves like GraphQL query with several integrations requested
3984 when several HTTP integrations requested
3985 returns the correct properties of the integrations
3986 batches queries
3987Querying a Milestone
3988 burnupTimeSeries
3989 with insufficient license
3990 returns nil
3991 when missing dates
3992 explains why the report cannot be generated
3993 when there are too many events
3994 explains why the report cannot be generated
3995 when "rollup_timebox_chart" feature flag is enabled
3996 explains why the report cannot be generated
3997 with correct license
3998 returns burnup chart data
3999 group milestones
4000 behaves like milestones queried by timeframe
4001 query for milestones by timeframe
4002 without start
4003 returns error
4004 without end date
4005 returns error
4006 with start and end date
4007 does not have errors
4008 project milestones
4009 behaves like milestones queried by timeframe
4010 query for milestones by timeframe
4011 without start
4012 returns error
4013 without end date
4014 returns error
4015 with start and end date
4016 does not have errors
4017Running a DAST Profile
4018 behaves like an on-demand scan mutation when user cannot run an on-demand scan
4019 when a user does not have access to the project
4020 behaves like a mutation that returns a top-level access error
4021 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4022 when a user does not have access to run a dast scan on the project
4023 behaves like a mutation that returns a top-level access error
4024 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4025 behaves like an on-demand scan mutation when user can run an on-demand scan
4026 returns an empty errors array
4027 returns a pipeline_url containing the correct path
4028 when on demand scan licensed feature is not available
4029 behaves like a mutation that returns a top-level access error
4030 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4031 when pipeline creation fails
4032 behaves like a mutation that returns errors in the response
4033 is expected to contain exactly "full error messages"
4034Query.project(fullPath).dastProfiles.dastProfileSchedule
4035 when a user does not have access to the project
4036 returns a null project
4037 when a user does not have access to dast_profile
4038 returns an empty dast_profile
4039 when a user has access to dast_profile_schedule
4040 returns a dast_profile_schedule
4041 behaves like query dastProfiles.dastProfileSchedule shared examples
4042 avoids N+1 queries
4043Groups::ScimOauthController
4044 when the feature is configured
4045 POST #create
4046 without token
4047 creates a new SCIM token record
4048 json
4049 shows the token
4050 shows the url
4051 with token
4052 does not create a new SCIM token record
4053 updates the token
4054 json
4055 shows the token
4056 shows the url
4057getting a list of compliance frameworks for a root namespace
4058 when authenticated as the namespace owner
4059 returns the groups compliance frameworks
4060 when querying a specific framework ID
4061 returns only a single compliance framework
4062 when querying an invalid object ID
4063 returns an error message
4064 when querying a specific framework that current_user has no access to
4065 does not return the framework
4066 when querying multiple namespaces
4067 avoids N+1 queries
4068 responds with the expected list of compliance frameworks
4069 when authenticated as a different user
4070 does not return the namespaces compliance frameworks
4071 when not authenticated
4072 does not return the namespace's compliance frameworks
4073UserAddOnAssignmentRemove
4074 # order random
4075 when user_id does not exists
4076 behaves like empty response
4077 returns nil
4078 when current_user is not owner or admin
4079 behaves like empty response
4080 returns nil
4081 behaves like success response
4082 returns expected response
4083 when feature flag hamilton_seat_management is disabled
4084 behaves like empty response
4085 returns nil
4086 when current_user is admin
4087 behaves like success response
4088 returns expected response
4089 when add_on_purchase has expired
4090 behaves like empty response
4091 returns nil
4092 when the user does not have existing assignment
4093 behaves like empty response
4094 returns nil
4095 when add_on_purchase_id does not exists
4096 behaves like empty response
4097 returns nil
4098API::PypiPackages
4099 # order random
4100 GET /api/v4/projects/:id/packages/pypi/files/:sha256/*file_identifier
4101 behaves like applying ip restriction for group
4102 in group without restriction
4103 behaves like returning response status
4104 returns ok
4105 in group with restriction
4106 with address within the range
4107 behaves like returning response status
4108 returns ok
4109 with address outside the range
4110 behaves like returning response status
4111 returns not_found
4112 GET /api/v4/groups/:id/-/packages/pypi/files/:sha256/*file_identifier
4113 behaves like applying ip restriction for group
4114 in group without restriction
4115 behaves like returning response status
4116 returns ok
4117 in group with restriction
4118 with address within the range
4119 behaves like returning response status
4120 returns ok
4121 with address outside the range
4122 behaves like returning response status
4123 returns not_found
4124Creating an iteration cadence
4125 when the user does not have permission
4126 does not create iteration cadence
4127 behaves like a mutation that returns a top-level access error
4128 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4129 when the user has permission
4130 when iterations feature is disabled
4131 behaves like a mutation that returns top-level errors
4132 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4133 when iterations feature is enabled
4134 creates the iteration cadence for a group
4135 when creating a manual iteration cadence
4136 creates an iteration cadence
4137 when there are ActiveRecord validation errors
4138 does not create the iteration cadence
4139 behaves like a mutation that returns errors in the response
4140 is expected to contain exactly "Iterations in advance can't be blank", "Start date can't be blank", and "Title can't be blank"
4141 when required arguments are missing
4142 returns error about required argument
4143 does not create the iteration cadence
4144Query.project(fullPath).dastSiteValidations
4145 when a user does not have access to the project
4146 returns a null project
4147 when a user does not have access to dast_site_validations
4148 returns an empty nodes array
4149 when a user has access to dast_site_validations
4150 avoids N+1 queries
4151 behaves like sorted paginated query
4152 behaves like requires variables
4153 shared example requires variables to be set
4154
4155 when sorting
4156 sorts correctly
4157 when paginating
4158 paginates correctly
4159Projects::Pipelines::EmailCampaignsController
4160 GET #validate_account
4161 when user has access to the pipeline
4162 emits a snowplow event
4163 sets session[:start_account_validation] to true
4164 redirects to the pipeline show page
4165 when not in .com or dev env
4166 returns 404
4167 when user does not have access to the pipeline
4168 returns :not_found
4169 does not set session[:start_account_validation]
4170Groups::RoadmapController
4171 #show
4172 when the user is signed in
4173 when the user has access to the group
4174 when epics feature is disabled
4175 behaves like returns 404 status
4176 is expected to respond with numeric status code not_found
4177 when epics feature is enabled
4178 returns 200 status
4179 when roadmaps_sort is nil
4180 stores roadmaps sorting param in user preference
4181 defaults to sort_value_start_date_soon
4182 when roadmaps_sort is present
4183 update roadmaps_sort with current value
4184 when the user does not have access to the group
4185 behaves like returns 404 status
4186 is expected to respond with numeric status code not_found
4187 when user is not signed in
4188 when epics feature is enabled
4189 when anonymous users does not have access to the group
4190 redirects to login page
4191 when anonymous users have access to the group
4192 stores epics sorting param in a cookie
4193getting external status checks for a branch rule
4194 # order random
4195 is expected to eq 1
4196 when the user does have read_external_status_check permission
4197 behaves like a working graphql query
4198 returns a successful response
4199 returns external_status_checks_data
4200 when the user does not have read_external_status_check permission
4201 behaves like a working graphql query
4202 returns a successful response
4203 hides external_status_checks_data
4204Assigns scan execution policy project to a project/namespace
4205 for project
4206 behaves like assigns security policy project
4207 when licensed feature is available
4208 when user is an owner of the container
4209 assigns the security policy project
4210 when user is not an owner
4211 behaves like a mutation that returns top-level errors
4212 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4213 when policy_project_id is invalid
4214 behaves like a mutation that returns top-level errors
4215 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4216 when feature is not licensed
4217 behaves like a mutation that returns top-level errors
4218 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4219 for namespace
4220 behaves like assigns security policy project
4221 when licensed feature is available
4222 when user is an owner of the container
4223 assigns the security policy project
4224 when user is not an owner
4225 behaves like a mutation that returns top-level errors
4226 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4227 when policy_project_id is invalid
4228 behaves like a mutation that returns top-level errors
4229 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4230 when feature is not licensed
4231 behaves like a mutation that returns top-level errors
4232 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4233Destroy an epic board list
4234 behaves like board lists destroy request
4235 when the user does not have permission
4236 does not destroy the list
4237 returns an error
4238 when the user has permission
4239 when given id is not for a list
4240 returns an error
4241 when list does not exist
4242 returns a top level error
4243 when everything is ok
4244 destroys the list
4245 returns an empty list
4246 when the list is not destroyable
4247 behaves like does not destroy the list and returns an error
4248 does not destroy the list
4249 returns an error and not nil list
4250Admin::AuditLogsController
4251 GET #index
4252 licensed
4253 tracks search event
4254 pagination
4255 paginates audit events, without casting a count query
4256 behaves like tracking unique visits
4257 tracks unique visit if the format is HTML
4258 tracks unique visit if DNT is not enabled
4259 does not track unique visit if DNT is enabled
4260 does not track unique visit if the format is JSON
4261 behaves like Snowplow event tracking with RedisHLL context
4262 behaves like Snowplow event tracking
4263 is emitted
4264 when invalid date
4265 created_before: "invalid-date", created_after: nil
4266 returns an error
4267 created_before: nil, created_after: true
4268 returns an error
4269 created_before: "2021-13-10", created_after: nil
4270 returns an error
4271 created_before: nil, created_after: "2021-02-31"
4272 returns an error
4273 created_before: "2021-03-31", created_after: "2021-02-31"
4274 returns an error
4275 when date range is greater than limit
4276 behaves like a date range error is returned
4277 created_after: "2021-01-01", created_before: "2021-02-02"
4278 returns an error
4279 created_after: "2022-01-31", created_before: nil
4280 returns an error
4281 by user
4282 finds the user by id when provided with a entity_id
4283 finds the user by username when provided with a entity_username
4284SessionsController
4285 # order random
4286 #create
4287 when identity verification is turned off
4288 is expected to redirect to "/"
4289 does not set the `verification_user_id` session variable
4290 when identity verification is turned on
4291 is expected to redirect to "/users/identity_verification"
4292 sets the `verification_user_id` session variable
4293 when the user is verified
4294 is expected to redirect to "/"
4295 when the user is locked
4296 is expected not to respond with numeric status code redirect
4297 when the user is a GitLab QA user
4298 is expected not to redirect to "/users/identity_verification"
4299API::CaptchaCheck
4300 POST users/captcha_check
4301 when the feature flag arkose_labs_login_challenge is disabled
4302 does return not found status
4303 when the feature flag arkose_labs_login_challenge is enabled
4304 when the username is invalid
4305 does return 200 OK status to prevent enumeration
4306 when the username has a dot
4307 does return 200 status
4308 when the username is nil
4309 does return 200 OK status to prevent enumeration
4310 when the username is an array
4311 does return 200 OK status to prevent enumeration
4312 when the email is valid
4313 returns status ok
4314 when the email is unknown
4315 returns 200 OK status to prevent enumeration
4316 when the email is invalid
4317 returns 200 OK status to prevent enumeration
4318 when the user meets the criteria for the captcha check
4319 does return true
4320 when the user does not meets the criteria for the captcha check
4321 does return true
4322 when the user reach the rate limit
4323 does return true
4324Create test case
4325 #resolve
4326 when quality management feature is not available
4327 behaves like a mutation that returns top-level errors
4328 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4329 when quality management feature is available
4330 when user can create test cases
4331 creates new test case
4332 with invalid arguments
4333 behaves like an invalid argument to the mutation
4334 behaves like a mutation that returns top-level errors
4335 is expected to contain exactly (include "invalid value for notValid")
4336 when user cannot create test cases
4337 behaves like a mutation that returns top-level errors
4338 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4339Groups::Settings::ReportingController
4340 GET /groups/:group_id/-/settings/reporting
4341 when user is owner
4342 renders show with 200 status code
4343 behaves like 404 when feature is unavailable
4344 when feature flag is disabled
4345 behaves like renders 404
4346 renders 404
4347 when licensed feature is not available
4348 behaves like renders 404
4349 renders 404
4350 when subgroup
4351 behaves like renders 404
4352 renders 404
4353 when user is not owner
4354 renders a 404
4355Querying a Board list
4356 when the user has access to the list
4357 is expected to include {"issuesCount" => 2, "title" => "foo"}
4358 behaves like a working graphql query
4359 returns a successful response
4360 issue filters
4361 when filtering by iteration arguments
4362 is expected to include {"issuesCount" => 1, "title" => "foo"}
4363 when filtering by health_status argument
4364 is expected to include {"issuesCount" => 1, "title" => "foo"}
4365 when filtering by negated health_status argument
4366 is expected to include {"issuesCount" => 1, "title" => "foo"}
4367 when the user does not have access to the list
4368 is expected to be nil
4369Updating an iteration cadence
4370 when the user does not have permission
4371 does not update the iteration cadence
4372 behaves like a mutation that returns a top-level access error
4373 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4374 when the user has permission
4375 when iterations feature is disabled
4376 behaves like a mutation that returns top-level errors
4377 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4378 when iterations feature is enabled
4379 updates the iteration cadence
4380 when there are ActiveRecord validation errors
4381 does not update the iteration cadence
4382 behaves like a mutation that returns errors in the response
4383 is expected to contain exactly "Title can't be blank"
4384 when required arguments are missing
4385 returns error about required argument
4386Query.vulnerabilities.externalIssueLinks
4387 when queried for the first time with reactive caching
4388 schedules a background job to fetch data from Jira
4389 returns null as value for externalIssue
4390 when queried without reactive caching
4391 returns a list of all VulnerabilityExternalIssueLink
4392Projects::RepositoriesController
4393 # order random
4394 GET /archive
4395 when user is banned from the project's top-level group
4396 prevents the archive download
4397 when user is not banned from the project's top-level group
4398 proceeds with the archive download
4399getting Incident Management on-call shifts
4400 # order random
4401 adding participants
4402 updates the rotation and adds participants
4403 updating name only
4404 updates the rotation
4405 removing participants
4406 updates the rotation and removes participants
4407 errors
4408 user cannot be found
4409 raises an error
4410Projects::MirrorsController
4411 updates the mirror URL
4412 complains about passing an empty URL
4413NamespaceCiCdSettingsUpdate
4414 when unauthorized
4415 when not a namespace member
4416 behaves like unauthorized
4417 returns an error
4418 when a non-admin namespace member
4419 behaves like unauthorized
4420 returns an error
4421 when authorized
4422 updates allow_stale_runner_pruning?
4423 does not update allow_stale_runner_pruning? if not specified
4424 when bad arguments are provided
4425 returns the errors
4426OmniAuth Kerberos SPNEGO
4427 asks for an SPNEGO token
4428 when an SPNEGO token is provided
4429 passes the token to spnego_negotiate!
4430 when the final SPNEGO token is provided
4431 redirects to the omniauth callback
4432 stores the users principal name in the session
4433 send the final SPNEGO response
4434Query.issue(id)
4435 # order random
4436 when user has no access to the epic
4437 when there is an epic
4438 returns null for epic and hasEpic is `true`
4439 when there is no epic
4440 returns null for epic and hasEpic is `false`
4441 when user has access to the epic
4442 returns epic and hasEpic is `true`
4443getting a list of external audit event destinations for a group
4444 when authenticated as the group owner
4445 returns the groups external audit event destinations
4446 when authenticated as a group maintainer
4447 behaves like a request that returns no destinations
4448 returns no destinations
4449 when authenticated as a group developer
4450 behaves like a request that returns no destinations
4451 returns no destinations
4452 when authenticated as a group guest
4453 behaves like a request that returns no destinations
4454 returns no destinations
4455 when not authenticated
4456 behaves like a request that returns no destinations
4457 returns no destinations
4458UsersController
4459 # order random
4460 #available_group_templates
4461 shows the first page of the pagination
4462EE::Emails::Profile
4463 #policy_revoked_personal_access_tokens_email
4464 is sent to the user
4465 has the correct subject
4466 mentions the access tokens were revoke
4467 includes a link to personal access tokens page
4468 includes the email reason
4469Groups::Settings::MergeRequestsController
4470 # order random
4471 PATCH #update
4472 when user is not an admin
4473 respond status :not_found
4474 when user is an admin
4475 is expected to redirect to "/groups/group312/-/edit#js-merge-requests-settings"
4476 when service execution went wrong
4477 returns a flash alert
4478 when service execution was successful
4479 returns a flash notice
4480Create a milestone or assignee board list
4481 the user is not allowed to read board lists
4482 behaves like a mutation that returns a top-level access error
4483 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4484 when user has permissions to admin board lists
4485 milestone list
4486 creates the list
4487 assignee list
4488 creates the list
4489API::ConanProjectPackages
4490 # order random
4491 GET /api/v4/projects/:id/packages/conan/v1/files/:package_name/package_version/:package_username/:package_channel/:recipe_revision/package/:conan_package_reference/:package_revision/:file_name
4492 behaves like applying ip restriction for group
4493 in group without restriction
4494 behaves like returning response status
4495 returns ok
4496 in group with restriction
4497 with address within the range
4498 behaves like returning response status
4499 returns ok
4500 with address outside the range
4501 behaves like returning response status
4502 returns not_found
4503Projects::Security::DastConfigurationController
4504 GET #show
4505 when the "Security and Compliance" feature is disabled
4506 is expected to respond with numeric status code not_found
4507 feature available
4508 user authorized
4509 can access page
4510 user not authorized
4511 sees a 404 error
4512 feature not available
4513 license doesn't support the feature
4514 sees a 404 error
4515API::HelmPackages
4516 # order random
4517 GET /api/v4/projects/:id/packages/helm/:channel/charts/:file_name.tgz
4518 behaves like applying ip restriction for group
4519 in group without restriction
4520 behaves like returning response status
4521 returns ok
4522 in group with restriction
4523 with address within the range
4524 behaves like returning response status
4525 returns ok
4526 with address outside the range
4527 behaves like returning response status
4528 returns not_found
4529Projects::Settings::IntegrationsController
4530 sets correct services list
4531 without a license key
4532 behaves like endpoint with some disabled integrations
4533 has some disabled integrations
4534 with a license key
4535 when checking if namespace plan is enabled
4536 behaves like endpoint with some disabled integrations
4537 has some disabled integrations
4538 when checking if namespace plan is not enabled
4539 behaves like endpoint without disabled integrations
4540 does not have disabled integrations
4541Query.project(fullPath).pushRules
4542 returns nil when push_rules license is false
4543 pushRules.rejectUnsignedCommits
4544 field_value: true, license_value: true, expected: true
4545 returns
4546 field_value: true, license_value: false, expected: false
4547 returns
4548 field_value: false, license_value: true, expected: false
4549 returns
4550 field_value: false, license_value: false, expected: false
4551 returns
4552Environments Deployments query
4553 # order random
4554 when requesting user permissions
4555 limits the result
4556API::NugetGroupPackages
4557 # order random
4558 GET /api/v4/groups/:id/-/packages/nuget/metadata/*package_name/*package_version
4559 behaves like applying ip restriction for group
4560 in group without restriction
4561 behaves like returning response status
4562 returns ok
4563 in group with restriction
4564 with address within the range
4565 behaves like returning response status
4566 returns ok
4567 with address outside the range
4568 behaves like returning response status
4569 returns not_found
4570Creating an issuable resource link
4571 # order random
4572 creates issuable resource link
4573 returns error
4574 when link is invalid
4575 returns nil
4576Admin::ApplicationSettings::ScimOauthController
4577 # order random
4578 POST admin_application_settings_scim_oauth
4579 when the user is an admin
4580 when admin mode is not enabled
4581 returns access denied
4582 when admin mode is enabled
4583 when the feature is not available
4584 returns not found
4585 when the feature is available
4586 successfully creates a token
4587 when a token already exists
4588 successfully resets the token
4589 when the SCIM token is invalid
4590 returns an error
4591 when the user is not an admin
4592 returns not found
4593Create a label or backlog board list
4594 behaves like board lists create request
4595 the user is not allowed to read board lists
4596 behaves like a mutation that returns a top-level access error
4597 is expected to contain exactly "The resource that you are attempting to access does not exist or you don't have permission to perform this action"
4598 when user has permissions to admin board lists
4599 backlog list
4600 creates the list
4601 label list
4602 creates the list
4603Security::VulnerabilitiesController
4604 GET #index
4605 behaves like Security::ApplicationController
4606 when the user is authenticated
4607 responds with success
4608 and the instance does not have an Ultimate license
4609 404s
4610 when the user is not authenticated
4611 redirects the user to the sign in page
4612 when security dashboard feature
4613 is enabled
4614 is expected to render template instance_security
4615 is disabled
4616 is expected to respond with numeric status code not_found
4617 is expected to render template errors/not_found
4618getting a compliance frameworks list for a project
4619 when the project has no compliance framework assigned
4620 is an empty array
4621 when the project has a compliance framework assigned
4622 includes its name
4623Projects::CycleAnalyticsController
4624 # order random
4625 with project and value stream id params
4626 builds request params with project and value stream
4627Admin::DashboardController
4628 #index
4629 allows an admin user to access the page
4630 does not allow an auditor user to access the page
4631 does not allow a regular user to access the page
4632Emails::ComplianceFrameworks
4633 # order random
4634 #compliance_frameworks_csv_email
4635 renders an email with attachment
4636Projects::IncidentsController
4637 # order random
4638 GET #show
4639 exposes the escalation_policies licensed feature setting
4640API::Ai::Experimentation::Anthropic
4641 # order random
4642 POST /ai/experimentation/anthropic/complete
4643 behaves like delegates AI request to Workhorse
4644 responds with Workhorse send-url headers
4645 behaves like behind AI related feature flags
4646 when anthropic_experimentation is disabled
4647 responds as not found
4648 when ai_experimentation_api is disabled
4649 responds as not found
4650Ci/Cd settings through GroupQuery
4651 when group has no associated ci_cd_settings
4652 returns false for allowStaleRunnerPruning
4653 when group has associated ci_cd_settings
4654 with allow_stale_runner_pruning set to false
4655 returns false for allowStaleRunnerPruning
4656 with allow_stale_runner_pruning set to true
4657 returns true for allowStaleRunnerPruning
4658Groups::Security::MergeCommitReportsController
4659 GET index
4660 when feature is enabled
4661 when user has access to dashboard
4662 tells the service to enqueue a job
4663 when user does not have access to dashboard
4664 behaves like returns not found
4665 is expected to respond with numeric status code not_found
4666 when feature is not enabled
4667 behaves like returns not found
4668 is expected to respond with numeric status code not_found
4669SitemapController
4670 #show
4671 when not Gitlab.com?
4672 returns :not_found
4673 when Gitlab.com?
4674 with an authenticated user
4675 when the sitemap generation raises an error
4676 returns an xml error
4677 when the sitemap was created suscessfully
4678 returns sitemap
4679Profiles::KeysController
4680 #create
4681 logs the audit event
4682AuditEvents::AuditEventsParams
4683 # order random
4684 #filter_by_author
4685 returns params when the user has permission to view all events
4686 returns safe params with the current user id when the user lacks permission to view all events
4687Knapsack report was generated. Preview:
4688{
4689 "ee/spec/requests/api/visual_review_discussions_spec.rb": 126.85829232600008,
4690 "ee/spec/requests/search_controller_spec.rb": 99.59402630900058,
4691 "ee/spec/requests/api/scim/group_scim_spec.rb": 67.60098646799997,
4692 "ee/spec/controllers/operations_controller_spec.rb": 64.60703347899926,
4693 "ee/spec/controllers/projects/issues_controller_spec.rb": 48.98680348200014,
4694 "ee/spec/requests/api/project_approval_settings_spec.rb": 52.977012276000096,
4695 "ee/spec/requests/api/vulnerability_findings_spec.rb": 49.26449425900046,
4696 "ee/spec/mailers/notify_spec.rb": 39.13953087899972,
4697 "ee/spec/requests/api/merge_request_approvals_spec.rb": 29.81869892299892,
4698 "ee/spec/controllers/projects/push_rules_controller_spec.rb": 37.88818240299952,
4699 "ee/spec/requests/api/graphql/mutations/epic_tree/reorder_spec.rb": 30.811409980000462,
4700 "ee/spec/requests/api/graphql/issues_spec.rb": 23.785196029999497,
4701 "ee/spec/requests/projects/merge_requests_controller_spec.rb": 25.656448788999114,
4702 "ee/spec/controllers/groups/analytics/cycle_analytics/stages_controller_spec.rb": 22.74999507999928,
4703 "ee/spec/requests/git_http_spec.rb": 20.29390609800066,
4704 "ee/spec/requests/api/epic_links_spec.rb": 14.0233154739999,
4705 "ee/spec/requests/api/related_epic_links_spec.rb": 17.6856890199997,
4706 "ee/spec/requests/api/graphql/project/issues_spec.rb": 17.59101394800018,
4707 "ee/spec/controllers/groups/audit_events_controller_spec.rb": 11.310383476000425,
4708 "ee/spec/requests/api/graphql/epics/epic_resolver_spec.rb": 14.872512948999429,
4709 "ee/spec/controllers/ldap/omniauth_callbacks_controller_spec.rb": 20.197677546000705,
4710 "ee/spec/requests/api/project_push_rule_spec.rb": 13.440874916999746,
4711 "ee/spec/requests/api/admin/search/zoekt_spec.rb": 10.536320383998827,
4712 "ee/spec/requests/projects/analytics/cycle_analytics/value_streams_controller_spec.rb": 11.950743269000668,
4713 "ee/spec/controllers/projects/security/vulnerabilities_controller_spec.rb": 10.329333113000757,
4714 "ee/spec/requests/projects/on_demand_scans_controller_spec.rb": 9.943005836999873,
4715 "ee/spec/controllers/projects/settings/merge_requests_controller_spec.rb": 9.846099345999392,
4716 "ee/spec/controllers/projects/feature_flag_issues_controller_spec.rb": 9.743901044001177,
4717 "ee/spec/requests/api/award_emoji_spec.rb": 8.071627513998465,
4718 "ee/spec/requests/api/geo_spec.rb": 4.526907548000963,
4719 "ee/spec/requests/api/graphql/mutations/audit_events/google_cloud_logging_configurations/create_spec.rb": 7.418322081999577,
4720 "ee/spec/requests/ee/registrations_controller_spec.rb": 6.582952095999644,
4721 "ee/spec/controllers/groups/hooks_controller_spec.rb": 10.660752854000748,
4722 "ee/spec/requests/api/graphql/mutations/vulnerabilities/bulk_dismiss_spec.rb": 7.600289485000758,
4723 "ee/spec/requests/smartcard_controller_spec.rb": 4.417257136999979,
4724 "ee/spec/requests/groups/analytics/dashboards_controller_spec.rb": 9.197508423001636,
4725 "ee/spec/requests/api/analytics/group_activity_analytics_spec.rb": 3.3020237870005076,
4726 "ee/spec/requests/api/graphql/project/pipeline/security_report_summary_spec.rb": 8.62332303400035,
4727 "ee/spec/requests/api/dependencies_spec.rb": 5.728756561000409,
4728 "ee/spec/requests/api/graphql/boards/epic_lists_query_spec.rb": 5.6318400200016185,
4729 "ee/spec/controllers/ee/dashboard/projects_controller_spec.rb": 5.2546671830004925,
4730 "ee/spec/requests/api/internal/app_sec/dast/site_validations_spec.rb": 3.450945853999656,
4731 "ee/spec/requests/api/graphql/mutations/security/finding/revert_to_detected_spec.rb": 5.482063243000084,
4732 "ee/spec/requests/api/graphql/dora/dora_scores_spec.rb": 5.705330602999311,
4733 "ee/spec/requests/api/graphql/vulnerabilities/issue_links_spec.rb": 4.414965058000234,
4734 "ee/spec/controllers/projects/requirements_management/requirements_controller_spec.rb": 4.677879614999256,
4735 "ee/spec/requests/api/graphql/gitlab_subscriptions/preview_billable_user_change_spec.rb": 4.980695467998885,
4736 "ee/spec/requests/api/gitlab_subscriptions/add_on_purchases_spec.rb": 2.374592569000015,
4737 "ee/spec/controllers/groups/merge_requests_controller_spec.rb": 3.198637826000777,
4738 "ee/spec/requests/api/graphql/mutations/notes/create/note_spec.rb": 5.6538604679990385,
4739 "ee/spec/requests/api/graphql/mutations/security_policy/unassign_security_policy_project_spec.rb": 4.256324042000415,
4740 "ee/spec/requests/api/graphql/mutations/epics/create_spec.rb": 3.9728758780001954,
4741 "ee/spec/requests/api/repositories_spec.rb": 2.6820098419993883,
4742 "ee/spec/controllers/admin/projects_controller_spec.rb": 5.175493380000262,
4743 "ee/spec/requests/api/graphql/mutations/alert_management/http_integration/create_spec.rb": 3.2767400089996954,
4744 "ee/spec/controllers/concerns/onboarding_spec.rb": 1.0291572580008506,
4745 "ee/spec/requests/groups/audit_events_spec.rb": 2.329717182999957,
4746 "ee/spec/requests/rack_attack_spec.rb": 3.86980859599862,
4747 "ee/spec/requests/trial_registrations_controller_spec.rb": 3.2735959389992786,
4748 "ee/spec/requests/api/graphql/projects/compliance_frameworks_spec.rb": 4.882213416998638,
4749 "ee/spec/requests/api/graphql/project/code_coverage_summary_spec.rb": 4.815292822000629,
4750 "ee/spec/mailers/credentials_inventory_mailer_spec.rb": 1.291884365000442,
4751 "ee/spec/requests/api/resource_state_events_spec.rb": 3.646940515998722,
4752 "ee/spec/controllers/groups/analytics/cycle_analytics_controller_spec.rb": 4.455294154999137,
4753 "ee/spec/requests/api/graphql/mutations/vulnerabilities/create_issue_link_spec.rb": 3.21407774400177,
4754 "ee/spec/requests/api/graphql/project/alert_management/http_integrations_spec.rb": 3.7884911639994243,
4755 "ee/spec/requests/api/graphql/milestone_spec.rb": 2.1653324569997494,
4756 "ee/spec/requests/api/graphql/mutations/dast/profiles/run_spec.rb": 3.3015930959991238,
4757 "ee/spec/requests/api/graphql/project/dast_profile_schedule_spec.rb": 3.801970082999105,
4758 "ee/spec/controllers/groups/scim_oauth_controller_spec.rb": 2.8964348629997403,
4759 "ee/spec/requests/api/graphql/namespace/compliance_frameworks_spec.rb": 3.349809113000447,
4760 "ee/spec/requests/api/graphql/gitlab_subscriptions/user_add_on_assignments/remove_spec.rb": 2.394103017000816,
4761 "ee/spec/requests/api/pypi_packages_spec.rb": 2.096140233999904,
4762 "ee/spec/requests/api/graphql/mutations/iterations/cadences/create_spec.rb": 2.756310284999927,
4763 "ee/spec/requests/api/graphql/project/dast_site_validations_spec.rb": 3.0567935290000605,
4764 "ee/spec/requests/projects/pipelines/email_campaigns_controller_spec.rb": 2.383340488000613,
4765 "ee/spec/controllers/groups/roadmap_controller_spec.rb": 2.8143183100000897,
4766 "ee/spec/requests/api/graphql/project/branch_rules/external_status_checks_spec.rb": 1.7222097869998834,
4767 "ee/spec/requests/api/graphql/mutations/security_policy/assign_security_policy_project_spec.rb": 2.9448653889994603,
4768 "ee/spec/requests/api/graphql/mutations/boards/epic_lists/destroy_spec.rb": 2.9460108680013946,
4769 "ee/spec/controllers/admin/audit_logs_controller_spec.rb": 1.7580410740010848,
4770 "ee/spec/requests/sessions_controller_spec.rb": 1.6887142200012022,
4771 "ee/spec/requests/api/captcha_check_spec.rb": 0.9898574319995532,
4772 "ee/spec/requests/api/graphql/mutations/quality_management/test_cases/create_spec.rb": 1.4881529979993502,
4773 "ee/spec/requests/groups/settings/reporting_controller_spec.rb": 2.426867043999664,
4774 "ee/spec/requests/api/graphql/boards/board_list_query_spec.rb": 2.098004593999576,
4775 "ee/spec/requests/api/graphql/mutations/iterations/cadences/update_spec.rb": 2.2335923119990184,
4776 "ee/spec/requests/api/graphql/vulnerabilities/external_issue_links_spec.rb": 2.1844562250007584,
4777 "ee/spec/requests/ee/projects/repositories_controller_spec.rb": 1.4982988679985283,
4778 "ee/spec/requests/api/graphql/mutations/incident_management/oncall_rotation/update_spec.rb": 1.9285941790003562,
4779 "ee/spec/requests/projects/mirrors_controller_spec.rb": 1.2293467109993799,
4780 "ee/spec/requests/api/graphql/mutations/ci/namespace_ci_cd_settings_update_spec.rb": 2.031480929999816,
4781 "ee/spec/requests/omniauth_kerberos_spec.rb": 0.5825269679990015,
4782 "ee/spec/requests/api/graphql/issue/issue_spec.rb": 2.0117797709990555,
4783 "ee/spec/requests/api/graphql/group/external_audit_event_destinations_spec.rb": 1.8206717589982873,
4784 "ee/spec/requests/users_controller_spec.rb": 1.544791623000492,
4785 "ee/spec/mailers/ee/emails/profile_spec.rb": 0.5159513239996159,
4786 "ee/spec/requests/groups/settings/merge_requests_controller_spec.rb": 1.5711990500003594,
4787 "ee/spec/requests/api/graphql/mutations/boards/lists/create_spec.rb": 1.763954983000076,
4788 "ee/spec/requests/api/conan_project_packages_spec.rb": 1.6931929189995572,
4789 "ee/spec/requests/projects/security/dast_configuration_controller_spec.rb": 1.5219816449989594,
4790 "ee/spec/requests/api/helm_packages_spec.rb": 1.3773578780001117,
4791 "ee/spec/controllers/projects/settings/integrations_controller_spec.rb": 1.3677627180004492,
4792 "ee/spec/requests/api/graphql/project/push_rules_spec.rb": 1.169719436999003,
4793 "ee/spec/requests/api/graphql/environments/deployments_spec.rb": 1.4204228340004192,
4794 "ee/spec/requests/api/nuget_group_packages_spec.rb": 1.2468479400013166,
4795 "ee/spec/requests/api/graphql/mutations/incident_management/issuable_resource_link/create_spec.rb": 1.1151431309990585,
4796 "ee/spec/requests/admin/application_settings/scim_oauth_controller_spec.rb": 0.7988931290001346,
4797 "ee/spec/requests/api/graphql/mutations/boards/epic_lists/create_spec.rb": 1.2247608119996585,
4798 "ee/spec/controllers/security/vulnerabilities_controller_spec.rb": 0.7302548549996573,
4799 "ee/spec/requests/api/graphql/project/compliance_frameworks_spec.rb": 1.2031919529999868,
4800 "ee/spec/requests/ee/projects/cycle_analytics_controller_spec.rb": 0.9652561439997953,
4801 "ee/spec/controllers/admin/dashboard_controller_spec.rb": 0.6491545120006776,
4802 "ee/spec/mailers/emails/compliance_frameworks_spec.rb": 1.0458587869998155,
4803 "ee/spec/requests/projects/incidents_controller_spec.rb": 1.1844585850012663,
4804 "ee/spec/requests/api/ai/experimentation/anthropic_spec.rb": 0.4429855709986441,
4805 "ee/spec/requests/api/graphql/group/ci_cd_settings_spec.rb": 0.5047449559988308,
4806 "ee/spec/controllers/groups/security/merge_commit_reports_controller_spec.rb": 0.6543459320000693,
4807 "ee/spec/controllers/sitemap_controller_spec.rb": 0.2555584869987797,
4808 "ee/spec/controllers/profiles/keys_controller_spec.rb": 0.3331324599985237,
4809 "ee/spec/controllers/concerns/audit_events/audit_events_params_spec.rb": 0.19787819300108822
4810}
4811Knapsack global time execution for tests: 19m 45s
4812Finished in 19 minutes 48 seconds (files took 1 minute 10.69 seconds to load)
48131974 examples, 0 failures
4814Randomized with seed 8767
4815[TEST PROF INFO] Time spent in factories: 09:10.838 (45.11% of total time)
4816RSpec exited with 0.
4817No examples to retry, congrats!
4818 Running after_script 00:01
4819Running after script...
4820$ echo -e "\e[0Ksection_start:`date +%s`:report_results_section[collapsed=true]\r\e[0KReport results"
4821 Report results 00:00
4824 Saving cache for successful job 00:00
4825Not uploading cache ruby-gems-debian-bullseye-ruby-3.0-16 due to policy
4826 Uploading artifacts for successful job 00:05
4827Uploading artifacts...
4828WARNING: auto_explain/: no matching files. Ensure that the artifact path is relative to the working directory (/builds/gitlab-org/gitlab)
4829coverage/: found 5 matching artifact files and directories
4830crystalball/: found 2 matching artifact files and directories
4831WARNING: deprecations/: no matching files. Ensure that the artifact path is relative to the working directory (/builds/gitlab-org/gitlab)
4832knapsack/: found 4 matching artifact files and directories
4833rspec/: found 16 matching artifact files and directories
4834WARNING: tmp/capybara/: no matching files. Ensure that the artifact path is relative to the working directory (/builds/gitlab-org/gitlab)
4835log/*.log: found 16 matching artifact files and directories
4836WARNING: Upload request redirected location=https://gitlab.com/api/v4/jobs/4841631428/artifacts?artifact_format=zip&artifact_type=archive&expire_in=31d new-url=https://gitlab.com
4837WARNING: Retrying... context=artifacts-uploader error=request redirected
4838Uploading artifacts as "archive" to coordinator... 201 Created id=4841631428 responseStatus=201 Created token=64_jD7_G
4839Uploading artifacts...
4840rspec/rspec-*.xml: found 1 matching artifact files and directories
4841WARNING: Upload request redirected location=https://gitlab.com/api/v4/jobs/4841631428/artifacts?artifact_format=gzip&artifact_type=junit&expire_in=31d new-url=https://gitlab.com
4842WARNING: Retrying... context=artifacts-uploader error=request redirected
4843Uploading artifacts as "junit" to coordinator... 201 Created id=4841631428 responseStatus=201 Created token=64_jD7_G
4844 Cleaning up project directory and file based variables 00:00
4845Job succeeded