Add group encryption key frontend (!112683) · Merge requests · GitLab.org / GitLab

Pascal Zumkehr requested to merge gitlab-community/gitlab:group-encryption-keys-frontend into master Feb 22, 2023

What does this MR do and why?

Adds group encryption key frontend so each organization is able to en-/decrypt CI variables in the database with their own key. This is part of issue #378386 (closed) and supersedes MR !112549 (closed). The database model is created in the previous MR !112679 (closed), the backend in the MR !112681 (closed). So only the last commit in the MR is actually relevant here.

Screenshots or screen recordings

How to set up and validate locally

Visit any group CI/CD settings page such as http://127.0.0.1:3000/groups/flightjs/-/settings/ci_cd and expand the "Encryption Key" panel.
Enter an encryption key for this group and save it.
All variables in this group are now encrypted using the custom encryption key.
To remove a custom encryption key and use the global/instance encryption key, leave the encryption key field empty and save it.
All variables in this group are now encrypted using the global encryption key.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Feb 22, 2023 by Pascal Zumkehr

Add group encryption key frontend

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports