Skip to content

Allow users to see a group application settings page in Admin mode

Oksana Kohuch requested to merge gitlab-community/gitlab:382553-fix-admin-mode-on-group-app-setting-page into master

What does this MR do and why?

More details of the issue in #382553 (closed)

On an instance with Admin mode enabled, an admin user who is Maintainer-level member of a group (direct or invited via another group), can not view the group's /settings/applications page (404 error), even when they switch to admin mode.

prepend_before_action :authorize_admin_group! verifies if a current user mode data is present in the session and if admin mode is enabled. However, current user mode data are not available in the session at that time as are being set later in around_action :set_current_admin.

Changing from prepend_before_action to before_action allows us to set session data first and then try to authorize the admin group. And so the admin will be able to manage applications on settings/applications page while being in admin mode.

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

Before After
Screenshot 2023-10-30 at 13.49.35.png Screenshot 2023-10-30 at 13.47.14.png
Screenshot 2023-11-01 at 14.57.09.png Screenshot 2023-11-01 at 14.58.02.png

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

1 Issue:

  1. Enable Admin Mode on Admin Area -> Settings -> General -> Sign-in restrictions -> Enable admin mode
  2. Have a user with an admin role
  3. Create a group where that user is a maintainer
  4. Impersonate that user
  5. Click Search or go to -> Enter Admin mode
  6. Go to visit that group and then Setting -> Applications page
  7. See a 404 error
  8. Apply changes from this merge request
  9. Go to visit Setting -> Applications page for that group
  10. See the page is loaded

2 Issue:

  1. Enable Admin Mode on Admin Area -> Settings -> General -> Sign-in restrictions -> Enable admin mode
  2. Have a group where the admin root user is an owner
  3. Click Search or go to -> Enter Admin mode
  4. Go to visit that group and then Settings -> CI/CD page
  5. Click on Search and go and see Admin Area and Leave admin mode options are visible
  6. Go to visit Settings -> Applications page
  7. Click on Search and go and see Admin Area and Leave admin mode options are NOT visible
  8. Apply changes from this merge request
  9. Go to visit Settings -> Applications page
  10. Click on Search and go and see Admin Area and Leave admin mode options are visible

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #382553 (closed)

Edited by Oksana Kohuch

Merge request reports