Enable observability auth scopes with logs FF
What does this MR do and why?
Enables the Observability auth scopes read_observability
and write_observability
when the observability_logs
feature flag is enabled at group or project level.
The scopes already present with tracing and metrics feature flags. See also !141532 (merged)
Closes gitlab-org/opstrace/opstrace#2651 (closed)
MR acceptance checklist
Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
How to set up and validate locally
- Ensure feature flags
:observability_tracing, :observability_metrics
,observability_logs
are disabled. - Verify that when creating a group or project access token it does not show scopes
read_observability
andwrite_observability
. - Enable
:observability_logs
FF. - Verify that the group/project has the
read_observability
andwrite_observability
scopes available when creating a token. - Enable
:observability_[tracing|metrics]
FF and repeat step 4.