Enable observability auth scopes with logs FF (!143350) · Merge requests · GitLab.org / GitLab

Joe Shaw requested to merge joe/observability_auth_scopes_logs into master Jan 31, 2024

What does this MR do and why?

Enables the Observability auth scopes read_observability and write_observability when the observability_logs feature flag is enabled at group or project level.

The scopes already present with tracing and metrics feature flags. See also !141532 (merged)

Closes gitlab-org/opstrace/opstrace#2651 (closed)

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

How to set up and validate locally

Ensure feature flags :observability_tracing, :observability_metrics, observability_logs are disabled.
Verify that when creating a group or project access token it does not show scopes read_observability and write_observability.
Enable :observability_logs FF.
Verify that the group/project has the read_observability and write_observability scopes available when creating a token.
Enable :observability_[tracing|metrics] FF and repeat step 4.

Enable observability auth scopes with logs FF

What does this MR do and why?

MR acceptance checklist

How to set up and validate locally

Merge request reports