Ensure at least one permission is selected during member role creation (!143616) · Merge requests · GitLab.org / GitLab

Hinam Mehra requested to merge 435612-add-permission-validation-to-member-role into master Feb 02, 2024

What does this MR do and why?

Adds a validation to the MemberRole model to ensure at least one permission is selected during creation.

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

Before	After

How to set up and validate locally

Log-in as admin and navigate to GraphQL explorer, /-/graphql-explorer
Run the following query which creates a member role with no permissions enabled. This should result in an error.

mutation createMemberRole($input: MemberRoleCreateInput!) {
  memberRoleCreate(input: $input) {
    memberRole {
      id
      enabledPermissions {
        edges {
          node {
            name
          }
        }
      }
    }
    errors
  }
}

# QUERY VARIABLES
{
  "input": {
    "name": "Test",
    "baseAccessLevel": "GUEST",
    "permissions": []
  }
}

Next, update the query variables to include permissions. This request should be successful.

# QUERY VARIABLES
{
  "input": {
    "name": "Test",
    "baseAccessLevel": "GUEST",
    "permissions": ["READ_CODE"]
  }
}

Related to #435612 (closed)

Edited Feb 06, 2024 by Hinam Mehra

Ensure at least one permission is selected during member role creation

What does this MR do and why?

MR acceptance checklist

Screenshots or screen recordings

How to set up and validate locally

Merge request reports