Include group links in access level check (!154443) · Merge requests · GitLab.org / GitLab

mo khan requested to merge mokhax/462596/highest-group-member into master May 28, 2024

What does this MR do and why?

This change attempts to reproduce the defect described in #462596 (closed) and resolve it.

Related to:

Include group links in access level check (!139582 - merged) • mo khan • 16.7

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

Before	After
Before: 500 error	After: Custom Role Assigned

How to set up and validate locally

Create the following group hierarchies
- gitlab-org/security-products/analyzers
- gitlab-org/secure/managers
Create a custom role for gitlab-org called "Developer+Vuln Admin" with the :admin_vulnerability permission and Developer as the base role.
Create a new user account named @thiagocsf
Create a new user account named @smtan
Add thiagocsf as a Developer to gitlab-org
Add thiagocsf as an Owner to gitlab-org/secure/managers
Add the gitlab-org group to the gitlab-org/secure/managers group as a Developer
Add the gitlab-org/secure/managers group to the gitlab-org/security-products/analyzers group as an Owner.
Log in as thiagocsf
Navigate to http://gdk.test:3000/gitlab-org/secure/analyzers/-/group_members and invite @smtan as a Developer+Vuln Admin role.

Edited May 29, 2024 by mo khan

Include group links in access level check

What does this MR do and why?

MR acceptance checklist

Screenshots or screen recordings

How to set up and validate locally

Merge request reports