Skip to content

Add read compliance dashboard as a custom ability

Hinam Mehrarequested to merge
465324-add-read-compliance-framework-custom-ability into master

What does this MR do and why?

  • Adds read_compliance_dashboard as a custom ability which can be configured to create a member role.
  • Disables the New Framework button in the front-end if only read compliance policy is enabled and admin compliance policy isn't.

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

Group-level Project-level
Screenshot_2024-12-09_at_11.22.25_pm Screenshot_2024-12-09_at_11.20.35_pm

How to set up and validate locally

  1. Ensure that SaaS mode is turned off and that you have an Ultimate license.
  2. Log-in as an admin, and create a custom role from /admin/application_settings/roles_and_permissions/new with Base role = Guest & Read compliance dashboard permission enabled.
  3. Navigate to any group that you are an owner of. Go to Manage > Members and invite any user with that member role you just created.
  4. Log-in as that user you just invited and navigate to the group.
  5. You should see Secure > Compliance center. You should also be able to access the compliance center for any sub-groups or projects under that group.

Related to #465324 (closed)

Edited by Hinam Mehra

Merge request reports