Ability scopes and infra availability checks for Advanced VM using ES
What does this MR do and why?
Adds ability scopes for Advanced Vulnerability Management using ES features for the MVC for the frontend so that it can make the GraphQL API calls with the right argument.
To be used by #532703 (closed) and #532716 (closed)
Screenshots or screen recordings
Project Vulnerability report:
| Before | After |
|---|---|
 |
 |
Group Vulnerability report:
| Before | After |
|---|---|
 |
 |
How to set up and validate locally
-
To test this we require a Vulnerability Management feature and ee development license.
-
Once these requirements are available, can import this project https://gitlab.com/bala.kumar/verify-419092 into local and run the pipeline on the main branch and this would generate vulnerabilities for the vulnerabilities report page.
-
Ensure that local setup is running SASS mode, steps here, this feature is available only in SASS mode with ElasticSearch for now.
- Enable FF in
Feature.enable(: advanced_vulnerability_management)in Rails console. - Visit the vulnerability reports page of a project and in developer console on browser run
gon.abilities.accessAdvancedVulnerabilityManagementand it should returntrue. - Visit the vulnerability reports page of a project and in developer console on browser run
gon.abilities.accessAdvancedVulnerabilityManagementand it should returntrue.
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Related to #536248 (closed)