Guard new security dashboard behind elastic search ability

Lorenz van Herwaardenrequested to merge
guard-new-security-dashboard-es-ability into master

What does this MR do and why?

Related #557726 (closed)

Guard new security dashboard behind elastic search ability

This checks for the accessAdvancedVulnerabilityManagement ability and if it's not enabled, still serves the old project- and group- level dashboards.

References

Screenshots or screen recordings

How to set up and validate locally

  1. Enable feature flags: http://gdk.test:3000/rails/features/project_security_dashboard_new and http://gdk.test:3000/rails/features/group_security_dashboard_new
  2. With Elasticsearch disabled, go to project and/or group level security dashboard and validate that even with the feature flags enabled, the old dashboard is shown. I you have Elasticsearch already enabled, disable by going to Admin > Settings > Search > Advanced search, and uncheck Search with Elasticsearch enabled and Elasticsearch indexing and click Save. You might need to refresh a couple times or gdk restart to see the changes on the old dashboard.
  3. Enable Elasticsearch, check this guide: https://gitlab.com/gitlab-org/gitlab/-/blob/d1ccb0ffd62b7a4b998a11fc099f78e48a0b738f/doc/development/sec/vulnerability_management/local_setup.md
  4. Validate that project and group level security dashboard show the new UI.

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Edited by Lorenz van Herwaarden

Merge request reports