Add access tokens bypass options to a police drawer
What does this MR do and why?
This merge request adds support for displaying access token exceptions in security policy configurations. The changes create a new component that shows which access tokens can bypass security policies, displaying either the token names (when available) or just their IDs in an expandable accordion format. The feature integrates this token exception display alongside the existing branch pattern exceptions, and updates both group and project security policy pages to pass access token data to the frontend components.
References
Screenshots or screen recordings
| Description | UI |
|---|---|
| Access tokens in policy drawer | tokens.mov |
How to set up and validate locally
- Secure -> Policies
- New merge request approval policy
- Open Advanced settings
- Click add exception button
Select tokens- Save policy and go back to policy list
- Open drawer
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Related to #558885 (closed)
Edited by Artur Fedorov