Ensure auditors are granted all read permissions

mo khanrequested to merge
mokhax/542815/auditor-permissions into master

What does this MR do and why?

This code change adds new test cases to verify that auditors have the correct read-only permissions for both groups and projects in the system.

The tests currently include a list of excluded permissions to be analyzed separately. This ensures that new permissions that have the read_* prefix are also available to auditors.

References

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Edited by mo khan

Merge request reports