Add release tooltip for guest users
What does this MR do?
The visibility of releases in private projects is restricted for guest users:
Guest users of private projects are allowed to view the Releases page but are not allowed to view details about the Git repository (in particular, tag names). Because of this, release titles are replaced with a generic title like "Release-1234" for Guest users to avoid leaking tag name information.
-- Source: User Docs > Projects > Releases
This decision makes sense for security reasons, but the generic titles can be confusing for users. So in this MR, the 'private' icon and a corresponding tooltip are added to the release title for guest users of private projects.
/cc @bufferoverflow
Screenshots
Release page as guest user:
| before | after |
|---|---|
 |
 |
| (no tooltip) |  |
Release page as 'normal' user:
| before & after (no change) |
|---|
 |
Does this MR meet the acceptance criteria?
Conformity
-
Changelog entry - [-] Documentation not required
-
Code review guidelines -
Merge request performance guidelines -
Style guides - [-] Database guides no change
- [-] Separation of EE specific content
Availability and Testing
-
Review and add/update tests for this feature/bug. Consider all test levels. See the Test Planning Process. -
Tested in all supported browsers - [-] Informed Infrastructure department of a default or new setting change, if applicable per definition of done
Security
If this MR contains changes to processing or storing of credentials or tokens, authorization and authentication methods and other items described in the security review guidelines:
- [-] Label as security and @ mention
@gitlab-com/gl-security/appsec - [-] The MR includes necessary changes to maintain consistency between UI, API, email, or other methods
- [-] Security reports checked/validated by a reviewer from the AppSec team