Draft: Ensure last active group owner is retained by creator service (!93288) · Merge requests · GitLab.org / GitLab

Drew Blessing requested to merge dblessing_group_last_owner_fix into master Jul 26, 2022

What does this MR do and why?

Describe in detail what your merge request does and why.

In cases where authorization is skipped when adding members (i.e. SAML Group Sync), the last owner condition that is normally checked within permission policies is skipped. This can lead to a group's last active owner being removed or having access level decreased. This leaves groups ownerless. This change ensures the last owner check occurs anytime even when skipping authorization.

Screenshots or screen recordings

These are strongly recommended to assist reviewers and reduce the time to merge your change.

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Admin message

Draft: Ensure last active group owner is retained by creator service

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports