Fix group authorization when searching for epics (!95731) · Merge requests · GitLab.org / GitLab

Merged Felipe Cardozo requested to merge issue_371067 into master 2 years ago

What does this MR do and why?

On the MR above I forgot to take into account projects that are visible to the user to get authorized groups, in other words, if a group has a project all group members can read ancestor groups.

More details at #371067 (closed)

This changes one of the queries of the union introduced by !93601 (merged), it gets a bit worse performance-wise, but we need to keep the same behavior from before at least until we remove this authorization inconsistency.

Query diff: https://www.diffchecker.com/GDYpyfUt
Old query and plans: https://console.postgres.ai/gitlab/gitlab-production-tunnel-pg12/sessions/11603/commands/41232
New query and plans: https://console.postgres.ai/gitlab/gitlab-production-tunnel-pg12/sessions/11603/commands/41234

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited 2 years ago by Felipe Cardozo

Merged results pipeline #627850621 passed

Merged results pipeline passed for f9f29eed 2 years ago

Test coverage 83.48% (11.82%) from 2 jobs

Pipeline #627974036 passed

Pipeline passed for 54678818 on master 2 years ago

Test coverage 71.69% (11.82%) from 2 jobs

Activity

Please register or sign in to reply

Fix group authorization when searching for epics

What does this MR do and why?

MR acceptance checklist

Merge request reports

Merged by Steve Abrams 2 years ago (Aug 31, 2022 5:41pm UTC) 2 years ago

Activity