<!--IssueSummary start--> <details> <summary> Everyone can contribute. [Help move this issue forward](https://handbook.gitlab.com/handbook/marketing/developer-relations/contributor-success/community-contributors-workflows/#contributor-links) while earning points, leveling up and collecting rewards. </summary> - [Close this issue](https://contributors.gitlab.com/manage-issue?action=close&projectId=278964&issueIid=356265) </details> <!--IssueSummary end--> !82498 introduced `import_url` field for projects API. This is **sanitized** version of URL which does not expose any credentials Right now this field is available only if user **created that import** and **still has rights to admin project**. So, for example in case of user losing access to the project, no one will be able to see that field We need to evaluate if such strict permission is ok in terms of business logic or should be relaxed