15.3 Planning for Manage::Authentication and Authorization

• Board link
• Workflow Board link

---

Internal Milestone %15.3 Review & Discussion

Milestone: 2022-07-18 to 2022-08-17

Capacity

• Working days (18 July - 17 August): 24
• no Family & Friends Day this release
• OOO BE: 5 days (4 BE, Smriti counted with 50% capacity as a new joiner, one more BE joining just before the release)
• OOO FE: 4 days (1 BE)

---

• Base capacity / Engineer: 8 (I used 8 last release and it seems more realistic than 10)

Team	Weight
frontend	6
backend	26
Stretch backend	10w

Objectives & Themes

1. Security issues that would have their SLOs past due if they went past this milestone. We are done (hopefully) with past-due SLO security issues

2. Roadmap Items:

   • Custom Roles and Permissions - Depends what gets done in %15.2 - We have a placeholder in this planning issue
   • Domain Verification using domains already verified in Pages to manually claim Enterprise Users

3. typemaintenance work (includes some corrective action followup)

4. SUSImpacting items (tied to OKR-FY24Q2)

5. High priority bugs

6. Pajamas Migration

Security Issue Summary

• Original plan was to fix 2 security issues per milestone
• We have/had 4 security issues in %15.2
• If none of these roll over, we have 3 security issues in %15.4

This means we continue to have more security work per milestone than anticipated.

Themes

• Performance
• Security
• GitLab.com Enterprise Readiness
• Workspace Settings Inheritance
• Usability
• Customer Requests
• Engineering Allocation
• ‍♀️ Rapid Action
• OKR
• Deprecation/Removal
• Bug
• Keeps the lights on

15.3 Issues

https://gitlab.com/gitlab-org/gitlab/-/boards/4374016?label_name[]=group%3A%3Aauthentication%20and%20authorization&label_name[]=Deliverable&milestone_title=15.3

Known Community Contributions

keep capacity for review

1. gitlab-org/gitlab!86310 (merged) - workflowblocked , needs some backend help. Pick up if capacity allows.

Release Post Items

Status	Issue	Release Post MR
merged	API Endpoint for SAML Group Sync (gitlab-org/gitlab#290367 - closed)	link
merged	Add Admin Ability to Define a Password Complexi... (gitlab-org/gitlab#348484 - closed)	link
merged	Expose SCIM identity in Admin GUI (gitlab-org/gitlab#294608 - closed)	link
merged	twofactorverify command to support push notific... (gitlab-org/gitlab-shell#506 - closed)	link
merged	Populate default expiration and pre-select leas... (gitlab-org/gitlab#348660 - closed)	link
merged	deprecation omniauth_crowd	link
merged	deprecation omniauth_cas3	link
merged	Add links to GitLab SSH Fingerprints on SSH con... (gitlab-org/gitlab#21683 - closed)	link
waiting on feature to merge	Add new filters to private access token API (gitlab-org/gitlab#362248 - closed)	link

Other

1. Instrument usage_activity_by_stage_monthly.mana... (#17527 - closed) - This is weight 1, if anyone has extra capacity to pick up

2. 2FA via Push Notifications for Fortinet Authenticator: gitlab-org/gitlab-shell!454 (merged)

added groupauthentication and authorization [DEPRECATED] label

added devopsmanage sectiondev + 1 deleted label

added Planning Issue label

removed milestone

closed

reopened

assigned to @jarka, @dmoraBerlin, @hsutor, and @bdenkovych

cloned from #17520 (closed)

changed the description

unassigned @jarka, @dmoraBerlin, and @bdenkovych

changed title from 15.2 Planning for Manage::Authentication and Authorization to DRAFT: 15.3 Planning for Manage::Authentication and Authorization

changed the description

@jarka @sliaquat I put the lists of typemaintenance and typebug into the planning table. I'll add the feature work over the next couple days.

changed the description

changed the description

changed the description

changed the description