Any authenticated user can view permissions associated with a custom role
### Release notes Historically, if you wanted to view permissions of a role, you would reference the GitLab documentation to view the permission table for default roles. Given that custom roles are dynamic, this is not possible. A new view is established to show the attached permissions of the custom role that has been assigned to the user, so there is no need to troubleshoot what you have access to. ### Problem to solve Group Owners or Instance Admins are only able to manage Custom Roles and these admins are only able to view the permissions of a custom role. Ideally, any user can see what permissions they have so they can understand what they have access or don't have access to without asking the Group Owner. ### User experience goal 1. Any member of a group or project can see the permissions associated with the custom role. ### Proposal * Iteration 1 * Under Manage \> Members under Group or Project, click on "Custom Role" badge of user. View base role + permissions of that custom role. * (Not Complete)Iteration 2 - Factor in inheritance down the group/project tree. (Pending Research) * Under Manage \> Members under Group or Project, click on "Custom Role" badge of user. View base role + permissions of that custom role. * The permission list consist of an aggregate or union of permissions that have been inherited from groups+projects throughout the tree. Show source of where the custom role has applied in the hierarchy. ### Permissions and Security Any authenticated user (guest+) can see the permissions of the custom role assigned to team members of a group or project they belong to. This should reflect similar to how users view default roles. ### Designs https://gitlab.com/gitlab-org/gitlab/-/issues/439823+ ### Backend ### Frontend * https://gitlab.com/gitlab-org/gitlab/-/issues/456273+ * https://gitlab.com/gitlab-org/gitlab/-/issues/456280+ * https://gitlab.com/gitlab-org/gitlab/-/issues/456282+ ### Documentation
epic