Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
李少辉-开发者
gitlab-foss
提交
d556eca0
G
gitlab-foss
项目概览
李少辉-开发者
/
gitlab-foss
通知
15
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
G
gitlab-foss
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
d556eca0
编写于
9月 10, 2018
作者:
J
Jarka Košanová
提交者:
Achilleas Pipinellis
9月 10, 2018
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Document permissions for different entities
上级
816e846a
变更
2
隐藏空白更改
内联
并排
Showing
2 changed file
with
64 addition
and
0 deletion
+64
-0
doc/development/README.md
doc/development/README.md
+1
-0
doc/development/permissions.md
doc/development/permissions.md
+63
-0
未找到文件。
doc/development/README.md
浏览文件 @
d556eca0
...
...
@@ -47,6 +47,7 @@ description: 'Learn how to contribute to GitLab.'
-
[
How to dump production data to staging
](
db_dump.md
)
-
[
Working with the GitHub importer
](
github_importer.md
)
-
[
Working with Merge Request diffs
](
diffs.md
)
-
[
Permissions
](
permissions.md
)
-
[
Prometheus metrics
](
prometheus_metrics.md
)
## Performance guides
...
...
doc/development/permissions.md
0 → 100644
浏览文件 @
d556eca0
# GitLab permissions guide
There are multiple types of permissions across GitLab, and when implementing
anything that deals with permissions, all of them should be considered.
## Groups and Projects
### General permissions
Groups and projects can have the following visibility levels:
-
public (20) - an entity is visible to everyone
-
internal (10) - an entity is visible to logged in users
-
private (0) - an entity is visible only to the approved members of the entity
The visibility level of a group can be changed only if all subgroups and
subprojects have the same or lower visibility level. (e.g., a group can be set
to internal only if all subgroups and projects are internal or private).
Visibility levels can be found in the
`Gitlab::VisibilityLevel`
module.
### Feature specific permissions
Additionally, the following project features can have different visibility levels:
-
Issues
-
Repository
-
Merge Request
-
Pipelines
-
Container Registry
-
Git Large File Storage
-
Wiki
-
Snippets
These features can be set to "Everyone with Access" or "Only Project Members".
They make sense only for public or internal projects because private projects
can be accessed only by project members by default.
### Members
Users can be members of multiple groups and projects. The following access
levels are available (defined in the
`Gitlab::Access`
module):
-
Guest
-
Reporter
-
Developer
-
Maintainer
-
Owner
If a user is the member of both a project and the project parent group, the
higher permission is taken into account for the project.
If a user is the member of a project, but not the parent group (or groups), they
can still view the groups and their entities (like epics).
Project membership (where the group membership is already taken into account)
is stored in the
`project_authorizations`
table.
### Confidential issues
Confidential issues can be accessed only by project members who are at least
reporters (they can't be accessed by guests). Additionally they can be accessed
by their authors and assignees.
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录