Check access to a branch when user triggers manual action

What does this MR do?

This merge requests adds an additional check when user triggers a manual action that belongs to a pipeline for given branch.

For now on access to that branch is necessary to trigger manual actions associated with pipeline for that branch.

Screenshots

Does this MR meet the acceptance criteria?

• Changelog entry added
• Documentation created/updated
• API support added
• Tests added for this feature

What are the relevant issue numbers?

Closes #20261 (closed)

app/controllers/projects/application_controller.rb

@@ -55,13 +55,15 @@ class Projects::ApplicationController < ApplicationController
       (current_user && current_user.already_forked?(project))
   end
-  def authorize_project!(action)
-    return access_denied! unless can?(current_user, action, project)
+  def authorize_action!(action)
+    unless can?(current_user, action, project)
+      return access_denied!
+    end
   end
   def method_missing(method_sym, *arguments, &block)
     if method_sym.to_s =~ /\Aauthorize_(.*)!\z/
-      authorize_project!($1.to_sym)
+      authorize_action!($1.to_sym)
     else
       super
     end