Allow users to create confidential issues in private projects
Closes #14787 (closed)
What does this MR do?
Allow users to create confidential issues in private projects, and exclude access to them to project members with Guest role.
Are there points in the code the reviewer needs to double check?
The query generated by the User#authorized_projects method.
Why was this MR needed?
Community have been requesting this feature.
What are the relevant issue numbers?
https://gitlab.com/gitlab-org/gitlab-ce/issues/14787
https://gitlab.com/gitlab-org/gitlab-ce/issues/3678
Screenshots (if relevant)
Not relevant.
Todo
-
Allow users to create confidential issues in private projects -
Project members with Guestrole should not have access to confidential issues -
Apply changes in EE + Elasticsearch - https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/471