Allow admin to disable SSH or HTTPS clone

I thought we had an existing issue, but I cannot find it. If it's found, we can close and reference.

I'm hearing from more customers that policy/compliance sometimes requires either disabling HTTPS or SSH cloning. It's possible to manually block SSH access for the git user in the SSH server configuration, but this still displays the clone for users. For HTTPS, users would have to use an external Nginx/Apache and add a configuration to deny the clone URLs. It's hard and probably imperfect. Again, users still see HTTPS clone URL in the UI.

Can we add a global option to disable one or the other? The solution would remove that clone option from the UI and ideally would also interface with workhorse/shell to deny those clone actions.

One such example is in https://gitlab.zendesk.com/agent/tickets/16920 and is quite a large customer. The larger enterprises is where we'll likely see these policies.

cc/ @JobV @jacobvosmaer @dzaporozhets @DouweM Thoughts?

Sounds reasonable. Scheduling for 8.9.

Milestone changed to 8.9

Wonderful, just evaluating Gitlab for use in our company and bumped into this one during configuration while looking how to disable HTTPS clones hehe.

Thanks, we also need this feature in our company.

Will this be an EE-only feature, or can we expect it in CE as well?

Moved to gitlab-org/gitlab-ce#18601