[go: up one dir, main page]
Skip to content

Add delete image and tag on group

Adie (she/her)requested to merge
553945-enable-delete-image-and-tag-on-group into master

What does this MR do and why?

We have the container_image_tag and container_image abilities enabled in ProjectPolicy. And then disabled in ContainerRegistry::TagPolicy and ContainerRepositoryPolicy if the specific tag or container repository is protected by tag rules.

In #553945 (closed), there is another use case where the container repositories and tags are called from a group context. In this MR, we add and enable the container_image_tag and container_image abilities in GroupPolicy and it will be disabled by the container repository and tag policies if conditions are not met.

How to set up and validate locally

The query in app/graphql/queries/container_registry/get_container_repositories.query.graphql can be ran via via GraphQL explore.

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #553945 (closed)

Merge request reports