Enable GitLab AD-controlled permissions for protected branches

Proposal

We enforce segregation of duties by allowing only a few non-developers to merge code to master. These persons are all members of an AD group, and we would like to simply assign merge permissions to master based on this AD-group rather than having to manually update this whenever someone joins/leaves the AD group.