Make :update_runners_registration_token permission available to project owners instead of maintainers
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
Currently, only group owners can reset group runner registration tokens. However, project maintainers are able to reset project runner registration tokens. Given Permission alignment for OWNER and MAINTAINER r... (#374607), we're aligning the permissions between group owners and project owners.
Proposal
Make :update_runners_registration_token permission only available to project owners.
Implementation plan
- Move enable :update_runners_registration_token to
rule { can?(:owner_access) }.policy doblock. - Adapt specs.
Edited by 🤖 GitLab Bot 🤖