Web UI allows files to be deleted on protected branches

timothy.stone · May 7, 2024, 6:38pm

Pick any project on the (master|main) branch that has been protected (“Protected Branches”).

Select a file.
Press Delete.
Enter commit message.
Press Delete File

Seems… bad. Can’t find the documentation on this. Is GitLab performing a merge behind the UI? I’m an Owner in this example.

I have been told occurs when placed in the Next release test population. Regression?

iwalker · May 7, 2024, 7:19pm

Yes, because by default maintainers and owners are allowed to do that on protected branches. You can go into the project settings, and then under Repository → Protected Branches you can then change it from “Maintainers”, to “No One”.

Topic		Replies	Views
Deleting Branches except protected branches How to Use GitLab	0	682	April 16, 2021
Resolving merge conflicts How to Use GitLab	0	972	May 6, 2016
Security-on-protected-branches not functioning as expected How to Use GitLab	0	304	February 27, 2019
Unprotecting a protected branch seems to take a long time How to Use GitLab api	0	62	October 8, 2024
Remove branch via WebIDE How to Use GitLab web-ui	2	28031	May 18, 2020

Web UI allows files to be deleted on protected branches

Related topics