diff options
| author | GitLab Bot <gitlab-bot@gitlab.com> | 2022-01-10 20:36:52 +0000 |
|---|---|---|
| committer | GitLab Bot <gitlab-bot@gitlab.com> | 2022-01-10 20:36:52 +0000 |
| commit | d14d74e8db11bc73e25c5c6784509c0368f33285 (patch) | |
| tree | 00b87aa16536e672bde19b8aba035ea934724407 /lib | |
| parent | a21262e29870ac6190dfbbb77c8e527f4c076235 (diff) | |
| download | gitlab-ce-d14d74e8db11bc73e25c5c6784509c0368f33285.tar.gz | |
Add latest changes from gitlab-org/security/gitlab@14-5-stable-ee
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/api/projects.rb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/api/projects.rb b/lib/api/projects.rb index 9f0077d23d8..1e77257401e 100644 --- a/lib/api/projects.rb +++ b/lib/api/projects.rb @@ -613,6 +613,7 @@ module API source_project = Project.find_by_id(params[:project_id]) not_found!('Project') unless source_project && can?(current_user, :read_project, source_project) + forbidden!('Project') unless source_project && can?(current_user, :admin_project_member, source_project) result = ::Members::ImportProjectTeamService.new(current_user, params).execute |