app/controllers/projects/security/configuration_controller.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23

# frozen_string_literal: true

module Projects
  module Security
    class ConfigurationController < Projects::ApplicationController
      feature_category :static_application_security_testing

      def show
        return render_404 unless feature_enabled?

        render_403 unless can?(current_user, :read_security_configuration, project)
      end

      private

      def feature_enabled?
        ::Feature.enabled?(:secure_security_and_compliance_configuration_page_on_ce, @project, default_enabled: :yaml)
      end
    end
  end
end

Projects::Security::ConfigurationController.prepend_if_ee('EE::Projects::Security::ConfigurationController')