Merge branch 'ff-remove-omniauth_login_minimal_scopes' into 'master'

Remove omniauth_login_minimal_scopes feature flag See merge request gitlab-org/gitlab!83453

Merge branch 'ff-remove-omniauth_login_minimal_scopes' into 'master'
Remove omniauth_login_minimal_scopes feature flag See merge request gitlab-org/gitlab!83453
618486a3 · Mayra Cabrera · 317867d6 · bb7641aa · 618486a3 · 317867d6
Commit 618486a3 authored Mar 23, 2022 by Mayra Cabrera
3 changed files
--- a/app/controllers/oauth/authorizations_controller.rb
+++ b/app/controllers/oauth/authorizations_controller.rb
@@ -37,9 +37,6 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController

  # limit scopes when signing in with GitLab
  def downgrade_scopes!
-    return unless Feature.enabled?(:omniauth_login_minimal_scopes, current_user,
-                                   default_enabled: :yaml)
-
    auth_type = params.delete('gl_auth_type')
    return unless auth_type == 'login'


--- a/config/feature_flags/development/omniauth_login_minimal_scopes.yml
+++ b/config/feature_flags/development/omniauth_login_minimal_scopes.yml
---
-name: omniauth_login_minimal_scopes
-introduced_by_url: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/78556
-rollout_issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/351331
-milestone: '14.8'
-type: development
-group: 'group::authentication and authorization'
-default_enabled: false
--- a/doc/integration/gitlab.md
+++ b/doc/integration/gitlab.md
@@ -117,10 +117,9 @@ signed in.

 ## Reduce access privileges on sign in

-> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/337663) in GitLab 14.8 [with a flag](../administration/feature_flags.md) named `omniauth_login_minimal_scopes`. Disabled by default.
-
-FLAG:
-On self-managed GitLab, by default this feature is not available. To make it available, ask an administrator to [enable the feature flag](../administration/feature_flags.md) named `omniauth_login_minimal_scopes`. On GitLab.com, this feature is not available.
+> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/337663) in GitLab 14.8 [with a flag](../administration/feature_flags.md) named `omniauth_login_minimal_scopes`. Disabled by default.
+> - [Enabled on GitLab.com](https://gitlab.com/gitlab-org/gitlab/-/issues/351331) in GitLab 14.9.
+> - [Feature flag `omniauth_login_minimal_scopes`](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/83453) removed in GitLab 14.10

 If you use a GitLab instance for authentication, you can reduce access rights when an OAuth application is used for sign in.