Merge branch...

Merge branch '6577-extract-ee-specific-files-lines-for-spec-features-security-project' into 'master' Resolve "Extract EE specific files/lines for spec/features/security/project" Closes #6577 See merge request gitlab-org/gitlab-ee!12515

Merge branch...
Merge branch '6577-extract-ee-specific-files-lines-for-spec-features-security-project' into 'master' Resolve "Extract EE specific files/lines for spec/features/security/project" Closes #6577 See merge request gitlab-org/gitlab-ee!12515
974c93b4 · Rémy Coutable · 4e21c58f · 141499db · 974c93b4 · 974c93b4
Commit 974c93b4 authored May 10, 2019 by Rémy Coutable
6 changed files
--- a/ee/spec/features/security/project/internal_access_spec.rb
+++ b/ee/spec/features/security/project/internal_access_spec.rb
@@ -25,4 +25,241 @@ describe '[EE] Internal Project Access' do
    it { is_expected.to be_denied_for(:external) }
    it { is_expected.to be_denied_for(:visitor) }
  end
+
+  describe "GET /:project_path" do
+    subject { project_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tree/master" do
+    subject { project_tree_path(project, project.repository.root_ref) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commits/master" do
+    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commit/:sha" do
+    subject { project_commit_path(project, project.repository.commit) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/compare" do
+    subject { project_compare_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/members" do
+    subject { project_settings_members_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/repository" do
+    subject { project_settings_repository_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/blob" do
+    let(:commit) { project.repository.commit }
+    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/edit" do
+    subject { edit_project_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/deploy_keys" do
+    subject { project_deploy_keys_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/issues" do
+    subject { project_issues_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/snippets" do
+    subject { project_snippets_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/snippets/new" do
+    subject { new_project_snippet_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/merge_requests" do
+    subject { project_merge_requests_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/merge_requests/new" do
+    subject { project_new_merge_request_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/branches" do
+    subject { project_branches_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:branches).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tags" do
+    subject { project_tags_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:tags).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/integrations" do
+    subject { project_settings_integrations_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/pipelines" do
+    subject { project_pipelines_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/pipelines/:id" do
+    let(:pipeline) { create(:ci_pipeline, project: project) }
+    subject { project_pipeline_path(project, pipeline) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/builds" do
+    subject { project_jobs_path(project) }
+
+    context "when allowed for public and internal" do
+      before do
+        project.update(public_builds: true)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+
+    context "when disallowed for public and internal" do
+      before do
+        project.update(public_builds: false)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+  end
+
+  describe "GET /:project_path/builds/:id" do
+    let(:pipeline) { create(:ci_pipeline, project: project) }
+    let(:build) { create(:ci_build, pipeline: pipeline) }
+    subject { project_job_path(project, build.id) }
+
+    context "when allowed for public and internal" do
+      before do
+        project.update(public_builds: true)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+
+    context "when disallowed for public and internal" do
+      before do
+        project.update(public_builds: false)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+  end
+
+  describe "GET /:project_path/environments" do
+    subject { project_environments_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/:id" do
+    let(:environment) { create(:environment, project: project) }
+    subject { project_environment_path(project, environment) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/new" do
+    subject { new_project_environment_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/container_registry" do
+    let(:container_repository) { create(:container_repository) }
+
+    before do
+      stub_container_registry_tags(repository: :any, tags: ['latest'])
+      stub_container_registry_config(enabled: true)
+      project.container_repositories << container_repository
+    end
+
+    subject { project_container_registry_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  context "when license blocks changes" do
+    before do
+      allow(License).to receive(:block_changes?).and_return(true)
+    end
+
+    describe "GET /:project_path/issues/new" do
+      subject { new_project_issue_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+
+    describe "GET /:project_path/merge_requests/new" do
+      subject { project_new_merge_request_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+  end
 end
--- a/ee/spec/features/security/project/private_access_spec.rb
+++ b/ee/spec/features/security/project/private_access_spec.rb
@@ -25,4 +25,168 @@ describe '[EE] Private Project Access' do
    it { is_expected.to be_denied_for(:external) }
    it { is_expected.to be_denied_for(:visitor) }
  end
+
+  describe "GET /:project_path" do
+    subject { project_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tree/master" do
+    subject { project_tree_path(project, project.repository.root_ref) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commits/master" do
+    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commit/:sha" do
+    subject { project_commit_path(project, project.repository.commit) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/compare" do
+    subject { project_compare_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/members" do
+    subject { project_settings_members_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/blob" do
+    let(:commit) { project.repository.commit }
+    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/edit" do
+    subject { edit_project_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/deploy_keys" do
+    subject { project_deploy_keys_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/issues" do
+    subject { project_issues_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/snippets" do
+    subject { project_snippets_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/merge_requests" do
+    subject { project_merge_requests_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/branches" do
+    subject { project_branches_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:branches).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tags" do
+    subject { project_tags_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:tags).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/namespace/hooks" do
+    subject { project_settings_integrations_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments" do
+    subject { project_environments_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/:id" do
+    let(:environment) { create(:environment, project: project) }
+    subject { project_environment_path(project, environment) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/new" do
+    subject { new_project_environment_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  context "when license blocks changes" do
+    before do
+      allow(License).to receive(:block_changes?).and_return(true)
+    end
+
+    describe "GET /:project_path/issues/new" do
+      subject { new_project_issue_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+
+    describe "GET /:project_path/merge_requests/new" do
+      subject { project_new_merge_request_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+  end
+
+  describe "GET /:project_path/container_registry" do
+    let(:container_repository) { create(:container_repository) }
+
+    before do
+      stub_container_registry_tags(repository: :any, tags: ['latest'])
+      stub_container_registry_config(enabled: true)
+      project.container_repositories << container_repository
+    end
+
+    subject { project_container_registry_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
 end
--- a/ee/spec/features/security/project/public_access_spec.rb
+++ b/ee/spec/features/security/project/public_access_spec.rb
@@ -5,7 +5,7 @@ require 'spec_helper'
 describe '[EE] Public Project Access' do
  include AccessMatchers

-  set(:project) { create(:project, :public) }
+  set(:project) { create(:project, :public, :repository) }

  describe 'GET /:project_path/insights' do
    before do
@@ -25,4 +25,236 @@ describe '[EE] Public Project Access' do
    it { is_expected.to be_allowed_for(:external) }
    it { is_expected.to be_allowed_for(:visitor) }
  end
+
+  describe "GET /:project_path" do
+    subject { project_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tree/master" do
+    subject { project_tree_path(project, project.repository.root_ref) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commits/master" do
+    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/commit/:sha" do
+    subject { project_commit_path(project, project.repository.commit) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/compare" do
+    subject { project_compare_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/members" do
+    subject { project_settings_members_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/pipelines" do
+    subject { project_pipelines_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/pipelines/:id" do
+    let(:pipeline) { create(:ci_pipeline, project: project) }
+    subject { project_pipeline_path(project, pipeline) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/builds" do
+    subject { project_jobs_path(project) }
+
+    context "when allowed for public" do
+      before do
+        project.update(public_builds: true)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+
+    context "when disallowed for public" do
+      before do
+        project.update(public_builds: false)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+  end
+
+  describe "GET /:project_path/builds/:id" do
+    let(:pipeline) { create(:ci_pipeline, project: project) }
+    let(:build) { create(:ci_build, pipeline: pipeline) }
+    subject { project_job_path(project, build.id) }
+
+    context "when allowed for public" do
+      before do
+        project.update(public_builds: true)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+
+    context "when disallowed for public" do
+      before do
+        project.update(public_builds: false)
+      end
+
+      it { is_expected.to be_allowed_for(:auditor) }
+    end
+  end
+
+  describe "GET /:project_path/environments" do
+    subject { project_environments_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/:id" do
+    let(:environment) { create(:environment, project: project) }
+    subject { project_environment_path(project, environment) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/environments/new" do
+    subject { new_project_environment_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/blob" do
+    let(:commit) { project.repository.commit }
+
+    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/edit" do
+    subject { edit_project_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/deploy_keys" do
+    subject { project_deploy_keys_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/issues" do
+    subject { project_issues_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/snippets" do
+    subject { project_snippets_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/snippets/new" do
+    subject { new_project_snippet_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/merge_requests" do
+    subject { project_merge_requests_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/merge_requests/new" do
+    subject { project_new_merge_request_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  describe "GET /:project_path/branches" do
+    subject { project_branches_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:branches).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/tags" do
+    subject { project_tags_path(project) }
+
+    before do
+      # Speed increase
+      allow_any_instance_of(Project).to receive(:tags).and_return([])
+    end
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
+
+  describe "GET /:project_path/settings/integrations" do
+    subject { project_settings_integrations_path(project) }
+
+    it { is_expected.to be_denied_for(:auditor) }
+  end
+
+  context "when license blocks changes" do
+    before do
+      allow(License).to receive(:block_changes?).and_return(true)
+    end
+
+    describe "GET /:project_path/issues/new" do
+      subject { new_project_issue_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+
+    describe "GET /:project_path/merge_requests/new" do
+      subject { project_new_merge_request_path(project) }
+
+      it { is_expected.to be_denied_for(:maintainer).of(project) }
+      it { is_expected.to be_denied_for(:reporter).of(project) }
+      it { is_expected.to be_denied_for(:admin) }
+      it { is_expected.to be_denied_for(:guest).of(project) }
+      it { is_expected.to be_denied_for(:user) }
+      it { is_expected.to be_denied_for(:auditor) }
+      it { is_expected.to be_denied_for(:visitor) }
+    end
+  end
+
+  describe "GET /:project_path/container_registry" do
+    let(:container_repository) { create(:container_repository) }
+
+    before do
+      stub_container_registry_tags(repository: :any, tags: ['latest'])
+      stub_container_registry_config(enabled: true)
+      project.container_repositories << container_repository
+    end
+
+    subject { project_container_registry_index_path(project) }
+
+    it { is_expected.to be_allowed_for(:auditor) }
+  end
 end
--- a/spec/features/security/project/internal_access_spec.rb
+++ b/spec/features/security/project/internal_access_spec.rb
@@ -16,7 +16,6 @@ describe "Internal Project Access" do
    subject { project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -31,7 +30,6 @@ describe "Internal Project Access" do
    subject { project_tree_path(project, project.repository.root_ref) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -46,7 +44,6 @@ describe "Internal Project Access" do
    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -61,7 +58,6 @@ describe "Internal Project Access" do
    subject { project_commit_path(project, project.repository.commit) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -76,7 +72,6 @@ describe "Internal Project Access" do
    subject { project_compare_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -91,7 +86,6 @@ describe "Internal Project Access" do
    subject { project_settings_members_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -120,7 +114,6 @@ describe "Internal Project Access" do
    subject { project_settings_repository_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -136,7 +129,6 @@ describe "Internal Project Access" do
    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -151,7 +143,6 @@ describe "Internal Project Access" do
    subject { edit_project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -166,7 +157,6 @@ describe "Internal Project Access" do
    subject { project_deploy_keys_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -181,7 +171,6 @@ describe "Internal Project Access" do
    subject { project_issues_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -211,7 +200,6 @@ describe "Internal Project Access" do
    subject { project_snippets_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -226,7 +214,6 @@ describe "Internal Project Access" do
    subject { new_project_snippet_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -241,7 +228,6 @@ describe "Internal Project Access" do
    subject { project_merge_requests_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -256,7 +242,6 @@ describe "Internal Project Access" do
    subject { project_new_merge_request_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -276,7 +261,6 @@ describe "Internal Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -296,7 +280,6 @@ describe "Internal Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -311,7 +294,6 @@ describe "Internal Project Access" do
    subject { project_settings_integrations_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -326,7 +308,6 @@ describe "Internal Project Access" do
    subject { project_pipelines_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -342,7 +323,6 @@ describe "Internal Project Access" do
    subject { project_pipeline_path(project, pipeline) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -362,7 +342,6 @@ describe "Internal Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -379,7 +358,6 @@ describe "Internal Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -402,7 +380,6 @@ describe "Internal Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -419,7 +396,6 @@ describe "Internal Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -487,7 +463,6 @@ describe "Internal Project Access" do
    subject { project_environments_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -503,7 +478,6 @@ describe "Internal Project Access" do
    subject { project_environment_path(project, environment) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -533,7 +507,6 @@ describe "Internal Project Access" do
    subject { new_project_environment_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -544,36 +517,6 @@ describe "Internal Project Access" do
    it { is_expected.to be_denied_for(:visitor) }
  end

-  context "when license blocks changes" do
-    before do
-      allow(License).to receive(:block_changes?).and_return(true)
-    end
-
-    describe "GET /:project_path/issues/new" do
-      subject { new_project_issue_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-
-    describe "GET /:project_path/merge_requests/new" do
-      subject { project_new_merge_request_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-  end
-
  describe "GET /:project_path/container_registry" do
    let(:container_repository) { create(:container_repository) }

@@ -586,7 +529,6 @@ describe "Internal Project Access" do
    subject { project_container_registry_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }

--- a/spec/features/security/project/private_access_spec.rb
+++ b/spec/features/security/project/private_access_spec.rb
@@ -16,7 +16,6 @@ describe "Private Project Access" do
    subject { project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -31,7 +30,6 @@ describe "Private Project Access" do
    subject { project_tree_path(project, project.repository.root_ref) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -46,7 +44,6 @@ describe "Private Project Access" do
    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -61,7 +58,6 @@ describe "Private Project Access" do
    subject { project_commit_path(project, project.repository.commit) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -76,7 +72,6 @@ describe "Private Project Access" do
    subject { project_compare_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -91,7 +86,6 @@ describe "Private Project Access" do
    subject { project_settings_members_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -132,10 +126,9 @@ describe "Private Project Access" do

  describe "GET /:project_path/blob" do
    let(:commit) { project.repository.commit }
-    subject { project_blob_path(project, File.join(commit.id, '.gitignore'))}
+    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -150,7 +143,6 @@ describe "Private Project Access" do
    subject { edit_project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -165,7 +157,6 @@ describe "Private Project Access" do
    subject { project_deploy_keys_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -180,7 +171,6 @@ describe "Private Project Access" do
    subject { project_issues_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -210,7 +200,6 @@ describe "Private Project Access" do
    subject { project_snippets_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -225,7 +214,6 @@ describe "Private Project Access" do
    subject { project_merge_requests_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -245,7 +233,6 @@ describe "Private Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -265,7 +252,6 @@ describe "Private Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -280,7 +266,6 @@ describe "Private Project Access" do
    subject { project_settings_integrations_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -295,7 +280,6 @@ describe "Private Project Access" do
    subject { project_pipelines_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -323,7 +307,6 @@ describe "Private Project Access" do
    subject { project_pipeline_path(project, pipeline) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -350,7 +333,6 @@ describe "Private Project Access" do
    subject { project_jobs_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -379,7 +361,6 @@ describe "Private Project Access" do
    subject { project_job_path(project, build.id) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -443,7 +424,6 @@ describe "Private Project Access" do
    subject { project_environments_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -459,7 +439,6 @@ describe "Private Project Access" do
    subject { project_environment_path(project, environment) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -489,7 +468,6 @@ describe "Private Project Access" do
    subject { new_project_environment_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -542,36 +520,6 @@ describe "Private Project Access" do
    it { is_expected.to be_denied_for(:visitor) }
  end

-  context "when license blocks changes" do
-    before do
-      allow(License).to receive(:block_changes?).and_return(true)
-    end
-
-    describe "GET /:project_path/issues/new" do
-      subject { new_project_issue_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-
-    describe "GET /:project_path/merge_requests/new" do
-      subject { project_new_merge_request_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-  end
-
  describe "GET /:project_path/container_registry" do
    let(:container_repository) { create(:container_repository) }

@@ -584,7 +532,6 @@ describe "Private Project Access" do
    subject { project_container_registry_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }

--- a/spec/features/security/project/public_access_spec.rb
+++ b/spec/features/security/project/public_access_spec.rb
@@ -16,7 +16,6 @@ describe "Public Project Access" do
    subject { project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -31,7 +30,6 @@ describe "Public Project Access" do
    subject { project_tree_path(project, project.repository.root_ref) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -46,7 +44,6 @@ describe "Public Project Access" do
    subject { project_commits_path(project, project.repository.root_ref, limit: 1) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -61,7 +58,6 @@ describe "Public Project Access" do
    subject { project_commit_path(project, project.repository.commit) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -76,7 +72,6 @@ describe "Public Project Access" do
    subject { project_compare_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -91,7 +86,6 @@ describe "Public Project Access" do
    subject { project_settings_members_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -134,7 +128,6 @@ describe "Public Project Access" do
    subject { project_pipelines_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -150,7 +143,6 @@ describe "Public Project Access" do
    subject { project_pipeline_path(project, pipeline) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -170,7 +162,6 @@ describe "Public Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -187,7 +178,6 @@ describe "Public Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -210,7 +200,6 @@ describe "Public Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -227,7 +216,6 @@ describe "Public Project Access" do
      end

      it { is_expected.to be_allowed_for(:admin) }
-      it { is_expected.to be_allowed_for(:auditor) }
      it { is_expected.to be_allowed_for(:owner).of(project) }
      it { is_expected.to be_allowed_for(:maintainer).of(project) }
      it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -295,7 +283,6 @@ describe "Public Project Access" do
    subject { project_environments_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -311,7 +298,6 @@ describe "Public Project Access" do
    subject { project_environment_path(project, environment) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -341,7 +327,6 @@ describe "Public Project Access" do
    subject { new_project_environment_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -358,7 +343,6 @@ describe "Public Project Access" do
    subject { project_blob_path(project, File.join(commit.id, '.gitignore')) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -372,7 +356,6 @@ describe "Public Project Access" do
    subject { edit_project_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -387,7 +370,6 @@ describe "Public Project Access" do
    subject { project_deploy_keys_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -402,7 +384,6 @@ describe "Public Project Access" do
    subject { project_issues_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -432,7 +413,6 @@ describe "Public Project Access" do
    subject { project_snippets_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -447,7 +427,6 @@ describe "Public Project Access" do
    subject { new_project_snippet_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -462,7 +441,6 @@ describe "Public Project Access" do
    subject { project_merge_requests_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -477,7 +455,6 @@ describe "Public Project Access" do
    subject { project_new_merge_request_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -497,7 +474,6 @@ describe "Public Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -517,7 +493,6 @@ describe "Public Project Access" do
    end

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }
@@ -532,7 +507,6 @@ describe "Public Project Access" do
    subject { project_settings_integrations_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_denied_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_denied_for(:developer).of(project) }
@@ -543,36 +517,6 @@ describe "Public Project Access" do
    it { is_expected.to be_denied_for(:visitor) }
  end

-  context "when license blocks changes" do
-    before do
-      allow(License).to receive(:block_changes?).and_return(true)
-    end
-
-    describe "GET /:project_path/issues/new" do
-      subject { new_project_issue_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-
-    describe "GET /:project_path/merge_requests/new" do
-      subject { project_new_merge_request_path(project) }
-
-      it { is_expected.to be_denied_for(:maintainer).of(project) }
-      it { is_expected.to be_denied_for(:reporter).of(project) }
-      it { is_expected.to be_denied_for(:admin) }
-      it { is_expected.to be_denied_for(:guest).of(project) }
-      it { is_expected.to be_denied_for(:user) }
-      it { is_expected.to be_denied_for(:auditor) }
-      it { is_expected.to be_denied_for(:visitor) }
-    end
-  end
-
  describe "GET /:project_path/container_registry" do
    let(:container_repository) { create(:container_repository) }

@@ -585,7 +529,6 @@ describe "Public Project Access" do
    subject { project_container_registry_index_path(project) }

    it { is_expected.to be_allowed_for(:admin) }
-    it { is_expected.to be_allowed_for(:auditor) }
    it { is_expected.to be_allowed_for(:owner).of(project) }
    it { is_expected.to be_allowed_for(:maintainer).of(project) }
    it { is_expected.to be_allowed_for(:developer).of(project) }