►
From YouTube: Design concept - Cascading repository group level rules (Exceptions, Display inheritance)
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
Hi,
my
name
is
Michael
Lee
I'm,
the
source
code
group
and
today
I'm
going
to
be
talking
about
the
next
Design
Concepts
around
handling
cascading
settings
and,
most
importantly,
around
the
context
of
merge,
request
approvals
and
essentially
Branch
rules.
So
just
to
recap
of
things
at
the
moment
we
can
Define
merge,
request
approvals
and
the
project
level
through
merge,
request
approvals
and
eventually
Branch
rules
at
the
security
policy
level.
A
But
things
may
have
changed
so
please,
let
me
know
if
I
should
change
my
thinking
here,
so
I'm
going
to
move
ahead,
assuming
just
attacking
this
at
a
group
level.
So
at
the
moment
this
is
our
group
level
rules
around
repository
settings.
What
we
can
introduce
at
the
group
level
is
Branch
rules,
so
when
I
say
Branch
rules,
this
encompasses
Branch
protections
and
merge
request
approvals.
So
all
those
different
kind
of
rules
can
be
applied
in
one
area.
A
A
Projects
in
a
group
and
which
could
be
both
a
hassle
for
the
project
maintainer,
but
also
the
approver,
who
has
to
approve
projects
that
they
really
don't
care
for
or
don't
need
to
look
into.
So
we
can
look
at
providing
an
exceptions
so
that
these
rules
apply
to
everything,
but
these
projects,
so
in
this
case
there's
100
and
there's
150
projects
an
exception
here
is
here:
I
think
we
can
start
like
this
and
add
individual
projects
as
exceptions,
and
that
gets
really
bad.
A
The
other
approach
that
we
could
look
into
is
excluding
by
subgroups,
so
there
could
be
a
team
that
doesn't
need
to
follow
the
compliance
rules
and
the
group
level
closely.
So
in
that
case
we
can
add
a
subgroup
as
an
exception.
So
then,
when
we
do
the
logic
checks
we're
going
to
include
those
subgroups.
So
in
this
scenario
we
can
see
that
oh
okay,
there's
120
of
these
projects
being
applied,
except
for
this,
so
it
gives
you
visibility
of
where
these
rules
are
applied
and
not
applied.
A
One
thing
that
you've
probably
seen
so
far
is
the
design
of
the
branch
rules
at
the
moment
in
production.
It
looks
something
like
this,
but
there's
a
movement
within
settings
right
now
to
use
the
card
layout.
So
something
like
that
could
look
like
something
like
this
and
at
the
project
level,
we
would
get
these
Branch
rules
inherited
that
we
defined
at
the
group
level.
A
So
in
this
scenario
here
these
first
two
are
rules
that
have
been
defined
at
the
project
level
and
then
this
one
over
here
is
defined
from
the
group
and
not
only
Define
it's
inherited.
So
when
we
do
the
rule
calculation
we're
looking
at
all
three
rules,
not
just
these.
These
two
that's
defined
at
the
project
level.
Currently,
and
then
you
can't
really
edit
them
here,
but
you
can
view
them
and
if
you
have
permissions
to
edit
the
group
level
rules
yeah
that
could
change
as
well.
A
A
A
Think
that's
why
I
would
opt
for
more
to
use
instead
of
project
level
settings
so
keeping
the
project
level
settings
there
unless
they
explicitly
override
them
themselves,
but
open
to
engineering
input
there.
So
the
other
part
that
we
need
to
look
into
is
the
rules
and
how
they
manifest
themselves,
especially
with
merge
request
approvals
if
there
are
matching
rules,
so
the
idea
of
moving
to
the
card
can
allow
us
to
present
information
with
some
structure.
A
So
this
is
an
example
of
how
approval
rules
with
inherited
rules
at
the
group
level,
policy
and
project
level.
You
know
if
you
have
code
owners
approvals.
If
you
click
it
open,
you
can
see
what
that
resolves
to.
This
is
something
that
you
only
see
currently
inside
of
merge
requests
but
bringing
it
into
the
world
of
settings
and
help
that
person
who's.
A
Maintaining
the
repository
understand
the
scope
of
the
changes
that
and
the
scope
of
the
approvals
that
are
in
there,
and
this
can
get
really
long
for
a
big
project,
so
maybe
rendering
this
out
might
not
be
the
right
thing,
and
perhaps
just
linking
to
the
code
owners
and
the
relevant
code
owners
files
is
the
better
approach
here
and
speaking
around
inheriting
we
can
have
the
merge
request.
Rules
in
hair,
different
group
levels
at
the
project
level
would
look
something
like
this.
A
Security
policies
could
be
injected
into
certain
Branch
names
scenarios.
So
let's
say
you
know
any
feature:
branch
that
has
any
security
violations,
and
you
know
we
would
analyze
any
policies
against
the
project
and
then
display
that
it's
to
required
after
reviewing
this
with
Camilla
she's,
actually
said
that
this
is
not
very
useful
for
people.
You
know
that's
two
required,
and
she
put
me
on
to
the
idea
that
we
already
have
summaries
for
security
policies,
and
this
is
an
example
of
one
where
we
have
like
default.
A
So
if
we
applied
that
to
the
world
of
emerging
cross
approvals,
what
that
might
look
like
over
here
is
that
we
have
our
inherited
security
policy
with
its
name
two
required,
and
if
you
click
on
show
summary,
we
will
display
the
same
summary.
That's
there
for
a
security
summary
and
as
a
maintainer
of
a
repository,
you
can
see
not
only
the
rules
that
you
have
set
up
for
the
at
the
project
level,
but
you
can
also
see
what
other
checks
may
come
in
from
both
the
group
and
the
security
policy.
A
So
I
think
this
one
view
to
manage
things
can
give
you
more
control
of
What's,
that's
being
applied.
So,
yes,
so
to
recap
things
for
merge,
request
approval
settings,
merge,
requests
approval
rules
at
the
group
level.
You
can
think
about
moving
ahead
with
that
with
the
branch
rules
approach,
but
the
most
important
thing
that
we
need
to
ensure
that
we
do
is
to
allow
for
exceptions.
A
We
would
use
these
rules
instead
of
those
settings
and,
if
there's
a
scenario
where
those
projects
don't
need
to
follow
these
group
level
rules-
and
we
can
add
them
to
the
exception
list-
and
it
will
revert
back
to
the
previous
project
level
settings
that
were
there
I
hope
this
clarifies
things
a
little
bit
and
I
look
forward
to
some
of
your
feedback.
Thank
you.