Add latest changes from gitlab-org/gitlab@14-3-stable-eev14.3.0-rc42

author: GitLab Bot <gitlab-bot@gitlab.com> 2021-09-20 16:18:24 +0300
committer: GitLab Bot <gitlab-bot@gitlab.com> 2021-09-20 16:18:24 +0300
commit: 0653e08efd039a5905f3fa4f6e9cef9f5d2f799c (patch)
tree: 4dcc884cf6d81db44adae4aa99f8ec1233a41f55 /app/services/issuable_base_service.rb
parent: 744144d28e3e7fddc117924fef88de5d9674fe4c (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/app/services/issuable_base_service.rb b/app/services/issuable_base_service.rb
index 0984238517e..59e521853de 100644
--- a/app/services/issuable_base_service.rb
+++ b/app/services/issuable_base_service.rb
@@ -51,9 +51,12 @@ class IssuableBaseService < ::BaseProjectService
       params.delete(:canonical_issue_id)
       params.delete(:project)
       params.delete(:discussion_locked)
-      params.delete(:confidential)
     end
 
+    # confidential attribute is a special type of metadata and needs to be allowed to be set
+    # by non-members on issues in public projects so that security issues can be reported as confidential.
+    params.delete(:confidential) unless can?(current_user, :set_confidentiality, issuable)
+
     filter_assignees(issuable)
     filter_milestone
     filter_labels
author	GitLab Bot <gitlab-bot@gitlab.com>	2021-09-20 16:18:24 +0300
committer	GitLab Bot <gitlab-bot@gitlab.com>	2021-09-20 16:18:24 +0300
commit	0653e08efd039a5905f3fa4f6e9cef9f5d2f799c (patch)
tree	4dcc884cf6d81db44adae4aa99f8ec1233a41f55 /app/services/issuable_base_service.rb
parent	744144d28e3e7fddc117924fef88de5d9674fe4c (diff)