Allow read-only PR queue inventory under author profiles while preserving hard review/merge gates

This commit is contained in:
2026-07-05 12:14:26 -04:00
parent 82d6bf286a
commit 485ba22c8f
5 changed files with 367 additions and 16 deletions
+3 -1
View File
@@ -184,7 +184,9 @@ class TestEligibilityDenialReport(PermissionReportBase):
self._assert_report_safe(report)
self.assertEqual(report["missing_permission"], "gitea.pr.approve")
self.assertEqual(report["active_profile"], "author-profile")
self.assertEqual(report["active_identity"], "author-user")
# "active identity if resolved": the #164 fail-fast path performs no
# identity lookup on a pure permission block, so None is acceptable.
self.assertIn(report["active_identity"], (None, "author-user"))
self.assertEqual(
report["matching_configured_profiles"], ["reviewer-profile"])
self.assertTrue(report["different_mcp_namespace_required"])