searcher: enforce sub-repo perms at api level (!27012) · Merge requests · Administrator / sourcegraph

Administrator requested to merge 503/searcher-filematch-filter into main Nov 03, 2021

Created by: bobheadxi

A crude implementation of #26647 (closed) by implementing enforcement as high up as possible, right before matches get sent to the client. I believe this covers indexed/unindexed/etc search that goes over repository file contents.

This requires adding searcher to the allowlist of dbconn importers.

searcher: enforce sub-repo perms at api level

Merge request reports