gitlab-org--gitlab-foss/doc/api/protected_branches.md

# Protected branches API

>**Note:** This feature was introduced in GitLab 9.5

**Valid access levels**

The access levels are defined in the `ProtectedRefAccess.allowed_access_levels` method. Currently, these levels are recognized:

```plaintext
0  => No access
30 => Developer access
40 => Maintainer access
60 => Admin access
```

## List protected branches

Gets a list of protected branches from a project.

```plaintext
GET /projects/:id/protected_branches
```

| Attribute | Type | Required | Description |
| --------- | ---- | -------- | ----------- |
| `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user |
| `search` | string | no | Name or part of the name of protected branches to be searched for |

```shell
curl --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches'
```

Example response:

```json
[
  {
    "id": 1,
    "name": "master",
    "push_access_levels": [
      {
        "access_level": 40,
        "access_level_description": "Maintainers"
      }
    ],
    "merge_access_levels": [
      {
        "access_level": 40,
        "access_level_description": "Maintainers"
      }
    ],
    "code_owner_approval_required": "false"
  },
  ...
]
```

Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see
the `user_id` and `group_id` parameters:

Example response:

```json
[
  {
    "id": 1,
    "name": "master",
    "push_access_levels": [
      {
        "access_level": 40,
        "user_id": null,
        "group_id": null,
        "access_level_description": "Maintainers"
      }
    ],
    "merge_access_levels": [
      {
        "access_level": null,
        "user_id": null,
        "group_id": 1234,
        "access_level_description": "Example Merge Group"
      }
    ],
    "code_owner_approval_required": "false"
  },
  ...
]
```

## Get a single protected branch or wildcard protected branch

Gets a single protected branch or wildcard protected branch.

```plaintext
GET /projects/:id/protected_branches/:name
```

| Attribute | Type | Required | Description |
| --------- | ---- | -------- | ----------- |
| `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user |
| `name` | string | yes | The name of the branch or wildcard |

```shell
curl --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/master'
```

Example response:

```json
{
  "id": 1,
  "name": "master",
  "push_access_levels": [
    {
      "access_level": 40,
      "access_level_description": "Maintainers"
    }
  ],
  "merge_access_levels": [
    {
      "access_level": 40,
      "access_level_description": "Maintainers"
    }
  ],
  "code_owner_approval_required": "false"
}
```

Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see
the `user_id` and `group_id` parameters:

Example response:

```json
{
  "id": 1,
  "name": "master",
  "push_access_levels": [
    {
      "access_level": 40,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Maintainers"
    }
  ],
  "merge_access_levels": [
    {
      "access_level": null,
      "user_id": null,
      "group_id": 1234,
      "access_level_description": "Example Merge Group"
    }
  ],
  "code_owner_approval_required": "false"
}
```

## Protect repository branches

Protects a single repository branch or several project repository
branches using a wildcard protected branch.

```plaintext
POST /projects/:id/protected_branches
```

```shell
curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches?name=*-stable&push_access_level=30&merge_access_level=30&unprotect_access_level=40'
```

| Attribute | Type | Required | Description |
| --------- | ---- | -------- | ----------- |
| `id`                            | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user |
| `name`                          | string         | yes | The name of the branch or wildcard |
| `push_access_level`             | string         | no  | Access levels allowed to push (defaults: `40`, maintainer access level) |
| `merge_access_level`            | string         | no  | Access levels allowed to merge (defaults: `40`, maintainer access level) |
| `unprotect_access_level`        | string         | no  | Access levels allowed to unprotect (defaults: `40`, maintainer access level) |
| `allowed_to_push`               | array          | no  | **(STARTER)** Array of access levels allowed to push, with each described by a hash |
| `allowed_to_merge`              | array          | no  | **(STARTER)** Array of access levels allowed to merge, with each described by a hash |
| `allowed_to_unprotect`          | array          | no  | **(STARTER)** Array of access levels allowed to unprotect, with each described by a hash |
| `code_owner_approval_required`  | boolean        | no  | **(PREMIUM)** Prevent pushes to this branch if it matches an item in the [`CODEOWNERS` file](../user/project/code_owners.md). (defaults: false) |

Example response:

```json
{
  "id": 1,
  "name": "*-stable",
  "push_access_levels": [
    {
      "access_level": 30,
      "access_level_description": "Developers + Maintainers"
    }
  ],
  "merge_access_levels": [
    {
      "access_level": 30,
      "access_level_description": "Developers + Maintainers"
    }
  ],
  "unprotect_access_levels": [
    {
      "access_level": 40,
      "access_level_description": "Maintainers"
    }
  ],
  "code_owner_approval_required": "false"
}
```

Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see
the `user_id` and `group_id` parameters:

Example response:

```json
{
  "id": 1,
  "name": "*-stable",
  "push_access_levels": [
    {
      "access_level": 30,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Developers + Maintainers"
    }
  ],
  "merge_access_levels": [
    {
      "access_level": 30,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Developers + Maintainers"
    }
  ],
  "unprotect_access_levels": [
    {
      "access_level": 40,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Maintainers"
    }
  ],
  "code_owner_approval_required": "false"
}
```

### Example with user / group level access **(STARTER)**

Elements in the `allowed_to_push` / `allowed_to_merge` / `allowed_to_unprotect` array should take the
form `{user_id: integer}`, `{group_id: integer}` or `{access_level: integer}`. Each user must have access to the project and each group must [have this project shared](../user/project/members/share_project_with_groups.md). These access levels allow [more granular control over protected branch access](../user/project/protected_branches.md#restricting-push-and-merge-access-to-certain-users-starter) and were [added to the API in](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/3516) in GitLab 10.3 EE.

```shell
curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches?name=*-stable&allowed_to_push%5B%5D%5Buser_id%5D=1'
```

Example response:

```json
{
  "id": 1,
  "name": "*-stable",
  "push_access_levels": [
    {
      "access_level": null,
      "user_id": 1,
      "group_id": null,
      "access_level_description": "Administrator"
    }
  ],
  "merge_access_levels": [
    {
      "access_level": 40,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Maintainers"
    }
  ],
  "unprotect_access_levels": [
    {
      "access_level": 40,
      "user_id": null,
      "group_id": null,
      "access_level_description": "Maintainers"
    }
  ],
  "code_owner_approval_required": "false"
}
```

## Unprotect repository branches

Unprotects the given protected branch or wildcard protected branch.

```plaintext
DELETE /projects/:id/protected_branches/:name
```

```shell
curl --request DELETE --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/*-stable'
```

| Attribute | Type | Required | Description |
| --------- | ---- | -------- | ----------- |
| `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user |
| `name` | string | yes | The name of the branch |

## Require code owner approvals for a single branch

Update the "code owner approval required" option for the given protected branch protected branch.

```plaintext
PATCH /projects/:id/protected_branches/:name
```

```shell
curl --request PATCH --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/feature-branch'
```

| Attribute | Type | Required | Description |
| --------- | ---- | -------- | ----------- |
| `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user |
| `name` | string | yes | The name of the branch |
| `code_owner_approval_required`  | boolean        | no  | **(PREMIUM)** Prevent pushes to this branch if it matches an item in the [`CODEOWNERS` file](../user/project/code_owners.md). (defaults: false)|
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`# Protected branches API`

			`>Note: This feature was introduced in GitLab 9.5`

			`Valid access levels`

Remove EE-specific code from ProtectedRefAccess 2018-08-28 12:30:38 -04:00			The access levels are defined in the `ProtectedRefAccess.allowed_access_levels` method. Currently, these levels are recognized:
Refactor of API landing page - Breaks up into more sections. - Also minor fixes to pages within sections. 2019-02-15 04:39:23 -05:00
Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`0 => No access`
			`30 => Developer access`
Doc update 2018-05-22 06:16:06 -04:00			`40 => Maintainer access`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`60 => Admin access`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			```

			`## List protected branches`

			`Gets a list of protected branches from a project.`

Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`GET /projects/:id/protected_branches`
			```

			`\| Attribute \| Type \| Required \| Description \|`
			`\| --------- \| ---- \| -------- \| ----------- \|`
			\| `id` \| integer/string \| yes \| The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user \|
Add latest changes from gitlab-org/gitlab@master 2020-02-10 10:08:54 -05:00			\| `search` \| string \| no \| Name or part of the name of protected branches to be searched for \|
Extending API for protected branches 2017-08-02 06:16:17 -04:00
Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Replace look-alike token with '<your_access_token>' Replace all '9koXpg98eAheJpvBs5tK' occurrences with '<your_access_token>' in API docs. 2018-12-27 04:03:08 -05:00			`curl --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches'`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			```

			`Example response:`

			```json
			`[`
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`"name": "master",`
			`"push_access_levels": [`
			`{`
			`"access_level": 40,`
Doc update 2018-05-22 06:16:06 -04:00			`"access_level_description": "Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": 40,`
Doc update 2018-05-22 06:16:06 -04:00			`"access_level_description": "Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`},`
			`...`
			`]`
			```

Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see`
			the `user_id` and `group_id` parameters:

			`Example response:`

			```json
			`[`
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"name": "master",`
			`"push_access_levels": [`
			`{`
			`"access_level": 40,`
			`"user_id": null,`
			`"group_id": null,`
			`"access_level_description": "Maintainers"`
			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": null,`
			`"user_id": null,`
			`"group_id": 1234,`
			`"access_level_description": "Example Merge Group"`
			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`},`
			`...`
			`]`
			```

Extending API for protected branches 2017-08-02 06:16:17 -04:00			`## Get a single protected branch or wildcard protected branch`

			`Gets a single protected branch or wildcard protected branch.`

Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`GET /projects/:id/protected_branches/:name`
			```

			`\| Attribute \| Type \| Required \| Description \|`
			`\| --------- \| ---- \| -------- \| ----------- \|`
			\| `id` \| integer/string \| yes \| The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user \|
			\| `name` \| string \| yes \| The name of the branch or wildcard \|

Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Replace look-alike token with '<your_access_token>' Replace all '9koXpg98eAheJpvBs5tK' occurrences with '<your_access_token>' in API docs. 2018-12-27 04:03:08 -05:00			`curl --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/master'`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			```

			`Example response:`

			```json
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`"name": "master",`
			`"push_access_levels": [`
			`{`
			`"access_level": 40,`
Doc update 2018-05-22 06:16:06 -04:00			`"access_level_description": "Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": 40,`
Doc update 2018-05-22 06:16:06 -04:00			`"access_level_description": "Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
			```

Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see`
			the `user_id` and `group_id` parameters:

			`Example response:`

			```json
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"name": "master",`
			`"push_access_levels": [`
			`{`
			`"access_level": 40,`
			`"user_id": null,`
			`"group_id": null,`
			`"access_level_description": "Maintainers"`
			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": null,`
			`"user_id": null,`
			`"group_id": 1234,`
			`"access_level_description": "Example Merge Group"`
			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`}`
			```

Extending API for protected branches 2017-08-02 06:16:17 -04:00			`## Protect repository branches`

			`Protects a single repository branch or several project repository`
			`branches using a wildcard protected branch.`

Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`POST /projects/:id/protected_branches`
			```

Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches?name=*-stable&push_access_level=30&merge_access_level=30&unprotect_access_level=40'`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			```

			`\| Attribute \| Type \| Required \| Description \|`
			`\| --------- \| ---- \| -------- \| ----------- \|`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			\| `id` \| integer/string \| yes \| The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user \|
			\| `name` \| string \| yes \| The name of the branch or wildcard \|
			\| `push_access_level` \| string \| no \| Access levels allowed to push (defaults: `40`, maintainer access level) \|
			\| `merge_access_level` \| string \| no \| Access levels allowed to merge (defaults: `40`, maintainer access level) \|
			\| `unprotect_access_level` \| string \| no \| Access levels allowed to unprotect (defaults: `40`, maintainer access level) \|
			\| `allowed_to_push` \| array \| no \| (STARTER) Array of access levels allowed to push, with each described by a hash \|
			\| `allowed_to_merge` \| array \| no \| (STARTER) Array of access levels allowed to merge, with each described by a hash \|
			\| `allowed_to_unprotect` \| array \| no \| (STARTER) Array of access levels allowed to unprotect, with each described by a hash \|
			\| `code_owner_approval_required` \| boolean \| no \| (PREMIUM) Prevent pushes to this branch if it matches an item in the [`CODEOWNERS` file](../user/project/code_owners.md). (defaults: false) \|
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00
			`Example response:`

			```json
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"name": "*-stable",`
			`"push_access_levels": [`
			`{`
			`"access_level": 30,`
			`"access_level_description": "Developers + Maintainers"`
			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": 30,`
			`"access_level_description": "Developers + Maintainers"`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`}`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`],`
			`"unprotect_access_levels": [`
			`{`
			`"access_level": 40,`
			`"access_level_description": "Maintainers"`
			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`}`
			```

			`Users on GitLab [Starter, Bronze, or higher](https://about.gitlab.com/pricing/) will also see`
			the `user_id` and `group_id` parameters:
Extending API for protected branches 2017-08-02 06:16:17 -04:00
			`Example response:`

			```json
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`"name": "*-stable",`
			`"push_access_levels": [`
			`{`
			`"access_level": 30,`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"user_id": null,`
			`"group_id": null,`
Rename “Developers + Masters” 2018-05-22 07:54:50 -04:00			`"access_level_description": "Developers + Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
			`],`
			`"merge_access_levels": [`
			`{`
			`"access_level": 30,`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"user_id": null,`
			`"group_id": null,`
Rename “Developers + Masters” 2018-05-22 07:54:50 -04:00			`"access_level_description": "Developers + Maintainers"`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`}`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`],`
			`"unprotect_access_levels": [`
			`{`
			`"access_level": 40,`
			`"user_id": null,`
			`"group_id": null,`
			`"access_level_description": "Maintainers"`
			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`}`
			```

Changing badges to use parentheses not brackets Previously, we used brackets to denote the tier badges, but this made Kramdown, the docs site Markdown renderer, show many warnings when building the site. This is now fixed by using parentheses instead of square brackets. This was caused by [PREMIUM] looking like a link to Kramdown, which couldn't find a URL there. See: - https://gitlab.com/gitlab-com/gitlab-docs/merge_requests/484 - https://gitlab.com/gitlab-org/gitlab-ce/issues/63800 2019-07-08 04:50:38 -04:00			`### Example with user / group level access (STARTER)`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00
			Elements in the `allowed_to_push` / `allowed_to_merge` / `allowed_to_unprotect` array should take the
Add latest changes from gitlab-org/gitlab@master 2020-02-06 10:09:11 -05:00			form `{user_id: integer}`, `{group_id: integer}` or `{access_level: integer}`. Each user must have access to the project and each group must [have this project shared](../user/project/members/share_project_with_groups.md). These access levels allow [more granular control over protected branch access](../user/project/protected_branches.md#restricting-push-and-merge-access-to-certain-users-starter) and were [added to the API in](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/3516) in GitLab 10.3 EE.
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00
Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`curl --request POST --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches?name=*-stable&allowed_to_push%5B%5D%5Buser_id%5D=1'`
			```

			`Example response:`

			```json
			`{`
Add latest changes from gitlab-org/gitlab@master 2020-01-20 10:09:18 -05:00			`"id": 1,`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`"name": "*-stable",`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`"push_access_levels": [`
			`{`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`"access_level": null,`
			`"user_id": 1,`
			`"group_id": null,`
			`"access_level_description": "Administrator"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`}`
			`],`
			`"merge_access_levels": [`
			`{`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`"access_level": 40,`
			`"user_id": null,`
			`"group_id": null,`
			`"access_level_description": "Maintainers"`
Update api docs to finish aligning EE and CE docs Squashing a few commits and continuing work on merging the 12 api docs that have not been ported to CE yet. 2019-07-03 05:32:54 -04:00			`}`
			`],`
			`"unprotect_access_levels": [`
			`{`
Update docs to pass new markdownlint Deletes extra spaces and line, makes lists consistent, and fixes links. 2019-08-22 04:50:31 -04:00			`"access_level": 40,`
			`"user_id": null,`
			`"group_id": null,`
			`"access_level_description": "Maintainers"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
Add latest changes from gitlab-org/gitlab@master 2019-09-19 02:06:09 -04:00			`],`
			`"code_owner_approval_required": "false"`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`}`
			```

			`## Unprotect repository branches`

			`Unprotects the given protected branch or wildcard protected branch.`

Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Extending API for protected branches 2017-08-02 06:16:17 -04:00			`DELETE /projects/:id/protected_branches/:name`
			```

Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Replace look-alike token with '<your_access_token>' Replace all '9koXpg98eAheJpvBs5tK' occurrences with '<your_access_token>' in API docs. 2018-12-27 04:03:08 -05:00			`curl --request DELETE --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/*-stable'`
Extending API for protected branches 2017-08-02 06:16:17 -04:00			```

			`\| Attribute \| Type \| Required \| Description \|`
			`\| --------- \| ---- \| -------- \| ----------- \|`
			\| `id` \| integer/string \| yes \| The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user \|
			\| `name` \| string \| yes \| The name of the branch \|
Add latest changes from gitlab-org/gitlab@master 2019-10-08 20:06:06 -04:00
			`## Require code owner approvals for a single branch`

			`Update the "code owner approval required" option for the given protected branch protected branch.`

Add latest changes from gitlab-org/gitlab@master 2020-02-27 19:09:08 -05:00			```plaintext
Add latest changes from gitlab-org/gitlab@master 2019-10-08 20:06:06 -04:00			`PATCH /projects/:id/protected_branches/:name`
			```

Add latest changes from gitlab-org/gitlab@master 2020-01-30 10:09:15 -05:00			```shell
Add latest changes from gitlab-org/gitlab@master 2019-10-08 20:06:06 -04:00			`curl --request PATCH --header "PRIVATE-TOKEN: <your_access_token>" 'https://gitlab.example.com/api/v4/projects/5/protected_branches/feature-branch'`
			```

			`\| Attribute \| Type \| Required \| Description \|`
			`\| --------- \| ---- \| -------- \| ----------- \|`
			\| `id` \| integer/string \| yes \| The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) owned by the authenticated user \|
			\| `name` \| string \| yes \| The name of the branch \|
			\| `code_owner_approval_required` \| boolean \| no \| (PREMIUM) Prevent pushes to this branch if it matches an item in the [`CODEOWNERS` file](../user/project/code_owners.md). (defaults: false)\|