create([ 'external_id' => 'platform', ]); AuditLog::query()->create([ 'tenant_id' => (int) $tenant->getKey(), 'workspace_id' => (int) $tenant->workspace_id, 'action' => 'platform.auth.login', 'status' => 'success', 'metadata' => ['attempted_email' => 'operator@tenantpilot.io'], 'recorded_at' => now(), ]); AuditLog::query()->create([ 'tenant_id' => (int) $tenant->getKey(), 'workspace_id' => (int) $tenant->workspace_id, 'action' => 'platform.auth.login', 'status' => 'failure', 'metadata' => ['attempted_email' => 'operator@tenantpilot.io'], 'recorded_at' => now(), ]); AuditLog::query()->create([ 'tenant_id' => (int) $tenant->getKey(), 'workspace_id' => (int) $tenant->workspace_id, 'action' => 'platform.break_glass.enter', 'status' => 'success', 'metadata' => ['reason' => 'Recovery'], 'recorded_at' => now(), ]); AuditLog::query()->create([ 'tenant_id' => (int) $tenant->getKey(), 'workspace_id' => (int) $tenant->workspace_id, 'action' => 'platform.unrelated.event', 'status' => 'success', 'metadata' => [], 'recorded_at' => now(), ]); $platformUser = PlatformUser::factory()->create([ 'capabilities' => [ PlatformCapabilities::ACCESS_SYSTEM_PANEL, PlatformCapabilities::CONSOLE_VIEW, ], 'is_active' => true, ]); $this->actingAs($platformUser, 'platform') ->get('/system/security/access-logs') ->assertSuccessful() ->assertSee('platform.auth.login') ->assertSee('success') ->assertSee('failure') ->assertSee('platform.break_glass.enter') ->assertDontSee('platform.unrelated.event'); });