TenantAtlas/app/Providers/AppServiceProvider.php

<?php

namespace App\Providers;

use App\Models\BackupSchedule;
use App\Models\EntraGroup;
use App\Models\EntraGroupSyncRun;
use App\Models\Finding;
use App\Models\OperationRun;
use App\Models\RestoreRun;
use App\Models\Tenant;
use App\Models\User;
use App\Models\UserTenantPreference;
use App\Observers\RestoreRunObserver;
use App\Policies\BackupSchedulePolicy;
use App\Policies\EntraGroupPolicy;
use App\Policies\EntraGroupSyncRunPolicy;
use App\Policies\FindingPolicy;
use App\Policies\OperationRunPolicy;
use App\Services\Graph\GraphClientInterface;
use App\Services\Graph\MicrosoftGraphClient;
use App\Services\Graph\NullGraphClient;
use App\Services\Intune\AppProtectionPolicyNormalizer;
use App\Services\Intune\CompliancePolicyNormalizer;
use App\Services\Intune\DeviceConfigurationPolicyNormalizer;
use App\Services\Intune\EnrollmentAutopilotPolicyNormalizer;
use App\Services\Intune\GroupPolicyConfigurationNormalizer;
use App\Services\Intune\ManagedDeviceAppConfigurationNormalizer;
use App\Services\Intune\ScriptsPolicyNormalizer;
use App\Services\Intune\SettingsCatalogPolicyNormalizer;
use App\Services\Intune\TermsAndConditionsNormalizer;
use App\Services\Intune\WindowsDriverUpdateProfileNormalizer;
use App\Services\Intune\WindowsFeatureUpdateProfileNormalizer;
use App\Services\Intune\WindowsQualityUpdateProfileNormalizer;
use App\Services\Intune\WindowsUpdateRingNormalizer;
use Filament\Events\TenantSet;
use Illuminate\Cache\RateLimiting\Limit;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Event;
use Illuminate\Support\Facades\Gate;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\Facades\Schema;
use Illuminate\Support\ServiceProvider;

class AppServiceProvider extends ServiceProvider
{
    /**
     * Register any application services.
     */
    public function register(): void
    {
        $this->app->singleton(GraphClientInterface::class, function ($app) {
            $config = $app['config']->get('graph');

            if (! empty($config['enabled'])) {
                return $app->make(MicrosoftGraphClient::class);
            }

            return $app->make(NullGraphClient::class);
        });

        $this->app->tag(
            [
                AppProtectionPolicyNormalizer::class,
                CompliancePolicyNormalizer::class,
                DeviceConfigurationPolicyNormalizer::class,
                EnrollmentAutopilotPolicyNormalizer::class,
                GroupPolicyConfigurationNormalizer::class,
                ManagedDeviceAppConfigurationNormalizer::class,
                ScriptsPolicyNormalizer::class,
                SettingsCatalogPolicyNormalizer::class,
                TermsAndConditionsNormalizer::class,
                WindowsDriverUpdateProfileNormalizer::class,
                WindowsFeatureUpdateProfileNormalizer::class,
                WindowsQualityUpdateProfileNormalizer::class,
                WindowsUpdateRingNormalizer::class,
            ],
            'policy-type-normalizers'
        );
    }

    /**
     * Bootstrap any application services.
     */
    public function boot(): void
    {
        RateLimiter::for('entra-callback', function (Request $request) {
            return Limit::perMinute(20)->by((string) $request->ip());
        });

        RestoreRun::observe(RestoreRunObserver::class);

        Event::listen(TenantSet::class, function (TenantSet $event): void {
            static $hasPreferencesTable;

            $hasPreferencesTable ??= Schema::hasTable('user_tenant_preferences');

            if (! $hasPreferencesTable) {
                return;
            }

            $tenant = $event->getTenant();
            $user = $event->getUser();

            if (! $tenant instanceof Tenant) {
                return;
            }

            if (! $user instanceof User) {
                return;
            }

            UserTenantPreference::query()->updateOrCreate(
                [
                    'user_id' => $user->getKey(),
                    'tenant_id' => $tenant->getKey(),
                ],
                [
                    'last_used_at' => now(),
                ],
            );
        });

        Gate::policy(BackupSchedule::class, BackupSchedulePolicy::class);
        Gate::policy(Finding::class, FindingPolicy::class);
        Gate::policy(EntraGroupSyncRun::class, EntraGroupSyncRunPolicy::class);
        Gate::policy(EntraGroup::class, EntraGroupPolicy::class);
        Gate::policy(OperationRun::class, OperationRunPolicy::class);
    }
}