TenantAtlas/tests/Feature/Rbac/AdminGlobalSearchContextSafetyTest.php

<?php

declare(strict_types=1);

use App\Filament\Resources\OperationRunResource;
use App\Filament\Resources\TenantResource;
use App\Models\Tenant;
use App\Support\Workspaces\WorkspaceContext;
use Filament\Facades\Filament;
use Illuminate\Foundation\Testing\RefreshDatabase;

uses(RefreshDatabase::class);

function adminGlobalSearchTitles($results): array
{
    return collect($results)->map(fn ($result): string => (string) $result->title)->all();
}

it('does not collapse administratively discoverable tenant results because remembered tenant context is selector-ineligible', function (): void {
    $activeTenant = Tenant::factory()->active()->create(['name' => 'Search Safety Active']);
    [$user, $activeTenant] = createUserWithTenant(tenant: $activeTenant, role: 'owner');

    $onboardingTenant = Tenant::factory()->onboarding()->create([
        'workspace_id' => (int) $activeTenant->workspace_id,
        'name' => 'Search Safety Onboarding',
    ]);

    createUserWithTenant(tenant: $onboardingTenant, user: $user, role: 'owner', ensureDefaultMicrosoftProviderConnection: false);

    $this->actingAs($user);

    Filament::setCurrentPanel('admin');
    Filament::setTenant(null, true);
    Filament::bootCurrentPanel();

    session()->put(WorkspaceContext::SESSION_KEY, (int) $activeTenant->workspace_id);
    session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
        (string) $activeTenant->workspace_id => (int) $onboardingTenant->getKey(),
    ]);

    expect(adminGlobalSearchTitles(TenantResource::getGlobalSearchResults('Search Safety')))
        ->toEqualCanonicalizing([
            'Search Safety Active',
            'Search Safety Onboarding',
        ]);
});

it('keeps operation runs out of admin global search regardless of remembered context state', function (): void {
    expect(OperationRunResource::canGloballySearch())->toBeFalse();
});