ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
318-admin-surface-scope-shell-context-audit
TenantAtlas/apps/platform/tests/Feature/EnvironmentReview/EnvironmentReviewRbacTest.php
ahmido b159dacd36 feat: clean up legacy tenant environment context (#372) 
## Summary
- remove legacy tenant-scoped routing and middleware paths in favor of the current environment/workspace context flow
- update Filament pages and resources to use the cleaned-up admin surface and environment filter context
- add the related spec 317 artifacts and targeted tests for environment filter state and legacy context cleanup

## Testing
- not run as part of this commit/push/PR workflow

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #372
2026-05-16 18:25:36 +00:00

54 lines
2.3 KiB
PHP
Raw Permalink Blame History

<?php
declare(strict_types=1);
use App\Filament\Resources\EnvironmentReviewResource;
use App\Filament\Resources\EnvironmentReviewResource\Pages\ListEnvironmentReviews;
use App\Filament\Resources\EnvironmentReviewResource\Pages\ViewEnvironmentReview;
use App\Models\ManagedEnvironment;
use App\Models\User;
use App\Support\Auth\UiTooltips;
use Livewire\Livewire;
it('returns not found for non-members on the environment review library and detail routes', function (): void {
$targetTenant = ManagedEnvironment::factory()->create();
[$member] = createUserWithTenant(role: 'owner');
$reviewOwner = User::factory()->create();
createUserWithTenant(tenant: $targetTenant, user: $reviewOwner, role: 'owner');
$review = composeEnvironmentReviewForTest($targetTenant, $reviewOwner);
$this->actingAs($member)
->get(EnvironmentReviewResource::environmentScopedUrl('index', tenant: $targetTenant))
->assertNotFound();
$this->actingAs($member)
->get(EnvironmentReviewResource::environmentScopedUrl('view', ['record' => $review], $targetTenant))
->assertNotFound();
});
it('allows readonly members to inspect reviews but keeps create actions disabled', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$owner, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner');
[$readonly] = createUserWithTenant(tenant: $tenant, user: User::factory()->create(), role: 'readonly');
$review = composeEnvironmentReviewForTest($tenant, $owner);
$this->actingAs($readonly)
->get(EnvironmentReviewResource::environmentScopedUrl('view', ['record' => $review], $tenant))
->assertOk();
setAdminEnvironmentContext($tenant);
Livewire::actingAs($readonly)
->test(ListEnvironmentReviews::class)
->assertActionVisible('create_review')
->assertActionDisabled('create_review')
->assertActionExists('create_review', fn ($action): bool => $action->getTooltip() === UiTooltips::insufficientPermission());
Livewire::actingAs($readonly)
->test(ViewEnvironmentReview::class, ['record' => $review->getKey()])
->assertActionVisible('publish_review')
->assertActionDisabled('publish_review')
->assertActionVisible('archive_review')
->assertActionDisabled('archive_review');
});
Reference in New Issue View Git Blame Copy Permalink