ahmido
5bcb4f6ab8
## Summary
- add a canonical queued execution legitimacy contract for actor-bound and system-authority operation runs
- enforce legitimacy before queued jobs transition runs to running across provider, inventory, restore, bulk, sync, and scheduled backup flows
- surface blocked execution outcomes consistently in Monitoring, notifications, audit data, and the tenantless operation viewer
- add Spec 149 artifacts and focused Pest coverage for legitimacy decisions, middleware ordering, blocked presentation, retry behavior, and cross-family adoption
## Testing
- vendor/bin/sail artisan test --compact tests/Unit/Operations/QueuedExecutionLegitimacyGateTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/QueuedExecutionMiddlewareOrderingTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Verification/ProviderExecutionReauthorizationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/RunInventorySyncExecutionReauthorizationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/ExecuteRestoreRunExecutionReauthorizationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/SystemRunBlockedExecutionNotificationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/BulkOperationExecutionReauthorizationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/QueuedExecutionRetryReauthorizationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/QueuedExecutionContractMatrixTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/OperationRunBlockedExecutionPresentationTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/QueuedExecutionAuditTrailTest.php
- vendor/bin/sail artisan test --compact tests/Feature/Operations/TenantlessOperationRunViewerTest.php
- vendor/bin/sail bin pint --dirty --format agent
## Manual validation
- validated queued provider execution blocking for tenant operability drift in the integrated browser on /admin/operations and /admin/operations/{run}
- validated 404 vs 403 route behavior for non-membership vs in-scope capability denial
- validated initiator-null blocked system-run behavior without creating a user terminal notification
Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #179
79 lines
1.7 KiB
PHP
79 lines
1.7 KiB
PHP
<?php
|
|
|
|
namespace App\Jobs\Middleware;
|
|
|
|
use App\Models\OperationRun;
|
|
use App\Services\OperationRunService;
|
|
use Closure;
|
|
|
|
class TrackOperationRun
|
|
{
|
|
/**
|
|
* Process the queued job.
|
|
*
|
|
* @param mixed $job
|
|
* @param callable $next
|
|
* @return mixed
|
|
*/
|
|
public function handle($job, Closure $next)
|
|
{
|
|
$run = $this->resolveRun($job);
|
|
|
|
if (! $run instanceof OperationRun) {
|
|
return $next($job);
|
|
}
|
|
|
|
/** @var OperationRunService $service */
|
|
$service = app(OperationRunService::class);
|
|
|
|
$run->refresh();
|
|
|
|
if ($run->status === 'completed') {
|
|
return null;
|
|
}
|
|
|
|
if ($run->status !== 'running') {
|
|
$service->updateRun($run, 'running');
|
|
}
|
|
|
|
try {
|
|
$response = $next($job);
|
|
|
|
if (property_exists($job, 'job') && $job->job && method_exists($job->job, 'isReleased') && $job->job->isReleased()) {
|
|
return $response;
|
|
}
|
|
|
|
$run->refresh();
|
|
|
|
if ($run->status === 'running') {
|
|
$service->updateRun($run, 'completed', 'succeeded');
|
|
}
|
|
|
|
return $response;
|
|
} catch (\Throwable $e) {
|
|
$service->failRun($run, $e);
|
|
throw $e;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* @param mixed $job
|
|
*/
|
|
private function resolveRun($job): ?OperationRun
|
|
{
|
|
if (method_exists($job, 'getOperationRun')) {
|
|
$run = $job->getOperationRun();
|
|
|
|
return $run instanceof OperationRun ? $run : null;
|
|
}
|
|
|
|
if (property_exists($job, 'operationRun')) {
|
|
$run = $job->operationRun;
|
|
|
|
return $run instanceof OperationRun ? $run : null;
|
|
}
|
|
|
|
return null;
|
|
}
|
|
}
|