ahmido
05a604cfb6
Implements Spec 076 enterprise remediation UX for tenant required permissions. Highlights - Above-the-fold overview (impact + counts) with missing-first experience - Feature-based grouping, filters/search, copy-to-clipboard for missing app/delegated permissions - Tenant-scoped deny-as-not-found semantics; DB-only viewing - Centralized badge semantics (no ad-hoc status mapping) Testing - Feature tests for default filters, grouping, copy output, and non-member 404 behavior. Integration - Adds deep links from verification checks to the Required permissions page. Co-authored-by: Ahmed Darrazi <ahmeddarrazi@MacBookPro.fritz.box> Reviewed-on: #92
43 lines
1.1 KiB
PHP
43 lines
1.1 KiB
PHP
<?php
|
|
|
|
namespace App\Support\Links;
|
|
|
|
use App\Filament\Resources\TenantResource;
|
|
use App\Models\Tenant;
|
|
|
|
final class RequiredPermissionsLinks
|
|
{
|
|
private const ADMIN_CONSENT_GUIDE_URL = 'https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/grant-admin-consent';
|
|
|
|
/**
|
|
* @param array<string, mixed> $filters
|
|
*/
|
|
public static function requiredPermissions(Tenant $tenant, array $filters = []): string
|
|
{
|
|
$base = sprintf('/admin/t/%s/required-permissions', urlencode((string) $tenant->external_id));
|
|
|
|
if ($filters === []) {
|
|
return $base;
|
|
}
|
|
|
|
$query = http_build_query($filters);
|
|
|
|
return $query !== '' ? "{$base}?{$query}" : $base;
|
|
}
|
|
|
|
public static function adminConsentUrl(Tenant $tenant): ?string
|
|
{
|
|
return TenantResource::adminConsentUrl($tenant);
|
|
}
|
|
|
|
public static function adminConsentGuideUrl(): string
|
|
{
|
|
return self::ADMIN_CONSENT_GUIDE_URL;
|
|
}
|
|
|
|
public static function adminConsentPrimaryUrl(Tenant $tenant): string
|
|
{
|
|
return self::adminConsentUrl($tenant) ?? self::adminConsentGuideUrl();
|
|
}
|
|
}
|