ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
200498fa8e
TenantAtlas/app/Support
History
ahmido 200498fa8e feat(113): Platform Ops Runbooks — UX Polish (Filament-native, system theme, live scope) (#137) 
## Summary

Implements and polishes the Platform Ops Runbooks feature (Spec 113) — the operator control plane for safe backfills and data repair from `/system`.

## Changes

### UX Polish (Phase 7 — US4)
- **Filament-native components**: Rewrote `runbooks.blade.php` and `view-run.blade.php` using `<x-filament::section>` instead of raw Tailwind div cards. Cards now render correctly with Filament's built-in borders, shadows and dark mode.
- **System panel theme**: Created `resources/css/filament/system/theme.css` and registered `->viteTheme()` on `SystemPanelProvider`. The system panel previously had no theme CSS registered — Tailwind utility classes weren't compiled for its views, causing the warning icon SVG to expand to full container size.
- **Live scope selector**: Added `->live()` to the scope `Radio` field so "Single tenant" immediately reveals the tenant search dropdown without requiring a Submit first.

### Core Feature (Phases 1–6, previously shipped)
- `/system/ops/runbooks` — runbook catalog, preflight, run with typed confirmation + reason
- `/system/ops/runs` — run history table with status/outcome badges
- `/system/ops/runs/{id}` — run detail view with summary counts, failures, collapsible context
- `FindingsLifecycleBackfillRunbookService` — preflight + execution logic
- AllowedTenantUniverse — scopes tenant picker to non-platform tenants only
- RBAC: `platform.ops.view`, `platform.runbooks.view`, `platform.runbooks.run`, `platform.runbooks.findings.lifecycle_backfill`
- Rate-limited `/system/login` (10/min per IP+username)
- Distinct session cookie for `/system` isolation

## Test Coverage
- 16 tests / 141 assertions — all passing
- Covers: page access, RBAC, preflight, run dispatch, scope selector, run detail, run list

## Checklist
- [x] Filament v5 / Livewire v4 compliant
- [x] Provider registered in `bootstrap/providers.php`
- [x] Destructive actions require confirmation (`->requiresConfirmation()`)
- [x] System panel theme registered (`viteTheme`)
- [x] Pint clean
- [x] Tests pass

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #137
2026-02-27 01:11:25 +00:00
..
Alerts feat(alerts): test message + last test status + deep links (#122) 2026-02-18 23:12:38 +00:00
Audit fix: consolidate tenant creation + harden selection flows (#131) 2026-02-22 19:54:24 +00:00
Auth feat(113): Platform Ops Runbooks — UX Polish (Filament-native, system theme, live scope) (#137) 2026-02-27 01:11:25 +00:00
Badges feat(111): findings workflow + SLA settings (#135) 2026-02-25 01:48:01 +00:00
Baselines Baseline governance UX polish + view Infolist (#123) 2026-02-19 23:56:09 +00:00
Concerns feat(alerts): test message + last test status + deep links (#122) 2026-02-18 23:12:38 +00:00
Enums feat/042-inventory-dependencies-graph (#50) 2026-01-10 12:50:08 +00:00
Inventory feat(spec-087): remove legacy runs (#106) 2026-02-12 12:40:51 +00:00
Links feat(spec-080): workspace-managed tenant administration migration (#97) 2026-02-07 19:45:13 +00:00
Middleware feat: Spec 105 — Entra Admin Roles Evidence + Findings (#128) 2026-02-22 02:37:36 +00:00
OperateHub Spec 103: IA semantics (scope vs filter vs targeting) + UI polish (#126) 2026-02-21 00:28:15 +00:00
Operations feat(alerts): Monitoring cluster + v1 resources (spec 099) (#121) 2026-02-18 15:20:43 +00:00
OpsUx feat(110): Ops-UX enterprise start/dedup standard (repo-wide) (#134) 2026-02-24 09:30:15 +00:00
Providers feat: provider access hardening (RBAC write gate) (#132) 2026-02-23 00:49:37 +00:00
Rbac Spec 094: Assignment ops observability hardening (#113) 2026-02-15 14:08:14 +00:00
Settings feat(111): findings workflow + SLA settings (#135) 2026-02-25 01:48:01 +00:00
System feat(113): Platform Ops Runbooks — UX Polish (Filament-native, system theme, live scope) (#137) 2026-02-27 01:11:25 +00:00
Ui/ActionSurface Spec 092: Legacy Purge (runs/routes/UI/test shims) (#110) 2026-02-14 18:43:56 +00:00
Verification fix(onboarding): preserve workspace scope and consent flow (#117) 2026-02-15 22:27:55 +00:00
WorkspaceIsolation SCOPE-001: DB-level workspace isolation via workspace_id (#112) 2026-02-14 22:34:02 +00:00
Workspaces fix: consolidate tenant creation + harden selection flows (#131) 2026-02-22 19:54:24 +00:00
OperationCatalog.php feat(111): findings workflow + SLA settings (#135) 2026-02-25 01:48:01 +00:00
OperationRunLinks.php Spec 092: Legacy Purge (runs/routes/UI/test shims) (#110) 2026-02-14 18:43:56 +00:00
OperationRunOutcome.php Spec 081: Provider connection cutover (#98) 2026-02-08 11:28:51 +00:00
OperationRunStatus.php 054-unify-runs-suitewide (#63) 2026-01-17 22:25:00 +00:00
OperationRunType.php Fix Review Pack generation UX + notifications (#133) 2026-02-23 19:42:52 +00:00
RbacReason.php Intune RBAC: graceful unsupported-account handling, health-check fixes, tests and docs updates 2025-12-13 01:25:06 +01:00
RestoreRunIdempotency.php 056-remove-legacy-bulkops (#65) 2026-01-19 23:27:52 +00:00
RestoreRunStatus.php feat/011-restore-run-wizard (#17) 2025-12-31 19:14:59 +00:00
ReviewPackStatus.php Fix Review Pack generation UX + notifications (#133) 2026-02-23 19:42:52 +00:00
TenantRole.php 065-tenant-rbac-v1 (#79) 2026-01-28 21:09:47 +00:00