ahmido
2752515da5
Some checks failed
Main Confidence / confidence (push) Failing after 54s
## Summary - harden baseline capture truth, compare readiness, and monitoring explanations around latest inventory eligibility, blocked prerequisites, and zero-subject outcomes - improve onboarding verification and bootstrap recovery handling, including admin-consent callback invalidation and queued execution legitimacy/report behavior - align workspace findings/workspace overview signals and refresh the related spec, roadmap, and spec-candidate artifacts ## Validation - `cd apps/platform && ./vendor/bin/sail bin pint --dirty --format agent` - `cd apps/platform && ./vendor/bin/sail artisan test --compact tests/Feature/BaselineDriftEngine/BaselineCaptureAuditEventsTest.php tests/Feature/BaselineDriftEngine/BaselineSnapshotNoTenantIdentifiersTest.php tests/Feature/BaselineDriftEngine/CaptureBaselineContentTest.php tests/Feature/BaselineDriftEngine/CaptureBaselineFullContentOnDemandTest.php tests/Feature/BaselineDriftEngine/CaptureBaselineMetaFallbackTest.php tests/Feature/Baselines/BaselineCaptureTest.php tests/Feature/Baselines/BaselineCompareFindingsTest.php tests/Feature/Baselines/BaselineSnapshotBackfillTest.php tests/Feature/Filament/BaselineCaptureResultExplanationSurfaceTest.php tests/Feature/Filament/BaselineCompareLandingStartSurfaceTest.php tests/Feature/Filament/BaselineProfileCaptureStartSurfaceTest.php tests/Feature/Filament/OperationRunBaselineTruthSurfaceTest.php tests/Feature/Monitoring/AuditCoverageGovernanceTest.php tests/Feature/Monitoring/GovernanceOperationRunSummariesTest.php tests/Feature/Notifications/OperationRunNotificationTest.php tests/Feature/Authorization/OperatorExplanationSurfaceAuthorizationTest.php` - `cd apps/platform && ./vendor/bin/sail artisan test --compact tests/Feature/AdminConsentCallbackTest.php tests/Feature/Filament/WorkspaceOverviewDbOnlyTest.php tests/Feature/Guards/Spec194GovernanceActionSemanticsGuardTest.php tests/Feature/ManagedTenantOnboardingWizardTest.php tests/Feature/Onboarding/OnboardingVerificationTest.php tests/Feature/Operations/QueuedExecutionAuditTrailTest.php tests/Unit/Operations/QueuedExecutionLegitimacyGateTest.php` ## Notes - browser validation was not re-run in this pass Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de> Reviewed-on: #271
76 lines
3.4 KiB
PHP
76 lines
3.4 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
use App\Support\Ui\GovernanceActions\GovernanceActionCatalog;
|
|
|
|
it('keeps the spec 194 family inventory, surface bindings, and documented deviations explicit', function (): void {
|
|
$families = GovernanceActionCatalog::families();
|
|
$rules = GovernanceActionCatalog::rules();
|
|
$bindings = GovernanceActionCatalog::surfaceBindings();
|
|
|
|
expect(array_keys($families))->toEqualCanonicalizing([
|
|
'exception_decision',
|
|
'review_lifecycle',
|
|
'evidence_lifecycle',
|
|
'run_triage',
|
|
'finding_lifecycle',
|
|
'tenant_lifecycle',
|
|
])
|
|
->and(array_keys($rules))->toHaveCount(17)
|
|
->and($bindings)->not->toBeEmpty();
|
|
|
|
foreach ($bindings as $binding) {
|
|
$matchingRule = collect($rules)->first(
|
|
fn ($rule): bool => $rule->familyKey === $binding['familyKey']
|
|
&& in_array($binding['surfaceKey'], $rule->surfaceKeys, true),
|
|
);
|
|
|
|
expect($matchingRule)->not->toBeNull();
|
|
}
|
|
|
|
expect(GovernanceActionCatalog::documentedDeviations())->not->toBeEmpty();
|
|
});
|
|
|
|
it('keeps evidence and review surface bindings aligned to their canonical action names', function (): void {
|
|
$bindingsBySurface = collect(GovernanceActionCatalog::surfaceBindings())->groupBy('surfaceKey');
|
|
|
|
expect($bindingsBySurface->get('view_evidence_snapshot', collect())->pluck('actionName')->all())
|
|
->toEqualCanonicalizing(['refresh_evidence', 'expire_snapshot'])
|
|
->and($bindingsBySurface->get('view_tenant_review', collect())->pluck('actionName')->all())
|
|
->toContain('refresh_review', 'publish_review', 'archive_review');
|
|
});
|
|
|
|
it('keeps triage mutations out of the tenantless run viewer while the system run page owns them', function (): void {
|
|
$tenantlessViewer = file_get_contents(base_path('app/Filament/Pages/Operations/TenantlessOperationRunViewer.php'));
|
|
$systemViewRun = file_get_contents(base_path('app/Filament/System/Pages/Ops/ViewRun.php'));
|
|
|
|
expect($tenantlessViewer)->toBeString()
|
|
->and($systemViewRun)->toBeString()
|
|
->and($tenantlessViewer)->not->toContain("Action::make('retry')")
|
|
->and($tenantlessViewer)->not->toContain("Action::make('cancel')")
|
|
->and($tenantlessViewer)->not->toContain("Action::make('mark_investigated')")
|
|
->and($systemViewRun)->toContain("Action::make('retry')")
|
|
->and($systemViewRun)->toContain("Action::make('cancel')")
|
|
->and($systemViewRun)->toContain("Action::make('mark_investigated')");
|
|
});
|
|
|
|
it('keeps the governed surface files inside the catalog binding inventory', function (): void {
|
|
$boundFiles = collect(GovernanceActionCatalog::surfaceBindings())
|
|
->pluck('pageClass')
|
|
->unique()
|
|
->values()
|
|
->all();
|
|
|
|
expect($boundFiles)->toContain(
|
|
'App\\Filament\\Pages\\Monitoring\\FindingExceptionsQueue',
|
|
'App\\Filament\\Resources\\FindingExceptionResource\\Pages\\ViewFindingException',
|
|
'App\\Filament\\Resources\\EvidenceSnapshotResource\\Pages\\ViewEvidenceSnapshot',
|
|
'App\\Filament\\Resources\\TenantReviewResource\\Pages\\ViewTenantReview',
|
|
'App\\Filament\\System\\Pages\\Ops\\ViewRun',
|
|
'App\\Filament\\Resources\\FindingResource\\Pages\\ViewFinding',
|
|
'App\\Filament\\Resources\\TenantResource\\Pages\\ViewTenant',
|
|
'App\\Filament\\Resources\\TenantResource\\Pages\\EditTenant',
|
|
);
|
|
});
|