ahmido
69d4ecbbd2
Implements the bounded Spec 421 Entra comparable/renderable pack on the existing Coverage v2 operator surface. - Adds typed Conditional Access normalization, comparison, and render summaries - Keeps Security Defaults and other optional Entra types deferred until evidence-backed - Preserves the existing Coverage v2 surface with claim-guard and redaction hardening - Includes focused unit, feature, and browser coverage already recorded in the implementation report Validation is documented in `specs/421-entra-core-comparable-renderable-pack/implementation-report.md`. Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de> Reviewed-on: #488
22 lines
875 B
PHP
22 lines
875 B
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
use App\Models\TenantConfigurationResourceType;
|
|
use App\Services\TenantConfiguration\ResourceTypeRegistry;
|
|
use App\Support\TenantConfiguration\ClaimState;
|
|
use App\Support\TenantConfiguration\RestoreTier;
|
|
|
|
it('Spec421 keeps Conditional Access typed support separate from restore or certification claims', function (): void {
|
|
app(ResourceTypeRegistry::class)->syncDefaults();
|
|
|
|
$resourceType = TenantConfigurationResourceType::query()
|
|
->where('canonical_type', 'conditionalAccessPolicy')
|
|
->firstOrFail();
|
|
|
|
expect($resourceType->restore_tier)->toBe(RestoreTier::NotRestorable)
|
|
->and($resourceType->allows_certified_claims)->toBeFalse()
|
|
->and($resourceType->default_claim_state)->toBe(ClaimState::InternalOnly)
|
|
->and($resourceType->metadata['customer_claims_allowed'] ?? null)->toBeFalse();
|
|
});
|