ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
6b381e9517
TenantAtlas/tests/Feature/EntraAdminRoles/StoredReportFingerprintTest.php
Ahmed Darrazi 6b381e9517 feat: spec 105 — Entra Admin Roles scan, reports, findings, widget + summary UX improvement 
- Entra admin roles scan job (ScanEntraAdminRolesJob)
- Report service with fingerprint deduplication
- Finding generator with high-privilege role catalog
- Admin roles summary widget on tenant view page
- Alert integration for entra.admin_roles findings
- Graph contracts for roleDefinitions + roleAssignments
- Entra permissions registry (config/entra_permissions.php)
- StoredReport fingerprint migration
- OperationCatalog label + duration for entra.admin_roles.scan
- SummaryCountsNormalizer: filter zeros, humanize keys globally
- 11 new test files (71+ tests, 286+ assertions)
- Spec + tasks + checklist updates
2026-02-22 03:35:46 +01:00

58 lines
1.9 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
use App\Models\StoredReport;
use Illuminate\Foundation\Testing\RefreshDatabase;
uses(RefreshDatabase::class);
it('persists fingerprint and previous_fingerprint columns', function (): void {
[$user, $tenant] = createUserWithTenant();
$report = StoredReport::factory()->create([
'tenant_id' => $tenant->getKey(),
'report_type' => StoredReport::REPORT_TYPE_ENTRA_ADMIN_ROLES,
'fingerprint' => str_repeat('a', 64),
'previous_fingerprint' => str_repeat('b', 64),
]);
$fresh = StoredReport::query()->find($report->getKey());
expect($fresh->fingerprint)->toBe(str_repeat('a', 64))
->and($fresh->previous_fingerprint)->toBe(str_repeat('b', 64));
});
it('prevents duplicate (tenant_id, report_type, fingerprint) via unique index', function (): void {
[$user, $tenant] = createUserWithTenant();
$fingerprint = hash('sha256', 'test-content');
StoredReport::factory()->create([
'tenant_id' => $tenant->getKey(),
'report_type' => StoredReport::REPORT_TYPE_ENTRA_ADMIN_ROLES,
'fingerprint' => $fingerprint,
]);
expect(fn () => StoredReport::factory()->create([
'tenant_id' => $tenant->getKey(),
'report_type' => StoredReport::REPORT_TYPE_ENTRA_ADMIN_ROLES,
'fingerprint' => $fingerprint,
]))->toThrow(\Illuminate\Database\QueryException::class);
});
it('allows null fingerprint for existing reports without fingerprinting', function (): void {
[$user, $tenant] = createUserWithTenant();
$report = StoredReport::factory()->create([
'tenant_id' => $tenant->getKey(),
'report_type' => StoredReport::REPORT_TYPE_PERMISSION_POSTURE,
'fingerprint' => null,
'previous_fingerprint' => null,
]);
$fresh = StoredReport::query()->find($report->getKey());
expect($fresh->fingerprint)->toBeNull()
->and($fresh->previous_fingerprint)->toBeNull();
});
Reference in New Issue View Git Blame Copy Permalink