ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
75ebade345
TenantAtlas/apps/platform/app/Support/Operations/QueuedExecutionLegitimacyDecision.php
ahmido e64bae9cfc feat: cut over tenant core to managed environments (#335) 
## Summary
- replace the legacy Tenant and TenantMembership core models with ManagedEnvironment and ManagedEnvironmentMembership
- propagate the managed environment naming and key changes across Filament resources, pages, controllers, jobs, models, and supporting runtime paths
- add feature 279 spec artifacts and focused managed-environment test coverage for model behavior, route binding, panel context, authorization, and legacy guardrails

## Validation
- `cd apps/platform && ./vendor/bin/sail artisan test --compact tests/Feature/ManagedEnvironment/LegacyTenantCoreGuardTest.php tests/Feature/ManagedEnvironment/ManagedEnvironmentAuthorizationTest.php tests/Feature/ManagedEnvironment/ManagedEnvironmentPanelContextTest.php tests/Feature/ManagedEnvironment/ManagedEnvironmentRouteBindingTest.php tests/Unit/ManagedEnvironment/ManagedEnvironmentContextResolverTest.php tests/Unit/ManagedEnvironment/ManagedEnvironmentModelTest.php`
- `cd apps/platform && ./vendor/bin/sail bin pint --dirty --format agent`

## Notes
- branch pushed from commit `1123b122`
- browser smoke test file was added but not run in this pass

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #335
2026-05-07 06:38:14 +00:00

104 lines
3.6 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
namespace App\Support\Operations;
final readonly class QueuedExecutionLegitimacyDecision
{
/**
* @param array{identity_type:string,user_id:int|null}|null $initiator
* @param array{workspace_id:int,managed_environment_id:int|null,provider_connection_id:int|null} $targetScope
* @param array{workspace_scope:string,tenant_scope:string,capability:string,tenant_operability:string,execution_prerequisites:string} $checks
* @param array<string, mixed> $metadata
*/
public function __construct(
public string $operationType,
public bool $allowed,
public ExecutionAuthorityMode $authorityMode,
public ?array $initiator,
public array $targetScope,
public array $checks,
public ?ExecutionDenialClass $denialClass = null,
public ?ExecutionDenialReasonCode $reasonCode = null,
public bool $retryable = false,
public array $metadata = [],
) {}
/**
* @param array{workspace_scope:string,tenant_scope:string,capability:string,tenant_operability:string,execution_prerequisites:string} $checks
* @param array<string, mixed> $metadata
*/
public static function allow(QueuedExecutionContext $context, array $checks, array $metadata = []): self
{
return new self(
operationType: $context->operationType,
allowed: true,
authorityMode: $context->authorityMode,
initiator: $context->initiatorSnapshot(),
targetScope: $context->targetScope,
checks: $checks,
metadata: $metadata,
);
}
/**
* @param array{workspace_scope:string,tenant_scope:string,capability:string,tenant_operability:string,execution_prerequisites:string} $checks
* @param array<string, mixed> $metadata
*/
public static function deny(
QueuedExecutionContext $context,
array $checks,
ExecutionDenialReasonCode $reasonCode,
array $metadata = [],
): self {
$denialClass = $reasonCode->denialClass();
return new self(
operationType: $context->operationType,
allowed: false,
authorityMode: $context->authorityMode,
initiator: $context->initiatorSnapshot(),
targetScope: $context->targetScope,
checks: $checks,
denialClass: $denialClass,
reasonCode: $reasonCode,
retryable: $denialClass->isRetryable(),
metadata: $metadata,
);
}
/**
* @return array{workspace_scope:string,tenant_scope:string,capability:string,tenant_operability:string,execution_prerequisites:string}
*/
public static function defaultChecks(): array
{
return [
'workspace_scope' => 'not_applicable',
'tenant_scope' => 'not_applicable',
'capability' => 'not_applicable',
'tenant_operability' => 'not_applicable',
'execution_prerequisites' => 'not_applicable',
];
}
/**
* @return array<string, mixed>
*/
public function toArray(): array
{
return [
'operation_type' => $this->operationType,
'authority_mode' => $this->authorityMode->value,
'allowed' => $this->allowed,
'retryable' => $this->retryable,
'reason_code' => $this->reasonCode?->value,
'denial_class' => $this->denialClass?->value,
'initiator' => $this->initiator,
'target_scope' => $this->targetScope,
'checks' => $this->checks,
'metadata' => $this->metadata,
];
}
}
Reference in New Issue View Git Blame Copy Permalink