128 lines
4.5 KiB
PHP
128 lines
4.5 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Filament\Pages;
|
|
|
|
use App\Models\User;
|
|
use App\Models\Workspace;
|
|
use App\Models\WorkspaceMembership;
|
|
use App\Support\Ui\ActionSurface\ActionSurfaceDeclaration;
|
|
use App\Support\Ui\ActionSurface\Enums\ActionSurfaceProfile;
|
|
use App\Support\Ui\ActionSurface\Enums\ActionSurfaceSlot;
|
|
use App\Support\Workspaces\WorkspaceContext;
|
|
use Filament\Actions\Action;
|
|
use Filament\Forms\Components\TextInput;
|
|
use Filament\Notifications\Notification;
|
|
use Filament\Pages\Page;
|
|
|
|
class NoAccess extends Page
|
|
{
|
|
protected static string $layout = 'filament-panels::components.layout.simple';
|
|
|
|
protected static bool $shouldRegisterNavigation = false;
|
|
|
|
protected static bool $isDiscovered = false;
|
|
|
|
protected static ?string $slug = 'no-access';
|
|
|
|
protected static ?string $title = 'No access';
|
|
|
|
protected string $view = 'filament.pages.no-access';
|
|
|
|
public static function actionSurfaceDeclaration(): ActionSurfaceDeclaration
|
|
{
|
|
return ActionSurfaceDeclaration::forPage(ActionSurfaceProfile::ListOnlyReadOnly)
|
|
->satisfy(ActionSurfaceSlot::ListHeader, 'Header provides a create-workspace recovery action when the user has no tenant access yet.')
|
|
->exempt(ActionSurfaceSlot::InspectAffordance, 'The no-access page is a singleton recovery surface without record-level inspect affordances.')
|
|
->exempt(ActionSurfaceSlot::ListRowMoreMenu, 'The no-access page does not render row-level secondary actions.')
|
|
->exempt(ActionSurfaceSlot::ListBulkMoreGroup, 'The no-access page does not expose bulk actions.')
|
|
->exempt(ActionSurfaceSlot::ListEmptyState, 'The page renders a dedicated recovery message instead of a list-style empty state.');
|
|
}
|
|
|
|
/**
|
|
* @return array<Action>
|
|
*/
|
|
protected function getHeaderActions(): array
|
|
{
|
|
return [
|
|
Action::make('createWorkspace')
|
|
->label('Create workspace')
|
|
->visible(fn (): bool => $this->shouldShowCreateWorkspaceAction())
|
|
->modalHeading('Create workspace')
|
|
->form([
|
|
TextInput::make('name')
|
|
->required()
|
|
->maxLength(255),
|
|
TextInput::make('slug')
|
|
->helperText('Optional. Used in URLs if set.')
|
|
->maxLength(255)
|
|
->rules(['nullable', 'string', 'max:255', 'alpha_dash', 'unique:workspaces,slug'])
|
|
->dehydrateStateUsing(fn ($state) => filled($state) ? $state : null)
|
|
->dehydrated(fn ($state) => filled($state)),
|
|
])
|
|
->action(fn (array $data) => $this->createWorkspace($data)),
|
|
];
|
|
}
|
|
|
|
public function accessHeading(): string
|
|
{
|
|
if ($this->isProviderConnectionNoAccess()) {
|
|
return 'You do not have access to provider connections.';
|
|
}
|
|
|
|
return 'You do not have access to a workspace yet.';
|
|
}
|
|
|
|
public function accessBody(): string
|
|
{
|
|
if ($this->isProviderConnectionNoAccess()) {
|
|
return 'You are signed in, but your current workspace or environment role does not include provider connection access. Ask an administrator to grant the required provider permission, or return to an area you can access.';
|
|
}
|
|
|
|
return 'Ask an administrator to add you to a workspace, then sign in again.';
|
|
}
|
|
|
|
public function shouldShowCreateWorkspaceAction(): bool
|
|
{
|
|
return ! $this->isProviderConnectionNoAccess();
|
|
}
|
|
|
|
private function isProviderConnectionNoAccess(): bool
|
|
{
|
|
return request()->query('surface') === 'provider-connections';
|
|
}
|
|
|
|
/**
|
|
* @param array{name: string, slug?: string|null} $data
|
|
*/
|
|
public function createWorkspace(array $data): void
|
|
{
|
|
$user = auth()->user();
|
|
|
|
if (! $user instanceof User) {
|
|
abort(403);
|
|
}
|
|
|
|
$workspace = Workspace::query()->create([
|
|
'name' => $data['name'],
|
|
'slug' => $data['slug'] ?? null,
|
|
]);
|
|
|
|
WorkspaceMembership::query()->create([
|
|
'workspace_id' => $workspace->getKey(),
|
|
'user_id' => $user->getKey(),
|
|
'role' => 'owner',
|
|
]);
|
|
|
|
app(WorkspaceContext::class)->setCurrentWorkspace($workspace, $user, request());
|
|
|
|
Notification::make()
|
|
->title('Workspace created')
|
|
->success()
|
|
->send();
|
|
|
|
$this->redirect(ChooseEnvironment::getUrl());
|
|
}
|
|
}
|