ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
93495bef13
TenantAtlas/apps/platform/tests/Feature/Filament/GovernanceArtifacts/GovernanceArtifactEnvironmentContextTest.php
Ahmed Darrazi 93495bef13
Some checks failed
PR Fast Feedback / fast-feedback (pull_request) Failing after 9m39s
Details
feat: cut over workspace-first admin environment surfaces
2026-05-08 01:49:43 +02:00

162 lines
6.2 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
use App\Filament\Resources\EvidenceSnapshotResource;
use App\Filament\Resources\ReviewPackResource;
use App\Filament\Resources\StoredReportResource;
use App\Filament\Resources\TenantReviewResource;
use App\Models\EvidenceSnapshot;
use App\Models\ManagedEnvironment;
use App\Models\ReviewPack;
use App\Models\StoredReport;
use App\Models\TenantReview;
use App\Support\Workspaces\WorkspaceContext;
it('resolves review pack access from the remembered admin environment context', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner', setUiContext: false);
$otherTenant = ManagedEnvironment::factory()->create([
'workspace_id' => (int) $tenant->workspace_id,
]);
createUserWithTenant(tenant: $otherTenant, user: $user, role: 'owner', setUiContext: false);
$pack = ReviewPack::factory()->ready()->create([
'managed_environment_id' => (int) $tenant->getKey(),
'workspace_id' => (int) $tenant->workspace_id,
'initiated_by_user_id' => (int) $user->getKey(),
]);
$otherPack = ReviewPack::factory()->ready()->create([
'managed_environment_id' => (int) $otherTenant->getKey(),
'workspace_id' => (int) $otherTenant->workspace_id,
'initiated_by_user_id' => (int) $user->getKey(),
]);
$this->actingAs($user);
setAdminPanelContext();
session()->put(WorkspaceContext::SESSION_KEY, (int) $tenant->workspace_id);
session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
(string) $tenant->workspace_id => (int) $tenant->getKey(),
]);
expect(ReviewPackResource::canViewAny())->toBeTrue()
->and(ReviewPackResource::canView($pack))->toBeTrue()
->and(ReviewPackResource::canView($otherPack))->toBeFalse();
});
it('starts review pack generation from the remembered admin environment context', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner', setUiContext: false);
seedTenantReviewEvidence($tenant);
$this->actingAs($user);
setAdminPanelContext();
session()->put(WorkspaceContext::SESSION_KEY, (int) $tenant->workspace_id);
session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
(string) $tenant->workspace_id => (int) $tenant->getKey(),
]);
ReviewPackResource::executeGeneration([
'include_pii' => true,
'include_operations' => true,
]);
$pack = ReviewPack::query()
->where('managed_environment_id', (int) $tenant->getKey())
->where('workspace_id', (int) $tenant->workspace_id)
->latest('id')
->first();
expect($pack)->toBeInstanceOf(ReviewPack::class)
->and($pack?->status)->toBeString();
});
it('starts tenant review creation from the remembered admin environment context', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner', setUiContext: false);
$snapshot = seedTenantReviewEvidence($tenant);
$this->actingAs($user);
setAdminPanelContext();
session()->put(WorkspaceContext::SESSION_KEY, (int) $tenant->workspace_id);
session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
(string) $tenant->workspace_id => (int) $tenant->getKey(),
]);
TenantReviewResource::executeCreateReview([
'evidence_snapshot_id' => (string) $snapshot->getKey(),
]);
$review = TenantReview::query()
->where('managed_environment_id', (int) $tenant->getKey())
->where('workspace_id', (int) $tenant->workspace_id)
->latest('id')
->first();
expect($review)->toBeInstanceOf(TenantReview::class)
->and((int) $review?->evidence_snapshot_id)->toBe((int) $snapshot->getKey());
});
it('starts evidence snapshot generation from the remembered admin environment context', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner', setUiContext: false);
$this->actingAs($user);
setAdminPanelContext();
session()->put(WorkspaceContext::SESSION_KEY, (int) $tenant->workspace_id);
session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
(string) $tenant->workspace_id => (int) $tenant->getKey(),
]);
EvidenceSnapshotResource::executeGeneration([
'allow_stale' => false,
]);
$snapshot = EvidenceSnapshot::query()
->where('managed_environment_id', (int) $tenant->getKey())
->where('workspace_id', (int) $tenant->workspace_id)
->latest('id')
->first();
expect($snapshot)->toBeInstanceOf(EvidenceSnapshot::class)
->and((int) $snapshot?->managed_environment_id)->toBe((int) $tenant->getKey());
});
it('resolves stored report access from the remembered admin environment context', function (): void {
$tenant = ManagedEnvironment::factory()->create();
[$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner', setUiContext: false);
$otherTenant = ManagedEnvironment::factory()->create([
'workspace_id' => (int) $tenant->workspace_id,
]);
createUserWithTenant(tenant: $otherTenant, user: $user, role: 'owner', setUiContext: false);
$report = StoredReport::factory()
->permissionPosture()
->create([
'managed_environment_id' => (int) $tenant->getKey(),
'workspace_id' => (int) $tenant->workspace_id,
]);
$otherReport = StoredReport::factory()
->permissionPosture()
->create([
'managed_environment_id' => (int) $otherTenant->getKey(),
'workspace_id' => (int) $otherTenant->workspace_id,
]);
$this->actingAs($user);
setAdminPanelContext();
session()->put(WorkspaceContext::SESSION_KEY, (int) $tenant->workspace_id);
session()->put(WorkspaceContext::LAST_TENANT_IDS_SESSION_KEY, [
(string) $tenant->workspace_id => (int) $tenant->getKey(),
]);
expect(StoredReportResource::canViewAny())->toBeTrue()
->and(StoredReportResource::canView($report))->toBeTrue()
->and(StoredReportResource::canView($otherReport))->toBeFalse();
});
Reference in New Issue View Git Blame Copy Permalink