TenantAtlas/apps/platform/tests/Feature/TenantRBAC/TenantBootstrapAssignTest.php

<?php

use App\Filament\Pages\Tenancy\RegisterTenant;
use App\Models\AuditLog;
use App\Models\ManagedEnvironment;
use App\Models\ManagedEnvironmentMembership;
use App\Models\User;
use App\Support\Audit\AuditActionId;
use Illuminate\Foundation\Testing\RefreshDatabase;
use Livewire\Livewire;

uses(RefreshDatabase::class);

it('bootstraps tenant creator as owner and audits the assignment', function () {
    $user = User::factory()->create();
    $existingTenant = ManagedEnvironment::factory()->create();
    createUserWithTenant(tenant: $existingTenant, user: $user, role: 'owner');

    $this->actingAs($user);
    setAdminPanelContext();

    $tenantGuid = '11111111-1111-1111-1111-111111111111';

    Livewire::test(RegisterTenant::class)
        ->set('data.name', 'Acme')
        ->set('data.environment', 'other')
        ->set('data.managed_environment_id', $tenantGuid)
        ->set('data.domain', 'acme.example')
        ->call('register');

    $tenant = ManagedEnvironment::query()->forTenant($tenantGuid)->firstOrFail();

    $membership = ManagedEnvironmentMembership::query()
        ->where('managed_environment_id', $tenant->getKey())
        ->where('user_id', $user->getKey())
        ->firstOrFail();

    expect($membership->role)->toBe('readonly');
    expect($membership->source)->toBe('manual');

    $audit = AuditLog::query()
        ->where('managed_environment_id', $tenant->getKey())
        ->where('action', AuditActionId::ManagedEnvironmentAccessScopeGrant->value)
        ->latest('id')
        ->first();

    expect($audit)->not->toBeNull();
});