ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
ae2d6a8942
TenantAtlas/app/Support/Tenants/TenantOperabilityDecision.php
ahmido 417df4f9aa feat: central tenant operability policy (#177) 
## Summary
- centralize tenant operability into a lane-aware, actor-aware policy boundary
- align selector eligibility, administrative discoverability, remembered context, tenant-bound routes, and canonical run viewers
- add focused Pest coverage plus Spec 148 artifacts and final polish task completion

## Validation
- `vendor/bin/sail artisan test --compact tests/Unit/Tenants/TenantOperabilityServiceTest.php tests/Unit/Tenants/TenantOperabilityOutcomeTest.php tests/Feature/Workspaces/ChooseTenantPageTest.php tests/Feature/Workspaces/SelectTenantControllerTest.php tests/Feature/TenantRBAC/ArchivedTenantRouteAccessTest.php tests/Feature/TenantRBAC/TenantRouteDenyAsNotFoundTest.php tests/Feature/Operations/TenantlessOperationRunViewerTest.php tests/Feature/OpsUx/OperateHubShellTest.php tests/Feature/Rbac/TenantLifecycleActionVisibilityTest.php tests/Feature/TenantRBAC/TenantSwitcherScopeTest.php tests/Feature/Rbac/TenantResourceAuthorizationTest.php tests/Feature/Filament/ManagedTenantsLandingLifecycleTest.php tests/Feature/Filament/TenantGlobalSearchLifecycleScopeTest.php tests/Feature/Onboarding/OnboardingDraftLifecycleTest.php tests/Feature/Onboarding/OnboardingDraftAuthorizationTest.php`
- `vendor/bin/sail bin pint --dirty --format agent`
- manual browser smoke checks on `/admin/choose-tenant`, `/admin/tenants`, `/admin/onboarding`, `/admin/onboarding/{draft}`, and `/admin/operations/{run}`

## Filament / platform notes
- Livewire v4 compliance preserved
- panel provider registration unchanged in `bootstrap/providers.php`
- Tenant resource global search remains backed by existing view/edit pages and is now separated from active-only selector eligibility
- destructive actions remain action closures with confirmation and authorization enforcement
- no asset pipeline changes and no new `filament:assets` deployment requirement

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #177
2026-03-17 11:48:55 +00:00

79 lines
2.8 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
namespace App\Support\Tenants;
final readonly class TenantOperabilityDecision
{
public function __construct(
public TenantLifecycle $lifecycle,
public bool $canViewTenantSurface,
public bool $canSelectAsContext,
public bool $canOperate,
public bool $canArchive,
public bool $canRestore,
public bool $canResumeOnboarding,
public bool $canReferenceInWorkspaceMonitoring,
) {}
/**
* @param array<string, TenantOperabilityOutcome> $outcomes
*/
public static function fromOutcomes(array $outcomes): self
{
$selector = $outcomes[TenantOperabilityQuestion::SelectorEligibility->value] ?? null;
$discoverability = $outcomes[TenantOperabilityQuestion::AdministrativeDiscoverability->value] ?? null;
$archive = $outcomes[TenantOperabilityQuestion::ArchiveEligibility->value] ?? null;
$restore = $outcomes[TenantOperabilityQuestion::RestoreEligibility->value] ?? null;
$resumeOnboarding = $outcomes[TenantOperabilityQuestion::ResumeOnboardingEligibility->value] ?? null;
$canonical = $outcomes[TenantOperabilityQuestion::CanonicalLinkedRecordViewability->value] ?? null;
$lifecycle = $selector?->lifecycle
?? $discoverability?->lifecycle
?? $archive?->lifecycle
?? $restore?->lifecycle
?? $resumeOnboarding?->lifecycle
?? $canonical?->lifecycle
?? TenantLifecycle::Active;
return new self(
lifecycle: $lifecycle,
canViewTenantSurface: $discoverability?->allowed ?? $lifecycle->canViewTenantSurface(),
canSelectAsContext: $selector?->allowed ?? $lifecycle->canSelectAsContext(),
canOperate: $lifecycle->canOperate(),
canArchive: $archive?->allowed ?? $lifecycle->canArchive(),
canRestore: $restore?->allowed ?? $lifecycle->canRestore(),
canResumeOnboarding: $resumeOnboarding?->allowed ?? $lifecycle->canResumeOnboarding(),
canReferenceInWorkspaceMonitoring: $canonical?->allowed ?? $lifecycle->canReferenceInWorkspaceMonitoring(),
);
}
public function allowsAction(string $actionKey): bool
{
return match ($actionKey) {
'resume_onboarding' => $this->canResumeOnboarding,
'archive' => $this->canArchive,
'restore' => $this->canRestore,
default => false,
};
}
public function primaryManagementActionKey(bool $preferOnboarding = false): ?string
{
if ($preferOnboarding && $this->canResumeOnboarding) {
return 'resume_onboarding';
}
if ($this->canRestore) {
return 'restore';
}
if ($this->canArchive) {
return 'archive';
}
return null;
}
}
Reference in New Issue View Git Blame Copy Permalink