ahmido/TenantAtlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity
bbc594efbb
TenantAtlas/apps/platform/tests/Feature/Rbac
History
ahmido dd175c16a1 fix: tighten workspace RBAC access boundaries (#364) 
## Summary
- tighten workspace RBAC and panel access boundaries
- remove non-owner workspace membership management capability from workspace role mapping
- add focused boundary coverage for admin panel, managed environments, providers, review packs, operation runs, finding exceptions, and workspace role capabilities
- include spec artifacts for feature 309

## Testing
- cd apps/platform && ./vendor/bin/sail artisan test --compact tests/Feature/Auth/WorkspaceFirstManagedEnvironmentAccessTest.php tests/Feature/Rbac/RoleMatrix/ManagerAccessTest.php tests/Feature/Rbac/WorkspaceMembershipsRelationManagerUiEnforcementTest.php tests/Feature/Rbac/AdminPanelAccessBoundaryTest.php tests/Feature/Rbac/FindingExceptionLifecycleAccessBoundaryTest.php tests/Feature/Rbac/ManagedEnvironmentAccessBoundaryTest.php tests/Feature/Rbac/OperationRunAccessBoundaryTest.php tests/Feature/Rbac/ProviderConnectionAccessBoundaryTest.php tests/Feature/Rbac/ReviewPackAccessBoundaryTest.php tests/Feature/Rbac/SystemPanelAccessBoundaryTest.php tests/Feature/Rbac/WorkspaceRoleCapabilityBoundaryTest.php tests/Unit/Auth/CapabilityResolverTest.php tests/Unit/Auth/WorkspaceRoleCapabilityMapTest.php
- cd apps/platform && ./vendor/bin/sail bin pint --dirty --format agent

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #364
2026-05-15 14:00:21 +00:00
..
RoleMatrix fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
ActionSurfaceRbacSemanticsTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
AdminGlobalSearchContextSafetyTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
AdminPanelAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
AdminTenantOwnedPolicyContextTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
BackupItemsRelationManagerSemanticsTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
BackupItemsRelationManagerUiEnforcementTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
BackupQualityVisibilityTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
BaselineCompareMatrixAuthorizationTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
CreateRestoreRunAuthorizationTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
CrossResourceNavigationAuthorizationTest.php Spec 182: relocate Laravel platform to apps/platform (#213) 2026-04-08 08:40:47 +00:00
DashboardRecoveryPostureVisibilityTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
DenialDiagnosticsTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
DriftLandingUiEnforcementTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
EditProviderConnectionUiEnforcementTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
EditTenantArchiveUiEnforcementTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
FilamentManageEnforcementTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
FindingExceptionLifecycleAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
GovernanceArtifactsWorkspaceFirstAuthorizationTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
InventoryItemResourceAuthorizationTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
ManagedEnvironmentAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
OnboardingWizardUiEnforcementTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
OperationRunAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
OperationRunWorkspaceFirstAuthorizationTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
PolicyVersionMaintenanceAuthorizationTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
PolicyVersionsRestoreToIntuneUiEnforcementTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
ProviderConnectionAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
ProviderConnectionsCreateUiEnforcementTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
ProviderConnectionWorkspaceFirstPolicyTest.php Complete Spec 287 prerequisite cutover (#346) 2026-05-10 18:22:34 +00:00
RegisterTenantAuthorizationTest.php fix: restore full-suite green signals across platform workflows (#351) 2026-05-12 18:50:40 +00:00
ResolvedReferenceAuthorizationTest.php Spec 182: relocate Laravel platform to apps/platform (#213) 2026-04-08 08:40:47 +00:00
ReviewPackAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
SystemPanelAccessBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
TenantActionSurfaceConsistencyTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantAdminAuthorizationTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantDashboardArrivalContextVisibilityTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantLifecycleActionNamingTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantLifecycleActionVisibilityTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantMembershipsRelationManagerUiEnforcementTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantRequiredPermissionsTrustedStateTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TenantResourceAuthorizationTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
TriageReviewStateAuthorizationTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
UiEnforcementDestructiveTest.php Spec 182: relocate Laravel platform to apps/platform (#213) 2026-04-08 08:40:47 +00:00
UiEnforcementMemberDisabledTest.php feat: cut over tenant core to managed environments (#335) 2026-05-07 06:38:14 +00:00
UiEnforcementNonMemberHiddenTest.php refactor: consolidate internal tenant model naming (#355) 2026-05-14 11:13:28 +00:00
WorkspaceMembershipsRelationManagerUiEnforcementTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00
WorkspaceRoleCapabilityBoundaryTest.php fix: tighten workspace RBAC access boundaries (#364) 2026-05-15 14:00:21 +00:00