TenantAtlas/apps/platform/tests/Feature/Filament/AppProtectionPolicySettingsDisplayTest.php

<?php

use App\Filament\Resources\PolicyResource;
use App\Models\Policy;
use App\Models\PolicyVersion;
use App\Models\ManagedEnvironment;
use Carbon\CarbonImmutable;
use Illuminate\Foundation\Testing\RefreshDatabase;

uses(RefreshDatabase::class);

test('policy detail shows app protection settings in readable sections', function () {
    $tenant = ManagedEnvironment::factory()->create([
        'name' => 'ManagedEnvironment One',
        'status' => 'active',
    ]);

    [$user, $tenant] = createUserWithTenant(tenant: $tenant, role: 'owner');

    $policy = Policy::factory()->create([
        'managed_environment_id' => $tenant->getKey(),
        'external_id' => 'policy-1',
        'policy_type' => 'appProtectionPolicy',
        'display_name' => 'Teams',
        'platform' => 'mobile',
    ]);

    PolicyVersion::factory()->create([
        'managed_environment_id' => $tenant->getKey(),
        'policy_id' => $policy->getKey(),
        'version_number' => 1,
        'policy_type' => $policy->policy_type,
        'platform' => $policy->platform,
        'created_by' => 'tester@example.com',
        'captured_at' => CarbonImmutable::now(),
        'snapshot' => [
            '@odata.type' => '#microsoft.graph.androidManagedAppProtection',
            'displayName' => 'Teams',
            'dataBackupBlocked' => false,
            'pinRequired' => true,
            'periodOnlineBeforeAccessCheck' => 'PT30M',
        ],
    ]);

    $response = $this->actingAs($user)
        ->get(PolicyResource::getUrl('view', ['record' => $policy], tenant: $tenant));

    $response->assertOk();
    $response->assertSee('Data Protection');
    $response->assertSee('Prevent backups');
    $response->assertSee('Allowed');
    $response->assertSee('Platform');
    $response->assertSee('Android');
    $response->assertSee('Access Requirements');
    $response->assertSee('PIN for access');
    $response->assertSee('Required');
    $response->assertSee('Recheck access requirements after');
    $response->assertSee('30 minutes');
});