ahmido
ce0615a9c1
## Summary - move the Laravel application into `apps/platform` and keep the repository root for orchestration, docs, and tooling - update the local command model, Sail/Docker wiring, runtime paths, and ignore rules around the new platform location - add relocation quickstart/contracts plus focused smoke coverage for bootstrap, command model, routes, and runtime behavior ## Validation - `cd apps/platform && ./vendor/bin/sail artisan test --compact tests/Feature/PlatformRelocation` - integrated browser smoke validated `/up`, `/`, `/admin`, `/admin/choose-workspace`, and tenant route semantics for `200`, `403`, and `404` ## Remaining Rollout Checks - validate Dokploy build context and working-directory assumptions against the new `apps/platform` layout - confirm web, queue, and scheduler processes all start from the expected working directory in staging/production - verify no legacy volume mounts or asset-publish paths still point at the old root-level `public/` or `storage/` locations Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de> Reviewed-on: #213
75 lines
1.8 KiB
PHP
75 lines
1.8 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Services\System;
|
|
|
|
use App\Models\Tenant;
|
|
use Illuminate\Database\Eloquent\Builder;
|
|
use Illuminate\Validation\ValidationException;
|
|
|
|
class AllowedTenantUniverse
|
|
{
|
|
public const PLATFORM_TENANT_EXTERNAL_ID = 'platform';
|
|
|
|
public function query(): Builder
|
|
{
|
|
return Tenant::query()
|
|
->where('external_id', '!=', self::PLATFORM_TENANT_EXTERNAL_ID);
|
|
}
|
|
|
|
public function isAllowed(Tenant $tenant): bool
|
|
{
|
|
return (string) $tenant->external_id !== self::PLATFORM_TENANT_EXTERNAL_ID;
|
|
}
|
|
|
|
public function ensureAllowed(Tenant $tenant): void
|
|
{
|
|
if ($this->isAllowed($tenant)) {
|
|
return;
|
|
}
|
|
|
|
throw ValidationException::withMessages([
|
|
'tenant_id' => 'This tenant is not eligible for System runbooks.',
|
|
]);
|
|
}
|
|
|
|
public function resolveAllowed(int|string|null $tenantId): ?Tenant
|
|
{
|
|
if (! is_numeric($tenantId)) {
|
|
return null;
|
|
}
|
|
|
|
$tenant = Tenant::query()->whereKey((int) $tenantId)->first();
|
|
|
|
if (! $tenant instanceof Tenant) {
|
|
return null;
|
|
}
|
|
|
|
$this->ensureAllowed($tenant);
|
|
|
|
return $tenant;
|
|
}
|
|
|
|
public function resolveAllowedOrFail(int|string|null $tenantId): Tenant
|
|
{
|
|
if (! is_numeric($tenantId) || (int) $tenantId <= 0) {
|
|
throw ValidationException::withMessages([
|
|
'tenant_id' => 'Select a tenant.',
|
|
]);
|
|
}
|
|
|
|
$tenant = Tenant::query()->whereKey((int) $tenantId)->first();
|
|
|
|
if (! $tenant instanceof Tenant) {
|
|
throw ValidationException::withMessages([
|
|
'tenant_id' => 'Select a valid tenant.',
|
|
]);
|
|
}
|
|
|
|
$this->ensureAllowed($tenant);
|
|
|
|
return $tenant;
|
|
}
|
|
}
|