ahmido
a30be84084
Summary: - Baseline Compare landing: enterprise UI (stats grid, critical drift banner, better actions), navigation grouping under Governance, and Action Surface Contract declaration. - Baseline Profile view page: switches from disabled form fields to proper Infolist entries for a clean read-only view. - Fixes tenant name column usages (`display_name` → `name`) in baseline assignment flows. - Dashboard: improved baseline governance widget with severity breakdown + last compared. Notes: - Filament v5 / Livewire v4 compatible. - Destructive actions remain confirmed (`->requiresConfirmation()`). Tests: - `vendor/bin/sail artisan test --compact tests/Feature/Baselines` - `vendor/bin/sail artisan test --compact tests/Feature/Guards/ActionSurfaceContractTest.php` Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de> Reviewed-on: #123
80 lines
2.3 KiB
PHP
80 lines
2.3 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Services\Baselines;
|
|
|
|
use App\Jobs\CaptureBaselineSnapshotJob;
|
|
use App\Models\BaselineProfile;
|
|
use App\Models\OperationRun;
|
|
use App\Models\Tenant;
|
|
use App\Models\User;
|
|
use App\Services\OperationRunService;
|
|
use App\Support\Baselines\BaselineReasonCodes;
|
|
use App\Support\Baselines\BaselineScope;
|
|
|
|
final class BaselineCaptureService
|
|
{
|
|
public function __construct(
|
|
private readonly OperationRunService $runs,
|
|
) {}
|
|
|
|
/**
|
|
* @return array{ok: bool, run?: OperationRun, reason_code?: string}
|
|
*/
|
|
public function startCapture(
|
|
BaselineProfile $profile,
|
|
Tenant $sourceTenant,
|
|
User $initiator,
|
|
): array {
|
|
$precondition = $this->validatePreconditions($profile, $sourceTenant);
|
|
|
|
if ($precondition !== null) {
|
|
return ['ok' => false, 'reason_code' => $precondition];
|
|
}
|
|
|
|
$effectiveScope = BaselineScope::fromJsonb(
|
|
is_array($profile->scope_jsonb) ? $profile->scope_jsonb : null,
|
|
);
|
|
|
|
$context = [
|
|
'baseline_profile_id' => (int) $profile->getKey(),
|
|
'source_tenant_id' => (int) $sourceTenant->getKey(),
|
|
'effective_scope' => $effectiveScope->toJsonb(),
|
|
];
|
|
|
|
$run = $this->runs->ensureRunWithIdentity(
|
|
tenant: $sourceTenant,
|
|
type: 'baseline_capture',
|
|
identityInputs: [
|
|
'baseline_profile_id' => (int) $profile->getKey(),
|
|
],
|
|
context: $context,
|
|
initiator: $initiator,
|
|
);
|
|
|
|
if ($run->wasRecentlyCreated) {
|
|
CaptureBaselineSnapshotJob::dispatch($run);
|
|
}
|
|
|
|
return ['ok' => true, 'run' => $run];
|
|
}
|
|
|
|
private function validatePreconditions(BaselineProfile $profile, Tenant $sourceTenant): ?string
|
|
{
|
|
if ($profile->status !== BaselineProfile::STATUS_ACTIVE) {
|
|
return BaselineReasonCodes::CAPTURE_PROFILE_NOT_ACTIVE;
|
|
}
|
|
|
|
if ($sourceTenant->workspace_id === null) {
|
|
return BaselineReasonCodes::CAPTURE_MISSING_SOURCE_TENANT;
|
|
}
|
|
|
|
if ((int) $sourceTenant->workspace_id !== (int) $profile->workspace_id) {
|
|
return BaselineReasonCodes::CAPTURE_MISSING_SOURCE_TENANT;
|
|
}
|
|
|
|
return null;
|
|
}
|
|
}
|