TenantAtlas/tests/Feature/Guards/AdminWorkspaceRoutesGuardTest.php

<?php

declare(strict_types=1);

use App\Models\PlatformUser;
use App\Models\Tenant;

it('returns 404 for platform-guard sessions on admin workspace-scoped routes', function (): void {
    $tenant = Tenant::factory()->create();
    $workspace = $tenant->workspace;

    expect($workspace)->not->toBeNull();

    $platformUser = PlatformUser::factory()->create();

    $workspaceRouteKey = (string) ($workspace->slug ?? $workspace->getKey());

    $this->actingAs($platformUser, 'platform')
        ->get("/admin/w/{$workspaceRouteKey}/ping")
        ->assertNotFound();
});