1212412db6
Enroll InventoryCoverage, Monitoring Operations, NoAccess, TenantlessOperationRunViewer, TenantDiagnostics, and TenantRequiredPermissions in the action surface contract. Keep Monitoring Alerts explicitly exempt because /admin/alerts resolves through the alerts cluster entry rather than the page-class route.
99 lines
3.5 KiB
PHP
99 lines
3.5 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Filament\Pages;
|
|
|
|
use App\Models\User;
|
|
use App\Models\Workspace;
|
|
use App\Models\WorkspaceMembership;
|
|
use App\Support\Ui\ActionSurface\ActionSurfaceDeclaration;
|
|
use App\Support\Ui\ActionSurface\Enums\ActionSurfaceProfile;
|
|
use App\Support\Ui\ActionSurface\Enums\ActionSurfaceSlot;
|
|
use App\Support\Workspaces\WorkspaceContext;
|
|
use Filament\Actions\Action;
|
|
use Filament\Forms\Components\TextInput;
|
|
use Filament\Notifications\Notification;
|
|
use Filament\Pages\Page;
|
|
|
|
class NoAccess extends Page
|
|
{
|
|
protected static string $layout = 'filament-panels::components.layout.simple';
|
|
|
|
protected static bool $shouldRegisterNavigation = false;
|
|
|
|
protected static bool $isDiscovered = false;
|
|
|
|
protected static ?string $slug = 'no-access';
|
|
|
|
protected static ?string $title = 'No access';
|
|
|
|
protected string $view = 'filament.pages.no-access';
|
|
|
|
public static function actionSurfaceDeclaration(): ActionSurfaceDeclaration
|
|
{
|
|
return ActionSurfaceDeclaration::forPage(ActionSurfaceProfile::ListOnlyReadOnly)
|
|
->satisfy(ActionSurfaceSlot::ListHeader, 'Header provides a create-workspace recovery action when the user has no tenant access yet.')
|
|
->exempt(ActionSurfaceSlot::InspectAffordance, 'The no-access page is a singleton recovery surface without record-level inspect affordances.')
|
|
->exempt(ActionSurfaceSlot::ListRowMoreMenu, 'The no-access page does not render row-level secondary actions.')
|
|
->exempt(ActionSurfaceSlot::ListBulkMoreGroup, 'The no-access page does not expose bulk actions.')
|
|
->exempt(ActionSurfaceSlot::ListEmptyState, 'The page renders a dedicated recovery message instead of a list-style empty state.');
|
|
}
|
|
|
|
/**
|
|
* @return array<Action>
|
|
*/
|
|
protected function getHeaderActions(): array
|
|
{
|
|
return [
|
|
Action::make('createWorkspace')
|
|
->label('Create workspace')
|
|
->modalHeading('Create workspace')
|
|
->form([
|
|
TextInput::make('name')
|
|
->required()
|
|
->maxLength(255),
|
|
TextInput::make('slug')
|
|
->helperText('Optional. Used in URLs if set.')
|
|
->maxLength(255)
|
|
->rules(['nullable', 'string', 'max:255', 'alpha_dash', 'unique:workspaces,slug'])
|
|
->dehydrateStateUsing(fn ($state) => filled($state) ? $state : null)
|
|
->dehydrated(fn ($state) => filled($state)),
|
|
])
|
|
->action(fn (array $data) => $this->createWorkspace($data)),
|
|
];
|
|
}
|
|
|
|
/**
|
|
* @param array{name: string, slug?: string|null} $data
|
|
*/
|
|
public function createWorkspace(array $data): void
|
|
{
|
|
$user = auth()->user();
|
|
|
|
if (! $user instanceof User) {
|
|
abort(403);
|
|
}
|
|
|
|
$workspace = Workspace::query()->create([
|
|
'name' => $data['name'],
|
|
'slug' => $data['slug'] ?? null,
|
|
]);
|
|
|
|
WorkspaceMembership::query()->create([
|
|
'workspace_id' => $workspace->getKey(),
|
|
'user_id' => $user->getKey(),
|
|
'role' => 'owner',
|
|
]);
|
|
|
|
app(WorkspaceContext::class)->setCurrentWorkspace($workspace, $user, request());
|
|
|
|
Notification::make()
|
|
->title('Workspace created')
|
|
->success()
|
|
->send();
|
|
|
|
$this->redirect(ChooseTenant::getUrl());
|
|
}
|
|
}
|