ahmido
fb1046c97a
Implements Spec 077 refinements: workspace Global Mode and navigation/context-bar redundancy cleanup.
Summary
- Global Mode: `/admin/workspaces` is workspace-optional (lists only member workspaces); explicit allowlist in `EnsureWorkspaceSelected`.
- Navigation cleanup: workspace switching is topbar-only; no sidebar “Switch workspace”; removes redundant “Manage workspaces” entry from context-bar.
- Context bar: when no workspace selected, tenant picker is disabled with guidance; on tenant-scoped routes `/admin/t/{tenant}/…` the tenant indicator is read-only (Filament tenant menu remains primary).
- Authorization: workspace creation is policy-driven (`WorkspacePolicy::create()`), enforced in `ChooseWorkspace` via Gate.
Safety / Compliance
- Livewire v4.0+ compliant (Filament v5).
- Panel provider registration remains in `bootstrap/providers.php` (no changes required).
- Global search: no new globally searchable resources added; no behavior changes introduced.
- Destructive actions: none added/changed.
- Assets: no new assets registered; deploy process unchanged (if assets are registered elsewhere, ensure `php artisan filament:assets` runs in deploy as usual).
Tests
- `vendor/bin/sail bin pint --dirty`
- `vendor/bin/sail artisan test --compact tests/Feature/Workspaces tests/Feature/Monitoring tests/Feature/OpsUx tests/Feature/Filament/WorkspaceContextTopbarAndTenantSelectionTest.php`
Spec artifacts
- `specs/077-workspace-nav-monitoring-hub/{spec,plan,tasks}.md`
- `specs/077-workspace-nav-monitoring-hub/contracts/routes.md`
Co-authored-by: Ahmed Darrazi <ahmeddarrazi@MacBookPro.fritz.box>
Reviewed-on: #94
2.1 KiB
2.1 KiB
Quickstart — Workspace-first Navigation & Monitoring Hub (077)
Audience: Devs and reviewers validating the feature on staging/local
Spec: specs/077-workspace-nav-monitoring-hub/spec.md
Local setup
- Start containers:
./vendor/bin/sail up -d - Install dependencies if needed:
./vendor/bin/sail composer installand./vendor/bin/sail npm install - Run migrations:
./vendor/bin/sail artisan migrate
Manual validation checklist
Navigation separation
- Open
/adminand sign in. - In the user menu, confirm there is an explicit entry labeled "Switch workspace" that navigates to
/admin/choose-workspace. - In the sidebar, confirm "Manage workspaces" exists only when authorized.
- Confirm there is no navigation item labeled simply "Workspaces" that ambiguously points to both concepts.
Operations canonical + default tenant filter
- Visit
/admin/operationswith no tenant context selected.- Expect: page loads and shows workspace-wide runs.
- Activate tenant context (
/admin/t/{tenant}), then navigate to/admin/operations.- Expect: default tenant filter applied, visible filter chip, chip can be cleared.
- Visit a run deep link
/admin/operations/{run}from both tenantless and tenant context.- Expect: same canonical page, no tenant-route dependency.
Security semantics
- Non-member accessing operations for another workspace: expect 404.
- Workspace member but missing capability for a protected action/screen: expect 403.
- Accessing
/admin/workspacesfor a workspace you are not a member of: expect 404.
Test execution
Run focused tests:
- US1 (nav separation):
./vendor/bin/sail artisan test --compact --filter=WorkspaceNavigationHub - US2 (canonical ops URLs):
./vendor/bin/sail artisan test --compact --filter=OperationsCanonicalUrls - US3 (non-leakage):
./vendor/bin/sail artisan test --compact --filter=NonLeakageWorkspaceOperations
Run a targeted suite for the feature area:
./vendor/bin/sail artisan test --compact tests/Feature/Workspaces tests/Feature/Monitoring tests/Feature/OpsUx
Run formatting before finalizing:
./vendor/bin/sail pint --dirty