Дмитрий
e6752b5e4c
Allows SaaS-admin area in non-local/testing envs only when SAAS_ADMIN_TEST_BYPASS=true. Default false -> production unaffected. Remove after Yandex 360 SSO (Б-1 + DO-4). TDD: tests/Feature/Middleware/EnsureSaasAdminTest.php (2 passing). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
23 lines
783 B
PHP
23 lines
783 B
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
use function Pest\Laravel\get;
|
|
|
|
// Гейт SaaS-admin зоны (middleware EnsureSaasAdmin). Вне local/testing зона
|
|
// закрыта (503), кроме случая включённого временного флага тест-деплоя.
|
|
|
|
it('blocks saas-admin area outside local/testing without bypass flag', function () {
|
|
app()->detectEnvironment(fn () => 'production');
|
|
config(['app.saas_admin_test_bypass' => false]);
|
|
|
|
get('/api/admin/tenants')->assertStatus(503);
|
|
});
|
|
|
|
it('allows saas-admin area when test bypass flag is enabled', function () {
|
|
app()->detectEnvironment(fn () => 'production');
|
|
config(['app.saas_admin_test_bypass' => true]);
|
|
|
|
expect(get('/api/admin/tenants')->status())->not->toBe(503);
|
|
});
|