Roukmoute/Classeo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Permettre au super admin de se connecter et accéder à son dashboard

Browse Source 
Le super admin (table super_admins, master DB) ne pouvait pas se connecter
via /api/login car ce firewall n'utilisait que le provider tenant. De même,
le JWT n'était pas enrichi pour les super admins, l'endpoint /api/me/roles
les rejetait, et le frontend redirigeait systématiquement vers /dashboard.

Un chain provider (super_admin + tenant) résout l'authentification,
le JwtPayloadEnricher et MyRolesProvider gèrent désormais les deux types
d'utilisateurs, et le frontend redirige selon le rôle après login.
This commit is contained in:
Mathias STRASSER
2026-02-17 10:07:10 +01:00
parent c856dfdcda
commit 0951322d71
68 changed files with 4049 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

106
backend/tests/Unit/SuperAdmin/Infrastructure/Console/CreateTestSuperAdminCommandTest.php Normal file
View File

@@ -0,0 +1,106 @@
<?php
declare(strict_types=1);
namespace App\Tests\Unit\SuperAdmin\Infrastructure\Console;
use App\Administration\Application\Port\PasswordHasher;
use App\Shared\Domain\Clock;
use App\SuperAdmin\Infrastructure\Console\CreateTestSuperAdminCommand;
use App\SuperAdmin\Infrastructure\Persistence\InMemory\InMemorySuperAdminRepository;
use DateTimeImmutable;
use PHPUnit\Framework\Attributes\Test;
use PHPUnit\Framework\TestCase;
use Symfony\Component\Console\Command\Command;
use Symfony\Component\Console\Tester\CommandTester;
final class CreateTestSuperAdminCommandTest extends TestCase
{
private InMemorySuperAdminRepository $repository;
private CommandTester $commandTester;
protected function setUp(): void
{
$this->repository = new InMemorySuperAdminRepository();
$clock = new class implements Clock {
public function now(): DateTimeImmutable
{
return new DateTimeImmutable('2026-02-17 10:00:00');
}
};
$passwordHasher = new class implements PasswordHasher {
public function hash(string $plainPassword): string
{
return 'hashed_' . $plainPassword;
}
public function verify(string $hashedPassword, string $plainPassword): bool
{
return $hashedPassword === 'hashed_' . $plainPassword;
}
};
$command = new CreateTestSuperAdminCommand(
$this->repository,
$passwordHasher,
$clock,
);
$this->commandTester = new CommandTester($command);
}
#[Test]
public function createsNewSuperAdmin(): void
{
$exitCode = $this->commandTester->execute([
'--email' => 'sadmin@test.com',
'--password' => 'SuperAdmin123',
'--first-name' => 'Super',
'--last-name' => 'Admin',
]);
self::assertSame(Command::SUCCESS, $exitCode);
self::assertStringContainsString('Test super admin created successfully', $this->commandTester->getDisplay());
$superAdmin = $this->repository->findByEmail('sadmin@test.com');
self::assertNotNull($superAdmin);
self::assertSame('sadmin@test.com', $superAdmin->email);
self::assertSame('Super', $superAdmin->firstName);
self::assertSame('Admin', $superAdmin->lastName);
self::assertSame('hashed_SuperAdmin123', $superAdmin->hashedPassword);
}
#[Test]
public function returnsSuccessForExistingEmail(): void
{
// Create first
$this->commandTester->execute([
'--email' => 'sadmin@test.com',
'--password' => 'SuperAdmin123',
]);
// Create again with same email
$exitCode = $this->commandTester->execute([
'--email' => 'sadmin@test.com',
'--password' => 'SuperAdmin123',
]);
self::assertSame(Command::SUCCESS, $exitCode);
self::assertStringContainsString('already exists', $this->commandTester->getDisplay());
}
#[Test]
public function usesDefaultValues(): void
{
$exitCode = $this->commandTester->execute([]);
self::assertSame(Command::SUCCESS, $exitCode);
$superAdmin = $this->repository->findByEmail('sadmin@test.com');
self::assertNotNull($superAdmin);
self::assertSame('Super', $superAdmin->firstName);
self::assertSame('Admin', $superAdmin->lastName);
}
}