refactor: replace positional tuples with readonly DTOs (AffiliationData, CriteriaData)#403
Merged
Merged
Conversation
- Convert affiliated arrays to [entity_id, entity_type, affiliation_type] tuples before passing to syncAffiliateManyEntities(), which validates via *.0 / *.1 / *.2 numeric keys - Convert assigned arrays to [entity_id, entity_type] tuples for automaticallyAssignRoleTo() / addCriteriaForRoleApplication() / addCriteriaForRole() - Move setRoleType() before criteria writes so type-change resets (resetRoleMemberships) don't wipe newly written criteria - Add handleMembers() call after all writes to sync memberships - Remove affiliated handling from ManageManualRoleAction (manual roles have no affiliation criteria by design) - Add declare(strict_types=1) to all four action files - Update unit tests: fix mock chains (for()->andReturn($mock)), correct expected tuple arguments, add handleMembers expectations, remove now-deleted affiliated-entities test for manual action Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
PR Summary
|
…riteriaData) - Add AffiliationData and CriteriaData readonly DTOs in Services/Roles/DTO/ - Update AbstractRoleService::syncAffiliateManyEntities() and addCriteria() to accept variadic DTOs - Update RoleServiceInterface to match new signature - Update AutomaticRoleService, OnRequestRoleService, OptInRoleService to use CriteriaData variadics - Update all 4 Manage*RoleAction classes to construct DTOs from request data - Update all tests to use new DTO-based call signatures - Remove validateAffiliationEntities() and validateCriteria() validators (DTOs provide static analysis coverage) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
herpaderpaldent
changed the title
The .phpunit.cache/ directory was already in .gitignore but got committed in the previous commit. Remove from tracking. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…ss() Add entityClass() method to AffiliationData and CriteriaData so callers don't need to repeat the match expression. AbstractRoleService now just calls $entity->entityClass() instead of inlining the match. Invalid entity types throw \ValueError with a descriptive message. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Replace fn (array $e) with fn (array $affiliationData) and fn (array $criteriaData) in all Manage*RoleAction classes. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Manual roles support syncAffiliateManyEntities() (inherited from AbstractRoleService) for visibility scoping. The affiliated array was inadvertently removed in the DTO refactor. Also restores the 'affiliates many entities' test with withArgs() DTO-based assertions. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…ns/criteria Previously, is_truthy check on arrays meant passing affiliated: [] or assigned: [] was a no-op. Now is_array() correctly distinguishes 'key absent' (no change) from 'key present with empty array' (reset to empty). Also updates ManageAutomaticRoleActionTest to expect 0-arg calls when affiliated or assigned are provided as empty arrays. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
herpaderpaldent
commented
Apr 29, 2026
Comment on lines
-64
to
+72
| ->andReturn(['role_id' => $role->id, 'affiliated' => [['entity_id' => 1, 'entity_type' => 'corporation', 'type' => 'member']]]); | ||
| ->andReturn(['role_id' => $role->id, 'affiliated' => [['entity_id' => 1, 'entity_type' => 'corporation', 'affiliation_type' => 'allowed']]]); |
Contributor
Author
There was a problem hiding this comment.
This worries me ...
Type changed to affiliation_type
Member changed to allowed.
This is quite significant. is this still true or was the test faulty? testing something that was never matched?
Comment on lines
-42
to
+45
| $mock->shouldReceive('validated')->andReturn(['role_id' => 1, 'affiliated' => [['entity_id' => 1, 'entity_type' => 'corporation', 'type' => 'member']], 'assigned' => []]); | ||
| $mock->shouldReceive('validated')->andReturn(['role_id' => 1, 'affiliated' => [['entity_id' => 1, 'entity_type' => 'corporation', 'affiliation_type' => 'allowed']], 'assigned' => []]); |
Contributor
Author
There was a problem hiding this comment.
This worries me ...
Type changed to affiliation_type
Member changed to allowed.
This is quite significant. is this still true or was the test faulty? testing something that was never matched?
paambaati/codeclimate-action@v2.6.0 used Node.js 12 which is no longer supported on GitHub Actions runners. Updated to v9 (Node.js 20) which is the current stable release. Also updated actions/checkout from v2 to v4. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
herpaderpaldent
commented
Apr 29, 2026
Contributor
Author
herpaderpaldent
left a comment
herpaderpaldent
left a comment
There was a problem hiding this comment.
Review response
Re: type → affiliation_type and member → allowed
The original test on origin/4.x was already wrong — testing data that would fail actual validation:
'type' => 'member'used the wrong key (type) and a nonexistent enum value (member)RoleRequestvalidatesaffiliated.*.affiliation_type(nottype)AffiliationTypehas onlyALLOWED,INVERSE,FORBIDDEN— there is noMEMBERcase
So the original test was asserting that the action would pass through invalid data untouched — but in production, any request with type: member would fail validation before reaching the action. Our PR fixes the test to use the actual field names and valid enum values that RoleRequest enforces.
Re: CI failure — Separate issue: paambaati/codeclimate-action@v2.6.0 uses Node.js 12 which is removed from GitHub Actions runners. I've just pushed a fix updating to v9 (Node.js 20) + actions/checkout@v4. Tests should now run correctly in CI.
…avel.yml
- Delete tests.yml (used paambaati/codeclimate-action@v2.6.0 which runs
Node.js 12, long since removed from GitHub Actions runners)
- Delete check-coding-standards.yml (ran composer update with floating
deps, inconsistent with tests.yml which used composer install)
- Add laravel.yml modelled on seatplus/web workflow:
- concurrency group with cancel-in-progress: true to conserve resources
- fail-early step order: lint → types → type-coverage → tests
- XDEBUG_MODE=coverage + --coverage --min=100 enforces 100% code coverage
via Pest exit code — no external service needed
- actions/cache@v4 for Composer dependency caching
- pgsql, pdo_pgsql, redis PHP extensions (previously missing)
- actions/checkout@v4 (consistent with recent fixes)
- Update README: add CI badge, expand with package overview (role types,
affiliation system, SSO compliance, permission checking, dev setup)
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…o 3.5.1 pest-plugin-type-coverage v3.6.1 passes [] (array) to PHPStan's RuleErrorTransformer::transform() which expects a string for $nodeType. PHPStan 1.12.25+ added strict native type enforcement that turns this into a TypeError, crashing type-coverage analysis. Pin to the same versions used by seatplus/web (phpstan 1.12.24, pest-plugin-type-coverage 3.5.1) where this bug does not occur. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
The 'checks owned character ids' test was intermittently failing with 200 instead of 403. Root cause: CharacterRole rows from previous test runs (committed outside any transaction, e.g. from eveapi package tests) are visible in the current test's LazilyRefreshDatabase transaction. When CharacterInfo factory's afterCreating hook tries to save a CharacterRole with the same character_id as a stale committed row, the PK UPDATE fails, leaving the stale row (with withRandomRoles() data including 'Director') in place. The middleware then grants corporation access that should be denied. Fix: call CharacterRole::query()->delete() at the start of the test body to remove any stale rows within the transaction before the middleware runs. The transaction rollback at the end of the test restores all stale records. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Replaces positional tuple arrays with typed readonly DTOs throughout the role service layer.
Problem
The previous approach used positional tuple arrays like
[$id, 'corporation', 'allowed']which:validateAffiliationEntities()/validateCriteria()validatorsSolution
Two new readonly DTOs:
AffiliationData— holdsentity_id,entity_type,AffiliationType $affiliation_typeenumCriteriaData— holdsentity_id,entity_typeBoth have
fromArray()factory methods for convenient construction from request data.Changes
Services/Roles/DTO/AffiliationData.phpandCriteriaData.phpAbstractRoleService::syncAffiliateManyEntities()andaddCriteria()to accept variadic DTOsRoleServiceInterfaceto matchAutomaticRoleService,OnRequestRoleService,OptInRoleServicepublic methodsManage*RoleActionclassesvalidateAffiliationEntities()andvalidateCriteria()(DTOs + PHPStan replace them)