Files
breadcrumb-the-shire/modules/audit/lib/Module/Audit/Support/AuditPageHelper.php
fs c0843b1fca refactor(audit): extract shared page helpers for purge and view actions
Create AuditPageHelper with requirePurgePost() and findOrRedirect()
to eliminate duplicated POST/CSRF guard boilerplate across 4 purge
pages and find-or-redirect boilerplate across 4 view pages. Each page
retains its stream-specific logic (system-audit event recording,
user-lifecycle snapshot/restore).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 12:57:54 +01:00

63 lines
1.7 KiB
PHP

<?php
namespace MintyPHP\Module\Audit\Support;
use MintyPHP\Buffer;
use MintyPHP\Router;
use MintyPHP\Session;
use MintyPHP\Support\Flash;
use MintyPHP\Support\Guard;
final class AuditPageHelper
{
/**
* Guard a purge action: require login, ability, POST method, and valid CSRF token.
* Redirects on any failure (never returns in that case).
*/
public static function requirePurgePost(string $ability, string $route, string $flashGroup): void
{
Guard::requireLogin();
Guard::requireAbility($ability);
if (strtoupper((string) requestInput()->method()) !== 'POST') {
Router::redirect($route);
}
$errorBag = formErrors();
if (!Session::checkCsrfToken()) {
$errorBag->addGlobal(t('Form expired, please try again'));
flashFormErrors($errorBag, $route, $flashGroup);
Router::redirect($route);
}
}
/**
* Guard a view action: require login + ability, find record by ID, redirect on not-found.
*
* @return array<string, mixed> The found record
*/
public static function findOrRedirect(
string $ability,
string $serviceClass,
string $route,
string $errorMessage,
string $flashGroup,
string $title,
mixed $id = null
): array {
Guard::requireLogin();
Guard::requireAbility($ability);
$recordId = (int) ($id ?? 0);
$record = $recordId > 0 ? app($serviceClass)->find($recordId) : null;
if (!$record) {
Flash::error(t($errorMessage), $route, $flashGroup);
Router::redirect($route);
}
Buffer::set('title', t($title));
return $record;
}
}