Splits the 755-line monolithic settings page into a tile-based landing hub and six focused subpages (general, security, email, api, sso, branding), each with its own form, CSRF scope and POST handler. Each subpage offers Save / Save & close buttons plus a Cancel/back link to the hub. Backend (AdminSettingsService, gateways, policies, DB schema) unchanged. A new settingsSectionMergePost() helper overlays section POSTs onto the current DB values so partial saves don't wipe unrelated fields (the service defaults missing keys to 0/empty). Sub-action files (logo/favicon/tokens/lifecycle) redirect to the matching subpage, and architecture contracts now check the subpage files instead of the removed monolithic index. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
52 lines
1.6 KiB
PHP
52 lines
1.6 KiB
PHP
<?php
|
|
|
|
use MintyPHP\Http\SessionStoreInterface;
|
|
use MintyPHP\Router;
|
|
use MintyPHP\Service\Access\SettingsAuthorizationPolicy;
|
|
use MintyPHP\Support\Flash;
|
|
use MintyPHP\Support\Guard;
|
|
|
|
$session = app(SessionStoreInterface::class)->all();
|
|
Guard::requireLogin();
|
|
|
|
$currentUserId = (int) ($session['user']['id'] ?? 0);
|
|
$authorizationService = app(\MintyPHP\Service\Access\AuthorizationService::class);
|
|
$decision = $authorizationService->authorize(SettingsAuthorizationPolicy::ABILITY_ADMIN_SETTINGS_USER_LIFECYCLE_RUN, [
|
|
'actor_user_id' => $currentUserId,
|
|
]);
|
|
if (!$decision->isAllowed()) {
|
|
Guard::deny();
|
|
}
|
|
|
|
if (!actionRequirePost('admin/settings/security')) {
|
|
return;
|
|
}
|
|
|
|
if (!actionRequireCsrf('admin/settings/security', 'admin/settings/security', 'user_lifecycle_run')) {
|
|
return;
|
|
}
|
|
|
|
$errorBag = formErrors();
|
|
$result = app(\MintyPHP\Service\User\UserLifecycleService::class)->run($currentUserId);
|
|
if (!($result['ok'] ?? false)) {
|
|
$error = (string) ($result['error'] ?? 'unexpected_error');
|
|
if ($error === 'lock_not_acquired') {
|
|
$errorBag->addGlobal('User lifecycle already running');
|
|
} else {
|
|
$errorBag->addGlobal('User lifecycle failed');
|
|
}
|
|
flashFormErrors($errorBag, 'admin/settings/security', 'user_lifecycle_run');
|
|
Router::redirect('admin/settings/security');
|
|
}
|
|
|
|
Flash::success(
|
|
sprintf(
|
|
t('User lifecycle completed: %d deactivated, %d deleted'),
|
|
(int) ($result['deactivated_count'] ?? 0),
|
|
(int) ($result['deleted_count'] ?? 0)
|
|
),
|
|
'admin/settings/security',
|
|
'user_lifecycle_completed'
|
|
);
|
|
Router::redirect('admin/settings/security');
|