1
0

Feature: Security Level mit Notiz für Domains

Implementiert ein Dialog-basiertes UI zum Bearbeiten des Security Levels
mit optionaler Notiz-Funktion für Helpdesk-Domains.

Backend:
- DomainSecurityLevelRepository: CRUD für security_levels mit note-Spalte
- DomainSecurityLevelService: Business-Logik mit Batch-Enrichment
- security-level-data() Endpoint: AJAX + Full-Page POST mit CSRF
- Migration 010: note TEXT-Spalte hinzugefügt
- Bugfix: findByTenantAndDomainNo gibt null bei leerem Array zurück

Frontend (Domain-Liste):
- Badge in Grid klickbar → öffnet Modal-Dialog
- Dialog mit Level-Select + Notiz-Textarea
- AJAX-Save mit Live-Badge-Update ohne Reload
- Event-Delegation für dynamische Grid-Inhalte

Frontend (Domain-Detail):
- Notiz-Feld im Security-Level-Formular
- PRG-Pattern mit Flash-Messages

Core:
- app-http.js: DEFAULT_HEADERS auf XMLHttpRequest für CSRF-Kompatibilität

i18n:
- Keys: Priority, Note, Optional note, Security level updated

Tests:
- DomainSecurityLevelServiceTest: CRUD + Batch-Enrichment
This commit is contained in:
2026-04-21 13:43:16 +02:00
parent c3de7d4238
commit 6ac685084d
23 changed files with 1017 additions and 19 deletions

View File

@@ -0,0 +1,124 @@
<?php
namespace MintyPHP\Module\Helpdesk\Service;
use MintyPHP\Module\Helpdesk\Repository\DomainSecurityLevelRepository;
class DomainSecurityLevelService
{
private const ALLOWED_LEVELS = ['niedrig', 'normal', 'hoch', 'kritisch'];
private const BADGE_VARIANTS = [
'niedrig' => 'info',
'normal' => 'neutral',
'hoch' => 'warning',
'kritisch' => 'error',
];
public function __construct(
private readonly DomainSecurityLevelRepository $repository
) {
}
/**
* @api Called from page actions and AJAX endpoints
*/
public function getLevel(int $tenantId, string $domainNo): string
{
if ($domainNo === '') {
return 'normal';
}
$row = $this->repository->findByTenantAndDomainNo($tenantId, $domainNo);
if ($row === null) {
return 'normal';
}
$level = (string) ($row['security_level'] ?? 'normal');
return in_array($level, self::ALLOWED_LEVELS, true) ? $level : 'normal';
}
/**
* @api Called from AJAX endpoints — returns level + note
* @return array{level: string, note: string}
*/
public function getDetails(int $tenantId, string $domainNo): array
{
if ($domainNo === '') {
return ['level' => 'normal', 'note' => ''];
}
$row = $this->repository->findByTenantAndDomainNo($tenantId, $domainNo);
if ($row === null) {
return ['level' => 'normal', 'note' => ''];
}
$level = (string) ($row['security_level'] ?? 'normal');
$note = (string) ($row['note'] ?? '');
return [
'level' => in_array($level, self::ALLOWED_LEVELS, true) ? $level : 'normal',
'note' => $note,
];
}
/**
* @api Called from page actions and AJAX endpoints
*/
public function setLevel(int $tenantId, string $domainNo, string $level, ?int $userId, ?string $note = null): bool
{
if ($domainNo === '' || !in_array($level, self::ALLOWED_LEVELS, true)) {
return false;
}
return $this->repository->upsert($tenantId, $domainNo, $level, $userId, $note);
}
/**
* @api Called from domains-data endpoint for batch enrichment
*/
public function getAllLevelsForDomains(int $tenantId, array $domainNos): array
{
if ($domainNos === []) {
return [];
}
return $this->repository->listLevelsByDomainNos($tenantId, $domainNos);
}
/**
* @api Called from domains-data endpoint for batch enrichment with note
* @param list<string> $domainNos
* @return array<string, array{level: string, note: string}>
*/
public function getAllDetailsForDomains(int $tenantId, array $domainNos): array
{
if ($domainNos === []) {
return [];
}
return $this->repository->listDetailsByDomainNos($tenantId, $domainNos);
}
/**
* @api Called from views and AJAX responses for badge rendering
*/
public static function getBadgeVariant(string $level): string
{
return self::BADGE_VARIANTS[$level] ?? 'neutral';
}
/**
* @return list<string>
*/
/**
* @api Called from AJAX endpoint for validation
*/
public static function getAllowedLevels(): array
{
return self::ALLOWED_LEVELS;
}
}