4b1635d045
Schema centrală: - companies (slug unique, status, plan_id, settings JSON, trial/active dates) - super_admins (operator platform) - plans (free/basic/pro) Schema tenant (toate cu company_id NOT NULL): - users (UNIQUE company_id+email) - clients - vehicles Tenancy core: - App\Tenancy\TenantManager singleton - App\Models\Concerns\BelongsToTenant trait + TenantScope - ResolveTenant middleware (slug → Company, 404 pentru rezervate/missing) - CheckTenantStatus middleware (suspended/expired/archived) - Fail-safe: TenantScope returns 0 rows când tenant nu e rezolvat Auth guards: - 'central' guard cu super_admins provider (panou platform) - 'web' guard cu users provider (per-tenant) Filament panels: - CentralPanelProvider la service.mir.md/admin - TenantPanelProvider la <slug>.service.mir.md/app - CompanyResource (central): CRUD companii cu status badge + filtre - ClientResource (tenant): CRUD clienți cu status, sursă, sold - VehicleResource (tenant): CRUD mașini cu marcă/model/VIN Seed: - 3 plans (free/basic/pro) - super-admin: vasyka.moraru@gmail.com / admin123 - demo company 'psauto' cu admin user admin@psauto.md / admin123 - 3 clienți + 3 mașini preluate din AutoCRM.html Bootstrap: - TrustProxies (Cloudflare→Traefik HTTPS detection) - forceScheme/forceRootUrl când APP_URL e HTTPS - Helper global tenant() în app/helpers.php (autoload via composer) - RUN_SEED env var în entrypoint pentru db:seed condiționat
34 lines
930 B
PHP
34 lines
930 B
PHP
<?php
|
|
|
|
namespace App\Models\Scopes;
|
|
|
|
use App\Tenancy\TenantManager;
|
|
use Illuminate\Database\Eloquent\Builder;
|
|
use Illuminate\Database\Eloquent\Model;
|
|
use Illuminate\Database\Eloquent\Scope;
|
|
|
|
/**
|
|
* Auto-filter every query by the current tenant's company_id.
|
|
* No-op when no tenant is resolved (central panel context).
|
|
*/
|
|
class TenantScope implements Scope
|
|
{
|
|
public function apply(Builder $builder, Model $model): void
|
|
{
|
|
$tenant = app(TenantManager::class);
|
|
|
|
if (! $tenant->isResolved()) {
|
|
// Fail-safe: no tenant set → return zero rows (prevents accidental
|
|
// cross-tenant leak). Use withoutGlobalScopes() in central panel
|
|
// to query across all tenants intentionally.
|
|
$builder->whereRaw('0 = 1');
|
|
return;
|
|
}
|
|
|
|
$builder->where(
|
|
$model->getTable() . '.company_id',
|
|
$tenant->currentId()
|
|
);
|
|
}
|
|
}
|