eaa05d68c1
- Filament v5 multiFactorAuthentication enabled on both panels (App + Email) - HasAppAuthentication + HasEmailAuthentication on User and SuperAdmin - Migration: app_authentication_secret + recovery_codes + email_authentication_at - Sanctum REST API: /api/v1/login, /me, clients, vehicles, work-orders - EnsureTokenMatchesTenant middleware blocks cross-tenant token usage - CsvImportExport service: clients + vehicles bulk via plain CSV - Import/Export buttons on Client + Vehicle list pages - ApiTokens page in tenant panel (generate/revoke + last-used) - BackupAllTenantsCommand + scheduler (daily 03:00, retain 14 days) - Background scheduler in entrypoint.sh
46 lines
1.7 KiB
PHP
46 lines
1.7 KiB
PHP
<?php
|
|
|
|
use Illuminate\Foundation\Application;
|
|
use Illuminate\Foundation\Configuration\Exceptions;
|
|
use Illuminate\Foundation\Configuration\Middleware;
|
|
use Illuminate\Http\Request;
|
|
|
|
return Application::configure(basePath: dirname(__DIR__))
|
|
->withRouting(
|
|
web: __DIR__.'/../routes/web.php',
|
|
api: __DIR__.'/../routes/api.php',
|
|
commands: __DIR__.'/../routes/console.php',
|
|
channels: __DIR__.'/../routes/channels.php',
|
|
health: '/up',
|
|
)
|
|
->withMiddleware(function (Middleware $middleware): void {
|
|
// Trust Cloudflare + Coolify Traefik so HTTPS scheme is detected
|
|
// and X-Forwarded-* headers are honored.
|
|
$middleware->trustProxies(at: '*', headers:
|
|
Request::HEADER_X_FORWARDED_FOR
|
|
| Request::HEADER_X_FORWARDED_HOST
|
|
| Request::HEADER_X_FORWARDED_PORT
|
|
| Request::HEADER_X_FORWARDED_PROTO
|
|
| Request::HEADER_X_FORWARDED_AWS_ELB
|
|
);
|
|
|
|
// ResolveTenant must run on EVERY web request (including Livewire
|
|
// /livewire/update endpoints) so tenant context is set before
|
|
// any DB query goes through the global TenantScope.
|
|
$middleware->web(append: [
|
|
\App\Http\Middleware\ResolveTenant::class,
|
|
\App\Http\Middleware\CheckTenantStatus::class,
|
|
\App\Http\Middleware\SetLocale::class,
|
|
]);
|
|
|
|
// API routes also need tenant resolution by host so the same
|
|
// Eloquent TenantScope works.
|
|
$middleware->api(prepend: [
|
|
\App\Http\Middleware\ResolveTenant::class,
|
|
\App\Http\Middleware\CheckTenantStatus::class,
|
|
]);
|
|
})
|
|
->withExceptions(function (Exceptions $exceptions): void {
|
|
//
|
|
})->create();
|