crewli/api/app/FormBuilder/Publishing/NoAmbiguousTrustLevels.php

<?php

declare(strict_types=1);

namespace App\FormBuilder\Publishing;

use App\Models\FormBuilder\FormField;
use App\Models\FormBuilder\FormFieldBinding;
use App\Models\FormBuilder\FormSchema;

/**
 * RFC-WS-6 §3 (Q7) — within any (target_entity, target_attribute) group,
 * no two bindings may share the same trust_level. Tie-breaker exists
 * (sort_order) but ambiguity at config time is rejected.
 */
final class NoAmbiguousTrustLevels implements PublishGuard
{
    public function code(): string
    {
        return 'no_ambiguous_trust_levels';
    }

    public function evaluate(FormSchema $schema): PublishGuardResult
    {
        /** @var array<string, array<int, array<int, string>>> $byTargetTrust */
        $byTargetTrust = [];

        /** @var FormField $field */
        foreach ($schema->fields as $field) {
            /** @var FormFieldBinding $binding */
            foreach ($field->bindings as $binding) {
                $key = $binding->target_entity . '.' . $binding->target_attribute;
                $trust = (int) $binding->trust_level;
                $byTargetTrust[$key][$trust][] = (string) $field->id;
            }
        }

        foreach ($byTargetTrust as $target => $trustGroups) {
            foreach ($trustGroups as $trust => $fieldIds) {
                if (count($fieldIds) > 1) {
                    return PublishGuardResult::failed(
                        guardCode: $this->code(),
                        messageKey: 'form_builder_publish_guards.no_ambiguous_trust_levels',
                        offendingFormFieldId: $fieldIds[0],
                        context: [
                            'target' => $target,
                            'trust_level' => $trust,
                            'form_field_ids' => $fieldIds,
                        ],
                    );
                }
            }
        }

        return PublishGuardResult::passed($this->code());
    }
}