feat(access): only return granted users; add search endpoint

Listing every user in the system on the access page didn't scale — schools have thousands of user rows. Now: - index() only returns users that already have a UnifiPageGrant somewhere. Groups stay fully listed (few of them). - new searchUsers(q) endpoint returns up to 20 typeahead matches against name or email (min 2 chars). v1.5.2. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-24 16:51:00 -04:00
parent 4b73b53dd6
commit 0490a1220b
3 changed files with 34 additions and 4 deletions
--- a/src/routes/unifi.php
+++ b/src/routes/unifi.php
@@ -75,8 +75,9 @@ Route::middleware(['web', 'auth', 'app.access:unifi'])
            // Page Access — super-admin only. Lists unifi pages and lets
            // operators assign per-page user/group grants.
            Route::middleware('super.admin')->group(function () {
-                Route::get('/settings/pages-access',                [UnifiPagesAccessController::class, 'index'])  ->name('settings.pages-access.index');
-                Route::put('/settings/pages-access/{navItem}',      [UnifiPagesAccessController::class, 'update']) ->name('settings.pages-access.update');
+                Route::get('/settings/pages-access',                [UnifiPagesAccessController::class, 'index'])      ->name('settings.pages-access.index');
+                Route::get('/settings/pages-access/users/search',   [UnifiPagesAccessController::class, 'searchUsers'])->name('settings.pages-access.users.search');
+                Route::put('/settings/pages-access/{navItem}',      [UnifiPagesAccessController::class, 'update'])     ->name('settings.pages-access.update');
            });

            // Cron logs — read-only history of scheduled-task runs.