AcadeNice/corentin_wakdo
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
corentin_wakdo/src/app/Auth
History
Imugiii 65cb3008ee
Some checks failed
CI / secret-scan (push) Successful in 8s
Details
CI / static-tests (push) Successful in 28s
Details
CI / static-tests (pull_request) Successful in 27s
Details
CI / auto-merge (push) Has been skipped
Details
CI / php-lint (push) Successful in 18s
Details
CI / secret-scan (pull_request) Successful in 9s
Details
CI / php-lint (pull_request) Successful in 18s
Details
CI / auto-merge (pull_request) Failing after 4s
Details
feat(admin): shell back-office rendu serveur + garde de page (P3) 
AdminController : base des pages back-office. guard(permission?) applique RG-6/RG-T02 (302 vers
/login si session absente/expiree/inactive) puis RG-T03 (403 si permission manquante), sinon renvoie
la GuardResult ; adminView() rend dans le shell admin en injectant identite + permissions + jeton CSRF.
Controller gagne un hook layoutName() (defaut inchange). DashboardController -> GET /admin/dashboard
(landing authentifie ; KPI reels = chunk stats). UserDirectory : nom + libelle de role pour la topbar.
Vues admin/{layout,dashboard,forbidden} : navigation conditionnee aux permissions, logout en POST CSRF,
sorties echappees (RG-T15), assets en chemins absolus. Premier cablage de SessionGuard sur une page.
127 tests (dont 403 garde, echappement XSS), PHPStan L6.
2026-06-15 19:21:52 +00:00
..
Authorizer.php feat: RBAC P2 (autorisation par permission + garde de session + /api/me) (#12) 2026-06-15 20:45:19 +02:00
AuthResult.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
AuthService.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
Csrf.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
GuardResult.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
LogMailer.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
Mailer.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
PasswordHasher.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
PasswordResetService.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
PinVerifier.php feat: PIN d action sensible P2 (PinVerifier RG-T13) (#13) 2026-06-15 21:00:11 +02:00
SessionGuard.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
SessionManager.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
ThrottlePolicy.php feat: authentification back-office P2 (login/logout/reset, throttle, audit) (#11) 2026-06-15 20:18:59 +02:00
UserDirectory.php feat(admin): shell back-office rendu serveur + garde de page (P3) 2026-06-15 19:21:52 +00:00