CGL/mesreleves-php
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 7 Wiki Activity

Initial scaffold : Laravel 12 + PostgreSQL + auth + domaine métier (étapes 1-5)

Browse Source 
- Laravel 12 sur PHP 8.5, Breeze (Blade/Tailwind/Alpine.js)
- Docker Compose dev (PostgreSQL 18 + Redis) et prod (stack complète + nginx)
- Migrations et models : lieux, sections, dépôts, source_types/fields, sources, relevés
  - Colonne JSONB data sur releves avec colonnes générées indexées (nom, prenom, date_evenement)
  - Index GIN pour la recherche fulltext
- Enums : UserRole, SourceStatus (avec transitions), CalendarType, FieldType
- RoleMiddleware (alias `role`) + helpers isAdmin/isSectionManager sur User
- CRUD Lieux (arbre hiérarchique, calcul nom_long en cascade)
- CRUD admin : Sections (+ gestion membres), Dépôts, Types de sources (+ champs dynamiques, drag & drop)
- CRUD Sources : visibilité filtrée par rôle, assignation membres, workflow de statut

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Yannick Barbel
2026-06-04 16:16:37 +02:00
commit 7609d35287
172 changed files with 19179 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/Http/Controllers/Admin/DepotController.php
+58
View File
@@ -0,0 +1,58 @@
<?php
namespace App\Http\Controllers\Admin;
use App\Http\Controllers\Controller;
use App\Http\Requests\Admin\StoreDepotRequest;
use App\Models\Depot;
use Illuminate\Http\RedirectResponse;
use Illuminate\View\View;
class DepotController extends Controller
{
public function index(): View
{
$depots = Depot::withCount('sources')->orderBy('nom')->paginate(25);
return view('admin.depots.index', compact('depots'));
}
public function create(): View
{
return view('admin.depots.create');
}
public function store(StoreDepotRequest $request): RedirectResponse
{
$depot = Depot::create($request->validated());
return redirect()->route('admin.depots.show', $depot)
->with('success', 'Dépôt créé.');
}
public function show(Depot $depot): View
{
$depot->load('sources');
return view('admin.depots.show', compact('depot'));
}
public function edit(Depot $depot): View
{
return view('admin.depots.edit', compact('depot'));
}
public function update(StoreDepotRequest $request, Depot $depot): RedirectResponse
{
$depot->update($request->validated());
return redirect()->route('admin.depots.show', $depot)
->with('success', 'Dépôt mis à jour.');
}
public function destroy(Depot $depot): RedirectResponse
{
if ($depot->sources()->exists()) {
return back()->with('error', 'Impossible de supprimer un dépôt qui contient des sources.');
}
$depot->delete();
return redirect()->route('admin.depots.index')
->with('success', 'Dépôt supprimé.');
}
}
app/Http/Controllers/Admin/SectionController.php
+82
View File
@@ -0,0 +1,82 @@
<?php
namespace App\Http\Controllers\Admin;
use App\Http\Controllers\Controller;
use App\Http\Requests\Admin\StoreSectionRequest;
use App\Http\Requests\Admin\UpdateSectionRequest;
use App\Models\Lieu;
use App\Models\Section;
use App\Models\User;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\View\View;
class SectionController extends Controller
{
public function index(): View
{
$sections = Section::with('lieu')->orderBy('nom')->paginate(25);
return view('admin.sections.index', compact('sections'));
}
public function create(): View
{
$lieux = Lieu::orderBy('nom_long')->get(['id', 'nom_long', 'nom']);
return view('admin.sections.create', compact('lieux'));
}
public function store(StoreSectionRequest $request): RedirectResponse
{
$section = Section::create($request->validated());
return redirect()->route('admin.sections.show', $section)
->with('success', 'Section créée.');
}
public function show(Section $section): View
{
$section->load('lieu', 'membres');
$users = User::orderBy('name')->get(['id', 'name', 'email']);
return view('admin.sections.show', compact('section', 'users'));
}
public function edit(Section $section): View
{
$lieux = Lieu::orderBy('nom_long')->get(['id', 'nom_long', 'nom']);
return view('admin.sections.edit', compact('section', 'lieux'));
}
public function update(UpdateSectionRequest $request, Section $section): RedirectResponse
{
$section->update($request->validated());
return redirect()->route('admin.sections.show', $section)
->with('success', 'Section mise à jour.');
}
public function destroy(Section $section): RedirectResponse
{
$section->delete();
return redirect()->route('admin.sections.index')
->with('success', 'Section supprimée.');
}
public function addMembre(Request $request, Section $section): RedirectResponse
{
$data = $request->validate([
'user_id' => ['required', 'exists:users,id'],
'role_in_section' => ['required', 'in:member,section_manager'],
]);
$section->membres()->syncWithoutDetaching([
$data['user_id'] => ['role_in_section' => $data['role_in_section']],
]);
return back()->with('success', 'Membre ajouté.');
}
public function removeMembre(Section $section, User $user): RedirectResponse
{
$section->membres()->detach($user->id);
return back()->with('success', 'Membre retiré.');
}
}
app/Http/Controllers/Admin/SourceTypeController.php
+105
View File
@@ -0,0 +1,105 @@
<?php
namespace App\Http\Controllers\Admin;
use App\Http\Controllers\Controller;
use App\Http\Requests\Admin\StoreSourceTypeFieldRequest;
use App\Http\Requests\Admin\StoreSourceTypeRequest;
use App\Models\SourceType;
use App\Models\SourceTypeField;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\View\View;
class SourceTypeController extends Controller
{
public function index(): View
{
$sourceTypes = SourceType::withCount('sources')->orderBy('nom')->paginate(25);
return view('admin.source-types.index', compact('sourceTypes'));
}
public function create(): View
{
return view('admin.source-types.create');
}
public function store(StoreSourceTypeRequest $request): RedirectResponse
{
$sourceType = SourceType::create($request->validated());
return redirect()->route('admin.source-types.show', $sourceType)
->with('success', 'Type de source créé. Ajoutez maintenant ses champs.');
}
public function show(SourceType $sourceType): View
{
$sourceType->load('fields');
return view('admin.source-types.show', compact('sourceType'));
}
public function edit(SourceType $sourceType): View
{
return view('admin.source-types.edit', compact('sourceType'));
}
public function update(StoreSourceTypeRequest $request, SourceType $sourceType): RedirectResponse
{
$sourceType->update($request->validated());
return redirect()->route('admin.source-types.show', $sourceType)
->with('success', 'Type de source mis à jour.');
}
public function destroy(SourceType $sourceType): RedirectResponse
{
if ($sourceType->sources()->exists()) {
return back()->with('error', 'Impossible de supprimer un type utilisé par des sources.');
}
$sourceType->delete();
return redirect()->route('admin.source-types.index')
->with('success', 'Type de source supprimé.');
}
public function storeField(StoreSourceTypeFieldRequest $request, SourceType $sourceType): RedirectResponse
{
$maxOrder = $sourceType->fields()->max('order') ?? -1;
$data = $request->validated();
if ($request->filled('options_raw')) {
$data['options'] = array_filter(array_map('trim', explode("\n", $request->input('options_raw'))));
}
$sourceType->fields()->create([...$data, 'order' => $maxOrder + 1]);
return back()->with('success', 'Champ ajouté.');
}
public function updateField(StoreSourceTypeFieldRequest $request, SourceType $sourceType, SourceTypeField $field): RedirectResponse
{
abort_if($field->source_type_id !== $sourceType->id, 404);
$field->update($request->validated());
return back()->with('success', 'Champ mis à jour.');
}
public function destroyField(SourceType $sourceType, SourceTypeField $field): RedirectResponse
{
abort_if($field->source_type_id !== $sourceType->id, 404);
if ($sourceType->sources()->exists()) {
return back()->with('error', 'Impossible de supprimer un champ d\'un type déjà utilisé par des sources (les relevés existants conservent leurs données).');
}
$field->delete();
return back()->with('success', 'Champ supprimé.');
}
public function reorderFields(Request $request, SourceType $sourceType): RedirectResponse
{
$ordered = $request->validate(['ids' => ['required', 'array'], 'ids.*' => ['integer']])['ids'];
foreach ($ordered as $position => $id) {
$sourceType->fields()->where('id', $id)->update(['order' => $position]);
}
return back()->with('success', 'Ordre mis à jour.');
}
}
app/Http/Controllers/Auth/AuthenticatedSessionController.php
+47
View File
@@ -0,0 +1,47 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use App\Http\Requests\Auth\LoginRequest;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Illuminate\View\View;
class AuthenticatedSessionController extends Controller
{
/**
* Display the login view.
*/
public function create(): View
{
return view('auth.login');
}
/**
* Handle an incoming authentication request.
*/
public function store(LoginRequest $request): RedirectResponse
{
$request->authenticate();
$request->session()->regenerate();
return redirect()->intended(route('dashboard', absolute: false));
}
/**
* Destroy an authenticated session.
*/
public function destroy(Request $request): RedirectResponse
{
Auth::guard('web')->logout();
$request->session()->invalidate();
$request->session()->regenerateToken();
return redirect('/');
}
}
app/Http/Controllers/Auth/ConfirmablePasswordController.php
+40
View File
@@ -0,0 +1,40 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Illuminate\Validation\ValidationException;
use Illuminate\View\View;
class ConfirmablePasswordController extends Controller
{
/**
* Show the confirm password view.
*/
public function show(): View
{
return view('auth.confirm-password');
}
/**
* Confirm the user's password.
*/
public function store(Request $request): RedirectResponse
{
if (! Auth::guard('web')->validate([
'email' => $request->user()->email,
'password' => $request->password,
])) {
throw ValidationException::withMessages([
'password' => __('auth.password'),
]);
}
$request->session()->put('auth.password_confirmed_at', time());
return redirect()->intended(route('dashboard', absolute: false));
}
}
app/Http/Controllers/Auth/EmailVerificationNotificationController.php
+24
View File
@@ -0,0 +1,24 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
class EmailVerificationNotificationController extends Controller
{
/**
* Send a new email verification notification.
*/
public function store(Request $request): RedirectResponse
{
if ($request->user()->hasVerifiedEmail()) {
return redirect()->intended(route('dashboard', absolute: false));
}
$request->user()->sendEmailVerificationNotification();
return back()->with('status', 'verification-link-sent');
}
}
app/Http/Controllers/Auth/EmailVerificationPromptController.php
+21
View File
@@ -0,0 +1,21 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\View\View;
class EmailVerificationPromptController extends Controller
{
/**
* Display the email verification prompt.
*/
public function __invoke(Request $request): RedirectResponse|View
{
return $request->user()->hasVerifiedEmail()
? redirect()->intended(route('dashboard', absolute: false))
: view('auth.verify-email');
}
}
app/Http/Controllers/Auth/NewPasswordController.php
+63
View File
@@ -0,0 +1,63 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use App\Models\User;
use Illuminate\Auth\Events\PasswordReset;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Password;
use Illuminate\Support\Str;
use Illuminate\Validation\Rules;
use Illuminate\Validation\ValidationException;
use Illuminate\View\View;
class NewPasswordController extends Controller
{
/**
* Display the password reset view.
*/
public function create(Request $request): View
{
return view('auth.reset-password', ['request' => $request]);
}
/**
* Handle an incoming new password request.
*
* @throws ValidationException
*/
public function store(Request $request): RedirectResponse
{
$request->validate([
'token' => ['required'],
'email' => ['required', 'email'],
'password' => ['required', 'confirmed', Rules\Password::defaults()],
]);
// Here we will attempt to reset the user's password. If it is successful we
// will update the password on an actual user model and persist it to the
// database. Otherwise we will parse the error and return the response.
$status = Password::reset(
$request->only('email', 'password', 'password_confirmation', 'token'),
function (User $user) use ($request) {
$user->forceFill([
'password' => Hash::make($request->password),
'remember_token' => Str::random(60),
])->save();
event(new PasswordReset($user));
}
);
// If the password was successfully reset, we will redirect the user back to
// the application's home authenticated view. If there is an error we can
// redirect them back to where they came from with their error message.
return $status == Password::PASSWORD_RESET
? redirect()->route('login')->with('status', __($status))
: back()->withInput($request->only('email'))
->withErrors(['email' => __($status)]);
}
}
app/Http/Controllers/Auth/PasswordController.php
+29
View File
@@ -0,0 +1,29 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Hash;
use Illuminate\Validation\Rules\Password;
class PasswordController extends Controller
{
/**
* Update the user's password.
*/
public function update(Request $request): RedirectResponse
{
$validated = $request->validateWithBag('updatePassword', [
'current_password' => ['required', 'current_password'],
'password' => ['required', Password::defaults(), 'confirmed'],
]);
$request->user()->update([
'password' => Hash::make($validated['password']),
]);
return back()->with('status', 'password-updated');
}
}
app/Http/Controllers/Auth/PasswordResetLinkController.php
+45
View File
@@ -0,0 +1,45 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Password;
use Illuminate\Validation\ValidationException;
use Illuminate\View\View;
class PasswordResetLinkController extends Controller
{
/**
* Display the password reset link request view.
*/
public function create(): View
{
return view('auth.forgot-password');
}
/**
* Handle an incoming password reset link request.
*
* @throws ValidationException
*/
public function store(Request $request): RedirectResponse
{
$request->validate([
'email' => ['required', 'email'],
]);
// We will send the password reset link to this user. Once we have attempted
// to send the link, we will examine the response then see the message we
// need to show to the user. Finally, we'll send out a proper response.
$status = Password::sendResetLink(
$request->only('email')
);
return $status == Password::RESET_LINK_SENT
? back()->with('status', __($status))
: back()->withInput($request->only('email'))
->withErrors(['email' => __($status)]);
}
}
app/Http/Controllers/Auth/RegisteredUserController.php
+51
View File
@@ -0,0 +1,51 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use App\Models\User;
use Illuminate\Auth\Events\Registered;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
use Illuminate\Validation\Rules;
use Illuminate\Validation\ValidationException;
use Illuminate\View\View;
class RegisteredUserController extends Controller
{
/**
* Display the registration view.
*/
public function create(): View
{
return view('auth.register');
}
/**
* Handle an incoming registration request.
*
* @throws ValidationException
*/
public function store(Request $request): RedirectResponse
{
$request->validate([
'name' => ['required', 'string', 'max:255'],
'email' => ['required', 'string', 'lowercase', 'email', 'max:255', 'unique:'.User::class],
'password' => ['required', 'confirmed', Rules\Password::defaults()],
]);
$user = User::create([
'name' => $request->name,
'email' => $request->email,
'password' => Hash::make($request->password),
]);
event(new Registered($user));
Auth::login($user);
return redirect(route('dashboard', absolute: false));
}
}
app/Http/Controllers/Auth/VerifyEmailController.php
+27
View File
@@ -0,0 +1,27 @@
<?php
namespace App\Http\Controllers\Auth;
use App\Http\Controllers\Controller;
use Illuminate\Auth\Events\Verified;
use Illuminate\Foundation\Auth\EmailVerificationRequest;
use Illuminate\Http\RedirectResponse;
class VerifyEmailController extends Controller
{
/**
* Mark the authenticated user's email address as verified.
*/
public function __invoke(EmailVerificationRequest $request): RedirectResponse
{
if ($request->user()->hasVerifiedEmail()) {
return redirect()->intended(route('dashboard', absolute: false).'?verified=1');
}
if ($request->user()->markEmailAsVerified()) {
event(new Verified($request->user()));
}
return redirect()->intended(route('dashboard', absolute: false).'?verified=1');
}
}
app/Http/Controllers/Controller.php
+8
View File
@@ -0,0 +1,8 @@
<?php
namespace App\Http\Controllers;
abstract class Controller
{
//
}
app/Http/Controllers/LieuController.php
+107
View File
@@ -0,0 +1,107 @@
<?php
namespace App\Http\Controllers;
use App\Http\Requests\StoreLieuRequest;
use App\Http\Requests\UpdateLieuRequest;
use App\Models\Lieu;
use Illuminate\Http\RedirectResponse;
use Illuminate\View\View;
class LieuController extends Controller
{
public function index(): View
{
$this->authorize('viewAny', Lieu::class);
// Arbre complet trié par nom_long pour l'affichage
$lieux = Lieu::with('parent')
->orderBy('nom_long')
->paginate(50);
return view('lieux.index', compact('lieux'));
}
public function create(): View
{
$this->authorize('create', Lieu::class);
$parents = Lieu::orderBy('nom_long')->get(['id', 'nom_long']);
return view('lieux.create', compact('parents'));
}
public function store(StoreLieuRequest $request): RedirectResponse
{
$lieu = Lieu::create($request->validated());
return redirect()->route('lieux.show', $lieu)
->with('success', 'Lieu créé avec succès.');
}
public function show(Lieu $lieu): View
{
$this->authorize('view', $lieu);
$lieu->load('parent', 'enfants');
return view('lieux.show', compact('lieu'));
}
public function edit(Lieu $lieu): View
{
$this->authorize('update', $lieu);
// Exclure le lieu lui-même et ses descendants pour éviter les cycles
$descendants = $this->getDescendantIds($lieu);
$parents = Lieu::whereNotIn('id', [...$descendants, $lieu->id])
->orderBy('nom_long')
->get(['id', 'nom_long']);
return view('lieux.edit', compact('lieu', 'parents'));
}
public function update(UpdateLieuRequest $request, Lieu $lieu): RedirectResponse
{
$lieu->update($request->validated());
// Recalculer nom_long des enfants en cascade
$this->recalculerEnfants($lieu);
return redirect()->route('lieux.show', $lieu)
->with('success', 'Lieu mis à jour.');
}
public function destroy(Lieu $lieu): RedirectResponse
{
$this->authorize('delete', $lieu);
if ($lieu->enfants()->exists()) {
return back()->with('error', 'Impossible de supprimer un lieu qui a des enfants.');
}
$lieu->delete();
return redirect()->route('lieux.index')
->with('success', 'Lieu supprimé.');
}
private function getDescendantIds(Lieu $lieu): array
{
$ids = [];
foreach ($lieu->enfants as $enfant) {
$ids[] = $enfant->id;
$ids = array_merge($ids, $this->getDescendantIds($enfant));
}
return $ids;
}
private function recalculerEnfants(Lieu $lieu): void
{
$lieu->load('enfants');
foreach ($lieu->enfants as $enfant) {
$enfant->update([]); // déclenche le booted() hook qui recalcule nom_long
$this->recalculerEnfants($enfant);
}
}
}
app/Http/Controllers/ProfileController.php
+60
View File
@@ -0,0 +1,60 @@
<?php
namespace App\Http\Controllers;
use App\Http\Requests\ProfileUpdateRequest;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Redirect;
use Illuminate\View\View;
class ProfileController extends Controller
{
/**
* Display the user's profile form.
*/
public function edit(Request $request): View
{
return view('profile.edit', [
'user' => $request->user(),
]);
}
/**
* Update the user's profile information.
*/
public function update(ProfileUpdateRequest $request): RedirectResponse
{
$request->user()->fill($request->validated());
if ($request->user()->isDirty('email')) {
$request->user()->email_verified_at = null;
}
$request->user()->save();
return Redirect::route('profile.edit')->with('status', 'profile-updated');
}
/**
* Delete the user's account.
*/
public function destroy(Request $request): RedirectResponse
{
$request->validateWithBag('userDeletion', [
'password' => ['required', 'current_password'],
]);
$user = $request->user();
Auth::logout();
$user->delete();
$request->session()->invalidate();
$request->session()->regenerateToken();
return Redirect::to('/');
}
}
app/Http/Controllers/SourceController.php
+143
View File
@@ -0,0 +1,143 @@
<?php
namespace App\Http\Controllers;
use App\Enums\SourceStatus;
use App\Http\Requests\StoreSourceRequest;
use App\Http\Requests\UpdateSourceRequest;
use App\Models\Depot;
use App\Models\Source;
use App\Models\SourceType;
use App\Models\User;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\View\View;
class SourceController extends Controller
{
public function index(): View
{
$this->authorize('viewAny', Source::class);
$user = auth()->user();
$query = Source::with(['sourceType', 'depot'])
->withCount('releves');
if (! $user->isSectionManager()) {
// Membre : sources terminées + sources assignées
$assignedIds = $user->sourcesAssignees()->pluck('sources.id');
$query->where(function ($q) use ($assignedIds) {
$q->where('status', SourceStatus::Termine)
->orWhereIn('id', $assignedIds);
});
}
$sources = $query->orderBy('nom')->paginate(25);
return view('sources.index', compact('sources'));
}
public function create(): View
{
$this->authorize('create', Source::class);
$sourceTypes = SourceType::orderBy('nom')->get(['id', 'nom']);
$depots = Depot::orderBy('nom')->get(['id', 'nom']);
return view('sources.create', compact('sourceTypes', 'depots'));
}
public function store(StoreSourceRequest $request): RedirectResponse
{
$source = Source::create($request->validated());
return redirect()->route('sources.show', $source)
->with('success', 'Source créée.');
}
public function show(Source $source): View
{
$this->authorize('view', $source);
$source->load(['sourceType.fields', 'depot', 'membres', 'releves']);
$availableUsers = User::orderBy('name')->get(['id', 'name', 'email']);
return view('sources.show', compact('source', 'availableUsers'));
}
public function edit(Source $source): View
{
$this->authorize('update', $source);
$sourceTypes = SourceType::orderBy('nom')->get(['id', 'nom']);
$depots = Depot::orderBy('nom')->get(['id', 'nom']);
return view('sources.edit', compact('source', 'sourceTypes', 'depots'));
}
public function update(UpdateSourceRequest $request, Source $source): RedirectResponse
{
$source->update($request->validated());
return redirect()->route('sources.show', $source)
->with('success', 'Source mise à jour.');
}
public function destroy(Source $source): RedirectResponse
{
$this->authorize('delete', $source);
$source->delete();
return redirect()->route('sources.index')
->with('success', 'Source supprimée.');
}
public function addMembre(Request $request, Source $source): RedirectResponse
{
$this->authorize('assignMembre', $source);
$data = $request->validate([
'user_id' => ['required', 'exists:users,id'],
]);
$source->membres()->syncWithoutDetaching([$data['user_id']]);
// Passer automatiquement en_cours si la source est à_faire
if ($source->status === SourceStatus::AFaire) {
$source->update(['status' => SourceStatus::EnCours]);
}
return back()->with('success', 'Membre assigné.');
}
public function removeMembre(Source $source, User $user): RedirectResponse
{
$this->authorize('assignMembre', $source);
$source->membres()->detach($user->id);
return back()->with('success', 'Membre retiré.');
}
public function transition(Request $request, Source $source): RedirectResponse
{
$this->authorize('transition', $source);
$data = $request->validate([
'status' => ['required', 'string'],
]);
$newStatus = SourceStatus::from($data['status']);
if (! $source->canTransitionTo($newStatus, auth()->user())) {
return back()->with('error', 'Transition non autorisée.');
}
$source->update(['status' => $newStatus]);
return back()->with('success', 'Statut mis à jour : ' . $newStatus->label());
}
}
app/Http/Middleware/RoleMiddleware.php
+33
View File
@@ -0,0 +1,33 @@
<?php
namespace App\Http\Middleware;
use App\Enums\UserRole;
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;
class RoleMiddleware
{
public function handle(Request $request, Closure $next, string ...$roles): Response
{
$user = $request->user();
if (! $user) {
return redirect()->route('login');
}
foreach ($roles as $role) {
$enum = UserRole::from($role);
if ($user->role === $enum) {
return $next($request);
}
// admin a tous les droits
if ($user->role === UserRole::Admin) {
return $next($request);
}
}
abort(403);
}
}
app/Http/Requests/Admin/StoreDepotRequest.php
+20
View File
@@ -0,0 +1,20 @@
<?php
namespace App\Http\Requests\Admin;
use Illuminate\Foundation\Http\FormRequest;
class StoreDepotRequest extends FormRequest
{
public function authorize(): bool { return $this->user()->isAdmin(); }
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'description' => ['nullable', 'string'],
'adresse_postale' => ['nullable', 'string', 'max:500'],
'url' => ['nullable', 'url', 'max:500'],
];
}
}
app/Http/Requests/Admin/StoreSectionRequest.php
+21
View File
@@ -0,0 +1,21 @@
<?php
namespace App\Http\Requests\Admin;
use Illuminate\Foundation\Http\FormRequest;
class StoreSectionRequest extends FormRequest
{
public function authorize(): bool { return $this->user()->isAdmin(); }
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'lieu_id' => ['nullable', 'integer', 'exists:lieux,id'],
'adresse' => ['nullable', 'string', 'max:500'],
'email_contact' => ['nullable', 'email', 'max:255'],
'url' => ['nullable', 'url', 'max:500'],
];
}
}
app/Http/Requests/Admin/StoreSourceTypeFieldRequest.php
+31
View File
@@ -0,0 +1,31 @@
<?php
namespace App\Http\Requests\Admin;
use App\Enums\FieldType;
use Illuminate\Foundation\Http\FormRequest;
use Illuminate\Validation\Rules\Enum;
class StoreSourceTypeFieldRequest extends FormRequest
{
public function authorize(): bool { return $this->user()->isAdmin(); }
public function rules(): array
{
return [
'name' => ['required', 'string', 'max:100', 'regex:/^[a-z_]+$/'],
'label' => ['required', 'string', 'max:255'],
'type' => ['required', new Enum(FieldType::class)],
'required' => ['boolean'],
'options' => ['nullable', 'array'],
'options.*'=> ['string', 'max:255'],
];
}
public function messages(): array
{
return [
'name.regex' => 'Le nom technique ne peut contenir que des lettres minuscules et des underscores.',
];
}
}
app/Http/Requests/Admin/StoreSourceTypeRequest.php
+20
View File
@@ -0,0 +1,20 @@
<?php
namespace App\Http\Requests\Admin;
use App\Enums\FieldType;
use Illuminate\Foundation\Http\FormRequest;
use Illuminate\Validation\Rules\Enum;
class StoreSourceTypeRequest extends FormRequest
{
public function authorize(): bool { return $this->user()->isAdmin(); }
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'description' => ['nullable', 'string'],
];
}
}
app/Http/Requests/Admin/UpdateSectionRequest.php
+21
View File
@@ -0,0 +1,21 @@
<?php
namespace App\Http\Requests\Admin;
use Illuminate\Foundation\Http\FormRequest;
class UpdateSectionRequest extends FormRequest
{
public function authorize(): bool { return $this->user()->isAdmin(); }
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'lieu_id' => ['nullable', 'integer', 'exists:lieux,id'],
'adresse' => ['nullable', 'string', 'max:500'],
'email_contact' => ['nullable', 'email', 'max:255'],
'url' => ['nullable', 'url', 'max:500'],
];
}
}
app/Http/Requests/Auth/LoginRequest.php
+86
View File
@@ -0,0 +1,86 @@
<?php
namespace App\Http\Requests\Auth;
use Illuminate\Auth\Events\Lockout;
use Illuminate\Contracts\Validation\ValidationRule;
use Illuminate\Foundation\Http\FormRequest;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\Str;
use Illuminate\Validation\ValidationException;
class LoginRequest extends FormRequest
{
/**
* Determine if the user is authorized to make this request.
*/
public function authorize(): bool
{
return true;
}
/**
* Get the validation rules that apply to the request.
*
* @return array<string, ValidationRule|array<mixed>|string>
*/
public function rules(): array
{
return [
'email' => ['required', 'string', 'email'],
'password' => ['required', 'string'],
];
}
/**
* Attempt to authenticate the request's credentials.
*
* @throws ValidationException
*/
public function authenticate(): void
{
$this->ensureIsNotRateLimited();
if (! Auth::attempt($this->only('email', 'password'), $this->boolean('remember'))) {
RateLimiter::hit($this->throttleKey());
throw ValidationException::withMessages([
'email' => trans('auth.failed'),
]);
}
RateLimiter::clear($this->throttleKey());
}
/**
* Ensure the login request is not rate limited.
*
* @throws ValidationException
*/
public function ensureIsNotRateLimited(): void
{
if (! RateLimiter::tooManyAttempts($this->throttleKey(), 5)) {
return;
}
event(new Lockout($this));
$seconds = RateLimiter::availableIn($this->throttleKey());
throw ValidationException::withMessages([
'email' => trans('auth.throttle', [
'seconds' => $seconds,
'minutes' => ceil($seconds / 60),
]),
]);
}
/**
* Get the rate limiting throttle key for the request.
*/
public function throttleKey(): string
{
return Str::transliterate(Str::lower($this->string('email')).'|'.$this->ip());
}
}
app/Http/Requests/ProfileUpdateRequest.php
+31
View File
@@ -0,0 +1,31 @@
<?php
namespace App\Http\Requests;
use App\Models\User;
use Illuminate\Contracts\Validation\ValidationRule;
use Illuminate\Foundation\Http\FormRequest;
use Illuminate\Validation\Rule;
class ProfileUpdateRequest extends FormRequest
{
/**
* Get the validation rules that apply to the request.
*
* @return array<string, ValidationRule|array<mixed>|string>
*/
public function rules(): array
{
return [
'name' => ['required', 'string', 'max:255'],
'email' => [
'required',
'string',
'lowercase',
'email',
'max:255',
Rule::unique(User::class)->ignore($this->user()->id),
],
];
}
}
app/Http/Requests/StoreLieuRequest.php
+25
View File
@@ -0,0 +1,25 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class StoreLieuRequest extends FormRequest
{
public function authorize(): bool
{
return $this->user()->isAdmin();
}
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'code' => ['nullable', 'string', 'max:20'],
'lieu_parent_id'=> ['nullable', 'integer', 'exists:lieux,id'],
'latitude' => ['nullable', 'numeric', 'between:-90,90'],
'longitude' => ['nullable', 'numeric', 'between:-180,180'],
'note' => ['nullable', 'string'],
];
}
}
app/Http/Requests/StoreSourceRequest.php
+25
View File
@@ -0,0 +1,25 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class StoreSourceRequest extends FormRequest
{
public function authorize(): bool
{
return $this->user()->isSectionManager();
}
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'description' => ['nullable', 'string'],
'source_type_id' => ['required', 'integer', 'exists:source_types,id'],
'depot_id' => ['nullable', 'integer', 'exists:depots,id'],
'cote' => ['nullable', 'string', 'max:255'],
'auteur' => ['nullable', 'string', 'max:255'],
];
}
}
app/Http/Requests/UpdateLieuRequest.php
+28
View File
@@ -0,0 +1,28 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class UpdateLieuRequest extends FormRequest
{
public function authorize(): bool
{
return $this->user()->isAdmin();
}
public function rules(): array
{
$lieuId = $this->route('lieu')->id;
return [
'nom' => ['required', 'string', 'max:255'],
'code' => ['nullable', 'string', 'max:20'],
// Interdit de se choisir soi-même ou un descendant comme parent
'lieu_parent_id'=> ['nullable', 'integer', 'exists:lieux,id', "not_in:{$lieuId}"],
'latitude' => ['nullable', 'numeric', 'between:-90,90'],
'longitude' => ['nullable', 'numeric', 'between:-180,180'],
'note' => ['nullable', 'string'],
];
}
}
app/Http/Requests/UpdateSourceRequest.php
+25
View File
@@ -0,0 +1,25 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class UpdateSourceRequest extends FormRequest
{
public function authorize(): bool
{
return $this->user()->isSectionManager();
}
public function rules(): array
{
return [
'nom' => ['required', 'string', 'max:255'],
'description' => ['nullable', 'string'],
'source_type_id' => ['required', 'integer', 'exists:source_types,id'],
'depot_id' => ['nullable', 'integer', 'exists:depots,id'],
'cote' => ['nullable', 'string', 'max:255'],
'auteur' => ['nullable', 'string', 'max:255'],
];
}
}