Inventory

Author	SHA1	Message	Date
r-dev	b342d0e50a	fix(security) : harden auth, session, document access and health endpoint - Remove orphaned PUBLIC_ACCESS rule for deleted /api/test route - Remove JWT login firewall (app is session-based only) - Set APP_SECRET placeholder (real value must be in .env.local) - Remove JWT env vars from .env - Add session regeneration on login (prevent session fixation) - Remove Document.path from API serialization groups (prevent path leak) - Restrict health check details to ROLE_ADMIN (anonymes get status only) - Add path traversal guard in DocumentStorageService - Convert CreateProfileCommand password to interactive hidden prompt - Restrict Profile Get endpoint to ROLE_ADMIN - Change api firewall to stateless: false (matches session-based auth) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-08 13:42:09 +01:00
r-dev	bab13e5c57	chore : clean project config — untrack .idea/, gitignore Zone.Identifier and frontend/, blank JWT secret Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-08 02:01:54 +01:00
r-dev	6f9e1ec626	chore(config) : mise a jour configuration Symfony et Docker - Installation bundles: lexik/jwt, vich/uploader, symfony/uid - Configuration Docker avec pgAdmin - Variables environnement pour JWT et PostgreSQL - VirtualHost Apache pour Symfony public/ Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>	2026-01-10 19:42:01 +01:00
AUTIN Tristan	8ea211835f	First commit	2026-01-06 10:50:33 +01:00