chore : bump version to v1.9.11

chore(infra) : remove release artefact pipeline
Keep only Docker-based deployment workflow. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-02 12:36:04 +00:00 · 2026-04-02 14:35:51 +02:00 · 2026-04-02 10:05:05 +00:00 · 2026-04-02 08:11:35 +02:00 · 2026-04-01 14:18:42 +00:00 · 2026-04-01 16:18:32 +02:00
30 changed files with 230 additions and 90 deletions
--- a/.dockerignore
+++ b/.dockerignore
@@ -2,10 +2,10 @@
 .gitea
 .env.local
 .env.test
-docker/
+infra/dev/
-deploy/docker/docker-compose.prod.yml
+infra/prod/docker-compose.yml
-deploy/docker/deploy.sh
+infra/prod/deploy.sh
-deploy/docker/.env.example
+infra/prod/.env.example
 frontend/node_modules
 frontend/.nuxt
 frontend/.output
--- a/.gitea/workflows/build-docker.yml
+++ b/.gitea/workflows/build-docker.yml
@@ -19,7 +19,7 @@ jobs:
      - name: Build Docker image
        run: |
          docker build \
-            -f deploy/docker/Dockerfile.prod \
+            -f infra/prod/Dockerfile \
            -t gitea.malio.fr/malio-dev/inventory:${{ gitea.ref_name }} \
            -t gitea.malio.fr/malio-dev/inventory:latest \
            .
--- a/.gitea/workflows/release-artefact.yml
+++ b/.gitea/workflows/release-artefact.yml
@@ -1,67 +0,0 @@
 name: Build Release Artefact
 on:
  push:
    tags:
      - "v*"
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
          persist-credentials: false
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
        with:
          php-version: "8.4"
          extensions: mbstring, intl, pdo_pgsql, xml, curl, zip, gd
      - name: Setup Node
        uses: actions/setup-node@v4
        with:
          node-version: "lts/*"
      - name: Install backend deps (prod)
        env:
          APP_ENV: prod
          APP_DEBUG: "0"
        run: composer install --no-dev --optimize-autoloader --no-interaction --no-scripts
      - name: Build frontend (static)
        run: |
          cd frontend
          npm ci
          CI=1 NUXT_TELEMETRY_DISABLED=1 NUXT_PUBLIC_API_BASE_URL=/api NUXT_PUBLIC_APP_BASE=/ npm run generate
          test -f .output/public/index.html
      - name: Build artefact
        shell: bash
        run: |
          set -euo pipefail
          mkdir -p release
          tar -czf "release/inventory-${GITHUB_REF_NAME}.tar.gz" \
            .env \
            bin \
            config \
            migrations \
            public \
            src \
            templates \
            vendor \
            composer.json \
            composer.lock \
            symfony.lock \
            VERSION \
            frontend/.output
      - name: Create Release
        uses: softprops/action-gh-release@v2
        with:
          files: release/inventory-${{ github.ref_name }}.tar.gz
        env:
          GITHUB_TOKEN: ${{ secrets.REGISTRY_TOKEN }}
--- a/.gitignore
+++ b/.gitignore
@@ -20,7 +20,7 @@
 ###< phpunit/phpunit ###
 ###> docker ###
-docker/.env.docker.local
+infra/dev/.env.docker.local
 ###< docker ###
 ###> migration archives ###
 /_archives/
--- a/README.md
+++ b/README.md
@@ -57,7 +57,7 @@ make start
 make install
 ```
-> Si `make start` échoue sur le port de la BDD, modifier `POSTGRES_PORT` dans `docker/.env.docker.local`.
+> Si `make start` échoue sur le port de la BDD, modifier `POSTGRES_PORT` dans `infra/dev/.env.docker.local`.
 ### Que fait `make install` ?
@@ -254,7 +254,7 @@ Configuration PhpStorm / VSCode :
 - **Port** : `8081`
 - **Path mapping** : racine du projet → `/var/www/html`
-> Sous WSL, modifier `XDEBUG_CLIENT_HOST` dans `docker/.env.docker.local` avec votre IP locale.
+> Sous WSL, modifier `XDEBUG_CLIENT_HOST` dans `infra/dev/.env.docker.local` avec votre IP locale.
 ## Git
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@@ -55,6 +55,7 @@ security:
        - { path: ^/api/admin, roles: ROLE_ADMIN }
        - { path: ^/api/docs, roles: PUBLIC_ACCESS }
        - { path: ^/api/health$, roles: PUBLIC_ACCESS }
        - { path: ^/api/maintenance/check$, roles: PUBLIC_ACCESS }
        - { path: ^/_mcp, roles: ROLE_USER }
        - { path: ^/docs, roles: PUBLIC_ACCESS }
        - { path: ^/contexts, roles: PUBLIC_ACCESS }
--- a/config/version.yaml
+++ b/config/version.yaml
@@ -1,2 +1,2 @@
 parameters:
-    app.version: '1.9.8'
+    app.version: '1.9.11'
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -2,7 +2,7 @@ services:
  web:
    container_name: php-${DOCKER_APP_NAME}-apache
    build:
-      context: ./docker/php
+      context: ./infra/dev
      dockerfile: Dockerfile
      args:
        DOCKER_PHP_VERSION: ${DOCKER_PHP_VERSION}
@@ -20,9 +20,9 @@ services:
      - ~/.cache:/var/www/.cache # Pour la cache de composer
      - ~/.config:/var/www/.config # Pour la config de yarn
      - ~/.composer:/var/www/.composer # Pour la config de composer
-      - ./docker/php/config/php.ini:/usr/local/etc/php/php.ini
+      - ./infra/dev/php.ini:/usr/local/etc/php/php.ini
-      - ./docker/php/config/vhost.conf:/etc/apache2/sites-available/000-default.conf
+      - ./infra/dev/vhost.conf:/etc/apache2/sites-available/000-default.conf
-      - ./docker/php/config/docker-php-ext-xdebug.ini:/usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini
+      - ./infra/dev/xdebug.ini:/usr/local/etc/php/conf.d/docker-php-ext-xdebug.ini
      - ./LOG:/var/www/html/LOG
      - ./LOG/logs_apache:/var/log/apache2/
    extra_hosts:
--- a/frontend/app/composables/useMaintenance.ts
+++ b/frontend/app/composables/useMaintenance.ts
@@ -0,0 +1,30 @@
 import { ref } from 'vue'
 import { useApi } from './useApi'
 const maintenanceEnabled = ref(false)
 export function useMaintenance() {
    const { apiCall } = useApi()
    const loading = ref(false)
    const fetchStatus = async () => {
        const res = await apiCall<{ enabled: boolean }>('/admin/maintenance')
        if (res.success && res.data) {
            maintenanceEnabled.value = res.data.enabled
        }
    }
    const toggle = async () => {
        loading.value = true
        try {
            const res = await apiCall<{ enabled: boolean }>('/admin/maintenance', { method: 'PUT' })
            if (res.success && res.data) {
                maintenanceEnabled.value = res.data.enabled
            }
        } finally {
            loading.value = false
        }
    }
    return { maintenanceEnabled, loading, fetchStatus, toggle }
 }
--- a/frontend/app/middleware/profile.global.ts
+++ b/frontend/app/middleware/profile.global.ts
@@ -1,4 +1,4 @@
-import { useProfileSession, usePermissions } from "#imports";
+import { useProfileSession, usePermissions, useApi } from "#imports";
 export default defineNuxtRouteMiddleware(async (to) => {
  const { ensureSession, activeProfile } = useProfileSession();
@@ -12,9 +12,10 @@ export default defineNuxtRouteMiddleware(async (to) => {
    normalizedPath.startsWith("/profiles") ||
    fullPath.startsWith("/profiles") ||
    routeName.startsWith("profiles");
  const isMaintenanceRoute = normalizedPath === "/maintenance";
  // Redirect to login if no active profile
-  if (!activeProfile.value && !isProfilesRoute) {
+  if (!activeProfile.value && !isProfilesRoute && !isMaintenanceRoute) {
    return navigateTo("/profiles");
  }
@@ -29,5 +30,13 @@ export default defineNuxtRouteMiddleware(async (to) => {
      }
    }
    // Maintenance mode check for non-admin users
    if (!isAdmin.value && !isMaintenanceRoute && !isProfilesRoute) {
      const { apiCall } = useApi();
      const res = await apiCall<{ enabled: boolean }>('/maintenance/check');
      if (res.success && res.data?.enabled) {
        return navigateTo("/maintenance");
      }
    }
  }
 });
--- a/frontend/app/pages/admin/index.vue
+++ b/frontend/app/pages/admin/index.vue
@@ -1,5 +1,28 @@
 <template>
  <div class="container mx-auto p-6 max-w-6xl">
    <!-- Maintenance Mode -->
    <div class="alert mb-6" :class="maintenanceEnabled ? 'alert-warning' : 'alert-info'">
      <div class="flex items-center justify-between w-full">
        <div class="flex items-center gap-2">
          <span class="font-medium">Mode maintenance</span>
          <span v-if="maintenanceEnabled" class="badge badge-warning badge-sm">Actif</span>
          <span v-else class="badge badge-ghost badge-sm">Inactif</span>
        </div>
        <button
          class="btn btn-sm"
          :class="maintenanceEnabled ? 'btn-ghost' : 'btn-warning'"
          :disabled="maintenanceLoading"
          @click="handleToggleMaintenance"
        >
          <span v-if="maintenanceLoading" class="loading loading-spinner loading-xs" />
          {{ maintenanceEnabled ? 'Désactiver' : 'Activer' }}
        </button>
      </div>
      <p class="text-sm opacity-70 mt-1">
        {{ maintenanceEnabled ? 'Seuls les administrateurs peuvent accéder à l\'application.' : 'L\'application est accessible à tous les utilisateurs.' }}
      </p>
    </div>
    <div class="flex items-center justify-between mb-6">
      <h1 class="text-2xl font-bold">
        Administration des profils
@@ -153,9 +176,14 @@
 <script setup>
 import { ref, computed, onMounted } from 'vue'
 import DataTable from '~/components/common/DataTable.vue'
-import { useAdminProfiles } from '#imports'
+import { useAdminProfiles, useMaintenance } from '#imports'
 const { profiles, loading, fetchAll, createProfile, updateRole, setPassword, deactivateProfile } = useAdminProfiles()
 const { maintenanceEnabled, loading: maintenanceLoading, fetchStatus: fetchMaintenanceStatus, toggle: toggleMaintenance } = useMaintenance()
 const handleToggleMaintenance = async () => {
  await toggleMaintenance()
 }
 const loaded = ref(false)
 const isLoading = computed(() => loading.value || !loaded.value)
@@ -264,7 +292,7 @@ const handleDeactivate = async (profileId) => {
 }
 onMounted(async () => {
-  await fetchAll()
+  await Promise.all([fetchAll(), fetchMaintenanceStatus()])
  loaded.value = true
 })
 </script>
--- a/frontend/app/pages/maintenance.vue
+++ b/frontend/app/pages/maintenance.vue
@@ -0,0 +1,21 @@
 <template>
  <div class="min-h-screen flex items-center justify-center bg-base-200">
    <div class="text-center max-w-md">
      <h1 class="text-4xl font-bold mb-4">
        Maintenance
      </h1>
      <p class="text-lg text-base-content/70 mb-6">
        L'application est actuellement en maintenance. Veuillez réessayer ultérieurement.
      </p>
      <button class="btn btn-primary" @click="retry">
        Réessayer
      </button>
    </div>
  </div>
 </template>
 <script setup>
 const retry = () => {
  navigateTo('/')
 }
 </script>
--- a/infra/dev/.env.docker
+++ b/infra/dev/.env.docker
--- a/infra/dev/.env.docker.local
+++ b/infra/dev/.env.docker.local
--- a/docker/php/Dockerfile
+++ b/docker/php/Dockerfile
--- a/infra/dev/pgadmin/pgpass
+++ b/infra/dev/pgadmin/pgpass
--- a/infra/dev/pgadmin/servers.json
+++ b/infra/dev/pgadmin/servers.json
--- a/docker/php/config/php.ini
+++ b/docker/php/config/php.ini
--- a/docker/php/config/vhost.conf
+++ b/docker/php/config/vhost.conf
--- a/docker/php/config/docker-php-ext-xdebug.ini
+++ b/docker/php/config/docker-php-ext-xdebug.ini
--- a/deploy/docker/.env.example
+++ b/deploy/docker/.env.example
--- a/deploy/docker/Dockerfile.prod
+++ b/deploy/docker/Dockerfile.prod
@@ -61,8 +61,8 @@ RUN ln -sf /dev/stdout /var/log/nginx/access.log \
 RUN rm -f /etc/nginx/sites-enabled/default
 # Configs
-COPY deploy/docker/supervisord.conf /etc/supervisor/conf.d/app.conf
+COPY infra/prod/supervisord.conf /etc/supervisor/conf.d/app.conf
-COPY deploy/docker/nginx.conf /etc/nginx/sites-enabled/inventory.conf
+COPY infra/prod/nginx.conf /etc/nginx/sites-enabled/inventory.conf
 # Backend from stage 1
 COPY --from=backend-build /app /var/www/html
--- a/deploy/docker/deploy.sh
+++ b/deploy/docker/deploy.sh
--- a/deploy/docker/docker-compose.prod.yml
+++ b/deploy/docker/docker-compose.prod.yml
--- a/deploy/nginx/inventory-docker.conf
+++ b/deploy/nginx/inventory-docker.conf
--- a/deploy/docker/nginx.conf
+++ b/deploy/docker/nginx.conf
--- a/deploy/docker/supervisord.conf
+++ b/deploy/docker/supervisord.conf
--- a/8
+++ b/8
@@ -1,6 +1,6 @@
 # Permet d'utiliser un .env.docker.local pour override
-ENV_DEFAULT = docker/.env.docker
+ENV_DEFAULT = infra/dev/.env.docker
-ENV_LOCAL   = docker/.env.docker.local
+ENV_LOCAL   = infra/dev/.env.docker.local
 ENV_FILE    := $(if $(wildcard $(ENV_LOCAL)),$(ENV_LOCAL),$(ENV_DEFAULT))
 # Permet d'avoir les variables du fichier .env.docker.local
@@ -25,13 +25,13 @@ DATA_SQL_NORM				?= data_norm.sql
 #========================================================================================
 env-init:
-	@mkdir -p docker
+	@mkdir -p infra/dev
 	@cp --update=none $(ENV_DEFAULT) $(ENV_LOCAL)
 # Lance le container
 start: env-init
 	@echo "**** START CONTAINERS ****"
-	@cp --update=none docker/.env.docker docker/.env.docker.local
+	@cp --update=none infra/dev/.env.docker infra/dev/.env.docker.local
 	CURRENT_UID=$(shell id -u) CURRENT_GID=$(shell id -g) $(DOCKER_COMPOSE) up -d
 	@echo ""
 	@echo "URLs disponibles:"
--- a/src/Controller/MaintenanceController.php
+++ b/src/Controller/MaintenanceController.php
@@ -0,0 +1,58 @@
 <?php
 declare(strict_types=1);
 namespace App\Controller;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpKernel\KernelInterface;
 use Symfony\Component\Routing\Attribute\Route;
 final class MaintenanceController extends AbstractController
 {
    public function __construct(
        private readonly KernelInterface $kernel,
    ) {}
    #[Route('/api/maintenance/check', name: 'maintenance_check', methods: ['GET'])]
    public function check(): JsonResponse
    {
        return new JsonResponse([
            'enabled' => file_exists($this->flagPath()),
        ]);
    }
    #[Route('/api/admin/maintenance', name: 'admin_maintenance_status', methods: ['GET'])]
    public function status(): JsonResponse
    {
        $this->denyAccessUnlessGranted('ROLE_ADMIN');
        return new JsonResponse([
            'enabled' => file_exists($this->flagPath()),
        ]);
    }
    #[Route('/api/admin/maintenance', name: 'admin_maintenance_toggle', methods: ['PUT'])]
    public function toggle(): JsonResponse
    {
        $this->denyAccessUnlessGranted('ROLE_ADMIN');
        $path = $this->flagPath();
        if (file_exists($path)) {
            unlink($path);
            $enabled = false;
        } else {
            file_put_contents($path, (string) time());
            $enabled = true;
        }
        return new JsonResponse(['enabled' => $enabled]);
    }
    private function flagPath(): string
    {
        return $this->kernel->getProjectDir() . '/var/maintenance';
    }
 }
--- a/src/EventListener/MaintenanceModeListener.php
+++ b/src/EventListener/MaintenanceModeListener.php
@@ -0,0 +1,60 @@
 <?php
 declare(strict_types=1);
 namespace App\EventListener;
 use Symfony\Component\EventDispatcher\Attribute\AsEventListener;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpKernel\Event\RequestEvent;
 use Symfony\Component\HttpKernel\KernelInterface;
 use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
 #[AsEventListener(event: 'kernel.request', priority: 10)]
 final class MaintenanceModeListener
 {
    public function __construct(
        private readonly KernelInterface $kernel,
        private readonly TokenStorageInterface $tokenStorage,
    ) {}
    public function __invoke(RequestEvent $event): void
    {
        if (!$event->isMainRequest()) {
            return;
        }
        $flagFile = $this->kernel->getProjectDir() . '/var/maintenance';
        if (!file_exists($flagFile)) {
            return;
        }
        $request = $event->getRequest();
        $path = $request->getPathInfo();
        // Always allow maintenance status endpoint and session endpoints
        if (str_starts_with($path, '/api/admin/maintenance')
            || str_starts_with($path, '/api/maintenance/check')
            || str_starts_with($path, '/api/session')
            || str_starts_with($path, '/api/health')
            || str_starts_with($path, '/api/docs')
        ) {
            return;
        }
        // Allow admin users through
        $token = $this->tokenStorage->getToken();
        if ($token && $token->getUser()) {
            $roles = $token->getRoleNames();
            if (in_array('ROLE_ADMIN', $roles, true)) {
                return;
            }
        }
        $event->setResponse(new JsonResponse(
            ['message' => 'Application en maintenance. Veuillez réessayer ultérieurement.'],
            JsonResponse::HTTP_SERVICE_UNAVAILABLE,
        ));
    }
 }
Author	SHA1	Message	Date
gitea-actions	3cf9db8829	chore : bump version to v1.9.11 All checks were successful Auto Tag Develop / tag (push) Successful in 8s Details Build & Push Docker Image / build (push) Successful in 41s Details	2026-04-02 12:36:04 +00:00
Matthieu	12c2b1e1b3	chore(infra) : remove release artefact pipeline All checks were successful Auto Tag Develop / tag (push) Successful in 11s Details Keep only Docker-based deployment workflow. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-02 14:35:51 +02:00
gitea-actions	b92c09cf55	chore : bump version to v1.9.10 Some checks failed Auto Tag Develop / tag (push) Successful in 8s Details Build & Push Docker Image / build (push) Successful in 3m22s Details Build Release Artefact / build (push) Failing after 1m42s Details	2026-04-02 10:05:05 +00:00
r-dev	18cb9d5d80	refactor(infra) : reorganize docker config into infra/dev and infra/prod Some checks failed Auto Tag Develop / tag (push) Has been cancelled Details Align project structure with Lesstime: move docker/ to infra/dev/ and deploy/ to infra/prod/. Update all references in docker-compose, makefile, CI workflow, Dockerfile, .gitignore and .dockerignore. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-02 08:11:35 +02:00
gitea-actions	4ba134dd69	chore : bump version to v1.9.9 Some checks failed Auto Tag Develop / tag (push) Successful in 6s Details Build & Push Docker Image / build (push) Successful in 32s Details Build Release Artefact / build (push) Failing after 1m27s Details	2026-04-01 14:18:42 +00:00
Matthieu	5e7a744151	feat : add maintenance mode toggle in admin panel All checks were successful Auto Tag Develop / tag (push) Successful in 8s Details - Backend: MaintenanceModeListener blocks non-admin API requests when var/maintenance flag file exists. MaintenanceController provides toggle (PUT /api/admin/maintenance) and public check endpoint (GET /api/maintenance/check). - Frontend: Toggle button in admin page, maintenance.vue page for blocked users, middleware redirects non-admins to /maintenance. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 16:18:32 +02:00
`@@ -1,2 +1,2 @@`
	`parameters:`	`parameters:`
	`app.version: '1.9.8'`	`app.version: '1.9.11'`