fix(absences) : durcissement RGPD des données RH des utilisateurs

Suite à la revue de conformité du module absences.

Fuite corrigée : GET /api/users et /api/users/{id} n'avaient aucun contrôle
d'accès alors que le groupe user:list exposait les données RH/familiales
(date d'embauche, contrat, soldes de CP, rôles…). Tout utilisateur authentifié
pouvait donc lire ces informations sur tous ses collègues.
- chaque champ RH (isEmployee, hireDate, endDate, contractType, workTimeRatio,
  annualLeaveDays, referencePeriodStart, initialLeaveBalance) ainsi que roles
  est désormais exposé via #[ApiProperty(security: "is_granted('ROLE_ADMIN') or
  object == user")] : visible uniquement par un admin ou par l'utilisateur
  lui-même. id et username restent publics (sélecteurs d'assigné, avatars).

Minimisation : suppression de familySituation et nbChildren, collectés et
exposés (form RH, API, outil MCP) mais utilisés par aucun calcul.
- entité User + enum FamilySituation + migration de drop des colonnes
- Serializer MCP, update-user (MCP), EmployeeDrawer, DTO, fixtures, i18n

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

frontend/components/absence/EmployeeDrawer.vue

@@ -24,13 +24,6 @@
                 empty-option-label="—"
                 group-class="w-full"
             />
-            <MalioSelect
-                v-model="form.familySituation"
-                :label="$t('absences.admin.employees.fields.familySituation')"
-                :options="familyOptions"
-                empty-option-label="—"
-                group-class="w-full"
-            />
             <MalioInputText
                 v-model="form.workTimeRatio"
                 :label="$t('absences.admin.employees.fields.workTimeRatio')"
@@ -51,11 +44,6 @@
                 :label="$t('absences.admin.employees.fields.initialLeaveBalance')"
                 input-class="w-full"
             />
-            <MalioInputText
-                v-model="form.nbChildren"
-                :label="$t('absences.admin.employees.fields.nbChildren')"
-                input-class="w-full"
-            />
 
             <div class="col-span-full mt-2 flex justify-end">
                 <MalioButton
@@ -70,7 +58,7 @@
 </template>
 
 <script setup lang="ts">
-import type { ContractType, FamilySituation, UserData } from '~/services/dto/user-data'
+import type { ContractType, UserData } from '~/services/dto/user-data'
 import { useUserService } from '~/services/users'
 
 const props = defineProps<{
@@ -101,24 +89,14 @@ const contractOptions = [
     { label: t('absences.admin.employees.contract.autre'), value: 'AUTRE' },
 ]
 
-const familyOptions = [
-    { label: t('absences.admin.employees.family.celibataire'), value: 'CELIBATAIRE' },
-    { label: t('absences.admin.employees.family.marie'), value: 'MARIE' },
-    { label: t('absences.admin.employees.family.pacse'), value: 'PACSE' },
-    { label: t('absences.admin.employees.family.divorce'), value: 'DIVORCE' },
-    { label: t('absences.admin.employees.family.veuf'), value: 'VEUF' },
-]
-
 const form = reactive({
     hireDate: null as string | null,
     endDate: null as string | null,
     contractType: null as ContractType | null,
-    familySituation: null as FamilySituation | null,
     workTimeRatio: '1.0',
     annualLeaveDays: '25',
     referencePeriodStart: '06-01',
     initialLeaveBalance: '0',
-    nbChildren: '0',
 })
 
 function hydrate(u: UserData | null) {
@@ -126,12 +104,10 @@ function hydrate(u: UserData | null) {
     form.hireDate = u.hireDate ? u.hireDate.slice(0, 10) : null
     form.endDate = u.endDate ? u.endDate.slice(0, 10) : null
     form.contractType = u.contractType ?? null
-    form.familySituation = u.familySituation ?? null
     form.workTimeRatio = String(u.workTimeRatio ?? 1)
     form.annualLeaveDays = String(u.annualLeaveDays ?? 25)
     form.referencePeriodStart = u.referencePeriodStart ?? '06-01'
     form.initialLeaveBalance = String(u.initialLeaveBalance ?? 0)
-    form.nbChildren = String(u.nbChildren ?? 0)
 }
 
 watch(() => props.modelValue, (isOpen) => {
@@ -147,12 +123,10 @@ async function save() {
             hireDate: form.hireDate || null,
             endDate: form.endDate || null,
             contractType: form.contractType,
-            familySituation: form.familySituation,
             workTimeRatio: Number(form.workTimeRatio) || 1,
             annualLeaveDays: Number(form.annualLeaveDays) || 0,
             referencePeriodStart: form.referencePeriodStart || '06-01',
             initialLeaveBalance: Number(form.initialLeaveBalance) || 0,
-            nbChildren: Number(form.nbChildren) || 0,
         })
         emit('saved')
         open.value = false