MALIO-DEV/Starseed
3
0
Fork 0
Code Issues Pull Requests 4 Actions Packages Projects Releases Wiki Activity

feat(catalog) : declare CatalogModule with RBAC permissions and sync 3 RBAC sources

Browse Source 
- CatalogModule.php (REQUIRED=true) expose 2 permissions : catalog.categories.view + catalog.categories.manage
- modules.php : wire CatalogModule
- sidebar.php : item "Gestion des categories" dans la section Administration (gate sur catalog.categories.view)
- fr.json : cle sidebar.catalog.categories
- personas.ts : user-full recoit les 2 permissions, super-admin + ALL_ADMIN_LINKS etendus avec 'categories'
- SeedE2ECommand.php : miroir back, user-full recoit les 2 permissions

RG-1.01 verifiee manuellement (admin 200, bob 403, anonyme 401) sur /api/categories et /api/category_types.
This commit is contained in:
Matthieu
2026-05-28 09:48:58 +02:00
parent bc4e47d5ad
commit 04336cc682
6 changed files with 63 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
frontend/i18n/locales/fr.json
+3
View File
@@ -32,6 +32,9 @@
},
"sites": {
"admin": "Sites"
},
"catalog": {
"categories": "Gestion des catégories"
}
},
"dashboard": {
frontend/tests/e2e/_fixtures/personas.ts
+6 -4
View File
@@ -35,7 +35,7 @@ export interface Persona {
// sidebar-visibility pour driver la matrice. Les valeurs correspondent
// aux slugs de route (`/admin/<slug>`), volontairement stables quand
// la copie/i18n change.
expectedAdminLinks: Array<'users' | 'roles' | 'sites' | 'audit-log'>
expectedAdminLinks: Array<'users' | 'roles' | 'sites' | 'audit-log' | 'categories'>
}
const SHARED_PASSWORD = 'e2e-secret'
@@ -47,7 +47,7 @@ export const personas: Record<PersonaKey, Persona> = {
password: SHARED_PASSWORD,
isAdmin: true,
permissions: [],
expectedAdminLinks: ['users', 'roles', 'sites', 'audit-log'],
expectedAdminLinks: ['users', 'roles', 'sites', 'categories', 'audit-log'],
},
'user-full': {
key: 'user-full',
@@ -63,8 +63,10 @@ export const personas: Record<PersonaKey, Persona> = {
'sites.view',
'sites.manage',
'sites.bypass_scope',
'catalog.categories.view',
'catalog.categories.manage',
],
expectedAdminLinks: ['users', 'roles', 'sites', 'audit-log'],
expectedAdminLinks: ['users', 'roles', 'sites', 'categories', 'audit-log'],
},
'user-readonly': {
key: 'user-readonly',
@@ -109,4 +111,4 @@ export function getPersona(key: PersonaKey): Persona {
return personas[key]
}
export const ALL_ADMIN_LINKS = ['users', 'roles', 'sites', 'audit-log'] as const
export const ALL_ADMIN_LINKS = ['users', 'roles', 'sites', 'categories', 'audit-log'] as const