chore: bump version to v0.1.30

chore(core) : merge RBAC ticket #343 + fix user:write sensibles (PR #2 )
fix(core) : retire user:write des champs RBAC sensibles du User
2026-04-15 08:31:11 +00:00 · 2026-04-15 10:30:59 +02:00 · 2026-04-15 08:15:43 +02:00 · 2026-04-15 08:12:17 +02:00 · 2026-04-14 13:12:49 +00:00
3 changed files with 13 additions and 4 deletions
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -266,3 +266,12 @@ Exemples : `feat : add login page`, `fix(auth) : prevent null token crash`

 - User admin : `admin` / `admin` (ROLE_ADMIN)
 - Users internes : `alice` / `alice`, `bob` / `bob` (ROLE_USER)
+
+## Delegation Codex
+
+Pour les taches mecaniques (tests, boilerplate, renommages, refacto repetitif), delegue a Codex via le plugin `codex`. Garde Claude pour la reflexion, l'architecture et la verification.
+
+- **Codex** = junior dev rapide et pas cher (executions mecaniques)
+- **Claude** = senior dev qui verifie et reflechit (design, review, decisions)
+
+C'est le meilleur ratio qualite/credits.
--- a/config/version.yaml
+++ b/config/version.yaml
@@ -1,2 +1,2 @@
 parameters:
-    app.version: '0.1.28'
+    app.version: '0.1.30'
--- a/src/Module/Core/Domain/Entity/User.php
+++ b/src/Module/Core/Domain/Entity/User.php
@@ -55,7 +55,7 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
    private ?string $username = null;

    #[ORM\Column(name: 'is_admin', options: ['default' => false])]
-    #[Groups(['me:read', 'user:list', 'user:write'])]
+    #[Groups(['me:read', 'user:list'])]
    private bool $isAdmin = false;

    /**
@@ -70,7 +70,7 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
     */
    #[ORM\ManyToMany(targetEntity: Role::class, fetch: 'EAGER')]
    #[ORM\JoinTable(name: 'user_role')]
-    #[Groups(['me:read', 'user:list', 'user:write'])]
+    #[Groups(['me:read', 'user:list'])]
    private Collection $roles;

    /**
@@ -83,7 +83,7 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
     */
    #[ORM\ManyToMany(targetEntity: Permission::class, fetch: 'EAGER')]
    #[ORM\JoinTable(name: 'user_permission')]
-    #[Groups(['me:read', 'user:list', 'user:write'])]
+    #[Groups(['me:read', 'user:list'])]
    private Collection $directPermissions;

    #[ORM\Column]
Author	SHA1	Message	Date
gitea-actions	c061a5f2e7	chore: bump version to v0.1.30 Some checks failed Auto Tag Develop / tag (push) Successful in 5s Details Build & Push Docker Image / build (push) Failing after 20s Details	2026-04-15 08:31:11 +00:00
Matthieu	46fa7d17ae	chore(core) : merge RBAC ticket #343 + fix user:write sensibles (PR #2 ) Some checks failed Auto Tag Develop / tag (push) Has been cancelled Details	2026-04-15 10:30:59 +02:00
Matthieu	0fc4e1651b	fix(core) : retire user:write des champs RBAC sensibles du User isAdmin, roles et directPermissions ne doivent pas etre modifiables via PATCH /api/users/{id}. L exposition en ecriture sera traitee par un processor dedie dans le ticket #344 (spec section 2 OUT). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-15 08:15:43 +02:00
Matthieu	d8bda517f9	docs : ajoute note delegation Codex pour taches mecaniques	2026-04-15 08:12:17 +02:00
gitea-actions	b59d0f8a44	chore: bump version to v0.1.29 Some checks failed Build & Push Docker Image / build (push) Failing after 16s Details Auto Tag Develop / tag (push) Successful in 5s Details	2026-04-14 13:12:49 +00:00