From 4a229ebf6b20b6578975bf935829c436c27656fd Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 15:32:51 +0200
Subject: [PATCH 001/375] Initial commit

---
 .changes/unreleased/Feature-20240614-153236.yaml | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 .changes/unreleased/Feature-20240614-153236.yaml

diff --git a/.changes/unreleased/Feature-20240614-153236.yaml b/.changes/unreleased/Feature-20240614-153236.yaml
new file mode 100644
index 000000000..a29000cc1
--- /dev/null
+++ b/.changes/unreleased/Feature-20240614-153236.yaml
@@ -0,0 +1,8 @@
+kind: Feature
+body: |-
+  Electronic signature
+
+  Implementation of the electronic signature for documents within chill.
+time: 2024-06-14T15:32:36.875891692+02:00
+custom:
+  Issue: ""

From 7923b5a1ef25f7209fedde12d955e4e61af2005f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 15:35:50 +0200
Subject: [PATCH 002/375] initial commit

---
 .changes/unreleased/Feature-20240614-153537.yaml | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 .changes/unreleased/Feature-20240614-153537.yaml

diff --git a/.changes/unreleased/Feature-20240614-153537.yaml b/.changes/unreleased/Feature-20240614-153537.yaml
new file mode 100644
index 000000000..c16d49b2d
--- /dev/null
+++ b/.changes/unreleased/Feature-20240614-153537.yaml
@@ -0,0 +1,7 @@
+kind: Feature
+body: The behavoir of the voters for stored objects is adjusted so as to limit edit
+  and delete possibilities to users related to the activity, social action or workflow
+  entity.
+time: 2024-06-14T15:35:37.582159301+02:00
+custom:
+  Issue: "286"

From 65c41e6fa957b9616d9e9be3f5feec9080f23d21 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 16:48:09 +0200
Subject: [PATCH 003/375] Add StoredObjectVoterInterface

An interface is defined that can be implemented by each context-specific voter in the future.
---
 .../StoredObjectVoterInterface.php            | 22 +++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
new file mode 100644
index 000000000..47b93eabb
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace ChillDocStoreBundle\Security\Authorization;
+
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+
+interface StoredObjectVoterInterface {
+
+    public function supports(string $attribute, $subject): bool;
+
+    public function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool;
+
+}

From d9e37d0958bf042f95e4a1b0b4927172ccc11d4c Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 17:22:27 +0200
Subject: [PATCH 004/375] Refactorize StoredObjectVoter.php

The StoredObjectVoter.php has been refactorized to handle context-specific voters.\
This way we can check if the context-specific voter should handle the authorization or not.\
If not, there is a simple fallback to check on the USER_ROLE.
---
 .../Authorization/StoredObjectVoter.php       | 28 ++++++++++++++-----
 .../config/services/voter.yaml                | 14 ++++++++++
 2 files changed, 35 insertions(+), 7 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/config/services/voter.yaml

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 2e253cf3c..ecfc56615 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -15,6 +15,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Guard\DavTokenAuthenticationEventSubscriber;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+use Symfony\Component\Security\Core\Security;
 
 /**
  * Voter for the content of a stored object.
@@ -23,6 +24,14 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  */
 class StoredObjectVoter extends Voter
 {
+    private $security;
+    private $storedObjectVoters;
+
+    public function __construct(Security $security, iterable $storedObjectVoters) {
+        $this->security = $security;
+        $this->storedObjectVoters = $storedObjectVoters;
+    }
+
     protected function supports($attribute, $subject): bool
     {
         return StoredObjectRoleEnum::tryFrom($attribute) instanceof StoredObjectRoleEnum
@@ -43,13 +52,18 @@ class StoredObjectVoter extends Voter
             return false;
         }
 
-        $askedRole = StoredObjectRoleEnum::from($attribute);
-        $tokenRoleAuthorization =
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS);
+        // Loop through context-specific voters
+        foreach ($this->storedObjectVoters as $storedObjectVoter) {
+            if ($storedObjectVoter->supports($attribute, $subject)) {
+                return $storedObjectVoter->voteOnAttribute($attribute, $subject, $token);
+            }
+        }
 
-        return match ($askedRole) {
-            StoredObjectRoleEnum::SEE => StoredObjectRoleEnum::EDIT === $tokenRoleAuthorization || StoredObjectRoleEnum::SEE === $tokenRoleAuthorization,
-            StoredObjectRoleEnum::EDIT => StoredObjectRoleEnum::EDIT === $tokenRoleAuthorization
-        };
+        // User role-based fallback
+        if ($this->security->isGranted('ROLE_USER')) {
+            return true;
+        }
+
+        return false;
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml b/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
new file mode 100644
index 000000000..922d29cba
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
@@ -0,0 +1,14 @@
+services:
+    _defaults:
+        autowire: true
+        autoconfigure: true
+    Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter:
+        arguments:
+            $storedObjectVoters:
+                # context specific voters
+                - '@accompanying_course_document_voter'
+        tags:
+            - { name: security.voter }
+
+    accompanying_course_document_voter:
+        class: Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter

From e9a9262fae52274da1012d070182f4825175def9 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 17:27:22 +0200
Subject: [PATCH 005/375] Add config voter.yaml

The voter.yaml was not configured to be taken into account. Now added\
to ChillDocStoreExtension.php
---
 .../DependencyInjection/ChillDocStoreExtension.php               | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index fe9aeecfa..5f87199a3 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -42,6 +42,7 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
         $loader->load('services/fixtures.yaml');
         $loader->load('services/form.yaml');
         $loader->load('services/templating.yaml');
+        $loader->load('services/voter.yaml');
     }
 
     public function prepend(ContainerBuilder $container)

From c8ccce83fda19699c427db88f38639c1bc76f09b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 18 Jun 2024 17:47:16 +0200
Subject: [PATCH 006/375] add a dependency on smalot/pdfparser to parse
 signature zone within pdf

---
 composer.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/composer.json b/composer.json
index 34f9bbfc7..05068125d 100644
--- a/composer.json
+++ b/composer.json
@@ -32,6 +32,7 @@
         "phpoffice/phpspreadsheet": "^1.16",
         "ramsey/uuid-doctrine": "^1.7",
         "sensio/framework-extra-bundle": "^5.5",
+        "smalot/pdfparser": "^2.10",
         "spomky-labs/base64url": "^2.0",
         "symfony/asset": "^5.4",
         "symfony/browser-kit": "^5.4",

From 4b82e67952983c7b2942e693596b467a4e75833c Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 09:51:21 +0200
Subject: [PATCH 007/375] Type-hint $subject in StoredObjectVoterInterface.php

Since the subject passed to these voters should\
always be of the type StoredObject, type-hinting\ added.
---
 .../Security/Authorization/StoredObjectVoterInterface.php    | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index 47b93eabb..a3a76e79a 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -11,12 +11,13 @@ declare(strict_types=1);
 
 namespace ChillDocStoreBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
 interface StoredObjectVoterInterface {
 
-    public function supports(string $attribute, $subject): bool;
+    public function supports(string $attribute, StoredObject $subject): bool;
 
-    public function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool;
+    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool;
 
 }

From ad4fe8024092e7b365ee0f6aba7a5987ca964d18 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 09:52:59 +0200
Subject: [PATCH 008/375] Add fall-back right for ROLE_ADMIN

Within the StoredObjectVoter.php also the admin\
user should be able to edit documents as a fall-back
---
 .../Security/Authorization/StoredObjectVoter.php                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index ecfc56615..781c2c542 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -60,7 +60,7 @@ class StoredObjectVoter extends Voter
         }
 
         // User role-based fallback
-        if ($this->security->isGranted('ROLE_USER')) {
+        if ($this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')) {
             return true;
         }
 

From 04a48f22ad85abd8fdb13155c805ec709a7757c9 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:00:10 +0200
Subject: [PATCH 009/375] Use constructor property promotion

In accordance with php8.1 use property promotion\
within the constructor method. Less clutter.
---
 .../Security/Authorization/StoredObjectVoter.php            | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 781c2c542..7e2becab4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -24,12 +24,8 @@ use Symfony\Component\Security\Core\Security;
  */
 class StoredObjectVoter extends Voter
 {
-    private $security;
-    private $storedObjectVoters;
 
-    public function __construct(Security $security, iterable $storedObjectVoters) {
-        $this->security = $security;
-        $this->storedObjectVoters = $storedObjectVoters;
+    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters) {
     }
 
     protected function supports($attribute, $subject): bool

From e015f71bb001ca00662e9f97a82cc8095efdb284 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:02:25 +0200
Subject: [PATCH 010/375] Rename voter.yaml file to security.yaml

For consistency with other bundles voters are\
registered under the security.yaml file.
---
 .../DependencyInjection/ChillDocStoreExtension.php              | 2 +-
 .../config/services/{voter.yaml => security.yaml}               | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename src/Bundle/ChillDocStoreBundle/config/services/{voter.yaml => security.yaml} (100%)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index 5f87199a3..a0fcc2d5d 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -42,7 +42,7 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
         $loader->load('services/fixtures.yaml');
         $loader->load('services/form.yaml');
         $loader->load('services/templating.yaml');
-        $loader->load('services/voter.yaml');
+        $loader->load('services/security.yaml');
     }
 
     public function prepend(ContainerBuilder $container)
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
similarity index 100%
rename from src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
rename to src/Bundle/ChillDocStoreBundle/config/services/security.yaml

From e0828b1f0fa9d9c255a6a1189492e33d7c2ca31d Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:16:39 +0200
Subject: [PATCH 011/375] Use service tags to inject all voters into
 StoredObjectVoter.php

Instead of manually injecting services into StoredObjectVoter\
config is added to automatically tag each service that implements\
StoredObjectVoterInterface.php
---
 .../DependencyInjection/ChillDocStoreExtension.php       | 3 +++
 .../ChillDocStoreBundle/config/services/security.yaml    | 9 ++++-----
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index a0fcc2d5d..9f277e716 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\DependencyInjection;
 use Chill\DocStoreBundle\Controller\StoredObjectApiController;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Symfony\Component\Config\FileLocator;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Extension\PrependExtensionInterface;
@@ -35,6 +36,8 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
 
         $container->setParameter('chill_doc_store', $config);
 
+        $container->registerForAutoconfiguration(StoredObjectVoterInterface::class)->addTag('stored_object_voter');
+
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
         $loader->load('services/controller.yaml');
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/security.yaml b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
index 922d29cba..c57eb63c5 100644
--- a/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
+++ b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
@@ -4,11 +4,10 @@ services:
         autoconfigure: true
     Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter:
         arguments:
-            $storedObjectVoters:
-                # context specific voters
-                - '@accompanying_course_document_voter'
+            $storedObjectVoters: !tagged_iterator stored_object_voter
         tags:
             - { name: security.voter }
 
-    accompanying_course_document_voter:
-        class: Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter
+    Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter:
+        tags:
+            - { name: security.voter }

From 482f279dc5635a79f0ee14c21670e570c9a5ba07 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:21:24 +0200
Subject: [PATCH 012/375] Implement StoredObjectVoterInterface

An interface was created to be implemented by Stored Doc voters\
these will automatically be tagged and injected into DocStoreVoter.
---
 .../Authorization/AccompanyingCourseDocumentVoter.php      | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index 5febc7e42..93243b1f4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -19,11 +19,12 @@ use Chill\MainBundle\Security\Authorization\VoterHelperInterface;
 use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodVoter;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
-class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface
+class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface, StoredObjectVoterInterface
 {
     final public const CREATE = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_CREATE';
 
@@ -70,12 +71,12 @@ class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements Prov
         return [];
     }
 
-    protected function supports($attribute, $subject): bool
+    public function supports($attribute, $subject): bool
     {
         return $this->voterHelper->supports($attribute, $subject);
     }
 
-    protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
+    public function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         if (!$token->getUser() instanceof User) {
             return false;

From 5bc542a5676ae595fa4d1ea6ac2210d383e84c4a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 19 Jun 2024 12:16:51 +0200
Subject: [PATCH 013/375] remove symfony/phpunit-bridge

---
 composer.json | 1 -
 1 file changed, 1 deletion(-)

diff --git a/composer.json b/composer.json
index 05068125d..edd382445 100644
--- a/composer.json
+++ b/composer.json
@@ -98,7 +98,6 @@
         "symfony/debug-bundle": "^5.4",
         "symfony/dotenv": "^5.4",
         "symfony/maker-bundle": "^1.20",
-        "symfony/phpunit-bridge": "^5.4",
         "symfony/runtime": "^5.4",
         "symfony/stopwatch": "^5.4",
         "symfony/var-dumper": "^5.4"

From a9f00597430ef44be59e388575afd9e65c96f083 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 19 Jun 2024 12:17:25 +0200
Subject: [PATCH 014/375] Add PDF signature zone parsing functionality

This update introduces new services into the ChillDocStoreBundle for signature zone parsing within PDFs. The PDFSignatureZoneParser service identifies signature zones within PDF content while the additional classes, PDFPage and PDFSignatureZone, help define these zones and pages. Corresponding tests have also been
---
 .../Service/Signature/PDFPage.php             |  28 +++++++
 .../Service/Signature/PDFSignatureZone.php    |  33 ++++++++
 .../Signature/PDFSignatureZoneParser.php      |  57 +++++++++++++
 .../Signature/PDFSignatureZoneParserTest.php  |  77 ++++++++++++++++++
 .../data/signature_2_signature_page_1.pdf     | Bin 0 -> 16589 bytes
 5 files changed, 195 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/data/signature_2_signature_page_1.pdf

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
new file mode 100644
index 000000000..138c4e1c8
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature;
+
+final readonly class PDFPage
+{
+    public function __construct(
+        public int $index,
+        public float $width,
+        public float $height,
+    ) {}
+
+    public function equals(self $page): bool
+    {
+        return $page->index === $this->index
+            && round($page->width, 2) === round($this->width, 2)
+            && round($page->height, 2) === round($this->height, 2);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
new file mode 100644
index 000000000..515356e52
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
@@ -0,0 +1,33 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature;
+
+final readonly class PDFSignatureZone
+{
+    public function __construct(
+        public float $x,
+        public float $y,
+        public float $height,
+        public float $width,
+        public PDFPage $PDFPage,
+    ) {}
+
+    public function equals(self $other): bool
+    {
+        return
+            $this->x == $other->x
+            && $this->y == $other->y
+            && $this->height == $other->height
+            && $this->width == $other->width
+            && $this->PDFPage->equals($other->PDFPage);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
new file mode 100644
index 000000000..3aade2fcc
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature;
+
+use Smalot\PdfParser\Parser;
+
+class PDFSignatureZoneParser
+{
+    public const ZONE_SIGNATURE_START = 'signature_zone';
+
+    private Parser $parser;
+
+    public function __construct(
+        public float $defaultHeight = 180.0,
+        public float $defaultWidth = 180.0,
+    ) {
+        $this->parser = new Parser();
+    }
+
+    /**
+     * @return list<PDFSignatureZone>
+     */
+    public function findSignatureZones(string $fileContent): array
+    {
+        $pdf = $this->parser->parseContent($fileContent);
+        $zones = [];
+
+        $defaults = $pdf->getObjectsByType('Pages');
+        $defaultPage = reset($defaults);
+        $defaultPageDetails = $defaultPage->getDetails();
+
+        foreach ($pdf->getPages() as $index => $page) {
+            $pdfPage = new PDFPage(
+                $index,
+                $page['MediaBox'][2] ?? $defaultPageDetails['MediaBox'][2],
+                $page['MediaBox'][3] ?? $defaultPageDetails['MediaBox'][3],
+            );
+
+            foreach ($page->getDataTm() as $dataTm) {
+                if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
+                    $zones[] = new PDFSignatureZone($dataTm[0][4], $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
+                }
+            }
+        }
+
+        return $zones;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
new file mode 100644
index 000000000..5a78c8bbf
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
@@ -0,0 +1,77 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Tests\Service\Signature;
+
+use Chill\DocStoreBundle\Service\Signature\PDFPage;
+use PHPUnit\Framework\TestCase;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PDFSignatureZoneParserTest extends TestCase
+{
+    private static PDFSignatureZoneParser $parser;
+
+    public static function setUpBeforeClass(): void
+    {
+        self::$parser = new PDFSignatureZoneParser();
+    }
+
+    /**
+     * @dataProvider provideFiles
+     *
+     * @param list<PDFSignatureZone> $expected
+     */
+    public function testFindSignatureZones(string $filePath, array $expected): void
+    {
+        $content = file_get_contents($filePath);
+
+        if (false === $content) {
+            throw new \LogicException("Unable to read file {$filePath}");
+        }
+
+        $actual = self::$parser->findSignatureZones($content);
+
+        self::assertEquals(count($expected), count($actual));
+
+        foreach ($actual as $index => $signatureZone) {
+            self::assertObjectEquals($expected[$index], $signatureZone);
+        }
+    }
+
+    public static function provideFiles(): iterable
+    {
+        yield [
+            __DIR__.'/data/signature_2_signature_page_1.pdf',
+            [
+                new PDFSignatureZone(
+                    127.7,
+                    95.289,
+                    180.0,
+                    180.0,
+                    $page = new PDFPage(0, 595.30393, 841.8897)
+                ),
+                new PDFSignatureZone(
+                    269.5,
+                    95.289,
+                    180.0,
+                    180.0,
+                    $page,
+                ),
+            ],
+        ];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/data/signature_2_signature_page_1.pdf b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/data/signature_2_signature_page_1.pdf
new file mode 100644
index 0000000000000000000000000000000000000000..89d91e67cffe721456aa7c0c870a49e7c3b4b278
GIT binary patch
literal 16589
zcmd73WmsIzvM3zff_n%sKyaJEo!}7M-QC?SxVw7-Aq01KcMtCF?h^Qh_w0T4e$PJl
zx%cO{o~LKkR9AOZcggBCQ$;Q(EJ_bzU_&JD{?XmiUDut1$OHfaYz-_Bd3YG5jBQMv
z%mB<_i~^&mxs{W#1EZ*wzLT-Av7xPzF&`hIqmzTNzBQs-=8R@*%yR?s$z6FWSBDJU
zgX7oUciH8nD-cLO;HP%t89tXa`o3C)krI<@+|tF9Hf-LSdK!KCL`<Bsy?ZRv?)$v=
zJ2TyJt3c8BVBF_eR&j4^dR?ad&*Q}$f7T0Oj@rx9i7s*dS&R>dY=OPic*=pp<4ga+
zIHRk>%k`h}c5l|x!}bqrHPWumy3)RXj@#3}<Ifc<IyU++yym0~`?Pv!615cU!8H*O
zc~6{W+sE#F!8@&dxoPr=9_F1ZQEhR&ZoctzJ3-HR{kT8Q8A%k}6i2QfdTx4e|Ge^O
zyO*g;gkswaM>deXqaw+8ntah^cG1h?lq!ywtGjytzI@Mp%s!Rl+~5)~7^Pm9=ZZmt
zqvyyzkb9iBlyH=6m8i`3^<}vK>S+siTI7$D%@^ECWSx&#W$s?nWFO*W9fMhK^#v9!
z`ROC7=|(CdAH`vt-Pj|kR>?!A4d~C3^JT}HDjkzIW=Tx%k)@ZS_H+GAwkTXdCt6m=
znZnUX`i2kmJOBYx7(p+6#5Uv6U5*v!Xtd|em!=3V-`o6%m)FanfZCCihsA!}Y1#m|
zIZnEiY!Hus?L`(z@a)1w?Y01+Luc0T3a1WiNMtIf!K6XGW$sk~KJSC|IKK}^eZH@U
zOmr!9lK9X^k;0yf&gjjXrl5Wj#I0?W`U&o`1S8`S6MHmh8*ww2qp#7)GimOh9v%V<
zB|&n~i6wt{xfncL=w`KFIq8JD_#bY@FiRMS-rw0?=$b1NU2_P3zmK&hDJgCG&APWL
z+RH*xU>(ya0>mN;Q~ZV>a2KOD#Kix>A~yrFcKtg9J)(@-=(;`RI)nap8(JR62lTKR
zi{9@!na@hrJSg8<lEPKVdCtsvRe*rkD?Qn)zPWJ;xyE;wMO(p=u0)9a^4H`YG0yLD
zJuuGQ_Wg-Q5Nab#ZV`tO7FhFZTQ<@^Jx5A5M!ycE5aJ#m_A#z$g+w#NRJc^HPbEt2
zsg7x7Er?M3Fh(HXZAZZgQ=2-a-gxq21ATc)B>0;1^w9{f;7W-rDq<2@5AIteqC6@^
z$Xbd1nRcoo(r<n7;xCdQvQ<eF_rUi$2L*aY=)4Vr{*Pmpp?FSTOAN&<KP~PVePE<(
zs*_R$&<@K*(X@z^+F%+$=BG2em3x|><D{MG2fpJFIqk<q%IuLFl;2LGD58_?Sff=!
z1#u5p_6~Lk!eei}M+lzz#pskWq}i3{oZp&)Ku7k=c~}Ap5AU?Su9AorK`<{>_k1DI
zL-u_=O0aG@kHQZ!1BGvKCrG<WE6Y))suYG)WJu1zpNl7;BS!6t3ob>H`wEP`5iJm9
zM$I1)6s;ehershu((N<BkPjsMQEv3Mht#jKU3e}jn_5B-PK5&z(W7<NN&`#2hB2LT
zSP+RFY9E!Xehs-JdJ?yfO%)yPcsSxVKMC%sCaQWz2!#AB5-dv1865I8t_JwgiGTs-
zeaX4Yje@oPkNoZMuSG?rHYxksgZwh{>!TlLgPPzxPxaNx+7^eD2$_vE_q6WxnX{Ui
zwt^=Xbz(#EeWg=RM6m2nFl=B}F!VEuptL01-_KaRpF&7*{N!b-VF5EH8;XuO7E>Vr
zF!qO6U-mBt8AHGFTn)|iD(>Q}NiL3Z4LGTnKbE(<6|19VM_G<6fc(Nf4>F4nrl-!i
zd^Ft=W2xPdxmQ2*)mWD*!Loz&6HgGNFz2J^%ztNuC@m9#^GBgerywP7<W_EpETrqR
zDw<I8m`H#9UWq+NOkHX&yh?||cFhvK@O1%&4_3E@hQ9ZyDtpNv_?uuE>{I-}DvoMF
zj6t+ri0HB64ceeKH3%v5v}`#k^YInj-7OW*GKXn==o1n2G6et4S{1KpVH;;$l&DDt
zEGbfDI%UU}&|pKR{-5_eb6m5Pat$e`fh*LURM>{S1@Ay;bt<}}p-|3W5A|0&O%O}A
zT`0G`gcNR|Oz3MRJ$FjaJcRUL5Re+;JXvQ2+-{#{%=1L#vl5D)df#D`;OtTp>6q<c
z%a&`=EAFE$n+keWv^$|8PE|X-*O{r2x+s1c(~UIwCfF~`CxQK?L-fni%TOBO2qLxP
zFI~ZsXaq|A8d0rIQJE>If^@U6G5*EW&#L(|;_t-HAULtE2c=h)?vgC&@gL=8KnKZ*
zL<Qo6*LDWW$;=#drlIKN_}qy0{8aet`{T-d#O9yr<wNB*$%m-V8luA9Z#Uy>-4^j3
zGUN%|#MFLhCM{ej1R=<ABH_OyT?ua6CsW+^NOz6A!H@X~u*4;?SghJXE2y0Rr94jm
zCm8d~FTcgwb9J&z2ha?za^|F*zVtbVg}(_cUh%C-cX}u>^+?FJu}xx4)5us7k*P?A
zMBqfXzsH;`j;@bCdm?GxZjUBL1qhm&GD#Utues)jPVlq5Y6!I9w@SK%r;2D>`(;1#
zpQ~s3PQB8^O1WMb?s{w1V*Q~CKVT$3lOIMO(><`Q^^s!PfX4b09gObkaxE}~cLx{=
ztPM5xACIq)Q&_b9ILE09e#>ug{Vv<s^_2fs<z1gEYW^XLF2^OU-e|4+rr?yBUn7Ls
zfw$Fa78bfo!kR`re{W!>S({|NO3hcO9+PfGNv#`ET{$DHcxqE_b?$o6rbrmYBke_E
z;nQc*3|}1(*?A*|gp$14=O2ecrqneA(DRbkpyR%uk;Tt_oVfSjgFf&dy2fXHu^6_C
zBF~Jv->XsJ@oh(fqZIG>Xw|WsBO!8<Uk~qG(<3lX#rqB2Zod)mXvbjMOl<Ts{t>;4
z(?<B$d!+-J&f-=Rr7KUg2I?DY|2*LKGY@*6ouTdIN6{Xa7AuR=-mor$&754*i3O#e
zIw{e%s~X2JF-WbGoN?fZlz#P?{4e05nPdYM%9&ixVq;lLhGp9EQnN$)1A;(Vv$a_%
z!)MmiGa~fE{C#W!#Fmzz17QZXbG<zFD6HOJP$1z3%o-WKk1KG?yq`>HRkt-XkfAdS
z&Z<wp+tiHd;bD9ZKWzAUmg(Rr5XLT~Akz!^u@1RTx!?GZol}yH(F{LGgQB5~J!<mA
zz52YYM@MO*=}E(saEvPY;`8Xj%B8qQOQ)lvqk4T|WluMGpyx(O)kZ<I-x?G4SKNo_
z@BvX)`X`p<#z`JmLou2jnH!ex?pUDUF^IIsm1=lS@1<M>ce=UdEyhx3r_Zy3S4I#Y
zq%BsBy%0fF4EQo-+`k&8tkV>daY;K5W#Gr!9xn6FO-%@BR%s*=dgU)N)36N8c|`DX
zbKfn8I}{tEjgS9438*HfUzpg1C+J_8g5{dFnpxG{Td1j?wHuRhW6uy<43rE-BQ?v2
zu2$Dv`CWz38$=XTFK)Qo<;RAaWv78KPu4w6uV`;`>_#rhQ2u0Lha<G(GI#Jie#?EC
zntfiAIgkxEhM#cD9(oN&*;hqWma9L{YY-L&fLL`=4^tVrv1<4e$c_{(G;}dX&CiRt
z-n<&m2KpABR~j^u2>M}_7kX8^?AS=&z*zy+plQ*1hvPY1Q@uzDN&Y)|7X%C7;m<2j
zG>pz#c45yr6Vs$b?4#h{Rx+Zo@=_&Ygvq{Ey|u@{dXGkq;W$UAqj10H^cBH&)_X=R
zSEq6VC5LsMxPN}{>ut=7ek)`H#J~y%u+p(h%v4A^G2e9N!G=xg<jQUrCgU>ZFy76n
z69ZuP&|`;x$63?NVOh<MNiHd&ob$pA)n)Q673Po`8C9>@^^?`r6SHE3FYAJ--1GEh
zadfKMEO0kDRhF_Sf#twE%;@2WR#!g_(r3muFMrN@_Ve%J>a#(Uc|x2ND)(7LUix98
z)PmQw<NFN+9V<oEV((mxm;p28#4ZN#E_ZI;J-}InN%!O^d(Y@viAD@(t+(vD@AY4~
zY4A%hFyneCmy2IWz1wB<p<o0l>y}v)@n3cCEWf7cx}>E1ad?F45e1MS8rvBC<7f_s
z-cIv~Z-@9dfQge0_}2XwlJ!5%`fUFXXMN@gW+kdU8YQ3{aDo|FB?qi!nPFyPSFQkp
zepds*eP4DE=M)CE5S8A&tH*#Z`(LDaWAi2f>%U~-_zzh){|~bK<Glm~0C9krfdBp$
zvf^o}hdGyY&dZ#aLaxqSWh8-9B?^CaDb!a55fTDtNN@!YUr{LXPEw7{#ot;VX@H=>
zk4MVPOz_Ggy+J))TConjb1<GodO5jf>EtH~!PIV}eS5q~v-Ahbd~>$Wt+SCC@npXm
z-Mc3rZzyKRv&Owu&r|mm$J2qZww03}VOV&{A9bf@&qx8!2qfEU@DP?u*?|p4S>EW$
zVhH*#tz>O^Pkz3u4$){fsc0+b(OGj&R><?Fm<ETRjAW{+c|T}sZqSn$wPE(Bu7!Q&
zd-y<zBczryxscWHsC<<yR+-)Ln85A1l)IB-<B<^y!vVW6McB%vGg=E$TZ?h7q+DEi
zSrFn6)Bi(7()Z$K>q{zXlL0VlWNO1Zvy3Ts*L#Xk(-nvJ#MA%!nm8ONQmSC8CX+XF
zfXpeHz&Y22G|Q90ySCwk-B93;*qUqG<SRNkqF%i>LeD_*%CD0y)FbnORWdZF=fH8O
zmxzqPfu97En5uTLpv7eK>NQ1aU$OjYAkQfEBdKj{sf7>}LL5UC0m;H#%m6LCav9o!
z6cJ^BF4Hl{0b@zg4c(!jDqd2D#DS4hz=zE^8SQ{#j)Yz|j$M!FfwSlf;{){dHpL}r
z^dmwSL;G(zDF!|+vr00gN1O)=$Ji2sF@qhS{2&A%52pxGpf!gB<eWQI^=2<FvIlJ=
zL=J%j<wAh5hk0_QZvr00OJH%6UkRx$`S8G43DJ0Gw-w4zc^FS5&mZ(4n5n2H(c3S(
z=E3;w1hl%8+~?7dWm%j(3{My+e^zjpq(*=t^rXR(wM<Dpq`qTHQkjOPu^*>+K*_<<
zCE53w1WBF^DmLjR2zL?fY$3NtTI{zJm}i4?gP>83(LAcse)u>QtxC@2spT5`?#GFy
z+LUtjRtw{;@ZiU$o!a3a>G_g4j7=pT8~zW<S3^+7`Q+86qjc#TIj2`#){wS?tOSnl
zJ+f4~E8oXrfDqyyKWTnKM3(n$<zH0OAf4srKKdeg_y;-e2Of69{iewy0Ri;@v2-{(
zh!azHlFsfEHHk?-OsWE+;*cIBBLhW567{peWj<HC8wOjsZRh28E?+e%AMxRoX(sjr
zl@YazhYGm-FW*&4WZ8}nK9<A)qU@GatC!nbcnfL*KaPV8CPVYLt$d$3MsyHsI!4Oc
zk2!>{O^h|P%)MEX-<R4JmODOqZA`@{4QlxkT9XbR#7dl8{)k4QcA@@}5U_a>AJ@q(
zb7|!HV;<|OKUY&D-U{mprRpXipq?UVbNi#Ow!>JhX;#DKtx;He8J~JdWRr)GN%l;F
zqM(9e&r@$FKc-gnYd7jo!CV?)&7RjZs@_l4JO~6DUPC)JpLI}C*zS9SI|uZxw|hEV
z+6SKCVlt!xE<B9b5o*`bC@Hgf_hs0Y(Pb{<WE$v77+Uqa4~<qIX*J@d<OAmMMc`k`
zFP?Ckyaiz?uZ>5c7yL&AP@cRH2~e^V2V6=%!OhnHI3!&-^@$hv+q8=hqoOA}!11h}
zVv4mHbc(r`uPbJ+dr#4rn*{RZb$Hfe;jAF6J^CU7^x;c;DqPwlu0b?#21wb9{ID=C
zk(9D9Ax)@Ib%Fa$kUtENrESdlsYBdk@1N$cTynbw9OAfnc?^B@l`X)8LyMb?>ZKMj
zvyk}WtQMPF)N>e<0#_l%;tzRLl-DH%`+V_ZR5v58Oi;ypt`BEX<RrO<UN&AlW04mB
zSAh%pEUM_C!Y3-jhq-zlA%D!gep->cFhJp_4K5f?UrvjKk;l$tHL)oI`~Hbjt{$9v
zM(QB>E`47~Pc?b&?TJizcI9Z`Ow!Nf8G=8>bGA0>zcAu0<bt=t4;k_L);4930}xYx
z;~w<l^o<6i$BBKN{|e)KV&FyLEaK7PZp0Bp6Rz2;W(C16VMvBQ$Z6p1nH65}yWoA1
z{BLu2Ll2fxg<kt)_9kzA-9s9B{R(v@%042Gpu(sF3Ma++Z(@J6R>cJn8MDHtBIsXS
zeCOAwDe~nas@Q^f6NhP-sm7JnS)~h&K}ZY2Uh|n{R3lPsSk2XG8Cn8IX%<^BqqNhb
zo8MO3J+{6vHRuw?0(NK<gyr?kzpwvn`wTMUf7FQ+OZW-P>!uZtWq8^mh2PW8#J0aS
zUzKW*$KTlLUCNY_R1!QRU7Jt7zi1Kjv{84{Pu^g?wVQ0}7KvnQY2h9ZVdDOS&C3h6
zu9k;v^QXY~NJ!<cUqqB>hQtXfatrQHO+N|3n$e0u)U3K-zy}>n0|C~QX;_i6(kuxw
zpU`178<Zjv`*zWO%67t1Me6j2bum$kksXi+7#WO2K5<ZeqeQ=?>#KwXP)g~+-q|15
z`uWRtb=U`N%jmxc1SjU6*X<4#X0X?10yj>Nf68Y5QfZXa&dj2+T2?viP0gj63*m+%
z)9;-Z=L?5@6~cIyl$UzR7Z06H9J#2UqlkLZfYHh8uvD-sg`E2yF36{M2a)Jag%A#_
zHMuF2fQ969O0><d^a)$EfN7vzHT+{YkN=U9ft(su>)?K*s2`kSSs`oY@Q27!{oDX8
zl>%nGdGUEYLY(zq@5G?z89xhtMS);Lm;iK0L0rO2Alk`%T|=-F{hEV#Uh^&nu_7dw
zHGk5Fyn`B|s(%ph8$pibT`1%{Gyqa*OV9K`FBA{+8`DZhBm$78!yG~sIur?jAjd%U
z=bp|@;Va4Fhg^8g8B5hiixb6iYk2DwF87o4mPZOk1x32pZ_E=-)|Mdqsc^j@i|<?<
z<sY5=%MAo{VsDh`(M*&dQd=1VUTWv3jAt2Fxm_aFOD1u>Ce5KjTFQq;d6ney0}YH$
zdf<)|jwA3Sb`nhUGoYj5%tE^h$B~0>cnpz((!3@SdJytt;5ol9BeY=lncdW2ie|<-
zb;V+$aO-y<*i#B;0ys%#j3>LXuyVgSAnuq8xxA7rGS49AXfkSD*Oh8At|RV1YV(w}
zXuu;5ExNB=rzt001z<lk4W+#tXf)IFtATR76>NB}9*=Ba4@Wl$Y#ZJ0Rx@r<J2a~R
zzR&$vz7Nw!{5~$%_53{f&<US+0nDdDeDebyg-R0#9Y$4qmN2B}kO{@;YJGiIyK<@Z
z`%;`g<v99R(@|HwVlVYoMQIX?^njsV=)crTX0Q`Entf-TN@eWkl?OSJ1!Eh_@2kR>
zXxr%LPFIjrx;ImBsu_oPPoFO|RLu(`u(k7>Y3nBJ(gNi~k;OBzq{u>kj555F^jo#5
z^hDJDgjLtj!qC^#q(xE8%8yldNiq6ZLGAkkEj|dS1RsK={|#+32#q>WjwDu4Eu66s
zZ3sz#4!RAkkBW#ie}QlC>V1KP^OpmqY&hk*CF`KCUOIZ?Ft68XkcgkLj=vt?DUU(h
z47L$o#U!TqnoeuB-|rwzkgqK*Ah}xmv6lqgg_QIKtyZCazB-_E=!bPXugs%7Ro#}0
zjB7=j<3i0&q<~IvS!5wj<87|_ZE6sJeKjPw;hwzEX6|2D)4+mts}X*}P&%tuVGU1k
zub%2wAwtka*G>ta;Sc18XZDXJhPFoIL+)AtWFmCQ2H3H{-$Cnpq5-f1n*fQ5Jep_?
z0H^4D^pJp9cz>+GFN=}Zd;aGtXrlhHKMapi1?hgF#C2^<n-v7u(ZH`Eb?Jw@D5K%P
z2uO`r0$Drd&`1T$zKrYV@s3Yri}?e;PD}QxpV%zk(UE_ZPzdD6A~LOo7APMoxrxs<
zT*@buOa{OEW(OrsS(5CJv;+v`|Ing-a+G_*oI3pKp&eIl<{E^gu&8s8lRdnDc~W#q
zTbE`GKT+`rD)gz}yG%LiD~roG!=w3CUS5e5vb`8EI!ez@9MAsUe!DVmbC{+$!g7Z{
zaxD)JZrVXA$8dL-QBsvXn0KqJX5ohw>`iE;#Vi_`#%TQy6ayx6n9jKI4{X5*NIb)f
z<jt&Db(&KCBA>~smOgfHPAqV*S3spUK#`)rbAEQ{2!)DA!OK;iglK^Zh3cb%mahgC
zIH>7c((WAp@TIc5Y?sPFuO&4~mp+nxVsMFPo|DKYk5^Kl+40hJK_>iaaJr(T{kT~*
zqJY1dFjpZ_g9~>N2Q~F5h-6yJmB|^MdEgT=6HHsvIBGy;HFnqFe0rlV(_g*MtQN5y
z0>O{Quaxqn{~ML8hUg+7QMv3w$b@%@OR1kA^V;PASzI{)P(~^1Y=`~eLa>#?N4u7w
z03$v~v~uaK>X)77X|{77(f-m~hH@gWzBt@tGhgp%eLr+%6;kZf85uwRdPMec1^&IH
ziW$wW%2Lc{od6fQm!C!2tD`0SC`-CaAz#*%7MM4j%{+H(NEqEEH-ECOZb(&Pcm=mB
z=*1wsD`>_L>bMcsIKhQGI~sKD0nb2Ii*s!~lVC$n7N@Q(0EeNejQ^D>IK1D_M{7m%
zV-Vfd;f1foy^Z@p%Z%#l{fpgGa`+k1>cwcsa#7pOXi9mjC-bF@Z@+%b&7X`TqSm^p
ztzt{dh8LML$rV32?VCma@T#4R{kAR9wHFl6_pWQU;-x(nyBq;C>vk5GmsfW94>%}7
z1IYT!IkrrJT@+7fE1cjHgZYiw?CO_&lgx#Hgo9RA7=gfJdKT-;=AWS~Zhk!2I?%Mg
z1ZhOMB`+=+<bGFs>_2Ad2CVBm#5`h;&qit^2kCL`8n3!0W&3t0H<_rg&ZnYSM7~!K
zvh>n*4BbXY#gCm`;2^Vabc<%Z-o5y4N3;m|0GO2ShPh%m?%<d;oEK=RAl-%;MB33o
zYyEnI&iGzVya?^PowM{|e3cfCy$%}11Pr$MpIkX}5%V!E$it@32sk+K%zsF)4$C}u
zylt}=7K**$4>2xHt6cS7%SJc&9=y6u?niaseQbl;%goQ=-=Yah$$ssm+w~^F<Uel^
zg>n}Tw~XY3wWhKH2zOgdEFPOi+6}>Xi*i^5l8MgS1_q)Vh^Fd8XP|SCJrai7&xe-v
z!=sZ0Mgs8ld*CI=-cQolLK_5vG(=jgYN&n0oVgXfeEJ}$TRsy>HKpnFHoq4T3fNR+
ziBt^hwKg-%UzYxrK>I_Tv$3&>C)t^UGXZ_aXab*}O)&6AKmHY{T=jtx`j?Gy*Ec=U
zDB!zX^jKKJ%=Pjjzi+%|cSwmVcuXCO;z!QxHFM98a}h&~OZ#iKM@yZ{+FVDqbLo9|
z^u;?VoUKZ}ALM;qD)~um6oi}dKM3e5^@LF*L>RukhGa8)d(WHWLMstRtYZVQ1ZBUE
z56;>Dl65ga4MN}tB59cVu^?4cI5T}!!dlZP?PL9+k<ZmyK)t9Nx7cX%T?maPMG#qu
zT4x0ErRd??aPPSog3o#qTw9xF^3`LsZ;Qizn-Hx^FPn_+J$!72t$Ay8S*ib@$tYby
z{&kv_S-3IlIeNp!<~&WvX5Gu-piC1@*{LI?Ytzza(qpo6jO;{l8F~t#R0wtTQ_a*@
z9+x1tyBcg#6(c4D=!k0e7}5+CRaWA#^!!sm#o0!4e2|E<v+`7vdp$q%-DQw{M(SS5
zuBz>KkD{I@%SqqegwPtiygy#je4<Y{*YqBIYkiBeAq!qkpCqfvZb2W43%~(C$4;=A
z^gOc8dU#(I$W6g0XiI|l+a57|3ro?#bZ(5hPF?5xiQR@!L#_oxlJgXDwo+T|(f9HG
z9(7CS;Ytk3VK1$~3$Ya9{k~5?jSLyt6!Is=adVb5Cz-4QyL4KtY?Hz6FKw8H7hcWE
z2!GtjuemkgO_4T~Nc8lEumxFFqOk;X(F}qnl;E9%<kaDr5j&+bK!PS!TZWP0vbcg2
zPGcR_$R(__#KR2}PHu_e(N$S8E=JeJ@^ULXYwgF2M^D?uHfn1v54+x%NzE>PVNr=n
zz9+L%q0@)><HN^Kbmnmc^Xwe#X(BXX(5Moa<bGeff6}WRs*9Usj2iva-MYn^e?M%o
zP$V}mua%i+KYs0Kg_1#rxS1=bwjC5Mr<Tg5g(OsK_X7vkf<zvvQp2n$s7d2jNf3Um
zUNKA=j;Q5^6n*4xNK)ebfu{n}0-ywaW^qt8*28b5?RgPH71KN-X)@#SQSHFkG=*Fa
z19~7&mP?6BdYPPix<c9yNiL}rtnwgn`b5R;!Z4$weCA^$jIqLvORS!fW%z`=&qLN)
zcv!N*Zq-hyG!KctLU+HIl_3p%v+%R1kA^|f=8Fj5P;3d0Zx-x*E^?w7c6q)(Kt^V@
z+VUD`KRaD{Jz65;w~bUP_ul`W!=ssa-nPZx;3d<I_%N_sbOiTuLH!_nhrPtrTql;A
zLG1q9p<1qifAU7}D*LpE@Wx%UC|m2M4=P68!6O2-oUgrFBYje{&HUzO<doo+aDJxV
z_jM+GWrgcPvmv-8xUyQ238Qq@$OL(<#ebBHwdm-(4<%+z7wb(@(hYK_UU#y4RMeF}
zGIAkDlqc$zExS6+1N7{=f%Y`d;_@tT5CSSAA#X>kVP>f!o6;R{@)?q~^O!EdhLCi3
zy+?Ip;A)&kD5MLX$7c1)o>srMM8!vi4|3_-P7=u4TECka-F-8l-D~2mJR&^Ve63D^
zK)eEf(f?9&jS*$wmEl#`NAsl~#`u-AT}@~UBQk5vV6CI!N30foY0VDK_JNZW!xlD-
zEY*8R-Pi;}CeB2w^htB4?-hOYVL$*R`gg8RU1+7k!k_oWo9M#RQaK5kiZyNfM5MyR
z0I4pBNKA1EQDVE(Ujyl__Y+-L5*=si!4bIy<18uSj!^CQnLH%MZPa*<a+l$RFacZF
z6S1KcDQ+v!fSH;2r$M}O!@x;8IUXxsKC#6JMV?BzHS&=<IgL4T^=!8Z9#ClcJ&2hl
z?fcmKTzofXI}<$S?qB$0sT+y-!PBKlCaL<t)#~SYCLHlZpW;Pn3(VNK#&X}^`Y?am
zmn!t*;OaDI29lYGr|XBJpyjqID(Pt!A%u*x^~^?8&qhSubU{^1<;D{}&pV%AS6+aF
zPNY2%Qe&|~fq^niqAT=`>H}mpQtMP;G-#Wt5r=Q?n;{1U7MlZ37SV_Y<O2ec0T0WC
zT)z-GDzjU~MaP9*bVxN%=EepVYB$fvoeg-@C--~W`#fJ%pPSbmXrYuY#yx>;zk>UM
z{ZuF(*dL)p8zjyg6_#@;+&z*K+mhURFWAd<tgVJ71TDnBtlk&mDmHy-BY~9lg(~^>
z2i9uA%CNlGdxEzug)`Kadl4i*1_a%*O+6d5Di>U#h4jns(|2SR0(32F7p;yTE23n{
zKVV1`0keMb9mA|5<+0?5du-To6*o8q$L0DkA!qXtq{Rc}bEL19A6VKe4t5J1H`1!{
z+}D#u!u)@(1kA+{w-7=u&U=$F{@JaSW-Je?Oz3u*ZV2$rqIFCj8hi+udwB`4e`q)L
zDC9F38Ep%(ypA=^w+tQKW!l^QpcO1wUI4(lMI%u8h=-l_@s=le(ku{JADKT<hagAe
zluFwmlYy4I`f_Ub_u-Z~Y^IE(F%?oa{q(B@meI6yQ~(3V`zh8JM`;=q4<~|Pfy!3b
z&oEEsrVE+9X`juOK&&Xajfg@x(wTF|qQs^Elqyj~GpimeW^Qd1Ps{mEkuH?ve%|0Y
zk*=1chHs({e*6CNxbGVQr@0{zh383#PKRMk7Z2Ff8YHz)*bmfc%kmG{4}Ug_+piAJ
z`uPKV_G4e=U&?s?;CaOLcfd@yH^`t)FW~MJZ0mDU^A8!1EgrC=jCzY(5<P?~Wfx3q
zAO~w%m#zFH!RhpmPV4k$nhW$a${sT!clj}kl1nIh0yGL?$?w#2iD%t8hY9;hL3U3P
zQM^3beST#)dBun_j1)~6;F(I<$WLQ)ibQ*Njf?tYW!2sG@T1lO9`PKH;4)CxV<kOj
zylEx6<>MGL{o08`NEZWl<<0^yf3$kvVG{kY;{;+1YLDj}3ibHza~Bi{70XlUUfGn_
zt`Dk!2YBp9h6R<OYI^fP6r?NgG*9)6Yt9ipv+dW!@?6C~;TP?(Za1rxM3gE33WZAr
zp+<VF*T4ny0N4E*;D8Niyd9nZiDI7KjLj4c#+}x-V=pE1G#<{OMYWFyk#wjtMnmRt
zaEXa2LtE@IJeOIvS~}e2P9E;kJ9{~=g1abH^j9V`*+iqB2V9=desCFMzK68*H{W&G
z2fNeruAd!X7e2v=XPY^g!z9SDOxy3V0H%SV>1^5~8GKpR$g<<ZtTn-ooJ^R?CKRE}
z`g3L0nv_{e6N5Qjzbq_89utQ(w6(vRarAvq@e}Lssc4a%bclj7{QX<s2VZZB7K6&;
zkLy|M!|cLZ>kFbI<?k+y2Tg4HImXrXd0e$g%yxIt#%KTMPgk+eLhe|I--(g~G+#=e
zA+Nk2xG(t!Z<~{Et+p&2m;DH1943n9X@A!7)j;st8>p~<K2Fd47_p+T&SXZWAJA!4
zTNPK4WQ(l1@G%0vw9Bfs`rR$|XIltp#14gbXE+^5Fz3La656jH5Ocnrr%+cU<<d)S
zw0`C;@Zb|@KFRZL!HVZ&9dEcringWfhP%NW5NT_}gLb-3m+<VSQ#~?e=Rd!`9Xs>U
z)OlLGXC&f-&FO}F{o~2@kX0T<?6#h%mBGg4e#ht=#OBI<s=FsQn?IEHQ;5Gf7QQ<0
zv-<Z{Hdh8%3n2UWt_?D`^|IPKQ7AjEcVrNFdE=MwLj4l?3T}Tha!-#SaqXw17Y#94
z&lt&+8Q})GO+$?b3_pv=)-GR^l3TMAHB?#;&RfRtw2!RWkJH~Vm@m2N=`O|dN1u9C
z<2Pj^vaGrrZq*s*8zZrwEOA{sRX#uE6*rL$v(Zx{&^2xD4#enY9OSk2fG!B6F^sb$
zU!=Lr3^-;}^Ct1+=jeWZ6wT|--#Jtx%a|JqNC}B?bMp`J<|*0w9t?+sipkS5EEFHY
zfr^0|7$QPe!zT<Cj}~Mw;*i=$jn^1CiMQwUff6RhR6pD)5os%-kRm&okBOO<%ic)j
z7?0hgmnwaGW$O&4f2}oz`eU%?Izhu`k^lJX4-l=)trz+ej)$-4U<k{f-`Q7#UWKu#
zScWbf)@E&WH4j{qUI%HCbq^+I;<yX67y0zpQERQQmc4>UddN21WS249pO^zx9*BX2
z)(-d@JDz4q{S!1fvBW9FosmeP4i=YueGN7aq84)>N=*`e0>*bYmu*tAMyKJqszIjd
z{bVABQJMX_`X+8Pyw2IFrtN#b_7e9Z_e%P|b(jL=Adtz<OZGA;3(|#B{av8HFXCfq
znoqdN$V6tI-+xG|XPMhH6FwV3lWhzERWM}CSb+?qjcEq9-ap_(Xb$5e_sOM#<_C?$
z(QCMh6pcTp%r@0Fs4d{Q-jL)~P1~gB(NLI6d3(tPNVsZP9Y0<EBv_5Ljc;E=R=!kY
z<nifNEU@)Q=H40qR#a2-8zN=6|0F-3XBkdcwM+T|b3MrpGfnm9>CQ6puO*u)GS*Zp
zHam0r4(Y4ZOVSM$#quy}RtQO{mN1Z+6opYCJ%)>r<-GMyWE`-+CYaMD@l>&aHfWzO
ziLX#Pg!GV7HL{5k6?->n?j3KG*p|rLmL^(HyzF_{7rtXnr(?XQehrY%E`7rkt%S}4
z(F7D`QQ7FzCicu$%em<3eIp6y?Z7?vv+1SKZ<z>rcH*8|j=>d$PvhIa(`(8gi-W)M
zXmm#gvCdDj?%D6N8^TN|y>o_<Q-8;d*rD>S8^*5YT{Kq53#9mu4KE15Z6hQe{kvT!
zh)+m*zus-apwWnzR^8+((U+d%?m<~d8E!pqMiwb8Qk?T$8!eZ9(Ib1^X?Zq%VElpt
zXHCYKZ;)|y=EHM)!EHrO-%h^v=NduTWN~f6dG(XJBOwYcT6LK5jYoA7y<M8Dj2Fcy
zdn&=GXsIF)4?Dx?TFo@Fq<iSF_Hh;nQDIryK%@0r+(Vo7FxSkELdwFzo=dQJj1Nm8
zX*z{45C5~eQqhpj)vybzQh>f20c<oO0WsmO&Ew{dR7qdu9>`}&=ICnwZY&IUht-bz
zhLPyf^MJ&F2|**Jc!K+(bDC^YsnbB-=aZhj??w=@n|?cPq|Scd5OGVzB2q+)+%XJ$
zkk2#{T&rCcZrL~KB&<F9#S>4gXpRUVw;pU&JR*qJalory!h}Sv<v^QV^0^e3YfU1g
z<kTG3o2&JHiJI3)(z_-@78}N<U`<j|@<*oUnMM<6{Z^Sy!wcR&jj=GN{W`(7_NByg
zG0L@q?696@q?(12HL6FjWP-+<bX$Wib7mw%ii>c((w)t*EH(ln9PqAu#*Tu}6ym*t
zLx;y0tf{qKA8dgY&?+F0jl&?|51aTrz$Acz;P=9}DOhH!uVenzoof-ge^j}Q3>~pd
zdtjxeV1?K?tO6hidaTi^{EPw|2twJ`t$|<S7(T0+Hs9lZQAE*t8FzTL@-6k!6F^8d
zW|OC7JwCLU5fB3Id{-w%DnZqWS6znV_a$2O@Os|shU@FM2?}TrP%XxiemzEN&AqUz
z_JW$@Y|HrJNMnPtSQC($Ks4GfrTcEe!di582MfN*;Jd2c7Z|7BAyoJG9|R^oyyt0R
z*0!AQ@K2u3C96YeUjKy@-JsV2gMizk)zPRo0%NLe7u<!8XD^U|bf{&w2veXHdr-x{
z0;36PrYk`B85J$(9S#0jvimU<DQMIG8aI%U)2!`${ZP^ca)wieD~?(dlIQmHK89%Q
z7#6NoGTAL{bSuY%RMwc-O=JNMUMg}h$Nss8tqY^sNROoh!kz6sbb$7^go=GfcbP=~
zqy29@y5F9yA^MQrw?Winc+&4Y@{+2TBBf9;5sw_`^hhb3n0kB)2o*T#OsWe`Vr#ma
zT{x^l8VCi=?>D&*EECy?f9`-Z2*1zxvD|Vk{#auR(pQ()3^&JC<TomC9o57B$)d5-
zoHdTp_WR-jGT75pzhIO=FPn%T)qRE?2O6qOfi1Rw?eU@Is=U#facErnMO3ER5Bw2t
zBJ(0z#$PfAs(S%$#ZR@z5q$CWk=+YVdCb>1e7`g_B_~5)+^)oZbvtNj`(UAKp!a$+
zGI=2yDuAhlBL6_VO$mHTr^rcYXCzK|edm+d4IJ8d_gM6?N`qzwJ+f3<xc^9)&{EG?
zAzFoV?*z44W)QjuI*$U6NuUQ>Z4^x`P5C_jGNLw7Q>6I!H&JYa^rBqAH0tcdyX`^Z
z?$V?}%&B0r8Q+O3`L2f3_UhMJyJF*uoG|tqcAi%S*T<BD_VEtFLI~F-vCvC6zDUF#
zAFdoN*|zuxW|W5Yajq{lGiH<R<PjW#vrI7woW~>>f@+ma&;hoAPim;<UG)TK%J3Nh
z^~e_=&`s&v=16(Ix+2Zm&RFF(6x)?3-%}h~Pd`V}DcA(gtv81q^>aQAo~XG@aFM74
zq0r$T@r0`KUXUhRW5q~CZtx&seZZ!kIO2?5w@lq0>GMT(U_13VjY$vPEm+h#`RbyU
zlGiNzs`$tE0|PTp_Ouxt3lW<%^G%venk{qAa4YDpoz8x^+6(EmMULdX`qAaj9p0Qf
z+9i!8sJc1okS~KwHDkXSGu$u$nic1mw*~Nu8c5$MyZfc_vkiU*u*!KJh=*vHfJ{zQ
zhCgmD|4at0lHC;=)1UgT$q#cm(3gRfXE6y93yq-$gEVS0p?J|0hDDj8-1)9jT#QFD
zEEc4S)LJ#h$YG8#f;?m%kiHuptNvy}i!+>I5^~^d*Dx9MdheuQjAHNd%NUt@-9~v>
zLt(&Mlm2Lc^Ax7GgtD5I@^_V=)O1UJvSVsJtFQd9XqDV+kp^2FJ#3x^TLLZeL8F62
z{zg($8KHJqndOq90bP1%xOMA=<zthJ6GhL0wPR2CrTfli`06Sl_fqdptM|ofn^|sg
zeF2^6Ly#HvChW&tP&yU5>TOL@>A~V^b{95#-JP?umDyUQr)iC?y050EY)Pvu9X4Z6
zLq%I*Yq@TrQsO9Wak^CtT79u@WO!JcSxGDRqHEIp5-16!vfNut)i<{l)lZw(z;U6E
z34|qGbN8voOjgQj$VqE%a&l%?#?Si1JB*6-j)E(0iq`ec`KG^VF>&E>m<efMv#(G1
zDcj}Z(u{O+b!|zJ;H1AXw(4hD_Ua3Uy{)OLW<dk{B4gj;Q?tvp-qx*UPocN4Rn(@2
zhlj`AdaUQ7WbA2l+wIF(SvH|TdzDdbed>NBMWTpnJ>_H5VlKC<P5|jqv|;%PRbH!h
zm`r9vbE~e_Qk&}X#1i3&dkdWi;^j{$cN!Px{wI$+xet<0OOK07o_1AcbWN?6rmB!)
zN0GN8OR<Inb!BxvL+D0<crmw$vuCGAQT1f`y6TlC80ZL6_SNmKdqkP)ou}ruG1SbY
z3!aOv29%j@rnYCwLmpfnPq7nfxz#KYm(i=)&@Ly~d6jq!9~)<u>Y6p<FsnG@C>R!J
z=OU~xvL>OUr&e@l)5Loik)Ur+S2S^yMW%z}sk`H#d`s!=rCYR<#B!Lv+>NnPy%32w
zH5Ym%iCAehifZACy|4i6bHn9Gf3iC2EburZ8X2ncOzO_A)mE3(+luLFcYjb2YZ^dl
z!F1D=T$G3mbrY*3>Qx{(Ah&lwKFCwcg2x`T3LNWng`uXrI>#AA>^bbc&6?N!G+enH
z(wb<R7`-IvA&zg8Jp8(AhOM^vO<_{pGeysw{MNP`eO9miWImm@Oq@+Y9Jfh5e-EXK
z;2@OL2>+m8=Oh#}508|~@xnIxqJEKmQo;9UKIB1qi0cfw=S!)5v)!jS2QC3ktS`;f
zH>xBhxKDpreL_R$Wb)@?=uc{J^73d5*~$7u!?AODv1LB(Tk&EQA7C(-b>nka_!1-;
zeW;F#E;SRj*w&$QE#hg#cvumm4xRKlsJ+=5!IfN}YO0J=s1F%)=M18~@mW-fxbbn;
zrp{)Sr}029IyYcc$Q@ad7?vLz$2%$ASBqJ6<hIDVSKULOX_HrG;B|`TrAhjdgORjG
zc)cLIchboz{6+W6km4Q=bxv;L5w(P?p{4(39f=p^OS5QgmCg1Si?Wj<!jpWJg~GCi
zjA&Ye`RQo-aFuI?#+&<}iuke)<oWD`McLsswjYOEov_XMk`)%HXw3@}Y4WLRpHJou
zDYLjmG%07IsgkUlX^x<^1=4jv&iRNl_K4KvH%g3Hp0=v)kJ#6kmJFN*;Q<Rxg#$*E
z`Stvk$3$PO>8ks%>ak0*4y6jQ&wjk@7e#t;{c6kS_>h;E<byEIO=XL5Skju9i}xZa
z!IQ7qI`7J!BsP?-u$b8p>L@?7rc<k%>5(7!MUuTXMyANm-T@yr8RCb`gR1BaaLHm(
zDT7+k9OXIYiQ1``8m{^zk5NdHeX2pU_9Z)V=47mDt>zP3E~<vm9}%sY9M~ksO&BsN
z702)6nPT3%zm<Q~R3aTAe39kfF~-;KMzPWjVJ;!Dpp&6M0Z61YL=y-O*9mb$><1F2
zQh1UG&I;0+2OAq9h~Fnyl;W%nSC+L5>mlHOZXt))4ZrDy*9~l&ju`*YGPmJPx%zRH
zI?|yBex3W<tYoE*Kd(+7<%Fi+EI`S<yvu{EP4(9qY~b8hvrcJw4_BK6w9}B7-lG=;
z#{qO?bocNUAiBGa5pWIj-pk=0b9bwfbCt4B2hVWU`}gA{CUNBsvEL5aL;~sqst~a#
zU!*U`^>?=ZONi6~;?MUd`+{f9lB?z~G32)F39fd=XNm2Y9;WMA+uZ4{U#)#IM(-}k
zHpL&ry^Qp>uLt%A=0knfAG*hx`Mns{YkBs(qc5`6Tn*L`*e>zZh_3kh0^9JxX=(QY
z6+HXiz;nP;#~<U>CsizuvsTk&*X!&`PrMznZeEk`8=PuzmID~u8;h97fp=lXE)5@3
zj5`Z(&)%&bouBqT$+Up>1e_RGA=Jp|jWpXK`kI$rvDchewBgRCdTj9<cFyUKJN&xg
zQYmj+DnbrWM=x$~u{=G&Nw!V?V<y_M*0Y-|Lj_SuOA#jQ!W!hZw4~aVjmypMy&r9L
zCKgLNVH`uv^jocvo1;&R&x~~SoF9?D3!ZtjhzS{zh$7-kAtyVpI{P^v4~EGXde@?g
zX=3ZLR)lLW0Q;9348G4*bv2V#Z0=y6mED^K)j7lPM7|Pao4I}WOZu=2{ozNjpl)}K
zsH>yT#46p_{4`XJbo|c(a1xFkO#1qC$tuHqNR}k5f%pS($eDrN{TXaHxaE9>8S@of
zg{azbflKis1W5%oK8^~Wn(-{QZMi!f9dli9D1@Z7*)xOTQS^hMlr3EN-TptYU@JO2
zqxTXP?R<T6Q+4FDB6n8qKlL_8pf{BA!;q)BC@iD?+0T76r=(IrQ*iDut(*#emrtyB
zX8lLlohqugQ0B{-k2A+2=gl{my}DOq5-4WR|0PHDE&cQ@M->DFr<wkD$}9-@uRK*H
zcROQ7QCk})VPi)_2Xi|oTX20G_^XV*wK1chz}rPDWo}^XpzmaEYoloFU~Yo=RzPR!
z2w(vNU`jzjTQ^O5Ru*OeJu{FQ0AgZi2XJzLv>7Fw^sUSd1#C>Mi~&GIMgd1dV;iS8
z=#AAsKp}lQabt5+GpDy9h>VI(#?~qT4lvEz%;0i8V<x~`Qmq0aI7RlK8NVRVzr_DX
zc^?ZC@c&ZWr=1`jlL15vK6^$at`EVU2UXCDh%XqC?M$Guo}dDN5^-#>oZGR!y6sm}
zDu*Qd7eHnorVp1V`mXTZnZ6N*u89koAroSaQFrrUoP);jY0f{1o7_1Ms+;Q+lM5EN
zw%CSm(8jhrvUb*{o0mQk@0w4?P(CE?=o&KG!{c6EJ9<j(ZF#5jZPVzpiOjP6OmRHC
zYRqb@Q5~#3e3&Sh>wb2VA%Dg2;h_M@j3?8q%nw^zaEDnph}SWM_m$i|Q6x;f-i>)C
zXO69uv;9=cP>ATV&FGP7Tntbhs)h3GleCjq^`kXb{c72#+sRlmb5H9Ivl?4FPH@HR
zCaDra=*aRi)&O(nj_Y96$>E{#sCu^E+YURuW}f+?b9JDbSCHQxQl0Os?RTKN(XRQZ
z%Bc6~*`WUDdD4DwN&iRkMD`WKvErI>V|`zjbdCP1e}wRl<?_z{8HiTwRUz$#=*soF
zoDDo?`Dp*FmLEKzeMI-_pxr+s?{(;~i!Q@&rqkwCU1EC0Q0nLx@z+xlHaqysJA$-6
z1m(vk<THjTq5s8vLH}0B`QL`hsOW6q^k%h64$j7ZVFmRajo<9$|7@@34vtPjX8I0q
z)+eR^510jPz^dj(PG*jp>|mQ^1G@z)5C~vqW(Kf;t@#bd#0mtw+4Em`4$i;sZ}1!L
zt-aBKX%OG;Z}`9Zz+>3h*#2t_c&>lq-|p;8On<dE9&a!!E0~Uz4e_7&H<~v&-oA5y
z`MvS@Z#r<_zw^=lFDLnz-va*fYXw9`C0k`1^SA0&z+bNNcjx(M5<R#!Rur6m{<gz^
zCt&%PcfD;Y0Q6VwEFz<vgRP;Wv6ChvxZajg$=J<F`)^M9uTg*LL{8t-m{CsO;myz4
z-*_-87(3cJI~W=}0zhvp6d0wAjm-7mg2!7pV&!CI0EZ7wW_BPD{NF7LfP)3Z0Nw(2
zHfDBqPF5xkZALK%TW344*ot7y>)SZmy-jZD&M2e^4k#|>hQ<nFf{YRXC$LrU@i7X4
zMF;bC1pKwYe~TXfw!Hs;3HnyZpzv>kzU|su>;|v+zXf$f{Eux!{MSB$2mC*5BmitU
zlIBK^nt-=BssQ*)8E;4-TW7GcnEp)!(7zQ|{3U~sJ~*b^nt~N;3fALadPQWEwKKL6
zFnoJFX#UrXjB4r{02^m3tN;1{g6Edfw=tzMaiA9zq5hlI{IiGxyhs6OCo@|I9#Iid
zQ6P{-0Bi<eZ(tJwH%@SSgGGQqCLp+v4Ge?8{mkIT0&ZZW2qzzS0pLPz@bl{*Q?R~S
z61eMa_#4^V6zoi3GO!^VIU5@PlaA$|EWosX(Szw&z#_1{v3YB6?7^(w#=o(Dvrs0m
zD9p_NWC>omFu0<eN|=iY$ixDcjRV9EVg+*00+}d*KuYR=+fg?MV-rLm0K|?6p6MSK
zfQ^-vnH69H_%9rYm5CYr%zL{4HvhnZVG#IP{&yTR5FBa#jsvl>0Kr=MpLFbCz5EXx
zh!gA>f5U-TS=qtr_!|z$%=8vQ{)PjwfKL<uiDUi`Sy;e>|AUU>Kj&iw@74dLV+C=5
z!_MFNf))Bd*9Kzc0D|rJpL9+R`rspj!<)+}ntOo5A3LLhtt~i&{pDMTj1o2`wgAwZ
z&4Ht&gfKu8z#}Tm!p<VZ$ssJt0b~~u5EcS*Ff((2gjkrt9Re)ue2D*dk~ilOwlx$o
zGd8qzbhZXCvWkkb3UUgFf|!IjnLx|}>>^;x5fl|*;S>_#5ESKna{)&ueFvw%%mKs(
PWMM@lCl`?wMg0E&^Ql1<

literal 0
HcmV?d00001


From 99818c211d39ebd7c12751e9144c93e0a3a5bb40 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 19 Jun 2024 12:18:20 +0200
Subject: [PATCH 015/375] Fix cs: upgrade of php-cs-fixer

---
 .../Tests/Form/Type/TranslatableActivityTypeTest.php        | 2 +-
 .../Connector/MSGraph/RemoteEventConverter.php              | 4 ++--
 .../CompilerPass/ShortMessageCompilerPass.php               | 2 +-
 src/Bundle/ChillMainBundle/Export/ExportManager.php         | 4 ++--
 .../ChillMainBundle/Search/Utils/ExtractDateFromPattern.php | 6 +++---
 .../Search/Utils/ExtractPhonenumberFromPattern.php          | 2 +-
 .../Tests/Controller/AccompanyingCourseControllerTest.php   | 4 ++--
 .../Tests/DependencyInjection/ChillReportExtensionTest.php  | 2 +-
 .../ChillWopiBundle/src/Resources/config/services.php       | 4 ++--
 9 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityTypeTest.php b/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityTypeTest.php
index c6ecc377c..6715af3ed 100644
--- a/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityTypeTest.php
+++ b/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityTypeTest.php
@@ -60,7 +60,7 @@ final class TranslatableActivityTypeTest extends KernelTestCase
         $this->assertInstanceOf(
             ActivityType::class,
             $form->getData()['type'],
-            'The data is an instance of Chill\\ActivityBundle\\Entity\\ActivityType'
+            'The data is an instance of Chill\ActivityBundle\Entity\ActivityType'
         );
         $this->assertEquals($type->getId(), $form->getData()['type']->getId());
 
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
index 94b488ddd..84797f6f1 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
@@ -37,12 +37,12 @@ class RemoteEventConverter
      * valid when the remote string contains also a timezone, like in
      * lastModifiedDate.
      */
-    final public const REMOTE_DATETIMEZONE_FORMAT = 'Y-m-d\\TH:i:s.u?P';
+    final public const REMOTE_DATETIMEZONE_FORMAT = 'Y-m-d\TH:i:s.u?P';
 
     /**
      * Same as above, but sometimes the date is expressed with only 6 milliseconds.
      */
-    final public const REMOTE_DATETIMEZONE_FORMAT_ALT = 'Y-m-d\\TH:i:s.uP';
+    final public const REMOTE_DATETIMEZONE_FORMAT_ALT = 'Y-m-d\TH:i:s.uP';
 
     private const REMOTE_DATE_FORMAT = 'Y-m-d\TH:i:s.u0';
 
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ShortMessageCompilerPass.php b/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ShortMessageCompilerPass.php
index ebbfcee1b..9da9154b3 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ShortMessageCompilerPass.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ShortMessageCompilerPass.php
@@ -43,7 +43,7 @@ class ShortMessageCompilerPass implements CompilerPassInterface
             $defaultTransporter = new Reference(NullShortMessageSender::class);
         } elseif ('ovh' === $dsn['scheme']) {
             if (!class_exists('\\'.\Ovh\Api::class)) {
-                throw new RuntimeException('Class \\Ovh\\Api not found');
+                throw new RuntimeException('Class \Ovh\Api not found');
             }
 
             foreach (['user', 'host', 'pass'] as $component) {
diff --git a/src/Bundle/ChillMainBundle/Export/ExportManager.php b/src/Bundle/ChillMainBundle/Export/ExportManager.php
index 9cb2a54ba..d4e87d449 100644
--- a/src/Bundle/ChillMainBundle/Export/ExportManager.php
+++ b/src/Bundle/ChillMainBundle/Export/ExportManager.php
@@ -190,7 +190,7 @@ class ExportManager
             // throw an error if the export require other modifier, which is
             // not allowed when the export return a `NativeQuery`
             if (\count($export->supportsModifiers()) > 0) {
-                throw new \LogicException("The export with alias `{$exportAlias}` return ".'a `\\Doctrine\\ORM\\NativeQuery` and supports modifiers, which is not allowed. Either the method `supportsModifiers` should return an empty array, or return a `Doctrine\\ORM\\QueryBuilder`');
+                throw new \LogicException("The export with alias `{$exportAlias}` return ".'a `\Doctrine\ORM\NativeQuery` and supports modifiers, which is not allowed. Either the method `supportsModifiers` should return an empty array, or return a `Doctrine\ORM\QueryBuilder`');
             }
         } elseif ($query instanceof QueryBuilder) {
             // handle filters
@@ -203,7 +203,7 @@ class ExportManager
                 'dql' => $query->getDQL(),
             ]);
         } else {
-            throw new \UnexpectedValueException('The method `intiateQuery` should return a `\\Doctrine\\ORM\\NativeQuery` or a `Doctrine\\ORM\\QueryBuilder` object.');
+            throw new \UnexpectedValueException('The method `intiateQuery` should return a `\Doctrine\ORM\NativeQuery` or a `Doctrine\ORM\QueryBuilder` object.');
         }
 
         $result = $export->getResult($query, $data[ExportType::EXPORT_KEY]);
diff --git a/src/Bundle/ChillMainBundle/Search/Utils/ExtractDateFromPattern.php b/src/Bundle/ChillMainBundle/Search/Utils/ExtractDateFromPattern.php
index f858797f5..9cce3fa13 100644
--- a/src/Bundle/ChillMainBundle/Search/Utils/ExtractDateFromPattern.php
+++ b/src/Bundle/ChillMainBundle/Search/Utils/ExtractDateFromPattern.php
@@ -14,9 +14,9 @@ namespace Chill\MainBundle\Search\Utils;
 class ExtractDateFromPattern
 {
     private const DATE_PATTERN = [
-        ['([12]\\d{3}-(0[1-9]|1[0-2])-(0[1-9]|[12]\\d|3[01]))', 'Y-m-d'], // 1981-05-12
-        ['((0[1-9]|[12]\\d|3[01])\\/(0[1-9]|1[0-2])\\/([12]\\d{3}))', 'd/m/Y'], // 15/12/1980
-        ['((0[1-9]|[12]\\d|3[01])-(0[1-9]|1[0-2])-([12]\\d{3}))', 'd-m-Y'], // 15/12/1980
+        ['([12]\d{3}-(0[1-9]|1[0-2])-(0[1-9]|[12]\d|3[01]))', 'Y-m-d'], // 1981-05-12
+        ['((0[1-9]|[12]\d|3[01])\/(0[1-9]|1[0-2])\/([12]\d{3}))', 'd/m/Y'], // 15/12/1980
+        ['((0[1-9]|[12]\d|3[01])-(0[1-9]|1[0-2])-([12]\d{3}))', 'd-m-Y'], // 15/12/1980
     ];
 
     public function extractDates(string $subject): SearchExtractionResult
diff --git a/src/Bundle/ChillMainBundle/Search/Utils/ExtractPhonenumberFromPattern.php b/src/Bundle/ChillMainBundle/Search/Utils/ExtractPhonenumberFromPattern.php
index 1823e462c..2be3d54db 100644
--- a/src/Bundle/ChillMainBundle/Search/Utils/ExtractPhonenumberFromPattern.php
+++ b/src/Bundle/ChillMainBundle/Search/Utils/ExtractPhonenumberFromPattern.php
@@ -16,7 +16,7 @@ use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
 
 class ExtractPhonenumberFromPattern
 {
-    private const PATTERN = '([\\+]{0,1}[0-9\\ ]{5,})';
+    private const PATTERN = '([\+]{0,1}[0-9\ ]{5,})';
 
     private readonly string $defaultCarrierCode;
 
diff --git a/src/Bundle/ChillPersonBundle/Tests/Controller/AccompanyingCourseControllerTest.php b/src/Bundle/ChillPersonBundle/Tests/Controller/AccompanyingCourseControllerTest.php
index 4f8f1453d..240c3ab98 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Controller/AccompanyingCourseControllerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Controller/AccompanyingCourseControllerTest.php
@@ -74,7 +74,7 @@ final class AccompanyingCourseControllerTest extends WebTestCase
         $this->assertResponseRedirects();
         $location = $this->client->getResponse()->headers->get('Location');
 
-        $this->assertEquals(1, \preg_match('|^\\/[^\\/]+\\/parcours/([\\d]+)/edit$|', (string) $location));
+        $this->assertEquals(1, \preg_match('|^\/[^\/]+\/parcours/([\d]+)/edit$|', (string) $location));
     }
 
     /**
@@ -93,7 +93,7 @@ final class AccompanyingCourseControllerTest extends WebTestCase
         $location = $this->client->getResponse()->headers->get('Location');
         $matches = [];
 
-        $this->assertEquals(1, \preg_match('|^\\/[^\\/]+\\/parcours/([\\d]+)/edit$|', (string) $location, $matches));
+        $this->assertEquals(1, \preg_match('|^\/[^\/]+\/parcours/([\d]+)/edit$|', (string) $location, $matches));
         $id = $matches[1];
 
         $period = self::getContainer()->get(EntityManagerInterface::class)
diff --git a/src/Bundle/ChillReportBundle/Tests/DependencyInjection/ChillReportExtensionTest.php b/src/Bundle/ChillReportBundle/Tests/DependencyInjection/ChillReportExtensionTest.php
index ae01d8d90..db938f0bf 100644
--- a/src/Bundle/ChillReportBundle/Tests/DependencyInjection/ChillReportExtensionTest.php
+++ b/src/Bundle/ChillReportBundle/Tests/DependencyInjection/ChillReportExtensionTest.php
@@ -41,7 +41,7 @@ final class ChillReportExtensionTest extends KernelTestCase
         }
 
         if (!$reportFounded) {
-            throw new \Exception('Class Chill\\ReportBundle\\Entity\\Report not found in chill_custom_fields.customizables_entities', 1);
+            throw new \Exception('Class Chill\ReportBundle\Entity\Report not found in chill_custom_fields.customizables_entities', 1);
         }
     }
 }
diff --git a/src/Bundle/ChillWopiBundle/src/Resources/config/services.php b/src/Bundle/ChillWopiBundle/src/Resources/config/services.php
index 005994bb6..d29f33205 100644
--- a/src/Bundle/ChillWopiBundle/src/Resources/config/services.php
+++ b/src/Bundle/ChillWopiBundle/src/Resources/config/services.php
@@ -32,10 +32,10 @@ return static function (ContainerConfigurator $container) {
         ->autoconfigure();
 
     $services
-        ->load('Chill\\WopiBundle\\Service\\', __DIR__.'/../../Service');
+        ->load('Chill\WopiBundle\Service\\', __DIR__.'/../../Service');
 
     $services
-        ->load('Chill\\WopiBundle\\Controller\\', __DIR__.'/../../Controller')
+        ->load('Chill\WopiBundle\Controller\\', __DIR__.'/../../Controller')
         ->tag('controller.service_arguments');
 
     $services

From 427f232ab805125a010a9a4a78cad62e795a32be Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 10:53:33 +0200
Subject: [PATCH 016/375] Correct namespace and use statement for
 StoredObjectVoterInterface.php

The namespace was formed wrong and needed adjustment
---
 .../Security/Authorization/AccompanyingCourseDocumentVoter.php  | 1 -
 .../Security/Authorization/StoredObjectVoterInterface.php       | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index 93243b1f4..dac08b05b 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -19,7 +19,6 @@ use Chill\MainBundle\Security\Authorization\VoterHelperInterface;
 use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodVoter;
-use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index a3a76e79a..c0fd7e09f 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -9,7 +9,7 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace ChillDocStoreBundle\Security\Authorization;
+namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;

From d26fa6bde6e8113cdb2e6d4aded57635a1d8254a Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 15:17:56 +0200
Subject: [PATCH 017/375] Implement voting logic: separation of concerns

A separate AccompanyingCourseDocumentStoredObjectVoter was\
created to handle the specific access to a Stored object\
related to an Accompanying Course Document.
---
 .../AccompanyingCourseDocumentRepository.php  | 13 +++++
 ...panyingCourseDocumentStoredObjectVoter.php | 50 +++++++++++++++++++
 ...nyingPeriodWorkEvaluationDocumentVoter.php |  7 +--
 3 files changed, 67 insertions(+), 3 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 2679993c4..239b88b90 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Repository;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
@@ -45,6 +46,17 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
+    public function findLinkedCourseDocument(int $storedObjectId): ?AccompanyingCourseDocument {
+
+        $qb = $this->repository->createQueryBuilder('d');
+        $query = $qb->leftJoin('d.storedObject', 'do')
+                ->where('do.id = :storedObjectId')
+                ->setParameter('storedObjectId', $storedObjectId)
+                ->getQuery();
+
+        return $query->getResult();
+    }
+
     public function find($id): ?AccompanyingCourseDocument
     {
         return $this->repository->find($id);
@@ -69,4 +81,5 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
     {
         return AccompanyingCourseDocument::class;
     }
+
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
new file mode 100644
index 000000000..db1499a99
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace ChillDocStoreBundle\Security\Authorization;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\MainBundle\Entity\User;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Security;
+
+class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
+{
+    final public const SEE_AND_EDIT = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_STORED_OBJECT_SEE_EDIT';
+
+    public function __construct(
+        private readonly AccompanyingCourseDocumentRepository $repository,
+        private readonly Security $security,
+        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter
+    ){
+    }
+
+    public function supports(string $attribute, StoredObject $subject): bool
+    {
+        // check if the stored object is linked to an AccompanyingCourseDocument
+        return !empty($this->repository->findLinkedCourseDocument($subject->getId()));
+    }
+
+    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
+    {
+        if (!$token->getUser() instanceof User) {
+            return false;
+        }
+
+        // Retrieve the related accompanying course document
+        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject->getId());
+
+        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
+        $voterAttribute = ($attribute === self::SEE_AND_EDIT) ? AccompanyingCourseDocumentVoter::UPDATE : AccompanyingCourseDocumentVoter::SEE_DETAILS;
+
+        // Check access using AccompanyingCourseDocumentVoter
+        if ($this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
+            // TODO implement logic to check for associated workflow
+            return true;
+        } else {
+            return false;
+        }
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
index 77c131cd9..8f4a1b995 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
@@ -21,13 +22,13 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  *
  * Delegates to the sames authorization than for Evalution
  */
-class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
+class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter implements StoredObjectVoterInterface
 {
     final public const SEE = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_DOCUMENT_SHOW';
 
     public function __construct(private readonly AccessDecisionManagerInterface $accessDecisionManager) {}
 
-    protected function supports($attribute, $subject)
+    public function supports($attribute, $subject): bool
     {
         return $subject instanceof AccompanyingPeriodWorkEvaluationDocument
             && self::SEE === $attribute;
@@ -39,7 +40,7 @@ class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
      *
      * @return bool|void
      */
-    protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
+    public function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         return match ($attribute) {
             self::SEE => $this->accessDecisionManager->decide(

From 760d65b9723d66b4bd3dd1aec55cfd784864a962 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:27:21 +0200
Subject: [PATCH 018/375] Remove implementation of StoredObjectVoterInterface
 in AccompanyingCourseDocumentVoter.php

This implementation has been moved to the voter\ AccompanyingCourseDocumentStoredObjectVoter.php
---
 .../Security/Authorization/AccompanyingCourseDocumentVoter.php  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index dac08b05b..7a46184cb 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -23,7 +23,7 @@ use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
-class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface, StoredObjectVoterInterface
+class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface
 {
     final public const CREATE = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_CREATE';
 

From 3d40db749386c47e4e6b690b41a53113f18fce29 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:28:19 +0200
Subject: [PATCH 019/375] Refactor AccompanyingCourseDocumentRepository.php

Build where clause using StoredObject directly instead\
of based on it's id.
---
 .../Repository/AccompanyingCourseDocumentRepository.php    | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 239b88b90..93cf00ecb 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -46,12 +46,11 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
-    public function findLinkedCourseDocument(int $storedObjectId): ?AccompanyingCourseDocument {
+    public function findLinkedCourseDocument(StoredObject $storedObject): ?AccompanyingCourseDocument {
 
         $qb = $this->repository->createQueryBuilder('d');
-        $query = $qb->leftJoin('d.storedObject', 'do')
-                ->where('do.id = :storedObjectId')
-                ->setParameter('storedObjectId', $storedObjectId)
+        $query = $qb->where('d.storedObject = :storedObject')
+                ->setParameter('storedObject', $storedObject)
                 ->getQuery();
 
         return $query->getResult();

From 73797b98f670c20535b8f1ca03a5f7de5862d224 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:32:09 +0200
Subject: [PATCH 020/375] Add WorkflowDocumentService and use in StoredObject
 voters

A WorkflowDocumentService was created that can be injected\
in context-specific StoredObject voters that need to check whether\
the document in question is attached to a workflow.
---
 ...panyingCourseDocumentStoredObjectVoter.php | 31 ++++++++++------
 .../Service/WorkflowDocumentService.php       | 35 +++++++++++++++++++
 2 files changed, 56 insertions(+), 10 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
index db1499a99..931378a61 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -2,13 +2,15 @@
 
 namespace ChillDocStoreBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
-use Symfony\Component\Security\Core\Security;
 
 class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
 {
@@ -16,15 +18,15 @@ class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterIn
 
     public function __construct(
         private readonly AccompanyingCourseDocumentRepository $repository,
-        private readonly Security $security,
-        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter
+        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter,
+        private readonly WorkflowDocumentService $workflowDocumentService
     ){
     }
 
     public function supports(string $attribute, StoredObject $subject): bool
     {
         // check if the stored object is linked to an AccompanyingCourseDocument
-        return !empty($this->repository->findLinkedCourseDocument($subject->getId()));
+        return $this->repository->findLinkedCourseDocument($subject) instanceof AccompanyingCourseDocument;
     }
 
     public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
@@ -34,17 +36,26 @@ class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterIn
         }
 
         // Retrieve the related accompanying course document
-        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject->getId());
+        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject);
 
         // Determine the attribute to pass to AccompanyingCourseDocumentVoter
-        $voterAttribute = ($attribute === self::SEE_AND_EDIT) ? AccompanyingCourseDocumentVoter::UPDATE : AccompanyingCourseDocumentVoter::SEE_DETAILS;
+        $voterAttribute = match($attribute) {
+            self::SEE_AND_EDIT => AccompanyingCourseDocumentVoter::UPDATE,
+            default => AccompanyingCourseDocumentVoter::SEE_DETAILS,
+        };
 
         // Check access using AccompanyingCourseDocumentVoter
-        if ($this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
-            // TODO implement logic to check for associated workflow
-            return true;
-        } else {
+        if (false === $this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
             return false;
         }
+
+        // Check if entity is related to a workflow, if so, check if user can apply transition
+        $relatedWorkflow = $this->workflowDocumentService->getRelatedWorkflow($accompanyingCourseDocument);
+
+        if ($relatedWorkflow instanceof EntityWorkflow){
+            return $this->workflowDocumentService->canApplyTransition($relatedWorkflow);
+        }
+
+        return true;
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
new file mode 100644
index 000000000..498348b96
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -0,0 +1,35 @@
+<?php
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Symfony\Component\Security\Core\Security;
+
+class WorkflowDocumentService
+{
+
+    public function __construct(private readonly Security $security, private readonly EntityWorkflowRepository $repository)
+    {
+    }
+
+    public function getRelatedWorkflow($entity): ?EntityWorkflow
+    {
+        return $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
+    }
+
+    public function canApplyTransition(EntityWorkflow $entityWorkflow): bool
+    {
+        if ($entityWorkflow->isFinal()) {
+            return false;
+        }
+
+        $currentUser = $this->security->getUser();
+        if ($entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+            return true;
+        }
+
+        return false;
+    }
+
+}

From 89f5231649c9ae1a76dc513d985d023f9c29ae85 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 25 Jun 2024 13:25:49 +0200
Subject: [PATCH 021/375] Refactor PDFSignatureZoneParser to use float values

This update changes how we handle values in PDFSignatureZoneParser class. Specifically, we've modified the 'MediaBox' and 'PDFSignatureZone' variables to use float values. The helps ensure greater precision, minimize errors, and maintain data consistency across the application.
---
 .../Service/Signature/PDFSignatureZoneParser.php           | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index 3aade2fcc..d57b98abf 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -39,15 +39,16 @@ class PDFSignatureZoneParser
         $defaultPageDetails = $defaultPage->getDetails();
 
         foreach ($pdf->getPages() as $index => $page) {
+            $details = $page->getDetails();
             $pdfPage = new PDFPage(
                 $index,
-                $page['MediaBox'][2] ?? $defaultPageDetails['MediaBox'][2],
-                $page['MediaBox'][3] ?? $defaultPageDetails['MediaBox'][3],
+                (float) ($details['MediaBox'][2] ?? $defaultPageDetails['MediaBox'][2]),
+                (float) ($details['MediaBox'][3] ?? $defaultPageDetails['MediaBox'][3]),
             );
 
             foreach ($page->getDataTm() as $dataTm) {
                 if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
-                    $zones[] = new PDFSignatureZone($dataTm[0][4], $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
+                    $zones[] = new PDFSignatureZone((float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
                 }
             }
         }

From 610239930bb7318ecd6f2f19729a33faa1e6b41f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 25 Jun 2024 13:43:48 +0200
Subject: [PATCH 022/375] Add serialization groups to PDFPage and
 PDFSignatureZone properties

The Symfony Serializer groups annotation has been added to all properties of the PDFPage and PDFSignatureZone classes. This change allows the serialization and deserialization process to be group-specific, ensuring only relevant data is processed during these operations.
---
 .../ChillDocStoreBundle/Service/Signature/PDFPage.php      | 5 +++++
 .../Service/Signature/PDFSignatureZone.php                 | 7 +++++++
 2 files changed, 12 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
index 138c4e1c8..ffe6bbb17 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFPage.php
@@ -11,11 +11,16 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service\Signature;
 
+use Symfony\Component\Serializer\Annotation\Groups;
+
 final readonly class PDFPage
 {
     public function __construct(
+        #[Groups(['read'])]
         public int $index,
+        #[Groups(['read'])]
         public float $width,
+        #[Groups(['read'])]
         public float $height,
     ) {}
 
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
index 515356e52..bdb4dcd65 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
@@ -11,13 +11,20 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service\Signature;
 
+use Symfony\Component\Serializer\Annotation\Groups;
+
 final readonly class PDFSignatureZone
 {
     public function __construct(
+        #[Groups(['read'])]
         public float $x,
+        #[Groups(['read'])]
         public float $y,
+        #[Groups(['read'])]
         public float $height,
+        #[Groups(['read'])]
         public float $width,
+        #[Groups(['read'])]
         public PDFPage $PDFPage,
     ) {}
 

From 1310d53589c4fbc0ca5ce6080aee18bcf195cb15 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 13:45:15 +0200
Subject: [PATCH 023/375] Implement context-specific voters for all current
 entities that can be linked to a document

For reusability an AbstractStoredObjectVoter was created and a StoredObjectVoterInterface.
A WorkflowDocumentService checks whether the StoredObject is involved in a workflow.
---
 .../Repository/ActivityRepository.php         | 17 ++++-
 .../AccompanyingCourseDocumentRepository.php  | 14 ++--
 ...ssociatedEntityToStoredObjectInterface.php | 10 +++
 .../Repository/PersonDocumentRepository.php   | 13 +++-
 ...panyingCourseDocumentStoredObjectVoter.php | 61 -----------------
 .../Authorization/StoredObjectVoter.php       |  8 ++-
 .../StoredObjectVoterInterface.php            |  5 +-
 .../AbstractStoredObjectVoter.php             | 67 +++++++++++++++++++
 .../AccompanyingCourseStoredObjectVoter.php   | 46 +++++++++++++
 ...gPeriodWorkEvaluationStoredObjectVoter.php | 50 ++++++++++++++
 .../ActivityStoredObjectVoter.php             | 50 ++++++++++++++
 .../EventStoredObjectVoter.php                | 49 ++++++++++++++
 .../PersonStoredObjectVoter.php               | 49 ++++++++++++++
 .../Service/WorkflowDocumentService.php       | 14 ++--
 src/Bundle/ChillEventBundle/Entity/Event.php  |  2 +-
 .../Repository/EventRepository.php            | 59 ++++++++++++++--
 .../Workflow/EntityWorkflowRepository.php     | 16 +++++
 ...PeriodWorkEvaluationDocumentRepository.php | 14 +++-
 18 files changed, 456 insertions(+), 88 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index a7025d4a9..54672c6b7 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\ActivityBundle\Repository;
 
 use Chill\ActivityBundle\Entity\Activity;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
@@ -23,7 +25,7 @@ use Doctrine\Persistence\ManagerRegistry;
  * @method Activity[]    findAll()
  * @method Activity[]    findBy(array $criteria, array $orderBy = null, $limit = null, $offset = null)
  */
-class ActivityRepository extends ServiceEntityRepository
+class ActivityRepository extends ServiceEntityRepository implements AssociatedEntityToStoredObjectInterface
 {
     public function __construct(ManagerRegistry $registry)
     {
@@ -97,4 +99,17 @@ class ActivityRepository extends ServiceEntityRepository
 
         return $qb->getQuery()->getResult();
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->createQueryBuilder('a');
+        $query = $qb
+            ->join('a.documents', 'ad')
+            ->join('ad.storedObject', 'so')
+            ->where('so.id = :storedObjectId')
+            ->setParameter('storedObjectId', $storedObject->getId())
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 93cf00ecb..246c7f2d9 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -19,7 +19,7 @@ use Doctrine\ORM\EntityRepository;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingCourseDocumentRepository implements ObjectRepository
+class AccompanyingCourseDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private readonly EntityRepository $repository;
 
@@ -46,12 +46,12 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
-    public function findLinkedCourseDocument(StoredObject $storedObject): ?AccompanyingCourseDocument {
-
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
         $qb = $this->repository->createQueryBuilder('d');
         $query = $qb->where('d.storedObject = :storedObject')
-                ->setParameter('storedObject', $storedObject)
-                ->getQuery();
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
 
         return $query->getResult();
     }
@@ -66,7 +66,7 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $this->repository->findAll();
     }
 
-    public function findBy(array $criteria, ?array $orderBy = null, $limit = null, $offset = null)
+    public function findBy(array $criteria, ?array $orderBy = null, $limit = null, $offset = null): array
     {
         return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
     }
@@ -76,7 +76,7 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $this->findOneBy($criteria);
     }
 
-    public function getClassName()
+    public function getClassName(): string
     {
         return AccompanyingCourseDocument::class;
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
new file mode 100644
index 000000000..5349251c5
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
@@ -0,0 +1,10 @@
+<?php
+
+namespace Chill\DocStoreBundle\Repository;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+
+interface AssociatedEntityToStoredObjectInterface
+{
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object;
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
index f880c0d67..57a964867 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Repository;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\Persistence\ObjectRepository;
@@ -19,7 +20,7 @@ use Doctrine\Persistence\ObjectRepository;
 /**
  * @template ObjectRepository<PersonDocument::class>
  */
-readonly class PersonDocumentRepository implements ObjectRepository
+readonly class PersonDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private EntityRepository $repository;
 
@@ -53,4 +54,14 @@ readonly class PersonDocumentRepository implements ObjectRepository
     {
         return PersonDocument::class;
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->repository->createQueryBuilder('d');
+        $query = $qb->where('d.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
deleted file mode 100644
index 931378a61..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
+++ /dev/null
@@ -1,61 +0,0 @@
-<?php
-
-namespace ChillDocStoreBundle\Security\Authorization;
-
-use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
-use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
-use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\MainBundle\Entity\User;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
-
-class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
-{
-    final public const SEE_AND_EDIT = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_STORED_OBJECT_SEE_EDIT';
-
-    public function __construct(
-        private readonly AccompanyingCourseDocumentRepository $repository,
-        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter,
-        private readonly WorkflowDocumentService $workflowDocumentService
-    ){
-    }
-
-    public function supports(string $attribute, StoredObject $subject): bool
-    {
-        // check if the stored object is linked to an AccompanyingCourseDocument
-        return $this->repository->findLinkedCourseDocument($subject) instanceof AccompanyingCourseDocument;
-    }
-
-    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
-    {
-        if (!$token->getUser() instanceof User) {
-            return false;
-        }
-
-        // Retrieve the related accompanying course document
-        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject);
-
-        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
-        $voterAttribute = match($attribute) {
-            self::SEE_AND_EDIT => AccompanyingCourseDocumentVoter::UPDATE,
-            default => AccompanyingCourseDocumentVoter::SEE_DETAILS,
-        };
-
-        // Check access using AccompanyingCourseDocumentVoter
-        if (false === $this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
-            return false;
-        }
-
-        // Check if entity is related to a workflow, if so, check if user can apply transition
-        $relatedWorkflow = $this->workflowDocumentService->getRelatedWorkflow($accompanyingCourseDocument);
-
-        if ($relatedWorkflow instanceof EntityWorkflow){
-            return $this->workflowDocumentService->canApplyTransition($relatedWorkflow);
-        }
-
-        return true;
-    }
-}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 7e2becab4..3bb5fa396 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -48,15 +48,19 @@ class StoredObjectVoter extends Voter
             return false;
         }
 
+        $attributeAsEnum = StoredObjectRoleEnum::from($attribute);
+
         // Loop through context-specific voters
         foreach ($this->storedObjectVoters as $storedObjectVoter) {
-            if ($storedObjectVoter->supports($attribute, $subject)) {
-                return $storedObjectVoter->voteOnAttribute($attribute, $subject, $token);
+            if ($storedObjectVoter->supports($attributeAsEnum, $subject)) {
+                return $storedObjectVoter->voteOnAttribute($attributeAsEnum, $subject, $token);
             }
         }
 
         // User role-based fallback
         if ($this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')) {
+            // TODO: this maybe considered as a security issue, as all authenticated users can reach a stored object which
+            // is potentially detached from an existing entity.
             return true;
         }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index c0fd7e09f..516722654 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -12,12 +12,13 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
 interface StoredObjectVoterInterface {
 
-    public function supports(string $attribute, StoredObject $subject): bool;
+    public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool;
 
-    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool;
+    public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool;
 
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
new file mode 100644
index 000000000..7ca73f206
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
@@ -0,0 +1,67 @@
+<?php
+
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\MainBundle\Entity\User;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Security;
+
+abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
+{
+    abstract protected function getRepository(): AssociatedEntityToStoredObjectInterface;
+
+    /**
+     * @return class-string
+     */
+    abstract protected function getClass(): string;
+
+    abstract protected function attributeToRole(StoredObjectRoleEnum $attribute): string;
+
+    abstract protected function canBeAssociatedWithWorkflow(): bool;
+
+    function __construct(
+        private readonly Security $security,
+        private readonly ?WorkflowDocumentService $workflowDocumentService = null,
+    )
+    {
+    }
+
+    public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool
+    {
+        $class = $this->getClass();
+        return $this->getRepository()->findAssociatedEntityToStoredObject($subject) instanceof $class;
+    }
+
+    public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool
+    {
+        if (!$token->getUser() instanceof User) {
+            return false;
+        }
+
+        // Retrieve the related accompanying course document
+        $entity = $this->getRepository()->findAssociatedEntityToStoredObject($subject);
+
+        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
+        $voterAttribute = $this->attributeToRole($attribute);
+
+        if (false === $this->security->isGranted($voterAttribute, $entity)) {
+            return false;
+        }
+
+        if ($this->canBeAssociatedWithWorkflow()) {
+            if (null === $this->workflowDocumentService) {
+                throw new \LogicException("Provide a workflow document service");
+            }
+
+            return $this->workflowDocumentService->notBlockedByWorkflow($entity);
+        }
+
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
new file mode 100644
index 000000000..a41ea3067
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
@@ -0,0 +1,46 @@
+<?php
+
+namespace ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+final class AccompanyingCourseStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly AccompanyingCourseDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => AccompanyingCourseDocumentVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => AccompanyingCourseDocumentVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function getClass(): string
+    {
+        return AccompanyingCourseDocument::class;
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
new file mode 100644
index 000000000..423730767
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
+use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
+use Symfony\Component\Security\Core\Security;
+
+class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return AccompanyingPeriodWorkEvaluationDocument::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        //Question: there is no update/edit check in AccompanyingPeriodWorkEvaluationDocumentVoter, so for both SEE and EDIT of the
+        // stored object I check with SEE right in AccompanyingPeriodWorkEvaluationDocumentVoter, correct?
+        return match ($attribute) {
+            StoredObjectRoleEnum::SEE, StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkEvaluationDocumentVoter::SEE,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
new file mode 100644
index 000000000..a36535005
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\ActivityBundle\Entity\Activity;
+use Chill\ActivityBundle\Repository\ActivityDocumentACLAwareRepository;
+use Chill\ActivityBundle\Repository\ActivityRepository;
+use Chill\ActivityBundle\Security\Authorization\ActivityVoter;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly ActivityRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return Activity::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => ActivityVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => ActivityVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
new file mode 100644
index 000000000..218ce1980
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
@@ -0,0 +1,49 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\EventBundle\Entity\Event;
+use Chill\EventBundle\Repository\EventRepository;
+use Chill\EventBundle\Security\Authorization\EventVoter;
+use Symfony\Component\Security\Core\Security;
+
+class EventStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly EventRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return Event::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => EventVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => EventVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
new file mode 100644
index 000000000..6c3b0b807
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
@@ -0,0 +1,49 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Entity\PersonDocument;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Repository\PersonDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+class PersonStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly PersonDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return PersonDocument::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => PersonDocumentVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => PersonDocumentVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index 498348b96..f796fe56e 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -13,19 +13,19 @@ class WorkflowDocumentService
     {
     }
 
-    public function getRelatedWorkflow($entity): ?EntityWorkflow
+    public function notBlockedByWorkflow($entity): bool
     {
-        return $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
-    }
+        /**
+         * @var EntityWorkflow
+         */
+        $workflow = $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
 
-    public function canApplyTransition(EntityWorkflow $entityWorkflow): bool
-    {
-        if ($entityWorkflow->isFinal()) {
+        if ($workflow->isFinal()) {
             return false;
         }
 
         $currentUser = $this->security->getUser();
-        if ($entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+        if ($workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
             return true;
         }
 
diff --git a/src/Bundle/ChillEventBundle/Entity/Event.php b/src/Bundle/ChillEventBundle/Entity/Event.php
index 6f7ee7ef0..be5969363 100644
--- a/src/Bundle/ChillEventBundle/Entity/Event.php
+++ b/src/Bundle/ChillEventBundle/Entity/Event.php
@@ -31,7 +31,7 @@ use Symfony\Component\Validator\Constraints as Assert;
 /**
  * Class Event.
  */
-#[ORM\Entity(repositoryClass: \Chill\EventBundle\Repository\EventRepository::class)]
+#[ORM\Entity]
 #[ORM\HasLifecycleCallbacks]
 #[ORM\Table(name: 'chill_event_event')]
 class Event implements HasCenterInterface, HasScopeInterface, TrackCreationInterface, TrackUpdateInterface
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index 7406748b4..24eb095ec 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -11,17 +11,66 @@ declare(strict_types=1);
 
 namespace Chill\EventBundle\Repository;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\EventBundle\Entity\Event;
-use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
-use Doctrine\Persistence\ManagerRegistry;
+use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\QueryBuilder;
+use Doctrine\Persistence\ObjectRepository;
 
 /**
  * Class EventRepository.
  */
-class EventRepository extends ServiceEntityRepository
+class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
-    public function __construct(ManagerRegistry $registry)
+    private readonly EntityRepository $repository;
+
+    public function __construct(EntityManagerInterface $entityManager)
     {
-        parent::__construct($registry, Event::class);
+        $this->repository = $entityManager->getRepository(Event::class);
+    }
+
+    public function createQueryBuilder(string $alias, ?string $indexBy = null): QueryBuilder
+    {
+        return $this->repository->createQueryBuilder($alias, $indexBy);
+    }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->createQueryBuilder('e');
+        $query = $qb
+            ->join('e.documents', 'ed')
+            ->join('ed.storedObject', 'so')
+            ->where('so.id = :storedObjectId')
+            ->setParameter('storedObjectId', $storedObject->getId())
+            ->getQuery();
+
+        return $query->getResult();
+    }
+
+    public function find($id)
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll(): array
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria)
+    {
+        return $this->repository->findOneBy($criteria);
+    }
+
+    public function getClassName(): string
+    {
+        return Event::class;
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 66b3ab379..7d2e047d3 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -99,6 +99,22 @@ class EntityWorkflowRepository implements ObjectRepository
         return $this->repository->findAll();
     }
 
+    public function findByRelatedEntity($entityClass, $relatedEntityId): ?EntityWorkflow
+    {
+        $qb = $this->repository->createQueryBuilder('w');
+
+        $query = $qb->where(
+            $qb->expr()->andX(
+                $qb->expr()->eq('w.relatedEntityClass', ':entity_class'),
+                $qb->expr()->eq('w.relatedEntityId', ':entity_id'),
+            )
+        )->setParameter('entity_class', $entityClass)
+            ->setParameter('entity_id', $relatedEntityId);
+
+        return $query->getQuery()->getResult();
+
+    }
+
     /**
      * @param mixed|null $limit
      * @param mixed|null $offset
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 59bb3f915..60dcdf1b1 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -11,12 +11,14 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository
+class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private readonly EntityRepository $repository;
 
@@ -58,4 +60,14 @@ class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectReposi
     {
         return AccompanyingPeriodWorkEvaluationDocument::class;
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->repository->createQueryBuilder('ed');
+        $query = $qb->where('ed.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }

From bd36735cb16be8e7cd640aaa598383fa4d562a56 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 14:06:02 +0200
Subject: [PATCH 024/375] Ensure single result when retrieving activity and
 event linked to stored object

Although a many-to-many relationship exists between these entities and stored object,
only one activity or event will ever be linked to a single stored object.
For extra safety measure we return a single result in the repository to ensure our voters
will keep working.
---
 .../ChillActivityBundle/Repository/ActivityRepository.php | 8 +++++++-
 .../ChillEventBundle/Repository/EventRepository.php       | 8 +++++++-
 2 files changed, 14 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index 54672c6b7..4d621d56e 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -17,6 +17,8 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
+use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
 
 /**
@@ -100,6 +102,10 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
         return $qb->getQuery()->getResult();
     }
 
+    /**
+     * @throws NonUniqueResultException
+     * @throws NoResultException
+     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->createQueryBuilder('a');
@@ -110,6 +116,6 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getSingleResult();
     }
 }
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index 24eb095ec..b720866f2 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -16,6 +16,8 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\EventBundle\Entity\Event;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
+use Doctrine\ORM\NoResultException;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
@@ -36,6 +38,10 @@ class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjec
         return $this->repository->createQueryBuilder($alias, $indexBy);
     }
 
+    /**
+     * @throws NonUniqueResultException
+     * @throws NoResultException
+     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->createQueryBuilder('e');
@@ -46,7 +52,7 @@ class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjec
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getSingleResult();
     }
 
     public function find($id)

From d3956319caf28f98e5512f568a4ad138aa7dd223 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 14:56:25 +0200
Subject: [PATCH 025/375] Add test for AccompayingCourseStoredObjectVoter

Mainly to check the voteOnAttribute method, by mocking a scenario where a person
is allowed to see/edit an AccompanyingCourseDocument and not.
---
 ...ccompanyingCourseStoredObjectVoterTest.php | 106 ++++++++++++++++++
 1 file changed, 106 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
new file mode 100644
index 000000000..f7ad25987
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
@@ -0,0 +1,106 @@
+<?php
+
+namespace Chill\DocStoreBundle\Tests\Security\Authorization;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\MainBundle\Entity\User;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoters\AccompanyingCourseStoredObjectVoter;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+
+class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
+{
+    private $repository;
+    private $security;
+    private $workflowDocumentService;
+    private $voter;
+
+    protected function setUp(): void
+    {
+        $this->repository = $this->createMock(AccompanyingCourseDocumentRepository::class);
+        $this->security = $this->createMock(Security::class);
+        $this->workflowDocumentService = $this->createMock(WorkflowDocumentService::class);
+
+        $this->voter = new AccompanyingCourseStoredObjectVoter(
+            $this->repository,
+            $this->security,
+            $this->workflowDocumentService
+        );
+    }
+
+    private function setupMockObjects(): array
+    {
+        $user = $this->createMock(User::class);
+        $token = $this->createMock(TokenInterface::class);
+        $subject = $this->createMock(StoredObject::class);
+        $entity = $this->createMock(AccompanyingCourseDocument::class);
+
+        return [$user, $token, $subject, $entity];
+    }
+
+    private function setupMocksForVoteOnAttribute(User $user, TokenInterface $token, bool $isGrantedForAccCourseDocument, AccompanyingCourseDocument $entity, bool $workflowAllowed): void
+    {
+        // Set up token to return user
+        $token->method('getUser')->willReturn($user);
+
+        // Mock the return of an AccompanyingCourseDocument by the repository
+        $this->repository->method('findAssociatedEntityToStoredObject')->willReturn($entity);
+
+        // Mock attributeToRole to return appropriate role
+        $this->voter->method('attributeToRole')->willReturn(AccompanyingCourseDocumentVoter::SEE_DETAILS);
+
+        // Mock scenario where user is allowed to see_details of the AccompanyingCourseDocument
+        $this->security->method('isGranted')->willReturnMap([
+            [[AccompanyingCourseDocumentVoter::SEE_DETAILS, $entity], $isGrantedForAccCourseDocument],
+        ]);
+
+        // Mock case where user is blocked or not by workflow
+        $this->workflowDocumentService->method('notBlockedByWorkflow')->willReturn($workflowAllowed);
+    }
+
+    public function testVoteOnAttributeAllowed(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
+
+        // The voteOnAttribute method should return True when workflow is allowed
+        $attributeSee = StoredObjectRoleEnum::SEE;
+        $attributeEdit = StoredObjectRoleEnum::EDIT;
+        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+    }
+
+    public function testVoteOnAttributeNotAllowed(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method where isGranted() returns false
+        $this->setupMocksForVoteOnAttribute($user, $token, false, $entity, true);
+
+        // The voteOnAttribute method should return True when workflow is allowed
+        $attributeSee = StoredObjectRoleEnum::SEE;
+        $attributeEdit = StoredObjectRoleEnum::EDIT;
+        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+    }
+
+    public function testVoteOnAttributeWhenBlockedByWorkflow(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, $subject, $entity, false);
+
+        // Test voteOnAttribute method
+        $attribute = StoredObjectRoleEnum::SEE;
+        $result = $this->voter->voteOnAttribute($attribute, $subject, $token);
+
+        // Assert that access is denied when workflow is not allowed
+        $this->assertFalse($result);
+    }
+}

From 3a87513a114ded794c6e0302fe5e34851bf3b687 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 15:35:50 +0200
Subject: [PATCH 026/375] initial commit

---
 .changes/unreleased/Feature-20240614-153537.yaml | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 .changes/unreleased/Feature-20240614-153537.yaml

diff --git a/.changes/unreleased/Feature-20240614-153537.yaml b/.changes/unreleased/Feature-20240614-153537.yaml
new file mode 100644
index 000000000..c16d49b2d
--- /dev/null
+++ b/.changes/unreleased/Feature-20240614-153537.yaml
@@ -0,0 +1,7 @@
+kind: Feature
+body: The behavoir of the voters for stored objects is adjusted so as to limit edit
+  and delete possibilities to users related to the activity, social action or workflow
+  entity.
+time: 2024-06-14T15:35:37.582159301+02:00
+custom:
+  Issue: "286"

From 2d09efb2e0b88a2ed43b19deba58ca52446f971c Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 16:48:09 +0200
Subject: [PATCH 027/375] Add StoredObjectVoterInterface

An interface is defined that can be implemented by each context-specific voter in the future.
---
 .../StoredObjectVoterInterface.php            | 22 +++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
new file mode 100644
index 000000000..47b93eabb
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace ChillDocStoreBundle\Security\Authorization;
+
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+
+interface StoredObjectVoterInterface {
+
+    public function supports(string $attribute, $subject): bool;
+
+    public function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool;
+
+}

From a0fead48e1da637988ec3ce786da063d3c83c74d Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 17:22:27 +0200
Subject: [PATCH 028/375] Refactorize StoredObjectVoter.php

The StoredObjectVoter.php has been refactorized to handle context-specific voters.\
This way we can check if the context-specific voter should handle the authorization or not.\
If not, there is a simple fallback to check on the USER_ROLE.
---
 .../Authorization/StoredObjectVoter.php       | 28 ++++++++++++++-----
 .../config/services/voter.yaml                | 14 ++++++++++
 2 files changed, 35 insertions(+), 7 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/config/services/voter.yaml

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 2e253cf3c..ecfc56615 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -15,6 +15,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Guard\DavTokenAuthenticationEventSubscriber;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+use Symfony\Component\Security\Core\Security;
 
 /**
  * Voter for the content of a stored object.
@@ -23,6 +24,14 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  */
 class StoredObjectVoter extends Voter
 {
+    private $security;
+    private $storedObjectVoters;
+
+    public function __construct(Security $security, iterable $storedObjectVoters) {
+        $this->security = $security;
+        $this->storedObjectVoters = $storedObjectVoters;
+    }
+
     protected function supports($attribute, $subject): bool
     {
         return StoredObjectRoleEnum::tryFrom($attribute) instanceof StoredObjectRoleEnum
@@ -43,13 +52,18 @@ class StoredObjectVoter extends Voter
             return false;
         }
 
-        $askedRole = StoredObjectRoleEnum::from($attribute);
-        $tokenRoleAuthorization =
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS);
+        // Loop through context-specific voters
+        foreach ($this->storedObjectVoters as $storedObjectVoter) {
+            if ($storedObjectVoter->supports($attribute, $subject)) {
+                return $storedObjectVoter->voteOnAttribute($attribute, $subject, $token);
+            }
+        }
 
-        return match ($askedRole) {
-            StoredObjectRoleEnum::SEE => StoredObjectRoleEnum::EDIT === $tokenRoleAuthorization || StoredObjectRoleEnum::SEE === $tokenRoleAuthorization,
-            StoredObjectRoleEnum::EDIT => StoredObjectRoleEnum::EDIT === $tokenRoleAuthorization
-        };
+        // User role-based fallback
+        if ($this->security->isGranted('ROLE_USER')) {
+            return true;
+        }
+
+        return false;
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml b/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
new file mode 100644
index 000000000..922d29cba
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
@@ -0,0 +1,14 @@
+services:
+    _defaults:
+        autowire: true
+        autoconfigure: true
+    Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter:
+        arguments:
+            $storedObjectVoters:
+                # context specific voters
+                - '@accompanying_course_document_voter'
+        tags:
+            - { name: security.voter }
+
+    accompanying_course_document_voter:
+        class: Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter

From aaac80be8439fcbbbd788bd5840bc9f7664bec99 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 14 Jun 2024 17:27:22 +0200
Subject: [PATCH 029/375] Add config voter.yaml

The voter.yaml was not configured to be taken into account. Now added\
to ChillDocStoreExtension.php
---
 .../DependencyInjection/ChillDocStoreExtension.php               | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index fe9aeecfa..5f87199a3 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -42,6 +42,7 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
         $loader->load('services/fixtures.yaml');
         $loader->load('services/form.yaml');
         $loader->load('services/templating.yaml');
+        $loader->load('services/voter.yaml');
     }
 
     public function prepend(ContainerBuilder $container)

From 30078db841bc9402f464278cd45280c159d98886 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 09:51:21 +0200
Subject: [PATCH 030/375] Type-hint $subject in StoredObjectVoterInterface.php

Since the subject passed to these voters should\
always be of the type StoredObject, type-hinting\ added.
---
 .../Security/Authorization/StoredObjectVoterInterface.php    | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index 47b93eabb..a3a76e79a 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -11,12 +11,13 @@ declare(strict_types=1);
 
 namespace ChillDocStoreBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
 interface StoredObjectVoterInterface {
 
-    public function supports(string $attribute, $subject): bool;
+    public function supports(string $attribute, StoredObject $subject): bool;
 
-    public function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool;
+    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool;
 
 }

From 26b3d84d624e39ffe21b8d8c394aa64d1a1c9a12 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 09:52:59 +0200
Subject: [PATCH 031/375] Add fall-back right for ROLE_ADMIN

Within the StoredObjectVoter.php also the admin\
user should be able to edit documents as a fall-back
---
 .../Security/Authorization/StoredObjectVoter.php                | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index ecfc56615..781c2c542 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -60,7 +60,7 @@ class StoredObjectVoter extends Voter
         }
 
         // User role-based fallback
-        if ($this->security->isGranted('ROLE_USER')) {
+        if ($this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')) {
             return true;
         }
 

From 2ce9810243f07f3bcf7b663096825db1ab752cbe Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:00:10 +0200
Subject: [PATCH 032/375] Use constructor property promotion

In accordance with php8.1 use property promotion\
within the constructor method. Less clutter.
---
 .../Security/Authorization/StoredObjectVoter.php            | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 781c2c542..7e2becab4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -24,12 +24,8 @@ use Symfony\Component\Security\Core\Security;
  */
 class StoredObjectVoter extends Voter
 {
-    private $security;
-    private $storedObjectVoters;
 
-    public function __construct(Security $security, iterable $storedObjectVoters) {
-        $this->security = $security;
-        $this->storedObjectVoters = $storedObjectVoters;
+    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters) {
     }
 
     protected function supports($attribute, $subject): bool

From 830dace1ba2a021434ca4bd94126dff838f839bd Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:02:25 +0200
Subject: [PATCH 033/375] Rename voter.yaml file to security.yaml

For consistency with other bundles voters are\
registered under the security.yaml file.
---
 .../DependencyInjection/ChillDocStoreExtension.php              | 2 +-
 .../config/services/{voter.yaml => security.yaml}               | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename src/Bundle/ChillDocStoreBundle/config/services/{voter.yaml => security.yaml} (100%)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index 5f87199a3..a0fcc2d5d 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -42,7 +42,7 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
         $loader->load('services/fixtures.yaml');
         $loader->load('services/form.yaml');
         $loader->load('services/templating.yaml');
-        $loader->load('services/voter.yaml');
+        $loader->load('services/security.yaml');
     }
 
     public function prepend(ContainerBuilder $container)
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/voter.yaml b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
similarity index 100%
rename from src/Bundle/ChillDocStoreBundle/config/services/voter.yaml
rename to src/Bundle/ChillDocStoreBundle/config/services/security.yaml

From 062afd669596f5fb8cbfb5383bce8b2ed7c36c69 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:16:39 +0200
Subject: [PATCH 034/375] Use service tags to inject all voters into
 StoredObjectVoter.php

Instead of manually injecting services into StoredObjectVoter\
config is added to automatically tag each service that implements\
StoredObjectVoterInterface.php
---
 .../DependencyInjection/ChillDocStoreExtension.php       | 3 +++
 .../ChillDocStoreBundle/config/services/security.yaml    | 9 ++++-----
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index a0fcc2d5d..9f277e716 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\DependencyInjection;
 use Chill\DocStoreBundle\Controller\StoredObjectApiController;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Symfony\Component\Config\FileLocator;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Extension\PrependExtensionInterface;
@@ -35,6 +36,8 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
 
         $container->setParameter('chill_doc_store', $config);
 
+        $container->registerForAutoconfiguration(StoredObjectVoterInterface::class)->addTag('stored_object_voter');
+
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
         $loader->load('services/controller.yaml');
diff --git a/src/Bundle/ChillDocStoreBundle/config/services/security.yaml b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
index 922d29cba..c57eb63c5 100644
--- a/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
+++ b/src/Bundle/ChillDocStoreBundle/config/services/security.yaml
@@ -4,11 +4,10 @@ services:
         autoconfigure: true
     Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter:
         arguments:
-            $storedObjectVoters:
-                # context specific voters
-                - '@accompanying_course_document_voter'
+            $storedObjectVoters: !tagged_iterator stored_object_voter
         tags:
             - { name: security.voter }
 
-    accompanying_course_document_voter:
-        class: Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter
+    Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter:
+        tags:
+            - { name: security.voter }

From f75c7a0232dda4b410c96a95652aa0e8594c675f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 19 Jun 2024 10:21:24 +0200
Subject: [PATCH 035/375] Implement StoredObjectVoterInterface

An interface was created to be implemented by Stored Doc voters\
these will automatically be tagged and injected into DocStoreVoter.
---
 .../Authorization/AccompanyingCourseDocumentVoter.php      | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index 5febc7e42..93243b1f4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -19,11 +19,12 @@ use Chill\MainBundle\Security\Authorization\VoterHelperInterface;
 use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodVoter;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
-class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface
+class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface, StoredObjectVoterInterface
 {
     final public const CREATE = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_CREATE';
 
@@ -70,12 +71,12 @@ class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements Prov
         return [];
     }
 
-    protected function supports($attribute, $subject): bool
+    public function supports($attribute, $subject): bool
     {
         return $this->voterHelper->supports($attribute, $subject);
     }
 
-    protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
+    public function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         if (!$token->getUser() instanceof User) {
             return false;

From d9892f6822fff3fbc3526fd988e6ad2f73bc2a61 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 10:53:33 +0200
Subject: [PATCH 036/375] Correct namespace and use statement for
 StoredObjectVoterInterface.php

The namespace was formed wrong and needed adjustment
---
 .../Security/Authorization/AccompanyingCourseDocumentVoter.php  | 1 -
 .../Security/Authorization/StoredObjectVoterInterface.php       | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index 93243b1f4..dac08b05b 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -19,7 +19,6 @@ use Chill\MainBundle\Security\Authorization\VoterHelperInterface;
 use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodVoter;
-use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index a3a76e79a..c0fd7e09f 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -9,7 +9,7 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace ChillDocStoreBundle\Security\Authorization;
+namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;

From e54633d14dd75ac3e596a5a78334a4277bee478f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 15:17:56 +0200
Subject: [PATCH 037/375] Implement voting logic: separation of concerns

A separate AccompanyingCourseDocumentStoredObjectVoter was\
created to handle the specific access to a Stored object\
related to an Accompanying Course Document.
---
 .../AccompanyingCourseDocumentRepository.php  | 13 +++++
 ...panyingCourseDocumentStoredObjectVoter.php | 50 +++++++++++++++++++
 ...nyingPeriodWorkEvaluationDocumentVoter.php |  7 +--
 3 files changed, 67 insertions(+), 3 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 2679993c4..239b88b90 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Repository;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
@@ -45,6 +46,17 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
+    public function findLinkedCourseDocument(int $storedObjectId): ?AccompanyingCourseDocument {
+
+        $qb = $this->repository->createQueryBuilder('d');
+        $query = $qb->leftJoin('d.storedObject', 'do')
+                ->where('do.id = :storedObjectId')
+                ->setParameter('storedObjectId', $storedObjectId)
+                ->getQuery();
+
+        return $query->getResult();
+    }
+
     public function find($id): ?AccompanyingCourseDocument
     {
         return $this->repository->find($id);
@@ -69,4 +81,5 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
     {
         return AccompanyingCourseDocument::class;
     }
+
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
new file mode 100644
index 000000000..db1499a99
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace ChillDocStoreBundle\Security\Authorization;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\MainBundle\Entity\User;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Security;
+
+class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
+{
+    final public const SEE_AND_EDIT = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_STORED_OBJECT_SEE_EDIT';
+
+    public function __construct(
+        private readonly AccompanyingCourseDocumentRepository $repository,
+        private readonly Security $security,
+        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter
+    ){
+    }
+
+    public function supports(string $attribute, StoredObject $subject): bool
+    {
+        // check if the stored object is linked to an AccompanyingCourseDocument
+        return !empty($this->repository->findLinkedCourseDocument($subject->getId()));
+    }
+
+    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
+    {
+        if (!$token->getUser() instanceof User) {
+            return false;
+        }
+
+        // Retrieve the related accompanying course document
+        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject->getId());
+
+        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
+        $voterAttribute = ($attribute === self::SEE_AND_EDIT) ? AccompanyingCourseDocumentVoter::UPDATE : AccompanyingCourseDocumentVoter::SEE_DETAILS;
+
+        // Check access using AccompanyingCourseDocumentVoter
+        if ($this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
+            // TODO implement logic to check for associated workflow
+            return true;
+        } else {
+            return false;
+        }
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
index 77c131cd9..8f4a1b995 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
@@ -21,13 +22,13 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  *
  * Delegates to the sames authorization than for Evalution
  */
-class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
+class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter implements StoredObjectVoterInterface
 {
     final public const SEE = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_DOCUMENT_SHOW';
 
     public function __construct(private readonly AccessDecisionManagerInterface $accessDecisionManager) {}
 
-    protected function supports($attribute, $subject)
+    public function supports($attribute, $subject): bool
     {
         return $subject instanceof AccompanyingPeriodWorkEvaluationDocument
             && self::SEE === $attribute;
@@ -39,7 +40,7 @@ class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
      *
      * @return bool|void
      */
-    protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
+    public function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         return match ($attribute) {
             self::SEE => $this->accessDecisionManager->decide(

From cce04ee4900636bd9b92f3c63d713d0238854390 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:27:21 +0200
Subject: [PATCH 038/375] Remove implementation of StoredObjectVoterInterface
 in AccompanyingCourseDocumentVoter.php

This implementation has been moved to the voter\ AccompanyingCourseDocumentStoredObjectVoter.php
---
 .../Security/Authorization/AccompanyingCourseDocumentVoter.php  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index dac08b05b..7a46184cb 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -23,7 +23,7 @@ use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
-class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface, StoredObjectVoterInterface
+class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements ProvideRoleHierarchyInterface
 {
     final public const CREATE = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_CREATE';
 

From 7c03a25f1a8fb37cdddf1986bb0271af23fd5b52 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:28:19 +0200
Subject: [PATCH 039/375] Refactor AccompanyingCourseDocumentRepository.php

Build where clause using StoredObject directly instead\
of based on it's id.
---
 .../Repository/AccompanyingCourseDocumentRepository.php    | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 239b88b90..93cf00ecb 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -46,12 +46,11 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
-    public function findLinkedCourseDocument(int $storedObjectId): ?AccompanyingCourseDocument {
+    public function findLinkedCourseDocument(StoredObject $storedObject): ?AccompanyingCourseDocument {
 
         $qb = $this->repository->createQueryBuilder('d');
-        $query = $qb->leftJoin('d.storedObject', 'do')
-                ->where('do.id = :storedObjectId')
-                ->setParameter('storedObjectId', $storedObjectId)
+        $query = $qb->where('d.storedObject = :storedObject')
+                ->setParameter('storedObject', $storedObject)
                 ->getQuery();
 
         return $query->getResult();

From 4607c36b574916aa148e7973e15c4f51074cb315 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 20 Jun 2024 17:32:09 +0200
Subject: [PATCH 040/375] Add WorkflowDocumentService and use in StoredObject
 voters

A WorkflowDocumentService was created that can be injected\
in context-specific StoredObject voters that need to check whether\
the document in question is attached to a workflow.
---
 ...panyingCourseDocumentStoredObjectVoter.php | 31 ++++++++++------
 .../Service/WorkflowDocumentService.php       | 35 +++++++++++++++++++
 2 files changed, 56 insertions(+), 10 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
index db1499a99..931378a61 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -2,13 +2,15 @@
 
 namespace ChillDocStoreBundle\Security\Authorization;
 
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
-use Symfony\Component\Security\Core\Security;
 
 class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
 {
@@ -16,15 +18,15 @@ class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterIn
 
     public function __construct(
         private readonly AccompanyingCourseDocumentRepository $repository,
-        private readonly Security $security,
-        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter
+        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter,
+        private readonly WorkflowDocumentService $workflowDocumentService
     ){
     }
 
     public function supports(string $attribute, StoredObject $subject): bool
     {
         // check if the stored object is linked to an AccompanyingCourseDocument
-        return !empty($this->repository->findLinkedCourseDocument($subject->getId()));
+        return $this->repository->findLinkedCourseDocument($subject) instanceof AccompanyingCourseDocument;
     }
 
     public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
@@ -34,17 +36,26 @@ class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterIn
         }
 
         // Retrieve the related accompanying course document
-        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject->getId());
+        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject);
 
         // Determine the attribute to pass to AccompanyingCourseDocumentVoter
-        $voterAttribute = ($attribute === self::SEE_AND_EDIT) ? AccompanyingCourseDocumentVoter::UPDATE : AccompanyingCourseDocumentVoter::SEE_DETAILS;
+        $voterAttribute = match($attribute) {
+            self::SEE_AND_EDIT => AccompanyingCourseDocumentVoter::UPDATE,
+            default => AccompanyingCourseDocumentVoter::SEE_DETAILS,
+        };
 
         // Check access using AccompanyingCourseDocumentVoter
-        if ($this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
-            // TODO implement logic to check for associated workflow
-            return true;
-        } else {
+        if (false === $this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
             return false;
         }
+
+        // Check if entity is related to a workflow, if so, check if user can apply transition
+        $relatedWorkflow = $this->workflowDocumentService->getRelatedWorkflow($accompanyingCourseDocument);
+
+        if ($relatedWorkflow instanceof EntityWorkflow){
+            return $this->workflowDocumentService->canApplyTransition($relatedWorkflow);
+        }
+
+        return true;
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
new file mode 100644
index 000000000..498348b96
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -0,0 +1,35 @@
+<?php
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Symfony\Component\Security\Core\Security;
+
+class WorkflowDocumentService
+{
+
+    public function __construct(private readonly Security $security, private readonly EntityWorkflowRepository $repository)
+    {
+    }
+
+    public function getRelatedWorkflow($entity): ?EntityWorkflow
+    {
+        return $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
+    }
+
+    public function canApplyTransition(EntityWorkflow $entityWorkflow): bool
+    {
+        if ($entityWorkflow->isFinal()) {
+            return false;
+        }
+
+        $currentUser = $this->security->getUser();
+        if ($entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+            return true;
+        }
+
+        return false;
+    }
+
+}

From c06e76a0ee8e2812f9efa9746e168b6b5239c95f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 13:45:15 +0200
Subject: [PATCH 041/375] Implement context-specific voters for all current
 entities that can be linked to a document

For reusability an AbstractStoredObjectVoter was created and a StoredObjectVoterInterface.
A WorkflowDocumentService checks whether the StoredObject is involved in a workflow.
---
 .../Repository/ActivityRepository.php         | 17 ++++-
 .../AccompanyingCourseDocumentRepository.php  | 14 ++--
 ...ssociatedEntityToStoredObjectInterface.php | 10 +++
 .../Repository/PersonDocumentRepository.php   | 13 +++-
 ...panyingCourseDocumentStoredObjectVoter.php | 61 -----------------
 .../Authorization/StoredObjectVoter.php       |  8 ++-
 .../StoredObjectVoterInterface.php            |  5 +-
 .../AbstractStoredObjectVoter.php             | 67 +++++++++++++++++++
 .../AccompanyingCourseStoredObjectVoter.php   | 46 +++++++++++++
 ...gPeriodWorkEvaluationStoredObjectVoter.php | 50 ++++++++++++++
 .../ActivityStoredObjectVoter.php             | 50 ++++++++++++++
 .../EventStoredObjectVoter.php                | 49 ++++++++++++++
 .../PersonStoredObjectVoter.php               | 49 ++++++++++++++
 .../Service/WorkflowDocumentService.php       | 14 ++--
 src/Bundle/ChillEventBundle/Entity/Event.php  |  2 +-
 .../Repository/EventRepository.php            | 59 ++++++++++++++--
 .../Workflow/EntityWorkflowRepository.php     | 16 +++++
 ...PeriodWorkEvaluationDocumentRepository.php | 14 +++-
 18 files changed, 456 insertions(+), 88 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index a7025d4a9..54672c6b7 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\ActivityBundle\Repository;
 
 use Chill\ActivityBundle\Entity\Activity;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
@@ -23,7 +25,7 @@ use Doctrine\Persistence\ManagerRegistry;
  * @method Activity[]    findAll()
  * @method Activity[]    findBy(array $criteria, array $orderBy = null, $limit = null, $offset = null)
  */
-class ActivityRepository extends ServiceEntityRepository
+class ActivityRepository extends ServiceEntityRepository implements AssociatedEntityToStoredObjectInterface
 {
     public function __construct(ManagerRegistry $registry)
     {
@@ -97,4 +99,17 @@ class ActivityRepository extends ServiceEntityRepository
 
         return $qb->getQuery()->getResult();
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->createQueryBuilder('a');
+        $query = $qb
+            ->join('a.documents', 'ad')
+            ->join('ad.storedObject', 'so')
+            ->where('so.id = :storedObjectId')
+            ->setParameter('storedObjectId', $storedObject->getId())
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 93cf00ecb..246c7f2d9 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -19,7 +19,7 @@ use Doctrine\ORM\EntityRepository;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingCourseDocumentRepository implements ObjectRepository
+class AccompanyingCourseDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private readonly EntityRepository $repository;
 
@@ -46,12 +46,12 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $qb->getQuery()->getSingleScalarResult();
     }
 
-    public function findLinkedCourseDocument(StoredObject $storedObject): ?AccompanyingCourseDocument {
-
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
         $qb = $this->repository->createQueryBuilder('d');
         $query = $qb->where('d.storedObject = :storedObject')
-                ->setParameter('storedObject', $storedObject)
-                ->getQuery();
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
 
         return $query->getResult();
     }
@@ -66,7 +66,7 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $this->repository->findAll();
     }
 
-    public function findBy(array $criteria, ?array $orderBy = null, $limit = null, $offset = null)
+    public function findBy(array $criteria, ?array $orderBy = null, $limit = null, $offset = null): array
     {
         return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
     }
@@ -76,7 +76,7 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository
         return $this->findOneBy($criteria);
     }
 
-    public function getClassName()
+    public function getClassName(): string
     {
         return AccompanyingCourseDocument::class;
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
new file mode 100644
index 000000000..5349251c5
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
@@ -0,0 +1,10 @@
+<?php
+
+namespace Chill\DocStoreBundle\Repository;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+
+interface AssociatedEntityToStoredObjectInterface
+{
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object;
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
index f880c0d67..57a964867 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Repository;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\Persistence\ObjectRepository;
@@ -19,7 +20,7 @@ use Doctrine\Persistence\ObjectRepository;
 /**
  * @template ObjectRepository<PersonDocument::class>
  */
-readonly class PersonDocumentRepository implements ObjectRepository
+readonly class PersonDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private EntityRepository $repository;
 
@@ -53,4 +54,14 @@ readonly class PersonDocumentRepository implements ObjectRepository
     {
         return PersonDocument::class;
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->repository->createQueryBuilder('d');
+        $query = $qb->where('d.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
deleted file mode 100644
index 931378a61..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentStoredObjectVoter.php
+++ /dev/null
@@ -1,61 +0,0 @@
-<?php
-
-namespace ChillDocStoreBundle\Security\Authorization;
-
-use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
-use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
-use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\MainBundle\Entity\User;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
-
-class AccompanyingCourseDocumentStoredObjectVoter implements StoredObjectVoterInterface
-{
-    final public const SEE_AND_EDIT = 'CHILL_ACCOMPANYING_COURSE_DOCUMENT_STORED_OBJECT_SEE_EDIT';
-
-    public function __construct(
-        private readonly AccompanyingCourseDocumentRepository $repository,
-        private readonly AccompanyingCourseDocumentVoter $accompanyingCourseDocumentVoter,
-        private readonly WorkflowDocumentService $workflowDocumentService
-    ){
-    }
-
-    public function supports(string $attribute, StoredObject $subject): bool
-    {
-        // check if the stored object is linked to an AccompanyingCourseDocument
-        return $this->repository->findLinkedCourseDocument($subject) instanceof AccompanyingCourseDocument;
-    }
-
-    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool
-    {
-        if (!$token->getUser() instanceof User) {
-            return false;
-        }
-
-        // Retrieve the related accompanying course document
-        $accompanyingCourseDocument = $this->repository->findLinkedCourseDocument($subject);
-
-        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
-        $voterAttribute = match($attribute) {
-            self::SEE_AND_EDIT => AccompanyingCourseDocumentVoter::UPDATE,
-            default => AccompanyingCourseDocumentVoter::SEE_DETAILS,
-        };
-
-        // Check access using AccompanyingCourseDocumentVoter
-        if (false === $this->accompanyingCourseDocumentVoter->voteOnAttribute($voterAttribute, $accompanyingCourseDocument, $token)) {
-            return false;
-        }
-
-        // Check if entity is related to a workflow, if so, check if user can apply transition
-        $relatedWorkflow = $this->workflowDocumentService->getRelatedWorkflow($accompanyingCourseDocument);
-
-        if ($relatedWorkflow instanceof EntityWorkflow){
-            return $this->workflowDocumentService->canApplyTransition($relatedWorkflow);
-        }
-
-        return true;
-    }
-}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 7e2becab4..3bb5fa396 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -48,15 +48,19 @@ class StoredObjectVoter extends Voter
             return false;
         }
 
+        $attributeAsEnum = StoredObjectRoleEnum::from($attribute);
+
         // Loop through context-specific voters
         foreach ($this->storedObjectVoters as $storedObjectVoter) {
-            if ($storedObjectVoter->supports($attribute, $subject)) {
-                return $storedObjectVoter->voteOnAttribute($attribute, $subject, $token);
+            if ($storedObjectVoter->supports($attributeAsEnum, $subject)) {
+                return $storedObjectVoter->voteOnAttribute($attributeAsEnum, $subject, $token);
             }
         }
 
         // User role-based fallback
         if ($this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')) {
+            // TODO: this maybe considered as a security issue, as all authenticated users can reach a stored object which
+            // is potentially detached from an existing entity.
             return true;
         }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index c0fd7e09f..516722654 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -12,12 +12,13 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
 interface StoredObjectVoterInterface {
 
-    public function supports(string $attribute, StoredObject $subject): bool;
+    public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool;
 
-    public function voteOnAttribute(string $attribute, StoredObject $subject, TokenInterface $token): bool;
+    public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool;
 
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
new file mode 100644
index 000000000..7ca73f206
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
@@ -0,0 +1,67 @@
+<?php
+
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\MainBundle\Entity\User;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Security;
+
+abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
+{
+    abstract protected function getRepository(): AssociatedEntityToStoredObjectInterface;
+
+    /**
+     * @return class-string
+     */
+    abstract protected function getClass(): string;
+
+    abstract protected function attributeToRole(StoredObjectRoleEnum $attribute): string;
+
+    abstract protected function canBeAssociatedWithWorkflow(): bool;
+
+    function __construct(
+        private readonly Security $security,
+        private readonly ?WorkflowDocumentService $workflowDocumentService = null,
+    )
+    {
+    }
+
+    public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool
+    {
+        $class = $this->getClass();
+        return $this->getRepository()->findAssociatedEntityToStoredObject($subject) instanceof $class;
+    }
+
+    public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool
+    {
+        if (!$token->getUser() instanceof User) {
+            return false;
+        }
+
+        // Retrieve the related accompanying course document
+        $entity = $this->getRepository()->findAssociatedEntityToStoredObject($subject);
+
+        // Determine the attribute to pass to AccompanyingCourseDocumentVoter
+        $voterAttribute = $this->attributeToRole($attribute);
+
+        if (false === $this->security->isGranted($voterAttribute, $entity)) {
+            return false;
+        }
+
+        if ($this->canBeAssociatedWithWorkflow()) {
+            if (null === $this->workflowDocumentService) {
+                throw new \LogicException("Provide a workflow document service");
+            }
+
+            return $this->workflowDocumentService->notBlockedByWorkflow($entity);
+        }
+
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
new file mode 100644
index 000000000..a41ea3067
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
@@ -0,0 +1,46 @@
+<?php
+
+namespace ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+final class AccompanyingCourseStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly AccompanyingCourseDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => AccompanyingCourseDocumentVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => AccompanyingCourseDocumentVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function getClass(): string
+    {
+        return AccompanyingCourseDocument::class;
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
new file mode 100644
index 000000000..423730767
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
+use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
+use Symfony\Component\Security\Core\Security;
+
+class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return AccompanyingPeriodWorkEvaluationDocument::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        //Question: there is no update/edit check in AccompanyingPeriodWorkEvaluationDocumentVoter, so for both SEE and EDIT of the
+        // stored object I check with SEE right in AccompanyingPeriodWorkEvaluationDocumentVoter, correct?
+        return match ($attribute) {
+            StoredObjectRoleEnum::SEE, StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkEvaluationDocumentVoter::SEE,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
new file mode 100644
index 000000000..a36535005
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
@@ -0,0 +1,50 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\ActivityBundle\Entity\Activity;
+use Chill\ActivityBundle\Repository\ActivityDocumentACLAwareRepository;
+use Chill\ActivityBundle\Repository\ActivityRepository;
+use Chill\ActivityBundle\Security\Authorization\ActivityVoter;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly ActivityRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return Activity::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => ActivityVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => ActivityVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
new file mode 100644
index 000000000..218ce1980
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
@@ -0,0 +1,49 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\EventBundle\Entity\Event;
+use Chill\EventBundle\Repository\EventRepository;
+use Chill\EventBundle\Security\Authorization\EventVoter;
+use Symfony\Component\Security\Core\Security;
+
+class EventStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly EventRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return Event::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => EventVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => EventVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
new file mode 100644
index 000000000..6c3b0b807
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
@@ -0,0 +1,49 @@
+<?php
+
+namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+
+use Chill\DocStoreBundle\Entity\PersonDocument;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\DocStoreBundle\Repository\PersonDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Symfony\Component\Security\Core\Security;
+
+class PersonStoredObjectVoter extends AbstractStoredObjectVoter
+{
+    public function __construct(
+        private readonly PersonDocumentRepository $repository,
+        Security $security,
+        WorkflowDocumentService $workflowDocumentService
+    ){
+        parent::__construct($security, $workflowDocumentService);
+    }
+
+    protected function getRepository(): AssociatedEntityToStoredObjectInterface
+    {
+        return $this->repository;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    protected function getClass(): string
+    {
+        return PersonDocument::class;
+    }
+
+    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
+    {
+        return match ($attribute) {
+            StoredObjectRoleEnum::EDIT => PersonDocumentVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => PersonDocumentVoter::SEE_DETAILS,
+        };
+    }
+
+    protected function canBeAssociatedWithWorkflow(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index 498348b96..f796fe56e 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -13,19 +13,19 @@ class WorkflowDocumentService
     {
     }
 
-    public function getRelatedWorkflow($entity): ?EntityWorkflow
+    public function notBlockedByWorkflow($entity): bool
     {
-        return $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
-    }
+        /**
+         * @var EntityWorkflow
+         */
+        $workflow = $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
 
-    public function canApplyTransition(EntityWorkflow $entityWorkflow): bool
-    {
-        if ($entityWorkflow->isFinal()) {
+        if ($workflow->isFinal()) {
             return false;
         }
 
         $currentUser = $this->security->getUser();
-        if ($entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+        if ($workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
             return true;
         }
 
diff --git a/src/Bundle/ChillEventBundle/Entity/Event.php b/src/Bundle/ChillEventBundle/Entity/Event.php
index 6f7ee7ef0..be5969363 100644
--- a/src/Bundle/ChillEventBundle/Entity/Event.php
+++ b/src/Bundle/ChillEventBundle/Entity/Event.php
@@ -31,7 +31,7 @@ use Symfony\Component\Validator\Constraints as Assert;
 /**
  * Class Event.
  */
-#[ORM\Entity(repositoryClass: \Chill\EventBundle\Repository\EventRepository::class)]
+#[ORM\Entity]
 #[ORM\HasLifecycleCallbacks]
 #[ORM\Table(name: 'chill_event_event')]
 class Event implements HasCenterInterface, HasScopeInterface, TrackCreationInterface, TrackUpdateInterface
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index 7406748b4..24eb095ec 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -11,17 +11,66 @@ declare(strict_types=1);
 
 namespace Chill\EventBundle\Repository;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\EventBundle\Entity\Event;
-use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
-use Doctrine\Persistence\ManagerRegistry;
+use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\QueryBuilder;
+use Doctrine\Persistence\ObjectRepository;
 
 /**
  * Class EventRepository.
  */
-class EventRepository extends ServiceEntityRepository
+class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
-    public function __construct(ManagerRegistry $registry)
+    private readonly EntityRepository $repository;
+
+    public function __construct(EntityManagerInterface $entityManager)
     {
-        parent::__construct($registry, Event::class);
+        $this->repository = $entityManager->getRepository(Event::class);
+    }
+
+    public function createQueryBuilder(string $alias, ?string $indexBy = null): QueryBuilder
+    {
+        return $this->repository->createQueryBuilder($alias, $indexBy);
+    }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->createQueryBuilder('e');
+        $query = $qb
+            ->join('e.documents', 'ed')
+            ->join('ed.storedObject', 'so')
+            ->where('so.id = :storedObjectId')
+            ->setParameter('storedObjectId', $storedObject->getId())
+            ->getQuery();
+
+        return $query->getResult();
+    }
+
+    public function find($id)
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll(): array
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria)
+    {
+        return $this->repository->findOneBy($criteria);
+    }
+
+    public function getClassName(): string
+    {
+        return Event::class;
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 66b3ab379..7d2e047d3 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -99,6 +99,22 @@ class EntityWorkflowRepository implements ObjectRepository
         return $this->repository->findAll();
     }
 
+    public function findByRelatedEntity($entityClass, $relatedEntityId): ?EntityWorkflow
+    {
+        $qb = $this->repository->createQueryBuilder('w');
+
+        $query = $qb->where(
+            $qb->expr()->andX(
+                $qb->expr()->eq('w.relatedEntityClass', ':entity_class'),
+                $qb->expr()->eq('w.relatedEntityId', ':entity_id'),
+            )
+        )->setParameter('entity_class', $entityClass)
+            ->setParameter('entity_id', $relatedEntityId);
+
+        return $query->getQuery()->getResult();
+
+    }
+
     /**
      * @param mixed|null $limit
      * @param mixed|null $offset
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 59bb3f915..60dcdf1b1 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -11,12 +11,14 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository
+class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private readonly EntityRepository $repository;
 
@@ -58,4 +60,14 @@ class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectReposi
     {
         return AccompanyingPeriodWorkEvaluationDocument::class;
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    {
+        $qb = $this->repository->createQueryBuilder('ed');
+        $query = $qb->where('ed.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }

From a25f2c7539aeb1f9261ff2f22f75c1f5e591e60b Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 14:06:02 +0200
Subject: [PATCH 042/375] Ensure single result when retrieving activity and
 event linked to stored object

Although a many-to-many relationship exists between these entities and stored object,
only one activity or event will ever be linked to a single stored object.
For extra safety measure we return a single result in the repository to ensure our voters
will keep working.
---
 .../ChillActivityBundle/Repository/ActivityRepository.php | 8 +++++++-
 .../ChillEventBundle/Repository/EventRepository.php       | 8 +++++++-
 2 files changed, 14 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index 54672c6b7..4d621d56e 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -17,6 +17,8 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
+use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
 
 /**
@@ -100,6 +102,10 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
         return $qb->getQuery()->getResult();
     }
 
+    /**
+     * @throws NonUniqueResultException
+     * @throws NoResultException
+     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->createQueryBuilder('a');
@@ -110,6 +116,6 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getSingleResult();
     }
 }
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index 24eb095ec..b720866f2 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -16,6 +16,8 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\EventBundle\Entity\Event;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
+use Doctrine\ORM\NoResultException;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
@@ -36,6 +38,10 @@ class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjec
         return $this->repository->createQueryBuilder($alias, $indexBy);
     }
 
+    /**
+     * @throws NonUniqueResultException
+     * @throws NoResultException
+     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->createQueryBuilder('e');
@@ -46,7 +52,7 @@ class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjec
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getSingleResult();
     }
 
     public function find($id)

From bab6528ed6e7f85471cead28f639ee55088ac359 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 26 Jun 2024 14:56:25 +0200
Subject: [PATCH 043/375] Add test for AccompayingCourseStoredObjectVoter

Mainly to check the voteOnAttribute method, by mocking a scenario where a person
is allowed to see/edit an AccompanyingCourseDocument and not.
---
 ...ccompanyingCourseStoredObjectVoterTest.php | 106 ++++++++++++++++++
 1 file changed, 106 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
new file mode 100644
index 000000000..f7ad25987
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
@@ -0,0 +1,106 @@
+<?php
+
+namespace Chill\DocStoreBundle\Tests\Security\Authorization;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\MainBundle\Entity\User;
+use ChillDocStoreBundle\Security\Authorization\StoredObjectVoters\AccompanyingCourseStoredObjectVoter;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+
+class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
+{
+    private $repository;
+    private $security;
+    private $workflowDocumentService;
+    private $voter;
+
+    protected function setUp(): void
+    {
+        $this->repository = $this->createMock(AccompanyingCourseDocumentRepository::class);
+        $this->security = $this->createMock(Security::class);
+        $this->workflowDocumentService = $this->createMock(WorkflowDocumentService::class);
+
+        $this->voter = new AccompanyingCourseStoredObjectVoter(
+            $this->repository,
+            $this->security,
+            $this->workflowDocumentService
+        );
+    }
+
+    private function setupMockObjects(): array
+    {
+        $user = $this->createMock(User::class);
+        $token = $this->createMock(TokenInterface::class);
+        $subject = $this->createMock(StoredObject::class);
+        $entity = $this->createMock(AccompanyingCourseDocument::class);
+
+        return [$user, $token, $subject, $entity];
+    }
+
+    private function setupMocksForVoteOnAttribute(User $user, TokenInterface $token, bool $isGrantedForAccCourseDocument, AccompanyingCourseDocument $entity, bool $workflowAllowed): void
+    {
+        // Set up token to return user
+        $token->method('getUser')->willReturn($user);
+
+        // Mock the return of an AccompanyingCourseDocument by the repository
+        $this->repository->method('findAssociatedEntityToStoredObject')->willReturn($entity);
+
+        // Mock attributeToRole to return appropriate role
+        $this->voter->method('attributeToRole')->willReturn(AccompanyingCourseDocumentVoter::SEE_DETAILS);
+
+        // Mock scenario where user is allowed to see_details of the AccompanyingCourseDocument
+        $this->security->method('isGranted')->willReturnMap([
+            [[AccompanyingCourseDocumentVoter::SEE_DETAILS, $entity], $isGrantedForAccCourseDocument],
+        ]);
+
+        // Mock case where user is blocked or not by workflow
+        $this->workflowDocumentService->method('notBlockedByWorkflow')->willReturn($workflowAllowed);
+    }
+
+    public function testVoteOnAttributeAllowed(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
+
+        // The voteOnAttribute method should return True when workflow is allowed
+        $attributeSee = StoredObjectRoleEnum::SEE;
+        $attributeEdit = StoredObjectRoleEnum::EDIT;
+        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+    }
+
+    public function testVoteOnAttributeNotAllowed(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method where isGranted() returns false
+        $this->setupMocksForVoteOnAttribute($user, $token, false, $entity, true);
+
+        // The voteOnAttribute method should return True when workflow is allowed
+        $attributeSee = StoredObjectRoleEnum::SEE;
+        $attributeEdit = StoredObjectRoleEnum::EDIT;
+        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+    }
+
+    public function testVoteOnAttributeWhenBlockedByWorkflow(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, $subject, $entity, false);
+
+        // Test voteOnAttribute method
+        $attribute = StoredObjectRoleEnum::SEE;
+        $result = $this->voter->voteOnAttribute($attribute, $subject, $token);
+
+        // Assert that access is denied when workflow is not allowed
+        $this->assertFalse($result);
+    }
+}

From 742f2540f69685aaa4ce1c967bc668e3e397570d Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 27 Jun 2024 11:59:31 +0200
Subject: [PATCH 044/375] Setup
 AccompanyingPeriodWorkEvaluationStoredObjectVoter.php to use
 AccompanyingPeriodWorkRepository.php

The voter was not checking the correct permissions to\ establish whether a user can see/edit a storedObject\
The right to see/edit an AccompanyingPeriodWork has to\
be checked.
---
 ...ingPeriodWorkEvaluationStoredObjectVoter.php | 15 +++++++--------
 ...ngPeriodWorkEvaluationDocumentRepository.php | 11 +----------
 .../AccompanyingPeriodWorkRepository.php        | 17 ++++++++++++++++-
 3 files changed, 24 insertions(+), 19 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
index 423730767..72e422776 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
@@ -6,15 +6,15 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
-use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
-use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
+use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
 use Symfony\Component\Security\Core\Security;
 
 class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredObjectVoter
 {
     public function __construct(
-        private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
+        private readonly AccompanyingPeriodWorkRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
     ){
@@ -31,15 +31,14 @@ class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredOb
      */
     protected function getClass(): string
     {
-        return AccompanyingPeriodWorkEvaluationDocument::class;
+        return AccompanyingPeriodWork::class;
     }
 
     protected function attributeToRole(StoredObjectRoleEnum $attribute): string
     {
-        //Question: there is no update/edit check in AccompanyingPeriodWorkEvaluationDocumentVoter, so for both SEE and EDIT of the
-        // stored object I check with SEE right in AccompanyingPeriodWorkEvaluationDocumentVoter, correct?
         return match ($attribute) {
-            StoredObjectRoleEnum::SEE, StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkEvaluationDocumentVoter::SEE,
+            StoredObjectRoleEnum::SEE => AccompanyingPeriodWorkVoter::SEE,
+            StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkVoter::UPDATE,
         };
     }
 
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 60dcdf1b1..36de5ce3e 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -18,7 +18,7 @@ use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
+class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository
 {
     private readonly EntityRepository $repository;
 
@@ -61,13 +61,4 @@ class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectReposi
         return AccompanyingPeriodWorkEvaluationDocument::class;
     }
 
-    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
-    {
-        $qb = $this->repository->createQueryBuilder('ed');
-        $query = $qb->where('ed.storedObject = :storedObject')
-            ->setParameter('storedObject', $storedObject)
-            ->getQuery();
-
-        return $query->getResult();
-    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
index 95b995e74..43ecd5337 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
@@ -11,6 +11,8 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\MainBundle\Entity\User;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
@@ -22,7 +24,7 @@ use Doctrine\ORM\Query\ResultSetMappingBuilder;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-final readonly class AccompanyingPeriodWorkRepository implements ObjectRepository
+final readonly class AccompanyingPeriodWorkRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
     private EntityRepository $repository;
 
@@ -251,4 +253,17 @@ final readonly class AccompanyingPeriodWorkRepository implements ObjectRepositor
 
         return $qb;
     }
+
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?AccompanyingPeriodWork
+    {
+        $qb = $this->repository->createQueryBuilder('acpw');
+        $query = $qb
+            ->join('acpw.evaluations', 'acpwe')
+            ->join('acpwe.documents', 'acpwed')
+            ->where('acpwed.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getResult();
+    }
 }

From efaad1981d2742c8e99fc27f9d51a6e641e4e498 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 27 Jun 2024 12:44:36 +0200
Subject: [PATCH 045/375] Fix namespaces and move voters to corresponding
 bundles

---
 .../ChillActivityBundle/Repository/ActivityRepository.php     | 2 +-
 .../Security/Authorization}/ActivityStoredObjectVoter.php     | 2 +-
 ...er.php => AccompanyingCourseDocumentStoredObjectVoter.php} | 4 ++--
 .../AccompanyingPeriodWorkEvaluationStoredObjectVoter.php     | 3 +--
 ...redObjectVoter.php => PersonDocumentStoredObjectVoter.php} | 4 ++--
 .../Security/Authorization}/EventStoredObjectVoter.php        | 2 +-
 6 files changed, 8 insertions(+), 9 deletions(-)
 rename src/Bundle/{ChillDocStoreBundle/Security/Authorization/StoredObjectVoters => ChillActivityBundle/Security/Authorization}/ActivityStoredObjectVoter.php (94%)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/{AccompanyingCourseStoredObjectVoter.php => AccompanyingCourseDocumentStoredObjectVoter.php} (90%)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/{PersonStoredObjectVoter.php => PersonDocumentStoredObjectVoter.php} (90%)
 rename src/Bundle/{ChillDocStoreBundle/Security/Authorization/StoredObjectVoters => ChillEventBundle/Security/Authorization}/EventStoredObjectVoter.php (94%)

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index 4d621d56e..47ecb66dc 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -106,7 +106,7 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
      * @throws NonUniqueResultException
      * @throws NoResultException
      */
-    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?Activity
     {
         $qb = $this->createQueryBuilder('a');
         $query = $qb
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
similarity index 94%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
rename to src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
index a36535005..01ec68bd9 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
@@ -1,6 +1,6 @@
 <?php
 
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\ActivityBundle\Security\Authorization;
 
 use Chill\ActivityBundle\Entity\Activity;
 use Chill\ActivityBundle\Repository\ActivityDocumentACLAwareRepository;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
similarity index 90%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
index a41ea3067..86e7bd9de 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -1,6 +1,6 @@
 <?php
 
-namespace ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
@@ -11,7 +11,7 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStore
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Symfony\Component\Security\Core\Security;
 
-final class AccompanyingCourseStoredObjectVoter extends AbstractStoredObjectVoter
+final class AccompanyingCourseDocumentStoredObjectVoter extends AbstractStoredObjectVoter
 {
     public function __construct(
         private readonly AccompanyingCourseDocumentRepository $repository,
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
index 72e422776..d6ae5cdbf 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
@@ -1,10 +1,9 @@
 <?php
 
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
similarity index 90%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
index 6c3b0b807..a40d08849 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
@@ -1,6 +1,6 @@
 <?php
 
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
@@ -11,7 +11,7 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStore
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Symfony\Component\Security\Core\Security;
 
-class PersonStoredObjectVoter extends AbstractStoredObjectVoter
+class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
 {
     public function __construct(
         private readonly PersonDocumentRepository $repository,
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
similarity index 94%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
rename to src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index 218ce1980..9db6177c8 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -1,6 +1,6 @@
 <?php
 
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\EventBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;

From 18a03fd740f2b6328fcb397f6cf00eb2c25f9d13 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 26 Jun 2024 10:05:38 +0200
Subject: [PATCH 046/375] Add signature messenger request serialization and
 processing

This update introduces a new serializer class for request messages (from messenger component). New features-includes encoding and decoding of request messages and handling unexpected value exceptions. A new test class for the serializer and it also adds functionality to process signature requests in the controller.
---
 .../Controller/SignatureRequestController.php |  46 ++++++
 .../BaseSigner/RequestPdfSignMessage.php      |  26 ++++
 .../RequestPdfSignMessageSerializer.php       | 102 +++++++++++++
 .../RequestPdfSignMessageSerializerTest.php   | 137 ++++++++++++++++++
 4 files changed, 311 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
new file mode 100644
index 000000000..d76e9e5db
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -0,0 +1,46 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Controller;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessage;
+use Chill\DocStoreBundle\Service\Signature\PDFPage;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Messenger\MessageBusInterface;
+use Symfony\Component\Routing\Annotation\Route;
+
+class SignatureRequestController
+{
+    public function __construct(
+        private MessageBusInterface $messageBus,
+        private StoredObjectManagerInterface $storedObjectManager,
+    ) {}
+
+    #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
+    public function processSignature(StoredObject $storedObject): Response
+    {
+        $content = $this->storedObjectManager->read($storedObject);
+
+        $this->messageBus->dispatch(new RequestPdfSignMessage(
+            0,
+            new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
+            0,
+            'test signature',
+            'Mme Caroline Diallo',
+            $content
+        ));
+
+        return new Response('<html><head><title>test</title></head><body><p>ok</p></body></html>');
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
new file mode 100644
index 000000000..2598bf4d2
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
@@ -0,0 +1,26 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
+
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+
+final readonly class RequestPdfSignMessage
+{
+    public function __construct(
+        public int $signatureId,
+        public PDFSignatureZone $PDFSignatureZone,
+        public int $signatureZoneIndex,
+        public string $reason,
+        public string $signerText,
+        public string $content,
+    ) {}
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
new file mode 100644
index 000000000..1241bc0bb
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
@@ -0,0 +1,102 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
+
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\Exception\MessageDecodingFailedException;
+use Symfony\Component\Messenger\Stamp\NonSendableStampInterface;
+use Symfony\Component\Messenger\Transport\Serialization\SerializerInterface;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+final readonly class RequestPdfSignMessageSerializer implements SerializerInterface
+{
+    public function __construct(
+        private NormalizerInterface $normalizer,
+        private DenormalizerInterface $denormalizer,
+    ) {}
+
+    public function decode(array $encodedEnvelope): Envelope
+    {
+        $body = $encodedEnvelope['body'];
+        $headers = $encodedEnvelope['headers'];
+
+        if (RequestPdfSignMessage::class !== ($headers['Message'] ?? null)) {
+            throw new MessageDecodingFailedException('serializer does not support this message');
+        }
+
+        $data = json_decode($body, true);
+
+        $zoneSignature = $this->denormalizer->denormalize($data['signatureZone'], PDFSignatureZone::class, 'json', [
+            AbstractNormalizer::GROUPS => ['write'],
+        ]);
+
+        $content = base64_decode($data['content'], true);
+
+        if (false === $content) {
+            throw new MessageDecodingFailedException('the content could not be converted from base64 encoding');
+        }
+
+        $message = new RequestPdfSignMessage(
+            $data['signatureId'],
+            $zoneSignature,
+            $data['signatureZoneIndex'],
+            $data['reason'],
+            $data['signerText'],
+            $content,
+        );
+
+        // in case of redelivery, unserialize any stamps
+        $stamps = [];
+        if (isset($headers['stamps'])) {
+            $stamps = unserialize($headers['stamps']);
+        }
+
+        return new Envelope($message, $stamps);
+    }
+
+    public function encode(Envelope $envelope): array
+    {
+        $message = $envelope->getMessage();
+
+        if (!$message instanceof RequestPdfSignMessage) {
+            throw new MessageDecodingFailedException('Message is not a RequestPdfSignMessage');
+        }
+
+        $data = [
+            'signatureId' => $message->signatureId,
+            'signatureZoneIndex' => $message->signatureZoneIndex,
+            'signatureZone' => $this->normalizer->normalize($message->PDFSignatureZone, 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            'reason' => $message->reason,
+            'signerText' => $message->signerText,
+            'content' => base64_encode($message->content),
+        ];
+
+        $allStamps = [];
+        foreach ($envelope->all() as $stamp) {
+            if ($stamp instanceof NonSendableStampInterface) {
+                continue;
+            }
+            $allStamps = [...$allStamps, ...$stamp];
+        }
+
+        return [
+            'body' => json_encode($data, JSON_THROW_ON_ERROR, 512),
+            'headers' => [
+                'stamps' => serialize($allStamps),
+                'Message' => RequestPdfSignMessage::class,
+            ],
+        ];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php
new file mode 100644
index 000000000..6fda535df
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php
@@ -0,0 +1,137 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service\Signature\Driver\BaseSigner;
+
+use Chill\DocStoreBundle\Service\Signature\PDFPage;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessage;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessageSerializer;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Serializer\Exception\UnexpectedValueException;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Symfony\Component\Serializer\Serializer;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class RequestPdfSignMessageSerializerTest extends TestCase
+{
+    public function testEncode(): void
+    {
+        $serializer = $this->buildSerializer();
+
+        $envelope = new Envelope(
+            $request = new RequestPdfSignMessage(
+                0,
+                new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
+                0,
+                'metadata to add to the signature',
+                'Mme Caroline Diallo',
+                'abc'
+            ),
+        );
+
+        $actual = $serializer->encode($envelope);
+        $expectedBody = json_encode([
+            'signatureId' => $request->signatureId,
+            'signatureZoneIndex' => $request->signatureZoneIndex,
+            'signatureZone' => ['x' => 10.0],
+            'reason' => $request->reason,
+            'signerText' => $request->signerText,
+            'content' => base64_encode($request->content),
+        ]);
+
+        self::assertIsArray($actual);
+        self::assertArrayHasKey('body', $actual);
+        self::assertArrayHasKey('headers', $actual);
+        self::assertEquals($expectedBody, $actual['body']);
+    }
+
+    public function testDecode(): void
+    {
+        $serializer = $this->buildSerializer();
+
+        $request = new RequestPdfSignMessage(
+            0,
+            new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
+            0,
+            'metadata to add to the signature',
+            'Mme Caroline Diallo',
+            'abc'
+        );
+
+        $bodyAsString = json_encode([
+            'signatureId' => $request->signatureId,
+            'signatureZoneIndex' => $request->signatureZoneIndex,
+            'signatureZone' => ['x' => 10.0],
+            'reason' => $request->reason,
+            'signerText' => $request->signerText,
+            'content' => base64_encode($request->content),
+        ], JSON_THROW_ON_ERROR);
+
+        $actual = $serializer->decode([
+            'body' => $bodyAsString,
+            'headers' => [
+                'Message' => RequestPdfSignMessage::class,
+            ],
+        ]);
+
+        self::assertInstanceOf(RequestPdfSignMessage::class, $actual->getMessage());
+        self::assertEquals($request->signatureId, $actual->getMessage()->signatureId);
+        self::assertEquals($request->signatureZoneIndex, $actual->getMessage()->signatureZoneIndex);
+        self::assertEquals($request->reason, $actual->getMessage()->reason);
+        self::assertEquals($request->signerText, $actual->getMessage()->signerText);
+        self::assertEquals($request->content, $actual->getMessage()->content);
+        self::assertNotNull($actual->getMessage()->PDFSignatureZone);
+    }
+
+    private function buildSerializer(): RequestPdfSignMessageSerializer
+    {
+        $normalizer =
+            new class () implements NormalizerInterface {
+                public function normalize($object, ?string $format = null, array $context = []): array
+                {
+                    if (!$object instanceof PDFSignatureZone) {
+                        throw new UnexpectedValueException('expected RequestPdfSignMessage');
+                    }
+
+                    return [
+                        'x' => $object->x,
+                    ];
+                }
+
+                public function supportsNormalization($data, ?string $format = null): bool
+                {
+                    return $data instanceof PDFSignatureZone;
+                }
+            };
+        $denormalizer = new class () implements DenormalizerInterface {
+            public function denormalize($data, string $type, ?string $format = null, array $context = [])
+            {
+                return new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0));
+            }
+
+            public function supportsDenormalization($data, string $type, ?string $format = null)
+            {
+                return PDFSignatureZone::class === $type;
+            }
+        };
+
+        $serializer = new Serializer([$normalizer, $denormalizer]);
+
+        return new RequestPdfSignMessageSerializer($serializer, $serializer);
+    }
+}

From 9bc6fe6aff1504e7ccf84cab0aa2cc8f9021fc2e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 27 Jun 2024 17:17:09 +0200
Subject: [PATCH 047/375] Add PdfSignedMessage and its serializer

Added a new class, PdfSignedMessage, to handle received signed PDF messages. Also, added a serializer for this class, PdfSignedMessageSerializer, for use with messaging. Furthermore, comment documentation has been added to RequestPdfSignMessage and its serializer for better clarity. Updated unit tests are also included.
---
 .../Driver/BaseSigner/PdfSignedMessage.php    | 23 +++++++
 .../BaseSigner/PdfSignedMessageHandler.php    | 25 +++++++
 .../BaseSigner/PdfSignedMessageSerializer.php | 66 +++++++++++++++++++
 .../BaseSigner/RequestPdfSignMessage.php      |  3 +
 .../RequestPdfSignMessageSerializer.php       |  3 +
 .../PdfSignedMessageSerializerTest.php        | 63 ++++++++++++++++++
 6 files changed, 183 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
new file mode 100644
index 000000000..64ada47c7
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
+
+/**
+ * Message which is received when a pdf is signed.
+ */
+final readonly class PdfSignedMessage
+{
+    public function __construct(
+        public readonly int $signatureId,
+        public readonly string $content
+    ) {}
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
new file mode 100644
index 000000000..37fb3de6c
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -0,0 +1,25 @@
+<?php
+
+namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
+
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+
+final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
+{
+    /**
+     * log prefix
+     */
+    private const P = '[pdf signed message] ';
+
+    public function __construct(
+        private LoggerInterface $logger,
+    )
+    {
+    }
+
+    public function __invoke(PdfSignedMessage $message): void
+    {
+        $this->logger->info(self::P."a message is received", ['signaturedId' => $message->signatureId]);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
new file mode 100644
index 000000000..082b9b83c
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
@@ -0,0 +1,66 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
+
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\Exception\MessageDecodingFailedException;
+use Symfony\Component\Messenger\Transport\Serialization\SerializerInterface;
+
+/**
+ * Decode (and requeue) @see{PdfSignedMessage}, which comes from an external producer.
+ */
+final readonly class PdfSignedMessageSerializer implements SerializerInterface
+{
+    public function decode(array $encodedEnvelope): Envelope
+    {
+        $body = $encodedEnvelope['body'];
+
+        try {
+            $decoded = json_decode($body, true, 512, JSON_THROW_ON_ERROR);
+        } catch (\JsonException $e) {
+            throw new MessageDecodingFailedException('Could not deserialize message', previous: $e);
+        }
+
+        if (!array_key_exists('signatureId', $decoded) || !array_key_exists('content', $decoded)) {
+            throw new MessageDecodingFailedException('Could not find expected keys: signatureId or content');
+        }
+
+        $content = base64_decode($decoded['content'], true);
+
+        if (false === $content) {
+            throw new MessageDecodingFailedException('Invalid character found in the base64 encoded content');
+        }
+
+        $message = new PdfSignedMessage($decoded['signatureId'], $content);
+
+        return new Envelope($message);
+    }
+
+    public function encode(Envelope $envelope): array
+    {
+        $message = $envelope->getMessage();
+
+        if (!$message instanceof PdfSignedMessage) {
+            throw new MessageDecodingFailedException('Expected a PdfSignedMessage');
+        }
+
+        $data = [
+            'signatureId' => $message->signatureId,
+            'content' => base64_encode($message->content),
+        ];
+
+        return [
+            'body' => json_encode($data, JSON_THROW_ON_ERROR),
+            'headers' => [],
+        ];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
index 2598bf4d2..144a738e1 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
@@ -13,6 +13,9 @@ namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
 
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 
+/**
+ * Message which is sent when we request a signature on a pdf.
+ */
 final readonly class RequestPdfSignMessage
 {
     public function __construct(
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
index 1241bc0bb..57314a109 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
@@ -20,6 +20,9 @@ use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
 use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 
+/**
+ * Serialize a RequestPdfSignMessage, for external consumer.
+ */
 final readonly class RequestPdfSignMessageSerializer implements SerializerInterface
 {
     public function __construct(
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php
new file mode 100644
index 000000000..d9d600254
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php
@@ -0,0 +1,63 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service\Signature\Driver\BaseSigner;
+
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\PdfSignedMessage;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\PdfSignedMessageSerializer;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Messenger\Envelope;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PdfSignedMessageSerializerTest extends TestCase
+{
+    public function testDecode(): void
+    {
+        $asString = <<<'JSON'
+            {"signatureId": 0, "content": "dGVzdAo="}
+            JSON;
+
+        $actual = $this->buildSerializer()->decode(['body' => $asString]);
+
+        self::assertInstanceOf(Envelope::class, $actual);
+        $message = $actual->getMessage();
+        self::assertInstanceOf(PdfSignedMessage::class, $message);
+        self::assertEquals("test\n", $message->content);
+        self::assertEquals(0, $message->signatureId);
+    }
+
+    public function testEncode(): void
+    {
+        $envelope = new Envelope(
+            new PdfSignedMessage(0, "test\n")
+        );
+
+        $actual = $this->buildSerializer()->encode($envelope);
+
+        self::assertIsArray($actual);
+        self::assertArrayHasKey('body', $actual);
+        self::assertArrayHasKey('headers', $actual);
+        self::assertEquals([], $actual['headers']);
+
+        self::assertEquals(<<<'JSON'
+                {"signatureId":0,"content":"dGVzdAo="}
+                JSON, $actual['body']);
+    }
+
+    private function buildSerializer(): PdfSignedMessageSerializer
+    {
+        return new PdfSignedMessageSerializer();
+    }
+}

From c9d54a5fea14bac1035a712d142b022c071687e1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 28 Jun 2024 10:47:12 +0200
Subject: [PATCH 048/375] fix cs

---
 .../BaseSigner/PdfSignedMessageHandler.php      | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
index 37fb3de6c..4002b107b 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
 
 use Psr\Log\LoggerInterface;
@@ -8,18 +17,16 @@ use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
 {
     /**
-     * log prefix
+     * log prefix.
      */
     private const P = '[pdf signed message] ';
 
     public function __construct(
         private LoggerInterface $logger,
-    )
-    {
-    }
+    ) {}
 
     public function __invoke(PdfSignedMessage $message): void
     {
-        $this->logger->info(self::P."a message is received", ['signaturedId' => $message->signatureId]);
+        $this->logger->info(self::P.'a message is received', ['signaturedId' => $message->signatureId]);
     }
 }

From c9d2e37cee3533cc2eb0203ca4843ad470601760 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 12:14:03 +0200
Subject: [PATCH 049/375] Implement logic to check if editing of document is
 blocked by workflow

Using the workflow handlers we return the workflow that is attached to an object
so that within the workflowDocumentService we can then check whether this workflow blocks
the edition of a document.
---
 .../Service/WorkflowDocumentService.php       | 26 +++++++++++--------
 ...ompanyingCourseDocumentWorkflowHandler.php | 20 +++++++++-----
 .../EntityWorkflowHandlerInterface.php        |  2 ++
 .../Workflow/EntityWorkflowManager.php        |  9 +++++++
 ...dWorkEvaluationDocumentWorkflowHandler.php | 16 +++++++++++-
 ...ingPeriodWorkEvaluationWorkflowHandler.php | 17 +++++++++++-
 .../AccompanyingPeriodWorkWorkflowHandler.php | 16 +++++++++++-
 7 files changed, 86 insertions(+), 20 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index f796fe56e..17591b2d0 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -4,32 +4,36 @@ namespace Chill\DocStoreBundle\Service;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 
 class WorkflowDocumentService
 {
 
-    public function __construct(private readonly Security $security, private readonly EntityWorkflowRepository $repository)
+    public function __construct(private readonly Security $security, private readonly EntityWorkflowManager $entityWorkflowManager)
     {
     }
 
-    public function notBlockedByWorkflow($entity): bool
+    public function notBlockedByWorkflow(object $entity): bool
     {
         /**
          * @var EntityWorkflow
          */
-        $workflow = $this->repository->findByRelatedEntity(get_class($entity), $entity->getId());
-
-        if ($workflow->isFinal()) {
-            return false;
-        }
-
+        $workflow = $this->entityWorkflowManager->findByRelatedEntity($entity);
         $currentUser = $this->security->getUser();
-        if ($workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
-            return true;
+
+
+        if (null !== $workflow) {
+            if ($workflow->isFinal()) {
+                return false;
+            }
+
+            if ($workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+                return true;
+            }
         }
 
-        return false;
+        return true;
     }
 
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index 9d1b619f9..e3f201914 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -12,8 +12,10 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
 use Doctrine\ORM\EntityManagerInterface;
@@ -22,16 +24,13 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 
 class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    private readonly EntityRepository $repository;
 
-    /**
-     * TODO: injecter le repository directement.
-     */
     public function __construct(
         EntityManagerInterface $em,
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
+        private readonly EntityWorkflowRepository $workflowRepository,
+        private readonly AccompanyingCourseDocumentRepository $repository
     ) {
-        $this->repository = $em->getRepository(AccompanyingCourseDocument::class);
     }
 
     public function getDeletionRoles(): array
@@ -126,4 +125,13 @@ class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandler
     {
         return false;
     }
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    {
+        if(!$object instanceof AccompanyingCourseDocument) {
+            return null;
+        }
+
+        return $this->workflowRepository->findByRelatedEntity(AccompanyingCourseDocument::class, $object->getId());
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
index 1d185ba0e..bff1057c8 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
@@ -51,4 +51,6 @@ interface EntityWorkflowHandlerInterface
     public function supports(EntityWorkflow $entityWorkflow, array $options = []): bool;
 
     public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool;
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow;
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 9a1f52280..3f2ff0439 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -37,4 +37,13 @@ class EntityWorkflowManager
     {
         return $this->registry->all($entityWorkflow);
     }
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    {
+        foreach ($this->handlers as $handler) {
+            return $handler->findByRelatedEntity($object);
+        }
+        return null;
+    }
+
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 0fc13224e..0fd3af0af 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\PersonBundle\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
@@ -21,7 +22,12 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 
 class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    public function __construct(private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
+    public function __construct(
+        private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
+        private readonly EntityWorkflowRepository $workflowRepository,
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
+        private readonly TranslatorInterface $translator
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -128,4 +134,12 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
     {
         return false;
     }
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    {
+        if (!$object instanceof AccompanyingPeriodWorkEvaluationDocument) {
+            return null;
+        }
+        return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluationDocument::class, $object->getId());
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index 63b34d1dc..e007f03f7 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\PersonBundle\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluation;
@@ -22,7 +23,12 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 
 class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    public function __construct(private readonly AccompanyingPeriodWorkEvaluationRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
+    public function __construct(
+        private readonly AccompanyingPeriodWorkEvaluationRepository $repository,
+        private readonly EntityWorkflowRepository $workflowRepository,
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
+        private readonly TranslatorInterface $translator
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -114,4 +120,13 @@ class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowH
     {
         return false;
     }
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    {
+        if (!$object instanceof AccompanyingPeriodWorkEvaluation) {
+            return null;
+        }
+
+        return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluation::class, $object->getId());
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 5c74e5b17..81116b7b2 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\PersonBundle\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
@@ -23,7 +24,12 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 
 class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    public function __construct(private readonly AccompanyingPeriodWorkRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
+    public function __construct(
+        private readonly AccompanyingPeriodWorkRepository $repository,
+        private readonly EntityWorkflowRepository $workflowRepository,
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
+        private readonly TranslatorInterface $translator
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -121,4 +127,12 @@ class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInte
     {
         return false;
     }
+
+    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    {
+        if (!$object instanceof AccompanyingPeriodWork) {
+            return null;
+        }
+        return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWork::class, $object->getId());
+    }
 }

From 254122d125151cf16634de0a858bac6bd2f10c65 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 12:20:21 +0200
Subject: [PATCH 050/375] Remove check to see if user is instance of User

The admin user would not be identified as a User.
---
 .../StoredObjectVoters/AbstractStoredObjectVoter.php          | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
index 7ca73f206..659d7d28a 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
@@ -40,10 +40,6 @@ abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
 
     public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool
     {
-        if (!$token->getUser() instanceof User) {
-            return false;
-        }
-
         // Retrieve the related accompanying course document
         $entity = $this->getRepository()->findAssociatedEntityToStoredObject($subject);
 

From d1653a074bb3595bed9e828f16b8f90325e3272f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 12:21:25 +0200
Subject: [PATCH 051/375] Implement test on AbstractStoredObjectVoter

To avoid having to duplicate tests, a test is written\
for the abstract voter.
---
 ....php => AbstractStoredObjectVoterTest.php} | 45 ++++++++++++++++---
 1 file changed, 38 insertions(+), 7 deletions(-)
 rename src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/{AccompanyingCourseStoredObjectVoterTest.php => AbstractStoredObjectVoterTest.php} (73%)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
similarity index 73%
rename from src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
rename to src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index f7ad25987..d5ab471ab 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AccompanyingCourseStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -5,15 +5,17 @@ namespace Chill\DocStoreBundle\Tests\Security\Authorization;
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\MainBundle\Entity\User;
 use ChillDocStoreBundle\Security\Authorization\StoredObjectVoters\AccompanyingCourseStoredObjectVoter;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
-class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
+class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 {
     private $repository;
     private $security;
@@ -26,11 +28,28 @@ class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         $this->security = $this->createMock(Security::class);
         $this->workflowDocumentService = $this->createMock(WorkflowDocumentService::class);
 
-        $this->voter = new AccompanyingCourseStoredObjectVoter(
-            $this->repository,
-            $this->security,
-            $this->workflowDocumentService
-        );
+        // Anonymous class extending the abstract class
+        $this->voter = new class($this->repository, $this->security, $this->workflowDocumentService) extends AbstractStoredObjectVoter {
+            protected function attributeToRole($attribute): string
+            {
+                return AccompanyingCourseDocumentVoter::SEE_DETAILS;
+            }
+
+            protected function getRepository(): AssociatedEntityToStoredObjectInterface
+            {
+                // TODO: Implement getRepository() method.
+            }
+
+            protected function getClass(): string
+            {
+                // TODO: Implement getClass() method.
+            }
+
+            protected function canBeAssociatedWithWorkflow(): bool
+            {
+                // TODO: Implement canBeAssociatedWithWorkflow() method.
+            }
+        };
     }
 
     private function setupMockObjects(): array
@@ -94,7 +113,7 @@ class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         list($user, $token, $subject, $entity) = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
-        $this->setupMocksForVoteOnAttribute($user, $token, $subject, $entity, false);
+        $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, false);
 
         // Test voteOnAttribute method
         $attribute = StoredObjectRoleEnum::SEE;
@@ -103,4 +122,16 @@ class AccompanyingCourseStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         // Assert that access is denied when workflow is not allowed
         $this->assertFalse($result);
     }
+
+    public function testAbstractStoredObjectVoter(): void
+    {
+        $voter = new class extends AbstractStoredObjectVoter {
+            // Implement abstract methods here
+            public function someMethod() {
+                // method implementation
+            }
+        };
+        // Run tests on $voter
+    }
+
 }

From fb743b522d35aea4fd82ed6fa2ef59fe1b2fc688 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 12:23:31 +0200
Subject: [PATCH 052/375] Remove implementation of StoredObjectInterface

---
 .../AccompanyingPeriodWorkEvaluationDocumentVoter.php           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
index 8f4a1b995..ecf3cd802 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
@@ -22,7 +22,7 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
  *
  * Delegates to the sames authorization than for Evalution
  */
-class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter implements StoredObjectVoterInterface
+class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
 {
     final public const SEE = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_DOCUMENT_SHOW';
 

From 3db4fff80df6ce82c97b8c6b00b1cd037a3ccb66 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 28 Jun 2024 11:58:39 +0200
Subject: [PATCH 053/375] Add signature functionality to workflow entities

Created new files to add signature functionality to the workflow entities, including signature state enums and signature metadata. Added these changes to the migration script as well. Updated EntityWorkflowStep to include a collection for signatures.
---
 .../EntityWorkflowSignatureStateEnum.php      |  20 ++
 .../Entity/Workflow/EntityWorkflowStep.php    |  42 ++-
 .../Workflow/EntityWorkflowStepSignature.php  | 156 ++++++++++
 .../EntityWorkflowStepSignatureRepository.php |  54 ++++
 .../EntityWorkflowStepSignatureTest.php       |  69 ++++
 .../migrations/Version20240628095159.php      |  51 +++
 tests/app/config/packages/workflow_chill.yaml | 294 ++++++++++++++++++
 7 files changed, 684 insertions(+), 2 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSignatureStateEnum.php
 create mode 100644 src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
 create mode 100644 src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowStepSignatureTest.php
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240628095159.php
 create mode 100644 tests/app/config/packages/workflow_chill.yaml

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSignatureStateEnum.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSignatureStateEnum.php
new file mode 100644
index 000000000..2d3e4269f
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSignatureStateEnum.php
@@ -0,0 +1,20 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Entity\Workflow;
+
+enum EntityWorkflowSignatureStateEnum: string
+{
+    case PENDING = 'pending';
+    case SIGNED = 'signed';
+    case REJECTED = 'rejected';
+    case CANCELED = 'canceled';
+}
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 99b164065..a97e810b4 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -42,19 +42,25 @@ class EntityWorkflowStep
     private array $destEmail = [];
 
     /**
-     * @var Collection<User>
+     * @var Collection<int, User>
      */
     #[ORM\ManyToMany(targetEntity: User::class)]
     #[ORM\JoinTable(name: 'chill_main_workflow_entity_step_user')]
     private Collection $destUser;
 
     /**
-     * @var Collection<User>
+     * @var Collection<int, User>
      */
     #[ORM\ManyToMany(targetEntity: User::class)]
     #[ORM\JoinTable(name: 'chill_main_workflow_entity_step_user_by_accesskey')]
     private Collection $destUserByAccessKey;
 
+    /**
+     * @var Collection <int, EntityWorkflowStepSignature>
+     */
+    #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepSignature::class, cascade: ['persist'], orphanRemoval: true)]
+    private Collection $signatures;
+
     #[ORM\ManyToOne(targetEntity: EntityWorkflow::class, inversedBy: 'steps')]
     private ?EntityWorkflow $entityWorkflow = null;
 
@@ -97,6 +103,7 @@ class EntityWorkflowStep
         $this->ccUser = new ArrayCollection();
         $this->destUser = new ArrayCollection();
         $this->destUserByAccessKey = new ArrayCollection();
+        $this->signatures = new ArrayCollection();
         $this->accessKey = bin2hex(openssl_random_pseudo_bytes(32));
     }
 
@@ -136,6 +143,29 @@ class EntityWorkflowStep
         return $this;
     }
 
+    /**
+     * @internal use @see{EntityWorkflowStepSignature}'s constructor instead
+     */
+    public function addSignature(EntityWorkflowStepSignature $signature): self
+    {
+        if (!$this->signatures->contains($signature)) {
+            $this->signatures[] = $signature;
+        }
+
+        return $this;
+    }
+
+    public function removeSignature(EntityWorkflowStepSignature $signature): self
+    {
+        if ($this->signatures->contains($signature)) {
+            $this->signatures->removeElement($signature);
+        }
+
+        $signature->detachEntityWorkflowStep();
+
+        return $this;
+    }
+
     public function getAccessKey(): string
     {
         return $this->accessKey;
@@ -198,6 +228,14 @@ class EntityWorkflowStep
         return $this->entityWorkflow;
     }
 
+    /**
+     * @return Collection<int, EntityWorkflowStepSignature>
+     */
+    public function getSignatures(): Collection
+    {
+        return $this->signatures;
+    }
+
     public function getId(): ?int
     {
         return $this->id;
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
new file mode 100644
index 000000000..25babc3c6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -0,0 +1,156 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Entity\Workflow;
+
+use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
+use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Chill\MainBundle\Doctrine\Model\TrackUpdateInterface;
+use Chill\MainBundle\Doctrine\Model\TrackUpdateTrait;
+use Chill\MainBundle\Entity\User;
+use Chill\PersonBundle\Entity\Person;
+use Doctrine\ORM\Mapping as ORM;
+
+#[ORM\Entity]
+#[ORM\Table(name: 'chill_main_workflow_entity_step_signature')]
+class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdateInterface
+{
+    use TrackCreationTrait;
+    use TrackUpdateTrait;
+
+    #[ORM\Id]
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, unique: true)]
+    #[ORM\GeneratedValue(strategy: 'AUTO')]
+    private ?int $id = null;
+
+    #[ORM\ManyToOne(targetEntity: User::class)]
+    #[ORM\JoinColumn(nullable: true)]
+    private ?User $userSigner = null;
+
+    #[ORM\ManyToOne(targetEntity: Person::class)]
+    #[ORM\JoinColumn(nullable: true)]
+    private ?Person $personSigner = null;
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::STRING, length: 50, nullable: false, enumType: EntityWorkflowSignatureStateEnum::class)]
+    private EntityWorkflowSignatureStateEnum $state = EntityWorkflowSignatureStateEnum::PENDING;
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::DATETIMETZ_IMMUTABLE, nullable: true, options: ['default' => null])]
+    private ?\DateTimeImmutable $stateDate = null;
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, nullable: false, options: ['default' => '[]'])]
+    private array $signatureMetadata = [];
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, nullable: true, options: ['default' => null])]
+    private ?int $zoneSignatureIndex = null;
+
+    #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class, inversedBy: 'signatures')]
+    #[ORM\JoinColumn(nullable: false)]
+    private ?EntityWorkflowStep $step = null;
+
+    public function __construct(
+        EntityWorkflowStep $step,
+        User|Person $signer,
+    ) {
+        $this->step = $step;
+        $step->addSignature($this);
+        $this->setSigner($signer);
+    }
+
+    private function setSigner(User|Person $signer): void
+    {
+        if ($signer instanceof User) {
+            $this->userSigner = $signer;
+        } else {
+            $this->personSigner = $signer;
+        }
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getStep(): EntityWorkflowStep
+    {
+        return $this->step;
+    }
+
+    public function getSigner(): User|Person
+    {
+        if (null !== $this->userSigner) {
+            return $this->userSigner;
+        }
+
+        return $this->personSigner;
+    }
+
+    public function getSignatureMetadata(): array
+    {
+        return $this->signatureMetadata;
+    }
+
+    public function setSignatureMetadata(array $signatureMetadata): EntityWorkflowStepSignature
+    {
+        $this->signatureMetadata = $signatureMetadata;
+
+        return $this;
+    }
+
+    public function getState(): EntityWorkflowSignatureStateEnum
+    {
+        return $this->state;
+    }
+
+    public function setState(EntityWorkflowSignatureStateEnum $state): EntityWorkflowStepSignature
+    {
+        $this->state = $state;
+
+        return $this;
+    }
+
+    public function getStateDate(): ?\DateTimeImmutable
+    {
+        return $this->stateDate;
+    }
+
+    public function setStateDate(?\DateTimeImmutable $stateDate): EntityWorkflowStepSignature
+    {
+        $this->stateDate = $stateDate;
+
+        return $this;
+    }
+
+    public function getZoneSignatureIndex(): ?int
+    {
+        return $this->zoneSignatureIndex;
+    }
+
+    public function setZoneSignatureIndex(?int $zoneSignatureIndex): EntityWorkflowStepSignature
+    {
+        $this->zoneSignatureIndex = $zoneSignatureIndex;
+
+        return $this;
+    }
+
+    /**
+     * Detach from the @see{EntityWorkflowStep}.
+     *
+     * @internal used internally to remove the current signature
+     *
+     * @return $this
+     */
+    public function detachEntityWorkflowStep(): self
+    {
+        $this->step = null;
+
+        return $this;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
new file mode 100644
index 000000000..0e1393242
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
@@ -0,0 +1,54 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\Persistence\ObjectRepository;
+
+/**
+ * @template-implements ObjectRepository<EntityWorkflowStepSignature>
+ */
+class EntityWorkflowStepSignatureRepository implements ObjectRepository
+{
+    private \Doctrine\ORM\EntityRepository $repository;
+
+    public function __construct(EntityManagerInterface $entityManager)
+    {
+        $this->repository = $entityManager->getRepository(EntityWorkflowStepSignature::class);
+    }
+
+    public function find($id): ?EntityWorkflowStepSignature
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll(): array
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria): ?EntityWorkflowStepSignature
+    {
+        return $this->findOneBy($criteria);
+    }
+
+    public function getClassName(): string
+    {
+        return EntityWorkflowStepSignature::class;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowStepSignatureTest.php b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowStepSignatureTest.php
new file mode 100644
index 000000000..62b6a7d6a
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowStepSignatureTest.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Entity\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Entity\Person;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowStepSignatureTest extends KernelTestCase
+{
+    private EntityManagerInterface $entityManager;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->entityManager = self::getContainer()->get(EntityManagerInterface::class);
+    }
+
+    public function testConstruct()
+    {
+        $workflow = new EntityWorkflow();
+        $workflow->setWorkflowName('vendee_internal')
+            ->setRelatedEntityId(0)
+            ->setRelatedEntityClass(AccompanyingPeriodWorkEvaluationDocument::class);
+
+        $step = $workflow->getCurrentStep();
+
+        $person = $this->entityManager->createQuery('SELECT p FROM '.Person::class.' p')
+            ->setMaxResults(1)
+            ->getSingleResult();
+
+        $signature = new EntityWorkflowStepSignature($step, $person);
+
+        self::assertCount(1, $step->getSignatures());
+        self::assertSame($signature, $step->getSignatures()->first());
+
+        $this->entityManager->getConnection()->beginTransaction();
+        $this->entityManager->persist($workflow);
+        $this->entityManager->persist($step);
+        $this->entityManager->persist($signature);
+
+        $this->entityManager->flush();
+        $this->entityManager->getConnection()->commit();
+
+        $this->entityManager->clear();
+
+        $signatureBis = $this->entityManager->find(EntityWorkflowStepSignature::class, $signature->getId());
+
+        self::assertEquals($signature->getId(), $signatureBis->getId());
+        self::assertEquals($step->getId(), $signatureBis->getStep()->getId());
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240628095159.php b/src/Bundle/ChillMainBundle/migrations/Version20240628095159.php
new file mode 100644
index 000000000..4452530c6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240628095159.php
@@ -0,0 +1,51 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240628095159 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add signatures to workflow';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_main_workflow_entity_step_signature_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE TABLE chill_main_workflow_entity_step_signature (id INT NOT NULL, step_id INT NOT NULL, '.
+            'state VARCHAR(50) NOT NULL, stateDate TIMESTAMP(0) WITH TIME ZONE DEFAULT NULL, signatureMetadata JSON DEFAULT \'[]\' NOT NULL,'.
+            ' zoneSignatureIndex INT DEFAULT NULL, createdAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL, updatedAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL,'.
+            ' userSigner_id INT DEFAULT NULL, personSigner_id INT DEFAULT NULL, createdBy_id INT DEFAULT NULL, updatedBy_id INT DEFAULT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE INDEX IDX_C47D4BA3D934E3A4 ON chill_main_workflow_entity_step_signature (userSigner_id)');
+        $this->addSql('CREATE INDEX IDX_C47D4BA3ADFFA293 ON chill_main_workflow_entity_step_signature (personSigner_id)');
+        $this->addSql('CREATE INDEX IDX_C47D4BA373B21E9C ON chill_main_workflow_entity_step_signature (step_id)');
+        $this->addSql('CREATE INDEX IDX_C47D4BA33174800F ON chill_main_workflow_entity_step_signature (createdBy_id)');
+        $this->addSql('CREATE INDEX IDX_C47D4BA365FF1AEC ON chill_main_workflow_entity_step_signature (updatedBy_id)');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_step_signature.stateDate IS \'(DC2Type:datetimetz_immutable)\'');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_step_signature.createdAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_step_signature.updatedAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_signature ADD CONSTRAINT FK_C47D4BA3D934E3A4 FOREIGN KEY (userSigner_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_signature ADD CONSTRAINT FK_C47D4BA3ADFFA293 FOREIGN KEY (personSigner_id) REFERENCES chill_person_person (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_signature ADD CONSTRAINT FK_C47D4BA373B21E9C FOREIGN KEY (step_id) REFERENCES chill_main_workflow_entity_step (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_signature ADD CONSTRAINT FK_C47D4BA33174800F FOREIGN KEY (createdBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_signature ADD CONSTRAINT FK_C47D4BA365FF1AEC FOREIGN KEY (updatedBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_main_workflow_entity_step_signature_id_seq CASCADE');
+        $this->addSql('DROP TABLE chill_main_workflow_entity_step_signature');
+    }
+}
diff --git a/tests/app/config/packages/workflow_chill.yaml b/tests/app/config/packages/workflow_chill.yaml
new file mode 100644
index 000000000..82662461b
--- /dev/null
+++ b/tests/app/config/packages/workflow_chill.yaml
@@ -0,0 +1,294 @@
+framework:
+    workflows:
+        vendee_internal:
+            type: state_machine
+            metadata:
+                related_entity:
+                        - Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument
+                        - Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork
+                        - Chill\DocStoreBundle\Entity\AccompanyingCourseDocument
+                label:
+                    fr: 'Suivi'
+            support_strategy: Chill\MainBundle\Workflow\RelatedEntityWorkflowSupportsStrategy
+            initial_marking: 'initial'
+            marking_store:
+                property: step
+                type: method
+            places:
+                initial:
+                    metadata:
+                        label:
+                            fr: Étape initiale
+                attenteModification:
+                    metadata:
+                        label:
+                            fr: En attente de modification du document
+                        validationFilterInputLabels:
+                            forward: {fr: Modification effectuée}
+                            backward: {fr: Pas de modification effectuée}
+                            neutral: {fr: Autre}
+                attenteMiseEnForme:
+                    metadata:
+                        label:
+                            fr: En attente de mise en forme
+                        validationFilterInputLabels:
+                            forward: {fr: Mise en forme terminée}
+                            backward: {fr: Pas de mise en forme effectuée}
+                            neutral: {fr: Autre}
+                attenteVisa:
+                    metadata:
+                        label:
+                            fr: En attente de visa
+                        validationFilterInputLabels:
+                            forward: {fr: Visa accordé}
+                            backward: {fr: Visa refusé}
+                            neutral: {fr: Autre}
+                attenteSignature:
+                    metadata:
+                        label:
+                            fr: En attente de signature
+                        validationFilterInputLabels:
+                            forward: {fr: Signature accordée}
+                            backward: {fr: Signature refusée}
+                            neutral: {fr: Autre}
+                attenteTraitement:
+                    metadata:
+                        label:
+                            fr: En attente de traitement
+                        validationFilterInputLabels:
+                            forward: {fr: Traitement terminé favorablement}
+                            backward: {fr: Traitement terminé défavorablement}
+                            neutral: {fr: Autre}
+                attenteEnvoi:
+                    metadata:
+                        label:
+                            fr: En attente d'envoi
+                        validationFilterInputLabels:
+                            forward: {fr: Document envoyé}
+                            backward: {fr: Document non envoyé}
+                            neutral: {fr: Autre}
+                attenteValidationMiseEnForme:
+                    metadata:
+                        label:
+                            fr: En attente de validation de la mise en forme
+                        validationFilterInputLabels:
+                            forward: {fr: Validation de la mise en forme}
+                            backward: {fr: Refus de validation de la mise en forme}
+                            neutral: {fr: Autre}
+                annule:
+                    metadata:
+                        isFinal: true
+                        isFinalPositive: false
+                        label:
+                            fr: Annulé
+                final:
+                    metadata:
+                        isFinal: true
+                        isFinalPositive: true
+                        label:
+                            fr: Finalisé
+            transitions:
+                # transition qui avancent
+                demandeModificationDocument:
+                    from:
+                        - initial
+                    to: attenteModification
+                    metadata:
+                        label:
+                            fr: Demande de modification du document
+                        isForward: true
+                demandeMiseEnForme:
+                    from:
+                        - initial
+                        - attenteModification
+                    to: attenteMiseEnForme
+                    metadata:
+                        label:
+                            fr: Demande de mise en forme
+                        isForward: true
+                demandeValidationMiseEnForme:
+                    from:
+                        - attenteMiseEnForme
+                    to: attenteValidationMiseEnForme
+                    metadata:
+                        label:
+                            fr: Demande de validation de la mise en forme
+                        isForward: true
+                demandeVisa:
+                    from:
+                        - initial
+                        - attenteModification
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                    to: attenteVisa
+                    metadata:
+                        label:
+                            fr: Demande de visa
+                        isForward: true
+                demandeSignature:
+                    from:
+                        - initial
+                        - attenteModification
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                        - attenteVisa
+                    to: attenteSignature
+                    metadata:
+                        label: {fr: Demande de signature}
+                        isForward: true
+                demandeTraitement:
+                    from:
+                        - initial
+                        - attenteModification
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                        - attenteVisa
+                        - attenteSignature
+                    to: attenteTraitement
+                    metadata:
+                        label: {fr: Demande de traitement}
+                        isForward: true
+                demandeEnvoi:
+                    from:
+                        - initial
+                        - attenteModification
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                        - attenteVisa
+                        - attenteSignature
+                        - attenteTraitement
+                    to: attenteEnvoi
+                    metadata:
+                        label: {fr: Demande d'envoi}
+                        isForward: true
+                annulation:
+                    from:
+                        - initial
+                        - attenteModification
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                        - attenteVisa
+                        - attenteSignature
+                        - attenteTraitement
+                        - attenteEnvoi
+                    to: annule
+                    metadata:
+                        label: {fr: Annulation}
+                        isForward: false
+                # transitions qui répètent l'étape
+                demandeMiseEnFormeSupplementaire:
+                    from:
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                    to: attenteMiseEnForme
+                    metadata:
+                        label: {fr: Demande de mise en forme supplémentaire}
+                demandeVisaSupplementaire:
+                    from:
+                        - attenteVisa
+                    to: attenteVisa
+                    metadata:
+                        label: {fr: Demande de visa supplémentaire}
+                        isForward: true
+                demandeSignatureSupplementaire:
+                    from:
+                        - attenteSignature
+                    to: attenteSignature
+                    metadata:
+                        label: {fr: Demande de signature supplémentaire}
+                demandeTraitementSupplementaire:
+                    from:
+                        - attenteTraitement
+                    to: attenteTraitement
+                    metadata:
+                        label: {fr: Demande de traitement supplémentaire}
+                # transitions qui renvoient vers une étape précédente
+                refusEtModificationDocument:
+                    from:
+                        - attenteVisa
+                        - attenteSignature
+                        - attenteTraitement
+                        - attenteEnvoi
+                    to: attenteModification
+                    metadata:
+                        label:
+                            fr: Refus et demande de modification du document
+                        isForward: false
+                refusEtDemandeMiseEnForme:
+                    from:
+                        - attenteVisa
+                        - attenteSignature
+                        - attenteTraitement
+                        - attenteEnvoi
+                    to: attenteMiseEnForme
+                    metadata:
+                        label: {fr: Refus et demande de mise en forme}
+                        isForward: false
+                refusEtDemandeVisa:
+                    from:
+                        - attenteSignature
+                        - attenteTraitement
+                        - attenteEnvoi
+                    to: attenteVisa
+                    metadata:
+                        label: {fr: Refus et demande de visa}
+                        isForward: false
+                refusEtDemandeSignature:
+                    from:
+                        - attenteTraitement
+                        - attenteEnvoi
+                    to: attenteSignature
+                    metadata:
+                        label: {fr: Refus et demande de signature}
+                        isForward: false
+                refusEtDemandeTraitement:
+                    from:
+                        - attenteEnvoi
+                    to: attenteTraitement
+                    metadata:
+                        label: {fr: Refus et demande de traitement}
+                        isForward: false
+                # transition vers final
+                initialToFinal:
+                    from:
+                        - initial
+                    to: final
+                    metadata:
+                        label: {fr: Clotûre immédiate et cloture positive}
+                        isForward: true
+                attenteMiseEnFormeToFinal:
+                    from:
+                        - attenteMiseEnForme
+                        - attenteValidationMiseEnForme
+                    to: final
+                    metadata:
+                        label: {fr: Mise en forme terminée et cloture positive}
+                        isForward: true
+                attenteVisaToFinal:
+                    from:
+                        - attenteVisa
+                    to: final
+                    metadata:
+                        label: {fr: Accorde le visa et cloture positive}
+                        isForward: true
+                attenteSignatureToFinal:
+                    from:
+                        - attenteSignature
+                    to: final
+                    metadata:
+                        label: {fr: Accorde la signature et cloture positive}
+                        isForward: true
+                attenteTraitementToFinal:
+                    from:
+                        - attenteTraitement
+                    to: final
+                    metadata:
+                        label: {fr: Traitement terminé et cloture postive}
+                        isForward: true
+                attenteEnvoiToFinal:
+                    from:
+                        - attenteEnvoi
+                    to: final
+                    metadata:
+                        label: {fr: Envoyé et cloture postive}
+                        isForward: true

From 8c92d117225b77a9cd5951ddd721311ad3ebd022 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 15:23:07 +0200
Subject: [PATCH 054/375] Implement permissions for WOPI

---
 .../src/Service/Wopi/AuthorizationManager.php       | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
index c54f187ca..9ed421461 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
@@ -65,7 +65,11 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanRead(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        return $this->isTokenValid($accessToken, $document, $request);
+        if ($this->security->isGranted('SEE', $document)) {
+            return $this->isTokenValid($accessToken, $document, $request);
+        }
+
+        return false;
     }
 
     public function userCanRename(string $accessToken, Document $document, RequestInterface $request): bool
@@ -75,6 +79,11 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanWrite(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        return $this->isTokenValid($accessToken, $document, $request);
+        if ($this->security->isGranted('EDIT', $document)) {
+            return $this->isTokenValid($accessToken, $document, $request);
+        }
+
+        return false;
     }
+
 }

From ac2f314395514328d8ddb5bdba7fbec9f291e581 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 15:23:32 +0200
Subject: [PATCH 055/375] Implement permissions for download button group

---
 .../Templating/WopiEditTwigExtensionRuntime.php               | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
index 716cb422e..be45bd2d4 100644
--- a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
+++ b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
@@ -16,6 +16,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
@@ -128,6 +129,7 @@ final readonly class WopiEditTwigExtensionRuntime implements RuntimeExtensionInt
         private NormalizerInterface $normalizer,
         private JWTDavTokenProviderInterface $davTokenProvider,
         private UrlGeneratorInterface $urlGenerator,
+        private Security $security,
     ) {}
 
     /**
@@ -150,6 +152,8 @@ final readonly class WopiEditTwigExtensionRuntime implements RuntimeExtensionInt
      */
     public function renderButtonGroup(Environment $environment, StoredObject $document, ?string $title = null, bool $canEdit = true, array $options = []): string
     {
+        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT, $document);
+
         $accessToken = $this->davTokenProvider->createToken(
             $document,
             $canEdit ? StoredObjectRoleEnum::EDIT : StoredObjectRoleEnum::SEE

From 5b0babb9b08d260bfc0c64be37b6b43feb4ba270 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 1 Jul 2024 15:37:47 +0200
Subject: [PATCH 056/375] Implement permissions in AsyncUploadVoter.php

---
 .../Security/Authorization/AsyncUploadVoter.php            | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index 1d7ad759a..d458bae08 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -36,6 +36,13 @@ final class AsyncUploadVoter extends Voter
             return false;
         }
 
+        //TODO get the StoredObject from the SignedUrl
+/*        match($subject->method) {
+            'GET' => $this->security->isGranted('SEE', $storedObject),
+            'PUT' => $this->security->isGranted('EDIT', $storedObject),
+            'POST' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
+        };*/
+
         return $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN');
     }
 }

From a309cc077480c1b2889f630098925c9b90476d73 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 1 Jul 2024 20:47:15 +0200
Subject: [PATCH 057/375] Refactor workflow classes and forms

- the workflow controller add a context to each transition;
- the state of the entity workflow is applyied using a dedicated marking store
- the method EntityWorkflow::step use the context to associate the new step with the future destination user, cc users and email. This makes the step consistent at every step.
- this allow to remove some logic which was processed in eventSubscribers,
- as counterpart, each workflow must specify a dedicated marking_store:

```yaml
framework:
    workflows:
        vendee_internal:
            # ...
            marking_store:
                service: Chill\MainBundle\Workflow\EntityWorkflowMarkingStore
```
---
 ...ompanyingCourseDocumentWorkflowHandler.php |   5 -
 .../Controller/WorkflowController.php         |  13 +-
 .../Entity/Workflow/EntityWorkflow.php        |  45 +--
 .../ChillMainBundle/Form/WorkflowStepType.php | 266 ++++++++----------
 .../views/Workflow/_decision.html.twig        |  14 +-
 .../Entity/Workflow/EntityWorkflowTest.php    |  17 +-
 .../EntityWorkflowMarkingStoreTest.php        |  61 ++++
 .../EntityWorkflowHandlerInterface.php        |   2 -
 .../Workflow/EntityWorkflowMarkingStore.php   |  49 ++++
 ...ntityWorkflowTransitionEventSubscriber.php |  35 +--
 .../NotificationOnTransition.php              |  13 +-
 .../SendAccessKeyEventSubscriber.php          |  10 +-
 .../Workflow/WorkflowTransitionContextDTO.php |  74 +++++
 ...dWorkEvaluationDocumentWorkflowHandler.php |   5 -
 ...ingPeriodWorkEvaluationWorkflowHandler.php |   5 -
 .../AccompanyingPeriodWorkWorkflowHandler.php |   5 -
 16 files changed, 362 insertions(+), 257 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php

diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index 9d1b619f9..55b823dcd 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -121,9 +121,4 @@ class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandler
     {
         return AccompanyingCourseDocument::class === $entityWorkflow->getRelatedEntityClass();
     }
-
-    public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool
-    {
-        return false;
-    }
 }
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index d75e42012..3a8626f26 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -22,6 +22,7 @@ use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
 use Chill\MainBundle\Security\ChillSecurity;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\Form\Extension\Core\Type\FormType;
@@ -279,7 +280,7 @@ class WorkflowController extends AbstractController
 
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
-
+            $stepDTO = new WorkflowTransitionContextDTO($entityWorkflow);
             $usersInvolved = $entityWorkflow->getUsersInvolved();
             $currentUserFound = array_search($this->security->getUser(), $usersInvolved, true);
 
@@ -289,9 +290,8 @@ class WorkflowController extends AbstractController
 
             $transitionForm = $this->createForm(
                 WorkflowStepType::class,
-                $entityWorkflow->getCurrentStep(),
+                $stepDTO,
                 [
-                    'transition' => true,
                     'entity_workflow' => $entityWorkflow,
                     'suggested_users' => $usersInvolved,
                 ]
@@ -310,12 +310,7 @@ class WorkflowController extends AbstractController
                     throw $this->createAccessDeniedException(sprintf("not allowed to apply transition {$transition}: %s", implode(', ', $msgs)));
                 }
 
-                // TODO symfony 5: add those "future" on context ($workflow->apply($entityWorkflow, $transition, $context)
-                $entityWorkflow->futureCcUsers = $transitionForm['future_cc_users']->getData() ?? [];
-                $entityWorkflow->futureDestUsers = $transitionForm['future_dest_users']->getData() ?? [];
-                $entityWorkflow->futureDestEmails = $transitionForm['future_dest_emails']->getData() ?? [];
-
-                $workflow->apply($entityWorkflow, $transition);
+                $workflow->apply($entityWorkflow, $transition, ['context' => $stepDTO]);
 
                 $this->entityManager->flush();
 
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 6df054b61..9c314115e 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -17,9 +17,9 @@ use Chill\MainBundle\Doctrine\Model\TrackUpdateInterface;
 use Chill\MainBundle\Doctrine\Model\TrackUpdateTrait;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Workflow\Validator\EntityWorkflowCreation;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
-use Doctrine\Common\Collections\Order;
 use Doctrine\ORM\Mapping as ORM;
 use Symfony\Component\Serializer\Annotation as Serializer;
 use Symfony\Component\Validator\Constraints as Assert;
@@ -34,35 +34,6 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
 
     use TrackUpdateTrait;
 
-    /**
-     * a list of future cc users for the next steps.
-     *
-     * @var array|User[]
-     */
-    public array $futureCcUsers = [];
-
-    /**
-     * a list of future dest emails for the next steps.
-     *
-     * This is in used in order to let controller inform who will be the future emails which will validate
-     * the next step. This is necessary to perform some computation about the next emails, before they are
-     * associated to the entity EntityWorkflowStep.
-     *
-     * @var array|string[]
-     */
-    public array $futureDestEmails = [];
-
-    /**
-     * a list of future dest users for the next steps.
-     *
-     * This is in used in order to let controller inform who will be the future users which will validate
-     * the next step. This is necessary to perform some computation about the next users, before they are
-     * associated to the entity EntityWorkflowStep.
-     *
-     * @var array|User[]
-     */
-    public array $futureDestUsers = [];
-
     /**
      * @var Collection<EntityWorkflowComment>
      */
@@ -442,11 +413,23 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
      *
      * @return $this
      */
-    public function setStep(string $step): self
+    public function setStep(string $step, WorkflowTransitionContextDTO $transitionContextDTO): self
     {
         $newStep = new EntityWorkflowStep();
         $newStep->setCurrentStep($step);
 
+        foreach ($transitionContextDTO->futureCcUsers as $user) {
+            $newStep->addCcUser($user);
+        }
+
+        foreach ($transitionContextDTO->futureDestUsers as $user) {
+            $newStep->addDestUser($user);
+        }
+
+        foreach ($transitionContextDTO->futureDestEmails as $email) {
+            $newStep->addDestEmail($email);
+        }
+
         // copy the freeze
         if ($this->isFreeze()) {
             $newStep->setFreezeAfter(true);
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 3a3f1b8d3..284781d54 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -12,14 +12,12 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Form;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Form\Type\ChillCollectionType;
 use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
-use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Symfony\Component\Form\AbstractType;
-use Symfony\Component\Form\Extension\Core\Type\CheckboxType;
 use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
 use Symfony\Component\Form\Extension\Core\Type\EmailType;
 use Symfony\Component\Form\FormBuilderInterface;
@@ -34,169 +32,151 @@ use Symfony\Component\Workflow\Transition;
 
 class WorkflowStepType extends AbstractType
 {
-    public function __construct(private readonly EntityWorkflowManager $entityWorkflowManager, private readonly Registry $registry, private readonly TranslatableStringHelperInterface $translatableStringHelper) {}
+    public function __construct(
+        private readonly Registry $registry,
+        private readonly TranslatableStringHelperInterface $translatableStringHelper
+    ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
     {
         /** @var EntityWorkflow $entityWorkflow */
         $entityWorkflow = $options['entity_workflow'];
-        $handler = $this->entityWorkflowManager->getHandler($entityWorkflow);
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $place = $workflow->getMarking($entityWorkflow);
         $placeMetadata = $workflow->getMetadataStore()->getPlaceMetadata(array_keys($place->getPlaces())[0]);
 
-        if (true === $options['transition']) {
-            if (null === $options['entity_workflow']) {
-                throw new \LogicException('if transition is true, entity_workflow should be defined');
-            }
+        if (null === $options['entity_workflow']) {
+            throw new \LogicException('if transition is true, entity_workflow should be defined');
+        }
 
-            $transitions = $this->registry
-                ->get($options['entity_workflow'], $entityWorkflow->getWorkflowName())
-                ->getEnabledTransitions($entityWorkflow);
+        $transitions = $this->registry
+            ->get($options['entity_workflow'], $entityWorkflow->getWorkflowName())
+            ->getEnabledTransitions($entityWorkflow);
 
-            $choices = array_combine(
-                array_map(
-                    static fn (Transition $transition) => $transition->getName(),
-                    $transitions
-                ),
+        $choices = array_combine(
+            array_map(
+                static fn (Transition $transition) => $transition->getName(),
                 $transitions
-            );
+            ),
+            $transitions
+        );
 
-            if (\array_key_exists('validationFilterInputLabels', $placeMetadata)) {
-                $inputLabels = $placeMetadata['validationFilterInputLabels'];
+        if (\array_key_exists('validationFilterInputLabels', $placeMetadata)) {
+            $inputLabels = $placeMetadata['validationFilterInputLabels'];
 
-                $builder->add('transitionFilter', ChoiceType::class, [
-                    'multiple' => false,
-                    'label' => 'workflow.My decision',
-                    'choices' => [
-                        'forward' => 'forward',
-                        'backward' => 'backward',
-                        'neutral' => 'neutral',
-                    ],
-                    'choice_label' => fn (string $key) => $this->translatableStringHelper->localize($inputLabels[$key]),
-                    'choice_attr' => static fn (string $key) => [
-                        $key => $key,
-                    ],
-                    'mapped' => false,
-                    'expanded' => true,
-                    'data' => 'forward',
-                ]);
-            }
-
-            $builder
-                ->add('transition', ChoiceType::class, [
-                    'label' => 'workflow.Next step',
-                    'mapped' => false,
-                    'multiple' => false,
-                    'expanded' => true,
-                    'choices' => $choices,
-                    'constraints' => [new NotNull()],
-                    'choice_label' => function (Transition $transition) use ($workflow) {
-                        $meta = $workflow->getMetadataStore()->getTransitionMetadata($transition);
-
-                        if (\array_key_exists('label', $meta)) {
-                            return $this->translatableStringHelper->localize($meta['label']);
-                        }
-
-                        return $transition->getName();
-                    },
-                    'choice_attr' => static function (Transition $transition) use ($workflow) {
-                        $toFinal = true;
-                        $isForward = 'neutral';
-
-                        $metadata = $workflow->getMetadataStore()->getTransitionMetadata($transition);
-
-                        if (\array_key_exists('isForward', $metadata)) {
-                            if ($metadata['isForward']) {
-                                $isForward = 'forward';
-                            } else {
-                                $isForward = 'backward';
-                            }
-                        }
-
-                        foreach ($transition->getTos() as $to) {
-                            $meta = $workflow->getMetadataStore()->getPlaceMetadata($to);
-
-                            if (
-                                !\array_key_exists('isFinal', $meta) || false === $meta['isFinal']
-                            ) {
-                                $toFinal = false;
-                            }
-                        }
-
-                        return [
-                            'data-is-transition' => 'data-is-transition',
-                            'data-to-final' => $toFinal ? '1' : '0',
-                            'data-is-forward' => $isForward,
-                        ];
-                    },
-                ])
-                ->add('future_dest_users', PickUserDynamicType::class, [
-                    'label' => 'workflow.dest for next steps',
-                    'multiple' => true,
-                    'mapped' => false,
-                    'suggested' => $options['suggested_users'],
-                ])
-                ->add('future_cc_users', PickUserDynamicType::class, [
-                    'label' => 'workflow.cc for next steps',
-                    'multiple' => true,
-                    'mapped' => false,
-                    'required' => false,
-                    'suggested' => $options['suggested_users'],
-                ])
-                ->add('future_dest_emails', ChillCollectionType::class, [
-                    'label' => 'workflow.dest by email',
-                    'help' => 'workflow.dest by email help',
-                    'mapped' => false,
-                    'allow_add' => true,
-                    'entry_type' => EmailType::class,
-                    'button_add_label' => 'workflow.Add an email',
-                    'button_remove_label' => 'workflow.Remove an email',
-                    'empty_collection_explain' => 'workflow.Any email',
-                    'entry_options' => [
-                        'constraints' => [
-                            new NotNull(), new NotBlank(), new Email(),
-                        ],
-                        'label' => 'Email',
-                    ],
-                ]);
+            $builder->add('transitionFilter', ChoiceType::class, [
+                'multiple' => false,
+                'label' => 'workflow.My decision',
+                'choices' => [
+                    'forward' => 'forward',
+                    'backward' => 'backward',
+                    'neutral' => 'neutral',
+                ],
+                'choice_label' => fn (string $key) => $this->translatableStringHelper->localize($inputLabels[$key]),
+                'choice_attr' => static fn (string $key) => [
+                    $key => $key,
+                ],
+                'mapped' => false,
+                'expanded' => true,
+                'data' => 'forward',
+            ]);
         }
 
-        if (
-            $handler->supportsFreeze($entityWorkflow)
-            && !$entityWorkflow->isFreeze()
-        ) {
-            $builder
-                ->add('freezeAfter', CheckboxType::class, [
-                    'required' => false,
-                    'label' => 'workflow.Freeze',
-                    'help' => 'workflow.The associated element will be freezed',
-                ]);
-        }
+        $builder
+            ->add('transition', ChoiceType::class, [
+                'label' => 'workflow.Next step',
+                'mapped' => false,
+                'multiple' => false,
+                'expanded' => true,
+                'choices' => $choices,
+                'constraints' => [new NotNull()],
+                'choice_label' => function (Transition $transition) use ($workflow) {
+                    $meta = $workflow->getMetadataStore()->getTransitionMetadata($transition);
+
+                    if (\array_key_exists('label', $meta)) {
+                        return $this->translatableStringHelper->localize($meta['label']);
+                    }
+
+                    return $transition->getName();
+                },
+                'choice_attr' => static function (Transition $transition) use ($workflow) {
+                    $toFinal = true;
+                    $isForward = 'neutral';
+
+                    $metadata = $workflow->getMetadataStore()->getTransitionMetadata($transition);
+
+                    if (\array_key_exists('isForward', $metadata)) {
+                        if ($metadata['isForward']) {
+                            $isForward = 'forward';
+                        } else {
+                            $isForward = 'backward';
+                        }
+                    }
+
+                    foreach ($transition->getTos() as $to) {
+                        $meta = $workflow->getMetadataStore()->getPlaceMetadata($to);
+
+                        if (
+                            !\array_key_exists('isFinal', $meta) || false === $meta['isFinal']
+                        ) {
+                            $toFinal = false;
+                        }
+                    }
+
+                    return [
+                        'data-is-transition' => 'data-is-transition',
+                        'data-to-final' => $toFinal ? '1' : '0',
+                        'data-is-forward' => $isForward,
+                    ];
+                },
+            ])
+            ->add('futureDestUsers', PickUserDynamicType::class, [
+                'label' => 'workflow.dest for next steps',
+                'multiple' => true,
+                'suggested' => $options['suggested_users'],
+            ])
+            ->add('futureCcUsers', PickUserDynamicType::class, [
+                'label' => 'workflow.cc for next steps',
+                'multiple' => true,
+                'required' => false,
+                'suggested' => $options['suggested_users'],
+            ])
+            ->add('futureDestEmails', ChillCollectionType::class, [
+                'label' => 'workflow.dest by email',
+                'help' => 'workflow.dest by email help',
+                'allow_add' => true,
+                'entry_type' => EmailType::class,
+                'button_add_label' => 'workflow.Add an email',
+                'button_remove_label' => 'workflow.Remove an email',
+                'empty_collection_explain' => 'workflow.Any email',
+                'entry_options' => [
+                    'constraints' => [
+                        new NotNull(), new NotBlank(), new Email(),
+                    ],
+                    'label' => 'Email',
+                ],
+            ]);
 
         $builder
             ->add('comment', ChillTextareaType::class, [
                 'required' => false,
                 'label' => 'Comment',
+                'empty_data' => '',
             ]);
     }
 
     public function configureOptions(OptionsResolver $resolver)
     {
         $resolver
-            ->setDefined('class')
-            ->setRequired('transition')
-            ->setAllowedTypes('transition', 'bool')
+            ->setDefault('data_class', WorkflowTransitionContextDTO::class)
             ->setRequired('entity_workflow')
             ->setAllowedTypes('entity_workflow', EntityWorkflow::class)
             ->setDefault('suggested_users', [])
             ->setDefault('constraints', [
                 new Callback(
-                    function ($step, ExecutionContextInterface $context, $payload) {
-                        /** @var EntityWorkflowStep $step */
-                        $form = $context->getObject();
-                        $workflow = $this->registry->get($step->getEntityWorkflow(), $step->getEntityWorkflow()->getWorkflowName());
-                        $transition = $form['transition']->getData();
+                    function (WorkflowTransitionContextDTO $step, ExecutionContextInterface $context, $payload) {
+                        $workflow = $this->registry->get($step->entityWorkflow, $step->entityWorkflow->getWorkflowName());
+                        $transition = $step->transition;
                         $toFinal = true;
 
                         if (null === $transition) {
@@ -212,8 +192,8 @@ class WorkflowStepType extends AbstractType
                                     $toFinal = false;
                                 }
                             }
-                            $destUsers = $form['future_dest_users']->getData();
-                            $destEmails = $form['future_dest_emails']->getData();
+                            $destUsers = $step->futureDestUsers;
+                            $destEmails = $step->futureDestEmails;
 
                             if (!$toFinal && [] === $destUsers && [] === $destEmails) {
                                 $context
@@ -224,20 +204,6 @@ class WorkflowStepType extends AbstractType
                         }
                     }
                 ),
-                new Callback(
-                    function ($step, ExecutionContextInterface $context, $payload) {
-                        $form = $context->getObject();
-
-                        foreach ($form->get('future_dest_users')->getData() as $u) {
-                            if (in_array($u, $form->get('future_cc_users')->getData(), true)) {
-                                $context
-                                    ->buildViolation('workflow.The user in cc cannot be a dest user in the same workflow step')
-                                    ->atPath('ccUsers')
-                                    ->addViolation();
-                            }
-                        }
-                    }
-                ),
             ]);
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 0056c503d..35f587e38 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -58,17 +58,15 @@
         {{ form_row(transition_form.transition) }}
     </div>
 
-    {% if transition_form.freezeAfter is defined %}
-        {{ form_row(transition_form.freezeAfter) }}
-    {% endif %}
-
     <div id="futureDests">
-        {{ form_row(transition_form.future_dest_users) }}
+        {{ form_row(transition_form.futureDestUsers) }}
+        {{ form_errors(transition_form.futureDestUsers) }}
 
-        {{ form_row(transition_form.future_cc_users) }}
+        {{ form_row(transition_form.futureCcUsers) }}
+        {{ form_errors(transition_form.futureCcUsers) }}
 
-        {{ form_row(transition_form.future_dest_emails) }}
-        {{ form_errors(transition_form.future_dest_users) }}
+        {{ form_row(transition_form.futureDestEmails) }}
+        {{ form_errors(transition_form.futureDestEmails) }}
     </div>
 
     <p>{{ form_label(transition_form.comment) }}</p>
diff --git a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
index f515490b8..ec5fa6ae2 100644
--- a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Tests\Entity\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use PHPUnit\Framework\TestCase;
 
 /**
@@ -25,7 +26,7 @@ final class EntityWorkflowTest extends TestCase
     {
         $entityWorkflow = new EntityWorkflow();
 
-        $entityWorkflow->setStep('final');
+        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow));
         $entityWorkflow->getCurrentStep()->setIsFinal(true);
 
         $this->assertTrue($entityWorkflow->isFinal());
@@ -37,16 +38,16 @@ final class EntityWorkflowTest extends TestCase
 
         $this->assertFalse($entityWorkflow->isFinal());
 
-        $entityWorkflow->setStep('two');
+        $entityWorkflow->setStep('two', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertFalse($entityWorkflow->isFinal());
 
-        $entityWorkflow->setStep('previous_final');
+        $entityWorkflow->setStep('previous_final', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertFalse($entityWorkflow->isFinal());
 
         $entityWorkflow->getCurrentStep()->setIsFinal(true);
-        $entityWorkflow->setStep('final');
+        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertTrue($entityWorkflow->isFinal());
     }
@@ -57,20 +58,20 @@ final class EntityWorkflowTest extends TestCase
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('step_one');
+        $entityWorkflow->setStep('step_one', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('step_three');
+        $entityWorkflow->setStep('step_three', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('freezed');
+        $entityWorkflow->setStep('freezed', new WorkflowTransitionContextDTO($entityWorkflow));
         $entityWorkflow->getCurrentStep()->setFreezeAfter(true);
 
         $this->assertTrue($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('after_freeze');
+        $entityWorkflow->setStep('after_freeze', new WorkflowTransitionContextDTO($entityWorkflow));
 
         $this->assertTrue($entityWorkflow->isFreeze());
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
new file mode 100644
index 000000000..a32cefb09
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
@@ -0,0 +1,61 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Workflow\Marking;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowMarkingStoreTest extends TestCase
+{
+    public function testGetMarking(): void
+    {
+        $markingStore = $this->buildMarkingStore();
+        $workflow = new EntityWorkflow();
+
+        $marking = $markingStore->getMarking($workflow);
+
+        self::assertEquals(['initial' => 1], $marking->getPlaces());
+    }
+
+    public function testSetMarking(): void
+    {
+        $markingStore = $this->buildMarkingStore();
+        $workflow = new EntityWorkflow();
+
+        $dto = new WorkflowTransitionContextDTO($workflow);
+        $dto->futureCcUsers[] = $user1 = new User();
+        $dto->futureDestUsers[] = $user2 = new User();
+        $dto->futureDestEmails[] = $email = 'test@example.com';
+
+        $markingStore->setMarking($workflow, new Marking(['foo' => 1]), ['context' => $dto]);
+
+        $currentStep = $workflow->getCurrentStep();
+        self::assertEquals('foo', $currentStep->getCurrentStep());
+        self::assertContains($email, $currentStep->getDestEmail());
+        self::assertContains($user1, $currentStep->getCcUser());
+        self::assertContains($user2, $currentStep->getDestUser());
+    }
+
+    private function buildMarkingStore(): EntityWorkflowMarkingStore
+    {
+        return new EntityWorkflowMarkingStore();
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
index 1d185ba0e..e79982e1c 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
@@ -49,6 +49,4 @@ interface EntityWorkflowHandlerInterface
     public function isObjectSupported(object $object): bool;
 
     public function supports(EntityWorkflow $entityWorkflow, array $options = []): bool;
-
-    public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool;
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
new file mode 100644
index 000000000..dca929e86
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
@@ -0,0 +1,49 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Symfony\Component\Workflow\Marking;
+use Symfony\Component\Workflow\MarkingStore\MarkingStoreInterface;
+
+final readonly class EntityWorkflowMarkingStore implements MarkingStoreInterface
+{
+    public function getMarking(object $subject): Marking
+    {
+        if (!$subject instanceof EntityWorkflow) {
+            throw new \UnexpectedValueException('Expected instance of EntityWorkflow');
+        }
+        $step = $subject->getCurrentStep();
+
+        return new Marking([$step->getCurrentStep() => 1]);
+    }
+
+    public function setMarking(object $subject, Marking $marking, array $context = []): void
+    {
+        if (!$subject instanceof EntityWorkflow) {
+            throw new \UnexpectedValueException('Expected instance of EntityWorkflow');
+        }
+
+        $places = $marking->getPlaces();
+        if (1 < count($places)) {
+            throw new \LogicException('Expected maximum one place');
+        }
+        $next = array_keys($places)[0];
+
+        $transitionDTO = $context['context'] ?? null;
+        if (!$transitionDTO instanceof WorkflowTransitionContextDTO) {
+            throw new \UnexpectedValueException(sprintf('Expected instance of %s', WorkflowTransitionContextDTO::class));
+        }
+
+        $subject->setStep($next, $transitionDTO);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
index b1fa80458..ce33ea6d0 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
@@ -21,31 +21,13 @@ use Symfony\Component\Workflow\Event\Event;
 use Symfony\Component\Workflow\Event\GuardEvent;
 use Symfony\Component\Workflow\TransitionBlocker;
 
-class EntityWorkflowTransitionEventSubscriber implements EventSubscriberInterface
+final readonly class EntityWorkflowTransitionEventSubscriber implements EventSubscriberInterface
 {
-    public function __construct(private readonly LoggerInterface $chillLogger, private readonly Security $security, private readonly UserRender $userRender) {}
-
-    public function addDests(Event $event): void
-    {
-        if (!$event->getSubject() instanceof EntityWorkflow) {
-            return;
-        }
-
-        /** @var EntityWorkflow $entityWorkflow */
-        $entityWorkflow = $event->getSubject();
-
-        foreach ($entityWorkflow->futureCcUsers as $user) {
-            $entityWorkflow->getCurrentStep()->addCcUser($user);
-        }
-
-        foreach ($entityWorkflow->futureDestUsers as $user) {
-            $entityWorkflow->getCurrentStep()->addDestUser($user);
-        }
-
-        foreach ($entityWorkflow->futureDestEmails as $email) {
-            $entityWorkflow->getCurrentStep()->addDestEmail($email);
-        }
-    }
+    public function __construct(
+        private LoggerInterface $chillLogger,
+        private Security $security,
+        private UserRender $userRender
+    ) {}
 
     public static function getSubscribedEvents(): array
     {
@@ -53,7 +35,6 @@ class EntityWorkflowTransitionEventSubscriber implements EventSubscriberInterfac
             'workflow.transition' => 'onTransition',
             'workflow.completed' => [
                 ['markAsFinal', 2048],
-                ['addDests', 2048],
             ],
             'workflow.guard' => [
                 ['guardEntityWorkflow', 0],
@@ -99,6 +80,10 @@ class EntityWorkflowTransitionEventSubscriber implements EventSubscriberInterfac
 
     public function markAsFinal(Event $event): void
     {
+        // NOTE: it is not possible to move this method to the marking store, because
+        // there is dependency between the Workflow definition and the MarkingStoreInterface (the workflow
+        // constructor need a MarkingStoreInterface)
+
         if (!$event->getSubject() instanceof EntityWorkflow) {
             return;
         }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
index e290a567e..386b2eff6 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
@@ -23,7 +23,13 @@ use Symfony\Component\Workflow\Registry;
 
 class NotificationOnTransition implements EventSubscriberInterface
 {
-    public function __construct(private readonly EntityManagerInterface $entityManager, private readonly \Twig\Environment $engine, private readonly MetadataExtractor $metadataExtractor, private readonly Security $security, private readonly Registry $registry) {}
+    public function __construct(
+        private readonly EntityManagerInterface $entityManager,
+        private readonly \Twig\Environment $engine,
+        private readonly MetadataExtractor $metadataExtractor,
+        private readonly Security $security,
+        private readonly Registry $registry
+    ) {}
 
     public static function getSubscribedEvents(): array
     {
@@ -85,7 +91,10 @@ class NotificationOnTransition implements EventSubscriberInterface
                 'dest' => $subscriber,
                 'place' => $place,
                 'workflow' => $workflow,
-                'is_dest' => \in_array($subscriber->getId(), array_map(static fn (User $u) => $u->getId(), $entityWorkflow->futureDestUsers), true),
+                'is_dest' => \in_array($subscriber->getId(), array_map(
+                    static fn (User $u) => $u->getId(),
+                    $entityWorkflow->getCurrentStep()->getDestUser()->toArray()
+                ), true),
             ];
 
             $notification = new Notification();
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
index 90a6e19db..1a4b573d5 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
@@ -20,7 +20,13 @@ use Symfony\Component\Workflow\Registry;
 
 class SendAccessKeyEventSubscriber
 {
-    public function __construct(private readonly \Twig\Environment $engine, private readonly MetadataExtractor $metadataExtractor, private readonly Registry $registry, private readonly EntityWorkflowManager $entityWorkflowManager, private readonly MailerInterface $mailer) {}
+    public function __construct(
+        private readonly \Twig\Environment $engine,
+        private readonly MetadataExtractor $metadataExtractor,
+        private readonly Registry $registry,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly MailerInterface $mailer
+    ) {}
 
     public function postPersist(EntityWorkflowStep $step): void
     {
@@ -32,7 +38,7 @@ class SendAccessKeyEventSubscriber
         );
         $handler = $this->entityWorkflowManager->getHandler($entityWorkflow);
 
-        foreach ($entityWorkflow->futureDestEmails as $emailAddress) {
+        foreach ($step->getDestEmail() as $emailAddress) {
             $context = [
                 'entity_workflow' => $entityWorkflow,
                 'dest' => $emailAddress,
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
new file mode 100644
index 000000000..2a8253523
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -0,0 +1,74 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Symfony\Component\Validator\Constraints as Assert;
+use Symfony\Component\Validator\Context\ExecutionContextInterface;
+use Symfony\Component\Workflow\Transition;
+
+/**
+ * Context for a transition on an workflow entity.
+ */
+class WorkflowTransitionContextDTO
+{
+    /**
+     * a list of future dest users for the next steps.
+     *
+     * This is in used in order to let controller inform who will be the future users which will validate
+     * the next step. This is necessary to perform some computation about the next users, before they are
+     * associated to the entity EntityWorkflowStep.
+     *
+     * @var array|User[]
+     */
+    public array $futureDestUsers = [];
+
+    /**
+     * a list of future cc users for the next steps.
+     *
+     * @var array|User[]
+     */
+    public array $futureCcUsers = [];
+
+    /**
+     * a list of future dest emails for the next steps.
+     *
+     * This is in used in order to let controller inform who will be the future emails which will validate
+     * the next step. This is necessary to perform some computation about the next emails, before they are
+     * associated to the entity EntityWorkflowStep.
+     *
+     * @var array|string[]
+     */
+    public array $futureDestEmails = [];
+
+    public ?Transition $transition = null;
+
+    public string $comment = '';
+
+    public function __construct(
+        public EntityWorkflow $entityWorkflow
+    ) {}
+
+    #[Assert\Callback()]
+    public function validateCCUserIsNotInDest(ExecutionContextInterface $context, $payload): void
+    {
+        foreach ($this->futureDestUsers as $u) {
+            if (in_array($u, $this->futureCcUsers, true)) {
+                $context
+                    ->buildViolation('workflow.The user in cc cannot be a dest user in the same workflow step')
+                    ->atPath('ccUsers')
+                    ->addViolation();
+            }
+        }
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 0fc13224e..2912d1c01 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -123,9 +123,4 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
     {
         return AccompanyingPeriodWorkEvaluationDocument::class === $entityWorkflow->getRelatedEntityClass();
     }
-
-    public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool
-    {
-        return false;
-    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index 63b34d1dc..a041b3c37 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -109,9 +109,4 @@ class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowH
     {
         return AccompanyingPeriodWorkEvaluation::class === $entityWorkflow->getRelatedEntityClass();
     }
-
-    public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool
-    {
-        return false;
-    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 5c74e5b17..ce146a887 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -116,9 +116,4 @@ class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInte
     {
         return AccompanyingPeriodWork::class === $entityWorkflow->getRelatedEntityClass();
     }
-
-    public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool
-    {
-        return false;
-    }
 }

From 064dfc5a5655b619e5e0472644fb929769674a8c Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 12:48:18 +0200
Subject: [PATCH 058/375] Fix repositories to fetch entity linked to stored
 object

getSingleResult() replaced by getOneOrNullResult() to\ avoid error being thrown.
Fix naming of properties.
---
 .../Repository/ActivityRepository.php                 | 11 +++--------
 .../AccompanyingCourseDocumentRepository.php          |  4 ++--
 .../Repository/PersonDocumentRepository.php           |  4 ++--
 .../ChillEventBundle/Repository/EventRepository.php   |  9 ++-------
 ...mpanyingPeriodWorkEvaluationDocumentRepository.php |  2 --
 .../AccompanyingPeriodWorkRepository.php              |  4 ++--
 6 files changed, 11 insertions(+), 23 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index 47ecb66dc..4942eef16 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -102,20 +102,15 @@ class ActivityRepository extends ServiceEntityRepository implements AssociatedEn
         return $qb->getQuery()->getResult();
     }
 
-    /**
-     * @throws NonUniqueResultException
-     * @throws NoResultException
-     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?Activity
     {
         $qb = $this->createQueryBuilder('a');
         $query = $qb
-            ->join('a.documents', 'ad')
-            ->join('ad.storedObject', 'so')
-            ->where('so.id = :storedObjectId')
+            ->leftJoin('a.documents', 'ad')
+            ->where('ad.id = :storedObjectId')
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getSingleResult();
+        return $query->getOneOrNullResult();
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 246c7f2d9..744afd424 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -49,11 +49,11 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository, Associat
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->repository->createQueryBuilder('d');
-        $query = $qb->where('d.storedObject = :storedObject')
+        $query = $qb->where('d.object = :storedObject')
             ->setParameter('storedObject', $storedObject)
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getOneOrNullResult();
     }
 
     public function find($id): ?AccompanyingCourseDocument
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
index 57a964867..d0ef4c9d9 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
@@ -58,10 +58,10 @@ readonly class PersonDocumentRepository implements ObjectRepository, AssociatedE
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->repository->createQueryBuilder('d');
-        $query = $qb->where('d.storedObject = :storedObject')
+        $query = $qb->where('d.object = :storedObject')
             ->setParameter('storedObject', $storedObject)
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getOneOrNullResult();
     }
 }
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index b720866f2..03ee366ac 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -38,21 +38,16 @@ class EventRepository implements ObjectRepository, AssociatedEntityToStoredObjec
         return $this->repository->createQueryBuilder($alias, $indexBy);
     }
 
-    /**
-     * @throws NonUniqueResultException
-     * @throws NoResultException
-     */
     public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?object
     {
         $qb = $this->createQueryBuilder('e');
         $query = $qb
             ->join('e.documents', 'ed')
-            ->join('ed.storedObject', 'so')
-            ->where('so.id = :storedObjectId')
+            ->where('ed.id = :storedObjectId')
             ->setParameter('storedObjectId', $storedObject->getId())
             ->getQuery();
 
-        return $query->getSingleResult();
+        return $query->getOneOrNullResult();
     }
 
     public function find($id)
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 95e0075e2..59bb3f915 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -11,8 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
-use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
index 43ecd5337..324c3c176 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
@@ -258,12 +258,12 @@ final readonly class AccompanyingPeriodWorkRepository implements ObjectRepositor
     {
         $qb = $this->repository->createQueryBuilder('acpw');
         $query = $qb
-            ->join('acpw.evaluations', 'acpwe')
+            ->join('acpw.accompanyingPeriodWorkEvaluations', 'acpwe')
             ->join('acpwe.documents', 'acpwed')
             ->where('acpwed.storedObject = :storedObject')
             ->setParameter('storedObject', $storedObject)
             ->getQuery();
 
-        return $query->getResult();
+        return $query->getOneOrNullResult();
     }
 }

From 03800029c90c030b38e5e7c6c1b87ca7c7c295d1 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 12:49:29 +0200
Subject: [PATCH 059/375] Fix the import of StoredObjectVoterInterface

---
 .../DependencyInjection/ChillDocStoreExtension.php              | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index 9f277e716..b156af1ea 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -14,7 +14,7 @@ namespace Chill\DocStoreBundle\DependencyInjection;
 use Chill\DocStoreBundle\Controller\StoredObjectApiController;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
-use ChillDocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Symfony\Component\Config\FileLocator;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Extension\PrependExtensionInterface;

From c19c597ba06e6874eb681e94c7960a8bbb09e686 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 12:50:44 +0200
Subject: [PATCH 060/375] Fix checking of permissions within
 document_button_group

---
 .../Resources/views/List/list_item.html.twig                  | 4 ++--
 .../Security/Authorization/StoredObjectVoter.php              | 2 ++
 .../Templating/WopiEditTwigExtensionRuntime.php               | 4 ++--
 3 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
index 58504b095..2a3592d73 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
@@ -71,7 +71,7 @@
                 </li>
                 {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_SEE_DETAILS', document) %}
                     <li>
-                        {{ document.object|chill_document_button_group(document.title, is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_UPDATE', document)) }}
+                        {{ document.object|chill_document_button_group(document.title) }}
                     </li>
                     <li>
                         <a href="{{ chill_path_add_return_path('accompanying_course_document_show', {'course': accompanyingCourse.id, 'id': document.id}) }}" class="btn btn-show"></a>
@@ -90,7 +90,7 @@
             {% else %}
                 {% if is_granted('CHILL_PERSON_DOCUMENT_SEE_DETAILS', document) %}
                     <li>
-                        {{ document.object|chill_document_button_group(document.title, is_granted('CHILL_PERSON_DOCUMENT_UPDATE', document)) }}
+                        {{ document.object|chill_document_button_group(document.title) }}
                     </li>
                     <li>
                         <a href="{{ path('person_document_show', {'person': person.id, 'id': document.id}) }}" class="btn btn-show"></a>
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 3bb5fa396..57688e05b 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -37,6 +37,7 @@ class StoredObjectVoter extends Voter
     protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         /** @var StoredObject $subject */
+        /*
         if (
             !$token->hasAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)
             || $subject->getUuid()->toString() !== $token->getAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)
@@ -47,6 +48,7 @@ class StoredObjectVoter extends Voter
         if (!$token->hasAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)) {
             return false;
         }
+        */
 
         $attributeAsEnum = StoredObjectRoleEnum::from($attribute);
 
diff --git a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
index be45bd2d4..b6290049c 100644
--- a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
+++ b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
@@ -150,9 +150,9 @@ final readonly class WopiEditTwigExtensionRuntime implements RuntimeExtensionInt
      * @throws \Twig\Error\RuntimeError
      * @throws \Twig\Error\SyntaxError
      */
-    public function renderButtonGroup(Environment $environment, StoredObject $document, ?string $title = null, bool $canEdit = true, array $options = []): string
+    public function renderButtonGroup(Environment $environment, StoredObject $document, ?string $title = null, bool $showEditButtons = true, array $options = []): string
     {
-        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT, $document);
+        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $document) && $showEditButtons;
 
         $accessToken = $this->davTokenProvider->createToken(
             $document,

From a9f4f8c973cc9d4ef797c7108955e03eefb0a13d Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 14:17:05 +0200
Subject: [PATCH 061/375] Resolve phpstan erorrs

---
 .../Service/WorkflowDocumentService.php                  | 2 +-
 .../AccompanyingCourseDocumentWorkflowHandler.php        | 9 ++++-----
 .../Form/ChoiceLoader/EventChoiceLoader.php              | 6 ++----
 3 files changed, 7 insertions(+), 10 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index 17591b2d0..a279912a9 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -23,7 +23,7 @@ class WorkflowDocumentService
         $currentUser = $this->security->getUser();
 
 
-        if (null !== $workflow) {
+        if (null != $workflow) {
             if ($workflow->isFinal()) {
                 return false;
             }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index e3f201914..d1a384ef3 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -22,14 +22,13 @@ use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
+readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
 {
 
     public function __construct(
-        EntityManagerInterface $em,
-        private readonly TranslatorInterface $translator,
-        private readonly EntityWorkflowRepository $workflowRepository,
-        private readonly AccompanyingCourseDocumentRepository $repository
+        private TranslatorInterface                  $translator,
+        private EntityWorkflowRepository             $workflowRepository,
+        private AccompanyingCourseDocumentRepository $repository
     ) {
     }
 
diff --git a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
index 9aa001170..19829a369 100644
--- a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
+++ b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\EventBundle\Form\ChoiceLoader;
 
 use Chill\EventBundle\Entity\Event;
+use Chill\EventBundle\Repository\EventRepository;
 use Doctrine\ORM\EntityRepository;
 use Symfony\Component\Form\ChoiceList\ChoiceListInterface;
 use Symfony\Component\Form\ChoiceList\Loader\ChoiceLoaderInterface;
@@ -26,9 +27,6 @@ class EventChoiceLoader implements ChoiceLoaderInterface
      */
     protected $centers = [];
 
-    /**
-     * @var EntityRepository
-     */
     protected $eventRepository;
 
     /**
@@ -40,7 +38,7 @@ class EventChoiceLoader implements ChoiceLoaderInterface
      * EventChoiceLoader constructor.
      */
     public function __construct(
-        EntityRepository $eventRepository,
+        EventRepository $eventRepository,
         ?array $centers = null
     ) {
         $this->eventRepository = $eventRepository;

From 3262a1dd02df05c5f5f5763599f5cfd83dbdc831 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 15:35:41 +0200
Subject: [PATCH 062/375] Implement StoredObject permissions in
 AsyncUploadVoter.php

---
 .../TempUrlOpenstackGenerator.php                |  2 +-
 .../AsyncUpload/SignedUrl.php                    |  1 +
 .../Security/Authorization/AsyncUploadVoter.php  | 16 +++++++++-------
 .../TempUrlOpenstackGeneratorTest.php            |  3 ++-
 .../Templating/AsyncUploadExtensionTest.php      |  2 +-
 .../Controller/AsyncUploadControllerTest.php     |  3 ++-
 .../Normalizer/SignedUrlNormalizerTest.php       |  3 ++-
 .../Tests/Service/StoredObjectManagerTest.php    |  3 ++-
 .../Constraints/AsyncFileExistsValidatorTest.php |  2 +-
 9 files changed, 21 insertions(+), 14 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
index e410529b4..06f660fbe 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
@@ -127,7 +127,7 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
         ];
         $url = $url.'?'.\http_build_query($args);
 
-        $signature = new SignedUrl(strtoupper($method), $url, $expires);
+        $signature = new SignedUrl(strtoupper($method), $url, $expires, $object_name);
 
         $this->event_dispatcher->dispatch(
             new TempUrlGenerateEvent($signature)
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
index aba289652..1047e1344 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
@@ -21,6 +21,7 @@ readonly class SignedUrl
         #[Serializer\Groups(['read'])]
         public string $url,
         public \DateTimeImmutable $expires,
+        public string $object_name,
     ) {}
 
     #[Serializer\Groups(['read'])]
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index d458bae08..c92dffcd5 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\StoredObjectRepository;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 use Symfony\Component\Security\Core\Security;
@@ -22,6 +24,7 @@ final class AsyncUploadVoter extends Voter
 
     public function __construct(
         private readonly Security $security,
+        private readonly StoredObjectRepository $storedObjectRepository
     ) {}
 
     protected function supports($attribute, $subject): bool
@@ -36,13 +39,12 @@ final class AsyncUploadVoter extends Voter
             return false;
         }
 
-        //TODO get the StoredObject from the SignedUrl
-/*        match($subject->method) {
-            'GET' => $this->security->isGranted('SEE', $storedObject),
-            'PUT' => $this->security->isGranted('EDIT', $storedObject),
-            'POST' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
-        };*/
+        $storedObject = $this->storedObjectRepository->findOneBy(['filename' => $subject->object_name]);
 
-        return $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN');
+        return match($subject->method) {
+            'GET' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
+            'PUT' => $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject),
+            default => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
+        };
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
index e6250202f..f9cc49fa6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
@@ -122,7 +122,8 @@ class TempUrlOpenstackGeneratorTest extends TestCase
         $signedUrl = new SignedUrl(
             'GET',
             'https://objectstore.example/v1/my_account/container/object?temp_url_sig=0aeef353a5f6e22d125c76c6ad8c644a59b222ba1b13eaeb56bf3d04e28b081d11dfcb36601ab3aa7b623d79e1ef03017071bbc842fb7b34afec2baff895bf80&temp_url_expires=1702043543',
-            \DateTimeImmutable::createFromFormat('U', '1702043543')
+            \DateTimeImmutable::createFromFormat('U', '1702043543'),
+            $objectName
         );
 
         foreach ($baseUrls as $baseUrl) {
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
index e309c02ec..d39809a12 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
@@ -35,7 +35,7 @@ class AsyncUploadExtensionTest extends KernelTestCase
     {
         $generator = $this->prophesize(TempUrlGeneratorInterface::class);
         $generator->generate(Argument::in(['GET', 'POST']), Argument::type('string'), Argument::any())
-            ->will(fn (array $args): SignedUrl => new SignedUrl($args[0], 'https://object.store.example/container/'.$args[1], new \DateTimeImmutable('1 hours')));
+            ->will(fn (array $args): SignedUrl => new SignedUrl($args[0], 'https://object.store.example/container/'.$args[1], new \DateTimeImmutable('1 hours'), $args[1]));
 
         $urlGenerator = $this->prophesize(UrlGeneratorInterface::class);
         $urlGenerator->generate('async_upload.generate_url', Argument::type('array'))
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
index c378ba989..da223cea6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
@@ -87,7 +87,8 @@ class AsyncUploadControllerTest extends TestCase
                 return new SignedUrl(
                     $method,
                     'https://object.store.example',
-                    new \DateTimeImmutable('1 hour')
+                    new \DateTimeImmutable('1 hour'),
+                    $object_name
                 );
             }
         };
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
index cb5294fff..2029fac74 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
@@ -38,7 +38,8 @@ class SignedUrlNormalizerTest extends KernelTestCase
         $signedUrl = new SignedUrl(
             'GET',
             'https://object.store.example/container/object',
-            \DateTimeImmutable::createFromFormat('U', '1700000')
+            \DateTimeImmutable::createFromFormat('U', '1700000'),
+            'object'
         );
 
         $actual = self::$normalizer->normalize($signedUrl, 'json', [AbstractNormalizer::GROUPS => ['read']]);
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index 531d19592..c5cc8185e 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -202,7 +202,8 @@ final class StoredObjectManagerTest extends TestCase
         $response = new SignedUrl(
             'PUT',
             'https://example.com/'.$storedObject->getFilename(),
-            new \DateTimeImmutable('1 hours')
+            new \DateTimeImmutable('1 hours'),
+            $storedObject->getFilename()
         );
 
         $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
index 6e46ee370..ac0f4a6e7 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
@@ -43,7 +43,7 @@ class AsyncFileExistsValidatorTest extends ConstraintValidatorTestCase
 
         $generator = $this->prophesize(TempUrlGeneratorInterface::class);
         $generator->generate(Argument::in(['GET', 'HEAD']), Argument::type('string'), Argument::any())
-            ->will(fn (array $args): SignedUrl => new SignedUrl($args[0], 'https://object.store.example/container/'.$args[1], new \DateTimeImmutable('1 hours')));
+            ->will(fn (array $args): SignedUrl => new SignedUrl($args[0], 'https://object.store.example/container/'.$args[1], new \DateTimeImmutable('1 hours'), $args[1]));
 
         return new AsyncFileExistsValidator($generator->reveal(), $client);
     }

From 345f379650a6ae7ab813d387d432de118ab88faf Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 15:39:31 +0200
Subject: [PATCH 063/375] Implement StoredObject permissions WOPI
 AuthorizationManager.php

---
 .../src/Service/Wopi/AuthorizationManager.php        | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
index 9ed421461..9b70ea049 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\WopiBundle\Service\Wopi;
 
 use ChampsLibres\WopiLib\Contract\Entity\Document;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\MainBundle\Entity\User;
 use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTTokenManagerInterface;
 use Psr\Http\Message\RequestInterface;
@@ -60,12 +61,17 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanPresent(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        return $this->isTokenValid($accessToken, $document, $request);
+        if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $document)) {
+
+            return $this->isTokenValid($accessToken, $document, $request);
+        }
+
+        return false;
     }
 
     public function userCanRead(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        if ($this->security->isGranted('SEE', $document)) {
+        if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $document)) {
             return $this->isTokenValid($accessToken, $document, $request);
         }
 
@@ -79,7 +85,7 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanWrite(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        if ($this->security->isGranted('EDIT', $document)) {
+        if ($this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $document)) {
             return $this->isTokenValid($accessToken, $document, $request);
         }
 

From 3d7c8596eeb0bd32c92873c6381978462863f5f9 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 2 Jul 2024 15:49:53 +0200
Subject: [PATCH 064/375] Pass StoredObject instead of Document to check
 permission in AuthorizationManager.php

---
 .../src/Service/Wopi/AuthorizationManager.php | 26 ++++++++++++++++---
 1 file changed, 22 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
index 9ed421461..af78eb73c 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\WopiBundle\Service\Wopi;
 
 use ChampsLibres\WopiLib\Contract\Entity\Document;
+use Chill\DocStoreBundle\Repository\StoredObjectRepository;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\MainBundle\Entity\User;
 use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTTokenManagerInterface;
 use Psr\Http\Message\RequestInterface;
@@ -19,13 +21,18 @@ use Symfony\Component\Security\Core\Security;
 
 class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\AuthorizationManagerInterface
 {
-    public function __construct(private readonly JWTTokenManagerInterface $tokenManager, private readonly Security $security) {}
+    public function __construct(private readonly JWTTokenManagerInterface $tokenManager, private readonly Security $security, private readonly StoredObjectRepository $storedObjectRepository) {}
 
     public function isRestrictedWebViewOnly(string $accessToken, Document $document, RequestInterface $request): bool
     {
         return false;
     }
 
+    public function getRelatedStoredObject(Document $document)
+    {
+        return $this->storedObjectRepository->findOneBy(['uuid' => $document->getWopiDocId()]);
+    }
+
     public function isTokenValid(string $accessToken, Document $document, RequestInterface $request): bool
     {
         $metadata = $this->tokenManager->parse($accessToken);
@@ -60,12 +67,21 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanPresent(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        return $this->isTokenValid($accessToken, $document, $request);
+        $storedObject = $this->getRelatedStoredObject($document);
+
+        if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
+
+            return $this->isTokenValid($accessToken, $document, $request);
+        }
+
+        return false;
     }
 
     public function userCanRead(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        if ($this->security->isGranted('SEE', $document)) {
+        $storedObject = $this->getRelatedStoredObject($document);
+
+        if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
             return $this->isTokenValid($accessToken, $document, $request);
         }
 
@@ -79,7 +95,9 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
     public function userCanWrite(string $accessToken, Document $document, RequestInterface $request): bool
     {
-        if ($this->security->isGranted('EDIT', $document)) {
+        $storedObject = $this->getRelatedStoredObject($document);
+
+        if ($this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject)) {
             return $this->isTokenValid($accessToken, $document, $request);
         }
 

From e9a9a3430f86c95f73cd5b4de9f2c77f007b50ae Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:27:16 +0200
Subject: [PATCH 065/375] Complete AbstractStoredObjectVoterTest.php

---
 .../AbstractStoredObjectVoterTest.php         | 25 ++++++++-----------
 1 file changed, 11 insertions(+), 14 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index d5ab471ab..c384e48b9 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -17,10 +17,9 @@ use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
 class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 {
-    private $repository;
-    private $security;
-    private $workflowDocumentService;
-    private $voter;
+    private AssociatedEntityToStoredObjectInterface $repository;
+    private Security $security;
+    private WorkflowDocumentService $workflowDocumentService;
 
     protected function setUp(): void
     {
@@ -54,10 +53,10 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 
     private function setupMockObjects(): array
     {
-        $user = $this->createMock(User::class);
+        $user = new User();
         $token = $this->createMock(TokenInterface::class);
-        $subject = $this->createMock(StoredObject::class);
-        $entity = $this->createMock(AccompanyingCourseDocument::class);
+        $subject = new StoredObject();
+        $entity = new \stdClass();
 
         return [$user, $token, $subject, $entity];
     }
@@ -90,9 +89,7 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
 
         // The voteOnAttribute method should return True when workflow is allowed
-        $attributeSee = StoredObjectRoleEnum::SEE;
-        $attributeEdit = StoredObjectRoleEnum::EDIT;
-        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+        self::assertTrue($voter->voteOnAttribute(StoredObjectRoleEnum::SEE, $subject, $token));
     }
 
     public function testVoteOnAttributeNotAllowed(): void
@@ -101,11 +98,10 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 
         // Setup mocks for voteOnAttribute method where isGranted() returns false
         $this->setupMocksForVoteOnAttribute($user, $token, false, $entity, true);
+        $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
 
         // The voteOnAttribute method should return True when workflow is allowed
-        $attributeSee = StoredObjectRoleEnum::SEE;
-        $attributeEdit = StoredObjectRoleEnum::EDIT;
-        $this->assertTrue($this->voter->voteOnAttribute($attributeSee, $subject, $token));
+        self::assertFalse($voter->voteOnAttribute(StoredObjectRoleEnum::SEE, $subject, $token));
     }
 
     public function testVoteOnAttributeWhenBlockedByWorkflow(): void
@@ -114,10 +110,11 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, false);
+        $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
 
         // Test voteOnAttribute method
         $attribute = StoredObjectRoleEnum::SEE;
-        $result = $this->voter->voteOnAttribute($attribute, $subject, $token);
+        $result = $voter->voteOnAttribute($attribute, $subject, $token);
 
         // Assert that access is denied when workflow is not allowed
         $this->assertFalse($result);

From 719fabc87895554ad6dcd88a69155286efae027d Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:27:54 +0200
Subject: [PATCH 066/375] Check permissions within StoredObjectNormalizer.php

---
 .../Serializer/Normalizer/StoredObjectNormalizer.php          | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index f6eb5a1cb..4a0ba6dab 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -15,6 +15,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
@@ -32,7 +33,8 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
 
     public function __construct(
         private readonly JWTDavTokenProviderInterface $JWTDavTokenProvider,
-        private readonly UrlGeneratorInterface $urlGenerator
+        private readonly UrlGeneratorInterface $urlGenerator,
+        private readonly Security $security
     ) {}
 
     public function normalize($object, ?string $format = null, array $context = [])

From 5d57ec8a3b533e1c07bc060544997784b8047ad4 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:38:13 +0200
Subject: [PATCH 067/375] Complete AbstractStoredObjectVoterTest.php

---
 .../AbstractStoredObjectVoterTest.php         | 81 ++++++++++++-------
 1 file changed, 50 insertions(+), 31 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index c384e48b9..24370c2db 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -1,21 +1,33 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Tests\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\MainBundle\Entity\User;
-use ChillDocStoreBundle\Security\Authorization\StoredObjectVoters\AccompanyingCourseStoredObjectVoter;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Security;
 
-class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AbstractStoredObjectVoterTest extends TestCase
 {
     private AssociatedEntityToStoredObjectInterface $repository;
     private Security $security;
@@ -23,30 +35,42 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
 
     protected function setUp(): void
     {
-        $this->repository = $this->createMock(AccompanyingCourseDocumentRepository::class);
+        $this->repository = $this->createMock(AssociatedEntityToStoredObjectInterface::class);
         $this->security = $this->createMock(Security::class);
         $this->workflowDocumentService = $this->createMock(WorkflowDocumentService::class);
+    }
 
+    private function buildStoredObjectVoter(bool $canBeAssociatedWithWorkflow, AssociatedEntityToStoredObjectInterface $repository, Security $security, ?WorkflowDocumentService $workflowDocumentService = null): AbstractStoredObjectVoter
+    {
         // Anonymous class extending the abstract class
-        $this->voter = new class($this->repository, $this->security, $this->workflowDocumentService) extends AbstractStoredObjectVoter {
+        return new class ($canBeAssociatedWithWorkflow, $repository, $security, $workflowDocumentService) extends AbstractStoredObjectVoter {
+            public function __construct(
+                private bool $canBeAssociatedWithWorkflow,
+                private AssociatedEntityToStoredObjectInterface $repository,
+                Security $security,
+                ?WorkflowDocumentService $workflowDocumentService = null
+            ) {
+                parent::__construct($security, $workflowDocumentService);
+            }
+
             protected function attributeToRole($attribute): string
             {
-                return AccompanyingCourseDocumentVoter::SEE_DETAILS;
+                return 'SOME_ROLE';
             }
 
             protected function getRepository(): AssociatedEntityToStoredObjectInterface
             {
-                // TODO: Implement getRepository() method.
+                return $this->repository;
             }
 
             protected function getClass(): string
             {
-                // TODO: Implement getClass() method.
+                return \stdClass::class;
             }
 
             protected function canBeAssociatedWithWorkflow(): bool
             {
-                // TODO: Implement canBeAssociatedWithWorkflow() method.
+                return $this->canBeAssociatedWithWorkflow;
             }
         };
     }
@@ -61,7 +85,7 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         return [$user, $token, $subject, $entity];
     }
 
-    private function setupMocksForVoteOnAttribute(User $user, TokenInterface $token, bool $isGrantedForAccCourseDocument, AccompanyingCourseDocument $entity, bool $workflowAllowed): void
+    private function setupMocksForVoteOnAttribute(User $user, TokenInterface $token, bool $isGrantedForEntity, object $entity, bool $workflowAllowed): void
     {
         // Set up token to return user
         $token->method('getUser')->willReturn($user);
@@ -69,24 +93,31 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         // Mock the return of an AccompanyingCourseDocument by the repository
         $this->repository->method('findAssociatedEntityToStoredObject')->willReturn($entity);
 
-        // Mock attributeToRole to return appropriate role
-        $this->voter->method('attributeToRole')->willReturn(AccompanyingCourseDocumentVoter::SEE_DETAILS);
-
         // Mock scenario where user is allowed to see_details of the AccompanyingCourseDocument
-        $this->security->method('isGranted')->willReturnMap([
-            [[AccompanyingCourseDocumentVoter::SEE_DETAILS, $entity], $isGrantedForAccCourseDocument],
-        ]);
+        $this->security->method('isGranted')->willReturn($isGrantedForEntity);
 
         // Mock case where user is blocked or not by workflow
         $this->workflowDocumentService->method('notBlockedByWorkflow')->willReturn($workflowAllowed);
     }
 
-    public function testVoteOnAttributeAllowed(): void
+    public function testSupportsOnAttribute(): void
     {
         list($user, $token, $subject, $entity) = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
+        $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
+
+        self::assertTrue($voter->supports(StoredObjectRoleEnum::SEE, $subject));
+    }
+
+    public function testVoteOnAttributeAllowedAndWorkflowAllowed(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
+        $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
 
         // The voteOnAttribute method should return True when workflow is allowed
         self::assertTrue($voter->voteOnAttribute(StoredObjectRoleEnum::SEE, $subject, $token));
@@ -104,7 +135,7 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         self::assertFalse($voter->voteOnAttribute(StoredObjectRoleEnum::SEE, $subject, $token));
     }
 
-    public function testVoteOnAttributeWhenBlockedByWorkflow(): void
+    public function testVoteOnAttributeAllowedWorkflowNotAllowed(): void
     {
         list($user, $token, $subject, $entity) = $this->setupMockObjects();
 
@@ -119,16 +150,4 @@ class AbstractStoredObjectVoterTest extends PHPUnit\Framework\TestCase
         // Assert that access is denied when workflow is not allowed
         $this->assertFalse($result);
     }
-
-    public function testAbstractStoredObjectVoter(): void
-    {
-        $voter = new class extends AbstractStoredObjectVoter {
-            // Implement abstract methods here
-            public function someMethod() {
-                // method implementation
-            }
-        };
-        // Run tests on $voter
-    }
-
 }

From 428494ca1fe46cde4be97ad238b64447b41cc7cd Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:38:41 +0200
Subject: [PATCH 068/375] Implement stored object permissions in serialization

---
 .../Serializer/Normalizer/StoredObjectNormalizer.php      | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index 4a0ba6dab..17597901d 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -57,13 +57,13 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
         // deprecated property
         $datas['creationDate'] = $datas['createdAt'];
 
-        $canDavSee = in_array(self::ADD_DAV_SEE_LINK_CONTEXT, $context['groups'] ?? [], true);
-        $canDavEdit = in_array(self::ADD_DAV_EDIT_LINK_CONTEXT, $context['groups'] ?? [], true);
+        $canSee = $this->security->isGranted(StoredObjectRoleEnum::SEE, $object);
+        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT, $object);
 
-        if ($canDavSee || $canDavEdit) {
+        if ($canSee || $canEdit) {
             $accessToken = $this->JWTDavTokenProvider->createToken(
                 $object,
-                $canDavEdit ? StoredObjectRoleEnum::EDIT : StoredObjectRoleEnum::SEE
+                $canEdit ? StoredObjectRoleEnum::EDIT : StoredObjectRoleEnum::SEE
             );
 
             $datas['_links'] = [

From 21b79c198106aedf3a542d005c58acbda5a7764e Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:39:02 +0200
Subject: [PATCH 069/375] Php cs fixes

---
 .../Repository/ActivityRepository.php         |  2 --
 .../ActivityStoredObjectVoter.php             | 16 +++++++++------
 .../AccompanyingCourseDocumentRepository.php  |  1 -
 ...ssociatedEntityToStoredObjectInterface.php |  9 +++++++++
 .../Authorization/AsyncUploadVoter.php        |  3 +--
 .../Authorization/StoredObjectVoter.php       |  4 +---
 .../StoredObjectVoterInterface.php            |  6 ++----
 .../AbstractStoredObjectVoter.php             | 20 ++++++++++++-------
 ...panyingCourseDocumentStoredObjectVoter.php | 12 +++++++++--
 .../AccompanyingCourseStoredObjectVoter.php   | 11 +++++++++-
 ...gPeriodWorkEvaluationStoredObjectVoter.php | 15 +++++++++-----
 .../ActivityStoredObjectVoter.php             | 15 +++++++++-----
 .../EventStoredObjectVoter.php                | 14 +++++++++----
 .../PersonDocumentStoredObjectVoter.php       | 15 +++++++++-----
 .../PersonStoredObjectVoter.php               | 14 +++++++++----
 .../Service/WorkflowDocumentService.php       | 17 +++++++++-------
 ...ompanyingCourseDocumentWorkflowHandler.php | 12 ++++-------
 .../Form/ChoiceLoader/EventChoiceLoader.php   |  1 -
 .../Repository/EventRepository.php            |  2 --
 .../Authorization/EventStoredObjectVoter.php  | 15 +++++++++-----
 .../Workflow/EntityWorkflowRepository.php     |  1 -
 .../Workflow/EntityWorkflowManager.php        |  2 +-
 ...nyingPeriodWorkEvaluationDocumentVoter.php |  1 -
 ...dWorkEvaluationDocumentWorkflowHandler.php |  1 +
 .../AccompanyingPeriodWorkWorkflowHandler.php |  1 +
 .../src/Service/Wopi/AuthorizationManager.php |  3 ---
 26 files changed, 133 insertions(+), 80 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
index 4942eef16..ff4904f9e 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityRepository.php
@@ -17,8 +17,6 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
-use Doctrine\ORM\NonUniqueResultException;
-use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
 
 /**
diff --git a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
index 01ec68bd9..be3013a08 100644
--- a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
@@ -1,11 +1,18 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\ActivityBundle\Security\Authorization;
 
 use Chill\ActivityBundle\Entity\Activity;
-use Chill\ActivityBundle\Repository\ActivityDocumentACLAwareRepository;
 use Chill\ActivityBundle\Repository\ActivityRepository;
-use Chill\ActivityBundle\Security\Authorization\ActivityVoter;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
@@ -18,7 +25,7 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly ActivityRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -27,9 +34,6 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return Activity::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 744afd424..7033a53c9 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -80,5 +80,4 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository, Associat
     {
         return AccompanyingCourseDocument::class;
     }
-
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
index 5349251c5..81d230e67 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AssociatedEntityToStoredObjectInterface.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Repository;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index c92dffcd5..ccda803e4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
-use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\StoredObjectRepository;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
@@ -41,7 +40,7 @@ final class AsyncUploadVoter extends Voter
 
         $storedObject = $this->storedObjectRepository->findOneBy(['filename' => $subject->object_name]);
 
-        return match($subject->method) {
+        return match ($subject->method) {
             'GET' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
             'PUT' => $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject),
             default => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 57688e05b..c0851144a 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -24,9 +24,7 @@ use Symfony\Component\Security\Core\Security;
  */
 class StoredObjectVoter extends Voter
 {
-
-    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters) {
-    }
+    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters) {}
 
     protected function supports($attribute, $subject): bool
     {
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
index 516722654..97d45eec3 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoterInterface.php
@@ -12,13 +12,11 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 
-interface StoredObjectVoterInterface {
-
+interface StoredObjectVoterInterface
+{
     public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool;
 
     public function voteOnAttribute(StoredObjectRoleEnum $attribute, StoredObject $subject, TokenInterface $token): bool;
-
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
index 659d7d28a..24def7ca9 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
@@ -1,14 +1,21 @@
 <?php
 
-namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+declare(strict_types=1);
 
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\MainBundle\Entity\User;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
@@ -25,16 +32,15 @@ abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
 
     abstract protected function canBeAssociatedWithWorkflow(): bool;
 
-    function __construct(
+    public function __construct(
         private readonly Security $security,
         private readonly ?WorkflowDocumentService $workflowDocumentService = null,
-    )
-    {
-    }
+    ) {}
 
     public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool
     {
         $class = $this->getClass();
+
         return $this->getRepository()->findAssociatedEntityToStoredObject($subject) instanceof $class;
     }
 
@@ -52,7 +58,7 @@ abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
 
         if ($this->canBeAssociatedWithWorkflow()) {
             if (null === $this->workflowDocumentService) {
-                throw new \LogicException("Provide a workflow document service");
+                throw new \LogicException('Provide a workflow document service');
             }
 
             return $this->workflowDocumentService->notBlockedByWorkflow($entity);
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
index 86e7bd9de..2665553e8 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
@@ -7,7 +16,6 @@ use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Symfony\Component\Security\Core\Security;
 
@@ -17,7 +25,7 @@ final class AccompanyingCourseDocumentStoredObjectVoter extends AbstractStoredOb
         private readonly AccompanyingCourseDocumentRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
index a41ea3067..040f4dc32 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
@@ -17,7 +26,7 @@ final class AccompanyingCourseStoredObjectVoter extends AbstractStoredObjectVote
         private readonly AccompanyingCourseDocumentRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
index b85e1635a..7ba7e276e 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
@@ -8,7 +17,6 @@ use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
-
 use Symfony\Component\Security\Core\Security;
 
 class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredObjectVoter
@@ -17,7 +25,7 @@ class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredOb
         private readonly AccompanyingPeriodWorkRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -26,9 +34,6 @@ class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredOb
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return AccompanyingPeriodWork::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
index a36535005..4f897b36c 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
@@ -1,9 +1,17 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\ActivityBundle\Entity\Activity;
-use Chill\ActivityBundle\Repository\ActivityDocumentACLAwareRepository;
 use Chill\ActivityBundle\Repository\ActivityRepository;
 use Chill\ActivityBundle\Security\Authorization\ActivityVoter;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
@@ -18,7 +26,7 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly ActivityRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -27,9 +35,6 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return Activity::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
index 218ce1980..d258b3ae3 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
@@ -17,7 +26,7 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly EventRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -26,9 +35,6 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return Event::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
index a40d08849..5791d724b 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
@@ -7,7 +16,6 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Repository\PersonDocumentRepository;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Symfony\Component\Security\Core\Security;
 
@@ -17,7 +25,7 @@ class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly PersonDocumentRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -26,9 +34,6 @@ class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return PersonDocument::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
index 6c3b0b807..4d8a1220f 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
@@ -17,7 +26,7 @@ class PersonStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly PersonDocumentRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -26,9 +35,6 @@ class PersonStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return PersonDocument::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index a279912a9..78c7b7b7d 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -1,18 +1,23 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\DocStoreBundle\Service;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 
 class WorkflowDocumentService
 {
-
-    public function __construct(private readonly Security $security, private readonly EntityWorkflowManager $entityWorkflowManager)
-    {
-    }
+    public function __construct(private readonly Security $security, private readonly EntityWorkflowManager $entityWorkflowManager) {}
 
     public function notBlockedByWorkflow(object $entity): bool
     {
@@ -22,7 +27,6 @@ class WorkflowDocumentService
         $workflow = $this->entityWorkflowManager->findByRelatedEntity($entity);
         $currentUser = $this->security->getUser();
 
-
         if (null != $workflow) {
             if ($workflow->isFinal()) {
                 return false;
@@ -35,5 +39,4 @@ class WorkflowDocumentService
 
         return true;
     }
-
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index d1a384ef3..74e51b19e 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -18,19 +18,15 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
-use Doctrine\ORM\EntityManagerInterface;
-use Doctrine\ORM\EntityRepository;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-
     public function __construct(
-        private TranslatorInterface                  $translator,
-        private EntityWorkflowRepository             $workflowRepository,
+        private TranslatorInterface $translator,
+        private EntityWorkflowRepository $workflowRepository,
         private AccompanyingCourseDocumentRepository $repository
-    ) {
-    }
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -127,7 +123,7 @@ readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkfl
 
     public function findByRelatedEntity(object $object): ?EntityWorkflow
     {
-        if(!$object instanceof AccompanyingCourseDocument) {
+        if (!$object instanceof AccompanyingCourseDocument) {
             return null;
         }
 
diff --git a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
index 19829a369..3fe305ff7 100644
--- a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
+++ b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
@@ -13,7 +13,6 @@ namespace Chill\EventBundle\Form\ChoiceLoader;
 
 use Chill\EventBundle\Entity\Event;
 use Chill\EventBundle\Repository\EventRepository;
-use Doctrine\ORM\EntityRepository;
 use Symfony\Component\Form\ChoiceList\ChoiceListInterface;
 use Symfony\Component\Form\ChoiceList\Loader\ChoiceLoaderInterface;
 
diff --git a/src/Bundle/ChillEventBundle/Repository/EventRepository.php b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
index 03ee366ac..89723b770 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventRepository.php
@@ -16,8 +16,6 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\EventBundle\Entity\Event;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
-use Doctrine\ORM\NonUniqueResultException;
-use Doctrine\ORM\NoResultException;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
diff --git a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index 9db6177c8..8dda94aad 100644
--- a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\EventBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
@@ -8,7 +17,6 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStore
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\EventBundle\Entity\Event;
 use Chill\EventBundle\Repository\EventRepository;
-use Chill\EventBundle\Security\Authorization\EventVoter;
 use Symfony\Component\Security\Core\Security;
 
 class EventStoredObjectVoter extends AbstractStoredObjectVoter
@@ -17,7 +25,7 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
         private readonly EventRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
-    ){
+    ) {
         parent::__construct($security, $workflowDocumentService);
     }
 
@@ -26,9 +34,6 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
         return $this->repository;
     }
 
-    /**
-     * @inheritDoc
-     */
     protected function getClass(): string
     {
         return Event::class;
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 7d2e047d3..dba68ee41 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -112,7 +112,6 @@ class EntityWorkflowRepository implements ObjectRepository
             ->setParameter('entity_id', $relatedEntityId);
 
         return $query->getQuery()->getResult();
-
     }
 
     /**
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 3f2ff0439..26c31506f 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -43,7 +43,7 @@ class EntityWorkflowManager
         foreach ($this->handlers as $handler) {
             return $handler->findByRelatedEntity($object);
         }
+
         return null;
     }
-
 }
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
index ecf3cd802..97ca84a13 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
@@ -11,7 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Security\Authorization;
 
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 0fd3af0af..34f8db4a7 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -140,6 +140,7 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
         if (!$object instanceof AccompanyingPeriodWorkEvaluationDocument) {
             return null;
         }
+
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluationDocument::class, $object->getId());
     }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 81116b7b2..d40080e33 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -133,6 +133,7 @@ class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInte
         if (!$object instanceof AccompanyingPeriodWork) {
             return null;
         }
+
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWork::class, $object->getId());
     }
 }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
index d773a8eb4..4c9cb4a2f 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/AuthorizationManager.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\WopiBundle\Service\Wopi;
 
 use ChampsLibres\WopiLib\Contract\Entity\Document;
-
 use Chill\DocStoreBundle\Repository\StoredObjectRepository;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\MainBundle\Entity\User;
@@ -70,7 +69,6 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
     {
         $storedObject = $this->getRelatedStoredObject($document);
         if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
-
             return $this->isTokenValid($accessToken, $document, $request);
         }
 
@@ -103,5 +101,4 @@ class AuthorizationManager implements \ChampsLibres\WopiBundle\Contracts\Authori
 
         return false;
     }
-
 }

From 2adc8b3bf6cdffad987d3c58a80d74f59bc7286a Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 11:58:48 +0200
Subject: [PATCH 070/375] Fix construct of SignedUrlPost

---
 .../Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php  | 1 +
 src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrlPost.php   | 3 ++-
 .../OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php     | 1 +
 .../Tests/Controller/AsyncUploadControllerTest.php             | 1 +
 .../Serializer/Normalizer/SignedUrlPostNormalizerTest.php      | 2 ++
 5 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
index 06f660fbe..ae74f9d0e 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
@@ -89,6 +89,7 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
         $g = new SignedUrlPost(
             $url = $this->generateUrl($object_name),
             $expires,
+            $object_name,
             $this->max_post_file_size,
             $max_file_count,
             $submit_delay,
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrlPost.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrlPost.php
index 9d37771d1..e9aecf6b2 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrlPost.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrlPost.php
@@ -18,6 +18,7 @@ readonly class SignedUrlPost extends SignedUrl
     public function __construct(
         string $url,
         \DateTimeImmutable $expires,
+        string $object_name,
         #[Serializer\Groups(['read'])]
         public int $max_file_size,
         #[Serializer\Groups(['read'])]
@@ -31,6 +32,6 @@ readonly class SignedUrlPost extends SignedUrl
         #[Serializer\Groups(['read'])]
         public string $signature,
     ) {
-        parent::__construct('POST', $url, $expires);
+        parent::__construct('POST', $url, $expires, $object_name);
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
index f9cc49fa6..bb83c698a 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
@@ -154,6 +154,7 @@ class TempUrlOpenstackGeneratorTest extends TestCase
         $signedUrl = new SignedUrlPost(
             'https://objectstore.example/v1/my_account/container/object?temp_url_sig=0aeef353a5f6e22d125c76c6ad8c644a59b222ba1b13eaeb56bf3d04e28b081d11dfcb36601ab3aa7b623d79e1ef03017071bbc842fb7b34afec2baff895bf80&temp_url_expires=1702043543',
             \DateTimeImmutable::createFromFormat('U', '1702043543'),
+            $objectName,
             150,
             1,
             1800,
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
index da223cea6..4c7dc92d0 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
@@ -73,6 +73,7 @@ class AsyncUploadControllerTest extends TestCase
                 return new SignedUrlPost(
                     'https://object.store.example',
                     new \DateTimeImmutable('1 hour'),
+                    'abc'
                     150,
                     1,
                     1800,
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
index ceb777f23..3bfa279e5 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
@@ -38,6 +38,7 @@ class SignedUrlPostNormalizerTest extends KernelTestCase
         $signedUrl = new SignedUrlPost(
             'https://object.store.example/container/object',
             \DateTimeImmutable::createFromFormat('U', '1700000'),
+            'abc',
             15000,
             1,
             180,
@@ -59,6 +60,7 @@ class SignedUrlPostNormalizerTest extends KernelTestCase
                 'method' => 'POST',
                 'expires' => 1_700_000,
                 'url' => 'https://object.store.example/container/object',
+                'object_name' => 'abc'
             ],
             $actual
         );

From af4db2218404704b76d453dc502e40b94488a169 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 13:58:10 +0200
Subject: [PATCH 071/375] php cs fixer and rector: add missing comma in
 AsyncUploadControllerTest

---
 .../Tests/Controller/AsyncUploadControllerTest.php              | 2 +-
 .../Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
index 4c7dc92d0..6b49b2919 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
@@ -73,7 +73,7 @@ class AsyncUploadControllerTest extends TestCase
                 return new SignedUrlPost(
                     'https://object.store.example',
                     new \DateTimeImmutable('1 hour'),
-                    'abc'
+                    'abc',
                     150,
                     1,
                     1800,
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
index 3bfa279e5..69d7958b6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlPostNormalizerTest.php
@@ -60,7 +60,7 @@ class SignedUrlPostNormalizerTest extends KernelTestCase
                 'method' => 'POST',
                 'expires' => 1_700_000,
                 'url' => 'https://object.store.example/container/object',
-                'object_name' => 'abc'
+                'object_name' => 'abc',
             ],
             $actual
         );

From 435836c7d1ba38b853c151efe87f4f4b554d5514 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 15:46:18 +0200
Subject: [PATCH 072/375] Delete unused storedobject voter

---
 .../AccompanyingCourseStoredObjectVoter.php   | 55 -------------------
 1 file changed, 55 deletions(-)
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
deleted file mode 100644
index 040f4dc32..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseStoredObjectVoter.php
+++ /dev/null
@@ -1,55 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
-namespace ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
-
-use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
-use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Symfony\Component\Security\Core\Security;
-
-final class AccompanyingCourseStoredObjectVoter extends AbstractStoredObjectVoter
-{
-    public function __construct(
-        private readonly AccompanyingCourseDocumentRepository $repository,
-        Security $security,
-        WorkflowDocumentService $workflowDocumentService
-    ) {
-        parent::__construct($security, $workflowDocumentService);
-    }
-
-    protected function getRepository(): AssociatedEntityToStoredObjectInterface
-    {
-        return $this->repository;
-    }
-
-    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
-    {
-        return match ($attribute) {
-            StoredObjectRoleEnum::EDIT => AccompanyingCourseDocumentVoter::UPDATE,
-            StoredObjectRoleEnum::SEE => AccompanyingCourseDocumentVoter::SEE_DETAILS,
-        };
-    }
-
-    protected function getClass(): string
-    {
-        return AccompanyingCourseDocument::class;
-    }
-
-    protected function canBeAssociatedWithWorkflow(): bool
-    {
-        return true;
-    }
-}

From 25e89571f7be08802c6e1aa4604dc5ce848b65ae Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 15:48:08 +0200
Subject: [PATCH 073/375] Change usage of match function in AsyncUploadVoter

---
 .../Security/Authorization/AsyncUploadVoter.php                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index ccda803e4..25981db1e 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -43,7 +43,7 @@ final class AsyncUploadVoter extends Voter
         return match ($subject->method) {
             'GET' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
             'PUT' => $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject),
-            default => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
+            'POST', 'HEAD' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
         };
     }
 }

From 3b80d9a93b15d9981641ad7b80d7e301aeba1b6e Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 16:24:53 +0200
Subject: [PATCH 074/375] Delete voters that are not in use anymore

---
 .../ActivityStoredObjectVoter.php             | 55 -------------------
 .../EventStoredObjectVoter.php                | 55 -------------------
 .../PersonStoredObjectVoter.php               | 55 -------------------
 3 files changed, 165 deletions(-)
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
deleted file mode 100644
index 4f897b36c..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/ActivityStoredObjectVoter.php
+++ /dev/null
@@ -1,55 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
-
-use Chill\ActivityBundle\Entity\Activity;
-use Chill\ActivityBundle\Repository\ActivityRepository;
-use Chill\ActivityBundle\Security\Authorization\ActivityVoter;
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Symfony\Component\Security\Core\Security;
-
-class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
-{
-    public function __construct(
-        private readonly ActivityRepository $repository,
-        Security $security,
-        WorkflowDocumentService $workflowDocumentService
-    ) {
-        parent::__construct($security, $workflowDocumentService);
-    }
-
-    protected function getRepository(): AssociatedEntityToStoredObjectInterface
-    {
-        return $this->repository;
-    }
-
-    protected function getClass(): string
-    {
-        return Activity::class;
-    }
-
-    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
-    {
-        return match ($attribute) {
-            StoredObjectRoleEnum::EDIT => ActivityVoter::UPDATE,
-            StoredObjectRoleEnum::SEE => ActivityVoter::SEE_DETAILS,
-        };
-    }
-
-    protected function canBeAssociatedWithWorkflow(): bool
-    {
-        return false;
-    }
-}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
deleted file mode 100644
index d258b3ae3..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/EventStoredObjectVoter.php
+++ /dev/null
@@ -1,55 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
-
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\EventBundle\Entity\Event;
-use Chill\EventBundle\Repository\EventRepository;
-use Chill\EventBundle\Security\Authorization\EventVoter;
-use Symfony\Component\Security\Core\Security;
-
-class EventStoredObjectVoter extends AbstractStoredObjectVoter
-{
-    public function __construct(
-        private readonly EventRepository $repository,
-        Security $security,
-        WorkflowDocumentService $workflowDocumentService
-    ) {
-        parent::__construct($security, $workflowDocumentService);
-    }
-
-    protected function getRepository(): AssociatedEntityToStoredObjectInterface
-    {
-        return $this->repository;
-    }
-
-    protected function getClass(): string
-    {
-        return Event::class;
-    }
-
-    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
-    {
-        return match ($attribute) {
-            StoredObjectRoleEnum::EDIT => EventVoter::UPDATE,
-            StoredObjectRoleEnum::SEE => EventVoter::SEE_DETAILS,
-        };
-    }
-
-    protected function canBeAssociatedWithWorkflow(): bool
-    {
-        return false;
-    }
-}
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
deleted file mode 100644
index 4d8a1220f..000000000
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonStoredObjectVoter.php
+++ /dev/null
@@ -1,55 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
-namespace src\Bundle\ChillDocStoreBundle\Security\Authorization\StoredObjectVoters;
-
-use Chill\DocStoreBundle\Entity\PersonDocument;
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\DocStoreBundle\Repository\PersonDocumentRepository;
-use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Symfony\Component\Security\Core\Security;
-
-class PersonStoredObjectVoter extends AbstractStoredObjectVoter
-{
-    public function __construct(
-        private readonly PersonDocumentRepository $repository,
-        Security $security,
-        WorkflowDocumentService $workflowDocumentService
-    ) {
-        parent::__construct($security, $workflowDocumentService);
-    }
-
-    protected function getRepository(): AssociatedEntityToStoredObjectInterface
-    {
-        return $this->repository;
-    }
-
-    protected function getClass(): string
-    {
-        return PersonDocument::class;
-    }
-
-    protected function attributeToRole(StoredObjectRoleEnum $attribute): string
-    {
-        return match ($attribute) {
-            StoredObjectRoleEnum::EDIT => PersonDocumentVoter::UPDATE,
-            StoredObjectRoleEnum::SEE => PersonDocumentVoter::SEE_DETAILS,
-        };
-    }
-
-    protected function canBeAssociatedWithWorkflow(): bool
-    {
-        return true;
-    }
-}

From 7dd5f542a6296687ba99e9d922bc68718ef7cc37 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 4 Jul 2024 16:28:09 +0200
Subject: [PATCH 075/375] Fix serialization of SignedUrl

An annotation was missing to include the object_name in the serialization.
---
 src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
index 1047e1344..ec0debca9 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/SignedUrl.php
@@ -21,6 +21,7 @@ readonly class SignedUrl
         #[Serializer\Groups(['read'])]
         public string $url,
         public \DateTimeImmutable $expires,
+        #[Serializer\Groups(['read'])]
         public string $object_name,
     ) {}
 

From f9122341d17ea2e300487ccffe84a79c3e07c9d2 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 9 Jul 2024 13:30:58 +0200
Subject: [PATCH 076/375] Fix phpstan error in match() function

---
 .../Security/Authorization/AsyncUploadVoter.php             | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index 25981db1e..708df0467 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -34,16 +34,16 @@ final class AsyncUploadVoter extends Voter
     protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         /** @var SignedUrl $subject */
-        if (!in_array($subject->method, ['POST', 'GET', 'HEAD'], true)) {
+        if (!in_array($subject->method, ['POST', 'GET', 'HEAD', 'PUT'], true)) {
             return false;
         }
 
         $storedObject = $this->storedObjectRepository->findOneBy(['filename' => $subject->object_name]);
 
         return match ($subject->method) {
-            'GET' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
+            'GET', 'HEAD' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
             'PUT' => $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject),
-            'POST', 'HEAD' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
+            'POST' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
         };
     }
 }

From facc4affed1bbc66fef0cdf6bdc99645bf353e88 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 9 Jul 2024 14:57:14 +0200
Subject: [PATCH 077/375] Fix testNormalizerSignedUrl method fixed

---
 .../Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php      | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
index 2029fac74..253eac2ca 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
@@ -49,6 +49,7 @@ class SignedUrlNormalizerTest extends KernelTestCase
                 'method' => 'GET',
                 'expires' => 1_700_000,
                 'url' => 'https://object.store.example/container/object',
+                'object_name' => 'object'
             ],
             $actual
         );

From cfa51cd6590f550206c3b810f52622f731cd920e Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 9 Jul 2024 15:43:22 +0200
Subject: [PATCH 078/375] php cs fixer

---
 .../Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
index 253eac2ca..7f0c342bb 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/SignedUrlNormalizerTest.php
@@ -49,7 +49,7 @@ class SignedUrlNormalizerTest extends KernelTestCase
                 'method' => 'GET',
                 'expires' => 1_700_000,
                 'url' => 'https://object.store.example/container/object',
-                'object_name' => 'object'
+                'object_name' => 'object',
             ],
             $actual
         );

From 7f3de62b2c042deeae6df2e3da9a77f1fb78328a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 23:36:12 +0200
Subject: [PATCH 079/375] Move the metadata on each workflow transition from
 the event subscriber to the entity EntityWorkflow::setStep method

The main update is in the setStep method of EntityWorkflow, where parameters are added to capture the transition details. These include the exact transition, the user who made the transition and the time of transition.

The WorkflowController extracts this information and put it into the transition's context. The MarkingStore transfer it to the EntityWorkflow::setStep method, and all metadata are recorded within the entities themselve.
---
 .../Controller/WorkflowController.php         | 23 +++++++++-
 .../Entity/Workflow/EntityWorkflow.php        |  9 +++-
 .../Entity/Workflow/EntityWorkflowTest.php    | 44 +++++++++++++++----
 .../EntityWorkflowMarkingStoreTest.php        | 12 ++++-
 .../Workflow/EntityWorkflowMarkingStore.php   |  6 ++-
 ...ntityWorkflowTransitionEventSubscriber.php |  6 ---
 6 files changed, 81 insertions(+), 19 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 3a8626f26..6898d87e4 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -25,6 +25,7 @@ use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Form\Extension\Core\Type\FormType;
 use Symfony\Component\Form\Extension\Core\Type\SubmitType;
 use Symfony\Component\HttpFoundation\Request;
@@ -39,7 +40,18 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 
 class WorkflowController extends AbstractController
 {
-    public function __construct(private readonly EntityWorkflowManager $entityWorkflowManager, private readonly EntityWorkflowRepository $entityWorkflowRepository, private readonly ValidatorInterface $validator, private readonly PaginatorFactory $paginatorFactory, private readonly Registry $registry, private readonly EntityManagerInterface $entityManager, private readonly TranslatorInterface $translator, private readonly ChillSecurity $security, private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry) {}
+    public function __construct(
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly EntityWorkflowRepository $entityWorkflowRepository,
+        private readonly ValidatorInterface $validator,
+        private readonly PaginatorFactory $paginatorFactory,
+        private readonly Registry $registry,
+        private readonly EntityManagerInterface $entityManager,
+        private readonly TranslatorInterface $translator,
+        private readonly ChillSecurity $security,
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
+        private readonly ClockInterface $clock,
+    ) {}
 
     #[Route(path: '/{_locale}/main/workflow/create', name: 'chill_main_workflow_create')]
     public function create(Request $request): Response
@@ -310,7 +322,14 @@ class WorkflowController extends AbstractController
                     throw $this->createAccessDeniedException(sprintf("not allowed to apply transition {$transition}: %s", implode(', ', $msgs)));
                 }
 
-                $workflow->apply($entityWorkflow, $transition, ['context' => $stepDTO]);
+                $byUser = $this->security->getUser();
+
+                $workflow->apply($entityWorkflow, $transition, [
+                    'context' => $stepDTO,
+                    'byUser' => $byUser,
+                    'transition' => $transition,
+                    'transitionAt' => $this->clock->now(),
+                ]);
 
                 $this->entityManager->flush();
 
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 9c314115e..b1a93534d 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -413,8 +413,15 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
      *
      * @return $this
      */
-    public function setStep(string $step, WorkflowTransitionContextDTO $transitionContextDTO): self
+    public function setStep(string $step, WorkflowTransitionContextDTO $transitionContextDTO, string $transition, \DateTimeImmutable $transitionAt, ?User $byUser = null): self
     {
+        $previousStep = $this->getCurrentStep();
+
+        $previousStep
+            ->setTransitionAfter($transition)
+            ->setTransitionAt($transitionAt)
+            ->setTransitionBy($byUser);
+
         $newStep = new EntityWorkflowStep();
         $newStep->setCurrentStep($step);
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
index ec5fa6ae2..30003144f 100644
--- a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Tests\Entity\Workflow;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use PHPUnit\Framework\TestCase;
@@ -26,7 +27,7 @@ final class EntityWorkflowTest extends TestCase
     {
         $entityWorkflow = new EntityWorkflow();
 
-        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow), 'finalize', new \DateTimeImmutable());
         $entityWorkflow->getCurrentStep()->setIsFinal(true);
 
         $this->assertTrue($entityWorkflow->isFinal());
@@ -38,16 +39,16 @@ final class EntityWorkflowTest extends TestCase
 
         $this->assertFalse($entityWorkflow->isFinal());
 
-        $entityWorkflow->setStep('two', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('two', new WorkflowTransitionContextDTO($entityWorkflow), 'two', new \DateTimeImmutable());
 
         $this->assertFalse($entityWorkflow->isFinal());
 
-        $entityWorkflow->setStep('previous_final', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('previous_final', new WorkflowTransitionContextDTO($entityWorkflow), 'three', new \DateTimeImmutable());
 
         $this->assertFalse($entityWorkflow->isFinal());
 
         $entityWorkflow->getCurrentStep()->setIsFinal(true);
-        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('final', new WorkflowTransitionContextDTO($entityWorkflow), 'four', new \DateTimeImmutable());
 
         $this->assertTrue($entityWorkflow->isFinal());
     }
@@ -58,23 +59,50 @@ final class EntityWorkflowTest extends TestCase
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('step_one', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('step_one', new WorkflowTransitionContextDTO($entityWorkflow), 'to_step_one', new \DateTimeImmutable());
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('step_three', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('step_three', new WorkflowTransitionContextDTO($entityWorkflow), 'to_step_three', new \DateTimeImmutable());
 
         $this->assertFalse($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('freezed', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('freezed', new WorkflowTransitionContextDTO($entityWorkflow), 'to_freezed', new \DateTimeImmutable());
         $entityWorkflow->getCurrentStep()->setFreezeAfter(true);
 
         $this->assertTrue($entityWorkflow->isFreeze());
 
-        $entityWorkflow->setStep('after_freeze', new WorkflowTransitionContextDTO($entityWorkflow));
+        $entityWorkflow->setStep('after_freeze', new WorkflowTransitionContextDTO($entityWorkflow), 'to_after_freeze', new \DateTimeImmutable());
 
         $this->assertTrue($entityWorkflow->isFreeze());
 
         $this->assertTrue($entityWorkflow->getCurrentStep()->isFreezeAfter());
     }
+
+    public function testPreviousStepMetadataAreFilled()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $initialStep = $entityWorkflow->getCurrentStep();
+
+        $entityWorkflow->setStep('step_one', new WorkflowTransitionContextDTO($entityWorkflow), 'to_step_one', new \DateTimeImmutable('2024-01-01'), $user1 = new User());
+
+        $previous = $entityWorkflow->getCurrentStep();
+
+        $entityWorkflow->setStep('step_one', new WorkflowTransitionContextDTO($entityWorkflow), 'to_step_two', new \DateTimeImmutable('2024-01-02'), $user2 = new User());
+
+        $final = $entityWorkflow->getCurrentStep();
+
+        $stepsChained = $entityWorkflow->getStepsChained();
+
+        self::assertCount(3, $stepsChained);
+        self::assertSame($initialStep, $stepsChained[0]);
+        self::assertSame($previous, $stepsChained[1]);
+        self::assertSame($final, $stepsChained[2]);
+        self::assertEquals($user1, $initialStep->getTransitionBy());
+        self::assertEquals('2024-01-01', $initialStep->getTransitionAt()?->format('Y-m-d'));
+        self::assertEquals('to_step_one', $initialStep->getTransitionAfter());
+        self::assertEquals($user2, $previous->getTransitionBy());
+        self::assertEquals('2024-01-02', $previous->getTransitionAt()?->format('Y-m-d'));
+        self::assertEquals('to_step_two', $previous->getTransitionAfter());
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
index a32cefb09..4922cab17 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
@@ -39,19 +39,29 @@ class EntityWorkflowMarkingStoreTest extends TestCase
     {
         $markingStore = $this->buildMarkingStore();
         $workflow = new EntityWorkflow();
+        $previousStep = $workflow->getCurrentStep();
 
         $dto = new WorkflowTransitionContextDTO($workflow);
         $dto->futureCcUsers[] = $user1 = new User();
         $dto->futureDestUsers[] = $user2 = new User();
         $dto->futureDestEmails[] = $email = 'test@example.com';
 
-        $markingStore->setMarking($workflow, new Marking(['foo' => 1]), ['context' => $dto]);
+        $markingStore->setMarking($workflow, new Marking(['foo' => 1]), [
+            'context' => $dto,
+            'transition' => 'bar_transition',
+            'byUser' => $user3 = new User(),
+            'transitionAt' => $at = new \DateTimeImmutable(),
+        ]);
 
         $currentStep = $workflow->getCurrentStep();
         self::assertEquals('foo', $currentStep->getCurrentStep());
         self::assertContains($email, $currentStep->getDestEmail());
         self::assertContains($user1, $currentStep->getCcUser());
         self::assertContains($user2, $currentStep->getDestUser());
+
+        self::assertSame($user3, $previousStep->getTransitionBy());
+        self::assertSame($at, $previousStep->getTransitionAt());
+        self::assertEquals('bar_transition', $previousStep->getTransitionAfter());
     }
 
     private function buildMarkingStore(): EntityWorkflowMarkingStore
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
index dca929e86..ee07d7a62 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowMarkingStore.php
@@ -40,10 +40,14 @@ final readonly class EntityWorkflowMarkingStore implements MarkingStoreInterface
         $next = array_keys($places)[0];
 
         $transitionDTO = $context['context'] ?? null;
+        $transition = $context['transition'];
+        $byUser = $context['byUser'] ?? null;
+        $at = $context['transitionAt'];
+
         if (!$transitionDTO instanceof WorkflowTransitionContextDTO) {
             throw new \UnexpectedValueException(sprintf('Expected instance of %s', WorkflowTransitionContextDTO::class));
         }
 
-        $subject->setStep($next, $transitionDTO);
+        $subject->setStep($next, $transitionDTO, $transition, $at, $byUser);
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
index ce33ea6d0..9c74c861c 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
@@ -108,12 +108,6 @@ final readonly class EntityWorkflowTransitionEventSubscriber implements EventSub
 
         /** @var EntityWorkflow $entityWorkflow */
         $entityWorkflow = $event->getSubject();
-        $step = $entityWorkflow->getCurrentStep();
-
-        $step
-            ->setTransitionAfter($event->getTransition()->getName())
-            ->setTransitionAt(new \DateTimeImmutable('now'))
-            ->setTransitionBy($this->security->getUser());
 
         $this->chillLogger->info('[workflow] apply transition on entityWorkflow', [
             'relatedEntityClass' => $entityWorkflow->getRelatedEntityClass(),

From b5af9f7b63ef42f31f2cc1a656034788a3dd4ebb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 23:36:39 +0200
Subject: [PATCH 080/375] Add futurePersonSignatures property to
 WorkflowTransitionContextDTO

A new property named futurePersonSignatures has been added to the WorkflowTransitionContextDTO class. This will hold a list of Person objects expected to sign the next step, improving the scope of information available within the workflow context.
---
 .../ChillMainBundle/Entity/Workflow/EntityWorkflow.php       | 4 ++++
 .../Workflow/WorkflowTransitionContextDTO.php                | 5 +++++
 2 files changed, 9 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index b1a93534d..4b5da09db 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -437,6 +437,10 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             $newStep->addDestEmail($email);
         }
 
+        foreach ($transitionContextDTO->futurePersonSignatures as $personSignature) {
+            new EntityWorkflowStepSignature($newStep, $personSignature);
+        }
+
         // copy the freeze
         if ($this->isFreeze()) {
             $newStep->setFreezeAfter(true);
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index 2a8253523..ba4cde51e 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -51,6 +51,11 @@ class WorkflowTransitionContextDTO
      */
     public array $futureDestEmails = [];
 
+    /**
+     * a list of future @see{Person} with will sign the next step.
+     */
+    public array $futurePersonSignatures = [];
+
     public ?Transition $transition = null;
 
     public string $comment = '';

From fe6b4848e60deb3ce4f62001fba7d5f8415dc483 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 23:50:28 +0200
Subject: [PATCH 081/375] Implement workflow handlers for stored objects

Added new interface, EntityWorkflowWithStoredObjectHandlerInterface, which provides methods to handle workflows associated with stored objects. Two classes, AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler and AccompanyingCourseDocumentWorkflowHandler, have been updated to implement this new interface. The EntityWorkflowManager class has also been updated to handle workflows associated with stored objects.
---
 ...ompanyingCourseDocumentWorkflowHandler.php | 15 ++++++++---
 .../Workflow/EntityWorkflowManager.php        | 12 +++++++++
 ...rkflowWithStoredObjectHandlerInterface.php | 27 +++++++++++++++++++
 ...dWorkEvaluationDocumentWorkflowHandler.php | 15 ++++++++---
 4 files changed, 61 insertions(+), 8 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithStoredObjectHandlerInterface.php

diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index 55b823dcd..ad16ae722 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -12,15 +12,19 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
+/**
+ * @implements EntityWorkflowWithStoredObjectHandlerInterface<AccompanyingCourseDocument>
+ */
+class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
 {
     private readonly EntityRepository $repository;
 
@@ -73,8 +77,6 @@ class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandler
     }
 
     /**
-     * @param AccompanyingCourseDocument $object
-     *
      * @return array[]
      */
     public function getRelatedObjects(object $object): array
@@ -121,4 +123,9 @@ class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowHandler
     {
         return AccompanyingCourseDocument::class === $entityWorkflow->getRelatedEntityClass();
     }
+
+    public function getAssociatedStoredObject(EntityWorkflow $entityWorkflow): ?StoredObject
+    {
+        return $this->getRelatedEntity($entityWorkflow)?->getObject();
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 9a1f52280..a45abe081 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Workflow;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\Exception\HandlerNotFoundException;
 use Symfony\Component\Workflow\Registry;
@@ -37,4 +38,15 @@ class EntityWorkflowManager
     {
         return $this->registry->all($entityWorkflow);
     }
+
+    public function getAssociatedStoredObject(EntityWorkflow $entityWorkflow): ?StoredObject
+    {
+        foreach ($this->handlers as $handler) {
+            if ($handler instanceof EntityWorkflowWithStoredObjectHandlerInterface && $handler->supports($entityWorkflow)) {
+                return $handler->getAssociatedStoredObject($entityWorkflow);
+            }
+        }
+
+        return null;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithStoredObjectHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithStoredObjectHandlerInterface.php
new file mode 100644
index 000000000..a1c7561cd
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithStoredObjectHandlerInterface.php
@@ -0,0 +1,27 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+
+/**
+ * Add methods to handle workflows associated with @see{StoredObject}.
+ *
+ * @template T of object
+ *
+ * @template-extends EntityWorkflowHandlerInterface<T>
+ */
+interface EntityWorkflowWithStoredObjectHandlerInterface extends EntityWorkflowHandlerInterface
+{
+    public function getAssociatedStoredObject(EntityWorkflow $entityWorkflow): ?StoredObject;
+}
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 2912d1c01..97d48e5b0 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -11,15 +11,19 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Workflow;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
-use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityWorkflowHandlerInterface
+/**
+ * @implements EntityWorkflowWithStoredObjectHandlerInterface<AccompanyingPeriodWorkEvaluationDocument>
+ */
+class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
 {
     public function __construct(private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
 
@@ -67,8 +71,6 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
     }
 
     /**
-     * @param AccompanyingPeriodWorkEvaluationDocument $object
-     *
      * @return array[]
      */
     public function getRelatedObjects(object $object): array
@@ -123,4 +125,9 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
     {
         return AccompanyingPeriodWorkEvaluationDocument::class === $entityWorkflow->getRelatedEntityClass();
     }
+
+    public function getAssociatedStoredObject(EntityWorkflow $entityWorkflow): ?StoredObject
+    {
+        return $this->getRelatedEntity($entityWorkflow)?->getStoredObject();
+    }
 }

From c1cf27c42dbfd9fd76c4119b5035475e930c34d2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 23:51:00 +0200
Subject: [PATCH 082/375] Refactor workflow handlers and update comments

Changes include class refactoring for Workflow handlers, using `readonly` and better indentation in constructors for better readability. In addition, outdated comments are removed. Also, entity workflow handlers now implement the EntityWorkflowHandlerInterface type for better type safety.
---
 .../Authorization/WorkflowEntityDeletionVoter.php  |  5 +++--
 .../Workflow/EntityWorkflowHandlerInterface.php    |  6 ++++++
 ...mpanyingPeriodWorkEvaluationWorkflowHandler.php | 14 +++++++++-----
 .../AccompanyingPeriodWorkWorkflowHandler.php      | 14 +++++++++-----
 4 files changed, 27 insertions(+), 12 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/WorkflowEntityDeletionVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/WorkflowEntityDeletionVoter.php
index 9718cf013..3444a57a6 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/WorkflowEntityDeletionVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/WorkflowEntityDeletionVoter.php
@@ -12,13 +12,14 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Security\Authorization;
 
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 
 class WorkflowEntityDeletionVoter extends Voter
 {
     /**
-     * @param \Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface[] $handlers
+     * @param EntityWorkflowHandlerInterface[] $handlers
      */
     public function __construct(private $handlers, private readonly EntityWorkflowRepository $entityWorkflowRepository) {}
 
@@ -30,7 +31,7 @@ class WorkflowEntityDeletionVoter extends Voter
 
         foreach ($this->handlers as $handler) {
             if ($handler->isObjectSupported($subject)
-                && \in_array($attribute, $handler->getDeletionRoles($subject), true)) {
+                && \in_array($attribute, $handler->getDeletionRoles(), true)) {
                 return true;
             }
         }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
index e79982e1c..edd1120a7 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
@@ -14,6 +14,9 @@ namespace Chill\MainBundle\Workflow;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 
+/**
+ * @template T of object
+ */
 interface EntityWorkflowHandlerInterface
 {
     /**
@@ -25,6 +28,9 @@ interface EntityWorkflowHandlerInterface
 
     public function getEntityTitle(EntityWorkflow $entityWorkflow, array $options = []): string;
 
+    /**
+     * @return T|null
+     */
     public function getRelatedEntity(EntityWorkflow $entityWorkflow): ?object;
 
     public function getRelatedObjects(object $object): array;
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index a041b3c37..113d5f5c8 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -20,9 +20,16 @@ use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvalu
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationVoter;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowHandlerInterface
+/**
+ * @implements EntityWorkflowHandlerInterface<AccompanyingPeriodWorkEvaluation>
+ */
+readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    public function __construct(private readonly AccompanyingPeriodWorkEvaluationRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
+    public function __construct(
+        private AccompanyingPeriodWorkEvaluationRepository $repository,
+        private TranslatableStringHelperInterface $translatableStringHelper,
+        private TranslatorInterface $translator
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -53,9 +60,6 @@ class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowH
         return $this->repository->find($entityWorkflow->getRelatedEntityId());
     }
 
-    /**
-     * @param AccompanyingPeriodWorkEvaluation $object
-     */
     public function getRelatedObjects(object $object): array
     {
         $relateds = [];
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index ce146a887..837ee2aac 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -21,9 +21,16 @@ use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepos
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInterface
+/**
+ * @implements EntityWorkflowHandlerInterface<AccompanyingPeriodWork>
+ */
+readonly class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInterface
 {
-    public function __construct(private readonly AccompanyingPeriodWorkRepository $repository, private readonly TranslatableStringHelperInterface $translatableStringHelper, private readonly TranslatorInterface $translator) {}
+    public function __construct(
+        private AccompanyingPeriodWorkRepository $repository,
+        private TranslatableStringHelperInterface $translatableStringHelper,
+        private TranslatorInterface $translator
+    ) {}
 
     public function getDeletionRoles(): array
     {
@@ -55,9 +62,6 @@ class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInte
         return $this->repository->find($entityWorkflow->getRelatedEntityId());
     }
 
-    /**
-     * @param AccompanyingPeriodWork $object
-     */
     public function getRelatedObjects(object $object): array
     {
         $relateds = [];

From a887602f4fbb654a283da9b6019d577ebc7083a4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 10 Jul 2024 00:21:07 +0200
Subject: [PATCH 083/375] Handle storing of new object in
 PdfSignedMessageHandler

The PdfSignedMessageHandler has been updated to handle pdf signed messages: the content is now stored within the object. Also, a PdfSignedMessageHandlerTest has been created to ensure the correct functionality of the updated handler.
---
 .../BaseSigner/PdfSignedMessageHandler.php    | 20 +++++
 .../PdfSignedMessageHandlerTest.php           | 84 +++++++++++++++++++
 2 files changed, 104 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
index 4002b107b..81fb97dbf 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -11,6 +11,9 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
 
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 
@@ -23,10 +26,27 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
 
     public function __construct(
         private LoggerInterface $logger,
+        private EntityWorkflowManager $entityWorkflowManager,
+        private StoredObjectManagerInterface $storedObjectManager,
+        private EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
     ) {}
 
     public function __invoke(PdfSignedMessage $message): void
     {
         $this->logger->info(self::P.'a message is received', ['signaturedId' => $message->signatureId]);
+
+        $signature = $this->entityWorkflowStepSignatureRepository->find($message->signatureId);
+
+        if (null === $signature) {
+            throw new \RuntimeException('no signature found');
+        }
+
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($signature->getStep()->getEntityWorkflow());
+
+        if (null === $storedObject) {
+            throw new \RuntimeException('no stored object found');
+        }
+
+        $this->storedObjectManager->write($storedObject, $message->content);
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
new file mode 100644
index 000000000..62d50c03f
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
@@ -0,0 +1,84 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service\Signature\Driver\BaseSigner;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\PdfSignedMessage;
+use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\PdfSignedMessageHandler;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PdfSignedMessageHandlerTest extends TestCase
+{
+    public function testThatObjectIsWrittenInStoredObjectManagerHappyScenario(): void
+    {
+        // a dummy stored object
+        $storedObject = new StoredObject();
+        // build the associated EntityWorkflow, with one step with a person signature
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futurePersonSignatures[] = new Person();
+        $entityWorkflow->setStep('new_step', $dto, 'new_transition', new \DateTimeImmutable(), new User());
+        $step = $entityWorkflow->getCurrentStep();
+        $signature = $step->getSignatures()->first();
+
+        $handler = new PdfSignedMessageHandler(
+            new NullLogger(),
+            $this->buildEntityWorkflowManager($storedObject),
+            $this->buildStoredObjectManager($storedObject, $expectedContent = '1234'),
+            $this->buildSignatureRepository($signature)
+        );
+
+        // we simply call the handler. The mocked StoredObjectManager will check that the "write" method is invoked once
+        // with the content "1234"
+        $handler(new PdfSignedMessage(10, $expectedContent));
+    }
+
+    private function buildSignatureRepository(EntityWorkflowStepSignature $signature): EntityWorkflowStepSignatureRepository
+    {
+        $entityWorkflowStepSignatureRepository = $this->createMock(EntityWorkflowStepSignatureRepository::class);
+        $entityWorkflowStepSignatureRepository->method('find')->with($this->isType('int'))->willReturn($signature);
+
+        return $entityWorkflowStepSignatureRepository;
+    }
+
+    private function buildEntityWorkflowManager(?StoredObject $associatedStoredObject): EntityWorkflowManager
+    {
+        $entityWorkflowManager = $this->createMock(EntityWorkflowManager::class);
+        $entityWorkflowManager->method('getAssociatedStoredObject')->willReturn($associatedStoredObject);
+
+        return $entityWorkflowManager;
+    }
+
+    private function buildStoredObjectManager(StoredObject $expectedStoredObject, string $expectedContent): StoredObjectManagerInterface
+    {
+        $storedObjectManager = $this->createMock(StoredObjectManagerInterface::class);
+        $storedObjectManager->expects($this->once())
+            ->method('write')
+            ->with($this->identicalTo($expectedStoredObject), $expectedContent);
+
+        return $storedObjectManager;
+    }
+}

From db94af0958b3989bfa3c4b930dc63e9bbd6468a7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 10 Jul 2024 12:47:02 +0200
Subject: [PATCH 084/375] Add support for user signatures in workflow
 transitions

This update introduces the ability to specify user signatures in workflow transitions. It allows a nullable user to be declared that may be requested to apply a signature. The code now handles the use-case of signing a transition by a user in addition to previous functionality of having it signed by a "Person" entity. Corresponding tests are also updated to validate this new feature.
---
 .../Entity/Workflow/EntityWorkflow.php        | 17 +++++++---
 .../Entity/Workflow/EntityWorkflowTest.php    | 33 +++++++++++++++++++
 .../Workflow/WorkflowTransitionContextDTO.php | 10 +++++-
 3 files changed, 55 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 4b5da09db..eb187cd39 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -413,8 +413,13 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
      *
      * @return $this
      */
-    public function setStep(string $step, WorkflowTransitionContextDTO $transitionContextDTO, string $transition, \DateTimeImmutable $transitionAt, ?User $byUser = null): self
-    {
+    public function setStep(
+        string $step,
+        WorkflowTransitionContextDTO $transitionContextDTO,
+        string $transition,
+        \DateTimeImmutable $transitionAt,
+        ?User $byUser = null
+    ): self {
         $previousStep = $this->getCurrentStep();
 
         $previousStep
@@ -437,8 +442,12 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             $newStep->addDestEmail($email);
         }
 
-        foreach ($transitionContextDTO->futurePersonSignatures as $personSignature) {
-            new EntityWorkflowStepSignature($newStep, $personSignature);
+        if (null !== $transitionContextDTO->futureUserSignature) {
+            new EntityWorkflowStepSignature($newStep, $transitionContextDTO->futureUserSignature);
+        } else {
+            foreach ($transitionContextDTO->futurePersonSignatures as $personSignature) {
+                new EntityWorkflowStepSignature($newStep, $personSignature);
+            }
         }
 
         // copy the freeze
diff --git a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
index 30003144f..4eb56f995 100644
--- a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
@@ -13,7 +13,9 @@ namespace Chill\MainBundle\Tests\Entity\Workflow;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
 
 /**
@@ -105,4 +107,35 @@ final class EntityWorkflowTest extends TestCase
         self::assertEquals('2024-01-02', $previous->getTransitionAt()?->format('Y-m-d'));
         self::assertEquals('to_step_two', $previous->getTransitionAfter());
     }
+
+    public function testSetStepSignatureForUserIsCreated()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureUserSignature = $user = new User();
+
+        $entityWorkflow->setStep('new', $dto, 'to_new', new \DateTimeImmutable());
+
+        $actual = $entityWorkflow->getCurrentStep();
+
+        self::assertCount(1, $actual->getSignatures());
+        self::assertSame($user, $actual->getSignatures()->first()->getSigner());
+    }
+
+    public function testSetStepSignatureForPersonIsCreated()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futurePersonSignatures[] = $person1 = new Person();
+        $dto->futurePersonSignatures[] = $person2 = new Person();
+
+        $entityWorkflow->setStep('new', $dto, 'to_new', new \DateTimeImmutable());
+
+        $actual = $entityWorkflow->getCurrentStep();
+        $persons = $actual->getSignatures()->map(fn (EntityWorkflowStepSignature $signature) => $signature->getSigner());
+
+        self::assertCount(2, $actual->getSignatures());
+        self::assertContains($person1, $persons);
+        self::assertContains($person2, $persons);
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index ba4cde51e..88bb0fa76 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Workflow;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\PersonBundle\Entity\Person;
 use Symfony\Component\Validator\Constraints as Assert;
 use Symfony\Component\Validator\Context\ExecutionContextInterface;
 use Symfony\Component\Workflow\Transition;
@@ -52,10 +53,17 @@ class WorkflowTransitionContextDTO
     public array $futureDestEmails = [];
 
     /**
-     * a list of future @see{Person} with will sign the next step.
+     * A list of future @see{Person} with will sign the next step.
+     *
+     * @var list<Person>
      */
     public array $futurePersonSignatures = [];
 
+    /**
+     * An eventual user which is requested to apply a signature.
+     */
+    public ?User $futureUserSignature = null;
+
     public ?Transition $transition = null;
 
     public string $comment = '';

From 8d543be5cc47cebc423872c90e84c0e05c4b49bb Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 11 Jul 2024 15:15:04 +0200
Subject: [PATCH 085/375] Add configuration on id_document_types to avoid
 errors

---
 .../ChillMainExtension.php                    |  5 +++++
 .../DependencyInjection/Configuration.php     | 22 +++++++++++++++++++
 2 files changed, 27 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 4dde2076c..bf041b5b3 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -193,6 +193,11 @@ class ChillMainExtension extends Extension implements
                 []
         );
 
+        $container->setParameter(
+            'chill_main.id_document_kinds',
+            $config['id_document_kinds']
+        );
+
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
         $loader->load('services/doctrine.yaml');
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 8bd3e35f4..9c890d9fe 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -151,6 +151,28 @@ class Configuration implements ConfigurationInterface
             ->append($this->addWidgetsConfiguration('homepage', $this->containerBuilder))
             ->end() // end of widgets/children
             ->end() // end of widgets
+            ->arrayNode('id_document_kinds')->defaultValue([])
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('key')->isRequired()->cannotBeEmpty()
+            ->info('the key stored in database')
+            ->example('id_card')
+            ->end()
+            ->arrayNode('labels')->isRequired()->requiresAtLeastOneElement()
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('lang')->isRequired()->cannotBeEmpty()
+            ->example('fr')
+            ->end()
+            ->scalarNode('label')->isRequired()->cannotBeEmpty()
+            ->example('Carte de séjour')
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end() // end of document types
             ->arrayNode('cruds')
             ->defaultValue([])
             ->arrayPrototype()

From 52a3d1be1b2317afd79c5821ba35b733201d52fc Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 11 Jul 2024 15:15:41 +0200
Subject: [PATCH 086/375] Implement show and hide logic within workflow form

---
 .../ChillMainBundle/Form/WorkflowStepType.php | 26 ++++++
 .../public/page/workflow-show/index.js        | 86 +++++++++++++++++--
 .../views/Workflow/_decision.html.twig        | 23 ++++-
 3 files changed, 126 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 284781d54..8949432b2 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -17,6 +17,7 @@ use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
 use Symfony\Component\Form\Extension\Core\Type\EmailType;
@@ -102,6 +103,7 @@ class WorkflowStepType extends AbstractType
                 'choice_attr' => static function (Transition $transition) use ($workflow) {
                     $toFinal = true;
                     $isForward = 'neutral';
+                    $isSignature = [];
 
                     $metadata = $workflow->getMetadataStore()->getTransitionMetadata($transition);
 
@@ -121,15 +123,38 @@ class WorkflowStepType extends AbstractType
                         ) {
                             $toFinal = false;
                         }
+
+                        if (\array_key_exists('isSignature', $meta)) {
+                            $isSignature = $meta['isSignature'];
+                        }
                     }
 
                     return [
                         'data-is-transition' => 'data-is-transition',
                         'data-to-final' => $toFinal ? '1' : '0',
                         'data-is-forward' => $isForward,
+                        'data-is-signature' => json_encode($isSignature),
                     ];
                 },
             ])
+            ->add('isPersonOrUserSignature', ChoiceType::class, [
+                'mapped' => false,
+                'multiple' => false,
+                'expanded' => true,
+                'label' => 'workflow.Type of signature',
+                'choices' => [
+                    'person' => 'person',
+                    'user' => 'user',
+                ],
+            ])
+            ->add('futurePersonSignatures', PickPersonDynamicType::class, [
+                'label' => 'workflow.person signatures',
+                'multiple' => true,
+            ])
+            ->add('futureUserSignature', PickUserDynamicType::class, [
+                'label' => 'workflow.user signatures',
+                'multiple' => false,
+            ])
             ->add('futureDestUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
@@ -140,6 +165,7 @@ class WorkflowStepType extends AbstractType
                 'multiple' => true,
                 'required' => false,
                 'suggested' => $options['suggested_users'],
+                'attr' => ['class' => 'future-cc-users'],
             ])
             ->add('futureDestEmails', ChillCollectionType::class, [
                 'label' => 'workflow.dest by email',
diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 2f91c7777..6829dad8e 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -4,8 +4,86 @@ window.addEventListener('DOMContentLoaded', function() {
     let
         divTransitions = document.querySelector('#transitions'),
         futureDestUsersContainer = document.querySelector('#futureDests')
+        personSignatureField = document.querySelector('#person-signature-field');
+        userSignatureField = document.querySelector('#user-signature-field');
+        signatureTypeChoices = document.querySelector('#signature-type-choice');
     ;
 
+    console.log('signature type', signatureTypeChoices);
+
+    let
+      transitionFilterContainer = document.querySelector('#transitionFilter'),
+      transitionsContainer = document.querySelector('#transitions')
+    ;
+
+    personSignatureField.style.display = 'none';
+    userSignatureField.style.display = 'none';
+    futureDestUsersContainer.style.display = 'none';
+    signatureTypeChoices.style.display = 'none';
+
+    // ShowHide instance for signatureTypeChoices and futureDestUsersContainer
+    new ShowHide({
+      load_event: null,
+      froms: [transitionsContainer],
+      container: [signatureTypeChoices, futureDestUsersContainer],
+      test: function() {
+        const selectedTransition = document.querySelector('input[name="workflow_step[transition]"]:checked');
+        console.log('transition', selectedTransition)
+        if (!selectedTransition) {
+          return false; // No transition selected, hide all
+        }
+
+        const isSignature = JSON.parse(selectedTransition.getAttribute('data-is-signature') || '[]');
+
+        if (isSignature.includes('person') && isSignature.includes('user')) {
+          signatureTypeChoices.style.display = '';
+        } else {
+          signatureTypeChoices.style.display = 'none';
+        }
+
+        if (!isSignature.length) {
+          futureDestUsersContainer.style.display = '';
+          personSignatureField.style.display = 'none';
+          userSignatureField.style.display = 'none';
+        } else {
+          futureDestUsersContainer.style.display = 'none';
+        }
+
+        return true; // Always return true to ensure ShowHide manages visibility
+      }
+    });
+
+    // Event listener for changes in signature type selection
+    signatureTypeChoices.addEventListener('change', function() {
+      // ShowHide instance for personSignatureField and userSignatureField
+      new ShowHide({
+        load_event: null,
+        froms: [signatureTypeChoices],
+        container: [personSignatureField, userSignatureField],
+        test: function() {
+          console.log(signatureTypeChoices)
+          const selectedSignatureType = document.querySelector('input[name="workflow_step[isPersonOrUserSignature]"]:checked');
+          console.log('signataure type', selectedSignatureType)
+          if (!selectedSignatureType) {
+            return false; // No signature type selected, hide both fields
+          }
+
+          if (selectedSignatureType.value === 'person') {
+            personSignatureField.style.display = '';
+            userSignatureField.style.display = 'none';
+          } else if (selectedSignatureType.value === 'user') {
+            personSignatureField.style.display = 'none';
+            userSignatureField.style.display = '';
+          } else {
+            personSignatureField.style.display = 'none';
+            userSignatureField.style.display = 'none';
+          }
+
+          return true; // Always return true to ensure ShowHide manages visibility
+        }
+      });
+    });
+
     if (null !== divTransitions) {
         new ShowHide({
             load_event: null,
@@ -29,13 +107,8 @@ window.addEventListener('DOMContentLoaded', function() {
         });
     }
 
-    let
-        transitionFilterContainer = document.querySelector('#transitionFilter'),
-        transitions = document.querySelector('#transitions')
-    ;
-
     if (null !== transitionFilterContainer) {
-        transitions.querySelectorAll('.form-check').forEach(function(row) {
+        transitionsContainer.querySelectorAll('.form-check').forEach(function(row) {
 
             const isForward = row.querySelector('input').dataset.isForward;
 
@@ -66,5 +139,4 @@ window.addEventListener('DOMContentLoaded', function() {
             });
         });
     }
-
 });
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 35f587e38..391e42324 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -58,15 +58,34 @@
         {{ form_row(transition_form.transition) }}
     </div>
 
+    <div id="futureSignatures">
+        <div id="signature-type-choice">
+            {{ form_row(transition_form.isPersonOrUserSignature) }}
+            {{ form_errors(transition_form.isPersonOrUserSignature) }}
+        </div>
+        <div id="user-signature-field">
+            {{ form_row(transition_form.futureUserSignature) }}
+            {{ form_errors(transition_form.futureUserSignature) }}
+        </div>
+        <div id="person-signature-field">
+            {{ form_row(transition_form.futurePersonSignatures) }}
+            {{ form_errors(transition_form.futurePersonSignatures) }}
+        </div>
+    </div>
+
     <div id="futureDests">
+        <div id="future-dest-users">
         {{ form_row(transition_form.futureDestUsers) }}
         {{ form_errors(transition_form.futureDestUsers) }}
-
+        </div>
+        <div id="future-cc-users">
         {{ form_row(transition_form.futureCcUsers) }}
         {{ form_errors(transition_form.futureCcUsers) }}
-
+        </div>
+        <div id="future-dest-emails">
         {{ form_row(transition_form.futureDestEmails) }}
         {{ form_errors(transition_form.futureDestEmails) }}
+        </div>
     </div>
 
     <p>{{ form_label(transition_form.comment) }}</p>

From 215eba41b716e59849c52abfe73edb463574abba Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 11 Jul 2024 15:52:47 +0200
Subject: [PATCH 087/375] Fix unit test to accomodate changed constructor in
 StoredObjectNormalizer

---
 .../ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php  | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
index 2fc17787a..9d486ac93 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
@@ -23,6 +23,7 @@ use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Component\Form\PreloadedExtension;
 use Symfony\Component\Form\Test\TypeTestCase;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Encoder\JsonEncoder;
 use Symfony\Component\Serializer\Serializer;
 
@@ -80,11 +81,15 @@ class StoredObjectTypeTest extends TypeTestCase
         $urlGenerator->generate('chill_docstore_dav_document_get', Argument::type('array'), UrlGeneratorInterface::ABSOLUTE_URL)
             ->willReturn('http://url/fake');
 
+        $security = $this->prophesize(Security::class);
+        $security->isGranted(Argument::cetera())->willReturn(true);
+
         $serializer = new Serializer(
             [
                 new StoredObjectNormalizer(
                     $jwtTokenProvider->reveal(),
                     $urlGenerator->reveal(),
+                    $security->reveal()
                 ),
             ],
             [

From e83307ca6d13dda2851d86c8e75d349bb5db1982 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 17:17:56 +0200
Subject: [PATCH 088/375] Remove obsolete security checks in StoredObjectVoter

This commit eliminates antiquated security checks in the StoredObjectVoter class. Specifically, it removes a chunk of commented out code that checked for certain attributes on the token and also the import for DavTokenAuthenticationEventSubscriber class which is no longer needed. This results in code cleanup and prevents future confusion.
---
 .../Security/Authorization/StoredObjectVoter.php   | 14 --------------
 1 file changed, 14 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index c0851144a..91e767af2 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Security\Guard\DavTokenAuthenticationEventSubscriber;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 use Symfony\Component\Security\Core\Security;
@@ -35,19 +34,6 @@ class StoredObjectVoter extends Voter
     protected function voteOnAttribute($attribute, $subject, TokenInterface $token): bool
     {
         /** @var StoredObject $subject */
-        /*
-        if (
-            !$token->hasAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)
-            || $subject->getUuid()->toString() !== $token->getAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)
-        ) {
-            return false;
-        }
-
-        if (!$token->hasAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)) {
-            return false;
-        }
-        */
-
         $attributeAsEnum = StoredObjectRoleEnum::from($attribute);
 
         // Loop through context-specific voters

From 7d0f9175be562871b5d692ba8a6728e31fc819ad Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 17:18:28 +0200
Subject: [PATCH 089/375] Refactor StoredObjectVoterTest to improve testing
 logic

The existing StoredObjectVoter test logic was reworked to utilize UsernamePasswordToken and Security mock objects instead of defining its own token. This change improves the testing for different scenarios such as unsupported attributes and cases where role voters cannot see the stored object. Also, the redundancy in the test case provider was removed, which leads to cleaner and more maintainable code.
---
 .../Authorization/StoredObjectVoterTest.php   | 132 +++++++++---------
 1 file changed, 65 insertions(+), 67 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
index 92c928681..a113cfb7b 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
@@ -14,11 +14,13 @@ namespace Chill\DocStoreBundle\Tests\Security\Authorization;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter;
-use Chill\DocStoreBundle\Security\Guard\DavTokenAuthenticationEventSubscriber;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
+use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
-use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
 use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
+use Symfony\Component\Security\Core\Security;
 
 /**
  * @internal
@@ -27,97 +29,93 @@ use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
  */
 class StoredObjectVoterTest extends TestCase
 {
-    use ProphecyTrait;
-
     /**
      * @dataProvider provideDataVote
      */
-    public function testVote(TokenInterface $token, ?object $subject, string $attribute, mixed $expected): void
+    public function testVote(array $storedObjectVotersDefinition, object $subject, string $attribute, bool $fallbackSecurityExpected, bool $securityIsGrantedResult, mixed $expected): void
     {
-        $voter = new StoredObjectVoter();
+        $storedObjectVoters = array_map(fn (array $definition) => $this->buildStoredObjectVoter($definition[0], $definition[1], $definition[2]), $storedObjectVotersDefinition);
+        $token = new UsernamePasswordToken(new User(), 'chill_main', ['ROLE_USER']);
+
+        $security = $this->createMock(Security::class);
+        $security->expects($fallbackSecurityExpected ? $this->atLeastOnce() : $this->never())
+            ->method('isGranted')
+            ->with($this->logicalOr($this->identicalTo('ROLE_USER'), $this->identicalTo('ROLE_ADMIN')))
+            ->willReturn($securityIsGrantedResult);
+
+        $voter = new StoredObjectVoter($security, $storedObjectVoters);
 
         self::assertEquals($expected, $voter->vote($token, $subject, [$attribute]));
     }
 
-    public function provideDataVote(): iterable
+    private function buildStoredObjectVoter(bool $supportsIsCalled, bool $supports, bool $voteOnAttribute): StoredObjectVoterInterface
+    {
+        $storedObjectVoter = $this->createMock(StoredObjectVoterInterface::class);
+        $storedObjectVoter->expects($supportsIsCalled ? $this->once() : $this->never())->method('supports')
+            ->with(self::isInstanceOf(StoredObjectRoleEnum::class), $this->isInstanceOf(StoredObject::class))
+            ->willReturn($supports);
+        $storedObjectVoter->expects($supportsIsCalled && $supports ? $this->once() : $this->never())->method('voteOnAttribute')
+            ->with(self::isInstanceOf(StoredObjectRoleEnum::class), $this->isInstanceOf(StoredObject::class), $this->isInstanceOf(TokenInterface::class))
+            ->willReturn($voteOnAttribute);
+
+        return $storedObjectVoter;
+    }
+
+    public static function provideDataVote(): iterable
     {
         yield [
-            $this->buildToken(StoredObjectRoleEnum::EDIT, new StoredObject()),
+            // we try with something else than a SToredObject, the voter should abstain
+            [[false, false, false]],
             new \stdClass(),
             'SOMETHING',
+            false,
+            false,
             VoterInterface::ACCESS_ABSTAIN,
         ];
-
         yield [
-            $this->buildToken(StoredObjectRoleEnum::EDIT, $so = new StoredObject()),
-            $so,
+            // we try with an unsupported attribute, the voter must abstain
+            [[false, false, false]],
+            new StoredObject(),
             'SOMETHING',
+            false,
+            false,
             VoterInterface::ACCESS_ABSTAIN,
         ];
-
         yield [
-            $this->buildToken(StoredObjectRoleEnum::EDIT, $so = new StoredObject()),
-            $so,
-            StoredObjectRoleEnum::SEE->value,
-            VoterInterface::ACCESS_GRANTED,
-        ];
-
-        yield [
-            $this->buildToken(StoredObjectRoleEnum::EDIT, $so = new StoredObject()),
-            $so,
-            StoredObjectRoleEnum::EDIT->value,
-            VoterInterface::ACCESS_GRANTED,
-        ];
-
-        yield [
-            $this->buildToken(StoredObjectRoleEnum::SEE, $so = new StoredObject()),
-            $so,
-            StoredObjectRoleEnum::EDIT->value,
-            VoterInterface::ACCESS_DENIED,
-        ];
-
-        yield [
-            $this->buildToken(StoredObjectRoleEnum::SEE, $so = new StoredObject()),
-            $so,
-            StoredObjectRoleEnum::SEE->value,
-            VoterInterface::ACCESS_GRANTED,
-        ];
-
-        yield [
-            $this->buildToken(null, null),
+            // happy scenario: there is a role voter
+            [[true, true, true]],
             new StoredObject(),
             StoredObjectRoleEnum::SEE->value,
-            VoterInterface::ACCESS_DENIED,
+            false,
+            false,
+            VoterInterface::ACCESS_GRANTED,
         ];
-
         yield [
-            $this->buildToken(null, null),
+            // there is a role voter, but not allowed to see the stored object
+            [[true, true, false]],
             new StoredObject(),
             StoredObjectRoleEnum::SEE->value,
+            false,
+            false,
             VoterInterface::ACCESS_DENIED,
         ];
-    }
-
-    private function buildToken(?StoredObjectRoleEnum $storedObjectRoleEnum = null, ?StoredObject $storedObject = null): TokenInterface
-    {
-        $token = $this->prophesize(TokenInterface::class);
-
-        if (null !== $storedObjectRoleEnum) {
-            $token->hasAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)->willReturn(true);
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)->willReturn($storedObjectRoleEnum);
-        } else {
-            $token->hasAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)->willReturn(false);
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::ACTIONS)->willThrow(new \InvalidArgumentException());
-        }
-
-        if (null !== $storedObject) {
-            $token->hasAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)->willReturn(true);
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)->willReturn($storedObject->getUuid()->toString());
-        } else {
-            $token->hasAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)->willReturn(false);
-            $token->getAttribute(DavTokenAuthenticationEventSubscriber::STORED_OBJECT)->willThrow(new \InvalidArgumentException());
-        }
-
-        return $token->reveal();
+        yield [
+            // there is no role voter, fallback to security, which does not grant access
+            [[true, false, false]],
+            new StoredObject(),
+            StoredObjectRoleEnum::SEE->value,
+            true,
+            false,
+            VoterInterface::ACCESS_DENIED,
+        ];
+        yield [
+            // there is no role voter, fallback to security, which does grant access
+            [[true, false, false]],
+            new StoredObject(),
+            StoredObjectRoleEnum::SEE->value,
+            true,
+            true,
+            VoterInterface::ACCESS_GRANTED,
+        ];
     }
 }

From 31f842471aa68d680d61a397b43f6ea612897b8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 17:53:06 +0200
Subject: [PATCH 090/375] Refactor authorization for
 AccompanyingPeriodWorkEvaluationDocuments

The AccompanyingPeriodWorkEvaluationStoredObjectVoter has been updated to use the AccompanyingPeriodWorkEvaluationDocument-related classes instead of the AccompanyingPeriodWork classes. Additionally, a new voters class, AccompanyingPeriodWorkEvaluationDocumentVoter has been created. Changes are also made in the repository to find the associated entity in the AccompanyingPeriodWorkEvaluationDocument repository instead of the AccompanyingPeriodWork repository.
---
 ...rkEvaluationDocumentStoredObjectVoter.php} | 16 +++++++-------
 ...PeriodWorkEvaluationDocumentRepository.php | 22 +++++++++++++++++--
 .../AccompanyingPeriodWorkRepository.php      | 17 +-------------
 ...nyingPeriodWorkEvaluationDocumentVoter.php |  8 ++++++-
 .../AccompanyingPeriodWorkEvaluationVoter.php |  4 ++++
 5 files changed, 40 insertions(+), 27 deletions(-)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/{AccompanyingPeriodWorkEvaluationStoredObjectVoter.php => AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php} (74%)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
similarity index 74%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
index 7ba7e276e..d9eb4a843 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
@@ -14,15 +14,15 @@ namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
-use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
-use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
-use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
+use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
 use Symfony\Component\Security\Core\Security;
 
-class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredObjectVoter
+class AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter extends AbstractStoredObjectVoter
 {
     public function __construct(
-        private readonly AccompanyingPeriodWorkRepository $repository,
+        private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
         Security $security,
         WorkflowDocumentService $workflowDocumentService
     ) {
@@ -36,14 +36,14 @@ class AccompanyingPeriodWorkEvaluationStoredObjectVoter extends AbstractStoredOb
 
     protected function getClass(): string
     {
-        return AccompanyingPeriodWork::class;
+        return AccompanyingPeriodWorkEvaluationDocument::class;
     }
 
     protected function attributeToRole(StoredObjectRoleEnum $attribute): string
     {
         return match ($attribute) {
-            StoredObjectRoleEnum::SEE => AccompanyingPeriodWorkVoter::SEE,
-            StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkVoter::UPDATE,
+            StoredObjectRoleEnum::SEE => AccompanyingPeriodWorkEvaluationDocumentVoter::SEE,
+            StoredObjectRoleEnum::EDIT => AccompanyingPeriodWorkEvaluationDocumentVoter::SEE_AND_EDIT,
         };
     }
 
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 59bb3f915..5da541cf8 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -11,14 +11,18 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
 use Doctrine\Persistence\ObjectRepository;
 
-class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository
+readonly class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
-    private readonly EntityRepository $repository;
+    private EntityRepository $repository;
 
     public function __construct(EntityManagerInterface $em)
     {
@@ -58,4 +62,18 @@ class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectReposi
     {
         return AccompanyingPeriodWorkEvaluationDocument::class;
     }
+
+    /**
+     * @throws NonUniqueResultException
+     */
+    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?AccompanyingPeriodWorkEvaluationDocument
+    {
+        $qb = $this->repository->createQueryBuilder('acpwed');
+        $query = $qb
+            ->where('acpwed.storedObject = :storedObject')
+            ->setParameter('storedObject', $storedObject)
+            ->getQuery();
+
+        return $query->getOneOrNullResult();
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
index 324c3c176..95b995e74 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
@@ -11,8 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
-use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\MainBundle\Entity\User;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
@@ -24,7 +22,7 @@ use Doctrine\ORM\Query\ResultSetMappingBuilder;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-final readonly class AccompanyingPeriodWorkRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
+final readonly class AccompanyingPeriodWorkRepository implements ObjectRepository
 {
     private EntityRepository $repository;
 
@@ -253,17 +251,4 @@ final readonly class AccompanyingPeriodWorkRepository implements ObjectRepositor
 
         return $qb;
     }
-
-    public function findAssociatedEntityToStoredObject(StoredObject $storedObject): ?AccompanyingPeriodWork
-    {
-        $qb = $this->repository->createQueryBuilder('acpw');
-        $query = $qb
-            ->join('acpw.accompanyingPeriodWorkEvaluations', 'acpwe')
-            ->join('acpwe.documents', 'acpwed')
-            ->where('acpwed.storedObject = :storedObject')
-            ->setParameter('storedObject', $storedObject)
-            ->getQuery();
-
-        return $query->getOneOrNullResult();
-    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
index 97ca84a13..0e9f4201c 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationDocumentVoter.php
@@ -24,13 +24,14 @@ use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
 {
     final public const SEE = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_DOCUMENT_SHOW';
+    final public const SEE_AND_EDIT = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_DOCUMENT_EDIT';
 
     public function __construct(private readonly AccessDecisionManagerInterface $accessDecisionManager) {}
 
     public function supports($attribute, $subject): bool
     {
         return $subject instanceof AccompanyingPeriodWorkEvaluationDocument
-            && self::SEE === $attribute;
+            && (self::SEE === $attribute || self::SEE_AND_EDIT === $attribute);
     }
 
     /**
@@ -47,6 +48,11 @@ class AccompanyingPeriodWorkEvaluationDocumentVoter extends Voter
                 [AccompanyingPeriodWorkEvaluationVoter::SEE],
                 $subject->getAccompanyingPeriodWorkEvaluation()
             ),
+            self::SEE_AND_EDIT => $this->accessDecisionManager->decide(
+                $token,
+                [AccompanyingPeriodWorkEvaluationVoter::SEE_AND_EDIT],
+                $subject->getAccompanyingPeriodWorkEvaluation()
+            ),
             default => throw new \UnexpectedValueException("The attribute {$attribute} is not supported"),
         };
     }
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationVoter.php
index ce5faca8d..bea63018c 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkEvaluationVoter.php
@@ -21,11 +21,14 @@ class AccompanyingPeriodWorkEvaluationVoter extends Voter implements ChillVoterI
 {
     final public const ALL = [
         self::SEE,
+        self::SEE_AND_EDIT,
         self::STATS,
     ];
 
     final public const SEE = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_SHOW';
 
+    final public const SEE_AND_EDIT = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_EDIT';
+
     final public const STATS = 'CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_EVALUATION_STATS';
 
     public function __construct(private readonly Security $security) {}
@@ -45,6 +48,7 @@ class AccompanyingPeriodWorkEvaluationVoter extends Voter implements ChillVoterI
         return match ($attribute) {
             self::STATS => $this->security->isGranted(AccompanyingPeriodVoter::STATS, $subject),
             self::SEE => $this->security->isGranted(AccompanyingPeriodWorkVoter::SEE, $subject->getAccompanyingPeriodWork()),
+            self::SEE_AND_EDIT => $this->security->isGranted(AccompanyingPeriodWorkVoter::UPDATE, $subject->getAccompanyingPeriodWork()),
             default => throw new \UnexpectedValueException("attribute {$attribute} is not supported"),
         };
     }

From 9e92ede16f61211bc9a2d2a054ed6a212a8a9c9f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 18:58:08 +0200
Subject: [PATCH 091/375] Handle cases when there are multiple EntityWorkflows
 associated with one entity

---
 .../Service/WorkflowDocumentService.php            |  8 ++------
 .../AccompanyingCourseDocumentWorkflowHandler.php  |  4 ++--
 .../Workflow/EntityWorkflowRepository.php          |  5 ++++-
 .../Workflow/EntityWorkflowHandlerInterface.php    |  5 ++++-
 .../Workflow/EntityWorkflowManager.php             | 11 ++++++++---
 ...nyingPeriodWorkEvaluationDocumentRepository.php |  1 -
 ...PeriodWorkEvaluationDocumentWorkflowHandler.php |  4 ++--
 ...mpanyingPeriodWorkEvaluationWorkflowHandler.php | 14 +++++++-------
 .../AccompanyingPeriodWorkWorkflowHandler.php      |  4 ++--
 9 files changed, 31 insertions(+), 25 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
index 78c7b7b7d..3444653b1 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
@@ -11,7 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service;
 
-use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 
@@ -21,13 +20,10 @@ class WorkflowDocumentService
 
     public function notBlockedByWorkflow(object $entity): bool
     {
-        /**
-         * @var EntityWorkflow
-         */
-        $workflow = $this->entityWorkflowManager->findByRelatedEntity($entity);
+        $workflows = $this->entityWorkflowManager->findByRelatedEntity($entity);
         $currentUser = $this->security->getUser();
 
-        if (null != $workflow) {
+        foreach ($workflows as $workflow) {
             if ($workflow->isFinal()) {
                 return false;
             }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index 74e51b19e..59d2718c8 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -121,10 +121,10 @@ readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkfl
         return false;
     }
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    public function findByRelatedEntity(object $object): array
     {
         if (!$object instanceof AccompanyingCourseDocument) {
-            return null;
+            return [];
         }
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingCourseDocument::class, $object->getId());
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index dba68ee41..81cdcd551 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -99,7 +99,10 @@ class EntityWorkflowRepository implements ObjectRepository
         return $this->repository->findAll();
     }
 
-    public function findByRelatedEntity($entityClass, $relatedEntityId): ?EntityWorkflow
+    /**
+     * @return list<EntityWorkflow>
+     */
+    public function findByRelatedEntity($entityClass, $relatedEntityId): array
     {
         $qb = $this->repository->createQueryBuilder('w');
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
index bff1057c8..ebe412587 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
@@ -52,5 +52,8 @@ interface EntityWorkflowHandlerInterface
 
     public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool;
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow;
+    /**
+     * @return list<EntityWorkflow>
+     */
+    public function findByRelatedEntity(object $object): array;
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 26c31506f..a5b9b6a23 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -38,12 +38,17 @@ class EntityWorkflowManager
         return $this->registry->all($entityWorkflow);
     }
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    /**
+     * @return list<EntityWorkflow>
+     */
+    public function findByRelatedEntity(object $object): array
     {
         foreach ($this->handlers as $handler) {
-            return $handler->findByRelatedEntity($object);
+            if ([] !== $workflows = $handler->findByRelatedEntity($object)) {
+                return $workflows;
+            }
         }
 
-        return null;
+        return [];
     }
 }
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index 5da541cf8..e3a484f0b 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -13,7 +13,6 @@ namespace Chill\PersonBundle\Repository\AccompanyingPeriod;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
-use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 34f8db4a7..cc59a509b 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -135,10 +135,10 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
         return false;
     }
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    public function findByRelatedEntity(object $object): array
     {
         if (!$object instanceof AccompanyingPeriodWorkEvaluationDocument) {
-            return null;
+            return [];
         }
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluationDocument::class, $object->getId());
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index e007f03f7..a9897f9bd 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -21,13 +21,13 @@ use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvalu
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationVoter;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
-class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowHandlerInterface
+readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowHandlerInterface
 {
     public function __construct(
-        private readonly AccompanyingPeriodWorkEvaluationRepository $repository,
-        private readonly EntityWorkflowRepository $workflowRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly TranslatorInterface $translator
+        private AccompanyingPeriodWorkEvaluationRepository $repository,
+        private EntityWorkflowRepository $workflowRepository,
+        private TranslatableStringHelperInterface $translatableStringHelper,
+        private TranslatorInterface $translator
     ) {}
 
     public function getDeletionRoles(): array
@@ -121,10 +121,10 @@ class AccompanyingPeriodWorkEvaluationWorkflowHandler implements EntityWorkflowH
         return false;
     }
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    public function findByRelatedEntity(object $object): array
     {
         if (!$object instanceof AccompanyingPeriodWorkEvaluation) {
-            return null;
+            return [];
         }
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluation::class, $object->getId());
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index d40080e33..cb9462b9e 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -128,10 +128,10 @@ class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHandlerInte
         return false;
     }
 
-    public function findByRelatedEntity(object $object): ?EntityWorkflow
+    public function findByRelatedEntity(object $object): array
     {
         if (!$object instanceof AccompanyingPeriodWork) {
-            return null;
+            return [];
         }
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWork::class, $object->getId());

From 747a1de32185be597784962d7637151d65c16ce5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 18:58:44 +0200
Subject: [PATCH 092/375] Add locale requirement to search route, to avoid
 conflict with profiler route

Introduces a locale requirement to the search route in the ChillMainBundle. This update specifies that a valid locale should consist of 1 to 3 lowercase alphabetic characters. This change will help constrain acceptable locale values.
---
 src/Bundle/ChillMainBundle/Controller/SearchController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/SearchController.php b/src/Bundle/ChillMainBundle/Controller/SearchController.php
index 4c4b6d22c..09e558b0a 100644
--- a/src/Bundle/ChillMainBundle/Controller/SearchController.php
+++ b/src/Bundle/ChillMainBundle/Controller/SearchController.php
@@ -96,7 +96,7 @@ class SearchController extends AbstractController
         return $this->render('@ChillMain/Search/choose_list.html.twig');
     }
 
-    #[\Symfony\Component\Routing\Annotation\Route(path: '/{_locale}/search.{_format}', name: 'chill_main_search', requirements: ['_format' => 'html|json'], defaults: ['_format' => 'html'])]
+    #[\Symfony\Component\Routing\Annotation\Route(path: '/{_locale}/search.{_format}', name: 'chill_main_search', requirements: ['_format' => 'html|json', '_locale' => '[a-z]{1,3}'], defaults: ['_format' => 'html'])]
     public function searchAction(Request $request, mixed $_format)
     {
         $pattern = trim((string) $request->query->get('q', ''));

From ca68b5824637404d5cf9ee3e822d65280ff9b4c1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 19:09:29 +0200
Subject: [PATCH 093/375] Move classes to dedicated bundle, and avoid plural
 for namespace name

---
 .../Security/Authorization/ActivityStoredObjectVoter.php       | 2 +-
 .../AbstractStoredObjectVoter.php                              | 2 +-
 .../AccompanyingCourseDocumentStoredObjectVoter.php            | 2 +-
 .../PersonDocumentStoredObjectVoter.php                        | 2 +-
 .../Security/Authorization/AbstractStoredObjectVoterTest.php   | 3 +--
 .../Security/Authorization/EventStoredObjectVoter.php          | 2 +-
 ...companyingPeriodWorkEvaluationDocumentStoredObjectVoter.php | 3 ++-
 7 files changed, 8 insertions(+), 8 deletions(-)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/{StoredObjectVoters => StoredObjectVoter}/AbstractStoredObjectVoter.php (99%)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/{StoredObjectVoters => StoredObjectVoter}/AccompanyingCourseDocumentStoredObjectVoter.php (99%)
 rename src/Bundle/ChillDocStoreBundle/Security/Authorization/{StoredObjectVoters => StoredObjectVoter}/PersonDocumentStoredObjectVoter.php (99%)
 rename src/Bundle/{ChillDocStoreBundle/Security/Authorization/StoredObjectVoters => ChillPersonBundle/Security/Authorization/StoredObjectVoter}/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php (91%)

diff --git a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
index be3013a08..f57df2a30 100644
--- a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
@@ -15,7 +15,7 @@ use Chill\ActivityBundle\Entity\Activity;
 use Chill\ActivityBundle\Repository\ActivityRepository;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Symfony\Component\Security\Core\Security;
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
similarity index 99%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
index 24def7ca9..293473b7e 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AbstractStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
@@ -9,7 +9,7 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
similarity index 99%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
index 2665553e8..75035474d 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -9,7 +9,7 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
similarity index 99%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
rename to src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
index 5791d724b..e0d6108af 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/PersonDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
@@ -9,7 +9,7 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter;
 
 use Chill\DocStoreBundle\Entity\PersonDocument;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index 24370c2db..a545a6a2e 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -11,11 +11,10 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Tests\Security\Authorization;
 
-use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
diff --git a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index 8dda94aad..eec707b8e 100644
--- a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -13,7 +13,7 @@ namespace Chill\EventBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters\AbstractStoredObjectVoter;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\EventBundle\Entity\Event;
 use Chill\EventBundle\Repository\EventRepository;
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
similarity index 91%
rename from src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
rename to src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
index d9eb4a843..979edd4f6 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoters/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
@@ -9,10 +9,11 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Chill\DocStoreBundle\Security\Authorization\StoredObjectVoters;
+namespace Chill\PersonBundle\Security\Authorization\StoredObjectVoter;
 
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
 use Chill\DocStoreBundle\Service\WorkflowDocumentService;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;

From d5e499198240a083f0fb81801d363fe31b1191e7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 19:14:01 +0200
Subject: [PATCH 094/375] Rename WorkflowDocumentService to
 WorkflowStoredObjectPermissionHelper

The previous name, WorkflowDocumentService, was misleading as its functionality extends to all stored objects and not limited to documents. Therefore, it was renamed to WorkflowStoredObjectPermissionHelper. Consequently, all references to this service were updated throughout the codebase.
---
 .../Authorization/ActivityStoredObjectVoter.php        |  4 ++--
 .../StoredObjectVoter/AbstractStoredObjectVoter.php    |  4 ++--
 .../AccompanyingCourseDocumentStoredObjectVoter.php    |  4 ++--
 .../PersonDocumentStoredObjectVoter.php                |  4 ++--
 ...ce.php => WorkflowStoredObjectPermissionHelper.php} |  2 +-
 .../Authorization/AbstractStoredObjectVoterTest.php    | 10 +++++-----
 .../Security/Authorization/EventStoredObjectVoter.php  |  4 ++--
 ...ngPeriodWorkEvaluationDocumentStoredObjectVoter.php |  4 ++--
 8 files changed, 18 insertions(+), 18 deletions(-)
 rename src/Bundle/ChillDocStoreBundle/Service/{WorkflowDocumentService.php => WorkflowStoredObjectPermissionHelper.php} (95%)

diff --git a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
index f57df2a30..4be101c45 100644
--- a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
@@ -16,7 +16,7 @@ use Chill\ActivityBundle\Repository\ActivityRepository;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Symfony\Component\Security\Core\Security;
 
 class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
@@ -24,7 +24,7 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly ActivityRepository $repository,
         Security $security,
-        WorkflowDocumentService $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
index 293473b7e..2e76da318 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
@@ -15,7 +15,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Security;
 
@@ -34,7 +34,7 @@ abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
 
     public function __construct(
         private readonly Security $security,
-        private readonly ?WorkflowDocumentService $workflowDocumentService = null,
+        private readonly ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null,
     ) {}
 
     public function supports(StoredObjectRoleEnum $attribute, StoredObject $subject): bool
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
index 75035474d..0f7015b10 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -16,7 +16,7 @@ use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Symfony\Component\Security\Core\Security;
 
 final class AccompanyingCourseDocumentStoredObjectVoter extends AbstractStoredObjectVoter
@@ -24,7 +24,7 @@ final class AccompanyingCourseDocumentStoredObjectVoter extends AbstractStoredOb
     public function __construct(
         private readonly AccompanyingCourseDocumentRepository $repository,
         Security $security,
-        WorkflowDocumentService $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
index e0d6108af..577f362ef 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
@@ -16,7 +16,7 @@ use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Repository\PersonDocumentRepository;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Symfony\Component\Security\Core\Security;
 
 class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
@@ -24,7 +24,7 @@ class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly PersonDocumentRepository $repository,
         Security $security,
-        WorkflowDocumentService $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
similarity index 95%
rename from src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
rename to src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
index 3444653b1..519eee8de 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowDocumentService.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
@@ -14,7 +14,7 @@ namespace Chill\DocStoreBundle\Service;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 
-class WorkflowDocumentService
+class WorkflowStoredObjectPermissionHelper
 {
     public function __construct(private readonly Security $security, private readonly EntityWorkflowManager $entityWorkflowManager) {}
 
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index a545a6a2e..4f420223a 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -15,7 +15,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
@@ -30,16 +30,16 @@ class AbstractStoredObjectVoterTest extends TestCase
 {
     private AssociatedEntityToStoredObjectInterface $repository;
     private Security $security;
-    private WorkflowDocumentService $workflowDocumentService;
+    private WorkflowStoredObjectPermissionHelper $workflowDocumentService;
 
     protected function setUp(): void
     {
         $this->repository = $this->createMock(AssociatedEntityToStoredObjectInterface::class);
         $this->security = $this->createMock(Security::class);
-        $this->workflowDocumentService = $this->createMock(WorkflowDocumentService::class);
+        $this->workflowDocumentService = $this->createMock(WorkflowStoredObjectPermissionHelper::class);
     }
 
-    private function buildStoredObjectVoter(bool $canBeAssociatedWithWorkflow, AssociatedEntityToStoredObjectInterface $repository, Security $security, ?WorkflowDocumentService $workflowDocumentService = null): AbstractStoredObjectVoter
+    private function buildStoredObjectVoter(bool $canBeAssociatedWithWorkflow, AssociatedEntityToStoredObjectInterface $repository, Security $security, ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null): AbstractStoredObjectVoter
     {
         // Anonymous class extending the abstract class
         return new class ($canBeAssociatedWithWorkflow, $repository, $security, $workflowDocumentService) extends AbstractStoredObjectVoter {
@@ -47,7 +47,7 @@ class AbstractStoredObjectVoterTest extends TestCase
                 private bool $canBeAssociatedWithWorkflow,
                 private AssociatedEntityToStoredObjectInterface $repository,
                 Security $security,
-                ?WorkflowDocumentService $workflowDocumentService = null
+                ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null
             ) {
                 parent::__construct($security, $workflowDocumentService);
             }
diff --git a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index eec707b8e..66f54bc6d 100644
--- a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -14,7 +14,7 @@ namespace Chill\EventBundle\Security\Authorization;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Chill\EventBundle\Entity\Event;
 use Chill\EventBundle\Repository\EventRepository;
 use Symfony\Component\Security\Core\Security;
@@ -24,7 +24,7 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly EventRepository $repository,
         Security $security,
-        WorkflowDocumentService $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
index 979edd4f6..4a81367d7 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
@@ -14,7 +14,7 @@ namespace Chill\PersonBundle\Security\Authorization\StoredObjectVoter;
 use Chill\DocStoreBundle\Repository\AssociatedEntityToStoredObjectInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStoredObjectVoter;
-use Chill\DocStoreBundle\Service\WorkflowDocumentService;
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
@@ -25,7 +25,7 @@ class AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter extends Abstract
     public function __construct(
         private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
         Security $security,
-        WorkflowDocumentService $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService
     ) {
         parent::__construct($security, $workflowDocumentService);
     }

From d689ce9aef392ad4c6f973333096ddbd4d4651d9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 19:14:17 +0200
Subject: [PATCH 095/375] Fix condition for checking if the user is allowed to
 edit a document attached to a workflow

---
 .../Service/WorkflowStoredObjectPermissionHelper.php          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
index 519eee8de..b27b6d96a 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
@@ -28,8 +28,8 @@ class WorkflowStoredObjectPermissionHelper
                 return false;
             }
 
-            if ($workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
-                return true;
+            if (!$workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+                return false;
             }
         }
 

From 9f88eef2493c0cac48ffe29524c14db36aae83ff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 21:25:22 +0200
Subject: [PATCH 096/375] Fix permission logic in StoredObjectNormalizer

The logic for checking 'see' and 'edit' permissions within the StoredObjectNormalizer has been updated. It now correctly refers to the value of the StoredObjectRoleEnum to check access rights.
---
 .../Serializer/Normalizer/StoredObjectNormalizer.php          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index 17597901d..ebd7d3564 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -57,8 +57,8 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
         // deprecated property
         $datas['creationDate'] = $datas['createdAt'];
 
-        $canSee = $this->security->isGranted(StoredObjectRoleEnum::SEE, $object);
-        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT, $object);
+        $canSee = $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $object);
+        $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $object);
 
         if ($canSee || $canEdit) {
             $accessToken = $this->JWTDavTokenProvider->createToken(

From 873940786fc4cb727fc202cebd553a5cbb2fcc63 Mon Sep 17 00:00:00 2001
From: LenaertsJ <julie.lenaerts@champs-libres.coop>
Date: Thu, 18 Jul 2024 13:51:08 +0000
Subject: [PATCH 097/375] Signature zone within workflow

---
 .../unreleased/Feature-20240718-151233.yaml   |  5 ++
 .../Controller/WorkflowController.php         | 66 +++++++++++++------
 .../ChillMainExtension.php                    |  5 ++
 .../DependencyInjection/Configuration.php     | 22 +++++++
 .../Form/WorkflowSignatureMetadataType.php    | 62 +++++++++++++++++
 .../views/Workflow/_signature.html.twig       | 19 ++++++
 .../Workflow/_signature_metadata.html.twig    | 24 +++++++
 .../Resources/views/Workflow/index.html.twig  |  3 +
 .../Workflow/person_signature_form.html.twig  |  0
 .../ChillMainBundle/config/services/form.yaml |  2 +
 .../translations/messages.fr.yml              |  9 +++
 11 files changed, 198 insertions(+), 19 deletions(-)
 create mode 100644 .changes/unreleased/Feature-20240718-151233.yaml
 create mode 100644 src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/person_signature_form.html.twig

diff --git a/.changes/unreleased/Feature-20240718-151233.yaml b/.changes/unreleased/Feature-20240718-151233.yaml
new file mode 100644
index 000000000..6e2666be8
--- /dev/null
+++ b/.changes/unreleased/Feature-20240718-151233.yaml
@@ -0,0 +1,5 @@
+kind: Feature
+body: Metadata form added for person signatures
+time: 2024-07-18T15:12:33.8134266+02:00
+custom:
+  Issue: "288"
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 6898d87e4..cdd432cf7 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -13,9 +13,9 @@ namespace Chill\MainBundle\Controller;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowComment;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
-use Chill\MainBundle\Form\EntityWorkflowCommentType;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Form\WorkflowSignatureMetadataType;
 use Chill\MainBundle\Form\WorkflowStepType;
 use Chill\MainBundle\Pagination\PaginatorFactory;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
@@ -289,6 +289,7 @@ class WorkflowController extends AbstractController
         $handler = $this->entityWorkflowManager->getHandler($entityWorkflow);
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $errors = [];
+        $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
 
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
@@ -341,22 +342,6 @@ class WorkflowController extends AbstractController
             }
         }
 
-        /*
-        $commentForm = $this->createForm(EntityWorkflowCommentType::class, $newComment = new EntityWorkflowComment());
-        $commentForm->handleRequest($request);
-
-        if ($commentForm->isSubmitted() && $commentForm->isValid()) {
-            $this->entityManager->persist($newComment);
-            $this->entityManager->flush();
-
-            $this->addFlash('success', $this->translator->trans('workflow.Comment added'));
-
-            return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
-        } elseif ($commentForm->isSubmitted() && !$commentForm->isValid()) {
-            $this->addFlash('error', $this->translator->trans('This form contains errors'));
-        }
-         */
-
         return $this->render(
             '@ChillMain/Workflow/index.html.twig',
             [
@@ -366,7 +351,7 @@ class WorkflowController extends AbstractController
                 'transition_form' => isset($transitionForm) ? $transitionForm->createView() : null,
                 'entity_workflow' => $entityWorkflow,
                 'transition_form_errors' => $errors,
-                // 'comment_form' => $commentForm->createView(),
+                'signatures' => $signatures,
             ]
         );
     }
@@ -385,4 +370,47 @@ class WorkflowController extends AbstractController
 
         return $lines;
     }
+
+    #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/metadata', name: 'chill_main_workflow_signature_metadata')]
+    public function addSignatureMetadata(int $signature_id, Request $request): Response
+    {
+        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
+
+        if ($signature->getSigner() instanceof User) {
+            return $this->redirectToRoute('signature_route_user');
+        }
+
+        $metadataForm = $this->createForm(WorkflowSignatureMetadataType::class);
+        $metadataForm->add('submit', SubmitType::class, ['label' => $this->translator->trans('Save')]);
+
+        $metadataForm->handleRequest($request);
+
+        if ($metadataForm->isSubmitted() && $metadataForm->isValid()) {
+            $data = $metadataForm->getData();
+
+            $signature->setSignatureMetadata(
+                [
+                    'base_signer' => [
+                        'document_type' => $data['documentType'],
+                        'document_number' => $data['documentNumber'],
+                        'expiration_date' => $data['expirationDate'],
+                    ],
+                ]
+            );
+
+            $this->entityManager->persist($signature);
+            $this->entityManager->flush();
+
+            // Todo should redirect to document for actual signing? To be adjusted still
+            return $this->redirectToRoute('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()]);
+        }
+
+        return $this->render(
+            '@ChillMain/Workflow/_signature_metadata.html.twig',
+            [
+                'metadata_form' => $metadataForm->createView(),
+                'person' => $signature->getSigner(),
+            ]
+        );
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 4dde2076c..bf041b5b3 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -193,6 +193,11 @@ class ChillMainExtension extends Extension implements
                 []
         );
 
+        $container->setParameter(
+            'chill_main.id_document_kinds',
+            $config['id_document_kinds']
+        );
+
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
         $loader->load('services/doctrine.yaml');
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 8bd3e35f4..9c890d9fe 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -151,6 +151,28 @@ class Configuration implements ConfigurationInterface
             ->append($this->addWidgetsConfiguration('homepage', $this->containerBuilder))
             ->end() // end of widgets/children
             ->end() // end of widgets
+            ->arrayNode('id_document_kinds')->defaultValue([])
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('key')->isRequired()->cannotBeEmpty()
+            ->info('the key stored in database')
+            ->example('id_card')
+            ->end()
+            ->arrayNode('labels')->isRequired()->requiresAtLeastOneElement()
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('lang')->isRequired()->cannotBeEmpty()
+            ->example('fr')
+            ->end()
+            ->scalarNode('label')->isRequired()->cannotBeEmpty()
+            ->example('Carte de séjour')
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end() // end of document types
             ->arrayNode('cruds')
             ->defaultValue([])
             ->arrayPrototype()
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
new file mode 100644
index 000000000..47be9b88c
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
@@ -0,0 +1,62 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Form;
+
+use Chill\MainBundle\Form\Type\ChillDateType;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
+use Symfony\Component\Form\AbstractType;
+use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
+use Symfony\Component\Form\Extension\Core\Type\TextType;
+use Symfony\Component\Form\FormBuilderInterface;
+
+class WorkflowSignatureMetadataType extends AbstractType
+{
+    public function __construct(private readonly ParameterBagInterface $parameterBag, private readonly TranslatableStringHelperInterface $translatableStringHelper) {}
+
+    public function buildForm(FormBuilderInterface $builder, array $options): void
+    {
+        $documentTypeChoices = $this->parameterBag->get('chill_main.id_document_kinds');
+
+        $choices = [];
+
+        foreach ($documentTypeChoices as $documentType) {
+            $labels = [];
+
+            foreach ($documentType['labels'] as $label) {
+                $labels[$label['lang']] = $label['label'];
+            }
+
+            $localizedLabel = $this->translatableStringHelper->localize($labels);
+            if (null !== $localizedLabel) {
+                $choices[$localizedLabel] = $documentType['key'];
+            }
+        }
+
+        $builder
+            ->add('documentType', ChoiceType::class, [
+                'label' => 'workflow.signature_zone.metadata.docType',
+                'expanded' => false,
+                'required' => true,
+                'choices' => $choices,
+            ])
+            ->add('documentNumber', TextType::class, [
+                'required' => true,
+                'label' => 'workflow.signature_zone.metadata.docNumber',
+            ])
+            ->add('expirationDate', ChillDateType::class, [
+                'required' => true,
+                'input' => 'datetime_immutable',
+                'label' => 'workflow.signature_zone.metadata.docExpiration',
+            ]);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
new file mode 100644
index 000000000..a61808500
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -0,0 +1,19 @@
+<h2>{{ 'workflow.signature_zone.title'|trans }}</h2>
+
+<div class="flex-table justify-content-center">
+    <div class="item-bloc">
+        {% for s in signatures %}
+            <div class="item-row mb-2">
+                    <div class="col-sm-6"><span>{{ s.signer|chill_entity_render_box }}</span></div>
+            <div class="col-sm-6">
+                <a class="btn btn-show" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}">{{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                {% if s.state is same as('signed') %}
+                    <p class="updatedBy">{{ s.stateDate }}</p>
+                {% endif %}
+                </div>
+            </div>
+        {% endfor %}
+    </div>
+</div>
+
+
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig
new file mode 100644
index 000000000..5b828832d
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig
@@ -0,0 +1,24 @@
+{% extends '@ChillMain/layout.html.twig' %}
+
+{% block title %}
+    {{ 'Signature'|trans }}
+{% endblock %}
+
+{% block content %}
+<div class="col-10 workflow">
+    <h1 class="mb-5">{{ 'workflow.signature_zone.metadata.sign_by'|trans({ '%name%' : person.firstname ~ ' ' ~ person.lastname}) }}</h1>
+
+    {% if metadata_form is not null %}
+        {{ form_start(metadata_form) }}
+        {{ form_row(metadata_form.documentType) }}
+        {{ form_row(metadata_form.documentNumber) }}
+        {{ form_row(metadata_form.expirationDate) }}
+        <ul class="record_actions">
+            <li>
+            {{ form_widget(metadata_form.submit, { 'attr' : { 'class' : 'btn btn-submit' }} ) }}
+            </li>
+        </ul>
+        {{ form_end(metadata_form) }}
+    {% endif %}
+</div>
+{% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 782eae136..da4d073b2 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -57,6 +57,9 @@
     </section>
 
     <section class="step my-4">{% include '@ChillMain/Workflow/_follow.html.twig' %}</section>
+    {% if signatures|length > 0 %}
+        <section class="step my-4">{% include '@ChillMain/Workflow/_signature.html.twig' %}</section>
+    {% endif %}
     <section class="step my-4">{% include '@ChillMain/Workflow/_decision.html.twig' %}</section>{#
     <section class="step my-4">{% include '@ChillMain/Workflow/_comment.html.twig' %}</section> #}
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/person_signature_form.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/person_signature_form.html.twig
new file mode 100644
index 000000000..e69de29bb
diff --git a/src/Bundle/ChillMainBundle/config/services/form.yaml b/src/Bundle/ChillMainBundle/config/services/form.yaml
index ce303701c..f6b50cb57 100644
--- a/src/Bundle/ChillMainBundle/config/services/form.yaml
+++ b/src/Bundle/ChillMainBundle/config/services/form.yaml
@@ -133,6 +133,8 @@ services:
 
     Chill\MainBundle\Form\WorkflowStepType: ~
 
+    Chill\MainBundle\Form\WorkflowSignatureMetadataType: ~
+
     Chill\MainBundle\Form\DataMapper\PrivateCommentDataMapper:
         autowire: true
         autoconfigure: true
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 421cac473..924ccec3a 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -528,6 +528,15 @@ workflow:
     This link grant any user to apply a transition: Le lien d'accès suivant permet d'appliquer une transition
     The workflow may be accssed through this link: Une transition peut être appliquée sur ce workflow grâce au lien d'accès suivant
 
+    signature_zone:
+        title: Appliquer les signatures électroniques
+        button_sign: Signer
+        metadata:
+            sign_by: 'Signature pour %name%'
+            docType: Type de document
+            docNumber: Numéro de document
+            docExpiration: Date d'expiration
+
 
 Subscribe final: Recevoir une notification à l'étape finale
 Subscribe all steps: Recevoir une notification à chaque étape

From 3836622d2733040ef7c76fa8ed85675dcceec876 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 18 Jul 2024 16:03:45 +0200
Subject: [PATCH 098/375] Use better namespacing for configuring workflow
 signature documents

---
 .../ChillMainExtension.php                    |  4 +-
 .../DependencyInjection/Configuration.php     | 48 ++++++++++---------
 2 files changed, 28 insertions(+), 24 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index bf041b5b3..0d90854b4 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -194,8 +194,8 @@ class ChillMainExtension extends Extension implements
         );
 
         $container->setParameter(
-            'chill_main.id_document_kinds',
-            $config['id_document_kinds']
+            'chill_main.workflow_signatures.base_signer.document_kinds',
+            $config['workflow_signature']['base_signer']['document_kinds']
         );
 
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 9c890d9fe..2185375b6 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -151,28 +151,6 @@ class Configuration implements ConfigurationInterface
             ->append($this->addWidgetsConfiguration('homepage', $this->containerBuilder))
             ->end() // end of widgets/children
             ->end() // end of widgets
-            ->arrayNode('id_document_kinds')->defaultValue([])
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('key')->isRequired()->cannotBeEmpty()
-            ->info('the key stored in database')
-            ->example('id_card')
-            ->end()
-            ->arrayNode('labels')->isRequired()->requiresAtLeastOneElement()
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('lang')->isRequired()->cannotBeEmpty()
-            ->example('fr')
-            ->end()
-            ->scalarNode('label')->isRequired()->cannotBeEmpty()
-            ->example('Carte de séjour')
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end() // end of document types
             ->arrayNode('cruds')
             ->defaultValue([])
             ->arrayPrototype()
@@ -299,6 +277,32 @@ class Configuration implements ConfigurationInterface
             ->end() // end of root
         ;
 
+        $rootNode->children()
+            ->arrayNode('workflow_signature')
+            ->children()
+            ->arrayNode('base_signer')
+            ->children()
+            ->arrayNode('document_kinds')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('key')->cannotBeEmpty()->end()
+            ->arrayNode('labels')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('lang')->cannotBeEmpty()->end()
+            ->scalarNode('label')->cannotBeEmpty()->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end();
+
         $rootNode->children()
             ->arrayNode('add_address')->addDefaultsIfNotSet()->children()
             ->scalarNode('default_country')->cannotBeEmpty()->defaultValue('BE')->end()

From 919288321795f1b2d59706a419803651f89803d2 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 18 Jun 2024 17:31:29 +0200
Subject: [PATCH 099/375] ADDED bootstrap signature vue app

---
 .../Controller/DocumentPersonController.php   | 19 ++++++
 .../public/vuejs/DocumentSignature/App.vue    | 16 +++++
 .../public/vuejs/DocumentSignature/index.ts   | 15 +++++
 .../views/PersonDocument/signature.html.twig  | 65 +++++++++++++++++++
 .../chill.webpack.config.js                   |  1 +
 5 files changed, 116 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
index ad58b6e0c..c0edbe492 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
@@ -197,4 +197,23 @@ class DocumentPersonController extends AbstractController
             ['document' => $document, 'person' => $person]
         );
     }
+
+    #[Route(path: '/{id}/signature', name: 'person_document_signature', methods: 'GET')]
+    public function signature(Person $person, PersonDocument $document): Response
+    {
+        $this->denyAccessUnlessGranted('CHILL_PERSON_SEE', $person);
+        $this->denyAccessUnlessGranted('CHILL_PERSON_DOCUMENT_SEE', $document);
+
+        $event = new PrivacyEvent($person, [
+            'element_class' => PersonDocument::class,
+            'element_id' => $document->getId(),
+            'action' => 'show',
+        ]);
+        $this->eventDispatcher->dispatch($event, PrivacyEvent::PERSON_PRIVACY_EVENT);
+
+        return $this->render(
+            '@ChillDocStore/PersonDocument/signature.html.twig',
+            ['document' => $document, 'person' => $person]
+        );
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
new file mode 100644
index 000000000..6dfdad330
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -0,0 +1,16 @@
+<template>
+  <div>hello {{msg}}</div>
+</template>
+
+<script setup lang="ts">
+
+import {ref, Ref} from "vue";
+
+const msg: Ref<string> = ref('world !');
+
+//console.log('signature', window.signature);
+
+</script>
+
+<style lang="scss">
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
new file mode 100644
index 000000000..2da7d0bf3
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -0,0 +1,15 @@
+import { createApp } from "vue";
+// import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
+// import { appMessages } from "ChillMainAssets/vuejs/HomepageWidget/js/i18n";
+//import { store } from "ChillDocStoreAssets/vuejs/DocumentSignature/store";
+import App from "./App.vue";
+
+//const i18n = _createI18n(appMessages);
+
+const app = createApp({
+    template: `<app></app>`,
+})
+    //.use(store)
+    //.use(i18n)
+    .component("app", App)
+    .mount("#document-signature");
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
new file mode 100644
index 000000000..d6e8b6d73
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -0,0 +1,65 @@
+{% extends "@ChillPerson/Person/layout.html.twig"  %}
+
+{% set activeRouteKey = '' %}
+
+{% import "@ChillDocStore/Macro/macro.html.twig" as m %}
+{% import "@ChillDocStore/Macro/macro_mimeicon.html.twig" as mm %}
+
+{% block title %}{{ 'Detail of document of %name%'|trans({ '%name%': person|chill_entity_render_string } ) }}{% endblock %}
+
+{% block js %}
+    {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
+    <script type="text/javascript">
+        const signature = {
+            id: 1,
+            storedObject: 'pKNlhCrQDCRsAuC8vYHDKa', // filename, should be maybe a full StoredObjectCreated
+            zones: [
+                {page: 1, origin: [0,0], x: 10, y: 10}
+            ]
+        };
+        window.signature = signature;
+    </script>
+    {{ encore_entry_script_tags('vue_document_signature') }}
+{% endblock %}
+
+{% block css %}
+    {{ encore_entry_link_tags('mod_document_action_buttons_group') }}
+{% endblock %}
+
+{% block content %}
+    <h1>{{ 'Document %title%' | trans({ '%title%': document.title }) }}</h1>
+
+    {{ mm.mimeIcon(document.object.type) }}
+
+    <dl class="chill_view_data">
+        <dt>{{ 'Title'|trans }}</dt>
+        <dd>{{ document.title }}</dd>
+    </dl>
+
+    <div id="document-signature"></div>
+
+    <ul class="record_actions sticky-form-buttons">
+        <li class="cancel">
+            <a href="{{ chill_return_path_or('chill_docstore_generic-doc_by-person_index', {'id': person.id}) }}" class="btn btn-cancel">
+                {{ 'Back to the list' | trans }}
+            </a>
+        </li>
+
+        {% if is_granted('CHILL_PERSON_DOCUMENT_DELETE', document) %}
+            <li class="delete">
+                <a href="{{ chill_return_path_or('chill_docstore_person_document_delete', {'person': person.id, 'id': document.id}) }}" class="btn btn-delete"></a>
+            </li>
+        {% endif %}
+
+        <li>
+            {{ document.object|chill_document_button_group(document.title, is_granted('CHILL_PERSON_DOCUMENT_UPDATE', document)) }}
+        </li>
+
+        {% if is_granted('CHILL_PERSON_DOCUMENT_UPDATE', document) %}
+            <li>
+                <a href="{{ path('person_document_edit', {'id': document.id, 'person': person.id}) }}" class="btn btn-edit">
+                    {{ 'Edit' | trans }}
+                </a>
+            </li>
+        {% endif %}
+{% endblock %}
diff --git a/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js b/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
index 5d021462d..0a95f61b0 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
+++ b/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
@@ -5,4 +5,5 @@ module.exports = function(encore)
     });
     encore.addEntry('mod_async_upload', __dirname + '/Resources/public/module/async_upload/index.ts');
     encore.addEntry('mod_document_action_buttons_group', __dirname + '/Resources/public/module/document_action_buttons_group/index');
+    encore.addEntry('vue_document_signature', __dirname + '/Resources/public/vuejs/DocumentSignature/index.ts');
 };

From bbfd0caf10281a7bde01b454d2a360103ba99d5b Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 19 Jun 2024 09:51:21 +0200
Subject: [PATCH 100/375] signature: download storedObject document in the
 vuejs app

---
 .../public/vuejs/DocumentSignature/App.vue    | 48 +++++++++++++++++--
 .../public/vuejs/DocumentSignature/index.ts   |  2 -
 2 files changed, 45 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 6dfdad330..5ad144e3d 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,16 +1,58 @@
 <template>
-  <div>hello {{msg}}</div>
+  <div>hello {{ msg }}</div>
 </template>
 
 <script setup lang="ts">
+import { ref, Ref } from "vue";
 
-import {ref, Ref} from "vue";
+//import { build_download_info_link, download_and_decrypt_doc } from "ChillDocStoreAssets/vuejs/StoredObjectButton/helpers.js";
+import {
+  build_download_info_link,
+  download_and_decrypt_doc,
+} from "../StoredObjectButton/helpers";
 
-const msg: Ref<string> = ref('world !');
+const msg: Ref<string> = ref("world !");
 
 //console.log('signature', window.signature);
 
+const signature = {
+  id: 1,
+  storedObject: {
+    filename: "pKNlhCrQDCRsAuC8vYHDKa",
+    keyInfos: {
+      alg: "A256CBC",
+      ext: true,
+      k: "_VihnD41-VDHlpS-ouwtbMPnu-OXVdtA7ENQWWtAQYM",
+      key_ops: ["encrypt", "decrypt"],
+      kty: "oct",
+    },
+    iv: [
+      86, 231, 83, 148, 117, 107, 149, 173, 130, 19, 105, 194, 224, 145, 8, 48,
+    ],
+  },
+  zones: [{ page: 1, origin: [0, 0], x: 10, y: 10 }],
+};
+
+const urlInfo = build_download_info_link(signature.storedObject.filename);
+
+async function download_and_open(): Promise<Blob> {
+  let raw;
+  try {
+    raw = await download_and_decrypt_doc(
+      urlInfo,
+      signature.storedObject.keyInfos,
+      new Uint8Array(signature.storedObject.iv)
+    );
+  } catch (e) {
+    console.error("error while downloading and decrypting document", e);
+    throw e;
+  };
+  return raw;
+}
+
+download_and_open();
 </script>
 
 <style lang="scss">
 </style>
+
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 2da7d0bf3..2b2b75242 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -1,7 +1,6 @@
 import { createApp } from "vue";
 // import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
 // import { appMessages } from "ChillMainAssets/vuejs/HomepageWidget/js/i18n";
-//import { store } from "ChillDocStoreAssets/vuejs/DocumentSignature/store";
 import App from "./App.vue";
 
 //const i18n = _createI18n(appMessages);
@@ -9,7 +8,6 @@ import App from "./App.vue";
 const app = createApp({
     template: `<app></app>`,
 })
-    //.use(store)
     //.use(i18n)
     .component("app", App)
     .mount("#document-signature");

From 21c1e77d366fd482eff798381d02d2612a41f816 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 19 Jun 2024 11:16:50 +0200
Subject: [PATCH 101/375] signature: POC of showing a pdf with vue-pdf-embed

---
 package.json                                    |  1 +
 .../public/vuejs/DocumentSignature/App.vue      | 17 ++++++++++++-----
 2 files changed, 13 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 2873e1317..fad48f34b 100644
--- a/package.json
+++ b/package.json
@@ -58,6 +58,7 @@
     "vue": "^3.2.37",
     "vue-i18n": "^9.1.6",
     "vue-multiselect": "3.0.0-alpha.2",
+    "vue-pdf-embed": "^2.0.4",
     "vue-toast-notification": "^2.0",
     "vuex": "^4.0.0"
   },
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 5ad144e3d..11a69c782 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,11 +1,13 @@
 <template>
   <div>hello {{ msg }}</div>
+  <VuePdfEmbed :source="pdfSource" />
 </template>
 
 <script setup lang="ts">
 import { ref, Ref } from "vue";
+import VuePdfEmbed from "vue-pdf-embed";
+import "vue-pdf-embed/dist/style/index.css";
 
-//import { build_download_info_link, download_and_decrypt_doc } from "ChillDocStoreAssets/vuejs/StoredObjectButton/helpers.js";
 import {
   build_download_info_link,
   download_and_decrypt_doc,
@@ -18,16 +20,17 @@ const msg: Ref<string> = ref("world !");
 const signature = {
   id: 1,
   storedObject: {
-    filename: "pKNlhCrQDCRsAuC8vYHDKa",
+    filename: "V2DZStOWtonw1TiKxzVPDRzlS4YO",
     keyInfos: {
       alg: "A256CBC",
       ext: true,
-      k: "_VihnD41-VDHlpS-ouwtbMPnu-OXVdtA7ENQWWtAQYM",
+      k: "x0vaQO0n3QZnipLEmddF3MOF_5_QYnS4g67n0AwZ6YA",
       key_ops: ["encrypt", "decrypt"],
       kty: "oct",
     },
     iv: [
-      86, 231, 83, 148, 117, 107, 149, 173, 130, 19, 105, 194, 224, 145, 8, 48,
+      150, 175, 71, 136, 62, 123, 230, 141, 72, 204, 116, 110, 139, 22, 246,
+      114,
     ],
   },
   zones: [{ page: 1, origin: [0, 0], x: 10, y: 10 }],
@@ -35,6 +38,8 @@ const signature = {
 
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
+let pdfSource: Ref<string> = ref("");
+
 async function download_and_open(): Promise<Blob> {
   let raw;
   try {
@@ -43,10 +48,12 @@ async function download_and_open(): Promise<Blob> {
       signature.storedObject.keyInfos,
       new Uint8Array(signature.storedObject.iv)
     );
+    //pdfSource.value = 'https://raw.githubusercontent.com/mozilla/pdf.js/ba2edeae/examples/learning/helloworld.pdf';
+    pdfSource.value = URL.createObjectURL(raw);
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
-  };
+  }
   return raw;
 }
 

From c950400fe2a64c0b9eff856db74fcc855b30443b Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 20 Jun 2024 11:42:12 +0200
Subject: [PATCH 102/375] signature: POC of drawing signature zones and click
 event on canvas

---
 .../public/vuejs/DocumentSignature/App.vue    | 33 +++++++++++++++----
 1 file changed, 27 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 11a69c782..44f191048 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,12 +1,14 @@
 <template>
   <div>hello {{ msg }}</div>
   <VuePdfEmbed :source="pdfSource" />
+  <!-- <canvas id="canvas"></canvas> -->
 </template>
 
 <script setup lang="ts">
 import { ref, Ref } from "vue";
 import VuePdfEmbed from "vue-pdf-embed";
 import "vue-pdf-embed/dist/style/index.css";
+//import * as pdfjsLib from "pdfjs-dist";
 
 import {
   build_download_info_link,
@@ -20,20 +22,19 @@ const msg: Ref<string> = ref("world !");
 const signature = {
   id: 1,
   storedObject: {
-    filename: "V2DZStOWtonw1TiKxzVPDRzlS4YO",
+    filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
     keyInfos: {
       alg: "A256CBC",
       ext: true,
-      k: "x0vaQO0n3QZnipLEmddF3MOF_5_QYnS4g67n0AwZ6YA",
+      k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
       key_ops: ["encrypt", "decrypt"],
       kty: "oct",
     },
     iv: [
-      150, 175, 71, 136, 62, 123, 230, 141, 72, 204, 116, 110, 139, 22, 246,
-      114,
+      50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
     ],
   },
-  zones: [{ page: 1, origin: [0, 0], x: 10, y: 10 }],
+  zones: [{ page: 1, pageWidth: 500, pageHeight: 800, x: 30, y: 50, width: 100, height: 50 }],
 };
 
 const urlInfo = build_download_info_link(signature.storedObject.filename);
@@ -48,13 +49,33 @@ async function download_and_open(): Promise<Blob> {
       signature.storedObject.keyInfos,
       new Uint8Array(signature.storedObject.iv)
     );
-    //pdfSource.value = 'https://raw.githubusercontent.com/mozilla/pdf.js/ba2edeae/examples/learning/helloworld.pdf';
     pdfSource.value = URL.createObjectURL(raw);
+    setTimeout(() => draw_zones(), 2000); //TODO gestion async
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
   return raw;
+};
+
+const canvas_click = (e: PointerEvent) => {
+  console.log('click event x and y', e.x, e.y)
+}
+
+const draw_zones = () => {
+  const canvas = document.querySelectorAll('canvas')[0];
+  console.log('canvas', canvas);
+  const ctx = canvas.getContext("2d");
+  if (ctx) {
+    console.log(canvas.height)
+    console.log(canvas.width)
+    //TODO the zone where the signature should go will depend on the canvas dimensions! see page.getViewport({ scale });
+    ctx.fillStyle = "green";
+    signature.zones.map(//TODO gestion du numéro de la page
+      z => ctx.fillRect(z.x, z.y, z.width, z.height)
+    )
+  }
+  canvas.addEventListener('pointerup', (e: PointerEvent) => canvas_click(e), false);
 }
 
 download_and_open();

From c80f23f0db97b575ae3b87a07989fdb46b703aea Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 20 Jun 2024 15:52:47 +0200
Subject: [PATCH 103/375] signature: scale the signature zone to the canvas
 dimension

---
 .../Resources/public/types.ts                 |  9 +++
 .../public/vuejs/DocumentSignature/App.vue    | 64 ++++++++++++++-----
 2 files changed, 57 insertions(+), 16 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 25d956312..95f95dd1e 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -62,3 +62,12 @@ export interface PostStoreObjectSignature {
     signature: string,
 }
 
+export interface SignatureZone {
+  page: number,
+  pageWidth: number,
+  pageHeight: number,
+  x: number,
+  y: number,
+  width: number,
+  height: number,
+}
\ No newline at end of file
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 44f191048..dce51c8ca 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -8,6 +8,7 @@
 import { ref, Ref } from "vue";
 import VuePdfEmbed from "vue-pdf-embed";
 import "vue-pdf-embed/dist/style/index.css";
+import { SignatureZone } from "../../types";
 //import * as pdfjsLib from "pdfjs-dist";
 
 import {
@@ -34,9 +35,21 @@ const signature = {
       50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
     ],
   },
-  zones: [{ page: 1, pageWidth: 500, pageHeight: 800, x: 30, y: 50, width: 100, height: 50 }],
+  zones: [
+    {
+      page: 1,
+      pageWidth: 210,
+      pageHeight: 297,
+      x: 21, //from top-left corner
+      y: 50,
+      width: 80,
+      height: 50,
+    },
+  ],
 };
 
+let userSignatureZones = {} as SignatureZone;
+
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
 let pdfSource: Ref<string> = ref("");
@@ -50,33 +63,52 @@ async function download_and_open(): Promise<Blob> {
       new Uint8Array(signature.storedObject.iv)
     );
     pdfSource.value = URL.createObjectURL(raw);
-    setTimeout(() => draw_zones(), 2000); //TODO gestion async
+    setTimeout(() => add_zones(), 2000); //TODO gestion async
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
   return raw;
+}
+const canvas_click = (e: PointerEvent) => {
+  console.log("click event x and y", e.x, e.y);
+  //TODO what to do with this: 1) draw the signature if it falls within a zone, 2) output the zone
+  userSignatureZones = signature.zones[0]; //TODO for now, need another way to select a zone
 };
 
-const canvas_click = (e: PointerEvent) => {
-  console.log('click event x and y', e.x, e.y)
-}
+const draw_zone = (
+  zone: SignatureZone,
+  ctx: CanvasRenderingContext2D,
+  canvasWidth: number,
+  canvasHeight: number
+) => {
+  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.pageWidth;
+  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.pageHeight;
+  ctx.fillRect(
+    scaleXToCanvas(zone.x),
+    scaleYToCanvas(zone.y),
+    scaleXToCanvas(zone.width),
+    scaleYToCanvas(zone.height)
+  );
+};
 
-const draw_zones = () => {
-  const canvas = document.querySelectorAll('canvas')[0];
-  console.log('canvas', canvas);
+const add_zones = () => {
+  //TODO multipage: draw zones on page change?
+  const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
-    console.log(canvas.height)
-    console.log(canvas.width)
-    //TODO the zone where the signature should go will depend on the canvas dimensions! see page.getViewport({ scale });
     ctx.fillStyle = "green";
-    signature.zones.map(//TODO gestion du numéro de la page
-      z => ctx.fillRect(z.x, z.y, z.width, z.height)
-    )
+    signature.zones.map(
+      //TODO gestion du numéro de la page
+      (z) => draw_zone(z, ctx, canvas.width, canvas.height)
+    );
   }
-  canvas.addEventListener('pointerup', (e: PointerEvent) => canvas_click(e), false);
-}
+  canvas.addEventListener(
+    "pointerup",
+    (e: PointerEvent) => canvas_click(e),
+    false
+  );
+};
 
 download_and_open();
 </script>

From 2d4fc45a0c55da351e4d024bfb4bbb9a4bedcb3a Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 20 Jun 2024 18:27:41 +0200
Subject: [PATCH 104/375] signature: manage multi-pages doc

---
 .../public/vuejs/DocumentSignature/App.vue    | 85 ++++++++++++++-----
 1 file changed, 64 insertions(+), 21 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index dce51c8ca..eab7d64aa 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,6 +1,12 @@
 <template>
-  <div>hello {{ msg }}</div>
-  <VuePdfEmbed :source="pdfSource" />
+  <div>
+    <span>
+      <button :disabled="page <= 1" @click="unTurnPage">❮</button>
+      {{ page }} / {{ pageCount }}
+      <button :disabled="page >= pageCount" @click="turnPage">❯</button>
+    </span>
+  </div>
+  <VuePdfEmbed :source="pdfSource" :page="page"/>
   <!-- <canvas id="canvas"></canvas> -->
 </template>
 
@@ -16,23 +22,39 @@ import {
   download_and_decrypt_doc,
 } from "../StoredObjectButton/helpers";
 
-const msg: Ref<string> = ref("world !");
+const page: Ref<number> = ref(1);
+const pageCount: Ref<number> = ref(3); //TODO get page count from PDF loaded, can be done with pdfjs (https://stackoverflow.com/questions/10253669/how-to-get-the-number-of-pages-of-a-pdf-uploaded-by-user)
+let userSignatureZones = {} as SignatureZone;
+let pdfSource: Ref<string> = ref("");
 
 //console.log('signature', window.signature);
 
 const signature = {
   id: 1,
+  // storedObject: {
+  //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
+  //   keyInfos: {
+  //     alg: "A256CBC",
+  //     ext: true,
+  //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
+  //     key_ops: ["encrypt", "decrypt"],
+  //     kty: "oct",
+  //   },
+  //   iv: [
+  //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
+  //   ],
+  // },
   storedObject: {
-    filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
+    filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
     keyInfos: {
       alg: "A256CBC",
       ext: true,
-      k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
+      k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
       key_ops: ["encrypt", "decrypt"],
       kty: "oct",
     },
     iv: [
-      50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
+      254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
     ],
   },
   zones: [
@@ -45,15 +67,20 @@ const signature = {
       width: 80,
       height: 50,
     },
+    {
+      page: 3,
+      pageWidth: 210,
+      pageHeight: 297,
+      x: 60, //from top-left corner
+      y: 20,
+      width: 80,
+      height: 50,
+    },
   ],
 };
 
-let userSignatureZones = {} as SignatureZone;
-
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
-let pdfSource: Ref<string> = ref("");
-
 async function download_and_open(): Promise<Blob> {
   let raw;
   try {
@@ -63,19 +90,40 @@ async function download_and_open(): Promise<Blob> {
       new Uint8Array(signature.storedObject.iv)
     );
     pdfSource.value = URL.createObjectURL(raw);
-    setTimeout(() => add_zones(), 2000); //TODO gestion async
+    setTimeout(() => init_pdf(), 2000); //TODO gestion async
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
   return raw;
 }
+
+const init_pdf = () => {
+  const canvas = document.querySelectorAll("canvas")[0];
+  canvas.addEventListener(
+    "pointerup",
+    (e: PointerEvent) => canvas_click(e),
+    false
+  );
+  add_zones();
+};
+
 const canvas_click = (e: PointerEvent) => {
   console.log("click event x and y", e.x, e.y);
   //TODO what to do with this: 1) draw the signature if it falls within a zone, 2) output the zone
   userSignatureZones = signature.zones[0]; //TODO for now, need another way to select a zone
 };
 
+const turnPage = () => {
+  page.value = page.value + 1;
+  setTimeout(() => add_zones(), 200);
+};
+
+const unTurnPage = () => {
+  page.value = page.value - 1;
+  setTimeout(() => add_zones(), 200);
+};
+
 const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
@@ -93,21 +141,16 @@ const draw_zone = (
 };
 
 const add_zones = () => {
-  //TODO multipage: draw zones on page change?
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
     ctx.fillStyle = "green";
-    signature.zones.map(
-      //TODO gestion du numéro de la page
-      (z) => draw_zone(z, ctx, canvas.width, canvas.height)
-    );
+    signature.zones.map((z) => {
+      if (z.page === page.value) {
+        draw_zone(z, ctx, canvas.width, canvas.height);
+      }
+    });
   }
-  canvas.addEventListener(
-    "pointerup",
-    (e: PointerEvent) => canvas_click(e),
-    false
-  );
 };
 
 download_and_open();

From 0f589ec57e0cc74894b665229f5e227ebdece1a0 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 21 Jun 2024 13:44:41 +0200
Subject: [PATCH 105/375] signature: POC of showing PDF with pdfjs-dist

---
 .../public/vuejs/DocumentSignature/App.vue    | 53 +++++++++++++++----
 1 file changed, 42 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index eab7d64aa..e4ed22cd6 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -6,16 +6,23 @@
       <button :disabled="page >= pageCount" @click="turnPage">❯</button>
     </span>
   </div>
-  <VuePdfEmbed :source="pdfSource" :page="page"/>
-  <!-- <canvas id="canvas"></canvas> -->
+  <!-- <VuePdfEmbed :source="pdfSource" :page="page"/> -->
+  <canvas id="canvas"></canvas>
 </template>
 
 <script setup lang="ts">
 import { ref, Ref } from "vue";
-import VuePdfEmbed from "vue-pdf-embed";
-import "vue-pdf-embed/dist/style/index.css";
+// import VuePdfEmbed from "vue-pdf-embed";
+// import "vue-pdf-embed/dist/style/index.css";
 import { SignatureZone } from "../../types";
-//import * as pdfjsLib from "pdfjs-dist";
+import * as pdfjsLib from "pdfjs-dist";
+
+// @ts-ignore
+import * as PdfWorker from 'pdfjs-dist/build/pdf.worker.mjs';
+pdfjsLib.GlobalWorkerOptions.workerSrc = import.meta.url + 'pdfjs-dist/build/pdf.worker.mjs';
+console.log(PdfWorker) // incredible but this is needed
+// import { PdfWorker } from 'pdfjs-dist/build/pdf.worker.mjs'
+// pdfjsLib.GlobalWorkerOptions.workerSrc = PdfWorker;
 
 import {
   build_download_info_link,
@@ -27,8 +34,6 @@ const pageCount: Ref<number> = ref(3); //TODO get page count from PDF loaded, ca
 let userSignatureZones = {} as SignatureZone;
 let pdfSource: Ref<string> = ref("");
 
-//console.log('signature', window.signature);
-
 const signature = {
   id: 1,
   // storedObject: {
@@ -81,6 +86,32 @@ const signature = {
 
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
+const showPdf = async (url: string) => {
+  const loadingTask = pdfjsLib.getDocument(url);
+  const pdf = await loadingTask.promise;
+
+  // Load information from the first page.
+  const page = await pdf.getPage(1);
+
+  const scale = 1;
+  const viewport = page.getViewport({ scale });
+
+  // Apply page dimensions to the `<canvas>` element.
+  const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
+  const context = canvas.getContext("2d") as CanvasRenderingContext2D;
+  canvas.height = viewport.height;
+  canvas.width = viewport.width;
+
+  // Render the page into the `<canvas>` element.
+  const renderContext = {
+    canvasContext: context,
+    viewport: viewport,
+  };
+  await page.render(renderContext);
+  console.log("Page rendered!");
+};
+
+
 async function download_and_open(): Promise<Blob> {
   let raw;
   try {
@@ -89,8 +120,8 @@ async function download_and_open(): Promise<Blob> {
       signature.storedObject.keyInfos,
       new Uint8Array(signature.storedObject.iv)
     );
-    pdfSource.value = URL.createObjectURL(raw);
-    setTimeout(() => init_pdf(), 2000); //TODO gestion async
+    await showPdf(URL.createObjectURL(raw));
+    init_pdf();
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
@@ -99,13 +130,13 @@ async function download_and_open(): Promise<Blob> {
 }
 
 const init_pdf = () => {
-  const canvas = document.querySelectorAll("canvas")[0];
+  const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   canvas.addEventListener(
     "pointerup",
     (e: PointerEvent) => canvas_click(e),
     false
   );
-  add_zones();
+  setTimeout(() => add_zones(), 200);
 };
 
 const canvas_click = (e: PointerEvent) => {

From b0a8fd54a8536927c8fa6ec2bc7d9b965068c66b Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 21 Jun 2024 14:55:11 +0200
Subject: [PATCH 106/375] signature: fully working app with pdfjs-dist

---
 package.json                                  |  2 +-
 .../public/vuejs/DocumentSignature/App.vue    | 81 ++++++++++---------
 2 files changed, 44 insertions(+), 39 deletions(-)

diff --git a/package.json b/package.json
index fad48f34b..d36197aa9 100644
--- a/package.json
+++ b/package.json
@@ -53,12 +53,12 @@
     "marked": "^12.0.2",
     "masonry-layout": "^4.2.2",
     "mime": "^4.0.0",
+    "pdfjs-dist": "^4.3.136",
     "swagger-ui": "^4.15.5",
     "vis-network": "^9.1.0",
     "vue": "^3.2.37",
     "vue-i18n": "^9.1.6",
     "vue-multiselect": "3.0.0-alpha.2",
-    "vue-pdf-embed": "^2.0.4",
     "vue-toast-notification": "^2.0",
     "vuex": "^4.0.0"
   },
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index e4ed22cd6..6da29691a 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,26 +1,25 @@
 <template>
-  <div>
-    <span>
-      <button :disabled="page <= 1" @click="unTurnPage">❮</button>
-      {{ page }} / {{ pageCount }}
-      <button :disabled="page >= pageCount" @click="turnPage">❯</button>
-    </span>
+  <div v-if="pageCount > 1">
+    <button :disabled="page <= 1" @click="unTurnPage">❮</button>
+    {{ page }} / {{ pageCount }}
+    <button :disabled="page >= pageCount" @click="turnPage">❯</button>
   </div>
-  <!-- <VuePdfEmbed :source="pdfSource" :page="page"/> -->
   <canvas id="canvas"></canvas>
 </template>
 
 <script setup lang="ts">
 import { ref, Ref } from "vue";
-// import VuePdfEmbed from "vue-pdf-embed";
-// import "vue-pdf-embed/dist/style/index.css";
 import { SignatureZone } from "../../types";
 import * as pdfjsLib from "pdfjs-dist";
+import {
+  PDFDocumentProxy,
+  PDFPageProxy,
+} from "pdfjs-dist/types/src/display/api";
 
 // @ts-ignore
-import * as PdfWorker from 'pdfjs-dist/build/pdf.worker.mjs';
-pdfjsLib.GlobalWorkerOptions.workerSrc = import.meta.url + 'pdfjs-dist/build/pdf.worker.mjs';
-console.log(PdfWorker) // incredible but this is needed
+import * as PdfWorker from "pdfjs-dist/build/pdf.worker.mjs";
+console.log(PdfWorker); // incredible but this is needed
+
 // import { PdfWorker } from 'pdfjs-dist/build/pdf.worker.mjs'
 // pdfjsLib.GlobalWorkerOptions.workerSrc = PdfWorker;
 
@@ -29,10 +28,13 @@ import {
   download_and_decrypt_doc,
 } from "../StoredObjectButton/helpers";
 
+pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
+
 const page: Ref<number> = ref(1);
-const pageCount: Ref<number> = ref(3); //TODO get page count from PDF loaded, can be done with pdfjs (https://stackoverflow.com/questions/10253669/how-to-get-the-number-of-pages-of-a-pdf-uploaded-by-user)
+const pageCount: Ref<number> = ref(0);
 let userSignatureZones = {} as SignatureZone;
 let pdfSource: Ref<string> = ref("");
+let pdf = {} as PDFDocumentProxy;
 
 const signature = {
   id: 1,
@@ -86,31 +88,32 @@ const signature = {
 
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
-const showPdf = async (url: string) => {
+const mount_pdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
-  const pdf = await loadingTask.promise;
-
-  // Load information from the first page.
-  const page = await pdf.getPage(1);
+  pdf = await loadingTask.promise;
+  pageCount.value = pdf.numPages;
+  await set_page(1);
+};
 
+const get_render_context = (pdfPage: PDFPageProxy) => {
   const scale = 1;
-  const viewport = page.getViewport({ scale });
-
-  // Apply page dimensions to the `<canvas>` element.
+  const viewport = pdfPage.getViewport({ scale });
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   const context = canvas.getContext("2d") as CanvasRenderingContext2D;
   canvas.height = viewport.height;
   canvas.width = viewport.width;
 
-  // Render the page into the `<canvas>` element.
-  const renderContext = {
+  return {
     canvasContext: context,
     viewport: viewport,
   };
-  await page.render(renderContext);
-  console.log("Page rendered!");
 };
 
+const set_page = async (page: number) => {
+  const pdfPage = await pdf.getPage(page);
+  const renderContext = get_render_context(pdfPage);
+  await pdfPage.render(renderContext);
+};
 
 async function download_and_open(): Promise<Blob> {
   let raw;
@@ -120,12 +123,12 @@ async function download_and_open(): Promise<Blob> {
       signature.storedObject.keyInfos,
       new Uint8Array(signature.storedObject.iv)
     );
-    await showPdf(URL.createObjectURL(raw));
-    init_pdf();
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
+  await mount_pdf(URL.createObjectURL(raw));
+  init_pdf();
   return raw;
 }
 
@@ -136,7 +139,7 @@ const init_pdf = () => {
     (e: PointerEvent) => canvas_click(e),
     false
   );
-  setTimeout(() => add_zones(), 200);
+  setTimeout(() => add_zones(page.value), 800);
 };
 
 const canvas_click = (e: PointerEvent) => {
@@ -145,14 +148,16 @@ const canvas_click = (e: PointerEvent) => {
   userSignatureZones = signature.zones[0]; //TODO for now, need another way to select a zone
 };
 
-const turnPage = () => {
+const turnPage = async () => {
   page.value = page.value + 1;
-  setTimeout(() => add_zones(), 200);
+  await set_page(page.value);
+  setTimeout(() => add_zones(page.value), 200);
 };
 
-const unTurnPage = () => {
+const unTurnPage = async () => {
   page.value = page.value - 1;
-  setTimeout(() => add_zones(), 200);
+  await set_page(page.value);
+  setTimeout(() => add_zones(page.value), 200);
 };
 
 const draw_zone = (
@@ -171,20 +176,20 @@ const draw_zone = (
   );
 };
 
-const add_zones = () => {
+const add_zones = (page: number) => {
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
     ctx.fillStyle = "green";
-    signature.zones.map((z) => {
-      if (z.page === page.value) {
-        draw_zone(z, ctx, canvas.width, canvas.height);
-      }
-    });
+    signature.zones
+      .filter((z) => z.page === page)
+      .map((z) => draw_zone(z, ctx, canvas.width, canvas.height));
   }
 };
 
+
 download_and_open();
+
 </script>
 
 <style lang="scss">

From 68dcf4dd283a3369f2799802eb5609dc68a1136f Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 21 Jun 2024 16:38:46 +0200
Subject: [PATCH 107/375] signature: confirm signature and undo buttons

---
 .../public/vuejs/DocumentSignature/App.vue    | 90 ++++++++++++++-----
 1 file changed, 69 insertions(+), 21 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 6da29691a..21d98c627 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,8 +1,16 @@
 <template>
+  <div>
+    <button :disabled="!userSignatureZones" @click="confirm_sign">
+      Confirmer la signature
+    </button>
+    <button :disabled="!userSignatureZones" @click="undo_sign">
+      Supprimer la signature
+    </button>
+  </div>
   <div v-if="pageCount > 1">
-    <button :disabled="page <= 1" @click="unTurnPage">❮</button>
+    <button :disabled="page <= 1" @click="turn_page(-1)">❮</button>
     {{ page }} / {{ pageCount }}
-    <button :disabled="page >= pageCount" @click="turnPage">❯</button>
+    <button :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
   </div>
   <canvas id="canvas"></canvas>
 </template>
@@ -32,7 +40,7 @@ pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
-let userSignatureZones = {} as SignatureZone;
+let userSignatureZones: Ref<null | SignatureZone> = ref(null);
 let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
 
@@ -136,26 +144,46 @@ const init_pdf = () => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   canvas.addEventListener(
     "pointerup",
-    (e: PointerEvent) => canvas_click(e),
+    (e: PointerEvent) => canvas_click(e, canvas),
     false
   );
   setTimeout(() => add_zones(page.value), 800);
 };
 
-const canvas_click = (e: PointerEvent) => {
-  console.log("click event x and y", e.x, e.y);
-  //TODO what to do with this: 1) draw the signature if it falls within a zone, 2) output the zone
-  userSignatureZones = signature.zones[0]; //TODO for now, need another way to select a zone
+const hit_signature = (
+  zone: SignatureZone,
+  xy: number[],
+  canvasWidth: number,
+  canvasHeight: number
+) => {
+  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.pageWidth;
+  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.pageHeight;
+  return (
+    scaleXToCanvas(zone.x) < xy[0] &&
+    xy[0] < scaleXToCanvas(zone.x + zone.width) &&
+    scaleYToCanvas(zone.y) < xy[1] &&
+    xy[1] < scaleYToCanvas(zone.y + zone.height)
+  );
 };
 
-const turnPage = async () => {
-  page.value = page.value + 1;
-  await set_page(page.value);
-  setTimeout(() => add_zones(page.value), 200);
-};
+const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+  signature.zones
+    .filter((z) => z.page === page.value)
+    .map((z) => {
+      if (
+        hit_signature(z, [e.offsetX, e.offsetY], canvas.width, canvas.height)
+      ) {
+        const ctx = canvas.getContext("2d");
+        if (ctx) {
+          draw_zone(z, ctx, canvas.width, canvas.height, true);
+        }
+        userSignatureZones.value = z;
+      }
+    });
 
-const unTurnPage = async () => {
-  page.value = page.value - 1;
+const turn_page = async (upOrDown: number) => {
+  userSignatureZones.value = null;
+  page.value = page.value + upOrDown;
   await set_page(page.value);
   setTimeout(() => add_zones(page.value), 200);
 };
@@ -164,11 +192,17 @@ const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
   canvasWidth: number,
-  canvasHeight: number
+  canvasHeight: number,
+  selected = false,
 ) => {
-  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.pageWidth;
-  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.pageHeight;
-  ctx.fillRect(
+  const scaleXToCanvas = (x: number) =>
+    Math.round((x * canvasWidth) / zone.pageWidth);
+  const scaleYToCanvas = (y: number) =>
+    Math.round((y * canvasHeight) / zone.pageHeight);
+  ctx.strokeStyle = selected ? "orange " : "yellow";
+  ctx.lineWidth = 10;
+  ctx.lineJoin = "bevel";
+  ctx.strokeRect(
     scaleXToCanvas(zone.x),
     scaleYToCanvas(zone.y),
     scaleXToCanvas(zone.width),
@@ -180,16 +214,30 @@ const add_zones = (page: number) => {
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
-    ctx.fillStyle = "green";
     signature.zones
       .filter((z) => z.page === page)
       .map((z) => draw_zone(z, ctx, canvas.width, canvas.height));
   }
 };
 
+const confirm_sign = () => {
+  console.log(userSignatureZones.value);
+  //TODO POST userSignatureZones to backend
+};
+
+const undo_sign = async () => {
+  const canvas = document.querySelectorAll("canvas")[0];
+  const ctx = canvas.getContext("2d");
+  if (ctx && userSignatureZones.value) {
+    draw_zone(userSignatureZones.value, ctx, canvas.width, canvas.height);
+    //another option is to reload the canvas
+    //await set_page(page.value);
+    //setTimeout(() => add_zones(page.value), 200);
+  }
+  userSignatureZones.value = null;
+};
 
 download_and_open();
-
 </script>
 
 <style lang="scss">

From 1344b65dd42c14b26ddf287061eb9a648b95cd75 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 21 Jun 2024 17:07:10 +0200
Subject: [PATCH 108/375] signature: fix using of window variable

---
 .../Resources/public/types.ts                 |  6 ++
 .../public/vuejs/DocumentSignature/App.vue    | 57 +++----------------
 .../views/PersonDocument/signature.html.twig  | 52 +++++++++++++++--
 3 files changed, 60 insertions(+), 55 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 95f95dd1e..a96949fdc 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -70,4 +70,10 @@ export interface SignatureZone {
   y: number,
   width: number,
   height: number,
+}
+
+export interface Signature {
+  id: number,
+  storedObject: StoredObject,
+  zones: SignatureZone[],
 }
\ No newline at end of file
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 21d98c627..e1c6adec9 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -17,7 +17,7 @@
 
 <script setup lang="ts">
 import { ref, Ref } from "vue";
-import { SignatureZone } from "../../types";
+import { Signature, SignatureZone } from "../../types";
 import * as pdfjsLib from "pdfjs-dist";
 import {
   PDFDocumentProxy,
@@ -44,56 +44,13 @@ let userSignatureZones: Ref<null | SignatureZone> = ref(null);
 let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
 
-const signature = {
-  id: 1,
-  // storedObject: {
-  //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
-  //   keyInfos: {
-  //     alg: "A256CBC",
-  //     ext: true,
-  //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
-  //     key_ops: ["encrypt", "decrypt"],
-  //     kty: "oct",
-  //   },
-  //   iv: [
-  //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
-  //   ],
-  // },
-  storedObject: {
-    filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
-    keyInfos: {
-      alg: "A256CBC",
-      ext: true,
-      k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
-      key_ops: ["encrypt", "decrypt"],
-      kty: "oct",
-    },
-    iv: [
-      254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
-    ],
-  },
-  zones: [
-    {
-      page: 1,
-      pageWidth: 210,
-      pageHeight: 297,
-      x: 21, //from top-left corner
-      y: 50,
-      width: 80,
-      height: 50,
-    },
-    {
-      page: 3,
-      pageWidth: 210,
-      pageHeight: 297,
-      x: 60, //from top-left corner
-      y: 20,
-      width: 80,
-      height: 50,
-    },
-  ],
-};
+declare global {
+  interface Window {
+    signature: Signature;
+  }
+}
 
+const signature = window.signature;
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
 const mount_pdf = async (url: string) => {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
index d6e8b6d73..9c2017184 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -11,11 +11,53 @@
     {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
     <script type="text/javascript">
         const signature = {
-            id: 1,
-            storedObject: 'pKNlhCrQDCRsAuC8vYHDKa', // filename, should be maybe a full StoredObjectCreated
-            zones: [
-                {page: 1, origin: [0,0], x: 10, y: 10}
-            ]
+        id: 1,
+        //   // storedObject: {
+        //   //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
+        //   //   keyInfos: {
+        //   //     alg: "A256CBC",
+        //   //     ext: true,
+        //   //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
+        //   //     key_ops: ["encrypt", "decrypt"],
+        //   //     kty: "oct",
+        //   //   },
+        //   //   iv: [
+        //   //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
+        //   //   ],
+        //   // },
+        storedObject: {
+            filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
+            keyInfos: {
+            alg: "A256CBC",
+            ext: true,
+            k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
+            key_ops: ["encrypt", "decrypt"],
+            kty: "oct",
+            },
+            iv: [
+            254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
+            ],
+        },
+        zones: [
+            {
+            page: 1,
+            pageWidth: 210,
+            pageHeight: 297,
+            x: 21, //from top-left corner
+            y: 50,
+            width: 80,
+            height: 50,
+            },
+            {
+            page: 3,
+            pageWidth: 210,
+            pageHeight: 297,
+            x: 60, //from top-left corner
+            y: 20,
+            width: 80,
+            height: 50,
+            },
+        ],
         };
         window.signature = signature;
     </script>

From 1bee3114ac1b2eb119f0fda7b921839291e8af7e Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 25 Jun 2024 19:36:11 +0200
Subject: [PATCH 109/375] signature: improve signature vue app

---
 .../public/vuejs/DocumentSignature/App.vue    | 69 ++++++++++++++++++-
 .../public/vuejs/DocumentSignature/index.ts   |  7 +-
 2 files changed, 70 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index e1c6adec9..9c2ad2bfb 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,4 +1,14 @@
 <template>
+  <teleport to="body">
+    <modal v-if="state.show_modal" @close="close">
+      <template v-slot:header>
+        <h2>eh là!</h2>
+      </template>
+      <template v-slot:body>
+        <p>Etes-vous sur de vouloir signer?</p>
+      </template>
+    </modal>
+  </teleport>
   <div>
     <button :disabled="!userSignatureZones" @click="confirm_sign">
       Confirmer la signature
@@ -12,11 +22,14 @@
     {{ page }} / {{ pageCount }}
     <button :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
   </div>
+  <div>
+    <button @click="go_next_signature()">Voir les zones de signature</button>
+  </div>
   <canvas id="canvas"></canvas>
 </template>
 
 <script setup lang="ts">
-import { ref, Ref } from "vue";
+import { ref, Ref, reactive } from "vue";
 import { Signature, SignatureZone } from "../../types";
 import * as pdfjsLib from "pdfjs-dist";
 import {
@@ -31,6 +44,7 @@ console.log(PdfWorker); // incredible but this is needed
 // import { PdfWorker } from 'pdfjs-dist/build/pdf.worker.mjs'
 // pdfjsLib.GlobalWorkerOptions.workerSrc = PdfWorker;
 
+import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
 import {
   build_download_info_link,
   download_and_decrypt_doc,
@@ -38,8 +52,18 @@ import {
 
 pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
+// export const i18n = {
+//   messages: {
+//     fr: {
+//       upload_a_document: "Téléversez un document",
+//     },
+//   },
+// };
+
+const modalOpened: Ref<boolean> = ref(false);
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
+const zone: Ref<number> = ref(0);
 let userSignatureZones: Ref<null | SignatureZone> = ref(null);
 let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
@@ -50,6 +74,17 @@ declare global {
   }
 }
 
+interface AddressModalState {
+  show_modal: boolean,
+}
+const state: AddressModalState = reactive({show_modal: false});
+const open = (): void => {
+  state.show_modal = true;
+}
+const close = (): void => {
+  state.show_modal = false;
+}
+
 const signature = window.signature;
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
@@ -145,12 +180,27 @@ const turn_page = async (upOrDown: number) => {
   setTimeout(() => add_zones(page.value), 200);
 };
 
+const go_next_signature = async () => {
+  open()
+  let currentZone = signature.zones[zone.value];
+  if (currentZone) {
+    page.value = currentZone.page;
+    await set_page(page.value);
+    setTimeout(() => add_zones(page.value), 200);
+  }
+  if (zone.value < signature.zones.length - 1) {
+    zone.value = zone.value + 1;
+  } else {
+    zone.value = 0;
+  }
+};
+
 const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
   canvasWidth: number,
   canvasHeight: number,
-  selected = false,
+  selected = false
 ) => {
   const scaleXToCanvas = (x: number) =>
     Math.round((x * canvasWidth) / zone.pageWidth);
@@ -165,6 +215,17 @@ const draw_zone = (
     scaleXToCanvas(zone.width),
     scaleYToCanvas(zone.height)
   );
+  ctx.font = "bold 16px serif";
+  ctx.textAlign = "center";
+  ctx.fillStyle = "black";
+  const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
+  const yText = scaleYToCanvas(zone.y) + scaleYToCanvas(zone.height) / 2;
+  ctx.strokeStyle = "grey";
+  ctx.strokeText("Choisir cette", xText, yText - 12);
+  ctx.strokeText("zone de signature", xText, yText + 12);
+  ctx.fillStyle = "yellow";
+  ctx.fillText("Choisir cette", xText, yText - 12);
+  ctx.fillText("zone de signature", xText, yText + 12);
 };
 
 const add_zones = (page: number) => {
@@ -178,6 +239,10 @@ const add_zones = (page: number) => {
 };
 
 const confirm_sign = () => {
+  open()
+};
+
+const post_zone = () => {
   console.log(userSignatureZones.value);
   //TODO POST userSignatureZones to backend
 };
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 2b2b75242..6d73bf6a4 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -1,13 +1,12 @@
 import { createApp } from "vue";
-// import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
-// import { appMessages } from "ChillMainAssets/vuejs/HomepageWidget/js/i18n";
+//import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
 import App from "./App.vue";
 
-//const i18n = _createI18n(appMessages);
+// const i18n = _createI18n(appMessages);
 
 const app = createApp({
     template: `<app></app>`,
 })
-    //.use(i18n)
+    // .use(i18n)
     .component("app", App)
     .mount("#document-signature");

From 794c479b9ef4ff69c1ed8cb6f98c9752160dcd4b Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 2 Jul 2024 15:08:45 +0200
Subject: [PATCH 110/375] signature: layout and css bootstrap class of the vue
 app

---
 .../public/vuejs/DocumentSignature/App.vue    |  59 ++++--
 .../views/PersonDocument/signature.html.twig  | 177 ++++++++----------
 2 files changed, 117 insertions(+), 119 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 9c2ad2bfb..da31c1b47 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -9,23 +9,41 @@
       </template>
     </modal>
   </teleport>
-  <div>
-    <button :disabled="!userSignatureZones" @click="confirm_sign">
-      Confirmer la signature
-    </button>
-    <button :disabled="!userSignatureZones" @click="undo_sign">
-      Supprimer la signature
-    </button>
+  <div class="col-12">
+
+    <div class="row justify-content-center">
+      <div class="col-3">
+        <button class="btn btn-primary" :disabled="!userSignatureZones" @click="confirm_sign">
+          Confirmer la signature
+        </button>
+      </div>
+      <div class="col-3">
+        <button class="btn btn-primary" :disabled="!userSignatureZones" @click="undo_sign">
+          Supprimer la signature
+        </button>
+      </div>
+    </div>
+
+    <div class="row justify-content-center">
+      <div class="col-2">
+        <button class="btn btn-light" @click="turn_signature(-1)">Zone de signature précédente</button>
+      </div>
+      <div class="col-2">
+        <button class="btn btn-light" @click="turn_signature(1)">Zone de signature suivante</button>
+      </div>
+    </div>
+
+    <div class="row justify-content-center" v-if="pageCount > 1">
+      <div class="col-3">
+        <button class="btn btn-light" :disabled="page <= 1" @click="turn_page(-1)">❮</button>
+          {{ page }} / {{ pageCount }}
+        <button class="btn btn-light" :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
+      </div>
+    </div>
   </div>
-  <div v-if="pageCount > 1">
-    <button :disabled="page <= 1" @click="turn_page(-1)">❮</button>
-    {{ page }} / {{ pageCount }}
-    <button :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
+  <div class="col-12">
+    <canvas id="canvas" style="width:100%"></canvas>
   </div>
-  <div>
-    <button @click="go_next_signature()">Voir les zones de signature</button>
-  </div>
-  <canvas id="canvas"></canvas>
 </template>
 
 <script setup lang="ts">
@@ -180,8 +198,7 @@ const turn_page = async (upOrDown: number) => {
   setTimeout(() => add_zones(page.value), 200);
 };
 
-const go_next_signature = async () => {
-  open()
+const turn_signature = async (upOrDown: number) => {
   let currentZone = signature.zones[zone.value];
   if (currentZone) {
     page.value = currentZone.page;
@@ -189,12 +206,13 @@ const go_next_signature = async () => {
     setTimeout(() => add_zones(page.value), 200);
   }
   if (zone.value < signature.zones.length - 1) {
-    zone.value = zone.value + 1;
+    zone.value = zone.value + upOrDown;
   } else {
     zone.value = 0;
   }
 };
 
+
 const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
@@ -262,6 +280,9 @@ const undo_sign = async () => {
 download_and_open();
 </script>
 
-<style lang="scss">
+<style scoped lang="scss">
+canvas {
+  width: 100%;
+}
 </style>
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
index 9c2017184..431de25b7 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -1,107 +1,84 @@
-{% extends "@ChillPerson/Person/layout.html.twig"  %}
+<!DOCTYPE html>
+<html lang="fr">
+<head>
+    <meta charset="UTF-8" />
+    <meta http-equiv="x-ua-compatible" content="ie=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <link rel="shortcut icon" href="{{ asset('build/images/favicon.ico') }}" type="image/x-icon">
+    <title>Signature</title>
 
-{% set activeRouteKey = '' %}
+    {{ encore_entry_link_tags('mod_bootstrap') }}
 
-{% import "@ChillDocStore/Macro/macro.html.twig" as m %}
-{% import "@ChillDocStore/Macro/macro_mimeicon.html.twig" as mm %}
+</head>
 
-{% block title %}{{ 'Detail of document of %name%'|trans({ '%name%': person|chill_entity_render_string } ) }}{% endblock %}
+<body>
 
-{% block js %}
-    {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
-    <script type="text/javascript">
-        const signature = {
-        id: 1,
-        //   // storedObject: {
-        //   //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
-        //   //   keyInfos: {
-        //   //     alg: "A256CBC",
-        //   //     ext: true,
-        //   //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
-        //   //     key_ops: ["encrypt", "decrypt"],
-        //   //     kty: "oct",
-        //   //   },
-        //   //   iv: [
-        //   //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
-        //   //   ],
-        //   // },
-        storedObject: {
-            filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
-            keyInfos: {
-            alg: "A256CBC",
-            ext: true,
-            k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
-            key_ops: ["encrypt", "decrypt"],
-            kty: "oct",
+    {% block js %}
+        {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
+        <script type="text/javascript">
+            const signature = {
+            id: 1,
+            //   // storedObject: {
+            //   //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
+            //   //   keyInfos: {
+            //   //     alg: "A256CBC",
+            //   //     ext: true,
+            //   //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
+            //   //     key_ops: ["encrypt", "decrypt"],
+            //   //     kty: "oct",
+            //   //   },
+            //   //   iv: [
+            //   //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
+            //   //   ],
+            //   // },
+            storedObject: {
+                filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
+                keyInfos: {
+                alg: "A256CBC",
+                ext: true,
+                k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
+                key_ops: ["encrypt", "decrypt"],
+                kty: "oct",
+                },
+                iv: [
+                254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
+                ],
             },
-            iv: [
-            254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
+            zones: [
+                {
+                page: 1,
+                pageWidth: 210,
+                pageHeight: 297,
+                x: 21, //from top-left corner
+                y: 50,
+                width: 80,
+                height: 50,
+                },
+                {
+                page: 3,
+                pageWidth: 210,
+                pageHeight: 297,
+                x: 60, //from top-left corner
+                y: 20,
+                width: 80,
+                height: 50,
+                },
             ],
-        },
-        zones: [
-            {
-            page: 1,
-            pageWidth: 210,
-            pageHeight: 297,
-            x: 21, //from top-left corner
-            y: 50,
-            width: 80,
-            height: 50,
-            },
-            {
-            page: 3,
-            pageWidth: 210,
-            pageHeight: 297,
-            x: 60, //from top-left corner
-            y: 20,
-            width: 80,
-            height: 50,
-            },
-        ],
-        };
-        window.signature = signature;
-    </script>
-    {{ encore_entry_script_tags('vue_document_signature') }}
-{% endblock %}
+            };
+            window.signature = signature;
+        </script>
+        {{ encore_entry_script_tags('vue_document_signature') }}
+    {% endblock %}
 
-{% block css %}
-    {{ encore_entry_link_tags('mod_document_action_buttons_group') }}
-{% endblock %}
-
-{% block content %}
-    <h1>{{ 'Document %title%' | trans({ '%title%': document.title }) }}</h1>
-
-    {{ mm.mimeIcon(document.object.type) }}
-
-    <dl class="chill_view_data">
-        <dt>{{ 'Title'|trans }}</dt>
-        <dd>{{ document.title }}</dd>
-    </dl>
-
-    <div id="document-signature"></div>
-
-    <ul class="record_actions sticky-form-buttons">
-        <li class="cancel">
-            <a href="{{ chill_return_path_or('chill_docstore_generic-doc_by-person_index', {'id': person.id}) }}" class="btn btn-cancel">
-                {{ 'Back to the list' | trans }}
-            </a>
-        </li>
-
-        {% if is_granted('CHILL_PERSON_DOCUMENT_DELETE', document) %}
-            <li class="delete">
-                <a href="{{ chill_return_path_or('chill_docstore_person_document_delete', {'person': person.id, 'id': document.id}) }}" class="btn btn-delete"></a>
-            </li>
-        {% endif %}
-
-        <li>
-            {{ document.object|chill_document_button_group(document.title, is_granted('CHILL_PERSON_DOCUMENT_UPDATE', document)) }}
-        </li>
-
-        {% if is_granted('CHILL_PERSON_DOCUMENT_UPDATE', document) %}
-            <li>
-                <a href="{{ path('person_document_edit', {'id': document.id, 'person': person.id}) }}" class="btn btn-edit">
-                    {{ 'Edit' | trans }}
-                </a>
-            </li>
-        {% endif %}
-{% endblock %}
+    <div class="content" id="content">
+        <div class="container-xxl">
+            <div class="row">
+               <div class="col-xs-12 col-md-12 col-lg-9 my-5 m-auto">
+                   <h1>{{ 'Document %title%' | trans({ '%title%': document.title }) }}</h1>
+                   <div class="row" id="document-signature"></div>
+               </div>
+            </div>
+        </div>
+    </div>
+</body>
+</html>

From 0c8ef3786092c783e263e2ff2930eea06e4b9022 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 2 Jul 2024 16:20:40 +0200
Subject: [PATCH 111/375] signature - more css bootstrap layout of the
 signature vue app

---
 .../public/vuejs/DocumentSignature/App.vue    | 21 +++++++++++--------
 .../views/PersonDocument/signature.html.twig  |  2 ++
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index da31c1b47..1cecea801 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -12,23 +12,26 @@
   <div class="col-12">
 
     <div class="row justify-content-center">
-      <div class="col-3">
-        <button class="btn btn-primary" :disabled="!userSignatureZones" @click="confirm_sign">
-          Confirmer la signature
+      <div class="col-6">
+        <button class="btn btn-create me-2" :disabled="!userSignatureZones" @click="confirm_sign">
+          Signer
+        </button>
+        <button class="btn btn-misc" :disabled="!userSignatureZones" @click="undo_sign">
+          Enlever la signature
         </button>
       </div>
-      <div class="col-3">
-        <button class="btn btn-primary" :disabled="!userSignatureZones" @click="undo_sign">
-          Supprimer la signature
+      <div class="col-6">
+        <button class="btn float-end btn-delete" :disabled="!userSignatureZones" @click="undo_sign">
+          Refuser de signer
         </button>
       </div>
     </div>
 
     <div class="row justify-content-center">
-      <div class="col-2">
+      <div class="col-4">
         <button class="btn btn-light" @click="turn_signature(-1)">Zone de signature précédente</button>
       </div>
-      <div class="col-2">
+      <div class="col-4">
         <button class="btn btn-light" @click="turn_signature(1)">Zone de signature suivante</button>
       </div>
     </div>
@@ -36,7 +39,7 @@
     <div class="row justify-content-center" v-if="pageCount > 1">
       <div class="col-3">
         <button class="btn btn-light" :disabled="page <= 1" @click="turn_page(-1)">❮</button>
-          {{ page }} / {{ pageCount }}
+          page {{ page }} / {{ pageCount }}
         <button class="btn btn-light" :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
       </div>
     </div>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
index 431de25b7..df21b178d 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -8,6 +8,8 @@
     <title>Signature</title>
 
     {{ encore_entry_link_tags('mod_bootstrap') }}
+    {{ encore_entry_link_tags('mod_forkawesome') }}
+    {{ encore_entry_link_tags('chill') }}
 
 </head>
 

From 5b7e3f033601f46544dfd1c5aba23678ad3aa05e Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 3 Jul 2024 16:08:44 +0200
Subject: [PATCH 112/375] signature - modale and translations in the vue app

---
 .../public/vuejs/DocumentSignature/App.vue    | 100 ++++++++++--------
 .../public/vuejs/DocumentSignature/index.ts   |  21 +++-
 2 files changed, 72 insertions(+), 49 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 1cecea801..dd702c2b1 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -1,51 +1,80 @@
 <template>
   <teleport to="body">
-    <modal v-if="state.show_modal" @close="close">
+    <modal v-if="modalOpen" @close="modalOpen = false">
       <template v-slot:header>
-        <h2>eh là!</h2>
+        <h2>{{ $t("signature_confirmation") }}</h2>
       </template>
       <template v-slot:body>
-        <p>Etes-vous sur de vouloir signer?</p>
+        <p>{{ $t("you_are_going_to_sign") }}</p>
+        <p>{{ $t("are_you_sure") }}</p>
+      </template>
+      <template v-slot:footer>
+        <button class="btn btn-action" @click.prevent="confirm_sign">
+          {{ $t("yes") }}
+        </button>
       </template>
     </modal>
   </teleport>
   <div class="col-12">
-
     <div class="row justify-content-center">
       <div class="col-6">
-        <button class="btn btn-create me-2" :disabled="!userSignatureZones" @click="confirm_sign">
-          Signer
+        <button
+          class="btn btn-action me-2"
+          :disabled="!userSignatureZones"
+          @click="modalOpen = true"
+        >
+          {{ $t("sign") }}
         </button>
-        <button class="btn btn-misc" :disabled="!userSignatureZones" @click="undo_sign">
-          Enlever la signature
+        <button
+          class="btn btn-misc"
+          :hidden="!userSignatureZones"
+          @click="undo_sign"
+        >
+          {{ $t("choose_another_signature") }}
         </button>
       </div>
       <div class="col-6">
-        <button class="btn float-end btn-delete" :disabled="!userSignatureZones" @click="undo_sign">
-          Refuser de signer
+        <button class="btn float-end btn-delete" @click="undo_sign">
+          {{ $t("cancel_signing") }}
         </button>
       </div>
     </div>
 
     <div class="row justify-content-center">
-      <div class="col-4">
-        <button class="btn btn-light" @click="turn_signature(-1)">Zone de signature précédente</button>
+      <div class="col-4 gap-2 d-grid">
+        <button class="btn btn-light" @click="turn_signature(-1)">
+          {{ $t("last_sign_zone") }}
+        </button>
       </div>
-      <div class="col-4">
-        <button class="btn btn-light" @click="turn_signature(1)">Zone de signature suivante</button>
+      <div class="col-4 gap-2 d-grid">
+        <button class="btn btn-light" @click="turn_signature(1)">
+          {{ $t("next_sign_zone") }}
+        </button>
       </div>
     </div>
 
     <div class="row justify-content-center" v-if="pageCount > 1">
-      <div class="col-3">
-        <button class="btn btn-light" :disabled="page <= 1" @click="turn_page(-1)">❮</button>
-          page {{ page }} / {{ pageCount }}
-        <button class="btn btn-light" :disabled="page >= pageCount" @click="turn_page(1)">❯</button>
+      <div class="col-3 text-center">
+        <button
+          class="btn btn-light"
+          :disabled="page <= 1"
+          @click="turn_page(-1)"
+        >
+          ❮
+        </button>
+        page {{ page }} / {{ pageCount }}
+        <button
+          class="btn btn-light"
+          :disabled="page >= pageCount"
+          @click="turn_page(1)"
+        >
+          ❯
+        </button>
       </div>
     </div>
   </div>
-  <div class="col-12">
-    <canvas id="canvas" style="width:100%"></canvas>
+  <div class="col-12 text-center">
+    <canvas class="m-auto" id="canvas"></canvas>
   </div>
 </template>
 
@@ -73,15 +102,7 @@ import {
 
 pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
-// export const i18n = {
-//   messages: {
-//     fr: {
-//       upload_a_document: "Téléversez un document",
-//     },
-//   },
-// };
-
-const modalOpened: Ref<boolean> = ref(false);
+const modalOpen: Ref<boolean> = ref(false);
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 const zone: Ref<number> = ref(0);
@@ -95,17 +116,6 @@ declare global {
   }
 }
 
-interface AddressModalState {
-  show_modal: boolean,
-}
-const state: AddressModalState = reactive({show_modal: false});
-const open = (): void => {
-  state.show_modal = true;
-}
-const close = (): void => {
-  state.show_modal = false;
-}
-
 const signature = window.signature;
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
@@ -188,7 +198,10 @@ const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
       ) {
         const ctx = canvas.getContext("2d");
         if (ctx) {
-          draw_zone(z, ctx, canvas.width, canvas.height, true);
+          setTimeout(
+            () => draw_zone(z, ctx, canvas.width, canvas.height, true),
+            200
+          );
         }
         userSignatureZones.value = z;
       }
@@ -215,7 +228,6 @@ const turn_signature = async (upOrDown: number) => {
   }
 };
 
-
 const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
@@ -260,10 +272,6 @@ const add_zones = (page: number) => {
 };
 
 const confirm_sign = () => {
-  open()
-};
-
-const post_zone = () => {
   console.log(userSignatureZones.value);
   //TODO POST userSignatureZones to backend
 };
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 6d73bf6a4..d141a9358 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -1,12 +1,27 @@
 import { createApp } from "vue";
-//import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
+// @ts-ignore
+import { _createI18n } from "ChillMainAssets/vuejs/_js/i18n";
 import App from "./App.vue";
 
-// const i18n = _createI18n(appMessages);
+const appMessages = {
+    fr: {
+        yes: 'Oui',
+        are_you_sure: 'Êtes-vous sûr·e?',
+        you_are_going_to_sign: 'Vous allez signer le document',
+        signature_confirmation: 'Confirmation de la signature',
+        sign: 'Signer',
+        choose_another_signature: 'Choisir une autre signature',
+        cancel_signing: 'Refuser de signer',
+        last_sign_zone: 'Zone de signature précédente',
+        next_sign_zone: 'Zone de signature suivante',
+    }
+}
+
+const i18n = _createI18n(appMessages);
 
 const app = createApp({
     template: `<app></app>`,
 })
-    // .use(i18n)
+    .use(i18n)
     .component("app", App)
     .mount("#document-signature");

From c428e6665fb15bf42910f07bfdb522ad7ebac8a4 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 4 Jul 2024 15:17:04 +0200
Subject: [PATCH 113/375] signature: use PDFSignatureZoneParser in vue app
 signature

---
 .../Controller/DocumentPersonController.php   | 19 ++++++-
 .../Resources/public/types.ts                 | 37 +++++++-------
 .../public/vuejs/DocumentSignature/App.vue    | 14 ++---
 .../views/PersonDocument/signature.html.twig  | 51 +------------------
 4 files changed, 46 insertions(+), 75 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
index c0edbe492..4867a12b2 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
@@ -26,6 +26,8 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Contracts\Translation\TranslatorInterface;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 
 /**
  * Class DocumentPersonController.
@@ -40,6 +42,8 @@ class DocumentPersonController extends AbstractController
         protected TranslatorInterface $translator,
         protected EventDispatcherInterface $eventDispatcher,
         protected AuthorizationHelper $authorizationHelper,
+        protected PDFSignatureZoneParser $PDFSignatureZoneParser,
+        protected StoredObjectManagerInterface $storedObjectManagerInterface,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
     ) {}
 
@@ -211,9 +215,22 @@ class DocumentPersonController extends AbstractController
         ]);
         $this->eventDispatcher->dispatch($event, PrivacyEvent::PERSON_PRIVACY_EVENT);
 
+        $storedObject = $document->getObject();
+        $content = $this->storedObjectManagerInterface->read($storedObject);
+        $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
+
+        $signature = [];
+        $signature['id'] = 1;
+        $signature['storedObject'] = [ //TEMP
+            'filename' => $storedObject->getFilename(),
+            'iv'=> $storedObject->getIv(),
+            'keyInfos' => $storedObject->getKeyInfos()
+        ];
+        $signature['zones'] = $zones;
+
         return $this->render(
             '@ChillDocStore/PersonDocument/signature.html.twig',
-            ['document' => $document, 'person' => $person]
+            ['document' => $document, 'person' => $person, 'signature' => $signature]
         );
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index a96949fdc..8fad4d9c8 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -26,11 +26,11 @@ export interface StoredObject {
 }
 
 export interface StoredObjectCreated {
-    status: "stored_object_created",
-    filename: string,
-    iv: Uint8Array,
-    keyInfos: object,
-    type: string,
+  status: "stored_object_created",
+  filename: string,
+  iv: Uint8Array,
+  keyInfos: object,
+  type: string,
 }
 
 export interface StoredObjectStatusChange {
@@ -51,21 +51,24 @@ export type WopiEditButtonExecutableBeforeLeaveFunction = {
  * Object containing information for performering a POST request to a swift object store
  */
 export interface PostStoreObjectSignature {
-    method: "POST",
-    max_file_size: number,
-    max_file_count: 1,
-    expires: number,
-    submit_delay: 180,
-    redirect: string,
-    prefix: string,
-    url: string,
-    signature: string,
+  method: "POST",
+  max_file_size: number,
+  max_file_count: 1,
+  expires: number,
+  submit_delay: 180,
+  redirect: string,
+  prefix: string,
+  url: string,
+  signature: string,
 }
 
+export interface PDFPage {
+  index: number,
+  width: number,
+  height: number,
+}
 export interface SignatureZone {
-  page: number,
-  pageWidth: number,
-  pageHeight: number,
+  PDFPage: PDFPage,
   x: number,
   y: number,
   width: number,
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index dd702c2b1..b22f4bdbd 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -179,8 +179,8 @@ const hit_signature = (
   canvasWidth: number,
   canvasHeight: number
 ) => {
-  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.pageWidth;
-  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.pageHeight;
+  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.PDFPage.width;
+  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.PDFPage.height;
   return (
     scaleXToCanvas(zone.x) < xy[0] &&
     xy[0] < scaleXToCanvas(zone.x + zone.width) &&
@@ -191,7 +191,7 @@ const hit_signature = (
 
 const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
-    .filter((z) => z.page === page.value)
+    .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
       if (
         hit_signature(z, [e.offsetX, e.offsetY], canvas.width, canvas.height)
@@ -217,7 +217,7 @@ const turn_page = async (upOrDown: number) => {
 const turn_signature = async (upOrDown: number) => {
   let currentZone = signature.zones[zone.value];
   if (currentZone) {
-    page.value = currentZone.page;
+    page.value = currentZone.PDFPage.index + 1;
     await set_page(page.value);
     setTimeout(() => add_zones(page.value), 200);
   }
@@ -236,9 +236,9 @@ const draw_zone = (
   selected = false
 ) => {
   const scaleXToCanvas = (x: number) =>
-    Math.round((x * canvasWidth) / zone.pageWidth);
+    Math.round((x * canvasWidth) / zone.PDFPage.width);
   const scaleYToCanvas = (y: number) =>
-    Math.round((y * canvasHeight) / zone.pageHeight);
+    Math.round((y * canvasHeight) / zone.PDFPage.height);
   ctx.strokeStyle = selected ? "orange " : "yellow";
   ctx.lineWidth = 10;
   ctx.lineJoin = "bevel";
@@ -266,7 +266,7 @@ const add_zones = (page: number) => {
   const ctx = canvas.getContext("2d");
   if (ctx) {
     signature.zones
-      .filter((z) => z.page === page)
+      .filter((z) => z.PDFPage.index + 1 === page)
       .map((z) => draw_zone(z, ctx, canvas.width, canvas.height));
   }
 };
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
index df21b178d..5f2a2da3b 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -18,56 +18,7 @@
     {% block js %}
         {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
         <script type="text/javascript">
-            const signature = {
-            id: 1,
-            //   // storedObject: {
-            //   //   filename: "gj72nCYsiuysZwZMTMVv5mhqmJdA",
-            //   //   keyInfos: {
-            //   //     alg: "A256CBC",
-            //   //     ext: true,
-            //   //     k: "WwEuXQqv5sJFzAM6P5q7Ecvbl2MiA9mE_MTQ1fAhVsY",
-            //   //     key_ops: ["encrypt", "decrypt"],
-            //   //     kty: "oct",
-            //   //   },
-            //   //   iv: [
-            //   //     50, 124, 210, 52, 177, 145, 165, 156, 90, 186, 155, 252, 241, 54, 194, 79,
-            //   //   ],
-            //   // },
-            storedObject: {
-                filename: "U2HmWk5MGkUW1vHRA5sMEMkW9fyf",
-                keyInfos: {
-                alg: "A256CBC",
-                ext: true,
-                k: "3GmJ8UBck3WhpmdoQy7cGQho0J9k9Rxhn23UIhqvpVY",
-                key_ops: ["encrypt", "decrypt"],
-                kty: "oct",
-                },
-                iv: [
-                254, 171, 69, 203, 89, 3, 202, 29, 187, 200, 19, 146, 201, 253, 79, 169,
-                ],
-            },
-            zones: [
-                {
-                page: 1,
-                pageWidth: 210,
-                pageHeight: 297,
-                x: 21, //from top-left corner
-                y: 50,
-                width: 80,
-                height: 50,
-                },
-                {
-                page: 3,
-                pageWidth: 210,
-                pageHeight: 297,
-                x: 60, //from top-left corner
-                y: 20,
-                width: 80,
-                height: 50,
-                },
-            ],
-            };
-            window.signature = signature;
+            window.signature = {{ signature|json_encode|raw }};
         </script>
         {{ encore_entry_script_tags('vue_document_signature') }}
     {% endblock %}

From c968d6c541c737b1a4db51b3d68411448efa196c Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 4 Jul 2024 17:10:20 +0200
Subject: [PATCH 114/375] signature: improve layout and some functionalities of
 the signature app

---
 .../public/vuejs/DocumentSignature/App.vue    | 115 +++++++++++-------
 .../public/vuejs/DocumentSignature/index.ts   |   1 +
 .../views/PersonDocument/signature.html.twig  |   3 +-
 3 files changed, 77 insertions(+), 42 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b22f4bdbd..1720ce996 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -16,7 +16,52 @@
     </modal>
   </teleport>
   <div class="col-12">
-    <div class="row justify-content-center">
+    <div
+      class="row justify-content-center mb-2"
+      v-if="signature.zones.length > 1"
+    >
+      <div class="col-4 gap-2 d-grid">
+        <button class="btn btn-light btn-sm" @click="turn_signature(-1)">
+          {{ $t("last_sign_zone") }}
+        </button>
+      </div>
+      <div class="col-4 gap-2 d-grid">
+        <button class="btn btn-light btn-sm" @click="turn_signature(1)">
+          {{ $t("next_sign_zone") }}
+        </button>
+      </div>
+    </div>
+
+    <div
+      id="turn-page"
+      class="row justify-content-center mb-2"
+      v-if="pageCount > 1"
+    >
+      <div class="col-6-sm col-3-md text-center">
+        <button
+          class="btn btn-light btn-sm"
+          :disabled="page <= 1"
+          @click="turn_page(-1)"
+        >
+          ❮
+        </button>
+        <span>page {{ page }} / {{ pageCount }}</span>
+        <button
+          class="btn btn-light btn-sm"
+          :disabled="page >= pageCount"
+          @click="turn_page(1)"
+        >
+          ❯
+        </button>
+      </div>
+    </div>
+  </div>
+  <div class="col-12 text-center">
+    <canvas class="m-auto" id="canvas"></canvas>
+  </div>
+
+  <div class="col-12 p-4" id="action-buttons">
+    <div class="row">
       <div class="col-6">
         <button
           class="btn btn-action me-2"
@@ -29,9 +74,18 @@
           class="btn btn-misc"
           :hidden="!userSignatureZones"
           @click="undo_sign"
+          v-if="signature.zones.length > 1"
         >
           {{ $t("choose_another_signature") }}
         </button>
+        <button
+          class="btn btn-misc"
+          :hidden="!userSignatureZones"
+          @click="undo_sign"
+          v-else
+        >
+          {{ $t("cancel") }}
+        </button>
       </div>
       <div class="col-6">
         <button class="btn float-end btn-delete" @click="undo_sign">
@@ -39,42 +93,6 @@
         </button>
       </div>
     </div>
-
-    <div class="row justify-content-center">
-      <div class="col-4 gap-2 d-grid">
-        <button class="btn btn-light" @click="turn_signature(-1)">
-          {{ $t("last_sign_zone") }}
-        </button>
-      </div>
-      <div class="col-4 gap-2 d-grid">
-        <button class="btn btn-light" @click="turn_signature(1)">
-          {{ $t("next_sign_zone") }}
-        </button>
-      </div>
-    </div>
-
-    <div class="row justify-content-center" v-if="pageCount > 1">
-      <div class="col-3 text-center">
-        <button
-          class="btn btn-light"
-          :disabled="page <= 1"
-          @click="turn_page(-1)"
-        >
-          ❮
-        </button>
-        page {{ page }} / {{ pageCount }}
-        <button
-          class="btn btn-light"
-          :disabled="page >= pageCount"
-          @click="turn_page(1)"
-        >
-          ❯
-        </button>
-      </div>
-    </div>
-  </div>
-  <div class="col-12 text-center">
-    <canvas class="m-auto" id="canvas"></canvas>
   </div>
 </template>
 
@@ -180,7 +198,8 @@ const hit_signature = (
   canvasHeight: number
 ) => {
   const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.PDFPage.width;
-  const scaleYToCanvas = (y: number) => (y * canvasHeight) / zone.PDFPage.height;
+  const scaleYToCanvas = (y: number) =>
+    (y * canvasHeight) / zone.PDFPage.height;
   return (
     scaleXToCanvas(zone.x) < xy[0] &&
     xy[0] < scaleXToCanvas(zone.x + zone.width) &&
@@ -189,7 +208,8 @@ const hit_signature = (
   );
 };
 
-const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) => {
+  undo_sign();
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
@@ -206,6 +226,7 @@ const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
         userSignatureZones.value = z;
       }
     });
+};
 
 const turn_page = async (upOrDown: number) => {
   userSignatureZones.value = null;
@@ -292,8 +313,20 @@ download_and_open();
 </script>
 
 <style scoped lang="scss">
-canvas {
-  width: 100%;
+#canvas {
+  box-shadow: 0 20px 20px rgba(0, 0, 0, 0.1);
+}
+div#action-buttons {
+  position: sticky;
+  bottom: 0px;
+  background-color: white;
+  z-index: 100;
+}
+div#turn-page {
+  span {
+    font-size: 0.8rem;
+    margin: 0 0.4rem;
+  }
 }
 </style>
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index d141a9358..b2bc57feb 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -11,6 +11,7 @@ const appMessages = {
         signature_confirmation: 'Confirmation de la signature',
         sign: 'Signer',
         choose_another_signature: 'Choisir une autre signature',
+        cancel: 'Annuler',
         cancel_signing: 'Refuser de signer',
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
index 5f2a2da3b..b410f70d3 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/PersonDocument/signature.html.twig
@@ -10,6 +10,7 @@
     {{ encore_entry_link_tags('mod_bootstrap') }}
     {{ encore_entry_link_tags('mod_forkawesome') }}
     {{ encore_entry_link_tags('chill') }}
+    {{ encore_entry_link_tags('vue_document_signature') }}
 
 </head>
 
@@ -27,7 +28,7 @@
         <div class="container-xxl">
             <div class="row">
                <div class="col-xs-12 col-md-12 col-lg-9 my-5 m-auto">
-                   <h1>{{ 'Document %title%' | trans({ '%title%': document.title }) }}</h1>
+                   <h4>{{ 'Document %title%' | trans({ '%title%': document.title }) }}</h4>
                    <div class="row" id="document-signature"></div>
                </div>
             </div>

From fb62e54d63bf460cd50b15fc9823a0a36fcd85f5 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 5 Jul 2024 10:10:26 +0200
Subject: [PATCH 115/375] signature: correct positioning of zones in vue app 
 wrt to PDFSignatureZoneParser

---
 .../public/vuejs/DocumentSignature/App.vue      | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 1720ce996..160028ce2 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -197,14 +197,17 @@ const hit_signature = (
   canvasWidth: number,
   canvasHeight: number
 ) => {
-  const scaleXToCanvas = (x: number) => (x * canvasWidth) / zone.PDFPage.width;
+  const scaleXToCanvas = (x: number) =>
+    Math.round((x * canvasWidth) / zone.PDFPage.width);
+  const scaleHeightToCanvas = (h: number) =>
+    Math.round((h * canvasHeight) / zone.PDFPage.height);
   const scaleYToCanvas = (y: number) =>
-    (y * canvasHeight) / zone.PDFPage.height;
+    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
   return (
     scaleXToCanvas(zone.x) < xy[0] &&
     xy[0] < scaleXToCanvas(zone.x + zone.width) &&
     scaleYToCanvas(zone.y) < xy[1] &&
-    xy[1] < scaleYToCanvas(zone.y + zone.height)
+    xy[1] < scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height)
   );
 };
 
@@ -258,8 +261,10 @@ const draw_zone = (
 ) => {
   const scaleXToCanvas = (x: number) =>
     Math.round((x * canvasWidth) / zone.PDFPage.width);
+  const scaleHeightToCanvas = (h: number) =>
+    Math.round((h * canvasHeight) / zone.PDFPage.height);
   const scaleYToCanvas = (y: number) =>
-    Math.round((y * canvasHeight) / zone.PDFPage.height);
+    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
   ctx.strokeStyle = selected ? "orange " : "yellow";
   ctx.lineWidth = 10;
   ctx.lineJoin = "bevel";
@@ -267,13 +272,13 @@ const draw_zone = (
     scaleXToCanvas(zone.x),
     scaleYToCanvas(zone.y),
     scaleXToCanvas(zone.width),
-    scaleYToCanvas(zone.height)
+    scaleHeightToCanvas(zone.height)
   );
   ctx.font = "bold 16px serif";
   ctx.textAlign = "center";
   ctx.fillStyle = "black";
   const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
-  const yText = scaleYToCanvas(zone.y) + scaleYToCanvas(zone.height) / 2;
+  const yText = scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height) / 2;
   ctx.strokeStyle = "grey";
   ctx.strokeText("Choisir cette", xText, yText - 12);
   ctx.strokeText("zone de signature", xText, yText + 12);

From 39d3ba2f40a42d6d366a55ac9312c3bd15eea1cd Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 5 Jul 2024 14:59:46 +0200
Subject: [PATCH 116/375] signature: fake POSTing of signature, adjustments

---
 .../public/vuejs/DocumentSignature/App.vue    | 90 ++++++++++++-------
 .../public/vuejs/DocumentSignature/index.ts   |  2 +
 .../Signature/PDFSignatureZoneParser.php      |  2 +-
 3 files changed, 62 insertions(+), 32 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 160028ce2..35e842243 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -5,8 +5,19 @@
         <h2>{{ $t("signature_confirmation") }}</h2>
       </template>
       <template v-slot:body>
-        <p>{{ $t("you_are_going_to_sign") }}</p>
-        <p>{{ $t("are_you_sure") }}</p>
+        <div class="signature-modal-body text-center" v-if="loading">
+          <p>{{ $t("electronic_signature_in_progress") }}</p>
+          <div class="loading">
+            <i
+              class="fa fa-circle-o-notch fa-spin fa-3x"
+              :title="$t('loading')"
+            ></i>
+          </div>
+        </div>
+        <div class="signature-modal-body text-center" v-else>
+          <p>{{ $t("you_are_going_to_sign") }}</p>
+          <p>{{ $t("are_you_sure") }}</p>
+        </div>
       </template>
       <template v-slot:footer>
         <button class="btn btn-action" @click.prevent="confirm_sign">
@@ -21,7 +32,7 @@
       v-if="signature.zones.length > 1"
     >
       <div class="col-4 gap-2 d-grid">
-        <button class="btn btn-light btn-sm" @click="turn_signature(-1)">
+        <button :disabled="zone < 1" class="btn btn-light btn-sm" @click="turn_signature(-1)">
           {{ $t("last_sign_zone") }}
         </button>
       </div>
@@ -60,7 +71,7 @@
     <canvas class="m-auto" id="canvas"></canvas>
   </div>
 
-  <div class="col-12 p-4" id="action-buttons">
+  <div class="col-12 p-4" id="action-buttons" v-if="!signed">
     <div class="row">
       <div class="col-6">
         <button
@@ -121,6 +132,8 @@ import {
 pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
 const modalOpen: Ref<boolean> = ref(false);
+const loading: Ref<boolean> = ref(false);
+const signed: Ref<boolean> = ref(false);
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 const zone: Ref<number> = ref(0);
@@ -211,8 +224,7 @@ const hit_signature = (
   );
 };
 
-const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) => {
-  undo_sign();
+const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
@@ -221,15 +233,15 @@ const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) => {
       ) {
         const ctx = canvas.getContext("2d");
         if (ctx) {
+          set_page(page.value);
           setTimeout(
-            () => draw_zone(z, ctx, canvas.width, canvas.height, true),
+            () => draw_zone(z, ctx, canvas.width, canvas.height),
             200
           );
         }
         userSignatureZones.value = z;
       }
     });
-};
 
 const turn_page = async (upOrDown: number) => {
   userSignatureZones.value = null;
@@ -239,34 +251,37 @@ const turn_page = async (upOrDown: number) => {
 };
 
 const turn_signature = async (upOrDown: number) => {
+  userSignatureZones.value = null;
+  if (zone.value < signature.zones.length - 1) {
+    zone.value = zone.value + upOrDown;
+  } else {
+    zone.value = 0;
+  }
   let currentZone = signature.zones[zone.value];
   if (currentZone) {
     page.value = currentZone.PDFPage.index + 1;
     await set_page(page.value);
     setTimeout(() => add_zones(page.value), 200);
   }
-  if (zone.value < signature.zones.length - 1) {
-    zone.value = zone.value + upOrDown;
-  } else {
-    zone.value = 0;
-  }
 };
 
 const draw_zone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
   canvasWidth: number,
-  canvasHeight: number,
-  selected = false
+  canvasHeight: number
 ) => {
+  const unselectedBlue = "#007bff";
+  const selectedBlue = "#034286";
   const scaleXToCanvas = (x: number) =>
     Math.round((x * canvasWidth) / zone.PDFPage.width);
   const scaleHeightToCanvas = (h: number) =>
     Math.round((h * canvasHeight) / zone.PDFPage.height);
   const scaleYToCanvas = (y: number) =>
     Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
-  ctx.strokeStyle = selected ? "orange " : "yellow";
-  ctx.lineWidth = 10;
+  ctx.strokeStyle =
+    userSignatureZones.value === null ? unselectedBlue : selectedBlue;
+  ctx.lineWidth = 2;
   ctx.lineJoin = "bevel";
   ctx.strokeRect(
     scaleXToCanvas(zone.x),
@@ -279,12 +294,17 @@ const draw_zone = (
   ctx.fillStyle = "black";
   const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
   const yText = scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height) / 2;
-  ctx.strokeStyle = "grey";
-  ctx.strokeText("Choisir cette", xText, yText - 12);
-  ctx.strokeText("zone de signature", xText, yText + 12);
-  ctx.fillStyle = "yellow";
-  ctx.fillText("Choisir cette", xText, yText - 12);
-  ctx.fillText("zone de signature", xText, yText + 12);
+  if (userSignatureZones.value !== null) {
+    ctx.fillStyle = selectedBlue;
+    ctx.fillText("Signer ici", xText, yText);
+  } else {
+    ctx.fillStyle = unselectedBlue;
+    ctx.fillText("Choisir cette", xText, yText - 12);
+    ctx.fillText("zone de signature", xText, yText + 12);
+    // ctx.strokeStyle = "#c6c6c6"; // halo
+    // ctx.strokeText("Choisir cette", xText, yText - 12);
+    // ctx.strokeText("zone de signature", xText, yText + 12);
+  }
 };
 
 const add_zones = (page: number) => {
@@ -299,18 +319,23 @@ const add_zones = (page: number) => {
 
 const confirm_sign = () => {
   console.log(userSignatureZones.value);
+  loading.value = true;
   //TODO POST userSignatureZones to backend
+  setTimeout(() => {
+    loading.value = false;
+    modalOpen.value = false;
+    signed.value = true;
+  }, 3000); // FAKE
 };
 
 const undo_sign = async () => {
-  const canvas = document.querySelectorAll("canvas")[0];
-  const ctx = canvas.getContext("2d");
-  if (ctx && userSignatureZones.value) {
-    draw_zone(userSignatureZones.value, ctx, canvas.width, canvas.height);
-    //another option is to reload the canvas
-    //await set_page(page.value);
-    //setTimeout(() => add_zones(page.value), 200);
-  }
+  // const canvas = document.querySelectorAll("canvas")[0];
+  // const ctx = canvas.getContext("2d");
+  // if (ctx && userSignatureZones.value) {
+  //   //draw_zone(userSignatureZones.value, ctx, canvas.width, canvas.height);
+  // }
+  await set_page(page.value);
+  setTimeout(() => add_zones(page.value), 200);
   userSignatureZones.value = null;
 };
 
@@ -333,5 +358,8 @@ div#turn-page {
     margin: 0 0.4rem;
   }
 }
+div.signature-modal-body {
+  height: 8rem;
+}
 </style>
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index b2bc57feb..264622e72 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -15,6 +15,8 @@ const appMessages = {
         cancel_signing: 'Refuser de signer',
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
+        electronic_signature_in_progress: 'Signature électronique en cours...',
+        loading: 'Chargement...'
     }
 }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index d57b98abf..44bed3298 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -20,7 +20,7 @@ class PDFSignatureZoneParser
     private Parser $parser;
 
     public function __construct(
-        public float $defaultHeight = 180.0,
+        public float $defaultHeight = 90.0,
         public float $defaultWidth = 180.0,
     ) {
         $this->parser = new Parser();

From 77da2c1ac6a92b0a4ca536633ed8e6fa89df783a Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 11 Jul 2024 08:06:18 +0200
Subject: [PATCH 117/375] signature: add index on PDFSignatureZone + init POST
 signature

---
 .../Controller/SignatureRequestController.php | 42 +++++++++++++++----
 .../Resources/public/types.ts                 |  3 +-
 .../public/vuejs/DocumentSignature/App.vue    | 24 ++++++++---
 .../Service/Signature/PDFSignatureZone.php    |  5 ++-
 .../Signature/PDFSignatureZoneParser.php      |  4 +-
 .../RequestPdfSignMessageSerializerTest.php   |  6 +--
 .../Signature/PDFSignatureZoneParserTest.php  |  2 +
 7 files changed, 66 insertions(+), 20 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index d76e9e5db..9cbd656cd 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -16,7 +16,9 @@ use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessa
 use Chill\DocStoreBundle\Service\Signature\PDFPage;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
-use Symfony\Component\HttpFoundation\Response;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
 
@@ -28,19 +30,41 @@ class SignatureRequestController
     ) {}
 
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
-    public function processSignature(StoredObject $storedObject): Response
+    //public function processSignature(EntityWorkflowStepSignature $signature): Response // using ParamConverter
+    public function processSignature(EntityWorkflowStepSignature $signature, Request $request): JsonResponse
     {
-        $content = $this->storedObjectManager->read($storedObject);
+        dump($signature);
+        // $signature = $this->signatureRepository($signature); //not useful?
+        // $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+        // $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+
+        dump($request);
+        // TODO parse payload: json_decode ou, mieux, dataTransfertObject
+        // dump($request);
+        $data = \json_decode((string) $request->getContent(), true, 512, JSON_THROW_ON_ERROR);
+        dump($data);
+        $signatureId = 1;
+        $storedObjectId = 9; //$data['storedObject']['id'];
+        $content = 'blop';// $this->storedObjectManager->read($storedObjectId);
+
+        $zone = new PDFSignatureZone(
+            $data['zone']['index'],
+            $data['zone']['x'],
+            $data['zone']['y'],
+            $data['zone']['height'],
+            $data['zone']['width'],
+            $page = new PDFPage($data['zone']['PDFPage']['index'], $data['zone']['PDFPage']['width'], $data['zone']['PDFPage']['height'])
+        );
 
         $this->messageBus->dispatch(new RequestPdfSignMessage(
-            0,
-            new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
-            0,
-            'test signature',
-            'Mme Caroline Diallo',
+            $signatureId,
+            $zone,
+            $data['zone']['index'],
+            'test signature', //reason (string)
+            'Mme Caroline Diallo', //signerText (string)
             $content
         ));
 
-        return new Response('<html><head><title>test</title></head><body><p>ok</p></body></html>');
+        return new JsonResponse(null, JsonResponse::HTTP_OK, []);
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 8fad4d9c8..63d85a3df 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -68,11 +68,12 @@ export interface PDFPage {
   height: number,
 }
 export interface SignatureZone {
-  PDFPage: PDFPage,
+  index: number,
   x: number,
   y: number,
   width: number,
   height: number,
+  PDFPage: PDFPage,
 }
 
 export interface Signature {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 35e842243..ee2daf498 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -110,6 +110,7 @@
 <script setup lang="ts">
 import { ref, Ref, reactive } from "vue";
 import { Signature, SignatureZone } from "../../types";
+import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
 import {
   PDFDocumentProxy,
@@ -321,11 +322,24 @@ const confirm_sign = () => {
   console.log(userSignatureZones.value);
   loading.value = true;
   //TODO POST userSignatureZones to backend
-  setTimeout(() => {
-    loading.value = false;
-    modalOpen.value = false;
-    signed.value = true;
-  }, 3000); // FAKE
+  const url = `/api/1.0/document/workflow/${signature.id}/signature-request`;
+  const body = {
+    storedObject: signature.storedObject,
+    zone: userSignatureZones.value,
+  };
+  makeFetch('POST', url, body)
+      .then(r => {
+
+      })
+      .catch((error) => {
+
+      });
+
+  // setTimeout(() => {
+  //   loading.value = false;
+  //   modalOpen.value = false;
+  //   signed.value = true;
+  // }, 3000); // FAKE
 };
 
 const undo_sign = async () => {
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
index bdb4dcd65..c21b2fdc2 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
@@ -16,6 +16,8 @@ use Symfony\Component\Serializer\Annotation\Groups;
 final readonly class PDFSignatureZone
 {
     public function __construct(
+        #[Groups(['read'])]
+        public int $index,
         #[Groups(['read'])]
         public float $x,
         #[Groups(['read'])]
@@ -31,7 +33,8 @@ final readonly class PDFSignatureZone
     public function equals(self $other): bool
     {
         return
-            $this->x == $other->x
+            $this->index == $other->index
+            && $this->x == $other->x
             && $this->y == $other->y
             && $this->height == $other->height
             && $this->width == $other->width
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index 44bed3298..2e35bc568 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -37,6 +37,7 @@ class PDFSignatureZoneParser
         $defaults = $pdf->getObjectsByType('Pages');
         $defaultPage = reset($defaults);
         $defaultPageDetails = $defaultPage->getDetails();
+        $zoneIndex = 0;
 
         foreach ($pdf->getPages() as $index => $page) {
             $details = $page->getDetails();
@@ -48,7 +49,8 @@ class PDFSignatureZoneParser
 
             foreach ($page->getDataTm() as $dataTm) {
                 if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
-                    $zones[] = new PDFSignatureZone((float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
+                    $zones[] = new PDFSignatureZone((int) $zoneIndex, (float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
+                    $zoneIndex++;
                 }
             }
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php
index 6fda535df..312fabb19 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializerTest.php
@@ -36,7 +36,7 @@ class RequestPdfSignMessageSerializerTest extends TestCase
         $envelope = new Envelope(
             $request = new RequestPdfSignMessage(
                 0,
-                new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
+                new PDFSignatureZone(0, 10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
                 0,
                 'metadata to add to the signature',
                 'Mme Caroline Diallo',
@@ -66,7 +66,7 @@ class RequestPdfSignMessageSerializerTest extends TestCase
 
         $request = new RequestPdfSignMessage(
             0,
-            new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
+            new PDFSignatureZone(0, 10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0)),
             0,
             'metadata to add to the signature',
             'Mme Caroline Diallo',
@@ -121,7 +121,7 @@ class RequestPdfSignMessageSerializerTest extends TestCase
         $denormalizer = new class () implements DenormalizerInterface {
             public function denormalize($data, string $type, ?string $format = null, array $context = [])
             {
-                return new PDFSignatureZone(10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0));
+                return new PDFSignatureZone(0, 10.0, 10.0, 180.0, 180.0, new PDFPage(0, 500.0, 800.0));
             }
 
             public function supportsDenormalization($data, string $type, ?string $format = null)
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
index 5a78c8bbf..299c90dd8 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
@@ -58,6 +58,7 @@ class PDFSignatureZoneParserTest extends TestCase
             __DIR__.'/data/signature_2_signature_page_1.pdf',
             [
                 new PDFSignatureZone(
+                    0,
                     127.7,
                     95.289,
                     180.0,
@@ -65,6 +66,7 @@ class PDFSignatureZoneParserTest extends TestCase
                     $page = new PDFPage(0, 595.30393, 841.8897)
                 ),
                 new PDFSignatureZone(
+                    1,
                     269.5,
                     95.289,
                     180.0,

From 421226c0dcb7b0737e9eed4a51a3818c2ac0af10 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 12 Jul 2024 11:52:22 +0200
Subject: [PATCH 118/375] signature: check for signature state

---
 .../Controller/SignatureRequestController.php | 22 +++--
 .../Resources/public/types.ts                 |  4 +-
 .../public/vuejs/DocumentSignature/App.vue    | 93 ++++++++++++++-----
 3 files changed, 85 insertions(+), 34 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 9cbd656cd..d148e82b7 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -17,6 +17,8 @@ use Chill\DocStoreBundle\Service\Signature\PDFPage;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Messenger\MessageBusInterface;
@@ -27,26 +29,20 @@ class SignatureRequestController
     public function __construct(
         private MessageBusInterface $messageBus,
         private StoredObjectManagerInterface $storedObjectManager,
+        private EntityWorkflowManager $entityWorkflowManager,
     ) {}
 
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
-    //public function processSignature(EntityWorkflowStepSignature $signature): Response // using ParamConverter
     public function processSignature(EntityWorkflowStepSignature $signature, Request $request): JsonResponse
     {
         dump($signature);
         // $signature = $this->signatureRepository($signature); //not useful?
         // $entityWorkflow = $signature->getStep()->getEntityWorkflow();
         // $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+        $content = 'blop';// $this->storedObjectManager->read($storedObject);
 
-        dump($request);
-        // TODO parse payload: json_decode ou, mieux, dataTransfertObject
-        // dump($request);
-        $data = \json_decode((string) $request->getContent(), true, 512, JSON_THROW_ON_ERROR);
+        $data = \json_decode((string) $request->getContent(), true, 512, JSON_THROW_ON_ERROR); // TODO parse payload: json_decode ou, mieux, dataTransfertObject
         dump($data);
-        $signatureId = 1;
-        $storedObjectId = 9; //$data['storedObject']['id'];
-        $content = 'blop';// $this->storedObjectManager->read($storedObjectId);
-
         $zone = new PDFSignatureZone(
             $data['zone']['index'],
             $data['zone']['x'],
@@ -57,7 +53,7 @@ class SignatureRequestController
         );
 
         $this->messageBus->dispatch(new RequestPdfSignMessage(
-            $signatureId,
+            $signature->getId(),
             $zone,
             $data['zone']['index'],
             'test signature', //reason (string)
@@ -67,4 +63,10 @@ class SignatureRequestController
 
         return new JsonResponse(null, JsonResponse::HTTP_OK, []);
     }
+
+    #[Route('/api/1.0/document/workflow/{id}/check-signature', name: 'chill_docstore_check_signature')]
+    public function checkSignature(EntityWorkflowStepSignature $signature): JsonResponse
+    {
+        return new JsonResponse($signature->getState(), JsonResponse::HTTP_OK, []);
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 63d85a3df..1fc8b1cdd 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -80,4 +80,6 @@ export interface Signature {
   id: number,
   storedObject: StoredObject,
   zones: SignatureZone[],
-}
\ No newline at end of file
+}
+
+export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
\ No newline at end of file
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index ee2daf498..268e75636 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -32,7 +32,11 @@
       v-if="signature.zones.length > 1"
     >
       <div class="col-4 gap-2 d-grid">
-        <button :disabled="zone < 1" class="btn btn-light btn-sm" @click="turn_signature(-1)">
+        <button
+          :disabled="zone < 1"
+          class="btn btn-light btn-sm"
+          @click="turn_signature(-1)"
+        >
           {{ $t("last_sign_zone") }}
         </button>
       </div>
@@ -71,7 +75,7 @@
     <canvas class="m-auto" id="canvas"></canvas>
   </div>
 
-  <div class="col-12 p-4" id="action-buttons" v-if="!signed">
+  <div class="col-12 p-4" id="action-buttons" v-if="signedState !== 'signed'">
     <div class="row">
       <div class="col-6">
         <button
@@ -109,7 +113,7 @@
 
 <script setup lang="ts">
 import { ref, Ref, reactive } from "vue";
-import { Signature, SignatureZone } from "../../types";
+import { Signature, SignatureZone, SignedState } from "../../types";
 import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
 import {
@@ -134,7 +138,7 @@ pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
 const modalOpen: Ref<boolean> = ref(false);
 const loading: Ref<boolean> = ref(false);
-const signed: Ref<boolean> = ref(false);
+const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 const zone: Ref<number> = ref(0);
@@ -235,10 +239,7 @@ const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
         const ctx = canvas.getContext("2d");
         if (ctx) {
           set_page(page.value);
-          setTimeout(
-            () => draw_zone(z, ctx, canvas.width, canvas.height),
-            200
-          );
+          setTimeout(() => draw_zone(z, ctx, canvas.width, canvas.height), 200);
         }
         userSignatureZones.value = z;
       }
@@ -318,28 +319,74 @@ const add_zones = (page: number) => {
   }
 };
 
+const check_signature = () => {
+  const url = `/api/1.0/document/workflow/${signature.id}/check-signature`;
+  return makeFetch("GET", url)
+    .then((r) => {
+      signedState.value = r as SignedState;
+      if (signedState.value === "pending") {
+        check_for_ready();
+      }
+    })
+    .catch((error) => {
+      signedState.value = "error";
+      console.log('Error while checking the signature', error);
+      //TODO toast error
+    });
+};
+
+const maxTryForReady = 60; //2 minutes for trying to sign
+let tryForReady = 0;
+
+const stop_try_signing = () => {
+  loading.value = false;
+  modalOpen.value = false;
+};
+
+const check_for_ready = () => {
+  if (tryForReady > maxTryForReady) {
+    signedState.value = "error";
+    stop_try_signing();
+    console.log("Reached the maximum number of tentative to try signing");
+    //TODO toast error
+  }
+  if (signedState.value === "rejected") {
+    stop_try_signing();
+    console.log("Signature rejected by the server");
+    //TODO toast error
+  }
+  if (signedState.value === "canceled") {
+    stop_try_signing();
+    console.log("Signature canceledconsole.log('Error while posting the signature', error);");
+    //TODO toast error
+  }
+  if (signedState.value === "pending") {
+    tryForReady = tryForReady + 1;
+    setTimeout(() => check_signature(), 2000);
+  } else {
+    stop_try_signing();
+    if (signedState.value === "signed") {
+      //TODO recharger le document signé
+    }
+  }
+};
+
 const confirm_sign = () => {
-  console.log(userSignatureZones.value);
   loading.value = true;
-  //TODO POST userSignatureZones to backend
   const url = `/api/1.0/document/workflow/${signature.id}/signature-request`;
   const body = {
     storedObject: signature.storedObject,
     zone: userSignatureZones.value,
   };
-  makeFetch('POST', url, body)
-      .then(r => {
-
-      })
-      .catch((error) => {
-
-      });
-
-  // setTimeout(() => {
-  //   loading.value = false;
-  //   modalOpen.value = false;
-  //   signed.value = true;
-  // }, 3000); // FAKE
+  makeFetch("POST", url, body)
+    .then((r) => {
+      check_for_ready();
+    })
+    .catch((error) => {
+      console.log('Error while posting the signature', error);
+      stop_try_signing();
+      //TODO toast
+    });
 };
 
 const undo_sign = async () => {

From 67395f52b550e0b849958bdc15650954e447f7aa Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 12 Jul 2024 14:31:34 +0200
Subject: [PATCH 119/375] signature: fix cs + test PDFParser

---
 .../Controller/DocumentPersonController.php               | 6 +++---
 .../Controller/SignatureRequestController.php             | 8 +++-----
 .../Service/Signature/PDFSignatureZoneParser.php          | 2 +-
 .../Service/Signature/PDFSignatureZoneParserTest.php      | 4 ++--
 4 files changed, 9 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
index 4867a12b2..ba17c1c73 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
@@ -221,10 +221,10 @@ class DocumentPersonController extends AbstractController
 
         $signature = [];
         $signature['id'] = 1;
-        $signature['storedObject'] = [ //TEMP
+        $signature['storedObject'] = [ // TEMP
             'filename' => $storedObject->getFilename(),
-            'iv'=> $storedObject->getIv(),
-            'keyInfos' => $storedObject->getKeyInfos()
+            'iv' => $storedObject->getIv(),
+            'keyInfos' => $storedObject->getKeyInfos(),
         ];
         $signature['zones'] = $zones;
 
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index d148e82b7..3dd99a814 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -11,13 +11,11 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Controller;
 
-use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessage;
 use Chill\DocStoreBundle\Service\Signature\PDFPage;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
@@ -39,7 +37,7 @@ class SignatureRequestController
         // $signature = $this->signatureRepository($signature); //not useful?
         // $entityWorkflow = $signature->getStep()->getEntityWorkflow();
         // $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
-        $content = 'blop';// $this->storedObjectManager->read($storedObject);
+        $content = 'blop'; // $this->storedObjectManager->read($storedObject);
 
         $data = \json_decode((string) $request->getContent(), true, 512, JSON_THROW_ON_ERROR); // TODO parse payload: json_decode ou, mieux, dataTransfertObject
         dump($data);
@@ -56,8 +54,8 @@ class SignatureRequestController
             $signature->getId(),
             $zone,
             $data['zone']['index'],
-            'test signature', //reason (string)
-            'Mme Caroline Diallo', //signerText (string)
+            'test signature', // reason (string)
+            'Mme Caroline Diallo', // signerText (string)
             $content
         ));
 
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index 2e35bc568..450d65807 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -50,7 +50,7 @@ class PDFSignatureZoneParser
             foreach ($page->getDataTm() as $dataTm) {
                 if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
                     $zones[] = new PDFSignatureZone((int) $zoneIndex, (float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
-                    $zoneIndex++;
+                    ++$zoneIndex;
                 }
             }
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
index 299c90dd8..4b70e61fc 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneParserTest.php
@@ -61,7 +61,7 @@ class PDFSignatureZoneParserTest extends TestCase
                     0,
                     127.7,
                     95.289,
-                    180.0,
+                    90.0,
                     180.0,
                     $page = new PDFPage(0, 595.30393, 841.8897)
                 ),
@@ -69,7 +69,7 @@ class PDFSignatureZoneParserTest extends TestCase
                     1,
                     269.5,
                     95.289,
-                    180.0,
+                    90.0,
                     180.0,
                     $page,
                 ),

From 111305d09ccc103a1dfe117539b48e591005a4d0 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 19 Jul 2024 10:00:16 +0200
Subject: [PATCH 120/375] DX change function names to camelCase format in vue
 app signature

---
 .../public/vuejs/DocumentSignature/App.vue    | 100 +++++++++---------
 1 file changed, 50 insertions(+), 50 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 268e75636..6773b5590 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -20,7 +20,7 @@
         </div>
       </template>
       <template v-slot:footer>
-        <button class="btn btn-action" @click.prevent="confirm_sign">
+        <button class="btn btn-action" @click.prevent="confirmSign">
           {{ $t("yes") }}
         </button>
       </template>
@@ -35,13 +35,13 @@
         <button
           :disabled="zone < 1"
           class="btn btn-light btn-sm"
-          @click="turn_signature(-1)"
+          @click="turnSignature(-1)"
         >
           {{ $t("last_sign_zone") }}
         </button>
       </div>
       <div class="col-4 gap-2 d-grid">
-        <button class="btn btn-light btn-sm" @click="turn_signature(1)">
+        <button class="btn btn-light btn-sm" @click="turnSignature(1)">
           {{ $t("next_sign_zone") }}
         </button>
       </div>
@@ -56,7 +56,7 @@
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
-          @click="turn_page(-1)"
+          @click="turnPage(-1)"
         >
           ❮
         </button>
@@ -64,7 +64,7 @@
         <button
           class="btn btn-light btn-sm"
           :disabled="page >= pageCount"
-          @click="turn_page(1)"
+          @click="turnPage(1)"
         >
           ❯
         </button>
@@ -88,7 +88,7 @@
         <button
           class="btn btn-misc"
           :hidden="!userSignatureZones"
-          @click="undo_sign"
+          @click="undoSign"
           v-if="signature.zones.length > 1"
         >
           {{ $t("choose_another_signature") }}
@@ -96,14 +96,14 @@
         <button
           class="btn btn-misc"
           :hidden="!userSignatureZones"
-          @click="undo_sign"
+          @click="undoSign"
           v-else
         >
           {{ $t("cancel") }}
         </button>
       </div>
       <div class="col-6">
-        <button class="btn float-end btn-delete" @click="undo_sign">
+        <button class="btn float-end btn-delete" @click="undoSign">
           {{ $t("cancel_signing") }}
         </button>
       </div>
@@ -155,14 +155,14 @@ declare global {
 const signature = window.signature;
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
-const mount_pdf = async (url: string) => {
+const mountPdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
   pdf = await loadingTask.promise;
   pageCount.value = pdf.numPages;
-  await set_page(1);
+  await setPage(1);
 };
 
-const get_render_context = (pdfPage: PDFPageProxy) => {
+const getRenderContext = (pdfPage: PDFPageProxy) => {
   const scale = 1;
   const viewport = pdfPage.getViewport({ scale });
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
@@ -176,13 +176,13 @@ const get_render_context = (pdfPage: PDFPageProxy) => {
   };
 };
 
-const set_page = async (page: number) => {
+const setPage = async (page: number) => {
   const pdfPage = await pdf.getPage(page);
-  const renderContext = get_render_context(pdfPage);
+  const renderContext = getRenderContext(pdfPage);
   await pdfPage.render(renderContext);
 };
 
-async function download_and_open(): Promise<Blob> {
+async function downloadAndOpen(): Promise<Blob> {
   let raw;
   try {
     raw = await download_and_decrypt_doc(
@@ -194,22 +194,22 @@ async function download_and_open(): Promise<Blob> {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
-  await mount_pdf(URL.createObjectURL(raw));
-  init_pdf();
+  await mountPdf(URL.createObjectURL(raw));
+  initPdf();
   return raw;
 }
 
-const init_pdf = () => {
+const initPdf = () => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   canvas.addEventListener(
     "pointerup",
-    (e: PointerEvent) => canvas_click(e, canvas),
+    (e: PointerEvent) => canvasClick(e, canvas),
     false
   );
-  setTimeout(() => add_zones(page.value), 800);
+  setTimeout(() => addZones(page.value), 800);
 };
 
-const hit_signature = (
+const hitSignature = (
   zone: SignatureZone,
   xy: number[],
   canvasWidth: number,
@@ -229,30 +229,30 @@ const hit_signature = (
   );
 };
 
-const canvas_click = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
       if (
-        hit_signature(z, [e.offsetX, e.offsetY], canvas.width, canvas.height)
+        hitSignature(z, [e.offsetX, e.offsetY], canvas.width, canvas.height)
       ) {
         const ctx = canvas.getContext("2d");
         if (ctx) {
-          set_page(page.value);
-          setTimeout(() => draw_zone(z, ctx, canvas.width, canvas.height), 200);
+          setPage(page.value);
+          setTimeout(() => drawZone(z, ctx, canvas.width, canvas.height), 200);
         }
         userSignatureZones.value = z;
       }
     });
 
-const turn_page = async (upOrDown: number) => {
+const turnPage = async (upOrDown: number) => {
   userSignatureZones.value = null;
   page.value = page.value + upOrDown;
-  await set_page(page.value);
-  setTimeout(() => add_zones(page.value), 200);
+  await setPage(page.value);
+  setTimeout(() => addZones(page.value), 200);
 };
 
-const turn_signature = async (upOrDown: number) => {
+const turnSignature = async (upOrDown: number) => {
   userSignatureZones.value = null;
   if (zone.value < signature.zones.length - 1) {
     zone.value = zone.value + upOrDown;
@@ -262,12 +262,12 @@ const turn_signature = async (upOrDown: number) => {
   let currentZone = signature.zones[zone.value];
   if (currentZone) {
     page.value = currentZone.PDFPage.index + 1;
-    await set_page(page.value);
-    setTimeout(() => add_zones(page.value), 200);
+    await setPage(page.value);
+    setTimeout(() => addZones(page.value), 200);
   }
 };
 
-const draw_zone = (
+const drawZone = (
   zone: SignatureZone,
   ctx: CanvasRenderingContext2D,
   canvasWidth: number,
@@ -309,23 +309,23 @@ const draw_zone = (
   }
 };
 
-const add_zones = (page: number) => {
+const addZones = (page: number) => {
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
     signature.zones
       .filter((z) => z.PDFPage.index + 1 === page)
-      .map((z) => draw_zone(z, ctx, canvas.width, canvas.height));
+      .map((z) => drawZone(z, ctx, canvas.width, canvas.height));
   }
 };
 
-const check_signature = () => {
+const checkSignature = () => {
   const url = `/api/1.0/document/workflow/${signature.id}/check-signature`;
   return makeFetch("GET", url)
     .then((r) => {
       signedState.value = r as SignedState;
       if (signedState.value === "pending") {
-        check_for_ready();
+        checkForReady();
       }
     })
     .catch((error) => {
@@ -338,40 +338,40 @@ const check_signature = () => {
 const maxTryForReady = 60; //2 minutes for trying to sign
 let tryForReady = 0;
 
-const stop_try_signing = () => {
+const stopTrySigning = () => {
   loading.value = false;
   modalOpen.value = false;
 };
 
-const check_for_ready = () => {
+const checkForReady = () => {
   if (tryForReady > maxTryForReady) {
     signedState.value = "error";
-    stop_try_signing();
+    stopTrySigning();
     console.log("Reached the maximum number of tentative to try signing");
     //TODO toast error
   }
   if (signedState.value === "rejected") {
-    stop_try_signing();
+    stopTrySigning();
     console.log("Signature rejected by the server");
     //TODO toast error
   }
   if (signedState.value === "canceled") {
-    stop_try_signing();
+    stopTrySigning();
     console.log("Signature canceledconsole.log('Error while posting the signature', error);");
     //TODO toast error
   }
   if (signedState.value === "pending") {
     tryForReady = tryForReady + 1;
-    setTimeout(() => check_signature(), 2000);
+    setTimeout(() => checkSignature(), 2000);
   } else {
-    stop_try_signing();
+    stopTrySigning();
     if (signedState.value === "signed") {
       //TODO recharger le document signé
     }
   }
 };
 
-const confirm_sign = () => {
+const confirmSign = () => {
   loading.value = true;
   const url = `/api/1.0/document/workflow/${signature.id}/signature-request`;
   const body = {
@@ -380,27 +380,27 @@ const confirm_sign = () => {
   };
   makeFetch("POST", url, body)
     .then((r) => {
-      check_for_ready();
+      checkForReady();
     })
     .catch((error) => {
       console.log('Error while posting the signature', error);
-      stop_try_signing();
+      stopTrySigning();
       //TODO toast
     });
 };
 
-const undo_sign = async () => {
+const undoSign = async () => {
   // const canvas = document.querySelectorAll("canvas")[0];
   // const ctx = canvas.getContext("2d");
   // if (ctx && userSignatureZones.value) {
-  //   //draw_zone(userSignatureZones.value, ctx, canvas.width, canvas.height);
+  //   //drawZone(userSignatureZones.value, ctx, canvas.width, canvas.height);
   // }
-  await set_page(page.value);
-  setTimeout(() => add_zones(page.value), 200);
+  await setPage(page.value);
+  setTimeout(() => addZones(page.value), 200);
   userSignatureZones.value = null;
 };
 
-download_and_open();
+downloadAndOpen();
 </script>
 
 <style scoped lang="scss">

From 567ca8a26f97678c66033dc319d63039f07f7ddd Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Fri, 19 Jul 2024 11:42:08 +0200
Subject: [PATCH 121/375] integrate signature vueapp to workflow

---
 .../Signature/PDFSignatureZoneParser.php      |  2 +-
 .../Controller/WorkflowController.php         | 42 +++++++++++++++++--
 .../views/Workflow/_signature_sign.html.twig  | 37 ++++++++++++++++
 3 files changed, 77 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index 450d65807..082d1afa2 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -49,7 +49,7 @@ class PDFSignatureZoneParser
 
             foreach ($page->getDataTm() as $dataTm) {
                 if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
-                    $zones[] = new PDFSignatureZone((int) $zoneIndex, (float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
+                    $zones[] = new PDFSignatureZone($zoneIndex, (float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
                     ++$zoneIndex;
                 }
             }
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index cdd432cf7..7d277ef0e 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -11,6 +11,8 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Controller;
 
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
@@ -32,6 +34,7 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Validator\Validator\ValidatorInterface;
 use Symfony\Component\Workflow\Registry;
@@ -44,6 +47,7 @@ class WorkflowController extends AbstractController
         private readonly EntityWorkflowManager $entityWorkflowManager,
         private readonly EntityWorkflowRepository $entityWorkflowRepository,
         private readonly ValidatorInterface $validator,
+        private readonly StoredObjectManagerInterface $storedObjectManagerInterface,
         private readonly PaginatorFactory $paginatorFactory,
         private readonly Registry $registry,
         private readonly EntityManagerInterface $entityManager,
@@ -51,6 +55,7 @@ class WorkflowController extends AbstractController
         private readonly ChillSecurity $security,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
         private readonly ClockInterface $clock,
+        private readonly PDFSignatureZoneParser $PDFSignatureZoneParser,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/create', name: 'chill_main_workflow_create')]
@@ -377,7 +382,7 @@ class WorkflowController extends AbstractController
         $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
 
         if ($signature->getSigner() instanceof User) {
-            return $this->redirectToRoute('signature_route_user');
+            return $this->redirectToRoute('chill_main_workflow_signature', ['signature_id' => $signature_id]);
         }
 
         $metadataForm = $this->createForm(WorkflowSignatureMetadataType::class);
@@ -401,8 +406,7 @@ class WorkflowController extends AbstractController
             $this->entityManager->persist($signature);
             $this->entityManager->flush();
 
-            // Todo should redirect to document for actual signing? To be adjusted still
-            return $this->redirectToRoute('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()]);
+            return $this->redirectToRoute('chill_main_workflow_signature', ['signature_id' => $signature_id]);
         }
 
         return $this->render(
@@ -413,4 +417,36 @@ class WorkflowController extends AbstractController
             ]
         );
     }
+
+    #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
+    public function addSignature(int $signature_id, Request $request): Response
+    {
+        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
+        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+        if (null === $storedObject) {
+            throw new NotFoundHttpException('No stored object found');
+        }
+
+        $zones = [];
+        $content = $this->storedObjectManagerInterface->read($storedObject);
+        if (null != $content) {
+            $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
+        }
+
+        $signatureClient = [];
+        $signatureClient['id'] = $signature->getId();
+        $signatureClient['storedObject'] = [
+            'filename' => $storedObject->getFilename(),
+            'iv' => $storedObject->getIv(),
+            'keyInfos' => $storedObject->getKeyInfos(),
+        ];
+        $signatureClient['zones'] = $zones;
+
+        return $this->render(
+            '@ChillMain/Workflow/_signature_sign.html.twig',
+            ['signature' => $signatureClient]
+        );
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
new file mode 100644
index 000000000..8b2770952
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
@@ -0,0 +1,37 @@
+<!DOCTYPE html>
+<html lang="fr">
+<head>
+    <meta charset="UTF-8" />
+    <meta http-equiv="x-ua-compatible" content="ie=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <link rel="shortcut icon" href="{{ asset('build/images/favicon.ico') }}" type="image/x-icon">
+    <title>Signature</title>
+
+    {{ encore_entry_link_tags('mod_bootstrap') }}
+    {{ encore_entry_link_tags('mod_forkawesome') }}
+    {{ encore_entry_link_tags('chill') }}
+    {{ encore_entry_link_tags('vue_document_signature') }}
+
+</head>
+
+<body>
+
+    {% block js %}
+        {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
+        <script type="text/javascript">
+            window.signature = {{ signature|json_encode|raw }};
+        </script>
+        {{ encore_entry_script_tags('vue_document_signature') }}
+    {% endblock %}
+
+    <div class="content" id="content">
+        <div class="container-xxl">
+            <div class="row">
+               <div class="col-xs-12 col-md-12 col-lg-9 my-5 m-auto">
+                   <div class="row" id="document-signature"></div>
+               </div>
+            </div>
+        </div>
+    </div>
+</body>
+</html>
\ No newline at end of file

From 51ab4bef3826f4dd4b06db29ac580eb5eb785eb8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 22 Jul 2024 23:06:49 +0200
Subject: [PATCH 122/375] Improve rendering for signature zone

---
 .../views/Workflow/_signature.html.twig       | 23 ++++++++++---------
 1 file changed, 12 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index a61808500..f613b69dd 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -1,19 +1,20 @@
 <h2>{{ 'workflow.signature_zone.title'|trans }}</h2>
 
-<div class="flex-table justify-content-center">
-    <div class="item-bloc">
+<div class="container">
+    <div class="row align-items-center">
         {% for s in signatures %}
-            <div class="item-row mb-2">
-                    <div class="col-sm-6"><span>{{ s.signer|chill_entity_render_box }}</span></div>
-            <div class="col-sm-6">
-                <a class="btn btn-show" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}">{{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                {% if s.state is same as('signed') %}
-                    <p class="updatedBy">{{ s.stateDate }}</p>
-                {% endif %}
-                </div>
+            <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
+            <div class="col-sm-12 col-md-4">
+                <ul class="record_actions">
+                    <li>
+                        <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                        {% if s.state is same as('signed') %}
+                            <p class="updatedBy">{{ s.stateDate }}</p>
+                        {% endif %}
+                    </li>
+                </ul>
             </div>
         {% endfor %}
     </div>
 </div>
 
-

From 3836d0dc9b28c8aae84601161cc1c66784ff0364 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 22 Jul 2024 23:40:10 +0200
Subject: [PATCH 123/375] Update PdfSignedMessageHandler to manage signature
 state

Additional dependencies have been added to the PdfSignedMessageHandler to handle the state of the signature. After writing the signed message content, the state is set to 'signed' and the state date is updated with the current time. Also, modifications are flushed in the EntityManager to save these changes to the database. Corresponding updates and tests have been made in the PdfSignedMessageHandlerTest file.
---
 .../BaseSigner/PdfSignedMessageHandler.php      |  9 +++++++++
 .../BaseSigner/PdfSignedMessageHandlerTest.php  | 17 ++++++++++++++++-
 2 files changed, 25 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
index 81fb97dbf..5cb31de96 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -12,9 +12,12 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
 
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
+use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 
 final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
@@ -29,6 +32,8 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
         private EntityWorkflowManager $entityWorkflowManager,
         private StoredObjectManagerInterface $storedObjectManager,
         private EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
+        private EntityManagerInterface $entityManager,
+        private ClockInterface $clock,
     ) {}
 
     public function __invoke(PdfSignedMessage $message): void
@@ -48,5 +53,9 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
         }
 
         $this->storedObjectManager->write($storedObject, $message->content);
+
+        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED)->setStateDate($this->clock->now());
+        $this->entityManager->flush();
+        $this->entityManager->clear();
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
index 62d50c03f..eb2142175 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
@@ -22,8 +22,10 @@ use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
+use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
+use Symfony\Component\Clock\MockClock;
 
 /**
  * @internal
@@ -48,12 +50,16 @@ class PdfSignedMessageHandlerTest extends TestCase
             new NullLogger(),
             $this->buildEntityWorkflowManager($storedObject),
             $this->buildStoredObjectManager($storedObject, $expectedContent = '1234'),
-            $this->buildSignatureRepository($signature)
+            $this->buildSignatureRepository($signature),
+            $this->buildEntityManager(true),
+            new MockClock('now'),
         );
 
         // we simply call the handler. The mocked StoredObjectManager will check that the "write" method is invoked once
         // with the content "1234"
         $handler(new PdfSignedMessage(10, $expectedContent));
+
+        self::assertEquals('signed', $signature->getState()->value);
     }
 
     private function buildSignatureRepository(EntityWorkflowStepSignature $signature): EntityWorkflowStepSignatureRepository
@@ -81,4 +87,13 @@ class PdfSignedMessageHandlerTest extends TestCase
 
         return $storedObjectManager;
     }
+
+    private function buildEntityManager(bool $willFlush): EntityManagerInterface
+    {
+        $em = $this->createMock(EntityManagerInterface::class);
+        $em->expects($willFlush ? $this->once() : $this->never())->method('flush');
+        $em->expects($willFlush ? $this->once() : $this->never())->method('clear');
+
+        return $em;
+    }
 }

From 123168a5eeaea4d93fec977a8532c247ba7603db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 22 Jul 2024 23:40:38 +0200
Subject: [PATCH 124/375] Effectively process signature request

The processSignature method in SignatureRequestController has been cleaned up and unneeded comments were removed. The process now involves retrieving the EntityWorkflow and StoredObject from the Signature, and reading the content from the StoredObjectManager. Debugging dump functions and commented code were also removed for a cleaner look.
---
 .../Controller/SignatureRequestController.php         | 11 ++++-------
 1 file changed, 4 insertions(+), 7 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 3dd99a814..363ecafd4 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -33,21 +33,18 @@ class SignatureRequestController
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
     public function processSignature(EntityWorkflowStepSignature $signature, Request $request): JsonResponse
     {
-        dump($signature);
-        // $signature = $this->signatureRepository($signature); //not useful?
-        // $entityWorkflow = $signature->getStep()->getEntityWorkflow();
-        // $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
-        $content = 'blop'; // $this->storedObjectManager->read($storedObject);
+        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+        $content = $this->storedObjectManager->read($storedObject);
 
         $data = \json_decode((string) $request->getContent(), true, 512, JSON_THROW_ON_ERROR); // TODO parse payload: json_decode ou, mieux, dataTransfertObject
-        dump($data);
         $zone = new PDFSignatureZone(
             $data['zone']['index'],
             $data['zone']['x'],
             $data['zone']['y'],
             $data['zone']['height'],
             $data['zone']['width'],
-            $page = new PDFPage($data['zone']['PDFPage']['index'], $data['zone']['PDFPage']['width'], $data['zone']['PDFPage']['height'])
+            new PDFPage($data['zone']['PDFPage']['index'], $data['zone']['PDFPage']['width'], $data['zone']['PDFPage']['height'])
         );
 
         $this->messageBus->dispatch(new RequestPdfSignMessage(

From e57d52d00eafab9a2970341d7e433770402044f6 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 23 Jul 2024 10:04:25 +0200
Subject: [PATCH 125/375] Update vue-toast-notification and use in signature
 app

---
 package.json                                  |  2 +-
 .../public/vuejs/DocumentSignature/App.vue    | 24 ++++++++++++-------
 2 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/package.json b/package.json
index d36197aa9..09438fe84 100644
--- a/package.json
+++ b/package.json
@@ -59,7 +59,7 @@
     "vue": "^3.2.37",
     "vue-i18n": "^9.1.6",
     "vue-multiselect": "3.0.0-alpha.2",
-    "vue-toast-notification": "^2.0",
+    "vue-toast-notification": "^3.1.2",
     "vuex": "^4.0.0"
   },
   "browserslist": [
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 6773b5590..b53592fdf 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -113,6 +113,8 @@
 
 <script setup lang="ts">
 import { ref, Ref, reactive } from "vue";
+import { useToast } from "vue-toast-notification";
+import "vue-toast-notification/dist/theme-sugar.css";
 import { Signature, SignatureZone, SignedState } from "../../types";
 import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
@@ -152,6 +154,8 @@ declare global {
   }
 }
 
+const $toast = useToast();
+
 const signature = window.signature;
 const urlInfo = build_download_info_link(signature.storedObject.filename);
 
@@ -330,8 +334,10 @@ const checkSignature = () => {
     })
     .catch((error) => {
       signedState.value = "error";
-      console.log('Error while checking the signature', error);
-      //TODO toast error
+      console.log("Error while checking the signature", error);
+      $toast.error(
+        `Erreur lors de la vérification de la signature: ${error.txt}`
+      );
     });
 };
 
@@ -348,17 +354,19 @@ const checkForReady = () => {
     signedState.value = "error";
     stopTrySigning();
     console.log("Reached the maximum number of tentative to try signing");
-    //TODO toast error
+    $toast.error(
+      "Le nombre maximum de tentatives pour essayer de signer est atteint"
+    );
   }
   if (signedState.value === "rejected") {
     stopTrySigning();
     console.log("Signature rejected by the server");
-    //TODO toast error
+    $toast.error("Signature rejetée par le serveur");
   }
   if (signedState.value === "canceled") {
     stopTrySigning();
-    console.log("Signature canceledconsole.log('Error while posting the signature', error);");
-    //TODO toast error
+    console.log("Signature canceled");
+    $toast.error("Signature annulée");
   }
   if (signedState.value === "pending") {
     tryForReady = tryForReady + 1;
@@ -383,9 +391,9 @@ const confirmSign = () => {
       checkForReady();
     })
     .catch((error) => {
-      console.log('Error while posting the signature', error);
+      console.log("Error while posting the signature", error);
       stopTrySigning();
-      //TODO toast
+      $toast.error(`Erreur lors de la soumission de la signature: ${error.txt}`);
     });
 };
 

From 0a46b5304ddfc51196aaf8bb53b6d2ee7ca13524 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 23 Jul 2024 12:18:14 +0200
Subject: [PATCH 126/375] Adjust implementation of showHide (wip)

---
 .../public/page/workflow-show/index.js        | 59 +++++++------------
 1 file changed, 21 insertions(+), 38 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 6829dad8e..93096a910 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -9,8 +9,6 @@ window.addEventListener('DOMContentLoaded', function() {
         signatureTypeChoices = document.querySelector('#signature-type-choice');
     ;
 
-    console.log('signature type', signatureTypeChoices);
-
     let
       transitionFilterContainer = document.querySelector('#transitionFilter'),
       transitionsContainer = document.querySelector('#transitions')
@@ -21,39 +19,26 @@ window.addEventListener('DOMContentLoaded', function() {
     futureDestUsersContainer.style.display = 'none';
     signatureTypeChoices.style.display = 'none';
 
-    // ShowHide instance for signatureTypeChoices and futureDestUsersContainer
-    new ShowHide({
-      load_event: null,
-      froms: [transitionsContainer],
-      container: [signatureTypeChoices, futureDestUsersContainer],
-      test: function() {
-        const selectedTransition = document.querySelector('input[name="workflow_step[transition]"]:checked');
-        console.log('transition', selectedTransition)
-        if (!selectedTransition) {
-          return false; // No transition selected, hide all
+  // ShowHide instance for signatureTypeChoices
+  new ShowHide({
+    debug: true,
+    froms: [divTransitions],
+    container: [signatureTypeChoices],
+    test: function(transitions) {
+      for (let transition of transitions) {
+        for (let input of transition.querySelectorAll('input')) {
+          if (input.checked) {
+            const inputData = JSON.parse(input.getAttribute('data-is-signature'))
+            return inputData.includes('person') || inputData.includes('user');
+          }
         }
-
-        const isSignature = JSON.parse(selectedTransition.getAttribute('data-is-signature') || '[]');
-
-        if (isSignature.includes('person') && isSignature.includes('user')) {
-          signatureTypeChoices.style.display = '';
-        } else {
-          signatureTypeChoices.style.display = 'none';
-        }
-
-        if (!isSignature.length) {
-          futureDestUsersContainer.style.display = '';
-          personSignatureField.style.display = 'none';
-          userSignatureField.style.display = 'none';
-        } else {
-          futureDestUsersContainer.style.display = 'none';
-        }
-
-        return true; // Always return true to ensure ShowHide manages visibility
       }
-    });
 
-    // Event listener for changes in signature type selection
+      return true;
+    }
+  });
+
+/*    // Event listener for changes in signature type selection
     signatureTypeChoices.addEventListener('change', function() {
       // ShowHide instance for personSignatureField and userSignatureField
       new ShowHide({
@@ -61,9 +46,7 @@ window.addEventListener('DOMContentLoaded', function() {
         froms: [signatureTypeChoices],
         container: [personSignatureField, userSignatureField],
         test: function() {
-          console.log(signatureTypeChoices)
           const selectedSignatureType = document.querySelector('input[name="workflow_step[isPersonOrUserSignature]"]:checked');
-          console.log('signataure type', selectedSignatureType)
           if (!selectedSignatureType) {
             return false; // No signature type selected, hide both fields
           }
@@ -82,15 +65,15 @@ window.addEventListener('DOMContentLoaded', function() {
           return true; // Always return true to ensure ShowHide manages visibility
         }
       });
-    });
+    });*/
 
-    if (null !== divTransitions) {
+/*    if (null !== divTransitions) {
         new ShowHide({
             load_event: null,
             froms: [divTransitions],
             container: [futureDestUsersContainer],
             test: function(divs, arg2, arg3) {
-                for (let div of divs) {
+              for (let div of divs) {
                     for (let input of div.querySelectorAll('input')) {
                         if (input.checked) {
                             if (input.dataset.toFinal === "1") {
@@ -105,7 +88,7 @@ window.addEventListener('DOMContentLoaded', function() {
                 return true;
             },
         });
-    }
+    }*/
 
     if (null !== transitionFilterContainer) {
         transitionsContainer.querySelectorAll('.form-check').forEach(function(row) {

From 72e3325626fe104d5b20a2ab9dc76c35e99df450 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 11 Jul 2024 15:15:41 +0200
Subject: [PATCH 127/375] Implement show and hide logic within workflow form

---
 .../ChillMainBundle/Form/WorkflowStepType.php | 26 ++++++
 .../public/page/workflow-show/index.js        | 86 +++++++++++++++++--
 .../views/Workflow/_decision.html.twig        | 23 ++++-
 3 files changed, 126 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 284781d54..8949432b2 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -17,6 +17,7 @@ use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
 use Symfony\Component\Form\Extension\Core\Type\EmailType;
@@ -102,6 +103,7 @@ class WorkflowStepType extends AbstractType
                 'choice_attr' => static function (Transition $transition) use ($workflow) {
                     $toFinal = true;
                     $isForward = 'neutral';
+                    $isSignature = [];
 
                     $metadata = $workflow->getMetadataStore()->getTransitionMetadata($transition);
 
@@ -121,15 +123,38 @@ class WorkflowStepType extends AbstractType
                         ) {
                             $toFinal = false;
                         }
+
+                        if (\array_key_exists('isSignature', $meta)) {
+                            $isSignature = $meta['isSignature'];
+                        }
                     }
 
                     return [
                         'data-is-transition' => 'data-is-transition',
                         'data-to-final' => $toFinal ? '1' : '0',
                         'data-is-forward' => $isForward,
+                        'data-is-signature' => json_encode($isSignature),
                     ];
                 },
             ])
+            ->add('isPersonOrUserSignature', ChoiceType::class, [
+                'mapped' => false,
+                'multiple' => false,
+                'expanded' => true,
+                'label' => 'workflow.Type of signature',
+                'choices' => [
+                    'person' => 'person',
+                    'user' => 'user',
+                ],
+            ])
+            ->add('futurePersonSignatures', PickPersonDynamicType::class, [
+                'label' => 'workflow.person signatures',
+                'multiple' => true,
+            ])
+            ->add('futureUserSignature', PickUserDynamicType::class, [
+                'label' => 'workflow.user signatures',
+                'multiple' => false,
+            ])
             ->add('futureDestUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
@@ -140,6 +165,7 @@ class WorkflowStepType extends AbstractType
                 'multiple' => true,
                 'required' => false,
                 'suggested' => $options['suggested_users'],
+                'attr' => ['class' => 'future-cc-users'],
             ])
             ->add('futureDestEmails', ChillCollectionType::class, [
                 'label' => 'workflow.dest by email',
diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 2f91c7777..6829dad8e 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -4,8 +4,86 @@ window.addEventListener('DOMContentLoaded', function() {
     let
         divTransitions = document.querySelector('#transitions'),
         futureDestUsersContainer = document.querySelector('#futureDests')
+        personSignatureField = document.querySelector('#person-signature-field');
+        userSignatureField = document.querySelector('#user-signature-field');
+        signatureTypeChoices = document.querySelector('#signature-type-choice');
     ;
 
+    console.log('signature type', signatureTypeChoices);
+
+    let
+      transitionFilterContainer = document.querySelector('#transitionFilter'),
+      transitionsContainer = document.querySelector('#transitions')
+    ;
+
+    personSignatureField.style.display = 'none';
+    userSignatureField.style.display = 'none';
+    futureDestUsersContainer.style.display = 'none';
+    signatureTypeChoices.style.display = 'none';
+
+    // ShowHide instance for signatureTypeChoices and futureDestUsersContainer
+    new ShowHide({
+      load_event: null,
+      froms: [transitionsContainer],
+      container: [signatureTypeChoices, futureDestUsersContainer],
+      test: function() {
+        const selectedTransition = document.querySelector('input[name="workflow_step[transition]"]:checked');
+        console.log('transition', selectedTransition)
+        if (!selectedTransition) {
+          return false; // No transition selected, hide all
+        }
+
+        const isSignature = JSON.parse(selectedTransition.getAttribute('data-is-signature') || '[]');
+
+        if (isSignature.includes('person') && isSignature.includes('user')) {
+          signatureTypeChoices.style.display = '';
+        } else {
+          signatureTypeChoices.style.display = 'none';
+        }
+
+        if (!isSignature.length) {
+          futureDestUsersContainer.style.display = '';
+          personSignatureField.style.display = 'none';
+          userSignatureField.style.display = 'none';
+        } else {
+          futureDestUsersContainer.style.display = 'none';
+        }
+
+        return true; // Always return true to ensure ShowHide manages visibility
+      }
+    });
+
+    // Event listener for changes in signature type selection
+    signatureTypeChoices.addEventListener('change', function() {
+      // ShowHide instance for personSignatureField and userSignatureField
+      new ShowHide({
+        load_event: null,
+        froms: [signatureTypeChoices],
+        container: [personSignatureField, userSignatureField],
+        test: function() {
+          console.log(signatureTypeChoices)
+          const selectedSignatureType = document.querySelector('input[name="workflow_step[isPersonOrUserSignature]"]:checked');
+          console.log('signataure type', selectedSignatureType)
+          if (!selectedSignatureType) {
+            return false; // No signature type selected, hide both fields
+          }
+
+          if (selectedSignatureType.value === 'person') {
+            personSignatureField.style.display = '';
+            userSignatureField.style.display = 'none';
+          } else if (selectedSignatureType.value === 'user') {
+            personSignatureField.style.display = 'none';
+            userSignatureField.style.display = '';
+          } else {
+            personSignatureField.style.display = 'none';
+            userSignatureField.style.display = 'none';
+          }
+
+          return true; // Always return true to ensure ShowHide manages visibility
+        }
+      });
+    });
+
     if (null !== divTransitions) {
         new ShowHide({
             load_event: null,
@@ -29,13 +107,8 @@ window.addEventListener('DOMContentLoaded', function() {
         });
     }
 
-    let
-        transitionFilterContainer = document.querySelector('#transitionFilter'),
-        transitions = document.querySelector('#transitions')
-    ;
-
     if (null !== transitionFilterContainer) {
-        transitions.querySelectorAll('.form-check').forEach(function(row) {
+        transitionsContainer.querySelectorAll('.form-check').forEach(function(row) {
 
             const isForward = row.querySelector('input').dataset.isForward;
 
@@ -66,5 +139,4 @@ window.addEventListener('DOMContentLoaded', function() {
             });
         });
     }
-
 });
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 35f587e38..391e42324 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -58,15 +58,34 @@
         {{ form_row(transition_form.transition) }}
     </div>
 
+    <div id="futureSignatures">
+        <div id="signature-type-choice">
+            {{ form_row(transition_form.isPersonOrUserSignature) }}
+            {{ form_errors(transition_form.isPersonOrUserSignature) }}
+        </div>
+        <div id="user-signature-field">
+            {{ form_row(transition_form.futureUserSignature) }}
+            {{ form_errors(transition_form.futureUserSignature) }}
+        </div>
+        <div id="person-signature-field">
+            {{ form_row(transition_form.futurePersonSignatures) }}
+            {{ form_errors(transition_form.futurePersonSignatures) }}
+        </div>
+    </div>
+
     <div id="futureDests">
+        <div id="future-dest-users">
         {{ form_row(transition_form.futureDestUsers) }}
         {{ form_errors(transition_form.futureDestUsers) }}
-
+        </div>
+        <div id="future-cc-users">
         {{ form_row(transition_form.futureCcUsers) }}
         {{ form_errors(transition_form.futureCcUsers) }}
-
+        </div>
+        <div id="future-dest-emails">
         {{ form_row(transition_form.futureDestEmails) }}
         {{ form_errors(transition_form.futureDestEmails) }}
+        </div>
     </div>
 
     <p>{{ form_label(transition_form.comment) }}</p>

From 7351a35c4205e327f7b2cee630d8163f9b3cad9a Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 18 Jul 2024 16:03:45 +0200
Subject: [PATCH 128/375] Use better namespacing for configuring workflow
 signature documents

---
 .../ChillMainExtension.php                    |  4 +-
 .../DependencyInjection/Configuration.php     | 48 ++++++++++---------
 2 files changed, 28 insertions(+), 24 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index bf041b5b3..0d90854b4 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -194,8 +194,8 @@ class ChillMainExtension extends Extension implements
         );
 
         $container->setParameter(
-            'chill_main.id_document_kinds',
-            $config['id_document_kinds']
+            'chill_main.workflow_signatures.base_signer.document_kinds',
+            $config['workflow_signature']['base_signer']['document_kinds']
         );
 
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 9c890d9fe..2185375b6 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -151,28 +151,6 @@ class Configuration implements ConfigurationInterface
             ->append($this->addWidgetsConfiguration('homepage', $this->containerBuilder))
             ->end() // end of widgets/children
             ->end() // end of widgets
-            ->arrayNode('id_document_kinds')->defaultValue([])
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('key')->isRequired()->cannotBeEmpty()
-            ->info('the key stored in database')
-            ->example('id_card')
-            ->end()
-            ->arrayNode('labels')->isRequired()->requiresAtLeastOneElement()
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('lang')->isRequired()->cannotBeEmpty()
-            ->example('fr')
-            ->end()
-            ->scalarNode('label')->isRequired()->cannotBeEmpty()
-            ->example('Carte de séjour')
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end() // end of document types
             ->arrayNode('cruds')
             ->defaultValue([])
             ->arrayPrototype()
@@ -299,6 +277,32 @@ class Configuration implements ConfigurationInterface
             ->end() // end of root
         ;
 
+        $rootNode->children()
+            ->arrayNode('workflow_signature')
+            ->children()
+            ->arrayNode('base_signer')
+            ->children()
+            ->arrayNode('document_kinds')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('key')->cannotBeEmpty()->end()
+            ->arrayNode('labels')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('lang')->cannotBeEmpty()->end()
+            ->scalarNode('label')->cannotBeEmpty()->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end();
+
         $rootNode->children()
             ->arrayNode('add_address')->addDefaultsIfNotSet()->children()
             ->scalarNode('default_country')->cannotBeEmpty()->defaultValue('BE')->end()

From c33e4adeec9ca8ba2b2353024a4c6416dc6427cc Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 23 Jul 2024 12:18:14 +0200
Subject: [PATCH 129/375] Adjust implementation of showHide (wip)

---
 .../public/page/workflow-show/index.js        | 59 +++++++------------
 1 file changed, 21 insertions(+), 38 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 6829dad8e..93096a910 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -9,8 +9,6 @@ window.addEventListener('DOMContentLoaded', function() {
         signatureTypeChoices = document.querySelector('#signature-type-choice');
     ;
 
-    console.log('signature type', signatureTypeChoices);
-
     let
       transitionFilterContainer = document.querySelector('#transitionFilter'),
       transitionsContainer = document.querySelector('#transitions')
@@ -21,39 +19,26 @@ window.addEventListener('DOMContentLoaded', function() {
     futureDestUsersContainer.style.display = 'none';
     signatureTypeChoices.style.display = 'none';
 
-    // ShowHide instance for signatureTypeChoices and futureDestUsersContainer
-    new ShowHide({
-      load_event: null,
-      froms: [transitionsContainer],
-      container: [signatureTypeChoices, futureDestUsersContainer],
-      test: function() {
-        const selectedTransition = document.querySelector('input[name="workflow_step[transition]"]:checked');
-        console.log('transition', selectedTransition)
-        if (!selectedTransition) {
-          return false; // No transition selected, hide all
+  // ShowHide instance for signatureTypeChoices
+  new ShowHide({
+    debug: true,
+    froms: [divTransitions],
+    container: [signatureTypeChoices],
+    test: function(transitions) {
+      for (let transition of transitions) {
+        for (let input of transition.querySelectorAll('input')) {
+          if (input.checked) {
+            const inputData = JSON.parse(input.getAttribute('data-is-signature'))
+            return inputData.includes('person') || inputData.includes('user');
+          }
         }
-
-        const isSignature = JSON.parse(selectedTransition.getAttribute('data-is-signature') || '[]');
-
-        if (isSignature.includes('person') && isSignature.includes('user')) {
-          signatureTypeChoices.style.display = '';
-        } else {
-          signatureTypeChoices.style.display = 'none';
-        }
-
-        if (!isSignature.length) {
-          futureDestUsersContainer.style.display = '';
-          personSignatureField.style.display = 'none';
-          userSignatureField.style.display = 'none';
-        } else {
-          futureDestUsersContainer.style.display = 'none';
-        }
-
-        return true; // Always return true to ensure ShowHide manages visibility
       }
-    });
 
-    // Event listener for changes in signature type selection
+      return true;
+    }
+  });
+
+/*    // Event listener for changes in signature type selection
     signatureTypeChoices.addEventListener('change', function() {
       // ShowHide instance for personSignatureField and userSignatureField
       new ShowHide({
@@ -61,9 +46,7 @@ window.addEventListener('DOMContentLoaded', function() {
         froms: [signatureTypeChoices],
         container: [personSignatureField, userSignatureField],
         test: function() {
-          console.log(signatureTypeChoices)
           const selectedSignatureType = document.querySelector('input[name="workflow_step[isPersonOrUserSignature]"]:checked');
-          console.log('signataure type', selectedSignatureType)
           if (!selectedSignatureType) {
             return false; // No signature type selected, hide both fields
           }
@@ -82,15 +65,15 @@ window.addEventListener('DOMContentLoaded', function() {
           return true; // Always return true to ensure ShowHide manages visibility
         }
       });
-    });
+    });*/
 
-    if (null !== divTransitions) {
+/*    if (null !== divTransitions) {
         new ShowHide({
             load_event: null,
             froms: [divTransitions],
             container: [futureDestUsersContainer],
             test: function(divs, arg2, arg3) {
-                for (let div of divs) {
+              for (let div of divs) {
                     for (let input of div.querySelectorAll('input')) {
                         if (input.checked) {
                             if (input.dataset.toFinal === "1") {
@@ -105,7 +88,7 @@ window.addEventListener('DOMContentLoaded', function() {
                 return true;
             },
         });
-    }
+    }*/
 
     if (null !== transitionFilterContainer) {
         transitionsContainer.querySelectorAll('.form-check').forEach(function(row) {

From 1396304af5a3f4531c784bedc0803f2053c6b880 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 23 Jul 2024 16:20:27 +0200
Subject: [PATCH 130/375] Change funtioning of showHide (wip)

---
 .../public/page/workflow-show/index.js        | 124 +++++++++++-------
 1 file changed, 73 insertions(+), 51 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 93096a910..5afb6fcd8 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -14,60 +14,82 @@ window.addEventListener('DOMContentLoaded', function() {
       transitionsContainer = document.querySelector('#transitions')
     ;
 
-    personSignatureField.style.display = 'none';
-    userSignatureField.style.display = 'none';
-    futureDestUsersContainer.style.display = 'none';
-    signatureTypeChoices.style.display = 'none';
-
-  // ShowHide instance for signatureTypeChoices
-  new ShowHide({
-    debug: true,
-    froms: [divTransitions],
-    container: [signatureTypeChoices],
-    test: function(transitions) {
-      for (let transition of transitions) {
-        for (let input of transition.querySelectorAll('input')) {
-          if (input.checked) {
-            const inputData = JSON.parse(input.getAttribute('data-is-signature'))
-            return inputData.includes('person') || inputData.includes('user');
-          }
-        }
-      }
-
-      return true;
-    }
-  });
-
-/*    // Event listener for changes in signature type selection
-    signatureTypeChoices.addEventListener('change', function() {
-      // ShowHide instance for personSignatureField and userSignatureField
-      new ShowHide({
-        load_event: null,
-        froms: [signatureTypeChoices],
-        container: [personSignatureField, userSignatureField],
-        test: function() {
-          const selectedSignatureType = document.querySelector('input[name="workflow_step[isPersonOrUserSignature]"]:checked');
-          if (!selectedSignatureType) {
-            return false; // No signature type selected, hide both fields
-          }
-
-          if (selectedSignatureType.value === 'person') {
-            personSignatureField.style.display = '';
-            userSignatureField.style.display = 'none';
-          } else if (selectedSignatureType.value === 'user') {
-            personSignatureField.style.display = 'none';
-            userSignatureField.style.display = '';
+    new ShowHide({
+      debug: false,
+      froms: [signatureTypeChoices],
+      container: [personSignatureField],
+      test: function(froms, event) {
+        // console.log('froms', froms)
+        for (let container of froms) {
+          if (container.children.length === 0) {
+            console.log('im empty dont show person or user picker');
+            return false
           } else {
-            personSignatureField.style.display = 'none';
-            userSignatureField.style.display = 'none';
+            return container.querySelector('input[value="person"]').checked;
           }
-
-          return true; // Always return true to ensure ShowHide manages visibility
         }
-      });
-    });*/
+        return false;
+      },
+    });
 
-/*    if (null !== divTransitions) {
+    // ShowHide instance for userSignatureField
+    new ShowHide({
+      debug: false,
+      froms: [signatureTypeChoices],
+      container: [userSignatureField],
+      test: function(froms, event) {
+        for (let container of froms) {
+          if (container.children.length === 0) {
+            console.log('im empty dont show person or user picker');
+            return false
+          } else {
+            return container.querySelector('input[value="person"]').checked;
+          }
+        }
+        return false;
+      },
+    });
+
+    // ShowHide instance for signatureTypeChoices
+    new ShowHide({
+      debug: false,
+      load_event: null,
+      froms: [divTransitions],
+      container: [signatureTypeChoices],
+      test: function(froms, event) {
+        for (let transition of froms) {
+          for (let input of transition.querySelectorAll('input')) {
+            if (input.checked) {
+              const inputData = JSON.parse(input.getAttribute('data-is-signature'))
+              return inputData.includes('person') && inputData.includes('user');
+            }
+          }
+        }
+
+        return false;
+      }
+    });
+
+    // ShowHide instance for future dest users
+    new ShowHide({
+      debug: false,
+      load_event: null,
+      froms: [divTransitions],
+      container: [futureDestUsersContainer],
+      test: function(froms, event) {
+        for (let transition of froms) {
+          for (let input of transition.querySelectorAll('input')) {
+            if (input.checked) {
+              const inputData = JSON.parse(input.getAttribute('data-is-signature'))
+              return !(inputData.includes('person') || inputData.includes('user'));
+            }
+          }
+        }
+        return false;
+      }
+    });
+
+    if (null !== divTransitions) {
         new ShowHide({
             load_event: null,
             froms: [divTransitions],
@@ -88,7 +110,7 @@ window.addEventListener('DOMContentLoaded', function() {
                 return true;
             },
         });
-    }*/
+    }
 
     if (null !== transitionFilterContainer) {
         transitionsContainer.querySelectorAll('.form-check').forEach(function(row) {

From 0a6f3a99daa8b9aea7b418aa0f472a47b5756d96 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Tue, 23 Jul 2024 19:59:10 +0200
Subject: [PATCH 131/375] Fix functioning of show hide

---
 .../ChillMainBundle/Form/WorkflowStepType.php |  12 +-
 .../public/page/workflow-show/index.js        | 121 +++++++++---------
 .../views/Workflow/_decision.html.twig        |   2 +-
 .../translations/messages.fr.yml              |   5 +
 4 files changed, 77 insertions(+), 63 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 8949432b2..8d5f8c819 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -141,23 +141,25 @@ class WorkflowStepType extends AbstractType
                 'mapped' => false,
                 'multiple' => false,
                 'expanded' => true,
-                'label' => 'workflow.Type of signature',
+                'label' => 'workflow.signature_zone.type of signature',
                 'choices' => [
-                    'person' => 'person',
-                    'user' => 'user',
+                    'workflow.signature_zone.persons' => 'person',
+                    'workflow.signature_zone.user' => 'user',
                 ],
             ])
             ->add('futurePersonSignatures', PickPersonDynamicType::class, [
-                'label' => 'workflow.person signatures',
+                'label' => 'workflow.signature_zone.person signatures',
                 'multiple' => true,
+                'data' => []
             ])
             ->add('futureUserSignature', PickUserDynamicType::class, [
-                'label' => 'workflow.user signatures',
+                'label' => 'workflow.signature_zone.user signature',
                 'multiple' => false,
             ])
             ->add('futureDestUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
+                'data' => [],
                 'suggested' => $options['suggested_users'],
             ])
             ->add('futureCcUsers', PickUserDynamicType::class, [
diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index dc1dc9643..1536417b1 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -7,69 +7,20 @@ window.addEventListener('DOMContentLoaded', function() {
         personSignatureField = document.querySelector('#person-signature-field');
         userSignatureField = document.querySelector('#user-signature-field');
         signatureTypeChoices = document.querySelector('#signature-type-choice');
-    ;
+        personChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_0');
+        userChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_1');
+        signatureZone = document.querySelector('#signature-zone');
+  ;
 
     let
       transitionFilterContainer = document.querySelector('#transitionFilter'),
       transitionsContainer = document.querySelector('#transitions')
     ;
 
-  // ShowHide instance for personSignatureField
-  new ShowHide({
-      debug: false,
-      froms: [signatureTypeChoices],
-      container: [personSignatureField],
-      test: function(froms, event) {
-        // console.log('froms', froms)
-        for (let container of froms) {
-          if (container.children.length === 0) {
-            console.log('im empty dont show person or user picker');
-            return false
-          } else {
-            return container.querySelector('input[value="person"]').checked;
-          }
-        }
-        return false;
-      },
-    });
+    // ShowHide instance for signatureTypeChoices. This should always be present in the DOM and we toggle visibility.
+    // The field is not mapped and so not submitted with the form. Without it's presence upon DOM loading other show hides do not function well.
+    signatureTypeChoices.style.display = 'none';
 
-    // ShowHide instance for userSignatureField
-    new ShowHide({
-      debug: false,
-      froms: [signatureTypeChoices],
-      container: [userSignatureField],
-      test: function(froms, event) {
-        for (let container of froms) {
-          if (container.children.length === 0) {
-            console.log('im empty dont show person or user picker');
-            return false
-          } else {
-            return container.querySelector('input[value="person"]').checked;
-          }
-        }
-        return false;
-      },
-    });
-
-    // ShowHide instance for signatureTypeChoices
-    new ShowHide({
-      debug: false,
-      load_event: null,
-      froms: [divTransitions],
-      container: [signatureTypeChoices],
-      test: function(froms, event) {
-        for (let transition of froms) {
-          for (let input of transition.querySelectorAll('input')) {
-            if (input.checked) {
-              const inputData = JSON.parse(input.getAttribute('data-is-signature'))
-              return inputData.includes('person') && inputData.includes('user');
-            }
-          }
-        }
-
-        return false;
-      }
-    });
 
     // ShowHide instance for future dest users
     new ShowHide({
@@ -82,7 +33,16 @@ window.addEventListener('DOMContentLoaded', function() {
           for (let input of transition.querySelectorAll('input')) {
             if (input.checked) {
               const inputData = JSON.parse(input.getAttribute('data-is-signature'))
-              return !(inputData.includes('person') || inputData.includes('user'));
+              if (inputData.includes('person') || inputData.includes('user')) {
+                signatureTypeChoices.style.display = '';
+                return false;
+              } else {
+                personChoice.checked = false
+                userChoice.checked = false
+
+                signatureTypeChoices.style.display = 'none';
+                return true;
+              }
             }
           }
         }
@@ -90,6 +50,53 @@ window.addEventListener('DOMContentLoaded', function() {
       }
     });
 
+    // ShowHide signature zone
+    new ShowHide({
+      debug: false,
+      load_event: null,
+      froms: [divTransitions],
+      container: [signatureZone],
+      test: function(froms, event) {
+        for (let transition of froms) {
+          for (let input of transition.querySelectorAll('input')) {
+            if (input.checked) {
+              const inputData = JSON.parse(input.getAttribute('data-is-signature'))
+              if (inputData.includes('person') || inputData.includes('user')) {
+                signatureTypeChoices.style.display = '';
+                return true;
+              }
+            }
+          }
+        }
+        return false;
+      }
+    });
+
+    // ShowHides for personSignatureField or userSignatureField within signature zone
+    new ShowHide({
+      debug: false,
+      froms: [signatureTypeChoices],
+      container: [personSignatureField],
+      test: function(froms, event) {
+        for (let container of froms) {
+          return personChoice.checked;
+        }
+        return false;
+      },
+    });
+
+    new ShowHide({
+      debug: false,
+      froms: [signatureTypeChoices],
+      container: [userSignatureField],
+      test: function(froms, event) {
+        for (let container of froms) {
+          return userChoice.checked;
+        }
+        return false;
+      },
+    });
+
     if (null !== divTransitions) {
       new ShowHide({
           load_event: null,
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 391e42324..ac85525a6 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -58,7 +58,7 @@
         {{ form_row(transition_form.transition) }}
     </div>
 
-    <div id="futureSignatures">
+    <div id="signature-zone">
         <div id="signature-type-choice">
             {{ form_row(transition_form.isPersonOrUserSignature) }}
             {{ form_errors(transition_form.isPersonOrUserSignature) }}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 924ccec3a..9a90b7fa1 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -536,6 +536,11 @@ workflow:
             docType: Type de document
             docNumber: Numéro de document
             docExpiration: Date d'expiration
+        type of signature: Type de signature
+        person signatures: Selectionner usagers pour signer
+        user signature: Selectionner utilisateur pour signer
+        persons: Usagers
+        user: Utilisateur
 
 
 Subscribe final: Recevoir une notification à l'étape finale

From 5623cf946e3dbdbec165977e9220e504ca6b3de4 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 24 Jul 2024 11:06:30 +0200
Subject: [PATCH 132/375] Set empty_data option to allow empty array to be
 passed

---
 .../DependencyInjection/Configuration.php     | 50 +++++++++----------
 .../ChillMainBundle/Form/WorkflowStepType.php |  5 +-
 2 files changed, 27 insertions(+), 28 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 2185375b6..bf62e0322 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -85,6 +85,30 @@ class Configuration implements ConfigurationInterface
             ->end()
             ->end()
             ->end() // end of notifications
+            ->arrayNode('workflow_signature')
+            ->children()
+            ->arrayNode('base_signer')
+            ->children()
+            ->arrayNode('document_kinds')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('key')->cannotBeEmpty()->end()
+            ->arrayNode('labels')
+            ->arrayPrototype()
+            ->children()
+            ->scalarNode('lang')->cannotBeEmpty()->end()
+            ->scalarNode('label')->cannotBeEmpty()->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end()
+            ->end() // end of workflow signature document types
             ->arrayNode('phone_helper')
             ->canBeUnset()
             ->children()
@@ -277,32 +301,6 @@ class Configuration implements ConfigurationInterface
             ->end() // end of root
         ;
 
-        $rootNode->children()
-            ->arrayNode('workflow_signature')
-            ->children()
-            ->arrayNode('base_signer')
-            ->children()
-            ->arrayNode('document_kinds')
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('key')->cannotBeEmpty()->end()
-            ->arrayNode('labels')
-            ->arrayPrototype()
-            ->children()
-            ->scalarNode('lang')->cannotBeEmpty()->end()
-            ->scalarNode('label')->cannotBeEmpty()->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end()
-            ->end();
-
         $rootNode->children()
             ->arrayNode('add_address')->addDefaultsIfNotSet()->children()
             ->scalarNode('default_country')->cannotBeEmpty()->defaultValue('BE')->end()
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 8d5f8c819..a113c62c5 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -150,7 +150,7 @@ class WorkflowStepType extends AbstractType
             ->add('futurePersonSignatures', PickPersonDynamicType::class, [
                 'label' => 'workflow.signature_zone.person signatures',
                 'multiple' => true,
-                'data' => []
+                'empty_data' => '[]',
             ])
             ->add('futureUserSignature', PickUserDynamicType::class, [
                 'label' => 'workflow.signature_zone.user signature',
@@ -159,7 +159,7 @@ class WorkflowStepType extends AbstractType
             ->add('futureDestUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
-                'data' => [],
+                'empty_data' => '[]',
                 'suggested' => $options['suggested_users'],
             ])
             ->add('futureCcUsers', PickUserDynamicType::class, [
@@ -167,6 +167,7 @@ class WorkflowStepType extends AbstractType
                 'multiple' => true,
                 'required' => false,
                 'suggested' => $options['suggested_users'],
+                'empty_data' => '[]',
                 'attr' => ['class' => 'future-cc-users'],
             ])
             ->add('futureDestEmails', ChillCollectionType::class, [

From 15f3e474a08ec734e97bd529b43ab5a119ecc343 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 24 Jul 2024 11:32:08 +0200
Subject: [PATCH 133/375] Remove trailing end() in MainBundle configuration

---
 src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index bf62e0322..16130f193 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -107,7 +107,6 @@ class Configuration implements ConfigurationInterface
             ->end()
             ->end()
             ->end()
-            ->end()
             ->end() // end of workflow signature document types
             ->arrayNode('phone_helper')
             ->canBeUnset()

From bf66af0f25ce4a022cb903ec45572776cdba0bf9 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 24 Jul 2024 11:54:07 +0200
Subject: [PATCH 134/375] Fix configuration of workflow signature document
 kinds

---
 .../DependencyInjection/ChillMainExtension.php                | 4 ++--
 .../ChillMainBundle/Form/WorkflowSignatureMetadataType.php    | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 0d90854b4..df2b6532a 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -193,10 +193,10 @@ class ChillMainExtension extends Extension implements
                 []
         );
 
-        $container->setParameter(
+/*        $container->setParameter(
             'chill_main.workflow_signatures.base_signer.document_kinds',
             $config['workflow_signature']['base_signer']['document_kinds']
-        );
+        );*/
 
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
index 47be9b88c..a23164784 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
@@ -25,7 +25,7 @@ class WorkflowSignatureMetadataType extends AbstractType
 
     public function buildForm(FormBuilderInterface $builder, array $options): void
     {
-        $documentTypeChoices = $this->parameterBag->get('chill_main.id_document_kinds');
+        $documentTypeChoices = $this->parameterBag->get('chill_main.workflow_signatures.base_signer.document_kinds');
 
         $choices = [];
 

From d75607a1d2c265eadda520a7c5fcca68ca17a655 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 24 Jul 2024 12:00:10 +0200
Subject: [PATCH 135/375] Php cs fixes

---
 .../DependencyInjection/ChillMainExtension.php            | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index df2b6532a..66fbae633 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -193,10 +193,10 @@ class ChillMainExtension extends Extension implements
                 []
         );
 
-/*        $container->setParameter(
-            'chill_main.workflow_signatures.base_signer.document_kinds',
-            $config['workflow_signature']['base_signer']['document_kinds']
-        );*/
+        /*        $container->setParameter(
+                    'chill_main.workflow_signatures.base_signer.document_kinds',
+                    $config['workflow_signature']['base_signer']['document_kinds']
+                );*/
 
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');

From 44226d6f7f28e134ce31952a56c7348ffd839189 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 24 Jul 2024 13:07:47 +0200
Subject: [PATCH 136/375] Fix the config's path to workflow signature

- typo
- load the config's array instead of the path to the config
---
 .../DependencyInjection/ChillMainExtension.php               | 5 -----
 .../ChillMainBundle/Form/WorkflowSignatureMetadataType.php   | 2 +-
 2 files changed, 1 insertion(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 66fbae633..4dde2076c 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -193,11 +193,6 @@ class ChillMainExtension extends Extension implements
                 []
         );
 
-        /*        $container->setParameter(
-                    'chill_main.workflow_signatures.base_signer.document_kinds',
-                    $config['workflow_signature']['base_signer']['document_kinds']
-                );*/
-
         $loader = new Loader\YamlFileLoader($container, new FileLocator(__DIR__.'/../config'));
         $loader->load('services.yaml');
         $loader->load('services/doctrine.yaml');
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
index a23164784..114a462f6 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowSignatureMetadataType.php
@@ -25,7 +25,7 @@ class WorkflowSignatureMetadataType extends AbstractType
 
     public function buildForm(FormBuilderInterface $builder, array $options): void
     {
-        $documentTypeChoices = $this->parameterBag->get('chill_main.workflow_signatures.base_signer.document_kinds');
+        $documentTypeChoices = $this->parameterBag->get('chill_main')['workflow_signature']['base_signer']['document_kinds'];
 
         $choices = [];
 

From 5fed42a623fdd163a8733e481f779ad2a526292a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 25 Jul 2024 23:34:36 +0200
Subject: [PATCH 137/375] Fix decision logic in AbstractStoredObjectVoter

Amend the condition to ensure proper attribute validation before checking workflow association. This prevents unintended execution paths and potential exceptions when the workflow document service is not provided.
---
 .../Security/Authorization/StoredObjectVoter.php    | 13 +++++++++++--
 .../StoredObjectVoter/AbstractStoredObjectVoter.php |  2 +-
 .../Authorization/StoredObjectVoterTest.php         |  3 ++-
 3 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 91e767af2..17ba1f59d 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Security\Authorization;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 use Symfony\Component\Security\Core\Security;
@@ -23,7 +24,9 @@ use Symfony\Component\Security\Core\Security;
  */
 class StoredObjectVoter extends Voter
 {
-    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters) {}
+    public const LOG_PREFIX = '[stored object voter] ';
+
+    public function __construct(private readonly Security $security, private readonly iterable $storedObjectVoters, private readonly LoggerInterface $logger) {}
 
     protected function supports($attribute, $subject): bool
     {
@@ -39,7 +42,13 @@ class StoredObjectVoter extends Voter
         // Loop through context-specific voters
         foreach ($this->storedObjectVoters as $storedObjectVoter) {
             if ($storedObjectVoter->supports($attributeAsEnum, $subject)) {
-                return $storedObjectVoter->voteOnAttribute($attributeAsEnum, $subject, $token);
+                $grant = $storedObjectVoter->voteOnAttribute($attributeAsEnum, $subject, $token);
+
+                if (false === $grant) {
+                    $this->logger->debug(self::LOG_PREFIX.'deny access by storedObjectVoter', ['stored_object_voter' => get_class($storedObjectVoter)]);
+                }
+
+                return $grant;
             }
         }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
index 2e76da318..9d77211c2 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AbstractStoredObjectVoter.php
@@ -56,7 +56,7 @@ abstract class AbstractStoredObjectVoter implements StoredObjectVoterInterface
             return false;
         }
 
-        if ($this->canBeAssociatedWithWorkflow()) {
+        if (StoredObjectRoleEnum::SEE !== $attribute && $this->canBeAssociatedWithWorkflow()) {
             if (null === $this->workflowDocumentService) {
                 throw new \LogicException('Provide a workflow document service');
             }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
index a113cfb7b..b9a025f45 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/StoredObjectVoterTest.php
@@ -17,6 +17,7 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
 use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
 use Symfony\Component\Security\Core\Authorization\Voter\VoterInterface;
@@ -43,7 +44,7 @@ class StoredObjectVoterTest extends TestCase
             ->with($this->logicalOr($this->identicalTo('ROLE_USER'), $this->identicalTo('ROLE_ADMIN')))
             ->willReturn($securityIsGrantedResult);
 
-        $voter = new StoredObjectVoter($security, $storedObjectVoters);
+        $voter = new StoredObjectVoter($security, $storedObjectVoters, new NullLogger());
 
         self::assertEquals($expected, $voter->vote($token, $subject, [$attribute]));
     }

From 564813ef3dfb97a11f7876d69d67eedf9daf713f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 26 Jul 2024 00:34:11 +0200
Subject: [PATCH 138/375] Change attribute in test and add new test method

Updated an existing test to use the 'EDIT' attribute instead of 'SEE' in AbstractStoredObjectVoterTest.php. Added a new test method to check the 'SEE' attribute when the workflow is allowed, ensuring proper access validation.
---
 .../AbstractStoredObjectVoterTest.php          | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index 4f420223a..3f6a5538d 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -143,10 +143,26 @@ class AbstractStoredObjectVoterTest extends TestCase
         $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
 
         // Test voteOnAttribute method
-        $attribute = StoredObjectRoleEnum::SEE;
+        $attribute = StoredObjectRoleEnum::EDIT;
         $result = $voter->voteOnAttribute($attribute, $subject, $token);
 
         // Assert that access is denied when workflow is not allowed
         $this->assertFalse($result);
     }
+
+    public function testVoteOnAttributeAllowedWorkflowAllowedToSeeDocument(): void
+    {
+        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+
+        // Setup mocks for voteOnAttribute method
+        $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, false);
+        $voter = $this->buildStoredObjectVoter(true, $this->repository, $this->security, $this->workflowDocumentService);
+
+        // Test voteOnAttribute method
+        $attribute = StoredObjectRoleEnum::SEE;
+        $result = $voter->voteOnAttribute($attribute, $subject, $token);
+
+        // Assert that access is denied when workflow is not allowed
+        $this->assertTrue($result);
+    }
 }

From 8a374864fa600ce4d75092e4574337730f43f0b4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 14:03:26 +0200
Subject: [PATCH 139/375] update code style after upgrade rector and phpstan

---
 .../Controller/SignatureRequestController.php |  6 ++---
 .../Authorization/StoredObjectVoter.php       |  2 +-
 .../BaseSigner/PdfSignedMessageSerializer.php |  4 ++--
 .../RequestPdfSignMessageSerializer.php       |  4 ++--
 .../Signature/PDFSignatureZoneParser.php      |  4 ++--
 .../AbstractStoredObjectVoterTest.php         | 14 +++++------
 .../Authorization/EventStoredObjectVoter.php  |  1 +
 .../Entity/Workflow/EntityWorkflowStep.php    |  2 --
 .../Workflow/EntityWorkflowStepSignature.php  | 24 +++----------------
 .../EntityWorkflowStepSignatureRepository.php |  2 +-
 10 files changed, 22 insertions(+), 41 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 363ecafd4..70d126f78 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -25,9 +25,9 @@ use Symfony\Component\Routing\Annotation\Route;
 class SignatureRequestController
 {
     public function __construct(
-        private MessageBusInterface $messageBus,
-        private StoredObjectManagerInterface $storedObjectManager,
-        private EntityWorkflowManager $entityWorkflowManager,
+        private readonly MessageBusInterface $messageBus,
+        private readonly StoredObjectManagerInterface $storedObjectManager,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
     ) {}
 
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
index 17ba1f59d..da5e4118b 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter.php
@@ -45,7 +45,7 @@ class StoredObjectVoter extends Voter
                 $grant = $storedObjectVoter->voteOnAttribute($attributeAsEnum, $subject, $token);
 
                 if (false === $grant) {
-                    $this->logger->debug(self::LOG_PREFIX.'deny access by storedObjectVoter', ['stored_object_voter' => get_class($storedObjectVoter)]);
+                    $this->logger->debug(self::LOG_PREFIX.'deny access by storedObjectVoter', ['stored_object_voter' => $storedObjectVoter::class]);
                 }
 
                 return $grant;
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
index 082b9b83c..4af4a9504 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
@@ -25,7 +25,7 @@ final readonly class PdfSignedMessageSerializer implements SerializerInterface
         $body = $encodedEnvelope['body'];
 
         try {
-            $decoded = json_decode($body, true, 512, JSON_THROW_ON_ERROR);
+            $decoded = json_decode((string) $body, true, 512, JSON_THROW_ON_ERROR);
         } catch (\JsonException $e) {
             throw new MessageDecodingFailedException('Could not deserialize message', previous: $e);
         }
@@ -34,7 +34,7 @@ final readonly class PdfSignedMessageSerializer implements SerializerInterface
             throw new MessageDecodingFailedException('Could not find expected keys: signatureId or content');
         }
 
-        $content = base64_decode($decoded['content'], true);
+        $content = base64_decode((string) $decoded['content'], true);
 
         if (false === $content) {
             throw new MessageDecodingFailedException('Invalid character found in the base64 encoded content');
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
index 57314a109..f67cdafcf 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessageSerializer.php
@@ -39,13 +39,13 @@ final readonly class RequestPdfSignMessageSerializer implements SerializerInterf
             throw new MessageDecodingFailedException('serializer does not support this message');
         }
 
-        $data = json_decode($body, true);
+        $data = json_decode((string) $body, true);
 
         $zoneSignature = $this->denormalizer->denormalize($data['signatureZone'], PDFSignatureZone::class, 'json', [
             AbstractNormalizer::GROUPS => ['write'],
         ]);
 
-        $content = base64_decode($data['content'], true);
+        $content = base64_decode((string) $data['content'], true);
 
         if (false === $content) {
             throw new MessageDecodingFailedException('the content could not be converted from base64 encoding');
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
index 082d1afa2..a2526a109 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneParser.php
@@ -17,7 +17,7 @@ class PDFSignatureZoneParser
 {
     public const ZONE_SIGNATURE_START = 'signature_zone';
 
-    private Parser $parser;
+    private readonly Parser $parser;
 
     public function __construct(
         public float $defaultHeight = 90.0,
@@ -48,7 +48,7 @@ class PDFSignatureZoneParser
             );
 
             foreach ($page->getDataTm() as $dataTm) {
-                if (str_starts_with($dataTm[1], self::ZONE_SIGNATURE_START)) {
+                if (str_starts_with((string) $dataTm[1], self::ZONE_SIGNATURE_START)) {
                     $zones[] = new PDFSignatureZone($zoneIndex, (float) $dataTm[0][4], (float) $dataTm[0][5], $this->defaultHeight, $this->defaultWidth, $pdfPage);
                     ++$zoneIndex;
                 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index 3f6a5538d..645509439 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -44,8 +44,8 @@ class AbstractStoredObjectVoterTest extends TestCase
         // Anonymous class extending the abstract class
         return new class ($canBeAssociatedWithWorkflow, $repository, $security, $workflowDocumentService) extends AbstractStoredObjectVoter {
             public function __construct(
-                private bool $canBeAssociatedWithWorkflow,
-                private AssociatedEntityToStoredObjectInterface $repository,
+                private readonly bool $canBeAssociatedWithWorkflow,
+                private readonly AssociatedEntityToStoredObjectInterface $repository,
                 Security $security,
                 ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null
             ) {
@@ -101,7 +101,7 @@ class AbstractStoredObjectVoterTest extends TestCase
 
     public function testSupportsOnAttribute(): void
     {
-        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+        [$user, $token, $subject, $entity] = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
@@ -112,7 +112,7 @@ class AbstractStoredObjectVoterTest extends TestCase
 
     public function testVoteOnAttributeAllowedAndWorkflowAllowed(): void
     {
-        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+        [$user, $token, $subject, $entity] = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, true);
@@ -124,7 +124,7 @@ class AbstractStoredObjectVoterTest extends TestCase
 
     public function testVoteOnAttributeNotAllowed(): void
     {
-        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+        [$user, $token, $subject, $entity] = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method where isGranted() returns false
         $this->setupMocksForVoteOnAttribute($user, $token, false, $entity, true);
@@ -136,7 +136,7 @@ class AbstractStoredObjectVoterTest extends TestCase
 
     public function testVoteOnAttributeAllowedWorkflowNotAllowed(): void
     {
-        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+        [$user, $token, $subject, $entity] = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, false);
@@ -152,7 +152,7 @@ class AbstractStoredObjectVoterTest extends TestCase
 
     public function testVoteOnAttributeAllowedWorkflowAllowedToSeeDocument(): void
     {
-        list($user, $token, $subject, $entity) = $this->setupMockObjects();
+        [$user, $token, $subject, $entity] = $this->setupMockObjects();
 
         // Setup mocks for voteOnAttribute method
         $this->setupMocksForVoteOnAttribute($user, $token, true, $entity, false);
diff --git a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index 66f54bc6d..16c8caa01 100644
--- a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -17,6 +17,7 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoter\AbstractStored
 use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
 use Chill\EventBundle\Entity\Event;
 use Chill\EventBundle\Repository\EventRepository;
+use Chill\EventBundle\Security\EventVoter;
 use Symfony\Component\Security\Core\Security;
 
 class EventStoredObjectVoter extends AbstractStoredObjectVoter
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index dde204a85..953fb31b1 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -161,8 +161,6 @@ class EntityWorkflowStep
             $this->signatures->removeElement($signature);
         }
 
-        $signature->detachEntityWorkflowStep();
-
         return $this;
     }
 
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index 25babc3c6..46c8bb04d 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -51,16 +51,12 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, nullable: true, options: ['default' => null])]
     private ?int $zoneSignatureIndex = null;
 
-    #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class, inversedBy: 'signatures')]
-    #[ORM\JoinColumn(nullable: false)]
-    private ?EntityWorkflowStep $step = null;
-
     public function __construct(
-        EntityWorkflowStep $step,
+        #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class, inversedBy: 'signatures')]
+        private EntityWorkflowStep $step,
         User|Person $signer,
     ) {
-        $this->step = $step;
-        $step->addSignature($this);
+        $this->step->addSignature($this);
         $this->setSigner($signer);
     }
 
@@ -139,18 +135,4 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
 
         return $this;
     }
-
-    /**
-     * Detach from the @see{EntityWorkflowStep}.
-     *
-     * @internal used internally to remove the current signature
-     *
-     * @return $this
-     */
-    public function detachEntityWorkflowStep(): self
-    {
-        $this->step = null;
-
-        return $this;
-    }
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
index 0e1393242..a057c1660 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
@@ -20,7 +20,7 @@ use Doctrine\Persistence\ObjectRepository;
  */
 class EntityWorkflowStepSignatureRepository implements ObjectRepository
 {
-    private \Doctrine\ORM\EntityRepository $repository;
+    private readonly \Doctrine\ORM\EntityRepository $repository;
 
     public function __construct(EntityManagerInterface $entityManager)
     {

From 2b7ea4178b559f21ffd442ab6b170aa30d036f0e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 22:23:24 +0200
Subject: [PATCH 140/375] Add versioning to stored objects

This update introduces a versioning system to the stored objects in the ChillDocStoreBundle. The 'StoredObject' entity now includes several new methods, and maintains a collection of 'StoredObjectVersion' instances. Each time a 'StoredObject' is modified, a new version instance is created and added to the collection, ensuring a history of changes. Migration file for the addition of new database column included. Corresponding tests are also updated.
---
 .../Entity/StoredObject.php                   | 139 +++++++++++-------
 .../Entity/StoredObjectVersion.php            | 127 ++++++++++++++++
 .../Tests/Entity/StoredObjectTest.php         |  49 +++++-
 .../migrations/Version20240709102730.php      |  80 ++++++++++
 4 files changed, 333 insertions(+), 62 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 4472d2177..f37829a26 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -16,9 +16,12 @@ use ChampsLibres\WopiLib\Contract\Entity\Document;
 use Chill\DocGeneratorBundle\Entity\DocGeneratorTemplate;
 use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
 use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Doctrine\Common\Collections\ArrayCollection;
+use Doctrine\Common\Collections\Collection;
 use Doctrine\ORM\Mapping as ORM;
 use Ramsey\Uuid\Uuid;
 use Ramsey\Uuid\UuidInterface;
+use Random\RandomException;
 use Symfony\Component\Serializer\Annotation as Serializer;
 
 /**
@@ -28,9 +31,12 @@ use Symfony\Component\Serializer\Annotation as Serializer;
  *
  * The property `$deleteAt` allow a deletion of the document after the given date. But this property should
  * be set before the document is actually written by the StoredObjectManager.
+ *
+ * Each version is stored within a @see{StoredObjectVersion}, associated with this current's object. The creation
+ * of each new version should be done using the method @see{self::registerVersion}.
  */
 #[ORM\Entity]
-#[ORM\Table('chill_doc.stored_object')]
+#[ORM\Table('stored_object', schema: 'chill_doc')]
 #[AsyncFileExists(message: 'The file is not stored properly')]
 class StoredObject implements Document, TrackCreationInterface
 {
@@ -43,9 +49,11 @@ class StoredObject implements Document, TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, name: 'datas')]
     private array $datas = [];
 
-    #[Serializer\Groups(['write'])]
-    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT)]
-    private string $filename = '';
+    /**
+     * the prefix of each version.
+     */
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
+    private string $prefix = '';
 
     #[Serializer\Groups(['write'])]
     #[ORM\Id]
@@ -53,25 +61,10 @@ class StoredObject implements Document, TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
     private ?int $id = null;
 
-    /**
-     * @var int[]
-     */
     #[Serializer\Groups(['write'])]
-    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, name: 'iv')]
-    private array $iv = [];
-
-    #[Serializer\Groups(['write'])]
-    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, name: 'key')]
-    private array $keyInfos = [];
-
-    #[Serializer\Groups(['write'])]
-    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, name: 'title')]
+    #[ORM\Column(name: 'title', type: \Doctrine\DBAL\Types\Types::TEXT, options: ['default' => ''])]
     private string $title = '';
 
-    #[Serializer\Groups(['write'])]
-    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, name: 'type', options: ['default' => ''])]
-    private string $type = '';
-
     #[Serializer\Groups(['write'])]
     #[ORM\Column(type: 'uuid', unique: true)]
     private UuidInterface $uuid;
@@ -94,6 +87,12 @@ class StoredObject implements Document, TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
     private string $generationErrors = '';
 
+    /**
+     * @var Collection<int, StoredObjectVersion>
+     */
+    #[ORM\OneToMany(targetEntity: StoredObjectVersion::class, cascade: ['persist'], mappedBy: 'storedObject')]
+    private Collection $versions;
+
     /**
      * @param StoredObject::STATUS_* $status
      */
@@ -102,6 +101,8 @@ class StoredObject implements Document, TrackCreationInterface
         private string $status = 'ready'
     ) {
         $this->uuid = Uuid::uuid4();
+        $this->versions = new ArrayCollection();
+        $this->prefix = self::generatePrefix();
     }
 
     public function addGenerationTrial(): self
@@ -125,14 +126,32 @@ class StoredObject implements Document, TrackCreationInterface
         return \DateTime::createFromImmutable($this->createdAt);
     }
 
+    public function getCurrentVersion(): ?StoredObjectVersion
+    {
+        $maxVersion = null;
+
+        foreach ($this->versions as $v) {
+            if ($v->getVersion() > ($maxVersion?->getVersion() ?? -1)) {
+                $maxVersion = $v;
+            }
+        }
+
+        return $maxVersion;
+    }
+
     public function getDatas(): array
     {
         return $this->datas;
     }
 
+    public function getPrefix(): string
+    {
+        return $this->prefix;
+    }
+
     public function getFilename(): string
     {
-        return $this->filename;
+        return $this->getCurrentVersion()?->getFilename() ?? '';
     }
 
     public function getGenerationTrialsCounter(): int
@@ -145,14 +164,17 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->id;
     }
 
+    /**
+     * @return list<int>
+     */
     public function getIv(): array
     {
-        return $this->iv;
+        return $this->getCurrentVersion()?->getIv() ?? [];
     }
 
     public function getKeyInfos(): array
     {
-        return $this->keyInfos;
+        return $this->getCurrentVersion()?->getKeyInfos() ?? [];
     }
 
     /**
@@ -171,14 +193,14 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->status;
     }
 
-    public function getTitle()
+    public function getTitle(): string
     {
         return $this->title;
     }
 
-    public function getType()
+    public function getType(): string
     {
-        return $this->type;
+        return $this->getCurrentVersion()?->getType() ?? '';
     }
 
     public function getUuid(): UuidInterface
@@ -209,27 +231,6 @@ class StoredObject implements Document, TrackCreationInterface
         return $this;
     }
 
-    public function setFilename(?string $filename): self
-    {
-        $this->filename = (string) $filename;
-
-        return $this;
-    }
-
-    public function setIv(?array $iv): self
-    {
-        $this->iv = (array) $iv;
-
-        return $this;
-    }
-
-    public function setKeyInfos(?array $keyInfos): self
-    {
-        $this->keyInfos = (array) $keyInfos;
-
-        return $this;
-    }
-
     /**
      * @param StoredObject::STATUS_* $status
      */
@@ -247,18 +248,16 @@ class StoredObject implements Document, TrackCreationInterface
         return $this;
     }
 
-    public function setType(?string $type): self
-    {
-        $this->type = (string) $type;
-
-        return $this;
-    }
-
     public function getTemplate(): ?DocGeneratorTemplate
     {
         return $this->template;
     }
 
+    public function getVersions(): Collection
+    {
+        return $this->versions;
+    }
+
     public function hasTemplate(): bool
     {
         return null !== $this->template;
@@ -314,6 +313,29 @@ class StoredObject implements Document, TrackCreationInterface
         return $this;
     }
 
+    public function registerVersion(
+        array $iv = [],
+        array $keyInfos = [],
+        string $type = '',
+        ?string $filename = null,
+    ): StoredObjectVersion {
+        $version = new StoredObjectVersion(
+            $this,
+            null === $this->getCurrentVersion() ? 0 : $this->getCurrentVersion()->getVersion() + 1,
+            $iv,
+            $keyInfos,
+            $type,
+            $filename
+        );
+
+        $this->versions->add($version);
+
+        return $version;
+    }
+
+    /**
+     * @deprecated
+     */
     public function saveHistory(): void
     {
         if ('' === $this->getFilename()) {
@@ -328,4 +350,13 @@ class StoredObject implements Document, TrackCreationInterface
             'before' => (new \DateTimeImmutable('now'))->getTimestamp(),
         ];
     }
+
+    public static function generatePrefix(): string
+    {
+        try {
+            return base_convert(bin2hex(random_bytes(8)), 16, 36);
+        } catch (RandomException $e) {
+            return uniqid(more_entropy: true);
+        }
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
new file mode 100644
index 000000000..c280b30a3
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -0,0 +1,127 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Entity;
+
+use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
+use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Doctrine\ORM\Mapping as ORM;
+use Random\RandomException;
+
+/**
+ * Store each version of StoredObject's.
+ *
+ * A version should not be created manually: use the method @see{StoredObject::registerVersion} instead.
+ */
+#[ORM\Entity]
+#[ORM\Table('chill_doc.stored_object_version')]
+#[ORM\UniqueConstraint(name: 'chill_doc_stored_object_version_unique_by_object', columns: ['stored_object_id', 'version'])]
+class StoredObjectVersion implements TrackCreationInterface
+{
+    use TrackCreationTrait;
+
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
+    private ?int $id = null;
+
+    /**
+     * filename of the version in the stored object.
+     */
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
+    private string $filename = '';
+
+    public function __construct(
+        /**
+         * The stored object associated with this version.
+         */
+        #[ORM\ManyToOne(targetEntity: StoredObject::class, inversedBy: 'versions')]
+        #[ORM\JoinColumn(name: 'stored_object_id', nullable: true)]
+        private StoredObject $storedObject,
+
+        /**
+         * The incremental version.
+         */
+        #[ORM\Column(name: 'version', type: \Doctrine\DBAL\Types\Types::INTEGER, options: ['default' => 0])]
+        private int $version = 0,
+
+        /**
+         * vector for encryption.
+         *
+         * @var int[]
+         */
+        #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, name: 'iv')]
+        private array $iv = [],
+
+        /**
+         * Key infos for document encryption.
+         *
+         * @var array
+         */
+        #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, name: 'key')]
+        private array $keyInfos = [],
+
+        /**
+         * type of the document.
+         */
+        #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, name: 'type', options: ['default' => ''])]
+        private string $type = '',
+        ?string $filename = null,
+    ) {
+        $this->filename = $filename ?? self::generateFilename($this);
+    }
+
+    public static function generateFilename(StoredObjectVersion $storedObjectVersion): string
+    {
+        try {
+            $suffix = base_convert(bin2hex(random_bytes(16)), 16, 36);
+        } catch (RandomException $e) {
+            $suffix = uniqid(more_entropy: true);
+        }
+
+        return $storedObjectVersion->getStoredObject()->getPrefix().'/'.$suffix;
+    }
+
+    public function getFilename(): string
+    {
+        return $this->filename;
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getIv(): array
+    {
+        return $this->iv;
+    }
+
+    public function getKeyInfos(): array
+    {
+        return $this->keyInfos;
+    }
+
+    public function getStoredObject(): StoredObject
+    {
+        return $this->storedObject;
+    }
+
+    public function getType(): string
+    {
+        return $this->type;
+    }
+
+    public function getVersion(): int
+    {
+        return $this->version;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
index 33394114f..9351947a4 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
@@ -25,18 +25,22 @@ class StoredObjectTest extends KernelTestCase
     {
         $storedObject = new StoredObject();
         $storedObject
-            ->setFilename('test_0')
-            ->setIv([2, 4, 6, 8])
-            ->setKeyInfos(['key' => ['data0' => 'data0']])
-            ->setType('text/html');
+            ->registerVersion(
+                [2, 4, 6, 8],
+                ['key' => ['data0' => 'data0']],
+                'text/html',
+                'test_0',
+            );
 
         $storedObject->saveHistory();
 
         $storedObject
-            ->setFilename('test_1')
-            ->setIv([8, 10, 12])
-            ->setKeyInfos(['key' => ['data1' => 'data1']])
-            ->setType('text/text');
+            ->registerVersion(
+                [8, 10, 12],
+                ['key' => ['data1' => 'data1']],
+                'text/text',
+                'test_1',
+            );
 
         $storedObject->saveHistory();
 
@@ -50,4 +54,33 @@ class StoredObjectTest extends KernelTestCase
         self::assertEquals(['key' => ['data1' => 'data1']], $storedObject->getDatas()['history'][1]['key_infos']);
         self::assertEquals('text/text', $storedObject->getDatas()['history'][1]['type']);
     }
+
+    public function testRegisterVersion(): void
+    {
+        $object = new StoredObject();
+        $firstVersion = $object->registerVersion(
+            [5, 6, 7, 8],
+            ['key' => ['some key']],
+            'text/html',
+        );
+        $version = $object->registerVersion(
+            [1, 2, 3, 4],
+            $k = ['key' => ['data0' => 'data0']],
+            'text/text',
+            'abcde',
+        );
+
+        self::assertCount(2, $object->getVersions());
+        self::assertEquals('abcde', $object->getFilename());
+        self::assertEquals([1, 2, 3, 4], $object->getIv());
+        self::assertEqualsCanonicalizing($k, $object->getKeyInfos());
+        self::assertEquals('text/text', $object->getType());
+
+        self::assertEquals('abcde', $version->getFilename());
+        self::assertEquals([1, 2, 3, 4], $version->getIv());
+        self::assertEqualsCanonicalizing($k, $version->getKeyInfos());
+        self::assertEquals('text/text', $version->getType());
+
+        self::assertNotSame($firstVersion, $version);
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php b/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php
new file mode 100644
index 000000000..4ac01b196
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php
@@ -0,0 +1,80 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\DocStore;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240709102730 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add versioning to stored objects';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_doc.stored_object_version_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql(
+            <<<'SQL'
+                CREATE TABLE chill_doc.stored_object_version (
+                    id INT NOT NULL,
+                    stored_object_id INT DEFAULT NULL,
+                    version INT DEFAULT 0 NOT NULL,
+                    filename TEXT NOT NULL,
+                    iv JSON NOT NULL,
+                    key JSON NOT NULL,
+                    type TEXT DEFAULT '' NOT NULL,
+                    createdAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL,
+                    createdBy_id INT DEFAULT NULL,
+                    PRIMARY KEY(id))
+                SQL
+        );
+        $this->addSql('CREATE INDEX IDX_C1D55302232D562B ON chill_doc.stored_object_version (stored_object_id)');
+        $this->addSql('CREATE INDEX IDX_C1D553023174800F ON chill_doc.stored_object_version (createdBy_id)');
+        $this->addSql('CREATE UNIQUE INDEX chill_doc_stored_object_version_unique_by_object ON chill_doc.stored_object_version (stored_object_id, version)');
+        $this->addSql('COMMENT ON COLUMN chill_doc.stored_object_version.createdAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ADD CONSTRAINT FK_C1D55302232D562B FOREIGN KEY (stored_object_id) REFERENCES chill_doc.stored_object (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ADD CONSTRAINT FK_C1D553023174800F FOREIGN KEY (createdBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql(
+            <<<'SQL'
+            INSERT INTO chill_doc.stored_object_version (id, stored_object_id, version, filename, iv, key, type)
+                SELECT nextval('chill_doc.stored_object_version_id_seq'), id, 1, filename, iv, key, type FROM chill_doc.stored_object
+            SQL
+        );
+        $this->addSql('ALTER TABLE chill_doc.stored_object RENAME COLUMN filename TO prefix');
+        $this->addSql('ALTER TABLE chill_doc.stored_object DROP key');
+        $this->addSql('ALTER TABLE chill_doc.stored_object DROP iv');
+        $this->addSql('ALTER TABLE chill_doc.stored_object DROP type');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ALTER title SET DEFAULT \'\'');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_doc.stored_object_version_id_seq CASCADE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object RENAME COLUMN prefix TO filename');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ADD type TEXT NOT NULL DEFAULT \'\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ADD key JSON NOT NULL DEFAULT \'{}\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ADD iv JSON NOT NULL DEFAULT \'[]\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ALTER title DROP DEFAULT');
+        $this->addSql(
+            <<<'SQL'
+            UPDATE chill_doc.stored_object SET filename=sov.filename, type=sov.type, iv=sov.iv, key=sov.key
+            FROM chill_doc.stored_object_version sov WHERE sov.stored_object_id = stored_object.id
+                AND sov.version = (SELECT MAX(version) FROM chill_doc.stored_object_version AS sub_sov WHERE sub_sov.stored_object_id = stored_object.id)
+        SQL
+        );
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version DROP CONSTRAINT FK_C1D55302232D562B');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version DROP CONSTRAINT FK_C1D553023174800F');
+        $this->addSql('DROP TABLE chill_doc.stored_object_version');
+    }
+}

From 4fbb7811ac09b63aeeb17e885c3e4f3cf78e0a8d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 22:24:33 +0200
Subject: [PATCH 141/375] Refactor StoredObjectDataMapper to use
 registerVersion method

Removed saveHistory and set methods in StoredObjectDataMapper and replaced them with one call to registerVersion.
---
 .../Form/DataMapper/StoredObjectDataMapper.php      | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php b/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
index 170b1ab0a..37d28c7a4 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
@@ -57,15 +57,14 @@ class StoredObjectDataMapper implements DataMapperInterface
 
         /** @var StoredObject $viewData */
         if ($viewData->getFilename() !== $forms['stored_object']->getData()['filename']) {
-            // we want to keep the previous history
-            $viewData->saveHistory();
+            $viewData->registerVersion(
+                $forms['stored_object']->getData()['iv'],
+                $forms['stored_object']->getData()['keyInfos'],
+                $forms['stored_object']->getData()['type'],
+                $forms['stored_object']->getData()['filename'],
+            );
         }
 
-        $viewData->setFilename($forms['stored_object']->getData()['filename']);
-        $viewData->setIv($forms['stored_object']->getData()['iv']);
-        $viewData->setKeyInfos($forms['stored_object']->getData()['keyInfos']);
-        $viewData->setType($forms['stored_object']->getData()['type']);
-
         if (array_key_exists('title', $forms)) {
             $viewData->setTitle($forms['title']->getData());
         }

From 3978ea9a47e0827e860d60c53e2406b7e84220cf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 22:24:55 +0200
Subject: [PATCH 142/375] Update StoredObjectManager to handle versioned
 StoredObjects

The StoredObjectManager and related test cases have been updated to handle versioned StoredObjects, allowing the same methods to work with either a StoredObject or its versions. The changes also involve return information for the write method and enhancements to the write test procedure. This provides more functionality and flexibility for handling StoredObjects in different versions.
---
 .../Service/StoredObjectManager.php           |  98 +++++++-----
 .../Service/StoredObjectManagerInterface.php  |  34 ++++-
 .../Tests/Service/StoredObjectManagerTest.php | 144 +++++++++++++-----
 3 files changed, 199 insertions(+), 77 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index 7100ca821..b10f67619 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\Service;
 use Base64Url\Base64Url;
 use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
@@ -32,10 +33,12 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         private readonly TempUrlGeneratorInterface $tempUrlGenerator
     ) {}
 
-    public function getLastModified(StoredObject $document): \DateTimeInterface
+    public function getLastModified(StoredObject|StoredObjectVersion $document): \DateTimeInterface
     {
-        if ($this->hasCache($document)) {
-            $response = $this->getResponseFromCache($document);
+        $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
+
+        if ($this->hasCache($version)) {
+            $response = $this->getResponseFromCache($version);
         } else {
             try {
                 $response = $this
@@ -46,7 +49,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
                             ->tempUrlGenerator
                             ->generate(
                                 Request::METHOD_HEAD,
-                                $document->getFilename()
+                                $version->getFilename()
                             )
                             ->url
                     );
@@ -58,11 +61,13 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return $this->extractLastModifiedFromResponse($response);
     }
 
-    public function getContentLength(StoredObject $document): int
+    public function getContentLength(StoredObject|StoredObjectVersion $document): int
     {
-        if ([] === $document->getKeyInfos()) {
-            if ($this->hasCache($document)) {
-                $response = $this->getResponseFromCache($document);
+        $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
+
+        if (!$this->isVersionEncrypted($version)) {
+            if ($this->hasCache($version)) {
+                $response = $this->getResponseFromCache($version);
             } else {
                 try {
                     $response = $this
@@ -73,7 +78,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
                                 ->tempUrlGenerator
                                 ->generate(
                                     Request::METHOD_HEAD,
-                                    $document->getFilename()
+                                    $version->getFilename()
                                 )
                                 ->url
                         );
@@ -88,10 +93,12 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return strlen($this->read($document));
     }
 
-    public function etag(StoredObject $document): string
+    public function etag(StoredObject|StoredObjectVersion $document): string
     {
-        if ($this->hasCache($document)) {
-            $response = $this->getResponseFromCache($document);
+        $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
+
+        if ($this->hasCache($version)) {
+            $response = $this->getResponseFromCache($version);
         } else {
             try {
                 $response = $this
@@ -111,12 +118,14 @@ final class StoredObjectManager implements StoredObjectManagerInterface
             }
         }
 
-        return $this->extractEtagFromResponse($response, $document);
+        return $this->extractEtagFromResponse($response);
     }
 
-    public function read(StoredObject $document): string
+    public function read(StoredObject|StoredObjectVersion $document, ?int $version = null): string
     {
-        $response = $this->getResponseFromCache($document);
+        $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
+
+        $response = $this->getResponseFromCache($version);
 
         try {
             $data = $response->getContent();
@@ -124,7 +133,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
             throw StoredObjectManagerException::unableToGetResponseContent($e);
         }
 
-        if (false === $this->hasKeysAndIv($document)) {
+        if (!$this->isVersionEncrypted($version)) {
             return $data;
         }
 
@@ -132,9 +141,9 @@ final class StoredObjectManager implements StoredObjectManagerInterface
             $data,
             self::ALGORITHM,
             // TODO: Why using this library and not use base64_decode() ?
-            Base64Url::decode($document->getKeyInfos()['k']),
+            Base64Url::decode($version->getKeyInfos()['k']),
             \OPENSSL_RAW_DATA,
-            pack('C*', ...$document->getIv())
+            pack('C*', ...$version->getIv())
         );
 
         if (false === $clearData) {
@@ -144,20 +153,25 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return $clearData;
     }
 
-    public function write(StoredObject $document, string $clearContent): void
+    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion
     {
-        if ($this->hasCache($document)) {
-            unset($this->inMemory[$document->getUuid()->toString()]);
-        }
+        $newIv = $document->getIv();
+        $newKey = $document->getKeyInfos();
+        $newType = $contentType ?? $document->getType();
+        $version = $document->registerVersion(
+            $newIv,
+            $newKey,
+            $newType
+        );
 
-        $encryptedContent = $this->hasKeysAndIv($document)
+        $encryptedContent = $this->isVersionEncrypted($version)
             ? openssl_encrypt(
                 $clearContent,
                 self::ALGORITHM,
                 // TODO: Why using this library and not use base64_decode() ?
-                Base64Url::decode($document->getKeyInfos()['k']),
+                Base64Url::decode($version->getKeyInfos()['k']),
                 \OPENSSL_RAW_DATA,
-                pack('C*', ...$document->getIv())
+                pack('C*', ...$version->getIv())
             )
             : $clearContent;
 
@@ -176,7 +190,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
                         ->tempUrlGenerator
                         ->generate(
                             Request::METHOD_PUT,
-                            $document->getFilename()
+                            $version->getFilename()
                         )
                         ->url,
                     [
@@ -191,6 +205,8 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         if (Response::HTTP_CREATED !== $response->getStatusCode()) {
             throw StoredObjectManagerException::invalidStatusCode($response->getStatusCode());
         }
+
+        return $version;
     }
 
     public function clearCache(): void
@@ -215,12 +231,19 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return $date;
     }
 
+    /**
+     * Extracts the content length from a ResponseInterface object.
+     *
+     * Does work only if the object is not encrypted.
+     *
+     * @return int the extracted content length as an integer
+     */
     private function extractContentLengthFromResponse(ResponseInterface $response): int
     {
         return (int) ($response->getHeaders()['content-length'] ?? ['0'])[0];
     }
 
-    private function extractEtagFromResponse(ResponseInterface $response, StoredObject $storedObject): ?string
+    private function extractEtagFromResponse(ResponseInterface $response): ?string
     {
         $etag = ($response->getHeaders()['etag'] ?? [''])[0];
 
@@ -231,7 +254,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return $etag;
     }
 
-    private function fillCache(StoredObject $document): void
+    private function fillCache(StoredObjectVersion $document): void
     {
         try {
             $response = $this
@@ -254,25 +277,30 @@ final class StoredObjectManager implements StoredObjectManagerInterface
             throw StoredObjectManagerException::invalidStatusCode($response->getStatusCode());
         }
 
-        $this->inMemory[$document->getUuid()->toString()] = $response;
+        $this->inMemory[$this->buildCacheKey($document)] = $response;
     }
 
-    private function getResponseFromCache(StoredObject $document): ResponseInterface
+    private function buildCacheKey(StoredObjectVersion $storedObjectVersion): string
+    {
+        return $storedObjectVersion->getStoredObject()->getUuid()->toString().$storedObjectVersion->getId();
+    }
+
+    private function getResponseFromCache(StoredObjectVersion $document): ResponseInterface
     {
         if (!$this->hasCache($document)) {
             $this->fillCache($document);
         }
 
-        return $this->inMemory[$document->getUuid()->toString()];
+        return $this->inMemory[$this->buildCacheKey($document)];
     }
 
-    private function hasCache(StoredObject $document): bool
+    private function hasCache(StoredObjectVersion $document): bool
     {
-        return \array_key_exists($document->getUuid()->toString(), $this->inMemory);
+        return \array_key_exists($this->buildCacheKey($document), $this->inMemory);
     }
 
-    private function hasKeysAndIv(StoredObject $storedObject): bool
+    private function isVersionEncrypted(StoredObjectVersion $storedObjectVersion): bool
     {
-        return ([] !== $storedObject->getKeyInfos()) && ([] !== $storedObject->getIv());
+        return ([] !== $storedObjectVersion->getKeyInfos()) && ([] !== $storedObjectVersion->getIv());
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
index 19ff974f0..4d2f45c33 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
@@ -12,36 +12,56 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Service;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
 
 interface StoredObjectManagerInterface
 {
-    public function getLastModified(StoredObject $document): \DateTimeInterface;
+    /**
+     * @param StoredObject|StoredObjectVersion $document if a StoredObject is given, the last version will be used
+     */
+    public function getLastModified(StoredObject|StoredObjectVersion $document): \DateTimeInterface;
 
-    public function getContentLength(StoredObject $document): int;
+    /**
+     * @param StoredObject|StoredObjectVersion $document if a StoredObject is given, the last version will be used
+     */
+    public function getContentLength(StoredObject|StoredObjectVersion $document): int;
 
     /**
      * Get the content of a StoredObject.
      *
-     * @param StoredObject $document the document
+     * @param StoredObject|StoredObjectVersion $document if a StoredObject is given, the last version will be used
      *
      * @return string the retrieved content in clear
      *
      * @throws StoredObjectManagerException if unable to read or decrypt the content
      */
-    public function read(StoredObject $document): string;
+    public function read(StoredObject|StoredObjectVersion $document): string;
 
     /**
      * Set the content of a StoredObject.
      *
      * @param StoredObject $document     the document
-     * @param              $clearContent The content to store in clear
+     * @param string       $clearContent The content to store in clear
+     * @param string|null  $contentType  The new content type. If set to null, the content-type is supposed not to change. If there is no content type, an empty string will be used.
+     *
+     * @return StoredObjectVersion the newly created @see{StoredObjectVersion} for the given @see{StoredObject}
      *
      * @throws StoredObjectManagerException
      */
-    public function write(StoredObject $document, string $clearContent): void;
+    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion;
 
-    public function etag(StoredObject $document): string;
+    /**
+     * return or compute the etag for the document.
+     *
+     * @param StoredObject|StoredObjectVersion $document if a StoredObject is given, the last version will be used
+     *
+     * @return string the etag of this document
+     */
+    public function etag(StoredObject|StoredObjectVersion $document): string;
 
+    /**
+     * Clears the cache for the stored object.
+     */
     public function clearCache(): void;
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index c5cc8185e..c11a06f9b 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -31,23 +31,25 @@ use Symfony\Contracts\HttpClient\HttpClientInterface;
  */
 final class StoredObjectManagerTest extends TestCase
 {
-    public static function getDataProvider(): \Generator
+    public static function getDataProviderForRead(): \Generator
     {
         /* HAPPY SCENARIO */
 
         // Encrypted object
         yield [
             (new StoredObject())
-                ->setFilename('encrypted.txt')
-                ->setKeyInfos(['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')])
-                ->setIv(unpack('C*', 'abcdefghijklmnop')),
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'encrypted.txt'
+                )->getStoredObject(),
             hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
             'The quick brown fox jumps over the lazy dog', // clear
         ];
 
         // Non-encrypted object
         yield [
-            (new StoredObject())->setFilename('non-encrypted.txt'), // The StoredObject
+            (new StoredObject())->registerVersion(filename: 'non-encrypted.txt')->getStoredObject(), // The StoredObject
             'The quick brown fox jumps over the lazy dog', // Encrypted
             'The quick brown fox jumps over the lazy dog', // Clear
         ];
@@ -57,9 +59,11 @@ final class StoredObjectManagerTest extends TestCase
         // Encrypted object with issue during HTTP communication
         yield [
             (new StoredObject())
-                ->setFilename('error_during_http_request.txt')
-                ->setKeyInfos(['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')])
-                ->setIv(unpack('C*', 'abcdefghijklmnop')),
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'error_during_http_request.txt'
+                )->getStoredObject(),
             hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
             'The quick brown fox jumps over the lazy dog', // clear
             StoredObjectManagerException::class,
@@ -68,9 +72,11 @@ final class StoredObjectManagerTest extends TestCase
         // Encrypted object with issue during HTTP communication: Invalid status code
         yield [
             (new StoredObject())
-                ->setFilename('invalid_statuscode.txt')
-                ->setKeyInfos(['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')])
-                ->setIv(unpack('C*', 'abcdefghijklmnop')),
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'invalid_statuscode.txt'
+                )->getStoredObject(),
             hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
             'The quick brown fox jumps over the lazy dog', // clear
             StoredObjectManagerException::class,
@@ -79,17 +85,73 @@ final class StoredObjectManagerTest extends TestCase
         // Erroneous encrypted: Unable to decrypt exception.
         yield [
             (new StoredObject())
-                ->setFilename('unable_to_decrypt.txt')
-                ->setKeyInfos(['k' => base64_encode('WRONG_PASS_PHRASE')])
-                ->setIv(unpack('C*', 'abcdefghijklmnop')),
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('WRONG_PASS_PHRASE')],
+                    filename: 'unable_to_decrypt.txt'
+                )->getStoredObject(),
             'WRONG_ENCODED_VALUE', // Binary encoded string
             'The quick brown fox jumps over the lazy dog', // clear
             StoredObjectManagerException::class,
         ];
     }
 
+    public static function getDataProviderForWrite(): \Generator
+    {
+        /* HAPPY SCENARIO */
+
+        // Encrypted object
+        yield [
+            (new StoredObject())
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'encrypted.txt'
+                )->getStoredObject(),
+            hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
+            'The quick brown fox jumps over the lazy dog', // clear
+        ];
+
+        // Non-encrypted object
+        yield [
+            (new StoredObject())->registerVersion(filename: 'non-encrypted.txt')->getStoredObject(), // The StoredObject
+            'The quick brown fox jumps over the lazy dog', // Encrypted
+            'The quick brown fox jumps over the lazy dog', // Clear
+        ];
+
+        /* UNHAPPY SCENARIO */
+
+        // Encrypted object with issue during HTTP communication
+        yield [
+            (new StoredObject())
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'error_during_http_request.txt'
+                )->getStoredObject(),
+            hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
+            'The quick brown fox jumps over the lazy dog', // clear
+            StoredObjectManagerException::class,
+            -1,
+        ];
+
+        // Encrypted object with issue during HTTP communication: Invalid status code
+        yield [
+            (new StoredObject())
+                ->registerVersion(
+                    unpack('C*', 'abcdefghijklmnop'),
+                    ['k' => base64_encode('S9NIHMaFHOWzLPez3jZOIHBaNfBrMQUR5zvqBz6kme8')],
+                    filename: 'invalid_statuscode.txt'
+                )->getStoredObject(),
+            hex2bin('741237d255fd4f7eddaaa9058912a84caae28a41b10b34d4e3e3abe41d3b9b47cb0dd8f22c3c883d4f0e9defa75ff662'), // Binary encoded string
+            'The quick brown fox jumps over the lazy dog', // clear
+            StoredObjectManagerException::class,
+            408,
+        ];
+    }
+
     /**
-     * @dataProvider getDataProvider
+     * @dataProvider getDataProviderForRead
      */
     public function testRead(StoredObject $storedObject, string $encodedContent, string $clearContent, ?string $exceptionClass = null)
     {
@@ -103,19 +165,37 @@ final class StoredObjectManagerTest extends TestCase
     }
 
     /**
-     * @dataProvider getDataProvider
+     * @dataProvider getDataProviderForWrite
      */
-    public function testWrite(StoredObject $storedObject, string $encodedContent, string $clearContent, ?string $exceptionClass = null)
+    public function testWrite(StoredObject $storedObject, string $encodedContent, string $clearContent, ?string $exceptionClass = null, ?int $errorCode = null)
     {
         if (null !== $exceptionClass) {
             $this->expectException($exceptionClass);
         }
 
-        $storedObjectManager = $this->getSubject($storedObject, $encodedContent);
+        $previousVersion = $storedObject->getCurrentVersion();
+        $previousFilename = $previousVersion->getFilename();
 
-        $storedObjectManager->write($storedObject, $clearContent);
+        $client = new MockHttpClient(function ($method, $url, $options) use ($encodedContent, $previousFilename, $errorCode) {
+            self::assertEquals('PUT', $method);
+            self::assertStringStartsWith('https://example.com/', $url);
+            self::assertStringNotContainsString($previousFilename, $url, 'test that the PUT operation is not performed on the same file');
+            self::assertArrayHasKey('body', $options);
+            self::assertEquals($encodedContent, $options['body']);
 
-        self::assertEquals($clearContent, $storedObjectManager->read($storedObject));
+            if (-1 === $errorCode) {
+                throw new TransportException();
+            }
+
+            return new MockResponse('', ['http_code' => $errorCode ?? 201]);
+        });
+
+        $storedObjectManager = new StoredObjectManager($client, $this->getTempUrlGenerator($storedObject));
+
+        $newVersion = $storedObjectManager->write($storedObject, $clearContent);
+
+        self::assertNotSame($previousVersion, $newVersion);
+        self::assertSame($storedObject->getCurrentVersion(), $newVersion);
     }
 
     public function testWriteWithDeleteAt()
@@ -170,19 +250,6 @@ final class StoredObjectManagerTest extends TestCase
                 }
             }
 
-            if (Request::METHOD_PUT === $method) {
-                switch ($url) {
-                    case 'https://example.com/non-encrypted.txt':
-                    case 'https://example.com/encrypted.txt':
-                        return new MockResponse($encodedContent, ['http_code' => 201]);
-
-                    case 'https://example.com/error_during_http_request.txt':
-                        throw new TransportException('error_during_http_request.txt');
-                    case 'https://example.com/invalid_statuscode.txt':
-                        return new MockResponse($encodedContent, ['http_code' => 404]);
-                }
-            }
-
             return new MockResponse('Not found');
         };
 
@@ -209,9 +276,16 @@ final class StoredObjectManagerTest extends TestCase
         $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
 
         $tempUrlGenerator
+            ->expects($this->atLeastOnce())
             ->method('generate')
-            ->withAnyParameters()
-            ->willReturn($response);
+            ->with($this->logicalOr($this->identicalTo('GET'), $this->identicalTo('PUT')), $this->isType('string'))
+            ->willReturnCallback(function (string $method, string $objectName) {
+                return new SignedUrl(
+                    $method,
+                    'https://example.com/'.$objectName,
+                    new \DateTimeImmutable('1 hours')
+                );
+            });
 
         return $tempUrlGenerator;
     }

From e21db73b84b812c08c4ca2ec02a17862a71c2e6c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 9 Jul 2024 22:25:52 +0200
Subject: [PATCH 143/375] Refactor and simplify document management
 functionality to adapt to StoredObject versioning

This commit includes several updates to the document management functionality within ChillWopiBundle and ChillDocGeneratorBundle, refactoring for simplicity and improved readability.
---
 .../DataFixtures/ORM/LoadDocGeneratorTemplate.php   | 13 ++++++++-----
 .../Service/Generator/Generator.php                 |  8 ++------
 .../src/Service/Wopi/ChillDocumentManager.php       | 10 +++++-----
 3 files changed, 15 insertions(+), 16 deletions(-)

diff --git a/src/Bundle/ChillDocGeneratorBundle/DataFixtures/ORM/LoadDocGeneratorTemplate.php b/src/Bundle/ChillDocGeneratorBundle/DataFixtures/ORM/LoadDocGeneratorTemplate.php
index 97d436c5e..f38102a10 100644
--- a/src/Bundle/ChillDocGeneratorBundle/DataFixtures/ORM/LoadDocGeneratorTemplate.php
+++ b/src/Bundle/ChillDocGeneratorBundle/DataFixtures/ORM/LoadDocGeneratorTemplate.php
@@ -54,12 +54,15 @@ class LoadDocGeneratorTemplate extends AbstractFixture
         ];
 
         foreach ($templates as $template) {
-            $newStoredObj = (new StoredObject())
-                ->setFilename($template['file']['filename'])
-                ->setKeyInfos(json_decode($template['file']['key'], true))
-                ->setIv(json_decode($template['file']['iv'], true))
+            $newStoredObj = (new StoredObject());
+
+            $newStoredObj
                 ->setCreatedAt(new \DateTime('today'))
-                ->setType($template['file']['type']);
+                ->registerVersion(
+                    json_decode($template['file']['key'], true),
+                    json_decode($template['file']['iv'], true),
+                    $template['file']['type'],
+                );
 
             $manager->persist($newStoredObj);
 
diff --git a/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php b/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
index 127d135bb..d4ca5cf2e 100644
--- a/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
+++ b/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
@@ -134,13 +134,11 @@ class Generator implements GeneratorInterface
             $content = Yaml::dump($data, 6);
             /* @var StoredObject $destinationStoredObject */
             $destinationStoredObject
-                ->setType('application/yaml')
-                ->setFilename(sprintf('%s_yaml', uniqid('doc_', true)))
                 ->setStatus(StoredObject::STATUS_READY)
             ;
 
             try {
-                $this->storedObjectManager->write($destinationStoredObject, $content);
+                $this->storedObjectManager->write($destinationStoredObject, $content, 'application/yaml');
             } catch (StoredObjectManagerException $e) {
                 $destinationStoredObject->addGenerationErrors($e->getMessage());
 
@@ -174,13 +172,11 @@ class Generator implements GeneratorInterface
 
         /* @var StoredObject $destinationStoredObject */
         $destinationStoredObject
-            ->setType($template->getFile()->getType())
-            ->setFilename(sprintf('%s_odt', uniqid('doc_', true)))
             ->setStatus(StoredObject::STATUS_READY)
         ;
 
         try {
-            $this->storedObjectManager->write($destinationStoredObject, $generatedResource);
+            $this->storedObjectManager->write($destinationStoredObject, $generatedResource, $template->getFile()->getType());
         } catch (StoredObjectManagerException $e) {
             $destinationStoredObject->addGenerationErrors($e->getMessage());
 
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
index 2b569014d..574fee75b 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
@@ -50,17 +50,15 @@ final readonly class ChillDocumentManager implements DocumentManagerInterface
 
         // Mime types / extension handling.
         $mimeTypes = new MimeTypes();
-        $mimeTypes->getMimeTypes($data['extension']);
-        $document->setType(reset($mimeTypes));
-
-        $document->setFilename($data['name']);
+        $types = $mimeTypes->getMimeTypes($data['extension']);
+        $mimeType = array_values($types)[0] ?? '';
 
         $this->entityManager->persist($document);
         $this->entityManager->flush();
 
         // TODO : Ask proper mapping.
         // Available: basename, name, extension, content, size
-        $this->setContent($document, $data['content']);
+        $this->storedObjectManager->write($document, $data['content'], $mimeType);
 
         return $document;
     }
@@ -194,5 +192,7 @@ final readonly class ChillDocumentManager implements DocumentManagerInterface
     private function setContent(StoredObject $storedObject, string $content): void
     {
         $this->storedObjectManager->write($storedObject, $content);
+
+        $this->entityManager->flush();
     }
 }

From 5fefe09a39805da7b9e54b29f4ce407aa1790371 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 11 Jul 2024 10:43:20 +0200
Subject: [PATCH 144/375] Fix test

---
 .../Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
index d39809a12..77c5f72ec 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Templating/AsyncUploadExtensionTest.php
@@ -70,7 +70,7 @@ class AsyncUploadExtensionTest extends KernelTestCase
 
     public static function dataProviderStoredObject(): iterable
     {
-        yield [(new StoredObject())->setFilename('blabla')];
+        yield [(new StoredObject())->registerVersion(filename: 'blabla')->getStoredObject()];
 
         yield ['blabla'];
     }

From ce5659219a6d528f4e69eb6cf6da4a5f062a9c07 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 11 Jul 2024 11:04:04 +0200
Subject: [PATCH 145/375] Fix test

---
 .../Tests/Controller/WebdavControllerTest.php | 27 ++++++++++++-------
 1 file changed, 18 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
index d116add92..5d6565108 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\Tests\Controller;
 use Chill\DocStoreBundle\Controller\WebdavController;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Doctrine\ORM\EntityManagerInterface;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Ramsey\Uuid\Uuid;
@@ -39,20 +40,25 @@ class WebdavControllerTest extends KernelTestCase
         $this->engine = self::getContainer()->get(\Twig\Environment::class);
     }
 
-    private function buildController(): WebdavController
+    private function buildController(EntityManagerInterface $entityManager = null): WebdavController
     {
         $storedObjectManager = new MockedStoredObjectManager();
         $security = $this->prophesize(Security::class);
         $security->isGranted(Argument::in(['EDIT', 'SEE']), Argument::type(StoredObject::class))
             ->willReturn(true);
 
-        return new WebdavController($this->engine, $storedObjectManager, $security->reveal());
+        if (null === $entityManager) {
+            $entityManager = $this->createMock(EntityManagerInterface::class);
+        }
+
+        return new WebdavController($this->engine, $storedObjectManager, $security->reveal(), $entityManager);
     }
 
     private function buildDocument(): StoredObject
     {
         $object = (new StoredObject())
-            ->setType('application/vnd.oasis.opendocument.text');
+            ->registerVersion(type: 'application/vnd.oasis.opendocument.text')
+            ->getStoredObject();
 
         $reflectionObject = new \ReflectionClass($object);
         $reflectionObjectUuid = $reflectionObject->getProperty('uuid');
@@ -384,24 +390,27 @@ class WebdavControllerTest extends KernelTestCase
 
 class MockedStoredObjectManager implements StoredObjectManagerInterface
 {
-    public function getLastModified(StoredObject $document): \DateTimeInterface
+    public function getLastModified(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): \DateTimeInterface
     {
-        return new \DateTimeImmutable('2023-09-13T14:15');
+        return new \DateTimeImmutable('2023-09-13T14:15', new \DateTimeZone('+02:00'));
     }
 
-    public function getContentLength(StoredObject $document): int
+    public function getContentLength(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): int
     {
         return 5;
     }
 
-    public function read(StoredObject $document): string
+    public function read(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): string
     {
         return 'abcde';
     }
 
-    public function write(StoredObject $document, string $clearContent): void {}
+    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): \Chill\DocStoreBundle\Entity\StoredObjectVersion
+    {
+        return $document->registerVersion();
+    }
 
-    public function etag(StoredObject $document): string
+    public function etag(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): string
     {
         return 'ab56b4d92b40713acc5af89985d4b786';
     }

From 1b16d4fe3bc8da05f68184a9bd58f39d7f657379 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 11 Jul 2024 14:48:53 +0200
Subject: [PATCH 146/375] Flush entities when storing document using webdav /
 put operation

The WebdavController has been updated to flush the EntityManager after writing a document, while its tests have been adjusted correspondingly. A new test for the document PUT operation has also been added, which ensures the EntityManager flushes and the StoredObjectManager writes to this document.
---
 .../Controller/WebdavController.php           |  4 ++
 .../Tests/Controller/WebdavControllerTest.php | 37 ++++++++++++++++---
 2 files changed, 36 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/WebdavController.php b/src/Bundle/ChillDocStoreBundle/Controller/WebdavController.php
index 6e105f9ee..022d544cb 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/WebdavController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/WebdavController.php
@@ -16,6 +16,7 @@ use Chill\DocStoreBundle\Dav\Response\DavResponse;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
@@ -42,6 +43,7 @@ final readonly class WebdavController
         private \Twig\Environment $engine,
         private StoredObjectManagerInterface $storedObjectManager,
         private Security $security,
+        private EntityManagerInterface $entityManager,
     ) {
         $this->requestAnalyzer = new PropfindRequestAnalyzer();
     }
@@ -201,6 +203,8 @@ final readonly class WebdavController
 
         $this->storedObjectManager->write($storedObject, $request->getContent());
 
+        $this->entityManager->flush();
+
         return new DavResponse('', Response::HTTP_NO_CONTENT);
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
index 5d6565108..cf1d8c814 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
@@ -40,17 +40,20 @@ class WebdavControllerTest extends KernelTestCase
         $this->engine = self::getContainer()->get(\Twig\Environment::class);
     }
 
-    private function buildController(EntityManagerInterface $entityManager = null): WebdavController
+    private function buildController(?EntityManagerInterface $entityManager = null, ?StoredObjectManagerInterface $storedObjectManager = null): WebdavController
     {
-        $storedObjectManager = new MockedStoredObjectManager();
-        $security = $this->prophesize(Security::class);
-        $security->isGranted(Argument::in(['EDIT', 'SEE']), Argument::type(StoredObject::class))
-            ->willReturn(true);
+        if (null === $storedObjectManager) {
+            $storedObjectManager = new MockedStoredObjectManager();
+        }
 
         if (null === $entityManager) {
             $entityManager = $this->createMock(EntityManagerInterface::class);
         }
 
+        $security = $this->prophesize(Security::class);
+        $security->isGranted(Argument::in(['SEE_AND_EDIT', 'SEE']), Argument::type(StoredObject::class))
+            ->willReturn(true);
+
         return new WebdavController($this->engine, $storedObjectManager, $security->reveal(), $entityManager);
     }
 
@@ -165,6 +168,30 @@ class WebdavControllerTest extends KernelTestCase
         self::assertEquals(5, $response->headers->get('content-length'));
     }
 
+    public function testPutDocument(): void
+    {
+        $document = $this->buildDocument();
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $storedObjectManager = $this->createMock(StoredObjectManagerInterface::class);
+
+        // entity manager must be flushed
+        $entityManager->expects($this->once())
+            ->method('flush');
+
+        // object must be written by StoredObjectManager
+        $storedObjectManager->expects($this->once())
+            ->method('write')
+            ->with($this->identicalTo($document), $this->identicalTo('1234'));
+
+        $controller = $this->buildController($entityManager, $storedObjectManager);
+
+        $request = new Request(content: '1234');
+        $response = $controller->putDocument($document, $request);
+
+        self::assertEquals(204, $response->getStatusCode());
+        self::assertEquals('', $response->getContent());
+    }
+
     public static function generateDataPropfindDocument(): iterable
     {
         $content =

From 2feea24c41efa07879aedd821c2b81a59acad4f1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 12 Jul 2024 00:00:13 +0200
Subject: [PATCH 147/375] Add Collabora configuration guide and
 NullProofValidator class

A new document detailing the configuration steps for enabling Collabora in development has been added. This includes setting up ngrok and configuring both the Collabora and Symfony servers. Furthermore, a new class, NullProofValidator, has been created for validation during the development process. This class always returns true, making it useful for debugging purposes.
---
 .../installation/enable-collabora-for-dev.rst | 125 ++++++++++++++++++
 .../src/Service/Wopi/NullProofValidator.php   |  28 ++++
 2 files changed, 153 insertions(+)
 create mode 100644 docs/source/installation/enable-collabora-for-dev.rst
 create mode 100644 src/Bundle/ChillWopiBundle/src/Service/Wopi/NullProofValidator.php

diff --git a/docs/source/installation/enable-collabora-for-dev.rst b/docs/source/installation/enable-collabora-for-dev.rst
new file mode 100644
index 000000000..17a9ae1cc
--- /dev/null
+++ b/docs/source/installation/enable-collabora-for-dev.rst
@@ -0,0 +1,125 @@
+
+Enable CODE for development
+===========================
+
+For editing a document, there must be a way to communicate between the collabora server and the symfony server, in
+both direction. The domain name should also be the same for collabora server and for the browser which access to the
+online editor.
+
+Using ngrok (or other http tunnel)
+----------------------------------
+
+One can configure a tunnel server to expose your local install to the web, and access to your local server using the
+tunnel url.
+
+Start ngrok
+^^^^^^^^^^^
+
+This can be achieve using `ngrok <https://ngrok.com/>`_.
+
+.. note::
+
+   The configuration of ngrok is outside of the scope of this document. Refers to the ngrok's documentation.
+
+.. code-block:: bash
+
+   # ensuring that your server is running through http and port 8000
+   ngrok http 8000
+   # then open the link given by the ngrok utility and you should reach your app
+
+At this step, ensure that you can reach your local app using the ngrok url.
+
+Configure Collabora
+^^^^^^^^^^^^^^^^^^^
+
+The collabora server must be executed online and configure to access to your ngrok installation. Ensure that the aliasgroup
+exists for your ngrok application (`See the CODE documentation: <https://sdk.collaboraonline.com/docs/installation/Configuration.html#multihost-configuration>`_).
+
+Configure your app
+^^^^^^^^^^^^^^^^^^
+
+Set the :code:`EDITOR_SERVER` variable to point to your collabora server, this should be done in your :code:`.env.local` file.
+
+At this point, everything must be fine. In case of errors, watch the log from your collabora server, use the `profiler <https://symfony.com/doc/current/profiler.html>`_
+to debug the requests.
+
+.. note::
+
+   In case of error while validating proof (you'll see those message in the collabora's logs), you can temporarily disable
+   the proof validation adding this code snippet in `config/services.yaml`:
+
+   .. code-block:: yaml
+
+      when@dev:
+          # add only in dev environment, to avoid security problems
+          services:
+              ChampsLibres\WopiLib\Contract\Service\ProofValidatorInterface:
+                  # this class will always validate proof
+                  alias: Chill\WopiBundle\Service\Wopi\NullProofValidator
+
+With a local CODE image
+-----------------------
+
+.. warning::
+
+   This configuration is not sure, and must be refined. The documentation does not seems to be entirely valid.
+
+Use a local domain name and https for your app
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Use the proxy feature from embedded symfony server to run your app. `See the dedicated doc <https://symfony.com/doc/current/setup/symfony_server.html#local-domain-names>`
+
+Configure also the `https certificate <https://symfony.com/doc/current/setup/symfony_server.html#enabling-tls>`_
+
+In this example, your local domain name will be :code:`my-domain` and the url will be :code:`https://my-domain.wip`.
+
+Ensure that the proxy is running.
+
+Create a certificate database for collabora
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Collabora must validate your certificate generated by symfony console. For that, you need `to create a NSS database <https://sdk.collaboraonline.com/docs/installation/Configuration.html#validating-digital-signatures>`
+and configure collabora to use it.
+
+At first, export the certificate for symfony development. Use the graphical interface from your browser to get the
+certificate as a PEM file.
+
+.. code-block:: bash
+
+   # create your database in a custom directory
+   mkdir /path/to/your/directory
+   certutil -N -d /path/to/your/directory
+   cat /path/to/your/ca.crt | certutil -d . -A symfony -t -t C,P,C,u,w -a
+
+Launch CODE properly configured
+
+.. code-block:: yaml
+
+     collabora:
+         image: collabora/code:latest
+         environment:
+             - SLEEPFORDEBUGGER=0
+             - DONT_GEN_SSL_CERT="True"
+             # add path to the database
+             - extra_params=--o:ssl.enable=false --o:ssl.termination=false --o:logging.level=7 -o:certificates.database_path=/etc/custom-certificates/nss-database
+             - username=admin
+             - password=admin
+             - dictionaries=en_US
+             - aliasgroup1=https://my-domain.wip
+         ports:
+             - "127.0.0.1:9980:9980"
+         volumes:
+             - "/path/to/your/directory/nss-database:/etc/custom-certificates/nss-database"
+         extra_hosts:
+             - "my-domain.wip:host-gateway"
+
+Configure your app
+^^^^^^^^^^^^^^^^^^
+
+Into your :code:`.env.local` file:
+
+.. code-block:: env
+
+   EDITOR_SERVER=http://${COLLABORA_HOST}:${COLLABORA_PORT}
+
+At this step, you should be able to edit a document through collabora.
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/NullProofValidator.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/NullProofValidator.php
new file mode 100644
index 000000000..3fc294728
--- /dev/null
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/NullProofValidator.php
@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\WopiBundle\Service\Wopi;
+
+use ChampsLibres\WopiLib\Contract\Service\ProofValidatorInterface;
+use Psr\Http\Message\RequestInterface;
+
+/**
+ * Create a proof validator for WOPI services which always return true.
+ *
+ * Useful for debugging purposes.
+ */
+final readonly class NullProofValidator implements ProofValidatorInterface
+{
+    public function isValid(RequestInterface $request): bool
+    {
+        return true;
+    }
+}

From cb90261309c6a48b166dbd5622443df1321e05aa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 12 Jul 2024 00:00:44 +0200
Subject: [PATCH 148/375] Update random_bytes length in filename and prefix
 generation

The size of the random byte string used in the generateFilename method of StoredObjectVersion has been reduced from 16 to 8. Conversely, the size of the random byte string used in the generatePrefix method of StoredObject has been increased from 8 to 32.

The naming generation fit better with the usage, as 16bytes are generated for each file (more version), and less for the version.
---
 src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php          | 2 +-
 src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php   | 2 +-
 .../ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php   | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index f37829a26..4fec9f6ca 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -354,7 +354,7 @@ class StoredObject implements Document, TrackCreationInterface
     public static function generatePrefix(): string
     {
         try {
-            return base_convert(bin2hex(random_bytes(8)), 16, 36);
+            return base_convert(bin2hex(random_bytes(32)), 16, 36);
         } catch (RandomException $e) {
             return uniqid(more_entropy: true);
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index c280b30a3..2b8852513 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -82,7 +82,7 @@ class StoredObjectVersion implements TrackCreationInterface
     public static function generateFilename(StoredObjectVersion $storedObjectVersion): string
     {
         try {
-            $suffix = base_convert(bin2hex(random_bytes(16)), 16, 36);
+            $suffix = base_convert(bin2hex(random_bytes(8)), 16, 36);
         } catch (RandomException $e) {
             $suffix = uniqid(more_entropy: true);
         }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
index 574fee75b..639133976 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
@@ -104,7 +104,7 @@ final readonly class ChillDocumentManager implements DocumentManagerInterface
             throw new \Error('Unknown mimetype for stored document.');
         }
 
-        return sprintf('%s.%s', $document->getFilename(), reset($exts));
+        return sprintf('%s.%s', $document->getPrefix(), reset($exts));
     }
 
     /**

From 67d24cb951375fa255226f44f5251453de476c80 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 12 Jul 2024 00:26:40 +0200
Subject: [PATCH 149/375] Use "createdAt" from database to compute the last
 modified datetime in StoredObjectManager

The code has been updated to use 'createdAt' from StoredObjectVersion entity in StoredObjectManager. Specifically, if a 'createdAt' datetime is set, we return that datetime. This change also includes corresponding test cases to validate the functionality. The situation helps deal with files created before July 2024.
---
 .../Service/StoredObjectManager.php           |  8 +++
 .../Tests/Service/StoredObjectManagerTest.php | 61 ++++++++++++++++++-
 2 files changed, 68 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index b10f67619..2266bb0e2 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -37,6 +37,14 @@ final class StoredObjectManager implements StoredObjectManagerInterface
     {
         $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
 
+        if (null !== $createdAt = $version->getCreatedAt()) {
+            // as a createdAt datetime is set, return the date and time from database
+            return $createdAt;
+        }
+
+        // if no createdAt version exists in the database, we fetch the date and time from the
+        // file. This situation happens for files created before July 2024.
+
         if ($this->hasCache($version)) {
             $response = $this->getResponseFromCache($version);
         } else {
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index c11a06f9b..3725f910f 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -233,6 +233,64 @@ final class StoredObjectManagerTest extends TestCase
         $manager->write($storedObject, 'ok');
     }
 
+    public function testGetLastModifiedWithDateTimeInEntity(): void
+    {
+        $version = ($storedObject = new StoredObject())->registerVersion();
+        $version->setCreatedAt(new \DateTimeImmutable('2024-07-09 15:09:47', new \DateTimeZone('+00:00')));
+        $client = $this->createMock(HttpClientInterface::class);
+        $client->expects(self::never())->method('request')->withAnyParameters();
+
+        $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
+        $tempUrlGenerator
+            ->expects($this->never())
+            ->method('generate')
+            ->with($this->identicalTo('HEAD'), $this->isType('string'))
+            ->willReturnCallback(function (string $method, string $objectName) {
+                return new SignedUrl(
+                    $method,
+                    'https://example.com/'.$objectName,
+                    new \DateTimeImmutable('1 hours'),
+                    $objectName
+                );
+            });
+
+        $manager = new StoredObjectManager($client, $tempUrlGenerator);
+
+        $actual = $manager->getLastModified($storedObject);
+
+        self::assertEquals(new \DateTimeImmutable('2024-07-09 15:09:47 GMT'), $actual);
+    }
+
+    public function testGetLastModifiedWithDateTimeFromResponse(): void
+    {
+        $storedObject = (new StoredObject())->registerVersion()->getStoredObject();
+
+        $client = new MockHttpClient(
+            new MockResponse('', ['http_code' => 200, 'response_headers' => [
+                'last-modified' => 'Tue, 09 Jul 2024 15:09:47 GMT',
+            ]])
+        );
+
+        $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
+        $tempUrlGenerator
+            ->expects($this->atLeastOnce())
+            ->method('generate')
+            ->with($this->identicalTo('HEAD'), $this->isType('string'))
+            ->willReturnCallback(function (string $method, string $objectName) {
+                return new SignedUrl(
+                    $method,
+                    'https://example.com/'.$objectName,
+                    new \DateTimeImmutable('1 hours')
+                );
+            });
+
+        $manager = new StoredObjectManager($client, $tempUrlGenerator);
+
+        $actual = $manager->getLastModified($storedObject);
+
+        self::assertEquals(new \DateTimeImmutable('2024-07-09 15:09:47 GMT'), $actual);
+    }
+
     private function getHttpClient(string $encodedContent): HttpClientInterface
     {
         $callback = static function ($method, $url, $options) use ($encodedContent) {
@@ -283,7 +341,8 @@ final class StoredObjectManagerTest extends TestCase
                 return new SignedUrl(
                     $method,
                     'https://example.com/'.$objectName,
-                    new \DateTimeImmutable('1 hours')
+                    new \DateTimeImmutable('1 hours'),
+                    $objectName
                 );
             });
 

From c38f7c11791542e9a54f3b0869f52b97164f3476 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 15 Jul 2024 15:54:26 +0200
Subject: [PATCH 150/375] Add functionality to delete old versions of documents

This commit introduces a feature that automatically deletes old versions of StoredObjects in the Chill application. A cron job, "RemoveOldVersionCronJob", has been implemented to delete versions older than 90 days. A message handler, "RemoveOldVersionMessageHandler", has been added to handle deletion requests. Furthermore, unit tests for the new functionality have been provided.
---
 .../StoredObjectVersionRepository.php         |  92 ++++++++++++++++
 .../RemoveOldVersionCronJob.php               |  60 ++++++++++
 .../RemoveOldVersionMessage.php               |  19 ++++
 .../RemoveOldVersionMessageHandler.php        |  54 +++++++++
 .../Service/StoredObjectManager.php           |  17 +++
 .../Service/StoredObjectManagerInterface.php  |   5 +
 .../StoredObjectVersionRepositoryTest.php     |  43 ++++++++
 .../RemoveOldVersionCronJobTest.php           | 104 ++++++++++++++++++
 .../RemoveOldVersionMessageHandlerTest.php    |  51 +++++++++
 .../Tests/Service/StoredObjectManagerTest.php |  31 ++++++
 10 files changed, 476 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
new file mode 100644
index 000000000..047b024a9
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
@@ -0,0 +1,92 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Repository;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Doctrine\DBAL\Connection;
+use Doctrine\DBAL\Types\Types;
+use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\ORM\EntityRepository;
+use Doctrine\Persistence\ObjectRepository;
+
+/**
+ * @implements ObjectRepository<StoredObjectVersion>
+ */
+class StoredObjectVersionRepository implements ObjectRepository
+{
+    private EntityRepository $repository;
+
+    private Connection $connection;
+
+    public function __construct(EntityManagerInterface $entityManager)
+    {
+        $this->repository = $entityManager->getRepository(StoredObjectVersion::class);
+        $this->connection = $entityManager->getConnection();
+    }
+
+    public function find($id): ?StoredObjectVersion
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll(): array
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria): ?StoredObjectVersion
+    {
+        return $this->repository->findOneBy($criteria);
+    }
+
+    /**
+     * Finds the IDs of versions older than a given date and that are not the last version.
+     *
+     * Those version are good candidates for a deletion.
+     *
+     * @param \DateTimeImmutable $beforeDate the date to compare versions against
+     *
+     * @return iterable returns an iterable with the IDs of the versions
+     */
+    public function findIdsByVersionsOlderThanDateAndNotLastVersion(\DateTimeImmutable $beforeDate): iterable
+    {
+        $results = $this->connection->executeQuery(
+            self::QUERY_FIND_IDS_BY_VERSIONS_OLDER_THAN_DATE_AND_NOT_LAST_VERSION,
+            [$beforeDate],
+            [Types::DATETIME_IMMUTABLE]
+        );
+
+        foreach ($results->iterateAssociative() as $row) {
+            yield $row['sov_id'];
+        }
+    }
+
+    private const QUERY_FIND_IDS_BY_VERSIONS_OLDER_THAN_DATE_AND_NOT_LAST_VERSION = <<<'SQL'
+        SELECT
+            sov.id AS sov_id
+        FROM chill_doc.stored_object_version sov
+        WHERE
+            sov.createdat < ?::timestamp
+            AND
+            sov.version < (SELECT MAX(sub_sov.version) FROM chill_doc.stored_object_version sub_sov WHERE sub_sov.stored_object_id = sov.stored_object_id)
+        SQL;
+
+    public function getClassName(): string
+    {
+        return StoredObjectVersion::class;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
new file mode 100644
index 000000000..d190a4e45
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
@@ -0,0 +1,60 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
+use Chill\MainBundle\Cron\CronJobInterface;
+use Chill\MainBundle\Entity\CronJobExecution;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+final readonly class RemoveOldVersionCronJob implements CronJobInterface
+{
+    public const KEY = 'remove-old-stored-object-version';
+
+    private const LAST_DELETED_KEY = 'last-deleted-stored-object-version-id';
+
+    public const KEEP_INTERVAL = 'P90D';
+
+    public function __construct(
+        private ClockInterface $clock,
+        private MessageBusInterface $messageBus,
+        private StoredObjectVersionRepository $storedObjectVersionRepository,
+    ) {}
+
+    public function canRun(?CronJobExecution $cronJobExecution): bool
+    {
+        if (null === $cronJobExecution) {
+            return true;
+        }
+
+        return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new \DateInterval('P1D'));
+    }
+
+    public function getKey(): string
+    {
+        return self::KEY;
+    }
+
+    public function run(array $lastExecutionData): ?array
+    {
+        $deleteBeforeDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
+        $maxDeleted = $lastExecutionData[self::LAST_DELETED_KEY] ?? 0;
+
+        foreach ($this->storedObjectVersionRepository->findIdsByVersionsOlderThanDateAndNotLastVersion($deleteBeforeDate) as $id) {
+            $this->messageBus->dispatch(new RemoveOldVersionMessage($id));
+            $maxDeleted = max($maxDeleted, $id);
+        }
+
+        return [self::LAST_DELETED_KEY => $maxDeleted];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
new file mode 100644
index 000000000..a151e714c
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
@@ -0,0 +1,19 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
+
+final readonly class RemoveOldVersionMessage
+{
+    public function __construct(
+        public int $storedObjectVersionId
+    ) {}
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
new file mode 100644
index 000000000..3d48f0267
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
@@ -0,0 +1,54 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
+use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Doctrine\ORM\EntityManagerInterface;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+
+final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInterface
+{
+    private const LOG_PREFIX = '[RemoveOldVersionMessageHandler] ';
+
+    public function __construct(
+        private StoredObjectVersionRepository $storedObjectVersionRepository,
+        private LoggerInterface $logger,
+        private EntityManagerInterface $entityManager,
+        private StoredObjectManagerInterface $storedObjectManager,
+    ) {}
+
+    /**
+     * @throws StoredObjectManagerException
+     */
+    public function __invoke(RemoveOldVersionMessage $message): void
+    {
+        $this->logger->info(self::LOG_PREFIX.'Received one message', ['storedObjectVersionId' => $message->storedObjectVersionId]);
+
+        $storedObjectVersion = $this->storedObjectVersionRepository->find($message->storedObjectVersionId);
+
+        if (null === $storedObjectVersion) {
+            $this->logger->error(self::LOG_PREFIX.'StoredObjectVersion not found in database', ['storedObjectVersionId' => $message->storedObjectVersionId]);
+            throw new \RuntimeException('StoredObjectVersion not found with id '.$message->storedObjectVersionId);
+        }
+
+        $this->storedObjectManager->delete($storedObjectVersion);
+
+        $this->entityManager->remove($storedObjectVersion);
+        $this->entityManager->flush();
+
+        // clear the entity manager for future usage
+        $this->entityManager->clear();
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index 2266bb0e2..51f32b98a 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -217,6 +217,23 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return $version;
     }
 
+    /**
+     * @throws StoredObjectManagerException
+     */
+    public function delete(StoredObjectVersion $storedObjectVersion): void
+    {
+        $signedUrl = $this->tempUrlGenerator->generate('DELETE', $storedObjectVersion->getFilename());
+
+        try {
+            $response = $this->client->request('DELETE', $signedUrl->url);
+            if (Response::HTTP_NO_CONTENT !== $response->getStatusCode()) {
+                throw StoredObjectManagerException::invalidStatusCode($response->getStatusCode());
+            }
+        } catch (TransportExceptionInterface $exception) {
+            throw StoredObjectManagerException::errorDuringHttpRequest($exception);
+        }
+    }
+
     public function clearCache(): void
     {
         $this->inMemory = [];
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
index 4d2f45c33..7d4711b06 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
@@ -51,6 +51,11 @@ interface StoredObjectManagerInterface
      */
     public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion;
 
+    /**
+     * @throws StoredObjectManagerException
+     */
+    public function delete(StoredObjectVersion $storedObjectVersion): void;
+
     /**
      * return or compute the etag for the document.
      *
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
new file mode 100644
index 000000000..ace122bea
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
@@ -0,0 +1,43 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Repository;
+
+use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectVersionRepositoryTest extends KernelTestCase
+{
+    private EntityManagerInterface $entityManager;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->entityManager = self::getContainer()->get(EntityManagerInterface::class);
+    }
+
+    public function testFindIdsByVersionsOlderThanDateAndNotLastVersion(): void
+    {
+        $repository = new StoredObjectVersionRepository($this->entityManager);
+
+        // get old version, to get a chance to get one
+        $actual = $repository->findIdsByVersionsOlderThanDateAndNotLastVersion(new \DateTimeImmutable('1970-01-01'));
+
+        self::assertIsIterable($actual);
+        self::assertContainsOnly('int', $actual);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
new file mode 100644
index 000000000..f27727d20
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
@@ -0,0 +1,104 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Tests\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionCronJob;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessage;
+use Chill\MainBundle\Entity\CronJobExecution;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class RemoveOldVersionCronJobTest extends KernelTestCase
+{
+    /**
+     * @dataProvider buildTestCanRunData
+     */
+    public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
+    {
+        $repository = $this->createMock(StoredObjectVersionRepository::class);
+        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+
+        $cronJob = new RemoveOldVersionCronJob($clock, $this->buildMessageBus(), $repository);
+
+        self::assertEquals($expected, $cronJob->canRun($cronJobExecution));
+    }
+
+    public function testRun(): void
+    {
+        // we create a clock in the future. This led us a chance to having stored object to delete
+        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+        $repository = $this->createMock(StoredObjectVersionRepository::class);
+        $repository->expects($this->once())
+            ->method('findIdsByVersionsOlderThanDateAndNotLastVersion')
+            ->with(new \DateTime('2023-10-03 00:00:00', new \DateTimeZone('+00:00')))
+            ->willReturnCallback(function ($arg) {
+                yield 1;
+                yield 3;
+                yield 2;
+            })
+        ;
+
+        $cronJob = new RemoveOldVersionCronJob($clock, $this->buildMessageBus(true), $repository);
+
+        $results = $cronJob->run([]);
+
+        self::assertArrayHasKey('last-deleted-stored-object-version-id', $results);
+        self::assertIsInt($results['last-deleted-stored-object-version-id']);
+    }
+
+    public static function buildTestCanRunData(): iterable
+    {
+        yield [
+            (new CronJobExecution('last-deleted-stored-object-version-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('last-deleted-stored-object-version-id'))->setLastEnd(new \DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('last-deleted-stored-object-version-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
+            false,
+        ];
+
+        yield [
+            null,
+            true,
+        ];
+    }
+
+    private function buildMessageBus(bool $expectDistpatchAtLeastOnce = false): MessageBusInterface
+    {
+        $messageBus = $this->createMock(MessageBusInterface::class);
+
+        $methodDispatch = match ($expectDistpatchAtLeastOnce) {
+            true => $messageBus->expects($this->atLeastOnce())->method('dispatch')->with($this->isInstanceOf(RemoveOldVersionMessage::class)),
+            false => $messageBus->method('dispatch'),
+        };
+
+        $methodDispatch->willReturnCallback(function (RemoveOldVersionMessage $message) {
+            return new Envelope($message);
+        });
+
+        return $messageBus;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
new file mode 100644
index 000000000..109453bb7
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
@@ -0,0 +1,51 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Tests\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessage;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessageHandler;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class RemoveOldVersionMessageHandlerTest extends TestCase
+{
+    public function testInvoke(): void
+    {
+        $object = new StoredObject();
+        $version = $object->registerVersion();
+        $storedObjectVersionRepository = $this->createMock(StoredObjectVersionRepository::class);
+        $storedObjectVersionRepository->expects($this->once())->method('find')
+            ->with($this->identicalTo(1))
+            ->willReturn($version);
+
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $entityManager->expects($this->once())->method('remove')->with($this->identicalTo($version));
+        $entityManager->expects($this->once())->method('flush');
+        $entityManager->expects($this->once())->method('clear');
+
+        $storedObjectManager = $this->createMock(StoredObjectManagerInterface::class);
+        $storedObjectManager->expects($this->once())->method('delete')->with($this->identicalTo($version));
+
+        $handler = new RemoveOldVersionMessageHandler($storedObjectVersionRepository, new NullLogger(), $entityManager, $storedObjectManager);
+
+        $handler(new RemoveOldVersionMessage(1));
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index 3725f910f..4bb370ba3 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -198,6 +198,37 @@ final class StoredObjectManagerTest extends TestCase
         self::assertSame($storedObject->getCurrentVersion(), $newVersion);
     }
 
+    public function testDelete(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion(filename: 'object_name');
+
+        $httpClient = new MockHttpClient(function ($method, $url, $options) {
+            self::assertEquals('DELETE', $method);
+            self::assertEquals('https://example.com/object_name', $url);
+
+            return new MockResponse('', [
+                'http_code' => 204,
+            ]);
+        });
+
+        $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
+        $tempUrlGenerator
+            ->expects($this->once())
+            ->method('generate')
+            ->with($this->identicalTo('DELETE'), $this->identicalTo('object_name'))
+            ->willReturnCallback(function (string $method, string $objectName) {
+                return new SignedUrl(
+                    $method,
+                    'https://example.com/'.$objectName,
+                    new \DateTimeImmutable('1 hours')
+                );
+            });
+
+        $storedObjectManager = new StoredObjectManager($httpClient, $tempUrlGenerator);
+        $storedObjectManager->delete($version);
+    }
+
     public function testWriteWithDeleteAt()
     {
         $storedObject = new StoredObject();

From 0db2652f08008f1f5d5dd4eedf76f56710eb61e8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 11:41:43 +0200
Subject: [PATCH 151/375] Add cron job for removing expired stored objects

Introduced `RemoveExpiredStoredObjectCronJob` to automate the deletion of expired stored objects every 7 days. Enhanced associated tests and updated relevant interfaces and classes to support the new cron job functionality.
---
 .../Entity/StoredObject.php                   |  27 +++-
 .../Entity/StoredObjectVersion.php            |  23 +++-
 .../Repository/StoredObjectRepository.php     |  11 ++
 .../StoredObjectRepositoryInterface.php       |   8 +-
 .../RemoveExpiredStoredObjectCronJob.php      |  65 ++++++++++
 .../RemoveOldVersionMessageHandler.php        |  20 ++-
 .../Service/StoredObjectManager.php           |   4 +-
 .../Service/StoredObjectManagerInterface.php  |   9 +-
 .../RemoveExpiredStoredObjectCronJobTest.php  | 115 ++++++++++++++++++
 .../RemoveOldVersionMessageHandlerTest.php    |  74 ++++++++++-
 10 files changed, 344 insertions(+), 12 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 4fec9f6ca..fe68ec31c 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -90,7 +90,7 @@ class StoredObject implements Document, TrackCreationInterface
     /**
      * @var Collection<int, StoredObjectVersion>
      */
-    #[ORM\OneToMany(targetEntity: StoredObjectVersion::class, cascade: ['persist'], mappedBy: 'storedObject')]
+    #[ORM\OneToMany(targetEntity: StoredObjectVersion::class, cascade: ['persist'], mappedBy: 'storedObject', orphanRemoval: true)]
     private Collection $versions;
 
     /**
@@ -333,6 +333,15 @@ class StoredObject implements Document, TrackCreationInterface
         return $version;
     }
 
+    public function removeVersion(StoredObjectVersion $storedObjectVersion): void
+    {
+        if (!$this->versions->contains($storedObjectVersion)) {
+            throw new \UnexpectedValueException('This stored object does not contains this version');
+        }
+        $this->versions->removeElement($storedObjectVersion);
+        $storedObjectVersion->resetStoredObject();
+    }
+
     /**
      * @deprecated
      */
@@ -359,4 +368,20 @@ class StoredObject implements Document, TrackCreationInterface
             return uniqid(more_entropy: true);
         }
     }
+
+    /**
+     * Checks if a stored object can be deleted.
+     *
+     * Currently, return true if the deletedAt date is below the current date, and the object
+     * does not contains any version (which must be removed first).
+     *
+     * @param \DateTimeImmutable $now          the current date and time
+     * @param StoredObject       $storedObject the stored object to check
+     *
+     * @return bool returns true if the stored object can be deleted, false otherwise
+     */
+    public static function canBeDeleted(\DateTimeImmutable $now, StoredObject $storedObject): bool
+    {
+        return $storedObject->getDeleteAt() < $now && $storedObject->getVersions()->isEmpty();
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index 2b8852513..84b10688f 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -33,6 +33,13 @@ class StoredObjectVersion implements TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
     private ?int $id = null;
 
+    /**
+     * The stored object associated with this version.
+     */
+    #[ORM\ManyToOne(targetEntity: StoredObject::class, inversedBy: 'versions')]
+    #[ORM\JoinColumn(name: 'stored_object_id', nullable: true)]
+    private ?StoredObject $storedObject;
+
     /**
      * filename of the version in the stored object.
      */
@@ -40,12 +47,7 @@ class StoredObjectVersion implements TrackCreationInterface
     private string $filename = '';
 
     public function __construct(
-        /**
-         * The stored object associated with this version.
-         */
-        #[ORM\ManyToOne(targetEntity: StoredObject::class, inversedBy: 'versions')]
-        #[ORM\JoinColumn(name: 'stored_object_id', nullable: true)]
-        private StoredObject $storedObject,
+        StoredObject $storedObject,
 
         /**
          * The incremental version.
@@ -76,6 +78,7 @@ class StoredObjectVersion implements TrackCreationInterface
         private string $type = '',
         ?string $filename = null,
     ) {
+        $this->storedObject = $storedObject;
         $this->filename = $filename ?? self::generateFilename($this);
     }
 
@@ -124,4 +127,12 @@ class StoredObjectVersion implements TrackCreationInterface
     {
         return $this->version;
     }
+
+    /**
+     * @internal to be used by StoredObject::removeVersion
+     */
+    public function resetStoredObject(): void
+    {
+        $this->storedObject = null;
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
index 84bc7d4cb..2f39f2021 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\Repository;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
+use Doctrine\ORM\Query;
 
 final readonly class StoredObjectRepository implements StoredObjectRepositoryInterface
 {
@@ -53,6 +54,16 @@ final readonly class StoredObjectRepository implements StoredObjectRepositoryInt
         return $this->repository->findOneBy($criteria);
     }
 
+    public function findByExpired(\DateTimeImmutable $expiredAtDate): iterable
+    {
+        $qb = $this->repository->createQueryBuilder('stored_object');
+        $qb
+            ->where('stored_object.deleteAt <= :expiredAt')
+            ->setParameter('expiredAt', $expiredAtDate);
+
+        return $qb->getQuery()->toIterable(hydrationMode: Query::HYDRATE_OBJECT);
+    }
+
     public function getClassName(): string
     {
         return StoredObject::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
index c694f1e09..45dcfcf94 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
@@ -17,4 +17,10 @@ use Doctrine\Persistence\ObjectRepository;
 /**
  * @extends ObjectRepository<StoredObject>
  */
-interface StoredObjectRepositoryInterface extends ObjectRepository {}
+interface StoredObjectRepositoryInterface extends ObjectRepository
+{
+    /**
+     * @return iterable<StoredObject>
+     */
+    public function findByExpired(\DateTimeImmutable $expiredAtDate): iterable;
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
new file mode 100644
index 000000000..1dbf94080
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
@@ -0,0 +1,65 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Repository\StoredObjectRepositoryInterface;
+use Chill\MainBundle\Cron\CronJobInterface;
+use Chill\MainBundle\Entity\CronJobExecution;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+/**
+ * Represents a cron job that removes expired stored objects.
+ *
+ * This cronjob is executed every 7days, to remove expired stored object. For every
+ * expired stored object, every version is sent to message bus for async deletion.
+ */
+final class RemoveExpiredStoredObjectCronJob implements CronJobInterface
+{
+    public const string KEY = 'remove-expired-stored-object';
+
+    private const string LAST_DELETED_KEY = 'last-deleted-stored-object-id';
+
+    public function __construct(
+        private readonly ClockInterface $clock,
+        private readonly MessageBusInterface $messageBus,
+        private readonly StoredObjectRepositoryInterface $storedObjectRepository
+    ) {}
+
+    public function canRun(?CronJobExecution $cronJobExecution): bool
+    {
+        if (null === $cronJobExecution) {
+            return true;
+        }
+
+        return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new \DateInterval('P7D'));
+    }
+
+    public function getKey(): string
+    {
+        return self::KEY;
+    }
+
+    public function run(array $lastExecutionData): ?array
+    {
+        $lastDeleted = $lastExecutionData[self::LAST_DELETED_KEY] ?? 0;
+
+        foreach ($this->storedObjectRepository->findByExpired($this->clock->now()) as $storedObject) {
+            foreach ($storedObject->getVersions() as $version) {
+                $this->messageBus->dispatch(new RemoveOldVersionMessage($version->getId()));
+            }
+            $lastDeleted = max($lastDeleted, $storedObject->getId());
+        }
+
+        return [self::LAST_DELETED_KEY => $lastDeleted];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
index 3d48f0267..69c9f283d 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
@@ -11,13 +11,24 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
 use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
+use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 
+/**
+ * Class RemoveOldVersionMessageHandler.
+ *
+ * This class is responsible for handling the RemoveOldVersionMessage. It implements the MessageHandlerInterface.
+ * It removes old versions of stored objects based on certain conditions.
+ *
+ * If a StoredObject is a candidate for deletion (is expired and no more version stored), it is also removed from the
+ * database.
+ */
 final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInterface
 {
     private const LOG_PREFIX = '[RemoveOldVersionMessageHandler] ';
@@ -27,6 +38,7 @@ final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInt
         private LoggerInterface $logger,
         private EntityManagerInterface $entityManager,
         private StoredObjectManagerInterface $storedObjectManager,
+        private ClockInterface $clock,
     ) {}
 
     /**
@@ -37,6 +49,7 @@ final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInt
         $this->logger->info(self::LOG_PREFIX.'Received one message', ['storedObjectVersionId' => $message->storedObjectVersionId]);
 
         $storedObjectVersion = $this->storedObjectVersionRepository->find($message->storedObjectVersionId);
+        $storedObject = $storedObjectVersion->getStoredObject();
 
         if (null === $storedObjectVersion) {
             $this->logger->error(self::LOG_PREFIX.'StoredObjectVersion not found in database', ['storedObjectVersionId' => $message->storedObjectVersionId]);
@@ -44,8 +57,13 @@ final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInt
         }
 
         $this->storedObjectManager->delete($storedObjectVersion);
-
+        // to ensure an immediate deletion
         $this->entityManager->remove($storedObjectVersion);
+
+        if (StoredObject::canBeDeleted($this->clock->now(), $storedObject)) {
+            $this->entityManager->remove($storedObject);
+        }
+
         $this->entityManager->flush();
 
         // clear the entity manager for future usage
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index 51f32b98a..f87c60f82 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -226,9 +226,11 @@ final class StoredObjectManager implements StoredObjectManagerInterface
 
         try {
             $response = $this->client->request('DELETE', $signedUrl->url);
-            if (Response::HTTP_NO_CONTENT !== $response->getStatusCode()) {
+            if (! (Response::HTTP_NO_CONTENT === $response->getStatusCode() || Response::HTTP_NOT_FOUND === $response->getStatusCode())) {
                 throw StoredObjectManagerException::invalidStatusCode($response->getStatusCode());
             }
+
+            $storedObjectVersion->getStoredObject()->removeVersion($storedObjectVersion);
         } catch (TransportExceptionInterface $exception) {
             throw StoredObjectManagerException::errorDuringHttpRequest($exception);
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
index 7d4711b06..8dc6f27da 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
@@ -39,7 +39,9 @@ interface StoredObjectManagerInterface
     public function read(StoredObject|StoredObjectVersion $document): string;
 
     /**
-     * Set the content of a StoredObject.
+     * Register the content of a new version for the StoredObject.
+     *
+     * The manager is also responsible for registering a version in the StoredObject, and return this version.
      *
      * @param StoredObject $document     the document
      * @param string       $clearContent The content to store in clear
@@ -52,6 +54,11 @@ interface StoredObjectManagerInterface
     public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion;
 
     /**
+     * Remove a version from the storage.
+     *
+     * This method is also responsible for removing the version from the StoredObject (using @see{StoredObject::removeVersion})
+     * in case of success.
+     *
      * @throws StoredObjectManagerException
      */
     public function delete(StoredObjectVersion $storedObjectVersion): void;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php
new file mode 100644
index 000000000..ed7341a38
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php
@@ -0,0 +1,115 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Tests\Service\StoredObjectCleaner;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\StoredObjectRepositoryInterface;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveExpiredStoredObjectCronJob;
+use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessage;
+use Chill\MainBundle\Entity\CronJobExecution;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class RemoveExpiredStoredObjectCronJobTest extends TestCase
+{
+    /**
+     * @dataProvider buildTestCanRunData
+     */
+    public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
+    {
+        $repository = $this->createMock(StoredObjectRepositoryInterface::class);
+        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+
+        $cronJob = new RemoveExpiredStoredObjectCronJob($clock, $this->buildMessageBus(), $repository);
+
+        self::assertEquals($expected, $cronJob->canRun($cronJobExecution));
+    }
+
+    public static function buildTestCanRunData(): iterable
+    {
+        yield [
+            (new CronJobExecution('remove-expired-stored-object'))->setLastEnd(new \DateTimeImmutable('2023-12-25 00:00:00', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('remove-expired-stored-object'))->setLastEnd(new \DateTimeImmutable('2023-12-24 23:59:59', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('remove-expired-stored-object'))->setLastEnd(new \DateTimeImmutable('2023-12-25 00:00:01', new \DateTimeZone('+00:00'))),
+            false,
+        ];
+
+        yield [
+            null,
+            true,
+        ];
+    }
+
+    public function testRun(): void
+    {
+        $repository = $this->createMock(StoredObjectRepositoryInterface::class);
+        $repository->expects($this->atLeastOnce())->method('findByExpired')->withAnyParameters()->willReturnCallback(
+            function (\DateTimeImmutable $date): iterable {
+                yield $this->buildStoredObject(3);
+                yield $this->buildStoredObject(1);
+            }
+        );
+        $clock = new MockClock();
+
+        $cronJob = new RemoveExpiredStoredObjectCronJob($clock, $this->buildMessageBus(true), $repository);
+
+        $actual = $cronJob->run([]);
+
+        self::assertEquals(3, $actual['last-deleted-stored-object-id']);
+    }
+
+    private function buildStoredObject(int $id): StoredObject
+    {
+        $object = new StoredObject();
+        $object->registerVersion();
+        $class = new \ReflectionClass($object);
+        $idProperty = $class->getProperty('id');
+        $idProperty->setValue($object, $id);
+
+        $classVersion = new \ReflectionClass($object->getCurrentVersion());
+        $idPropertyVersion = $classVersion->getProperty('id');
+        $idPropertyVersion->setValue($object->getCurrentVersion(), $id);
+
+        return $object;
+    }
+
+    private function buildMessageBus(bool $expectDistpatchAtLeastOnce = false): MessageBusInterface
+    {
+        $messageBus = $this->createMock(MessageBusInterface::class);
+
+        $methodDispatch = match ($expectDistpatchAtLeastOnce) {
+            true => $messageBus->expects($this->atLeastOnce())->method('dispatch')->with($this->isInstanceOf(RemoveOldVersionMessage::class)),
+            false => $messageBus->method('dispatch'),
+        };
+
+        $methodDispatch->willReturnCallback(function (RemoveOldVersionMessage $message) {
+            return new Envelope($message);
+        });
+
+        return $messageBus;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
index 109453bb7..be268225d 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Tests\Service\StoredObjectCleaner;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Repository\StoredObjectVersionRepository;
 use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessage;
 use Chill\DocStoreBundle\Service\StoredObjectCleaner\RemoveOldVersionMessageHandler;
@@ -19,6 +20,7 @@ use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
+use Symfony\Component\Clock\MockClock;
 
 /**
  * @internal
@@ -44,8 +46,78 @@ class RemoveOldVersionMessageHandlerTest extends TestCase
         $storedObjectManager = $this->createMock(StoredObjectManagerInterface::class);
         $storedObjectManager->expects($this->once())->method('delete')->with($this->identicalTo($version));
 
-        $handler = new RemoveOldVersionMessageHandler($storedObjectVersionRepository, new NullLogger(), $entityManager, $storedObjectManager);
+        $handler = new RemoveOldVersionMessageHandler($storedObjectVersionRepository, new NullLogger(), $entityManager, $storedObjectManager, new MockClock());
 
         $handler(new RemoveOldVersionMessage(1));
     }
+
+    public function testInvokeWithStoredObjectToDelete(): void
+    {
+        $object = new StoredObject();
+        $object->setDeleteAt(new \DateTimeImmutable('2023-12-01'));
+        $version = $object->registerVersion();
+
+        $storedObjectVersionRepository = $this->createMock(StoredObjectVersionRepository::class);
+        $storedObjectVersionRepository->expects($this->once())->method('find')
+            ->with($this->identicalTo(1))
+            ->willReturn($version);
+
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $entityManager->expects($this->exactly(2))->method('remove')->with(
+            $this->logicalOr($this->identicalTo($version), $this->identicalTo($object))
+        );
+        $entityManager->expects($this->once())->method('flush');
+        $entityManager->expects($this->once())->method('clear');
+
+        $handler = new RemoveOldVersionMessageHandler(
+            $storedObjectVersionRepository,
+            new NullLogger(),
+            $entityManager,
+            new DummyStoredObjectManager(),
+            new MockClock(new \DateTimeImmutable('2024-01-01'))
+        );
+
+        $handler(new RemoveOldVersionMessage(1));
+
+        self::assertCount(0, $object->getVersions());
+    }
+}
+
+class DummyStoredObjectManager implements StoredObjectManagerInterface
+{
+    public function getLastModified(StoredObject|StoredObjectVersion $document): \DateTimeInterface
+    {
+        throw new \RuntimeException();
+    }
+
+    public function getContentLength(StoredObject|StoredObjectVersion $document): int
+    {
+        throw new \RuntimeException();
+    }
+
+    public function read(StoredObject|StoredObjectVersion $document): string
+    {
+        throw new \RuntimeException();
+    }
+
+    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion
+    {
+        throw new \RuntimeException();
+    }
+
+    public function delete(StoredObjectVersion $storedObjectVersion): void
+    {
+        $object = $storedObjectVersion->getStoredObject();
+        $object->removeVersion($storedObjectVersion);
+    }
+
+    public function etag(StoredObject|StoredObjectVersion $document): string
+    {
+        throw new \RuntimeException();
+    }
+
+    public function clearCache(): void
+    {
+        throw new \RuntimeException();
+    }
 }

From e477a49c92afdeab0719f21723098f5db1732f9d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 15:26:19 +0200
Subject: [PATCH 152/375] Integrate SwaggerUI with direct download and cleanup
 package

Added a customized SwaggerUI HTML template under Dev directory. Removed outdated swagger-ui dependency from package.json to streamline dependency management.
---
 package.json                                  |  1 -
 .../views/Dev/swagger-ui/index.html.twig      | 22 +++++++++++++++++++
 2 files changed, 22 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Dev/swagger-ui/index.html.twig

diff --git a/package.json b/package.json
index e0417cd4f..f0d6ca062 100644
--- a/package.json
+++ b/package.json
@@ -54,7 +54,6 @@
     "masonry-layout": "^4.2.2",
     "mime": "^4.0.0",
     "pdfjs-dist": "^4.3.136",
-    "swagger-ui": "^4.15.5",
     "vis-network": "^9.1.0",
     "vue": "^3.2.37",
     "vue-i18n": "^9.1.6",
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Dev/swagger-ui/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Dev/swagger-ui/index.html.twig
new file mode 100644
index 000000000..21d1ac505
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Dev/swagger-ui/index.html.twig
@@ -0,0 +1,22 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="utf-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1" />
+    <meta name="description" content="SwaggerUI" />
+    <title>SwaggerUI</title>
+    <link rel="stylesheet" href="https://unpkg.com/swagger-ui-dist@5.11.0/swagger-ui.css" />
+</head>
+<body>
+<div id="swagger-ui"></div>
+<script src="https://unpkg.com/swagger-ui-dist@5.11.0/swagger-ui-bundle.js" crossorigin></script>
+<script>
+    window.onload = () => {
+        window.ui = SwaggerUIBundle({
+            url: '/_dev/specs.yaml',
+            dom_id: '#swagger-ui',
+        });
+    };
+</script>
+</body>
+</html>

From 2d82c1e1050c5a979e92451d2344d6faa7156a8f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 15:32:57 +0200
Subject: [PATCH 153/375] rector fixes after rector's upgrade

---
 .../Entity/StoredObject.php                   |  2 +-
 .../StoredObjectVersionRepository.php         |  4 +-
 .../RemoveExpiredStoredObjectCronJob.php      |  8 +--
 .../RemoveExpiredStoredObjectCronJobTest.php  |  4 +-
 .../RemoveOldVersionCronJobTest.php           |  4 +-
 .../Tests/Service/StoredObjectManagerTest.php | 52 ++++++++-----------
 6 files changed, 31 insertions(+), 43 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index fe68ec31c..87ddd5785 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -364,7 +364,7 @@ class StoredObject implements Document, TrackCreationInterface
     {
         try {
             return base_convert(bin2hex(random_bytes(32)), 16, 36);
-        } catch (RandomException $e) {
+        } catch (RandomException) {
             return uniqid(more_entropy: true);
         }
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
index 047b024a9..1ab9b9edd 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
@@ -23,9 +23,9 @@ use Doctrine\Persistence\ObjectRepository;
  */
 class StoredObjectVersionRepository implements ObjectRepository
 {
-    private EntityRepository $repository;
+    private readonly EntityRepository $repository;
 
-    private Connection $connection;
+    private readonly Connection $connection;
 
     public function __construct(EntityManagerInterface $entityManager)
     {
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
index 1dbf94080..62ae154bc 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
@@ -23,16 +23,16 @@ use Symfony\Component\Messenger\MessageBusInterface;
  * This cronjob is executed every 7days, to remove expired stored object. For every
  * expired stored object, every version is sent to message bus for async deletion.
  */
-final class RemoveExpiredStoredObjectCronJob implements CronJobInterface
+final readonly class RemoveExpiredStoredObjectCronJob implements CronJobInterface
 {
     public const string KEY = 'remove-expired-stored-object';
 
     private const string LAST_DELETED_KEY = 'last-deleted-stored-object-id';
 
     public function __construct(
-        private readonly ClockInterface $clock,
-        private readonly MessageBusInterface $messageBus,
-        private readonly StoredObjectRepositoryInterface $storedObjectRepository
+        private ClockInterface $clock,
+        private MessageBusInterface $messageBus,
+        private StoredObjectRepositoryInterface $storedObjectRepository
     ) {}
 
     public function canRun(?CronJobExecution $cronJobExecution): bool
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php
index ed7341a38..3d6d758fa 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJobTest.php
@@ -106,9 +106,7 @@ class RemoveExpiredStoredObjectCronJobTest extends TestCase
             false => $messageBus->method('dispatch'),
         };
 
-        $methodDispatch->willReturnCallback(function (RemoveOldVersionMessage $message) {
-            return new Envelope($message);
-        });
+        $methodDispatch->willReturnCallback(fn (RemoveOldVersionMessage $message) => new Envelope($message));
 
         return $messageBus;
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
index f27727d20..937253c81 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
@@ -95,9 +95,7 @@ class RemoveOldVersionCronJobTest extends KernelTestCase
             false => $messageBus->method('dispatch'),
         };
 
-        $methodDispatch->willReturnCallback(function (RemoveOldVersionMessage $message) {
-            return new Envelope($message);
-        });
+        $methodDispatch->willReturnCallback(fn (RemoveOldVersionMessage $message) => new Envelope($message));
 
         return $messageBus;
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index 4bb370ba3..e09a2dc1e 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -217,13 +217,11 @@ final class StoredObjectManagerTest extends TestCase
             ->expects($this->once())
             ->method('generate')
             ->with($this->identicalTo('DELETE'), $this->identicalTo('object_name'))
-            ->willReturnCallback(function (string $method, string $objectName) {
-                return new SignedUrl(
-                    $method,
-                    'https://example.com/'.$objectName,
-                    new \DateTimeImmutable('1 hours')
-                );
-            });
+            ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
+                $method,
+                'https://example.com/'.$objectName,
+                new \DateTimeImmutable('1 hours')
+            ));
 
         $storedObjectManager = new StoredObjectManager($httpClient, $tempUrlGenerator);
         $storedObjectManager->delete($version);
@@ -276,14 +274,12 @@ final class StoredObjectManagerTest extends TestCase
             ->expects($this->never())
             ->method('generate')
             ->with($this->identicalTo('HEAD'), $this->isType('string'))
-            ->willReturnCallback(function (string $method, string $objectName) {
-                return new SignedUrl(
-                    $method,
-                    'https://example.com/'.$objectName,
-                    new \DateTimeImmutable('1 hours'),
-                    $objectName
-                );
-            });
+            ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
+                $method,
+                'https://example.com/'.$objectName,
+                new \DateTimeImmutable('1 hours'),
+                $objectName
+            ));
 
         $manager = new StoredObjectManager($client, $tempUrlGenerator);
 
@@ -307,13 +303,11 @@ final class StoredObjectManagerTest extends TestCase
             ->expects($this->atLeastOnce())
             ->method('generate')
             ->with($this->identicalTo('HEAD'), $this->isType('string'))
-            ->willReturnCallback(function (string $method, string $objectName) {
-                return new SignedUrl(
-                    $method,
-                    'https://example.com/'.$objectName,
-                    new \DateTimeImmutable('1 hours')
-                );
-            });
+            ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
+                $method,
+                'https://example.com/'.$objectName,
+                new \DateTimeImmutable('1 hours')
+            ));
 
         $manager = new StoredObjectManager($client, $tempUrlGenerator);
 
@@ -368,14 +362,12 @@ final class StoredObjectManagerTest extends TestCase
             ->expects($this->atLeastOnce())
             ->method('generate')
             ->with($this->logicalOr($this->identicalTo('GET'), $this->identicalTo('PUT')), $this->isType('string'))
-            ->willReturnCallback(function (string $method, string $objectName) {
-                return new SignedUrl(
-                    $method,
-                    'https://example.com/'.$objectName,
-                    new \DateTimeImmutable('1 hours'),
-                    $objectName
-                );
-            });
+            ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
+                $method,
+                'https://example.com/'.$objectName,
+                new \DateTimeImmutable('1 hours'),
+                $objectName
+            ));
 
         return $tempUrlGenerator;
     }

From 7ab52ff09e0f16bf42ad5dd77bc55bbc931f7388 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 15:34:42 +0200
Subject: [PATCH 154/375] Add stored object creation endpoint

Introduced a new API endpoint to create stored objects with access control for roles 'ROLE_ADMIN' and 'ROLE_USER'. Updated corresponding routes, removed unused dependencies, and added unit tests to ensure functionality.
---
 .../Controller/StoredObjectApiController.php  | 42 +++++++++++++-
 .../ChillDocStoreExtension.php                | 25 ---------
 .../StoredObjectApiControllerTest.php         | 55 +++++++++++++++++++
 .../ChillDocStoreBundle/chill.api.specs.yaml  |  9 +--
 4 files changed, 97 insertions(+), 34 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectApiControllerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
index 600b6e52d..cf5830c53 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
@@ -11,6 +11,46 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Controller;
 
+use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\MainBundle\CRUD\Controller\ApiController;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\SerializerInterface;
 
-class StoredObjectApiController extends ApiController {}
+class StoredObjectApiController extends ApiController
+{
+    public function __construct(
+        private readonly Security $security,
+        private readonly SerializerInterface $serializer,
+        private readonly EntityManagerInterface $entityManager
+    ) {}
+
+    /**
+     * Creates a new stored object.
+     *
+     * @return JsonResponse the response containing the serialized object in JSON format
+     *
+     * @throws AccessDeniedHttpException if the user does not have the necessary role to create a stored object
+     */
+    #[Route('/api/1.0/doc-store/stored-object/create', methods: ['POST'])]
+    public function createStoredObject(): JsonResponse
+    {
+        if (!($this->security->isGranted('ROLE_ADMIN') || $this->security->isGranted('ROLE_USER'))) {
+            throw new AccessDeniedHttpException('Must be user or admin to create a stored object');
+        }
+
+        $object = new StoredObject();
+
+        $this->entityManager->persist($object);
+        $this->entityManager->flush();
+
+        return new JsonResponse(
+            $this->serializer->serialize($object, 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            json: true
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
index b156af1ea..efeb6362d 100644
--- a/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/DependencyInjection/ChillDocStoreExtension.php
@@ -11,7 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\DependencyInjection;
 
-use Chill\DocStoreBundle\Controller\StoredObjectApiController;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\PersonDocumentVoter;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectVoterInterface;
@@ -19,7 +18,6 @@ use Symfony\Component\Config\FileLocator;
 use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Extension\PrependExtensionInterface;
 use Symfony\Component\DependencyInjection\Loader;
-use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpKernel\DependencyInjection\Extension;
 
 /**
@@ -53,29 +51,6 @@ class ChillDocStoreExtension extends Extension implements PrependExtensionInterf
         $this->prependRoute($container);
         $this->prependAuthorization($container);
         $this->prependTwig($container);
-        $this->prependApis($container);
-    }
-
-    protected function prependApis(ContainerBuilder $container)
-    {
-        $container->prependExtensionConfig('chill_main', [
-            'apis' => [
-                [
-                    'class' => \Chill\DocStoreBundle\Entity\StoredObject::class,
-                    'controller' => StoredObjectApiController::class,
-                    'name' => 'stored_object',
-                    'base_path' => '/api/1.0/docstore/stored-object',
-                    'base_role' => 'ROLE_USER',
-                    'actions' => [
-                        '_entity' => [
-                            'methods' => [
-                                Request::METHOD_POST => true,
-                            ],
-                        ],
-                    ],
-                ],
-            ],
-        ]);
     }
 
     protected function prependAuthorization(ContainerBuilder $container)
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectApiControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectApiControllerTest.php
new file mode 100644
index 000000000..74dbd9b46
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectApiControllerTest.php
@@ -0,0 +1,55 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Controller;
+
+use Chill\DocStoreBundle\Controller\StoredObjectApiController;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\SerializerInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectApiControllerTest extends TestCase
+{
+    public function testCreate(): void
+    {
+        $security = $this->createMock(Security::class);
+        $security->expects($this->atLeastOnce())->method('isGranted')
+            ->with($this->logicalOr($this->identicalTo('ROLE_ADMIN'), $this->identicalTo('ROLE_USER')))
+            ->willReturn(true)
+        ;
+
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $entityManager->expects($this->once())->method('persist')->with($this->isInstanceOf(StoredObject::class));
+        $entityManager->expects($this->once())->method('flush');
+
+        $serializer = $this->createMock(SerializerInterface::class);
+        $serializer->expects($this->once())->method('serialize')
+            ->with($this->isInstanceOf(StoredObject::class), 'json', $this->anything())
+            ->willReturn($r = <<<'JSON'
+            {"type":  "stored-object", "id":  1}
+            JSON);
+
+        $controller = new StoredObjectApiController($security, $serializer, $entityManager);
+
+        $actual = $controller->createStoredObject();
+
+        self::assertInstanceOf(JsonResponse::class, $actual);
+        self::assertEquals($r, $actual->getContent());
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
index d74311387..7864a18af 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
@@ -21,18 +21,11 @@ components:
           type: string
 
 paths:
-  /1.0/docstore/stored-object.json:
+  /1.0/doc-store/stored-object/create:
     post:
       tags:
         - storedobject
       summary: Create a stored object
-      requestBody:
-        description: "A stored object"
-        required: true
-        content:
-          application/json:
-            schema:
-              $ref: "#/components/schemas/StoredObject"
       responses:
         200:
           description: "OK"

From 00cc3b78060183a0b69007e735357c5370c9addb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 18:00:20 +0200
Subject: [PATCH 155/375] Refactor backend for getting signed url

---
 .../TempUrlOpenstackGenerator.php             |   5 +-
 .../AsyncUpload/TempUrlGeneratorInterface.php |   3 +-
 .../Controller/AsyncUploadController.php      | 118 +++++++-----
 .../Entity/StoredObject.php                   |   7 +-
 .../Resources/public/types.ts                 |  38 ++--
 .../Controller/AsyncUploadControllerTest.php  | 179 +++++++++++++++---
 .../ChillDocStoreBundle/chill.api.specs.yaml  | 130 ++++++++++---
 7 files changed, 345 insertions(+), 135 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
index ae74f9d0e..3ba1f0dea 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
@@ -58,6 +58,7 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
         ?int $expire_delay = null,
         ?int $submit_delay = null,
         int $max_file_count = 1,
+        ?string $object_name = null,
     ): SignedUrlPost {
         $delay = $expire_delay ?? $this->max_expire_delay;
         $submit_delay ??= $this->max_submit_delay;
@@ -84,7 +85,9 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
 
         $expires = $this->clock->now()->add(new \DateInterval('PT'.(string) $delay.'S'));
 
-        $object_name = $this->generateObjectName();
+        if (null === $object_name) {
+            $object_name = $this->generateObjectName();
+        }
 
         $g = new SignedUrlPost(
             $url = $this->generateUrl($object_name),
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/TempUrlGeneratorInterface.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/TempUrlGeneratorInterface.php
index 08ac9e062..e6589b3c7 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/TempUrlGeneratorInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/TempUrlGeneratorInterface.php
@@ -16,7 +16,8 @@ interface TempUrlGeneratorInterface
     public function generatePost(
         ?int $expire_delay = null,
         ?int $submit_delay = null,
-        int $max_file_count = 1
+        int $max_file_count = 1,
+        ?string $object_name = null,
     ): SignedUrlPost;
 
     public function generate(string $method, string $object_name, ?int $expire_delay = null): SignedUrl;
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
index 75be20d34..879230cd9 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
@@ -11,9 +11,10 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Controller;
 
-use Chill\DocStoreBundle\AsyncUpload\Exception\TempUrlGeneratorException;
 use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
-use Chill\DocStoreBundle\Security\Authorization\AsyncUploadVoter;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
@@ -30,62 +31,77 @@ final readonly class AsyncUploadController
         private TempUrlGeneratorInterface $tempUrlGenerator,
         private SerializerInterface $serializer,
         private Security $security,
-        private LoggerInterface $logger,
+        private LoggerInterface $chillLogger,
     ) {}
 
-    #[Route(path: '/asyncupload/temp_url/generate/{method}', name: 'async_upload.generate_url')]
-    public function getSignedUrl(string $method, Request $request): JsonResponse
+    #[Route(path: '/api/1.0/doc-store/async-upload/temp_url/{uuid}/generate/post', name: 'chill_docstore_asyncupload_getsignedurlpost')]
+    public function getSignedUrlPost(Request $request, StoredObject $storedObject): JsonResponse
     {
-        try {
-            switch (strtolower($method)) {
-                case 'post':
-                    $p = $this->tempUrlGenerator
-                        ->generatePost(
-                            $request->query->has('expires_delay') ? $request->query->getInt('expires_delay') : null,
-                            $request->query->has('submit_delay') ? $request->query->getInt('submit_delay') : null
-                        )
-                    ;
-                    break;
-                case 'get':
-                case 'head':
-                    $object_name = $request->query->get('object_name', null);
+        if (!$this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject)) {
+            throw new AccessDeniedHttpException('not able to edit the given stored object');
+        }
 
-                    if (null === $object_name) {
-                        return (new JsonResponse((object) [
-                            'message' => 'the object_name is null',
-                        ]))
-                            ->setStatusCode(JsonResponse::HTTP_BAD_REQUEST);
-                    }
-                    $p = $this->tempUrlGenerator->generate(
-                        $method,
-                        $object_name,
-                        $request->query->has('expires_delay') ? $request->query->getInt('expires_delay') : null
-                    );
-                    break;
-                default:
-                    return (new JsonResponse((object) ['message' => 'the method '
-                        ."{$method} is not valid"]))
-                        ->setStatusCode(JsonResponse::HTTP_BAD_REQUEST);
+        // we create a dummy version, to generate a filename
+        $version = $storedObject->registerVersion();
+
+        $p = $this->tempUrlGenerator
+            ->generatePost(
+                $request->query->has('expires_delay') ? $request->query->getInt('expires_delay') : null,
+                $request->query->has('submit_delay') ? $request->query->getInt('submit_delay') : null,
+                object_name: $version->getFilename()
+            );
+
+        $this->chillLogger->notice('[Privacy Event] a request to upload a document has been generated', [
+            'doc_uuid' => $storedObject->getUuid(),
+        ]);
+
+        return new JsonResponse(
+            $this->serializer->serialize($p, 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            Response::HTTP_OK,
+            [],
+            true
+        );
+    }
+
+    #[Route(path: '/api/1.0/doc-store/async-upload/temp_url/{uuid}/generate/{method}', name: 'chill_docstore_asyncupload_getsignedurlget', requirements: ['method' => 'get|head'])]
+    public function getSignedUrlGet(Request $request, StoredObject $storedObject, string $method): JsonResponse
+    {
+        if (!$this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
+            throw new AccessDeniedHttpException('not able to read the given stored object');
+        }
+
+        // we really want to be sure that there are no other method than get or head:
+        if (!in_array($method, ['get', 'head'], true)) {
+            throw new AccessDeniedHttpException('Only methods get and head are allowed');
+        }
+
+        if ($request->query->has('version')) {
+            $filename = $request->query->get('version');
+
+            $storedObjectVersion = $storedObject->getVersions()->findFirst(fn(int $index, StoredObjectVersion $version): bool => $version->getFilename() === $filename);
+
+            if (null === $storedObjectVersion) {
+                // we are here in the case where the version is not stored into the database
+                // as the version is prefixed by the stored object prefix, we just have to check that this prefix
+                // is the same. It means that the user had previously the permission to "SEE_AND_EDIT" this stored
+                // object with same prefix that we checked before
+                if (!str_starts_with($filename, $storedObject->getPrefix())) {
+                    throw new AccessDeniedHttpException('not able to match the version with the same filename');
+                }
             }
-        } catch (TempUrlGeneratorException $e) {
-            $this->logger->warning('The client requested a temp url'
-                .' which sparkle an error.', [
-                    'message' => $e->getMessage(),
-                    'expire_delay' => $request->query->getInt('expire_delay', 0),
-                    'file_count' => $request->query->getInt('file_count', 1),
-                    'method' => $method,
-                ]);
-
-            $p = new \stdClass();
-            $p->message = $e->getMessage();
-            $p->status = JsonResponse::HTTP_BAD_REQUEST;
-
-            return new JsonResponse($p, JsonResponse::HTTP_BAD_REQUEST);
+        } else {
+            $filename = $storedObject->getCurrentVersion()->getFilename();
         }
 
-        if (!$this->security->isGranted(AsyncUploadVoter::GENERATE_SIGNATURE, $p)) {
-            throw new AccessDeniedHttpException('not allowed to generate this signature');
-        }
+        $p = $this->tempUrlGenerator->generate(
+            $method,
+            $filename,
+            $request->query->has('expires_delay') ? $request->query->getInt('expires_delay') : null
+        );
+
+        $this->chillLogger->notice('[Privacy Event] a request to see a document has been granted', [
+            'doc_uuid' => $storedObject->getUuid(),
+        ]);
 
         return new JsonResponse(
             $this->serializer->serialize($p, 'json', [AbstractNormalizer::GROUPS => ['read']]),
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 87ddd5785..6ed52716d 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -41,6 +41,7 @@ use Symfony\Component\Serializer\Annotation as Serializer;
 class StoredObject implements Document, TrackCreationInterface
 {
     use TrackCreationTrait;
+    final public const STATUS_EMPTY = 'empty';
     final public const STATUS_READY = 'ready';
     final public const STATUS_PENDING = 'pending';
     final public const STATUS_FAILURE = 'failure';
@@ -98,7 +99,7 @@ class StoredObject implements Document, TrackCreationInterface
      */
     public function __construct(
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, options: ['default' => 'ready'])]
-        private string $status = 'ready'
+        private string $status = 'empty'
     ) {
         $this->uuid = Uuid::uuid4();
         $this->versions = new ArrayCollection();
@@ -330,6 +331,10 @@ class StoredObject implements Document, TrackCreationInterface
 
         $this->versions->add($version);
 
+        if ('empty' === $this->status) {
+            $this->status = self::STATUS_READY;
+        }
+
         return $version;
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 1fc8b1cdd..1d21feacd 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -1,27 +1,27 @@
 import {DateTime} from "../../../ChillMainBundle/Resources/public/types";
 
-export type StoredObjectStatus = "ready"|"failure"|"pending";
+export type StoredObjectStatus = "empty"|"ready"|"failure"|"pending";
 
 export interface StoredObject {
-  id: number,
+    id: number,
 
-  /**
-   * filename of the object in the object storage
-   */
-  filename: string,
-  creationDate: DateTime,
-  datas: object,
-  iv: number[],
-  keyInfos: object,
-  title: string,
-  type: string,
-  uuid: string,
-  status: StoredObjectStatus,
+    /**
+     * filename of the object in the object storage
+     */
+    filename: string,
+    creationDate: DateTime,
+    datas: object,
+    iv: number[],
+    keyInfos: object,
+    title: string,
+    type: string,
+    uuid: string,
+    status: StoredObjectStatus,
     _links?: {
-      dav_link?: {
-          href: string
-          expiration: number
-      },
+        dav_link?: {
+            href: string
+            expiration: number
+        },
     }
 }
 
@@ -82,4 +82,4 @@ export interface Signature {
   zones: SignatureZone[],
 }
 
-export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
\ No newline at end of file
+export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
index 6b49b2919..489bf1185 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
@@ -15,7 +15,7 @@ use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
 use Chill\DocStoreBundle\AsyncUpload\SignedUrlPost;
 use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Controller\AsyncUploadController;
-use Chill\DocStoreBundle\Security\Authorization\AsyncUploadVoter;
+use Chill\DocStoreBundle\Entity\StoredObject;
 use PHPUnit\Framework\TestCase;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
@@ -34,46 +34,165 @@ class AsyncUploadControllerTest extends TestCase
 {
     use ProphecyTrait;
 
-    public function testGenerateWhenUserIsNotGranted(): void
+    public function testGetSignedUrlPost(): void
     {
-        $this->expectException(AccessDeniedHttpException::class);
-        $controller = $this->buildAsyncUploadController(false);
+        $storedObject = new StoredObject();
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE_AND_EDIT', $storedObject)->willReturn(true)->shouldBeCalled();
 
-        $controller->getSignedUrl('POST', new Request());
-    }
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
 
-    public function testGeneratePost(): void
-    {
-        $controller = $this->buildAsyncUploadController(true);
+        $actual = $controller->getSignedUrlPost(new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800]), $storedObject);
 
-        $actual = $controller->getSignedUrl('POST', new Request());
         $decodedActual = json_decode($actual->getContent(), true, JSON_THROW_ON_ERROR, JSON_THROW_ON_ERROR);
 
         self::assertArrayHasKey('method', $decodedActual);
         self::assertEquals('POST', $decodedActual['method']);
     }
 
-    public function testGenerateGet(): void
+    public function testGetSignedUrlGetSimpleScenarioHappy(): void
     {
-        $controller = $this->buildAsyncUploadController(true);
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion();
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
+
+        $actual = $controller->getSignedUrlGet(new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800]), $storedObject, 'get');
 
-        $actual = $controller->getSignedUrl('GET', new Request(['object_name' => 'abc']));
         $decodedActual = json_decode($actual->getContent(), true, JSON_THROW_ON_ERROR, JSON_THROW_ON_ERROR);
 
         self::assertArrayHasKey('method', $decodedActual);
         self::assertEquals('GET', $decodedActual['method']);
     }
 
-    private function buildAsyncUploadController(
-        bool $isGranted,
-    ): AsyncUploadController {
-        $tempUrlGenerator = new class () implements TempUrlGeneratorInterface {
-            public function generatePost(?int $expire_delay = null, ?int $submit_delay = null, int $max_file_count = 1): SignedUrlPost
+    public function testGetSignedUrlGetSimpleScenarioNotAuthorized(): void
+    {
+        $this->expectException(AccessDeniedHttpException::class);
+
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion();
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE', $storedObject)->willReturn(false)->shouldBeCalled();
+
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
+
+        $controller->getSignedUrlGet(new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800]), $storedObject, 'get');
+    }
+
+    public function testGetSignedUrlGetForSpecificVersionOfTheStoredObjectStoredInDatabase(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion();
+        // we add a version to be sure that the we do not get the last one
+        $storedObject->registerVersion();
+
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
+
+        $actual = $controller->getSignedUrlGet(
+            new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800, 'version' => $version->getFilename()]),
+            $storedObject,
+            'get'
+        );
+
+        $decodedActual = json_decode($actual->getContent(), true, JSON_THROW_ON_ERROR, JSON_THROW_ON_ERROR);
+
+        self::assertArrayHasKey('method', $decodedActual);
+        self::assertEquals('GET', $decodedActual['method']);
+        self::assertArrayHasKey('object_name', $decodedActual);
+        self::assertEquals($version->getFilename(), $decodedActual['object_name']);
+    }
+
+    public function testGetSignedUrlGetForSpecificVersionOfTheStoredObjectNotYetStoredInDatabase(): void
+    {
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion();
+        // we generate a valid name
+        $version = $storedObject->getPrefix().'/some-version';
+
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
+
+        $actual = $controller->getSignedUrlGet(
+            new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800, 'version' => $version]),
+            $storedObject,
+            'get'
+        );
+
+        $decodedActual = json_decode($actual->getContent(), true, JSON_THROW_ON_ERROR, JSON_THROW_ON_ERROR);
+
+        self::assertArrayHasKey('method', $decodedActual);
+        self::assertEquals('GET', $decodedActual['method']);
+        self::assertArrayHasKey('object_name', $decodedActual);
+        self::assertEquals($version, $decodedActual['object_name']);
+    }
+
+    public function testGetSignedUrlGetForSpecificVersionNotBelongingToTheStoreObject(): void
+    {
+        $this->expectException(AccessDeniedHttpException::class);
+
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion();
+        // we generate a random version
+        $version = 'something/else';
+
+        $security = $this->prophesize(Security::class);
+        $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+
+        $controller = new AsyncUploadController(
+            $this->buildTempUrlGenerator(),
+            $this->buildSerializer(),
+            $security->reveal(),
+            new NullLogger(),
+        );
+
+        $controller->getSignedUrlGet(
+            new Request(query: ['expires_delay' => 10, 'submit_delay' => 1800, 'version' => $version]),
+            $storedObject,
+            'get'
+        );
+    }
+
+    public function buildTempUrlGenerator(): TempUrlGeneratorInterface
+    {
+        return new class () implements TempUrlGeneratorInterface {
+            public function generatePost(?int $expire_delay = null, ?int $submit_delay = null, int $max_file_count = 1, ?string $object_name = null): SignedUrlPost
             {
                 return new SignedUrlPost(
                     'https://object.store.example',
                     new \DateTimeImmutable('1 hour'),
-                    'abc',
+                    $object_name ?? 'abc',
                     150,
                     1,
                     1800,
@@ -86,27 +205,25 @@ class AsyncUploadControllerTest extends TestCase
             public function generate(string $method, string $object_name, ?int $expire_delay = null): SignedUrl
             {
                 return new SignedUrl(
-                    $method,
+                    strtoupper($method),
                     'https://object.store.example',
                     new \DateTimeImmutable('1 hour'),
                     $object_name
                 );
             }
         };
+    }
 
+    private function buildSerializer(): SerializerInterface
+    {
         $serializer = $this->prophesize(SerializerInterface::class);
         $serializer->serialize(Argument::type(SignedUrl::class), 'json', Argument::type('array'))
-            ->will(fn (array $args): string => json_encode(['method' => $args[0]->method], JSON_THROW_ON_ERROR, 3));
+            ->will(fn (array $args): string => json_encode(
+                ['method' => $args[0]->method, 'object_name' => $args[0]->object_name],
+                JSON_THROW_ON_ERROR,
+                3
+            ));
 
-        $security = $this->prophesize(Security::class);
-        $security->isGranted(AsyncUploadVoter::GENERATE_SIGNATURE, Argument::type(SignedUrl::class))
-            ->willReturn($isGranted);
-
-        return new AsyncUploadController(
-            $tempUrlGenerator,
-            $serializer->reveal(),
-            $security->reveal(),
-            new NullLogger()
-        );
+        return $serializer->reveal();
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
index 7864a18af..28345e463 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
@@ -1,39 +1,107 @@
 ---
 openapi: "3.0.0"
 info:
-  version: "1.0.0"
-  title: "Chill api"
-  description: "Api documentation for chill. Currently, work in progress"
+    version: "1.0.0"
+    title: "Chill api"
+    description: "Api documentation for chill. Currently, work in progress"
 servers:
-  - url: "/api"
-    description: "Your current dev server"
+    -   url: "/api"
+        description: "Your current dev server"
 
 components:
-  schemas:
-    StoredObject:
-      type: object
-      properties:
-        id:
-          type: integer
-        filename:
-          type: string
-        type:
-          type: string
+    schemas:
+        StoredObject:
+            type: object
+            properties:
+                id:
+                    type: integer
+                filename:
+                    type: string
+                type:
+                    type: string
 
 paths:
-  /1.0/doc-store/stored-object/create:
-    post:
-      tags:
-        - storedobject
-      summary: Create a stored object
-      responses:
-        200:
-          description: "OK"
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/StoredObject"
-        403:
-          description: "Unauthorized"
-        422:
-          description: "Invalid data"
+    /1.0/doc-store/stored-object/create:
+        post:
+            tags:
+                - storedobject
+            summary: Create a stored object
+            responses:
+                200:
+                    description: "OK"
+                    content:
+                        application/json:
+                            schema:
+                                $ref: "#/components/schemas/StoredObject"
+                403:
+                    description: "Unauthorized"
+                422:
+                    description: "Invalid data"
+
+    /1.0/doc-store/async-upload/temp_url/{uuid}/generate/post:
+        get:
+            tags:
+                - storedobject
+            summary: Get a signed route to post stored object
+            parameters:
+                -   in: path
+                    name: uuid
+                    required: true
+                    allowEmptyValue: false
+                    description: The UUID of the storedObject
+                    schema:
+                        type: string
+                        format: uuid
+            responses:
+                200:
+                    description: "OK"
+                    content:
+                        application/json:
+                            schema:
+                                type: object
+                403:
+                    description: "Unauthorized"
+                404:
+                    description: "Not found"
+    /1.0/doc-store/async-upload/temp_url/{uuid}/generate/{method}:
+        get:
+            tags:
+                - storedobject
+            summary: Get a signed route to get a stored object
+            parameters:
+                - in: path
+                  name: uuid
+                  required: true
+                  allowEmptyValue: false
+                  description: The UUID of the storedObjeect
+                  schema:
+                      type: string
+                      format: uuid
+                - in: path
+                  name: method
+                  required: true
+                  allowEmptyValue: false
+                  description: the method of the signed url (get or head)
+                  schema:
+                      type: string
+                      enum: [get, head]
+                - in: query
+                  name: version
+                  required: false
+                  allowEmptyValue: false
+                  description: the version's filename of the stored object
+                  schema:
+                      type: string
+                      minLength: 2
+            responses:
+                200:
+                    description: "OK"
+                    content:
+                        application/json:
+                            schema:
+                                type: object
+                403:
+                    description: "Unauthorized"
+                404:
+                    description: "Not found"
+

From b6edbb3eedbb369cb6332ff9384077a81a3fdd2d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 28 Aug 2024 23:19:24 +0200
Subject: [PATCH 156/375] Refactor StoredObject normalization handling

Deprecate and remove specific context constants from StoredObjectNormalizer. Update object properties for better clarity and add permissions handling. Introduce related tests and adjust other files relying on the old context constants.
---
 .../Controller/AsyncUploadController.php      |  2 +-
 .../StoredObjectDataTransformer.php           |  7 +-
 .../Resources/public/types.ts                 | 40 +++++---
 .../Normalizer/StoredObjectNormalizer.php     | 29 ++++--
 .../Normalizer/StoredObjectNormalizerTest.php | 98 +++++++++++++++++++
 .../StoredObjectVersionNormalizerTest.php     | 61 ++++++++++++
 .../AccompanyingCourseWorkController.php      |  3 +-
 7 files changed, 211 insertions(+), 29 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
index 879230cd9..52e0882a1 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
@@ -78,7 +78,7 @@ final readonly class AsyncUploadController
         if ($request->query->has('version')) {
             $filename = $request->query->get('version');
 
-            $storedObjectVersion = $storedObject->getVersions()->findFirst(fn(int $index, StoredObjectVersion $version): bool => $version->getFilename() === $filename);
+            $storedObjectVersion = $storedObject->getVersions()->findFirst(fn (int $index, StoredObjectVersion $version): bool => $version->getFilename() === $filename);
 
             if (null === $storedObjectVersion) {
                 // we are here in the case where the version is not stored into the database
diff --git a/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php b/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
index e06d8d7cc..b5c7c3930 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Form\DataTransformer;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectNormalizer;
 use Symfony\Component\Form\DataTransformerInterface;
 use Symfony\Component\Form\Exception\UnexpectedTypeException;
 use Symfony\Component\Serializer\SerializerInterface;
@@ -30,11 +29,7 @@ class StoredObjectDataTransformer implements DataTransformerInterface
         }
 
         if ($value instanceof StoredObject) {
-            return $this->serializer->serialize($value, 'json', [
-                'groups' => [
-                    StoredObjectNormalizer::ADD_DAV_EDIT_LINK_CONTEXT,
-                ],
-            ]);
+            return $this->serializer->serialize($value, 'json');
         }
 
         throw new UnexpectedTypeException($value, StoredObject::class);
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 1d21feacd..235b375ce 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -1,28 +1,44 @@
-import {DateTime} from "../../../ChillMainBundle/Resources/public/types";
+import {DateTime, User} from "../../../ChillMainBundle/Resources/public/types";
 
 export type StoredObjectStatus = "empty"|"ready"|"failure"|"pending";
 
 export interface StoredObject {
     id: number,
-
-    /**
-     * filename of the object in the object storage
-     */
-    filename: string,
-    creationDate: DateTime,
-    datas: object,
-    iv: number[],
-    keyInfos: object,
     title: string,
-    type: string,
     uuid: string,
+    prefix: string,
     status: StoredObjectStatus,
+    currentVersion: null|StoredObjectVersion,
+    totalVersions: number,
+    datas: object,
+    /** @deprecated */
+    creationDate: DateTime,
+    createdAt: DateTime|null,
+    createdBy: User|null,
+    _permissions: {
+        canEdit: boolean,
+        canSee: boolean,
+    },
     _links?: {
         dav_link?: {
             href: string
             expiration: number
         },
-    }
+    },
+}
+
+export interface StoredObjectVersion {
+    /**
+     * filename of the object in the object storage
+     */
+    filename: string,
+    version: number,
+    id: number,
+    iv: number[],
+    keyInfos: object,
+    type: string,
+    createdAt: DateTime|null,
+    createdBy: User|null,
 }
 
 export interface StoredObjectCreated {
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index ebd7d3564..dbd9d72b8 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -16,6 +16,7 @@ use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
@@ -28,8 +29,16 @@ use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwareInterface
 {
     use NormalizerAwareTrait;
-    public const ADD_DAV_SEE_LINK_CONTEXT = 'dav-see-link-context';
-    public const ADD_DAV_EDIT_LINK_CONTEXT = 'dav-edit-link-context';
+
+    /**
+     * @deprecated
+     */
+    public const string ADD_DAV_SEE_LINK_CONTEXT = 'dav-see-link-context';
+
+    /**
+     * @deprecated
+     */
+    public const string ADD_DAV_EDIT_LINK_CONTEXT = 'dav-edit-link-context';
 
     public function __construct(
         private readonly JWTDavTokenProviderInterface $JWTDavTokenProvider,
@@ -41,17 +50,16 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
     {
         /** @var StoredObject $object */
         $datas = [
-            'datas' => $object->getDatas(),
-            'filename' => $object->getFilename(),
             'id' => $object->getId(),
-            'iv' => $object->getIv(),
-            'keyInfos' => $object->getKeyInfos(),
+            'datas' => $object->getDatas(),
+            'prefix' => $object->getPrefix(),
             'title' => $object->getTitle(),
-            'type' => $object->getType(),
-            'uuid' => $object->getUuid(),
+            'uuid' => $object->getUuid()->toString(),
             'status' => $object->getStatus(),
             'createdAt' => $this->normalizer->normalize($object->getCreatedAt(), $format, $context),
             'createdBy' => $this->normalizer->normalize($object->getCreatedBy(), $format, $context),
+            'currentVersion' => $this->normalizer->normalize($object->getCurrentVersion(), $format, [...$context, [AbstractNormalizer::GROUPS => 'read']]),
+            'totalVersions' => $object->getVersions()->count(),
         ];
 
         // deprecated property
@@ -60,6 +68,11 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
         $canSee = $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $object);
         $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $object);
 
+        $datas['_permissions'] = [
+            'canEdit' => $canEdit,
+            'canSee' => $canSee,
+        ];
+
         if ($canSee || $canEdit) {
             $accessToken = $this->JWTDavTokenProvider->createToken(
                 $object,
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
new file mode 100644
index 000000000..a2cc75541
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
@@ -0,0 +1,98 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectNormalizer;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectNormalizerTest extends TestCase
+{
+    public function testNormalize(): void
+    {
+        $storedObject = new StoredObject();
+        $storedObject->setTitle('test');
+        $reflection = new \ReflectionClass(StoredObject::class);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($storedObject, 1);
+
+        $jwtProvider = $this->createMock(JWTDavTokenProviderInterface::class);
+        $jwtProvider->expects($this->once())->method('createToken')->withAnyParameters()->willReturn('token');
+        $jwtProvider->expects($this->once())->method('getTokenExpiration')->with('token')->willReturn($d = new \DateTimeImmutable());
+
+        $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
+        $urlGenerator->expects($this->once())->method('generate')
+            ->with(
+                'chill_docstore_dav_document_get',
+                [
+                    'uuid' => $storedObject->getUuid(),
+                    'access_token' => 'token',
+                ],
+                UrlGeneratorInterface::ABSOLUTE_URL,
+            )
+            ->willReturn($davLink = 'http://localhost/dav/token');
+
+        $security = $this->createMock(Security::class);
+        $security->expects($this->exactly(2))->method('isGranted')
+            ->with(
+                $this->logicalOr(StoredObjectRoleEnum::EDIT->value, StoredObjectRoleEnum::SEE->value),
+                $storedObject
+            )
+            ->willReturn(true);
+
+        $globalNormalizer = $this->createMock(NormalizerInterface::class);
+        $globalNormalizer->expects($this->exactly(3))->method('normalize')
+            ->withAnyParameters()
+            ->willReturnCallback(function (?object $object, string $format, array $context) {
+                if (null === $object) {
+                    return null;
+                }
+
+                return ['sub' => 'sub'];
+            });
+
+        $normalizer = new StoredObjectNormalizer($jwtProvider, $urlGenerator, $security);
+        $normalizer->setNormalizer($globalNormalizer);
+
+        $actual = $normalizer->normalize($storedObject, 'json');
+
+        self::assertArrayHasKey('id', $actual);
+        self::assertEquals(1, $actual['id']);
+        self::assertArrayHasKey('title', $actual);
+        self::assertEquals('test', $actual['title']);
+        self::assertArrayHasKey('uuid', $actual);
+        self::assertArrayHasKey('prefix', $actual);
+        self::assertArrayHaskey('status', $actual);
+        self::assertArrayHasKey('currentVersion', $actual);
+        self::assertEquals(null, $actual['currentVersion']);
+        self::assertArrayHasKey('totalVersions', $actual);
+        self::assertEquals(0, $actual['totalVersions']);
+        self::assertArrayHasKey('datas', $actual);
+        self::assertArrayHasKey('createdAt', $actual);
+        self::assertArrayHasKey('createdBy', $actual);
+        self::assertArrayHasKey('_permissions', $actual);
+        self::assertEqualsCanonicalizing(['canEdit' => true, 'canSee' => true], $actual['_permissions']);
+        self::assertArrayHaskey('_links', $actual);
+        self::assertArrayHasKey('dav_link', $actual['_links']);
+        self::assertEqualsCanonicalizing(['href' => $davLink, 'expiration' => $d->getTimestamp()], $actual['_links']['dav_link']);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php
new file mode 100644
index 000000000..c6bd87686
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php
@@ -0,0 +1,61 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectVersionNormalizerTest extends KernelTestCase
+{
+    private NormalizerInterface $normalizer;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->normalizer = self::getContainer()->get(NormalizerInterface::class);
+    }
+
+    public function testNormalize(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion(
+            iv: [1, 2, 3, 4],
+            keyInfos: ['someKey' => 'someKey'],
+            type: 'text/text',
+        );
+        $reflection = new \ReflectionClass($version);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($version, 1);
+
+        $actual = $this->normalizer->normalize($version, 'json', ['groups' => ['read']]);
+
+        self::assertEqualsCanonicalizing(
+            [
+                'id' => 1,
+                'version' => 0,
+                'filename' => $version->getFilename(),
+                'iv' => [1, 2, 3, 4],
+                'keyInfos' => ['someKey' => 'someKey'],
+                'type' => 'text/text',
+                'createdAt' => null,
+                'createdBy' => null,
+            ],
+            $actual
+        );
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php b/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
index 0243d55b5..c43dbd128 100644
--- a/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
@@ -11,7 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Controller;
 
-use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectNormalizer;
 use Chill\MainBundle\Pagination\PaginatorFactory;
 use Chill\MainBundle\Templating\Listing\FilterOrderHelper;
 use Chill\MainBundle\Templating\Listing\FilterOrderHelperFactoryInterface;
@@ -116,7 +115,7 @@ final class AccompanyingCourseWorkController extends AbstractController
     {
         $this->denyAccessUnlessGranted(AccompanyingPeriodWorkVoter::UPDATE, $work);
 
-        $json = $this->serializer->normalize($work, 'json', ['groups' => ['read', StoredObjectNormalizer::ADD_DAV_EDIT_LINK_CONTEXT]]);
+        $json = $this->serializer->normalize($work, 'json', ['groups' => ['read']]);
 
         return $this->render('@ChillPerson/AccompanyingCourseWork/edit.html.twig', [
             'accompanyingCourse' => $work->getAccompanyingPeriod(),

From f8d95384ea9e600d7cee78195e91f0b6eb6ba26a Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Mon, 2 Sep 2024 18:05:12 +0200
Subject: [PATCH 157/375] Signature: action buttons positions

---
 .../public/vuejs/DocumentSignature/App.vue         | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b53592fdf..b0b356bf0 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -85,8 +85,10 @@
         >
           {{ $t("sign") }}
         </button>
+      </div>
+      <div class="col-6 d-flex justify-content-end">
         <button
-          class="btn btn-misc"
+          class="btn btn-misc me-2"
           :hidden="!userSignatureZones"
           @click="undoSign"
           v-if="signature.zones.length > 1"
@@ -94,16 +96,14 @@
           {{ $t("choose_another_signature") }}
         </button>
         <button
-          class="btn btn-misc"
+          class="btn btn-misc me-2"
           :hidden="!userSignatureZones"
           @click="undoSign"
           v-else
         >
           {{ $t("cancel") }}
         </button>
-      </div>
-      <div class="col-6">
-        <button class="btn float-end btn-delete" @click="undoSign">
+        <button class="btn btn-delete" @click="undoSign">
           {{ $t("cancel_signing") }}
         </button>
       </div>
@@ -393,7 +393,9 @@ const confirmSign = () => {
     .catch((error) => {
       console.log("Error while posting the signature", error);
       stopTrySigning();
-      $toast.error(`Erreur lors de la soumission de la signature: ${error.txt}`);
+      $toast.error(
+        `Erreur lors de la soumission de la signature: ${error.txt}`
+      );
     });
 };
 

From 3a959b7044ddb63b36a6d98b439ec60e6ec663eb Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 3 Sep 2024 10:28:41 +0200
Subject: [PATCH 158/375] Signature app: rename userSignatureZones, remove
 zoneIndex, sign on click

---
 .../public/vuejs/DocumentSignature/App.vue    | 77 ++++++++++++-------
 1 file changed, 49 insertions(+), 28 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b0b356bf0..b8372e63c 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -33,7 +33,7 @@
     >
       <div class="col-4 gap-2 d-grid">
         <button
-          :disabled="zone < 1"
+          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
           class="btn btn-light btn-sm"
           @click="turnSignature(-1)"
         >
@@ -41,7 +41,11 @@
         </button>
       </div>
       <div class="col-4 gap-2 d-grid">
-        <button class="btn btn-light btn-sm" @click="turnSignature(1)">
+        <button
+          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(1)"
+        >
           {{ $t("next_sign_zone") }}
         </button>
       </div>
@@ -80,8 +84,8 @@
       <div class="col-6">
         <button
           class="btn btn-action me-2"
-          :disabled="!userSignatureZones"
-          @click="modalOpen = true"
+          :disabled="!userSignatureZone"
+          @click="sign"
         >
           {{ $t("sign") }}
         </button>
@@ -89,7 +93,7 @@
       <div class="col-6 d-flex justify-content-end">
         <button
           class="btn btn-misc me-2"
-          :hidden="!userSignatureZones"
+          :hidden="!userSignatureZone"
           @click="undoSign"
           v-if="signature.zones.length > 1"
         >
@@ -97,7 +101,7 @@
         </button>
         <button
           class="btn btn-misc me-2"
-          :hidden="!userSignatureZones"
+          :hidden="!userSignatureZone"
           @click="undoSign"
           v-else
         >
@@ -143,8 +147,7 @@ const loading: Ref<boolean> = ref(false);
 const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
-const zone: Ref<number> = ref(0);
-let userSignatureZones: Ref<null | SignatureZone> = ref(null);
+let userSignatureZone: Ref<null | SignatureZone> = ref(null);
 let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
 
@@ -233,6 +236,15 @@ const hitSignature = (
   );
 };
 
+const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
+  userSignatureZone.value = z;
+  const ctx = canvas.getContext("2d");
+  if (ctx) {
+    setPage(page.value);
+    setTimeout(() => drawZone(z, ctx, canvas.width, canvas.height), 200);
+  }
+};
+
 const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
@@ -240,34 +252,39 @@ const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
       if (
         hitSignature(z, [e.offsetX, e.offsetY], canvas.width, canvas.height)
       ) {
-        const ctx = canvas.getContext("2d");
-        if (ctx) {
-          setPage(page.value);
-          setTimeout(() => drawZone(z, ctx, canvas.width, canvas.height), 200);
+        if (userSignatureZone.value === null) {
+          selectZone(z, canvas);
+        } else {
+          if (userSignatureZone.value.index === z.index) {
+            sign();
+          }
         }
-        userSignatureZones.value = z;
       }
     });
 
 const turnPage = async (upOrDown: number) => {
-  userSignatureZones.value = null;
+  userSignatureZone.value = null;
   page.value = page.value + upOrDown;
   await setPage(page.value);
   setTimeout(() => addZones(page.value), 200);
 };
 
 const turnSignature = async (upOrDown: number) => {
-  userSignatureZones.value = null;
-  if (zone.value < signature.zones.length - 1) {
-    zone.value = zone.value + upOrDown;
-  } else {
-    zone.value = 0;
+  let zoneIndex = userSignatureZone.value?.index ?? -1;
+  if (zoneIndex < -1) {
+    zoneIndex = -1;
   }
-  let currentZone = signature.zones[zone.value];
+  if (zoneIndex < signature.zones.length) {
+    zoneIndex = zoneIndex + upOrDown;
+  } else {
+    zoneIndex = 0;
+  }
+  let currentZone = signature.zones[zoneIndex];
   if (currentZone) {
     page.value = currentZone.PDFPage.index + 1;
-    await setPage(page.value);
-    setTimeout(() => addZones(page.value), 200);
+    userSignatureZone.value = currentZone;
+    const canvas = document.querySelectorAll("canvas")[0];
+    selectZone(currentZone, canvas);
   }
 };
 
@@ -286,7 +303,9 @@ const drawZone = (
   const scaleYToCanvas = (y: number) =>
     Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
   ctx.strokeStyle =
-    userSignatureZones.value === null ? unselectedBlue : selectedBlue;
+    userSignatureZone.value?.index === zone.index
+      ? selectedBlue
+      : unselectedBlue;
   ctx.lineWidth = 2;
   ctx.lineJoin = "bevel";
   ctx.strokeRect(
@@ -300,7 +319,7 @@ const drawZone = (
   ctx.fillStyle = "black";
   const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
   const yText = scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height) / 2;
-  if (userSignatureZones.value !== null) {
+  if (userSignatureZone.value?.index === zone.index) {
     ctx.fillStyle = selectedBlue;
     ctx.fillText("Signer ici", xText, yText);
   } else {
@@ -379,12 +398,14 @@ const checkForReady = () => {
   }
 };
 
+const sign = () => (modalOpen.value = true);
+
 const confirmSign = () => {
   loading.value = true;
   const url = `/api/1.0/document/workflow/${signature.id}/signature-request`;
   const body = {
     storedObject: signature.storedObject,
-    zone: userSignatureZones.value,
+    zone: userSignatureZone.value,
   };
   makeFetch("POST", url, body)
     .then((r) => {
@@ -402,12 +423,12 @@ const confirmSign = () => {
 const undoSign = async () => {
   // const canvas = document.querySelectorAll("canvas")[0];
   // const ctx = canvas.getContext("2d");
-  // if (ctx && userSignatureZones.value) {
-  //   //drawZone(userSignatureZones.value, ctx, canvas.width, canvas.height);
+  // if (ctx && userSignatureZone.value) {
+  //   //drawZone(userSignatureZone.value, ctx, canvas.width, canvas.height);
   // }
   await setPage(page.value);
   setTimeout(() => addZones(page.value), 200);
-  userSignatureZones.value = null;
+  userSignatureZone.value = null;
 };
 
 downloadAndOpen();

From 86896a12e614d6d1ecd80c5c705e0c8a226d2cf0 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Tue, 3 Sep 2024 11:25:05 +0200
Subject: [PATCH 159/375] Signature: download signed doc if signed

---
 .../Resources/public/vuejs/DocumentSignature/App.vue     | 9 ++++-----
 .../Resources/public/vuejs/DocumentSignature/index.ts    | 2 +-
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b8372e63c..bc4bfc544 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -347,9 +347,7 @@ const checkSignature = () => {
   return makeFetch("GET", url)
     .then((r) => {
       signedState.value = r as SignedState;
-      if (signedState.value === "pending") {
-        checkForReady();
-      }
+      checkForReady();
     })
     .catch((error) => {
       signedState.value = "error";
@@ -370,8 +368,8 @@ const stopTrySigning = () => {
 
 const checkForReady = () => {
   if (tryForReady > maxTryForReady) {
-    signedState.value = "error";
     stopTrySigning();
+    tryForReady = 0;
     console.log("Reached the maximum number of tentative to try signing");
     $toast.error(
       "Le nombre maximum de tentatives pour essayer de signer est atteint"
@@ -393,7 +391,8 @@ const checkForReady = () => {
   } else {
     stopTrySigning();
     if (signedState.value === "signed") {
-      //TODO recharger le document signé
+      userSignatureZone.value = null;
+      downloadAndOpen();
     }
   }
 };
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 264622e72..77f2ee48c 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -10,7 +10,7 @@ const appMessages = {
         you_are_going_to_sign: 'Vous allez signer le document',
         signature_confirmation: 'Confirmation de la signature',
         sign: 'Signer',
-        choose_another_signature: 'Choisir une autre signature',
+        choose_another_signature: 'Choisir une autre zone de signature',
         cancel: 'Annuler',
         cancel_signing: 'Refuser de signer',
         last_sign_zone: 'Zone de signature précédente',

From 3d49c959e00335c3628c75e2e64078f569345fc1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 2 Sep 2024 16:24:23 +0200
Subject: [PATCH 160/375] Update DropFile to handle object versioning

---
 .gitlab-ci.yml                                |   2 +-
 .../TempUrlOpenstackGenerator.php             |   8 +-
 .../Controller/AsyncUploadController.php      |  10 +-
 .../Entity/StoredObject.php                   |  21 +--
 .../Entity/StoredObjectVersion.php            |   2 +-
 .../DataMapper/StoredObjectDataMapper.php     |  11 +-
 .../StoredObjectDataTransformer.php           |   4 +-
 .../Repository/StoredObjectRepository.php     |   5 +
 .../StoredObjectRepositoryInterface.php       |   2 +
 .../helper.ts => js/async-upload/uploader.ts} |  18 +-
 .../public/module/async_upload/index.ts       |  14 +-
 .../Resources/public/types.ts                 |  25 ++-
 .../vuejs/DocumentActionButtonsGroup.vue      |  55 ++++--
 .../public/vuejs/DocumentSignature/App.vue    |   8 +-
 .../public/vuejs/DropFileWidget/DropFile.vue  |  52 +++---
 .../vuejs/DropFileWidget/DropFileModal.vue    |  69 +++++++
 .../vuejs/DropFileWidget/DropFileWidget.vue   |  14 +-
 .../StoredObjectButton/ConvertButton.vue      |   4 +-
 .../StoredObjectButton/DesktopEditButton.vue  |   3 +
 .../StoredObjectButton/DownloadButton.vue     |  28 +--
 .../StoredObjectButton/WopiEditButton.vue     |   5 +-
 .../vuejs/StoredObjectButton/helpers.ts       |  53 ++++--
 .../vuejs/_components/AddAsyncUpload.vue      | 174 ------------------
 .../_components/AddAsyncUploadDownloader.vue  |  45 -----
 .../Normalizer/StoredObjectDenormalizer.php   |  60 ++++--
 .../Normalizer/StoredObjectNormalizer.php     |   2 +-
 .../StoredObjectVersionNormalizer.php         |  45 +++++
 .../Service/StoredObjectManager.php           |  35 +++-
 .../Service/StoredObjectManagerInterface.php  |   6 +
 .../TempUrlOpenstackGeneratorTest.php         |  80 +++++++-
 .../OpenstackObjectStore/file-to-upload.txt   |   1 +
 .../Tests/Controller/WebdavControllerTest.php |  13 +-
 .../Tests/Entity/StoredObjectTest.php         |  39 +---
 .../Tests/Form/StoredObjectTypeTest.php       |  62 ++++++-
 .../StoredObjectDenormalizerTest.php          | 144 +++++++++++++++
 .../StoredObjectVersionNormalizerTest.php     |  27 ++-
 .../Constraints/AsyncFileExistsValidator.php  |  63 ++-----
 .../WorkflowAddSignatureController.php        |  64 +++++++
 .../Controller/WorkflowController.php         |  37 ----
 .../components/FormEvaluation.vue             |  41 ++---
 .../vuejs/AccompanyingCourseWorkEdit/store.js |  14 +-
 tsconfig.json                                 |  31 ++++
 42 files changed, 857 insertions(+), 539 deletions(-)
 rename src/Bundle/ChillDocStoreBundle/Resources/public/{vuejs/_components/helper.ts => js/async-upload/uploader.ts} (75%)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileModal.vue
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUpload.vue
 delete mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUploadDownloader.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/file-to-upload.txt
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectDenormalizerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
 create mode 100644 tsconfig.json

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index bb5c8dd5d..e493e6556 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -122,7 +122,7 @@ unit_tests:
         - php tests/console chill:db:sync-views --env=test
         - php -d memory_limit=2G tests/console cache:clear --env=test
         - php -d memory_limit=3G tests/console doctrine:fixtures:load -n --env=test
-        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive
+        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive --exclude-group openstack-integration
     artifacts:
         expire_in: 1 day
         paths:
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
index 3ba1f0dea..19a52f71d 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
@@ -182,21 +182,19 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
         return \hash_hmac('sha512', $body, $this->key, false);
     }
 
-    private function generateSignature($method, $url, \DateTimeImmutable $expires)
+    private function generateSignature(string $method, $url, \DateTimeImmutable $expires)
     {
         if ('POST' === $method) {
             return $this->generateSignaturePost($url, $expires);
         }
 
         $path = \parse_url((string) $url, PHP_URL_PATH);
-
         $body = sprintf(
             "%s\n%s\n%s",
-            $method,
+            strtoupper($method),
             $expires->format('U'),
             $path
-        )
-        ;
+        );
 
         $this->logger->debug(
             'generate signature GET',
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
index 52e0882a1..cdbb94d29 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/AsyncUploadController.php
@@ -15,6 +15,7 @@ use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\MainBundle\Entity\User;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
@@ -99,8 +100,15 @@ final readonly class AsyncUploadController
             $request->query->has('expires_delay') ? $request->query->getInt('expires_delay') : null
         );
 
+        $user = $this->security->getUser();
+        $userId = match ($user instanceof User) {
+            true => $user->getId(),
+            false => $user->getUserIdentifier(),
+        };
+
         $this->chillLogger->notice('[Privacy Event] a request to see a document has been granted', [
-            'doc_uuid' => $storedObject->getUuid(),
+            'doc_uuid' => $storedObject->getUuid()->toString(),
+            'user_id' => $userId,
         ]);
 
         return new JsonResponse(
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 6ed52716d..dabcec8eb 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -23,6 +23,7 @@ use Ramsey\Uuid\Uuid;
 use Ramsey\Uuid\UuidInterface;
 use Random\RandomException;
 use Symfony\Component\Serializer\Annotation as Serializer;
+use Symfony\Component\Validator\Constraints as Assert;
 
 /**
  * Represent a document stored in an object store.
@@ -37,7 +38,6 @@ use Symfony\Component\Serializer\Annotation as Serializer;
  */
 #[ORM\Entity]
 #[ORM\Table('stored_object', schema: 'chill_doc')]
-#[AsyncFileExists(message: 'The file is not stored properly')]
 class StoredObject implements Document, TrackCreationInterface
 {
     use TrackCreationTrait;
@@ -91,7 +91,7 @@ class StoredObject implements Document, TrackCreationInterface
     /**
      * @var Collection<int, StoredObjectVersion>
      */
-    #[ORM\OneToMany(targetEntity: StoredObjectVersion::class, cascade: ['persist'], mappedBy: 'storedObject', orphanRemoval: true)]
+    #[ORM\OneToMany(mappedBy: 'storedObject', targetEntity: StoredObjectVersion::class, cascade: ['persist'], orphanRemoval: true)]
     private Collection $versions;
 
     /**
@@ -127,6 +127,8 @@ class StoredObject implements Document, TrackCreationInterface
         return \DateTime::createFromImmutable($this->createdAt);
     }
 
+    #[AsyncFileExists(message: 'The file is not stored properly')]
+    #[Assert\NotNull(message: 'The store object version must be present')]
     public function getCurrentVersion(): ?StoredObjectVersion
     {
         $maxVersion = null;
@@ -350,20 +352,7 @@ class StoredObject implements Document, TrackCreationInterface
     /**
      * @deprecated
      */
-    public function saveHistory(): void
-    {
-        if ('' === $this->getFilename()) {
-            return;
-        }
-
-        $this->datas['history'][] = [
-            'filename' => $this->getFilename(),
-            'iv' => $this->getIv(),
-            'key_infos' => $this->getKeyInfos(),
-            'type' => $this->getType(),
-            'before' => (new \DateTimeImmutable('now'))->getTimestamp(),
-        ];
-    }
+    public function saveHistory(): void {}
 
     public static function generatePrefix(): string
     {
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index 84b10688f..8526cd9a9 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -86,7 +86,7 @@ class StoredObjectVersion implements TrackCreationInterface
     {
         try {
             $suffix = base_convert(bin2hex(random_bytes(8)), 16, 36);
-        } catch (RandomException $e) {
+        } catch (RandomException) {
             $suffix = uniqid(more_entropy: true);
         }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php b/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
index 37d28c7a4..264f52365 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/DataMapper/StoredObjectDataMapper.php
@@ -55,15 +55,8 @@ class StoredObjectDataMapper implements DataMapperInterface
             return;
         }
 
-        /** @var StoredObject $viewData */
-        if ($viewData->getFilename() !== $forms['stored_object']->getData()['filename']) {
-            $viewData->registerVersion(
-                $forms['stored_object']->getData()['iv'],
-                $forms['stored_object']->getData()['keyInfos'],
-                $forms['stored_object']->getData()['type'],
-                $forms['stored_object']->getData()['filename'],
-            );
-        }
+        /* @var StoredObject $viewData */
+        $viewData = $forms['stored_object']->getData();
 
         if (array_key_exists('title', $forms)) {
             $viewData->setTitle($forms['title']->getData());
diff --git a/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php b/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
index b5c7c3930..8df3e3eb9 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/DataTransformer/StoredObjectDataTransformer.php
@@ -19,7 +19,7 @@ use Symfony\Component\Serializer\SerializerInterface;
 class StoredObjectDataTransformer implements DataTransformerInterface
 {
     public function __construct(
-        private readonly SerializerInterface $serializer
+        private readonly SerializerInterface $serializer,
     ) {}
 
     public function transform(mixed $value): mixed
@@ -41,6 +41,6 @@ class StoredObjectDataTransformer implements DataTransformerInterface
             return null;
         }
 
-        return json_decode((string) $value, true, 10, JSON_THROW_ON_ERROR);
+        return $this->serializer->deserialize($value, StoredObject::class, 'json');
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
index 2f39f2021..d48792bc9 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepository.php
@@ -64,6 +64,11 @@ final readonly class StoredObjectRepository implements StoredObjectRepositoryInt
         return $qb->getQuery()->toIterable(hydrationMode: Query::HYDRATE_OBJECT);
     }
 
+    public function findOneByUUID(string $uuid): ?StoredObject
+    {
+        return $this->repository->findOneBy(['uuid' => $uuid]);
+    }
+
     public function getClassName(): string
     {
         return StoredObject::class;
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
index 45dcfcf94..877847677 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectRepositoryInterface.php
@@ -23,4 +23,6 @@ interface StoredObjectRepositoryInterface extends ObjectRepository
      * @return iterable<StoredObject>
      */
     public function findByExpired(\DateTimeImmutable $expiredAtDate): iterable;
+
+    public function findOneByUUID(string $uuid): ?StoredObject;
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/helper.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/js/async-upload/uploader.ts
similarity index 75%
rename from src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/helper.ts
rename to src/Bundle/ChillDocStoreBundle/Resources/public/js/async-upload/uploader.ts
index 6d07e769d..592bd8111 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/helper.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/js/async-upload/uploader.ts
@@ -1,5 +1,5 @@
 import {makeFetch} from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
-import {PostStoreObjectSignature} from "../../types";
+import {PostStoreObjectSignature, StoredObject} from "../../types";
 
 const algo = 'AES-CBC';
 
@@ -21,11 +21,22 @@ const createFilename = (): string => {
     return text;
 };
 
-export const uploadFile = async (uploadFile: ArrayBuffer): Promise<string> => {
+/**
+ * Fetches a new stored object from the server.
+ *
+ * @async
+ * @function fetchNewStoredObject
+ * @returns {Promise<StoredObject>} A Promise that resolves to the newly created StoredObject.
+ */
+export const fetchNewStoredObject = async (): Promise<StoredObject> => {
+    return makeFetch("POST", '/api/1.0/doc-store/stored-object/create', null);
+}
+
+export const uploadVersion = async (uploadFile: ArrayBuffer, storedObject: StoredObject): Promise<string> => {
     const params = new URLSearchParams();
     params.append('expires_delay', "180");
     params.append('submit_delay', "180");
-    const asyncData: PostStoreObjectSignature = await makeFetch("GET", URL_POST + "?" + params.toString());
+    const asyncData: PostStoreObjectSignature = await makeFetch("GET", `/api/1.0/doc-store/async-upload/temp_url/${storedObject.uuid}/generate/post` + "?" + params.toString());
     const suffix = createFilename();
     const filename = asyncData.prefix + suffix;
     const formData = new FormData();
@@ -50,7 +61,6 @@ export const uploadFile = async (uploadFile: ArrayBuffer): Promise<string> => {
 }
 
 export const encryptFile = async (originalFile: ArrayBuffer): Promise<[ArrayBuffer, Uint8Array, JsonWebKey]> => {
-    console.log('encrypt', originalFile);
     const iv = crypto.getRandomValues(new Uint8Array(16));
     const key = await window.crypto.subtle.generateKey(keyDefinition, true, [ "encrypt", "decrypt" ]);
     const exportedKey = await window.crypto.subtle.exportKey('jwk', key);
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/module/async_upload/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/module/async_upload/index.ts
index b7df11323..50849d635 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/module/async_upload/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/module/async_upload/index.ts
@@ -1,7 +1,7 @@
 import {CollectionEventPayload} from "../../../../../ChillMainBundle/Resources/public/module/collection";
 import {createApp} from "vue";
 import DropFileWidget from "../../vuejs/DropFileWidget/DropFileWidget.vue"
-import {StoredObject, StoredObjectCreated} from "../../types";
+import {StoredObject, StoredObjectVersion} from "../../types";
 import {_createI18n} from "../../../../../ChillMainBundle/Resources/public/vuejs/_js/i18n";
 const i18n = _createI18n({});
 
@@ -30,15 +30,17 @@ const startApp = (divElement: HTMLDivElement, collectionEntry: null|HTMLLIElemen
             DropFileWidget,
         },
         methods: {
-            addDocument: function(object: StoredObjectCreated): void {
-                console.log('object added', object);
-                this.$data.existingDoc = object;
-                input_stored_object.value = JSON.stringify(object);
+            addDocument: function({stored_object, stored_object_version}: {stored_object: StoredObject, stored_object_version: StoredObjectVersion}): void {
+                console.log('object added', stored_object);
+                console.log('version added', stored_object_version);
+                this.$data.existingDoc = stored_object;
+                this.$data.existingDoc.currentVersion = stored_object_version;
+                input_stored_object.value = JSON.stringify(this.$data.existingDoc);
             },
             removeDocument: function(object: StoredObject): void {
                 console.log('catch remove document', object);
                 input_stored_object.value = "";
-                this.$data.existingDoc = null;
+                this.$data.existingDoc = undefined;
                 console.log('collectionEntry', collectionEntry);
 
                 if (null !== collectionEntry) {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 235b375ce..840421991 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -4,11 +4,11 @@ export type StoredObjectStatus = "empty"|"ready"|"failure"|"pending";
 
 export interface StoredObject {
     id: number,
-    title: string,
+    title: string|null,
     uuid: string,
     prefix: string,
     status: StoredObjectStatus,
-    currentVersion: null|StoredObjectVersion,
+    currentVersion: null|StoredObjectVersionCreated|StoredObjectVersionPersisted,
     totalVersions: number,
     datas: object,
     /** @deprecated */
@@ -32,21 +32,20 @@ export interface StoredObjectVersion {
      * filename of the object in the object storage
      */
     filename: string,
-    version: number,
-    id: number,
     iv: number[],
-    keyInfos: object,
+    keyInfos: JsonWebKey,
     type: string,
-    createdAt: DateTime|null,
-    createdBy: User|null,
 }
 
-export interface StoredObjectCreated {
-  status: "stored_object_created",
-  filename: string,
-  iv: Uint8Array,
-  keyInfos: object,
-  type: string,
+export interface StoredObjectVersionCreated extends StoredObjectVersion {
+    persisted: false,
+}
+
+export interface StoredObjectVersionPersisted extends StoredObjectVersionCreated {
+    version: number,
+    id: number,
+    createdAt: DateTime|null,
+    createdBy: User|null,
 }
 
 export interface StoredObjectStatusChange {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
index b4c53eacd..66546f2a5 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
@@ -1,20 +1,20 @@
 <template>
-  <div v-if="'ready' === props.storedObject.status || 'stored_object_created' === props.storedObject.status" class="btn-group">
+  <div v-if="isButtonGroupDisplayable" class="btn-group">
     <button :class="Object.assign({'btn': true, 'btn-outline-primary': true, 'dropdown-toggle': true, 'btn-sm': props.small})" type="button" data-bs-toggle="dropdown" aria-expanded="false">
       Actions
     </button>
     <ul class="dropdown-menu">
-      <li v-if="props.canEdit && is_extension_editable(props.storedObject.type) && props.storedObject.status !== 'stored_object_created'">
+      <li v-if="isEditableOnline">
         <wopi-edit-button :stored-object="props.storedObject" :classes="{'dropdown-item': true}" :execute-before-leave="props.executeBeforeLeave"></wopi-edit-button>
       </li>
-      <li v-if="props.canEdit && is_extension_editable(props.storedObject.type) && props.davLink !== undefined && props.davLinkExpiration !== undefined">
+      <li v-if="isEditableOnDesktop">
         <desktop-edit-button :classes="{'dropdown-item': true}" :edit-link="props.davLink" :expiration-link="props.davLinkExpiration"></desktop-edit-button>
       </li>
-      <li v-if="props.storedObject.type != 'application/pdf' && is_extension_viewable(props.storedObject.type) && props.canConvertPdf && props.storedObject.status !== 'stored_object_created'">
+      <li v-if="isConvertibleToPdf">
         <convert-button :stored-object="props.storedObject" :filename="filename" :classes="{'dropdown-item': true}"></convert-button>
       </li>
-      <li v-if="props.canDownload">
-        <download-button :stored-object="props.storedObject" :filename="filename" :classes="{'dropdown-item': true}"></download-button>
+      <li v-if="isDownloadable">
+        <download-button :stored-object="props.storedObject" :at-version="props.storedObject.currentVersion" :filename="filename" :classes="{'dropdown-item': true}"></download-button>
       </li>
     </ul>
   </div>
@@ -29,20 +29,20 @@
 
 <script lang="ts" setup>
 
-import {onMounted} from "vue";
+import {computed, onMounted} from "vue";
 import ConvertButton from "./StoredObjectButton/ConvertButton.vue";
 import DownloadButton from "./StoredObjectButton/DownloadButton.vue";
 import WopiEditButton from "./StoredObjectButton/WopiEditButton.vue";
 import {is_extension_editable, is_extension_viewable, is_object_ready} from "./StoredObjectButton/helpers";
 import {
-    StoredObject, StoredObjectCreated,
-    StoredObjectStatusChange,
+    StoredObject,
+    StoredObjectStatusChange, StoredObjectVersion,
     WopiEditButtonExecutableBeforeLeaveFunction
 } from "../types";
 import DesktopEditButton from "ChillDocStoreAssets/vuejs/StoredObjectButton/DesktopEditButton.vue";
 
 interface DocumentActionButtonsGroupConfig {
-  storedObject: StoredObject|StoredObjectCreated,
+  storedObject: StoredObject,
   small?: boolean,
   canEdit?: boolean,
   canDownload?: boolean,
@@ -95,11 +95,44 @@ let tryiesForReady = 0;
  */
 const maxTryiesForReady = 120;
 
+const isButtonGroupDisplayable = computed<boolean>(() => {
+    return isDownloadable.value || isEditableOnline.value || isEditableOnDesktop.value || isConvertibleToPdf.value;
+});
+
+const isDownloadable = computed<boolean>(() => {
+    return props.storedObject.status === 'ready'
+        // happens when the stored object version is just added, but not persisted
+        || (props.storedObject.currentVersion !== null && props.storedObject.status === 'empty')
+});
+
+const isEditableOnline = computed<boolean>(() => {
+    return props.storedObject.status === 'ready'
+        && props.storedObject._permissions.canEdit
+        && props.canEdit
+        && props.storedObject.currentVersion !== null
+        && is_extension_editable(props.storedObject.currentVersion.type)
+        && props.storedObject.currentVersion.persisted !== false;
+});
+
+const isEditableOnDesktop = computed<boolean>(() => {
+    return isEditableOnline.value;
+});
+
+const isConvertibleToPdf = computed<boolean>(() => {
+    return props.storedObject.status === 'ready'
+        && props.storedObject._permissions.canSee
+        && props.canConvertPdf
+        && props.storedObject.currentVersion !== null
+        && is_extension_viewable(props.storedObject.currentVersion.type)
+        && props.storedObject.currentVersion.type !== 'application/pdf'
+        && props.storedObject.currentVersion.persisted !== false;
+})
+
 const checkForReady = function(): void {
   if (
     'ready' === props.storedObject.status
+    || 'empty' === props.storedObject.status
     || 'failure' === props.storedObject.status
-    || 'stored_object_created' === props.storedObject.status
     // stop reloading if the page stays opened for a long time
     || tryiesForReady > maxTryiesForReady
   ) {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b53592fdf..5e37bcad2 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -132,7 +132,6 @@ console.log(PdfWorker); // incredible but this is needed
 
 import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
 import {
-  build_download_info_link,
   download_and_decrypt_doc,
 } from "../StoredObjectButton/helpers";
 
@@ -157,7 +156,6 @@ declare global {
 const $toast = useToast();
 
 const signature = window.signature;
-const urlInfo = build_download_info_link(signature.storedObject.filename);
 
 const mountPdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
@@ -189,11 +187,7 @@ const setPage = async (page: number) => {
 async function downloadAndOpen(): Promise<Blob> {
   let raw;
   try {
-    raw = await download_and_decrypt_doc(
-      urlInfo,
-      signature.storedObject.keyInfos,
-      new Uint8Array(signature.storedObject.iv)
-    );
+    raw = await download_and_decrypt_doc(signature.storedObject, signature.storedObject.currentVersion);
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
index 94b4f02fb..abac5d7b3 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
@@ -1,17 +1,17 @@
 <script setup lang="ts">
 
-import {StoredObject, StoredObjectCreated} from "../../types";
-import {encryptFile, uploadFile} from "../_components/helper";
+import {StoredObject, StoredObjectVersionCreated} from "../../types";
+import {encryptFile, fetchNewStoredObject, uploadVersion} from "../../js/async-upload/uploader";
 import {computed, ref, Ref} from "vue";
 
 interface DropFileConfig {
-    existingDoc?: StoredObjectCreated|StoredObject,
+    existingDoc?: StoredObject,
 }
 
-const props = defineProps<DropFileConfig>();
+const props = withDefaults(defineProps<DropFileConfig>(), {existingDoc: null});
 
 const emit = defineEmits<{
-    (e: 'addDocument', stored_object: StoredObjectCreated): void,
+    (e: 'addDocument', {stored_object_version: StoredObjectVersionCreated, stored_object: StoredObject}): void,
 }>();
 
 const is_dragging: Ref<boolean> = ref(false);
@@ -34,7 +34,6 @@ const onDragLeave = (e: Event) => {
 }
 
 const onDrop = (e: DragEvent) => {
-    console.log('on drop', e);
     e.preventDefault();
 
     const files = e.dataTransfer?.files;
@@ -64,7 +63,6 @@ const onZoneClick = (e: Event) => {
 
 const onFileChange = async (event: Event): Promise<void> => {
     const input = event.target as HTMLInputElement;
-    console.log('event triggered', input);
 
     if (input.files && input.files[0]) {
         console.log('file added', input.files[0]);
@@ -80,21 +78,28 @@ const onFileChange = async (event: Event): Promise<void> => {
 const handleFile = async (file: File): Promise<void> => {
     uploading.value = true;
     const type = file.type;
-    const buffer = await file.arrayBuffer();
-    const [encrypted, iv, jsonWebKey] = await encryptFile(buffer);
-    const filename = await uploadFile(encrypted);
 
-    console.log(iv, jsonWebKey);
-
-    const storedObject: StoredObjectCreated = {
-        filename: filename,
-        iv,
-        keyInfos: jsonWebKey,
-        type: type,
-        status: "stored_object_created",
+    // create a stored_object if not exists
+    let stored_object;
+    if (null === props.existingDoc) {
+        stored_object = await fetchNewStoredObject();
+    } else {
+        stored_object = props.existingDoc;
     }
 
-    emit('addDocument', storedObject);
+    const buffer = await file.arrayBuffer();
+    const [encrypted, iv, jsonWebKey] = await encryptFile(buffer);
+    const filename = await uploadVersion(encrypted, stored_object);
+
+    const stored_object_version: StoredObjectVersionCreated = {
+        filename: filename,
+        iv: Array.from(iv),
+        keyInfos: jsonWebKey,
+        type: type,
+        persisted: false,
+    }
+
+    emit('addDocument', {stored_object, stored_object_version});
     uploading.value = false;
 }
 
@@ -138,6 +143,11 @@ const handleFile = async (file: File): Promise<void> => {
         flex-direction: column;
         justify-content: center;
         align-items: center;
+
+        p {
+            // require for display in DropFileModal
+            text-align: center;
+        }
     }
 
     & > .area {
@@ -148,8 +158,4 @@ const handleFile = async (file: File): Promise<void> => {
         }
     }
 }
-
-div.chill-collection ul.list-entry li.entry:nth-child(2n) {
-
-}
 </style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileModal.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileModal.vue
new file mode 100644
index 000000000..db868131a
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileModal.vue
@@ -0,0 +1,69 @@
+<script setup lang="ts">
+
+import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
+import {StoredObject, StoredObjectVersion} from "../../types";
+import DropFileWidget from "ChillDocStoreAssets/vuejs/DropFileWidget/DropFileWidget.vue";
+import {computed, reactive} from "vue";
+import {useToast} from 'vue-toast-notification';
+
+interface DropFileConfig {
+    allowRemove: boolean,
+    existingDoc?: StoredObject,
+}
+
+const props = withDefaults(defineProps<DropFileConfig>(), {
+    allowRemove: false,
+});
+
+const emit = defineEmits<{
+    (e: 'addDocument', {stored_object: StoredObject, stored_object_version: StoredObjectVersion}): void,
+    (e: 'removeDocument'): void
+}>();
+
+const $toast = useToast();
+
+const state = reactive({showModal: false});
+
+const modalClasses = {"modal-dialog-centered": true, "modal-md": true};
+
+const buttonState = computed<'add'|'replace'>(() => {
+    if (props.existingDoc === undefined || props.existingDoc === null) {
+        return 'add';
+    }
+
+    return 'replace';
+})
+
+function onAddDocument({stored_object, stored_object_version}: {stored_object: StoredObject, stored_object_version: StoredObjectVersion}): void {
+    const message = buttonState.value === 'add' ? "Document ajouté" : "Document remplacé";
+    $toast.success(message);
+    emit('addDocument', {stored_object_version, stored_object});
+    state.showModal = false;
+}
+
+function onRemoveDocument(): void {
+   emit('removeDocument');
+}
+
+function openModal(): void {
+    state.showModal = true;
+}
+
+function closeModal(): void {
+    state.showModal = false;
+}
+</script>
+
+<template>
+    <button v-if="buttonState === 'add'" @click="openModal" class="btn btn-create">Ajouter un document</button>
+    <button v-else @click="openModal" class="btn btn-edit">Remplacer le document</button>
+    <modal v-if="state.showModal" :modal-dialog-class="modalClasses" @close="closeModal">
+        <template v-slot:body>
+            <drop-file-widget :existing-doc="existingDoc" :allow-remove="allowRemove" @add-document="onAddDocument" @remove-document="onRemoveDocument" ></drop-file-widget>
+        </template>
+    </modal>
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileWidget.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileWidget.vue
index a3a734eb6..dd37a56fd 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileWidget.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFileWidget.vue
@@ -1,13 +1,13 @@
 <script setup lang="ts">
 
-import {StoredObject, StoredObjectCreated} from "../../types";
+import {StoredObject, StoredObjectVersion} from "../../types";
 import {computed, ref, Ref} from "vue";
 import DropFile from "ChillDocStoreAssets/vuejs/DropFileWidget/DropFile.vue";
 import DocumentActionButtonsGroup from "ChillDocStoreAssets/vuejs/DocumentActionButtonsGroup.vue";
 
 interface DropFileConfig {
     allowRemove: boolean,
-    existingDoc?: StoredObjectCreated|StoredObject,
+    existingDoc?: StoredObject,
 }
 
 const props = withDefaults(defineProps<DropFileConfig>(), {
@@ -15,8 +15,8 @@ const props = withDefaults(defineProps<DropFileConfig>(), {
 });
 
 const emit = defineEmits<{
-    (e: 'addDocument', stored_object: StoredObjectCreated): void,
-    (e: 'removeDocument', stored_object: null): void
+    (e: 'addDocument', {stored_object: StoredObject, stored_object_version: StoredObjectVersion}): void,
+    (e: 'removeDocument'): void
 }>();
 
 const has_existing_doc = computed<boolean>(() => {
@@ -45,14 +45,14 @@ const dav_link_href = computed<string|undefined>(() => {
     return props.existingDoc._links?.dav_link?.href;
 })
 
-const onAddDocument = (s: StoredObjectCreated): void => {
-    emit('addDocument', s);
+const onAddDocument = ({stored_object, stored_object_version}: {stored_object: StoredObject, stored_object_version: StoredObjectVersion}): void => {
+    emit('addDocument', {stored_object, stored_object_version});
 }
 
 const onRemoveDocument = (e: Event): void => {
     e.stopPropagation();
     e.preventDefault();
-    emit('removeDocument', null);
+    emit('removeDocument');
 }
 
 </script>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/ConvertButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/ConvertButton.vue
index 8dae4b452..347dec676 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/ConvertButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/ConvertButton.vue
@@ -10,7 +10,7 @@
 import {build_convert_link, download_and_decrypt_doc, download_doc} from "./helpers";
 import mime from "mime";
 import {reactive} from "vue";
-import {StoredObject, StoredObjectCreated} from "../../types";
+import {StoredObject} from "../../types";
 
 interface ConvertButtonConfig {
   storedObject: StoredObject,
@@ -45,7 +45,7 @@ async function download_and_open(event: Event): Promise<void> {
 
 </script>
 
-<style scoped lang="sass">
+<style scoped lang="scss">
 i.fa::before {
    color: var(--bs-dropdown-link-hover-color);
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DesktopEditButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DesktopEditButton.vue
index ef0d0d376..321beb2ae 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DesktopEditButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DesktopEditButton.vue
@@ -63,4 +63,7 @@ const editionUntilFormatted = computed<string>(() => {
 .desktop-edit {
     text-align: center;
 }
+i.fa::before {
+    color: var(--bs-dropdown-link-hover-color);
+}
 </style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
index f3f251d80..56533b401 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
@@ -11,12 +11,13 @@
 
 <script lang="ts" setup>
 import {reactive, ref, nextTick, onMounted} from "vue";
-import {build_download_info_link, download_and_decrypt_doc} from "./helpers";
+import {download_and_decrypt_doc} from "./helpers";
 import mime from "mime";
-import {StoredObject, StoredObjectCreated} from "../../types";
+import {StoredObject, StoredObjectVersion} from "../../types";
 
 interface DownloadButtonConfig {
-    storedObject: StoredObject|StoredObjectCreated,
+    storedObject: StoredObject,
+    atVersion: StoredObjectVersion,
     classes: { [k: string]: boolean },
     filename?: string,
 }
@@ -33,8 +34,9 @@ const state: DownloadButtonState = reactive({is_ready: false, is_running: false,
 const open_button = ref<HTMLAnchorElement | null>(null);
 
 function buildDocumentName(): string {
-    const document_name = props.filename || 'document';
-    const ext = mime.getExtension(props.storedObject.type);
+    const document_name = props.filename ?? props.storedObject.title ?? 'document';
+
+    const ext = mime.getExtension(props.atVersion.type);
 
     if (null !== ext) {
         return document_name + '.' + ext;
@@ -58,38 +60,26 @@ async function download_and_open(event: Event): Promise<void> {
         return;
     }
 
-    const urlInfo = build_download_info_link(props.storedObject.filename);
     let raw;
 
     try {
-        raw = await download_and_decrypt_doc(urlInfo, props.storedObject.keyInfos, new Uint8Array(props.storedObject.iv));
+        raw = await download_and_decrypt_doc(props.storedObject, props.atVersion);
     } catch (e) {
         console.error("error while downloading and decrypting document");
         console.error(e);
         throw e;
     }
 
-    console.log('document downloading (and decrypting) successfully');
-
-    console.log('creating the url')
     state.href_url = window.URL.createObjectURL(raw);
-    console.log('url created', state.href_url);
     state.is_running = false;
     state.is_ready = true;
-    console.log('new button marked as ready');
-    console.log('will click on button');
-
-    console.log('openbutton is now', open_button.value);
 
     await nextTick();
-    console.log('next tick actions');
-    console.log('openbutton after next tick', open_button.value);
     open_button.value?.click();
-    console.log('open button should have been clicked');
 }
 </script>
 
-<style scoped lang="sass">
+<style scoped lang="scss">
 i.fa::before {
    color: var(--bs-dropdown-link-hover-color);
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/WopiEditButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/WopiEditButton.vue
index e0c14a919..135392c1e 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/WopiEditButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/WopiEditButton.vue
@@ -8,7 +8,7 @@
 <script lang="ts" setup>
 import WopiEditButton from "./WopiEditButton.vue";
 import {build_wopi_editor_link} from "./helpers";
-import {StoredObject, StoredObjectCreated, WopiEditButtonExecutableBeforeLeaveFunction} from "../../types";
+import {StoredObject, WopiEditButtonExecutableBeforeLeaveFunction} from "../../types";
 
 interface WopiEditButtonConfig {
   storedObject: StoredObject,
@@ -22,7 +22,6 @@ const props = defineProps<WopiEditButtonConfig>();
 let executed = false;
 
 async function beforeLeave(event: Event): Promise<true> {
-  console.log(executed);
   if (props.executeBeforeLeave === undefined || executed === true) {
     return Promise.resolve(true);
   }
@@ -39,7 +38,7 @@ async function beforeLeave(event: Event): Promise<true> {
 }
 </script>
 
-<style scoped lang="sass">
+<style scoped lang="scss">
 i.fa::before {
    color: var(--bs-dropdown-link-hover-color);
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
index c0b0fa940..a69d29605 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
@@ -1,4 +1,5 @@
-import {StoredObject, StoredObjectStatus, StoredObjectStatusChange} from "../../types";
+import {StoredObject, StoredObjectStatus, StoredObjectStatusChange, StoredObjectVersion} from "../../types";
+import {makeFetch} from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 
 const MIMES_EDIT = new Set([
   'application/vnd.ms-powerpoint',
@@ -97,6 +98,13 @@ const MIMES_VIEW = new Set([
   ]
 ])
 
+export interface SignedUrlGet {
+    method: 'GET'|'HEAD',
+    url: string,
+    expires: number,
+    object_name: string,
+}
+
 function is_extension_editable(mimeType: string): boolean {
   return MIMES_EDIT.has(mimeType);
 }
@@ -109,8 +117,20 @@ function build_convert_link(uuid: string) {
   return `/chill/wopi/convert/${uuid}`;
 }
 
-function build_download_info_link(object_name: string) {
-  return `/asyncupload/temp_url/generate/GET?object_name=${object_name}`;
+function build_download_info_link(storedObject: StoredObject, atVersion: null|StoredObjectVersion): string {
+    const url = `/api/1.0/doc-store/async-upload/temp_url/${storedObject.uuid}/generate/get`;
+
+    if (null !== atVersion) {
+        const params = new URLSearchParams({version: atVersion.filename});
+
+        return url + '?' + params.toString();
+    }
+
+    return url;
+}
+
+async function download_info_link(storedObject: StoredObject, atVersion: null|StoredObjectVersion): Promise<SignedUrlGet> {
+    return makeFetch('GET', build_download_info_link(storedObject, atVersion));
 }
 
 function build_wopi_editor_link(uuid: string, returnPath?: string) {
@@ -131,43 +151,39 @@ function download_doc(url: string): Promise<Blob> {
   });
 }
 
-async function download_and_decrypt_doc(urlGenerator: string, keyData: JsonWebKey, iv: Uint8Array): Promise<Blob>
+async function download_and_decrypt_doc(storedObject: StoredObject, atVersion: null|StoredObjectVersion): Promise<Blob>
 {
    const algo = 'AES-CBC';
-   // get an url to download the object
-   const downloadInfoResponse = await window.fetch(urlGenerator);
 
-   if (!downloadInfoResponse.ok) {
-     throw new Error("error while downloading url " + downloadInfoResponse.status + " " + downloadInfoResponse.statusText);
+   const atVersionToDownload = atVersion ?? storedObject.currentVersion;
+
+   if (null === atVersionToDownload) {
+       throw new Error("no version associated to stored object");
    }
 
-   const downloadInfo = await downloadInfoResponse.json() as {url: string};
+   const downloadInfo= await download_info_link(storedObject, atVersionToDownload);
+
    const rawResponse = await window.fetch(downloadInfo.url);
 
    if (!rawResponse.ok) {
      throw new Error("error while downloading raw file " + rawResponse.status + " " + rawResponse.statusText);
    }
 
-   if (iv.length === 0) {
-     console.log('returning document immediatly');
+   if (atVersionToDownload.iv.length === 0) {
      return rawResponse.blob();
    }
 
-   console.log('start decrypting doc');
-
    const rawBuffer = await rawResponse.arrayBuffer();
-
    try {
      const key = await window.crypto.subtle
-       .importKey('jwk', keyData, { name: algo }, false, ['decrypt']);
-     console.log('key created');
+       .importKey('jwk', atVersionToDownload.keyInfos, { name: algo }, false, ['decrypt']);
+     const iv = Uint8Array.from(atVersionToDownload.iv);
      const decrypted = await window.crypto.subtle
        .decrypt({ name: algo, iv: iv }, key, rawBuffer);
-     console.log('doc decrypted');
 
      return Promise.resolve(new Blob([decrypted]));
    } catch (e) {
-     console.error('get error while keys and decrypt operations');
+     console.error('encounter error while keys and decrypt operations');
      console.error(e);
 
      throw e;
@@ -188,7 +204,6 @@ async function is_object_ready(storedObject: StoredObject): Promise<StoredObject
 
 export {
   build_convert_link,
-  build_download_info_link,
   build_wopi_editor_link,
   download_and_decrypt_doc,
   download_doc,
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUpload.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUpload.vue
deleted file mode 100644
index 634e9ed45..000000000
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUpload.vue
+++ /dev/null
@@ -1,174 +0,0 @@
-<template>
-   <a :class="btnClasses" :title="$t(buttonTitle)" @click="openModal">
-      <span>{{ $t(buttonTitle) }}</span>
-   </a>
-   <teleport to="body">
-      <div>
-         <modal v-if="modal.showModal"
-            :modalDialogClass="modal.modalDialogClass"
-            @close="modal.showModal = false">
-
-            <template v-slot:header>
-               {{ $t('upload_a_document') }}
-            </template>
-
-            <template v-slot:body>
-                <div id="dropZoneWrapper" ref="dropZoneWrapper">
-                    <div
-                        data-stored-object="data-stored-object"
-                        :data-label-preparing="$t('data_label_preparing')"
-                        :data-label-quiet-button="$t('data_label_quiet_button')"
-                        :data-label-ready="$t('data_label_ready')"
-                        :data-dict-file-too-big="$t('data_dict_file_too_big')"
-                        :data-dict-default-message="$t('data_dict_default_message')"
-                        :data-dict-remove-file="$t('data_dict_remove_file')"
-                        :data-dict-max-files-exceeded="$t('data_dict_max_files_exceeded')"
-                        :data-dict-cancel-upload="$t('data_dict_cancel_upload')"
-                        :data-dict-cancel-upload-confirm="$t('data_dict_cancel_upload_confirm')"
-                        :data-dict-upload-canceled="$t('data_dict_upload_canceled')"
-                        :data-dict-remove="$t('data_dict_remove')"
-                        :data-allow-remove="!options.required"
-                        data-temp-url-generator="/asyncupload/temp_url/generate/GET">
-                        <input
-                           type="hidden"
-                           data-async-file-upload="data-async-file-upload"
-                           data-generate-temp-url-post="/asyncupload/temp_url/generate/post?expires_delay=180&amp;submit_delay=3600"
-                           data-temp-url-get="/asyncupload/temp_url/generate/GET"
-                           :data-max-files="options.maxFiles"
-                           :data-max-post-size="options.maxPostSize"
-                           :v-model="dataAsyncFileUpload"
-                        >
-                        <input
-                           type="hidden"
-                           data-stored-object-key="1"
-                        >
-                        <input
-                           type="hidden"
-                           data-stored-object-iv="1"
-                        >
-                        <input
-                           type="hidden"
-                           data-async-file-type="1"
-                        >
-                    </div>
-                </div>
-            </template>
-
-            <template v-slot:footer>
-               <button class="btn btn-create"
-                  @click.prevent="saveDocument">
-                  {{ $t('action.add')}}
-            </button>
-            </template>
-
-         </modal>
-      </div>
-   </teleport>
-</template>
-
-<script>
-import Modal from 'ChillMainAssets/vuejs/_components/Modal';
-import { searchForZones } from '../../module/async_upload/uploader';
-import { makeFetch } from "ChillMainAssets/lib/api/apiMethods";
-
-const i18n = {
-   messages: {
-      fr: {
-         upload_a_document: "Téléversez un document",
-         data_label_preparing: "Chargement...",
-         data_label_quiet_button: "Téléchargez le fichier existant",
-         data_label_ready: "Prêt à montrer",
-         data_dict_file_too_big: "Fichier trop volumineux",
-         data_dict_default_message: "Glissez votre fichier ou cliquez ici",
-         data_dict_remove_file: "Enlevez votre fichier pour en téléversez un autre",
-         data_dict_max_files_exceeded: "Nombre maximum de fichiers atteint. Enlevez les fichiers précédents",
-         data_dict_cancel_upload: "Annulez le téléversement",
-         data_dict_cancel_upload_confirm: "Êtes-vous sûr·e de vouloir annuler ce téléversement?",
-         data_dict_upload_canceled: "Téléversement annulé",
-         data_dict_remove: "Enlevez le fichier existant",
-      }
-   }
-};
-
-export default {
-   name: "AddAsyncUpload",
-   components: {
-      Modal
-   },
-   i18n,
-    props: {
-       buttonTitle: {
-           type: String,
-           default: 'Ajouter un document',
-       },
-        options: {
-            type: Object,
-            default: {
-                maxFiles: 1,
-                maxPostSize: 262144000, // 250MB
-                required: false,
-            }
-        },
-        btnClasses: {
-           type: Object,
-            default: {
-                btn: true,
-                'btn-create': true
-            }
-        }
-    },
-   emits: ['addDocument'],
-   data() {
-      return {
-         modal: {
-            showModal: false,
-            modalDialogClass: "modal-dialog-centered modal-md"
-         },
-      }
-   },
-   updated() {
-     if (this.modal.showModal){
-         searchForZones(this.$refs.dropZoneWrapper);
-     }
-   },
-   methods: {
-      openModal() {
-         this.modal.showModal = true;
-      },
-      saveDocument() {
-         const dropzone = this.$refs.dropZoneWrapper;
-         if (dropzone) {
-            const inputKey = dropzone.querySelector('input[data-stored-object-key]');
-            const inputIv  = dropzone.querySelector('input[data-stored-object-iv]');
-            const inputObject = dropzone.querySelector('input[data-async-file-upload]');
-            const inputType = dropzone.querySelector('input[data-async-file-type]');
-
-            const url = '/api/1.0/docstore/stored-object.json';
-            const body = {
-               filename: inputObject.value,
-               keyInfos: JSON.parse(inputKey.value),
-               iv: JSON.parse(inputIv.value),
-               type: inputType.value,
-            };
-            makeFetch('POST', url, body)
-               .then(r => {
-                  this.$emit("addDocument", r);
-                  this.modal.showModal = false;
-               })
-               .catch((error) => {
-                  if (error.name === 'ValidationException') {
-                     for (let v of error.violations) {
-                        this.$toast.open({message: v });
-                     }
-                  } else {
-                     console.error(error);
-                     this.$toast.open({message: 'An error occurred'});
-                  }
-               });
-         } else {
-            this.$toast.open({message: 'An error occurred - drop zone not found'});
-         }
-      }
-   }
-}
-</script>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUploadDownloader.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUploadDownloader.vue
deleted file mode 100644
index 781c47d6f..000000000
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/_components/AddAsyncUploadDownloader.vue
+++ /dev/null
@@ -1,45 +0,0 @@
-<template>
-  <a
-    class="btn btn-download"
-    :title="$t(buttonTitle)"
-    :data-key=JSON.stringify(storedObject.keyInfos)
-    :data-iv=JSON.stringify(storedObject.iv)
-    :data-mime-type=storedObject.type
-    :data-label-preparing="$t('dataLabelPreparing')"
-    :data-label-ready="$t('dataLabelReady')"
-    :data-temp-url-get-generator="url"
-    @click.once="downloadDocument">
-  </a>
-</template>
-
-<script>
-import { download } from '../../module/async_upload/downloader';
-
-const i18n = {
-  messages: {
-    fr: {
-      dataLabelPreparing: "Chargement...",
-      dataLabelReady: "",
-    }
-  }
-};
-
-export default {
-  name: "AddAsyncUploadDownloader",
-  i18n,
-  props: [
-   'buttonTitle',
-   'storedObject'
-  ],
-  computed: {
-    url() {
-      return `/asyncupload/temp_url/generate/GET?object_name=${this.storedObject.filename}`;
-    }
-  },
-  methods: {
-    downloadDocument(e) {
-      download(e.target);
-    }
-  }
-}
-</script>
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectDenormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectDenormalizer.php
index 2c96f7faa..fe6cbebb0 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectDenormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectDenormalizer.php
@@ -12,37 +12,75 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Serializer\Normalizer;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Chill\DocStoreBundle\Repository\StoredObjectRepository;
+use Chill\DocStoreBundle\Repository\StoredObjectRepositoryInterface;
+use Symfony\Component\Form\Exception\TransformationFailedException;
+use Symfony\Component\Serializer\Exception\LogicException;
 use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
 use Symfony\Component\Serializer\Normalizer\ObjectToPopulateTrait;
 
+/**
+ * Implements the DenormalizerInterface and is responsible for denormalizing data into StoredObject objects.
+ *
+ * If a new StoredObjectVersion has been added to the StoredObject, the version is created here and registered
+ * to the StoredObject.
+ */
 class StoredObjectDenormalizer implements DenormalizerInterface
 {
     use ObjectToPopulateTrait;
 
-    public function __construct(private readonly StoredObjectRepository $storedObjectRepository) {}
+    public function __construct(private readonly StoredObjectRepositoryInterface $storedObjectRepository) {}
 
-    public function denormalize($data, $type, $format = null, array $context = [])
+    public function denormalize($data, $type, $format = null, array $context = []): ?StoredObject
     {
-        $object = $this->extractObjectToPopulate(StoredObject::class, $context);
+        $storedObject = $this->extractObjectToPopulate(StoredObject::class, $context);
 
-        if (null !== $object) {
-            return $object;
+        if (null === $storedObject) {
+            if (array_key_exists('uuid', $data)) {
+                $storedObject = $this->storedObjectRepository->findOneByUUID($data['uuid']);
+            } else {
+                $storedObject = $this->storedObjectRepository->find($data['id']);
+            }
+
+            if (null === $storedObject) {
+                throw new LogicException('Object not found');
+            }
         }
 
-        return $this->storedObjectRepository->find($data['id']);
+        $storedObject->setTitle($data['title'] ?? $storedObject->getTitle());
+
+        if (true === ($data['currentVersion']['persisted'] ?? true)) {
+            // nothing has change, stop here
+            return $storedObject;
+        }
+
+        if ([] !== $diff = array_diff(['filename', 'iv', 'keyInfos', 'type'], array_keys($data['currentVersion']))) {
+            throw new TransformationFailedException(sprintf('missing some keys in currentVersion: %s', implode(', ', $diff)));
+        }
+
+        $storedObject->registerVersion(
+            $data['currentVersion']['iv'],
+            $data['currentVersion']['keyInfos'],
+            $data['currentVersion']['type'],
+            $data['currentVersion']['filename']
+        );
+
+        return $storedObject;
     }
 
-    public function supportsDenormalization($data, $type, $format = null)
+    public function supportsDenormalization($data, $type, $format = null): bool
     {
-        if (false === \is_array($data)) {
+        if (StoredObject::class !== $type) {
             return false;
         }
 
-        if (false === \array_key_exists('id', $data)) {
+        if (false === is_array($data)) {
             return false;
         }
 
-        return StoredObject::class === $type;
+        if (array_key_exists('id', $data) || array_key_exists('uuid', $data)) {
+            return true;
+        }
+
+        return false;
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index dbd9d72b8..88f4b8d63 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -89,7 +89,7 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
                         ],
                         UrlGeneratorInterface::ABSOLUTE_URL,
                     ),
-                    'expiration' => $this->JWTDavTokenProvider->getTokenExpiration($accessToken)->format('U'),
+                    'expiration' => $this->JWTDavTokenProvider->getTokenExpiration($accessToken)->getTimestamp(),
                 ],
             ];
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
new file mode 100644
index 000000000..15b997d20
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
@@ -0,0 +1,45 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAwareInterface
+{
+    use NormalizerAwareTrait;
+
+    public function normalize($object, ?string $format = null, array $context = [])
+    {
+        if (!$object instanceof StoredObjectVersion) {
+            throw new \InvalidArgumentException('The object must be an instance of '.StoredObjectVersion::class);
+        }
+
+        return [
+            'id' => $object->getId(),
+            'filename' => $object->getFilename(),
+            'version' => $object->getVersion(),
+            'iv' => array_values($object->getIv()),
+            'keyInfos' => $object->getKeyInfos(),
+            'type' => $object->getType(),
+            'createdAt' => $this->normalizer->normalize($object->getCreatedAt(), $format, $context),
+            'createdBy' => $this->normalizer->normalize($object->getCreatedBy(), $format, $context),
+        ];
+    }
+
+    public function supportsNormalization($data, ?string $format = null, array $context = [])
+    {
+        return $data instanceof StoredObjectVersion;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index f87c60f82..ea745167e 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -101,6 +101,37 @@ final class StoredObjectManager implements StoredObjectManagerInterface
         return strlen($this->read($document));
     }
 
+    /**
+     * @throws TransportExceptionInterface
+     * @throws StoredObjectManagerException
+     */
+    public function exists(StoredObject|StoredObjectVersion $document): bool
+    {
+        $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
+
+        if ($this->hasCache($version)) {
+            return true;
+        }
+        try {
+            $response = $this
+                ->client
+                ->request(
+                    Request::METHOD_HEAD,
+                    $this
+                        ->tempUrlGenerator
+                        ->generate(
+                            Request::METHOD_HEAD,
+                            $version->getFilename()
+                        )
+                        ->url
+                );
+
+            return 200 === $response->getStatusCode();
+        } catch (TransportExceptionInterface $exception) {
+            throw StoredObjectManagerException::errorDuringHttpRequest($exception);
+        }
+    }
+
     public function etag(StoredObject|StoredObjectVersion $document): string
     {
         $version = $document instanceof StoredObject ? $document->getCurrentVersion() : $document;
@@ -117,7 +148,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
                             ->tempUrlGenerator
                             ->generate(
                                 Request::METHOD_HEAD,
-                                $document->getFilename()
+                                $version->getFilename()
                             )
                             ->url
                     );
@@ -214,6 +245,8 @@ final class StoredObjectManager implements StoredObjectManagerInterface
             throw StoredObjectManagerException::invalidStatusCode($response->getStatusCode());
         }
 
+        $this->clearCache();
+
         return $version;
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
index 8dc6f27da..b4c7a063e 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManagerInterface.php
@@ -14,6 +14,7 @@ namespace Chill\DocStoreBundle\Service;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
+use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
 
 interface StoredObjectManagerInterface
 {
@@ -27,6 +28,11 @@ interface StoredObjectManagerInterface
      */
     public function getContentLength(StoredObject|StoredObjectVersion $document): int;
 
+    /**
+     * @throws TransportExceptionInterface
+     */
+    public function exists(StoredObject|StoredObjectVersion $document): bool;
+
     /**
      * Get the content of a StoredObject.
      *
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
index bb83c698a..347e490e7 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGeneratorTest.php
@@ -14,19 +14,37 @@ namespace AsyncUpload\Driver\OpenstackObjectStore;
 use Chill\DocStoreBundle\AsyncUpload\Driver\OpenstackObjectStore\TempUrlOpenstackGenerator;
 use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
 use Chill\DocStoreBundle\AsyncUpload\SignedUrlPost;
-use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
 use Symfony\Component\Clock\MockClock;
 use Symfony\Component\DependencyInjection\ParameterBag\ParameterBag;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
 use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Mime\Part\DataPart;
+use Symfony\Component\Mime\Part\Multipart\FormDataPart;
+use Symfony\Contracts\HttpClient\Exception\HttpExceptionInterface;
+use Symfony\Contracts\HttpClient\HttpClientInterface;
 
 /**
  * @internal
  *
  * @coversNothing
  */
-class TempUrlOpenstackGeneratorTest extends TestCase
+class TempUrlOpenstackGeneratorTest extends KernelTestCase
 {
+    private ParameterBagInterface $parameterBag;
+    private HttpClientInterface $client;
+
+    private const TESTING_OBJECT_NAME_PREFIX = 'test-prefix-o0o008wk404gcos40k8s4s4c44cgwwos4k4o8k/';
+    private const TESTING_OBJECT_NAME = 'object-name-4fI0iAtq';
+
+    private function setUpIntegration(): void
+    {
+        self::bootKernel();
+        $this->parameterBag = self::getContainer()->get(ParameterBagInterface::class);
+        $this->client = self::getContainer()->get(HttpClientInterface::class);
+    }
+
     /**
      * @dataProvider dataProviderGenerate
      */
@@ -175,4 +193,62 @@ class TempUrlOpenstackGeneratorTest extends TestCase
             ];
         }
     }
+
+    /**
+     * @group openstack-integration
+     */
+    public function testGeneratePostIntegration(): void
+    {
+        $this->setUpIntegration();
+        $generator = new TempUrlOpenstackGenerator(new NullLogger(), new EventDispatcher(), new MockClock(), $this->parameterBag);
+
+        $signedUrl = $generator->generatePost(object_name: self::TESTING_OBJECT_NAME_PREFIX);
+        $formData = new FormDataPart([
+            'redirect', $signedUrl->redirect,
+            'max_file_size' => (string) $signedUrl->max_file_size,
+            'max_file_count' => (string) $signedUrl->max_file_count,
+            'expires' => (string) $signedUrl->expires->getTimestamp(),
+            'signature' => $signedUrl->signature,
+            self::TESTING_OBJECT_NAME => DataPart::fromPath(
+                __DIR__.'/file-to-upload.txt',
+                self::TESTING_OBJECT_NAME
+            ),
+        ]);
+
+        $response = $this->client
+            ->request(
+                'POST',
+                $signedUrl->url,
+                [
+                    'body' => $formData->bodyToString(),
+                    'headers' => $formData->getPreparedHeaders()->toArray(),
+                ]
+            );
+
+        self::assertEquals(201, $response->getStatusCode());
+    }
+
+    /**
+     * @group openstack-integration
+     *
+     * @depends testGeneratePostIntegration
+     */
+    public function testGenerateGetIntegration(): void
+    {
+        $this->setUpIntegration();
+        $generator = new TempUrlOpenstackGenerator(new NullLogger(), new EventDispatcher(), new MockClock(), $this->parameterBag);
+
+        $signedUrl = $generator->generate('GET', self::TESTING_OBJECT_NAME_PREFIX.self::TESTING_OBJECT_NAME);
+
+        $response = $this->client->request('GET', $signedUrl->url);
+
+        self::assertEquals(200, $response->getStatusCode());
+
+        try {
+            $content = $response->getContent();
+            self::assertEquals(file_get_contents(__DIR__.'/file-to-upload.txt'), $content);
+        } catch (HttpExceptionInterface $exception) {
+            $this->fail('could not retrieve file content: '.$exception->getMessage());
+        }
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/file-to-upload.txt b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/file-to-upload.txt
new file mode 100644
index 000000000..16b14f5da
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/AsyncUpload/Driver/OpenstackObjectStore/file-to-upload.txt
@@ -0,0 +1 @@
+test file
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
index cf1d8c814..435acc51f 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
@@ -13,6 +13,7 @@ namespace Chill\DocStoreBundle\Tests\Controller;
 
 use Chill\DocStoreBundle\Controller\WebdavController;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Doctrine\ORM\EntityManagerInterface;
 use Prophecy\Argument;
@@ -417,30 +418,32 @@ class WebdavControllerTest extends KernelTestCase
 
 class MockedStoredObjectManager implements StoredObjectManagerInterface
 {
-    public function getLastModified(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): \DateTimeInterface
+    public function getLastModified(StoredObject|StoredObjectVersion $document): \DateTimeInterface
     {
         return new \DateTimeImmutable('2023-09-13T14:15', new \DateTimeZone('+02:00'));
     }
 
-    public function getContentLength(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): int
+    public function getContentLength(StoredObject|StoredObjectVersion $document): int
     {
         return 5;
     }
 
-    public function read(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): string
+    public function read(StoredObject|StoredObjectVersion $document): string
     {
         return 'abcde';
     }
 
-    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): \Chill\DocStoreBundle\Entity\StoredObjectVersion
+    public function write(StoredObject $document, string $clearContent, ?string $contentType = null): StoredObjectVersion
     {
         return $document->registerVersion();
     }
 
-    public function etag(StoredObject|\Chill\DocStoreBundle\Entity\StoredObjectVersion $document): string
+    public function etag(StoredObject|StoredObjectVersion $document): string
     {
         return 'ab56b4d92b40713acc5af89985d4b786';
     }
 
     public function clearCache(): void {}
+
+    public function delete(StoredObjectVersion $storedObjectVersion): void {}
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
index 9351947a4..5bcfed16f 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
@@ -21,40 +21,6 @@ use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
  */
 class StoredObjectTest extends KernelTestCase
 {
-    public function testSaveHistory(): void
-    {
-        $storedObject = new StoredObject();
-        $storedObject
-            ->registerVersion(
-                [2, 4, 6, 8],
-                ['key' => ['data0' => 'data0']],
-                'text/html',
-                'test_0',
-            );
-
-        $storedObject->saveHistory();
-
-        $storedObject
-            ->registerVersion(
-                [8, 10, 12],
-                ['key' => ['data1' => 'data1']],
-                'text/text',
-                'test_1',
-            );
-
-        $storedObject->saveHistory();
-
-        self::assertEquals('test_0', $storedObject->getDatas()['history'][0]['filename']);
-        self::assertEquals([2, 4, 6, 8], $storedObject->getDatas()['history'][0]['iv']);
-        self::assertEquals(['key' => ['data0' => 'data0']], $storedObject->getDatas()['history'][0]['key_infos']);
-        self::assertEquals('text/html', $storedObject->getDatas()['history'][0]['type']);
-
-        self::assertEquals('test_1', $storedObject->getDatas()['history'][1]['filename']);
-        self::assertEquals([8, 10, 12], $storedObject->getDatas()['history'][1]['iv']);
-        self::assertEquals(['key' => ['data1' => 'data1']], $storedObject->getDatas()['history'][1]['key_infos']);
-        self::assertEquals('text/text', $storedObject->getDatas()['history'][1]['type']);
-    }
-
     public function testRegisterVersion(): void
     {
         $object = new StoredObject();
@@ -63,6 +29,9 @@ class StoredObjectTest extends KernelTestCase
             ['key' => ['some key']],
             'text/html',
         );
+
+        self::assertSame($firstVersion, $object->getCurrentVersion());
+
         $version = $object->registerVersion(
             [1, 2, 3, 4],
             $k = ['key' => ['data0' => 'data0']],
@@ -70,6 +39,8 @@ class StoredObjectTest extends KernelTestCase
             'abcde',
         );
 
+        self::assertSame($version, $object->getCurrentVersion());
+
         self::assertCount(2, $object->getVersions());
         self::assertEquals('abcde', $object->getFilename());
         self::assertEquals([1, 2, 3, 4], $object->getIv());
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
index 9d486ac93..9bf5ff33b 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
@@ -15,11 +15,17 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Form\DataMapper\StoredObjectDataMapper;
 use Chill\DocStoreBundle\Form\DataTransformer\StoredObjectDataTransformer;
 use Chill\DocStoreBundle\Form\StoredObjectType;
+use Chill\DocStoreBundle\Repository\StoredObjectRepositoryInterface;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectDenormalizer;
 use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectNormalizer;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectVersionNormalizer;
+use Chill\MainBundle\Serializer\Normalizer\UserNormalizer;
+use Chill\MainBundle\Templating\Entity\UserRender;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Clock\MockClock;
 use Symfony\Component\Form\PreloadedExtension;
 use Symfony\Component\Form\Test\TypeTestCase;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
@@ -36,33 +42,41 @@ class StoredObjectTypeTest extends TypeTestCase
 {
     use ProphecyTrait;
 
+    private StoredObject $model;
+
+    protected function setUp(): void
+    {
+        $this->model = new StoredObject();
+        $this->model->registerVersion();
+        parent::setUp();
+    }
+
     public function testChangeTitleValue(): void
     {
         $formData = ['title' => $newTitle = 'new title', 'stored_object' => <<<'JSON'
-            {"datas":[],"filename":"","id":null,"iv":[],"keyInfos":[],"title":"","type":"","uuid":"3c6a28fe-f913-40b9-a201-5eccc4f2d312","status":"ready","createdAt":null,"createdBy":null,"creationDate":null,"_links":{"dav_link":{"href":"http:\/\/url\/fake","expiration":"1716889578"}}}
+            {"uuid":"9855d676-690b-11ef-88d3-9f5a4129a7b7"}
             JSON];
-        $model = new StoredObject();
-        $form = $this->factory->create(StoredObjectType::class, $model, ['has_title' => true]);
+        $form = $this->factory->create(StoredObjectType::class, $this->model, ['has_title' => true]);
 
         $form->submit($formData);
 
         $this->assertTrue($form->isSynchronized());
 
-        $this->assertEquals($newTitle, $model->getTitle());
+        $this->assertEquals($newTitle, $this->model->getTitle());
     }
 
     public function testReplaceByAnotherObject(): void
     {
         $formData = ['title' => $newTitle = 'new title', 'stored_object' => <<<'JSON'
-            {"filename":"abcdef","iv":[10, 15, 20, 30],"keyInfos":[],"type":"text/html","status":"object_store_created"}
+            {"uuid":"9855d676-690b-11ef-88d3-9f5a4129a7b7","currentVersion":{"filename":"abcdef","iv":[10, 15, 20, 30],"keyInfos":[],"type":"text/html","persisted": false}}
             JSON];
-        $model = new StoredObject();
-        $originalObjectId = spl_object_hash($model);
-        $form = $this->factory->create(StoredObjectType::class, $model, ['has_title' => true]);
+        $originalObjectId = spl_object_hash($this->model);
+        $form = $this->factory->create(StoredObjectType::class, $this->model, ['has_title' => true]);
 
         $form->submit($formData);
 
         $this->assertTrue($form->isSynchronized());
+
         $model = $form->getData();
         $this->assertEquals($originalObjectId, spl_object_hash($model));
         $this->assertEquals('abcdef', $model->getFilename());
@@ -71,6 +85,29 @@ class StoredObjectTypeTest extends TypeTestCase
         $this->assertEquals($newTitle, $model->getTitle());
     }
 
+    public function testNothingIsChanged(): void
+    {
+        $formData = ['title' => $newTitle = 'new title', 'stored_object' => <<<'JSON'
+            {"uuid":"9855d676-690b-11ef-88d3-9f5a4129a7b7","currentVersion":{"filename":"abcdef","iv":[10, 15, 20, 30],"keyInfos":[],"type":"text/html"}}
+            JSON];
+        $originalObjectId = spl_object_hash($this->model);
+        $originalVersion = $this->model->getCurrentVersion();
+        $originalFilename = $originalVersion->getFilename();
+        $originalKeyInfos = $originalVersion->getKeyInfos();
+
+        $form = $this->factory->create(StoredObjectType::class, $this->model, ['has_title' => true]);
+
+        $form->submit($formData);
+
+        $this->assertTrue($form->isSynchronized());
+
+        $model = $form->getData();
+        $this->assertEquals($originalObjectId, spl_object_hash($model));
+        $this->assertSame($originalVersion, $model->getCurrentVersion());
+        $this->assertEquals($originalFilename, $model->getCurrentVersion()->getFilename());
+        $this->assertEquals($originalKeyInfos, $model->getCurrentVersion()->getKeyInfos());
+    }
+
     protected function getExtensions()
     {
         $jwtTokenProvider = $this->prophesize(JWTDavTokenProviderInterface::class);
@@ -84,6 +121,12 @@ class StoredObjectTypeTest extends TypeTestCase
         $security = $this->prophesize(Security::class);
         $security->isGranted(Argument::cetera())->willReturn(true);
 
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+        $storedObjectRepository->findOneByUUID(Argument::type('string'))
+            ->willReturn($this->model);
+
+        $userRender = $this->prophesize(UserRender::class);
+
         $serializer = new Serializer(
             [
                 new StoredObjectNormalizer(
@@ -91,6 +134,9 @@ class StoredObjectTypeTest extends TypeTestCase
                     $urlGenerator->reveal(),
                     $security->reveal()
                 ),
+                new StoredObjectDenormalizer($storedObjectRepository->reveal()),
+                new StoredObjectVersionNormalizer(),
+                new UserNormalizer($userRender->reveal(), new MockClock()),
             ],
             [
                 new JsonEncoder(),
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectDenormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectDenormalizerTest.php
new file mode 100644
index 000000000..53e616f90
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectDenormalizerTest.php
@@ -0,0 +1,144 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Repository\StoredObjectRepositoryInterface;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectDenormalizer;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectDenormalizerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testDenormalizeWithoutObjectToPopulateWithUUID(): void
+    {
+        $storedObject = new StoredObject();
+
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+        $storedObjectRepository->findOneByUUID($uuid = $storedObject->getUUID()->toString())
+            ->shouldBeCalledOnce()
+            ->willReturn($storedObject);
+
+        $denormalizer = new StoredObjectDenormalizer($storedObjectRepository->reveal());
+
+        $actual = $denormalizer->denormalize(['uuid' => $uuid], 'json');
+
+        self::assertSame($storedObject, $actual);
+    }
+
+    public function testDenormalizeWithoutObjectToPopulateWithId(): void
+    {
+        $storedObject = new StoredObject();
+
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+        $storedObjectRepository->find($id = 1)
+            ->shouldBeCalledOnce()
+            ->willReturn($storedObject);
+
+        $denormalizer = new StoredObjectDenormalizer($storedObjectRepository->reveal());
+
+        $actual = $denormalizer->denormalize(['id' => $id], 'json');
+
+        self::assertSame($storedObject, $actual);
+    }
+
+    public function testDenormalizeTitle(): void
+    {
+        $storedObject = new StoredObject();
+        $storedObject->setTitle('foo');
+
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+
+        $denormalizer = new StoredObjectDenormalizer($storedObjectRepository->reveal());
+
+        $actual = $denormalizer->denormalize([], StoredObject::class, 'json', [AbstractNormalizer::OBJECT_TO_POPULATE => $storedObject]);
+
+        self::assertEquals('foo', $actual->getTitle(), 'the title should remains the same');
+
+        $actual = $denormalizer->denormalize(['title' => 'bar'], StoredObject::class, 'json', [AbstractNormalizer::OBJECT_TO_POPULATE => $storedObject]);
+
+        self::assertEquals('bar', $actual->getTitle(), 'the title should have been updated');
+    }
+
+    public function testDenormalizeNoNewVersion(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion();
+        $iv = $version->getIv();
+        $keyInfos = $version->getKeyInfos();
+        $type = $version->getType();
+        $filename = $version->getFilename();
+
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+
+        $denormalizer = new StoredObjectDenormalizer($storedObjectRepository->reveal());
+
+        $actual = $denormalizer->denormalize([
+            'currentVersion' => [
+                'iv' => $iv,
+                'keyInfos' => $keyInfos,
+                'type' => $type,
+                'filename' => $filename,
+            ],
+        ], StoredObject::class, 'json', [AbstractNormalizer::OBJECT_TO_POPULATE => $storedObject]);
+
+        self::assertSame($storedObject, $actual);
+        self::assertSame($version, $storedObject->getCurrentVersion());
+        self::assertEquals($iv, $version->getIv());
+        self::assertEquals($keyInfos, $version->getKeyInfos());
+        self::assertEquals($type, $version->getType());
+        self::assertEquals($filename, $version->getFilename());
+    }
+
+    public function testDenormalizeNewVersion(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion();
+        $iv = ['1, 2, 3'];
+        $keyInfos = ['some-key' => 'some'];
+        $type = 'text/html';
+        $filename = 'Foo-Bar';
+
+        $storedObjectRepository = $this->prophesize(StoredObjectRepositoryInterface::class);
+
+        $denormalizer = new StoredObjectDenormalizer($storedObjectRepository->reveal());
+
+        $actual = $denormalizer->denormalize([
+            'currentVersion' => [
+                'iv' => $iv,
+                'keyInfos' => $keyInfos,
+                'type' => $type,
+                'filename' => $filename,
+                // this is the required key for new versions
+                'persisted' => false,
+            ],
+        ], StoredObject::class, 'json', [AbstractNormalizer::OBJECT_TO_POPULATE => $storedObject]);
+
+        self::assertSame($storedObject, $actual);
+        self::assertNotSame($version, $storedObject->getCurrentVersion());
+
+        $version = $storedObject->getCurrentVersion();
+
+        self::assertEquals($iv, $version->getIv());
+        self::assertEquals($keyInfos, $version->getKeyInfos());
+        self::assertEquals($type, $version->getType());
+        self::assertEquals($filename, $version->getFilename());
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php
index c6bd87686..2aa90d224 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectVersionNormalizerTest.php
@@ -9,25 +9,32 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
+namespace ChillDocStoreBundle\Tests\Serializer\Normalizer;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
-use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectVersionNormalizer;
+use Chill\MainBundle\Serializer\Normalizer\UserNormalizer;
+use Chill\MainBundle\Templating\Entity\UserRender;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Clock\MockClock;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Symfony\Component\Serializer\Serializer;
 
 /**
  * @internal
  *
  * @coversNothing
  */
-class StoredObjectVersionNormalizerTest extends KernelTestCase
+class StoredObjectVersionNormalizerTest extends TestCase
 {
     private NormalizerInterface $normalizer;
 
     protected function setUp(): void
     {
-        self::bootKernel();
-        $this->normalizer = self::getContainer()->get(NormalizerInterface::class);
+        $userRender = $this->createMock(UserRender::class);
+        $userRender->method('renderString')->willReturn('user');
+        $this->normalizer = new StoredObjectVersionNormalizer();
+        $this->normalizer->setNormalizer(new Serializer([new UserNormalizer($userRender, new MockClock())]));
     }
 
     public function testNormalize(): void
@@ -58,4 +65,14 @@ class StoredObjectVersionNormalizerTest extends KernelTestCase
             $actual
         );
     }
+
+    public function testNormalizeUnsupportedObject(): void
+    {
+        $this->expectException(\InvalidArgumentException::class);
+        $this->expectExceptionMessage('The object must be an instance of Chill\DocStoreBundle\Entity\StoredObjectVersion');
+
+        $unsupportedObject = new \stdClass();
+
+        $this->normalizer->normalize($unsupportedObject, 'json', ['groups' => ['read']]);
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Validator/Constraints/AsyncFileExistsValidator.php b/src/Bundle/ChillDocStoreBundle/Validator/Constraints/AsyncFileExistsValidator.php
index e5ccd2fdf..9719ae104 100644
--- a/src/Bundle/ChillDocStoreBundle/Validator/Constraints/AsyncFileExistsValidator.php
+++ b/src/Bundle/ChillDocStoreBundle/Validator/Constraints/AsyncFileExistsValidator.php
@@ -11,66 +11,43 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Validator\Constraints;
 
-use Chill\DocStoreBundle\AsyncUpload\Exception\BadCallToRemoteServer;
-use Chill\DocStoreBundle\AsyncUpload\Exception\TempUrlRemoteServerException;
-use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Symfony\Component\Validator\Constraint;
 use Symfony\Component\Validator\ConstraintValidator;
 use Symfony\Component\Validator\Exception\UnexpectedTypeException;
-use Symfony\Component\Validator\Exception\UnexpectedValueException;
-use Symfony\Contracts\HttpClient\Exception\HttpExceptionInterface;
-use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
-use Symfony\Contracts\HttpClient\HttpClientInterface;
 
 final class AsyncFileExistsValidator extends ConstraintValidator
 {
     public function __construct(
-        private readonly TempUrlGeneratorInterface $tempUrlGenerator,
-        private readonly HttpClientInterface $client
+        private readonly StoredObjectManagerInterface $storedObjectManager,
     ) {}
 
     public function validate($value, Constraint $constraint): void
-    {
-        if ($value instanceof StoredObject) {
-            $this->validateObject($value->getFilename(), $constraint);
-        } elseif (is_string($value)) {
-            $this->validateObject($value, $constraint);
-        } else {
-            throw new UnexpectedValueException($value, StoredObject::class.' or string');
-        }
-    }
-
-    protected function validateObject(string $file, Constraint $constraint): void
     {
         if (!$constraint instanceof AsyncFileExists) {
             throw new UnexpectedTypeException($constraint, AsyncFileExists::class);
         }
 
-        $urlHead = $this->tempUrlGenerator->generate(
-            'HEAD',
-            $file,
-            30
-        );
+        if (null === $value) {
+            return;
+        }
+        if ($value instanceof StoredObjectVersion) {
+            $this->validateObject($value, $constraint);
+        } elseif ($value instanceof StoredObject) {
+            $this->validateObject($value->getCurrentVersion(), $constraint);
+        } else {
+            throw new \Symfony\Component\Form\Exception\UnexpectedTypeException($value, StoredObjectVersion::class);
+        }
+    }
 
-        try {
-            $response = $this->client->request('HEAD', $urlHead->url);
-
-            if (404 === $status = $response->getStatusCode()) {
-                $this->context->buildViolation($constraint->message)
-                    ->setParameter('{{ filename }}', $file)
-                    ->addViolation();
-            } elseif (500 <= $status) {
-                throw new TempUrlRemoteServerException($response->getStatusCode());
-            } elseif (400 <= $status) {
-                throw new BadCallToRemoteServer($response->getContent(false), $response->getStatusCode());
-            }
-        } catch (HttpExceptionInterface $exception) {
-            if (404 !== $exception->getResponse()->getStatusCode()) {
-                throw $exception;
-            }
-        } catch (TransportExceptionInterface $e) {
-            throw new TempUrlRemoteServerException(0, previous: $e);
+    protected function validateObject(StoredObjectVersion $file, AsyncFileExists $constraint): void
+    {
+        if (!$this->storedObjectManager->exists($file)) {
+            $this->context->buildViolation($constraint->message)
+                ->setParameter('{{ filename }}', $file->getFilename())
+                ->addViolation();
         }
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
new file mode 100644
index 000000000..9575aa9c9
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -0,0 +1,64 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Twig\Environment;
+
+final class WorkflowAddSignatureController
+{
+    public function __construct(
+        private readonly EntityManagerInterface $entityManager,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly StoredObjectManagerInterface $storedObjectManager,
+        private readonly PDFSignatureZoneParser $PDFSignatureZoneParser,
+        private readonly NormalizerInterface $normalizer,
+        private readonly Environment $twig
+    ) {}
+
+    #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
+    public function __invoke(int $signature_id, Request $request, WorkflowController $workflowController): Response
+    {
+        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
+        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+        if (null === $storedObject) {
+            throw new NotFoundHttpException('No stored object found');
+        }
+
+        $zones = [];
+        $content = $this->storedObjectManager->read($storedObject);
+        if (null != $content) {
+            $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
+        }
+
+        $signatureClient = [];
+        $signatureClient['id'] = $signature->getId();
+        $signatureClient['storedObject'] = $this->normalizer->normalize($storedObject, 'json');
+        $signatureClient['zones'] = $zones;
+
+        return new Response($this->twig->render(
+            '@ChillMain/Workflow/_signature_sign.html.twig',
+            ['signature' => $signatureClient]
+        ));
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 7d277ef0e..8b6944a2c 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -11,8 +11,6 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Controller;
 
-use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
-use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
@@ -34,7 +32,6 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
-use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Validator\Validator\ValidatorInterface;
 use Symfony\Component\Workflow\Registry;
@@ -47,7 +44,6 @@ class WorkflowController extends AbstractController
         private readonly EntityWorkflowManager $entityWorkflowManager,
         private readonly EntityWorkflowRepository $entityWorkflowRepository,
         private readonly ValidatorInterface $validator,
-        private readonly StoredObjectManagerInterface $storedObjectManagerInterface,
         private readonly PaginatorFactory $paginatorFactory,
         private readonly Registry $registry,
         private readonly EntityManagerInterface $entityManager,
@@ -55,7 +51,6 @@ class WorkflowController extends AbstractController
         private readonly ChillSecurity $security,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
         private readonly ClockInterface $clock,
-        private readonly PDFSignatureZoneParser $PDFSignatureZoneParser,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/create', name: 'chill_main_workflow_create')]
@@ -417,36 +412,4 @@ class WorkflowController extends AbstractController
             ]
         );
     }
-
-    #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
-    public function addSignature(int $signature_id, Request $request): Response
-    {
-        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
-        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
-
-        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
-        if (null === $storedObject) {
-            throw new NotFoundHttpException('No stored object found');
-        }
-
-        $zones = [];
-        $content = $this->storedObjectManagerInterface->read($storedObject);
-        if (null != $content) {
-            $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
-        }
-
-        $signatureClient = [];
-        $signatureClient['id'] = $signature->getId();
-        $signatureClient['storedObject'] = [
-            'filename' => $storedObject->getFilename(),
-            'iv' => $storedObject->getIv(),
-            'keyInfos' => $storedObject->getKeyInfos(),
-        ];
-        $signatureClient['zones'] = $zones;
-
-        return $this->render(
-            '@ChillMain/Workflow/_signature_sign.html.twig',
-            ['signature' => $signatureClient]
-        );
-    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
index 6fd5bc78f..2f02333b1 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
@@ -140,14 +140,8 @@
                          @on-stored-object-status-change="onStatusDocumentChanged"
                      ></document-action-buttons-group>
                    </li>
-                    <li>
-                       <add-async-upload
-                          :buttonTitle="$t('replace')"
-                          :options="asyncUploadOptions"
-                          :btnClasses="{'btn': true, 'btn-edit': true}"
-                          @addDocument="(arg) => replaceDocument(d, arg)"
-                       >
-                       </add-async-upload>
+                    <li v-if="d.storedObject._permissions.canEdit">
+                      <drop-file-modal :existing-doc="d.storedObject" :allow-remove="false" @add-document="(arg) => replaceDocument(d, arg.stored_object, arg.stored_object_version)"></drop-file-modal>
                     </li>
                    <li v-if="d.workflows.length === 0">
                      <a class="btn btn-delete" @click="removeDocument(d)">
@@ -177,12 +171,7 @@
          <label class="col-form-label">{{ $t('document_upload') }}</label>
          <ul class="record_actions document-upload">
             <li>
-               <add-async-upload
-                  :buttonTitle="$t('browse')"
-                  :options="asyncUploadOptions"
-                  @addDocument="addDocument"
-               >
-               </add-async-upload>
+              <drop-file-modal :allow-remove="false" @add-document="addDocument"></drop-file-modal>
             </li>
          </ul>
       </div>
@@ -199,12 +188,11 @@ import ClassicEditor from 'ChillMainAssets/module/ckeditor5/editor_config';
 import { mapGetters, mapState } from 'vuex';
 import PickTemplate from 'ChillDocGeneratorAssets/vuejs/_components/PickTemplate.vue';
 import {buildLink} from 'ChillDocGeneratorAssets/lib/document-generator';
-import AddAsyncUpload from 'ChillDocStoreAssets/vuejs/_components/AddAsyncUpload.vue';
-import AddAsyncUploadDownloader from 'ChillDocStoreAssets/vuejs/_components/AddAsyncUploadDownloader.vue';
 import ListWorkflowModal from 'ChillMainAssets/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue';
 import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api.js';
 import {buildLinkCreate as buildLinkCreateNotification} from 'ChillMainAssets/lib/entity-notification/api';
 import DocumentActionButtonsGroup from "ChillDocStoreAssets/vuejs/DocumentActionButtonsGroup.vue";
+import DropFileModal from "ChillDocStoreAssets/vuejs/DropFileWidget/DropFileModal.vue";
 
 const i18n = {
    messages: {
@@ -243,10 +231,9 @@ export default {
    name: "FormEvaluation",
    props: ['evaluation', 'docAnchorId'],
    components: {
+      DropFileModal,
       ckeditor: CKEditor.component,
       PickTemplate,
-      AddAsyncUpload,
-      AddAsyncUploadDownloader,
       ListWorkflowModal,
       DocumentActionButtonsGroup,
    },
@@ -380,21 +367,29 @@ export default {
          const title = event.target.value;
          this.$store.commit('updateDocumentTitle', {id: id, key: key, evaluationKey: this.evaluation.key, title: title});
       },
-      addDocument(storedObject) {
+      addDocument({stored_object, stored_object_version}) {
          let document = {
             type: 'accompanying_period_work_evaluation_document',
-            storedObject: storedObject,
+            storedObject: stored_object,
             title: 'Nouveau document',
          };
-         this.$store.commit('addDocument', {key: this.evaluation.key, document: document});
+         this.$store.commit('addDocument', {key: this.evaluation.key, document, stored_object_version});
       },
-      replaceDocument(oldDocument, storedObject) {
+     /**
+      * Replaces a document in the store with a new document.
+      *
+      * @param {Object} oldDocument - The document to be replaced.
+      * @param {StoredObject} storedObject - The stored object of the new document.
+      * @param {StoredObjectVersion} storedObjectVersion - The new version of the document
+      * @return {void}
+      */
+      replaceDocument(oldDocument, storedObject, storedObjectVersion) {
          let document = {
             type: 'accompanying_period_work_evaluation_document',
             storedObject: storedObject,
             title: oldDocument.title
          };
-         this.$store.commit('replaceDocument', {key: this.evaluation.key, document: document, oldDocument: oldDocument});
+         this.$store.commit('replaceDocument', {key: this.evaluation.key, document, oldDocument: oldDocument, stored_object_version: storedObjectVersion});
       },
       removeDocument(document) {
          if (window.confirm("Êtes-vous sûr·e de vouloir supprimer le document qui a pour titre \"" + document.title +"\" ?")) {
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
index 44be6d5f2..236c77140 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
@@ -219,7 +219,11 @@ const store = createStore({
       found.results = found.results.filter(r => r.id !== result.id);
     },
     addDocument(state, payload) {
+      // associate version to stored object
+      payload.document.storedObject.currentVersion = payload.stored_object_version;
+
       let evaluation = state.evaluationsPicked.find(e => e.key === payload.key);
+
       evaluation.documents.push(Object.assign(
         payload.document, {
           key: evaluation.documents.length + 1,
@@ -234,6 +238,13 @@ const store = createStore({
       }
       evaluation.documents = evaluation.documents.filter(d => d.key !== document.key);
     },
+    /**
+     * Replaces a document in the state with a new document.
+     *
+     * @param {object} state - The current state of the application.
+     * @param {{key: number, oldDocument: {key: number}, stored_object_version: StoredObjectVersion}} payload - The object containing the information about the document to be replaced.
+     * @return {void} - returns nothing.
+     */
     replaceDocument(state, payload) {
       let evaluation = state.evaluationsPicked.find(e => e.key === payload.key);
       if (evaluation === undefined) {
@@ -244,9 +255,10 @@ const store = createStore({
 
       if (typeof doc === 'undefined') {
         console.error('doc not found');
+        return;
       }
 
-      doc.storedObject = payload.document.storedObject;
+      doc.storedObject.currentVersion = payload.stored_object_version;
       return;
       let newDocument = Object.assign(
         payload.document, {
diff --git a/tsconfig.json b/tsconfig.json
new file mode 100644
index 000000000..e8b2257e9
--- /dev/null
+++ b/tsconfig.json
@@ -0,0 +1,31 @@
+{
+    "extends": "@tsconfig/node14/tsconfig.json",
+    "compilerOptions": {
+        "paths": {
+            "ChillMainAssets": ["./src/Bundle/ChillMainBundle/Resources/public"],
+            "ChillDocStoreAssets": ["./src/Bundle/ChillDocStoreBundle/Resources/public"]
+        },
+        "lib": [
+            "es2020",
+            "dom"
+        ],
+        "module": "es6",
+        "moduleResolution": "node",
+        "isolatedModules": true,
+        "allowJs": false,
+        "checkJs": false,
+        "importHelpers": true,
+        "allowSyntheticDefaultImports": true,
+        "types": [
+            "node"
+        ],
+        "sourceMap": true
+    },
+    "includes": [
+        "./src/**/*.ts",
+        "./src/**/*.vue"
+    ],
+    "exclude": [
+        "./docs/*",
+    ]
+}

From c6a6d76790bb7daa4ab93577f0f5f31cc2e54210 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 3 Sep 2024 15:44:25 +0200
Subject: [PATCH 161/375] Add signatureZoneIndex to PdfSignedMessage and
 related classes

Included signatureZoneIndex for PdfSignedMessage in class definitions, handlers, and serializers to support signature zones. Updated test cases to reflect this new property, ensuring robust validation for handling and serialization.
---
 .../Signature/Driver/BaseSigner/PdfSignedMessage.php       | 3 ++-
 .../Driver/BaseSigner/PdfSignedMessageHandler.php          | 1 +
 .../Driver/BaseSigner/PdfSignedMessageSerializer.php       | 3 ++-
 .../Driver/BaseSigner/PdfSignedMessageHandlerTest.php      | 3 ++-
 .../Driver/BaseSigner/PdfSignedMessageSerializerTest.php   | 7 ++++---
 5 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
index 64ada47c7..3116e3b62 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
@@ -18,6 +18,7 @@ final readonly class PdfSignedMessage
 {
     public function __construct(
         public readonly int $signatureId,
-        public readonly string $content
+        public readonly int $signatureZoneIndex,
+        public readonly string $content,
     ) {}
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
index 5cb31de96..720bc000f 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -55,6 +55,7 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
         $this->storedObjectManager->write($storedObject, $message->content);
 
         $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED)->setStateDate($this->clock->now());
+        $signature->setZoneSignatureIndex($message->signatureZoneIndex);
         $this->entityManager->flush();
         $this->entityManager->clear();
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
index 4af4a9504..892b944b7 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializer.php
@@ -40,7 +40,7 @@ final readonly class PdfSignedMessageSerializer implements SerializerInterface
             throw new MessageDecodingFailedException('Invalid character found in the base64 encoded content');
         }
 
-        $message = new PdfSignedMessage($decoded['signatureId'], $content);
+        $message = new PdfSignedMessage($decoded['signatureId'], $decoded['signatureZoneIndex'], $content);
 
         return new Envelope($message);
     }
@@ -55,6 +55,7 @@ final readonly class PdfSignedMessageSerializer implements SerializerInterface
 
         $data = [
             'signatureId' => $message->signatureId,
+            'signatureZoneIndex' => $message->signatureZoneIndex,
             'content' => base64_encode($message->content),
         ];
 
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
index eb2142175..471dc8f9a 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
@@ -57,9 +57,10 @@ class PdfSignedMessageHandlerTest extends TestCase
 
         // we simply call the handler. The mocked StoredObjectManager will check that the "write" method is invoked once
         // with the content "1234"
-        $handler(new PdfSignedMessage(10, $expectedContent));
+        $handler(new PdfSignedMessage(10, 99, $expectedContent));
 
         self::assertEquals('signed', $signature->getState()->value);
+        self::assertEquals(99, $signature->getZoneSignatureIndex());
     }
 
     private function buildSignatureRepository(EntityWorkflowStepSignature $signature): EntityWorkflowStepSignatureRepository
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php
index d9d600254..1321390f5 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageSerializerTest.php
@@ -26,7 +26,7 @@ class PdfSignedMessageSerializerTest extends TestCase
     public function testDecode(): void
     {
         $asString = <<<'JSON'
-            {"signatureId": 0, "content": "dGVzdAo="}
+            {"signatureId": 0, "signatureZoneIndex": 10, "content": "dGVzdAo="}
             JSON;
 
         $actual = $this->buildSerializer()->decode(['body' => $asString]);
@@ -36,12 +36,13 @@ class PdfSignedMessageSerializerTest extends TestCase
         self::assertInstanceOf(PdfSignedMessage::class, $message);
         self::assertEquals("test\n", $message->content);
         self::assertEquals(0, $message->signatureId);
+        self::assertEquals(10, $message->signatureZoneIndex);
     }
 
     public function testEncode(): void
     {
         $envelope = new Envelope(
-            new PdfSignedMessage(0, "test\n")
+            new PdfSignedMessage(0, 10, "test\n")
         );
 
         $actual = $this->buildSerializer()->encode($envelope);
@@ -52,7 +53,7 @@ class PdfSignedMessageSerializerTest extends TestCase
         self::assertEquals([], $actual['headers']);
 
         self::assertEquals(<<<'JSON'
-                {"signatureId":0,"content":"dGVzdAo="}
+                {"signatureId":0,"signatureZoneIndex":10,"content":"dGVzdAo="}
                 JSON, $actual['body']);
     }
 

From e17203ca3abc14e3358341bb6cfde78ea93a81ff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 13:48:46 +0200
Subject: [PATCH 162/375] Add PDF signature zone availability checks

Introduce `PDFSignatureZoneAvailable` service to check available PDF signature zones. Updated `WorkflowAddSignatureController` to use the new service. Added unit tests to verify the correctness of the functionality.
---
 .../Signature/PDFSignatureZoneAvailable.php   | 69 +++++++++++++++++
 .../PDFSignatureZoneAvailableTest.php         | 76 +++++++++++++++++++
 .../WorkflowAddSignatureController.php        | 37 ++++-----
 .../Entity/Workflow/EntityWorkflow.php        |  7 +-
 .../WorkflowAddSignatureControllerTest.php    | 72 ++++++++++++++++++
 5 files changed, 236 insertions(+), 25 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneAvailableTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
new file mode 100644
index 000000000..9a7fe8437
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service\Signature;
+
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+
+class PDFSignatureZoneAvailable
+{
+    public function __construct(
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly PDFSignatureZoneParser $pdfSignatureZoneParser,
+        private readonly StoredObjectManagerInterface $storedObjectManager,
+    ) {}
+
+    /**
+     * @return list<PDFSignatureZone>
+     */
+    public function getAvailableSignatureZones(EntityWorkflow $entityWorkflow): array
+    {
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+
+        if (null === $storedObject) {
+            throw new \RuntimeException('No stored object found');
+        }
+
+        if ('application/pdf' !== $storedObject->getType()) {
+            throw new \RuntimeException('Only PDF documents are supported');
+        }
+
+        $zones = $this->pdfSignatureZoneParser->findSignatureZones($this->storedObjectManager->read($storedObject));
+        $signatureZonesIndexes = array_map(
+            fn (EntityWorkflowStepSignature $step) => $step->getZoneSignatureIndex(),
+            $this->collectSignaturesInUse($entityWorkflow)
+        );
+
+        return array_filter($zones, fn (PDFSignatureZone $zone) => !in_array($zone->index, $signatureZonesIndexes, true));
+    }
+
+    /**
+     * @return list<EntityWorkflowStepSignature>
+     */
+    private function collectSignaturesInUse(EntityWorkflow $entityWorkflow): array
+    {
+        return array_reduce($entityWorkflow->getSteps()->toArray(), function (array $result, EntityWorkflowStep $step) {
+            $current = [...$result];
+            foreach ($step->getSignatures() as $signature) {
+                if (EntityWorkflowSignatureStateEnum::SIGNED === $signature->getState()) {
+                    $current[] = $signature;
+                }
+            }
+
+            return $current;
+        }, []);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneAvailableTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneAvailableTest.php
new file mode 100644
index 000000000..ecc96bf89
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/PDFSignatureZoneAvailableTest.php
@@ -0,0 +1,76 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Tests\Service\Signature;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\Signature\PDFPage;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Clock\MockClock;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PDFSignatureZoneAvailableTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testGetAvailableSignatureZones(): void
+    {
+        $clock = new MockClock();
+
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion(type: 'application/pdf');
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto1 = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto1->futurePersonSignatures[] = new Person();
+        $entityWorkflow->setStep('step1', $dto1, 'transition1', $clock->now());
+        $signature = $entityWorkflow->getCurrentStep()->getSignatures()->first();
+        $signature->setZoneSignatureIndex(1)->setState(EntityWorkflowSignatureStateEnum::SIGNED);
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getAssociatedStoredObject($entityWorkflow)->willReturn($storedObject);
+
+        $storedObjectManager = $this->prophesize(StoredObjectManagerInterface::class);
+        $storedObjectManager->read($storedObject)->willReturn('fake-content');
+
+        $parser = $this->prophesize(PDFSignatureZoneParser::class);
+        $parser->findSignatureZones('fake-content')->willReturn([
+            $zone1 = new PDFSignatureZone(1, 0.0, 10.0, 20.0, 20.0, new PDFPage(1, 500, 500)),
+            $zone2 = new PDFSignatureZone(2, 0.0, 10.0, 20.0, 20.0, new PDFPage(1, 500, 500)),
+        ]);
+
+        $filter = new PDFSignatureZoneAvailable(
+            $entityWorkflowManager->reveal(),
+            $parser->reveal(),
+            $storedObjectManager->reveal(),
+        );
+
+        $actual = $filter->getAvailableSignatureZones($entityWorkflow);
+
+        self::assertNotContains($zone1, $actual);
+        self::assertContains($zone2, $actual);
+        self::assertCount(1, $actual, 'there should be only one remaining zone');
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index 9575aa9c9..5024f6684 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -11,11 +11,9 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Controller;
 
-use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneParser;
-use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
-use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
@@ -23,21 +21,18 @@ use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
 
-final class WorkflowAddSignatureController
+final readonly class WorkflowAddSignatureController
 {
     public function __construct(
-        private readonly EntityManagerInterface $entityManager,
-        private readonly EntityWorkflowManager $entityWorkflowManager,
-        private readonly StoredObjectManagerInterface $storedObjectManager,
-        private readonly PDFSignatureZoneParser $PDFSignatureZoneParser,
-        private readonly NormalizerInterface $normalizer,
-        private readonly Environment $twig
+        private EntityWorkflowManager $entityWorkflowManager,
+        private PDFSignatureZoneAvailable $PDFSignatureZoneAvailable,
+        private NormalizerInterface $normalizer,
+        private Environment $twig
     ) {}
 
-    #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
-    public function __invoke(int $signature_id, Request $request, WorkflowController $workflowController): Response
+    #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
+    public function __invoke(EntityWorkflowStepSignature $signature, Request $request): Response
     {
-        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
 
         $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
@@ -45,20 +40,18 @@ final class WorkflowAddSignatureController
             throw new NotFoundHttpException('No stored object found');
         }
 
-        $zones = [];
-        $content = $this->storedObjectManager->read($storedObject);
-        if (null != $content) {
-            $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
-        }
+        $zones = $this->PDFSignatureZoneAvailable->getAvailableSignatureZones($entityWorkflow);
 
         $signatureClient = [];
         $signatureClient['id'] = $signature->getId();
         $signatureClient['storedObject'] = $this->normalizer->normalize($storedObject, 'json');
         $signatureClient['zones'] = $zones;
 
-        return new Response($this->twig->render(
-            '@ChillMain/Workflow/_signature_sign.html.twig',
-            ['signature' => $signatureClient]
-        ));
+        return new Response(
+            $this->twig->render(
+                '@ChillMain/Workflow/_signature_sign.html.twig',
+                ['signature' => $signatureClient]
+            )
+        );
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 4ab1ee30e..e653037e0 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -20,6 +20,7 @@ use Chill\MainBundle\Workflow\Validator\EntityWorkflowCreation;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Symfony\Component\Serializer\Annotation as Serializer;
 use Symfony\Component\Validator\Constraints as Assert;
@@ -52,12 +53,12 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
     private int $relatedEntityId;
 
     /**
-     * @var Collection<int, EntityWorkflowStep>
+     * @var Collection<int, EntityWorkflowStep>&Selectable<int, EntityWorkflowStep>
      */
     #[Assert\Valid(traverse: true)]
     #[ORM\OneToMany(mappedBy: 'entityWorkflow', targetEntity: EntityWorkflowStep::class, cascade: ['persist'], orphanRemoval: true)]
     #[ORM\OrderBy(['transitionAt' => \Doctrine\Common\Collections\Criteria::ASC, 'id' => 'ASC'])]
-    private Collection $steps;
+    private Collection&Selectable $steps;
 
     /**
      * @var array|EntityWorkflowStep[]|null
@@ -242,7 +243,7 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
         throw new \RuntimeException();
     }
 
-    public function getSteps(): ArrayCollection|Collection
+    public function getSteps(): Collection&Selectable
     {
         return $this->steps;
     }
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
new file mode 100644
index 000000000..81c8d095e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
@@ -0,0 +1,72 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Controller;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\Signature\PDFPage;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
+use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
+use Chill\MainBundle\Controller\WorkflowAddSignatureController;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class WorkflowAddSignatureControllerTest extends TestCase
+{
+    public function testAddSignature(): void
+    {
+        $storedObject = new StoredObject();
+        $entityWorkflow = new EntityWorkflow();
+        $stepTransition = new WorkflowTransitionContextDTO($entityWorkflow);
+        $stepTransition->futurePersonSignatures[] = new Person();
+        $entityWorkflow->setStep('step_signature', $stepTransition, 'to_signature', new \DateTimeImmutable('now'), new User());
+
+        $signature = $entityWorkflow->getCurrentStep()->getSignatures()->first();
+
+        $entityWorkflowManager = $this->createMock(EntityWorkflowManager::class);
+        $entityWorkflowManager->method('getAssociatedStoredObject')
+            ->with($entityWorkflow)
+            ->willReturn($storedObject);
+
+        $pdfSignatureZoneAvailable = $this->createMock(PDFSignatureZoneAvailable::class);
+        $pdfSignatureZoneAvailable->method('getAvailableSignatureZones')->withAnyParameters()
+            ->willReturn([
+                new PDFSignatureZone(1, 0.0, 0.0, 100, 100, new PDFPage(1, 500.0, 500.0)),
+            ]);
+
+        $normalizer = $this->createMock(NormalizerInterface::class);
+        $normalizer->method('normalize')->withAnyParameters()
+            ->willReturn([]);
+
+        $twig = $this->createMock(Environment::class);
+        $twig->method('render')->with('@ChillMain/Workflow/_signature_sign.html.twig', $this->isType('array'))
+            ->willReturn('ok');
+
+        $controller = new WorkflowAddSignatureController($entityWorkflowManager, $pdfSignatureZoneAvailable, $normalizer, $twig);
+
+        $actual = $controller($signature, new Request());
+
+        self::assertEquals(200, $actual->getStatusCode());
+        self::assertEquals('ok', $actual->getContent());
+    }
+}

From 667e144681c3cc5430a94295d01b02ca459b6c8a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:09:53 +0200
Subject: [PATCH 163/375] Add PDF signature zone availability checks

Introduce `PDFSignatureZoneAvailable` service to check available PDF signature zones. Updated `WorkflowAddSignatureController` to use the new service. Added unit tests to verify the correctness of the functionality.
---
 .../Service/Signature/PDFSignatureZoneAvailable.php           | 2 +-
 .../Controller/WorkflowAddSignatureController.php             | 2 +-
 src/Bundle/ChillMainBundle/Controller/WorkflowController.php  | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
index 9a7fe8437..d4109632a 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZoneAvailable.php
@@ -47,7 +47,7 @@ class PDFSignatureZoneAvailable
             $this->collectSignaturesInUse($entityWorkflow)
         );
 
-        return array_filter($zones, fn (PDFSignatureZone $zone) => !in_array($zone->index, $signatureZonesIndexes, true));
+        return array_values(array_filter($zones, fn (PDFSignatureZone $zone) => !in_array($zone->index, $signatureZonesIndexes, true)));
     }
 
     /**
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index 5024f6684..353976402 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -30,7 +30,7 @@ final readonly class WorkflowAddSignatureController
         private Environment $twig
     ) {}
 
-    #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature', methods: 'GET')]
+    #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature_add', methods: 'GET')]
     public function __invoke(EntityWorkflowStepSignature $signature, Request $request): Response
     {
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 8b6944a2c..277a18142 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -377,7 +377,7 @@ class WorkflowController extends AbstractController
         $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
 
         if ($signature->getSigner() instanceof User) {
-            return $this->redirectToRoute('chill_main_workflow_signature', ['signature_id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
         }
 
         $metadataForm = $this->createForm(WorkflowSignatureMetadataType::class);
@@ -401,7 +401,7 @@ class WorkflowController extends AbstractController
             $this->entityManager->persist($signature);
             $this->entityManager->flush();
 
-            return $this->redirectToRoute('chill_main_workflow_signature', ['signature_id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
         }
 
         return $this->render(

From 615629d1b4774df637db8c4f25e658edb7d6f4d0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:28:13 +0200
Subject: [PATCH 164/375] Simplify entity relationship and enforce foreign key
 constraints

Removed the resetStoredObject() method call from StoredObject, adjusted the storedObjectId column in the stored_object_version table to be NOT NULL, and moved the association setup of the StoredObject entity directly into the constructor in StoredObjectVersion. This ensures that every StoredObjectVersion has a valid StoredObject and maintains database integrity.
---
 .../Entity/StoredObject.php                   |  1 -
 .../Entity/StoredObjectVersion.php            | 23 +++++--------------
 .../migrations/Version20240709102730.php      |  2 +-
 3 files changed, 7 insertions(+), 19 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index dabcec8eb..b108d086b 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -346,7 +346,6 @@ class StoredObject implements Document, TrackCreationInterface
             throw new \UnexpectedValueException('This stored object does not contains this version');
         }
         $this->versions->removeElement($storedObjectVersion);
-        $storedObjectVersion->resetStoredObject();
     }
 
     /**
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index 8526cd9a9..fed183057 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -33,13 +33,6 @@ class StoredObjectVersion implements TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
     private ?int $id = null;
 
-    /**
-     * The stored object associated with this version.
-     */
-    #[ORM\ManyToOne(targetEntity: StoredObject::class, inversedBy: 'versions')]
-    #[ORM\JoinColumn(name: 'stored_object_id', nullable: true)]
-    private ?StoredObject $storedObject;
-
     /**
      * filename of the version in the stored object.
      */
@@ -47,7 +40,12 @@ class StoredObjectVersion implements TrackCreationInterface
     private string $filename = '';
 
     public function __construct(
-        StoredObject $storedObject,
+        /**
+         * The stored object associated with this version.
+         */
+        #[ORM\ManyToOne(targetEntity: StoredObject::class, inversedBy: 'versions')]
+        #[ORM\JoinColumn(name: 'stored_object_id', nullable: false)]
+        private StoredObject $storedObject,
 
         /**
          * The incremental version.
@@ -78,7 +76,6 @@ class StoredObjectVersion implements TrackCreationInterface
         private string $type = '',
         ?string $filename = null,
     ) {
-        $this->storedObject = $storedObject;
         $this->filename = $filename ?? self::generateFilename($this);
     }
 
@@ -127,12 +124,4 @@ class StoredObjectVersion implements TrackCreationInterface
     {
         return $this->version;
     }
-
-    /**
-     * @internal to be used by StoredObject::removeVersion
-     */
-    public function resetStoredObject(): void
-    {
-        $this->storedObject = null;
-    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php b/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php
index 4ac01b196..4fc68da1f 100644
--- a/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php
+++ b/src/Bundle/ChillDocStoreBundle/migrations/Version20240709102730.php
@@ -28,7 +28,7 @@ final class Version20240709102730 extends AbstractMigration
             <<<'SQL'
                 CREATE TABLE chill_doc.stored_object_version (
                     id INT NOT NULL,
-                    stored_object_id INT DEFAULT NULL,
+                    stored_object_id INT NOT NULL,
                     version INT DEFAULT 0 NOT NULL,
                     filename TEXT NOT NULL,
                     iv JSON NOT NULL,

From 063bc2857fdeb540895b4a6328e8a39d45eb660a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:34:49 +0200
Subject: [PATCH 165/375] Remove deprecated constants from
 StoredObjectNormalizer

Deleted the deprecated constants `ADD_DAV_SEE_LINK_CONTEXT` and `ADD_DAV_EDIT_LINK_CONTEXT` from the `StoredObjectNormalizer` class. These constants are no longer in use and their removal cleans up the codebase.
---
 .../Serializer/Normalizer/StoredObjectNormalizer.php   | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index 88f4b8d63..8fb17905d 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -30,16 +30,6 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
 {
     use NormalizerAwareTrait;
 
-    /**
-     * @deprecated
-     */
-    public const string ADD_DAV_SEE_LINK_CONTEXT = 'dav-see-link-context';
-
-    /**
-     * @deprecated
-     */
-    public const string ADD_DAV_EDIT_LINK_CONTEXT = 'dav-edit-link-context';
-
     public function __construct(
         private readonly JWTDavTokenProviderInterface $JWTDavTokenProvider,
         private readonly UrlGeneratorInterface $urlGenerator,

From 313fb9ffdf852c204cb6fb1ceb01b67cb45d963c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:38:56 +0200
Subject: [PATCH 166/375] PHP CS Fixer updated (3.63.1 -> v3.64.0)

---
 .../Controller/ActivityController.php         |  2 +-
 .../Aggregator/ActivityReasonAggregator.php   |  2 +-
 .../Aggregator/ActivityUsersJobAggregator.php |  2 +-
 .../ActivityUsersScopeAggregator.php          |  2 +-
 .../Aggregator/CreatorJobAggregator.php       |  2 +-
 .../Aggregator/CreatorScopeAggregator.php     |  2 +-
 .../LinkedToPerson/StatActivityDuration.php   |  2 +-
 .../Export/Export/ListActivityHelper.php      |  2 +-
 .../Export/Filter/ActivityPresenceFilter.php  |  2 +-
 .../Export/Filter/ActivityTypeFilter.php      |  2 +-
 .../Export/Filter/UsersJobFilter.php          |  2 +-
 .../Export/Filter/UsersScopeFilter.php        |  2 +-
 .../ChillActivityBundle/Form/ActivityType.php |  2 +-
 .../Form/Type/PickActivityReasonType.php      |  2 +-
 .../ActivityDocumentACLAwareRepository.php    |  2 +-
 .../Repository/ActivityReasonRepository.php   |  2 +-
 .../ActivityStoredObjectVoter.php             |  2 +-
 .../Security/Authorization/ActivityVoter.php  |  2 +-
 .../Service/DocGenerator/ActivityContext.php  |  2 +-
 ...tActivitiesByAccompanyingPeriodContext.php |  2 +-
 .../Type/TranslatableActivityReasonTest.php   |  2 +-
 .../Authorization/ActivityVoterTest.php       |  2 +-
 .../Timeline/TimelineActivityProvider.php     |  2 +-
 .../Controller/AsideActivityController.php    |  4 +--
 .../Aggregator/ByActivityTypeAggregator.php   |  2 +-
 .../Export/Aggregator/ByUserJobAggregator.php |  2 +-
 .../Aggregator/ByUserScopeAggregator.php      |  2 +-
 .../src/Export/Export/ListAsideActivity.php   |  2 +-
 .../Export/Filter/ByActivityTypeFilter.php    |  2 +-
 .../src/Export/Filter/ByLocationFilter.php    |  2 +-
 .../src/Export/Filter/ByUserJobFilter.php     |  2 +-
 .../src/Export/Filter/ByUserScopeFilter.php   |  2 +-
 .../src/Menu/UserMenuBuilder.php              |  2 +-
 .../src/Security/AsideActivityVoter.php       |  2 +-
 .../SendTestShortMessageOnCalendarCommand.php |  2 +-
 .../Controller/CalendarController.php         |  2 +-
 .../Entity/CalendarDoc.php                    |  2 +-
 .../Export/Aggregator/JobAggregator.php       |  2 +-
 .../Export/Aggregator/ScopeAggregator.php     |  2 +-
 .../Export/Filter/JobFilter.php               |  2 +-
 .../Export/Filter/ScopeFilter.php             |  2 +-
 .../ChillCalendarBundle/Form/CalendarType.php |  2 +-
 .../Messenger/Message/CalendarMessage.php     |  2 +-
 .../Connector/MSGraph/MSUserAbsenceReader.php |  2 +-
 .../Connector/MSGraph/MapCalendarToUser.php   |  2 +-
 .../MSGraph/RemoteEventConverter.php          |  2 +-
 .../MSGraphRemoteCalendarConnector.php        |  6 ++--
 .../RemoteCalendar/Model/RemoteEvent.php      |  2 +-
 .../Repository/CalendarRangeRepository.php    |  2 +-
 .../Service/DocGenerator/CalendarContext.php  |  2 +-
 ...anyingPeriodCalendarGenericDocProvider.php |  2 +-
 .../PersonCalendarGenericDocProvider.php      |  2 +-
 .../Tests/Form/CalendarTypeTest.php           |  4 +--
 .../DocGenerator/CalendarContextTest.php      |  2 +-
 .../Command/CreateFieldsOnGroupCommand.php    |  2 +-
 .../CustomFieldsGroupController.php           |  2 +-
 .../CustomFields/CustomFieldChoice.php        |  2 +-
 .../CustomFields/CustomFieldDate.php          |  2 +-
 .../CustomFields/CustomFieldNumber.php        |  2 +-
 .../CustomFields/CustomFieldText.php          |  2 +-
 .../CustomFields/CustomFieldTitle.php         |  2 +-
 .../Form/CustomFieldsGroupType.php            |  2 +-
 .../DocGeneratorTemplateController.php        |  8 ++---
 .../GeneratorDriver/RelatorioDriver.php       |  2 +-
 .../Normalizer/DocGenObjectNormalizer.php     |  2 +-
 .../Service/Generator/Generator.php           |  2 +-
 .../Service/Messenger/OnGenerationFails.php   |  2 +-
 .../Service/Context/BaseContextDataTest.php   |  2 +-
 .../TempUrlOpenstackGenerator.php             |  2 +-
 .../Templating/AsyncUploadExtension.php       |  2 +-
 .../DocumentAccompanyingCourseController.php  |  2 +-
 .../Controller/DocumentPersonController.php   |  2 +-
 .../Controller/StoredObjectApiController.php  |  2 +-
 .../Entity/DocumentCategory.php               |  2 +-
 .../Entity/StoredObject.php                   |  2 +-
 .../Form/AccompanyingCourseDocumentType.php   |  2 +-
 .../Form/Type/AsyncUploaderType.php           |  2 +-
 ...ForAccompanyingPeriodProviderInterface.php |  2 +-
 .../GenericDocForPersonProviderInterface.php  |  2 +-
 .../GenericDoc/Manager.php                    |  8 ++---
 .../PersonDocumentGenericDocProvider.php      |  2 +-
 ...sonDocumentACLAwareRepositoryInterface.php |  4 +--
 .../Repository/PersonDocumentRepository.php   |  2 +-
 .../AccompanyingCourseDocumentVoter.php       |  2 +-
 .../Authorization/AsyncUploadVoter.php        |  4 +--
 .../Authorization/PersonDocumentVoter.php     |  2 +-
 ...panyingCourseDocumentStoredObjectVoter.php |  2 +-
 .../PersonDocumentStoredObjectVoter.php       |  2 +-
 .../DavTokenAuthenticationEventSubscriber.php |  2 +-
 .../Normalizer/StoredObjectNormalizer.php     |  2 +-
 .../RemoveExpiredStoredObjectCronJob.php      |  2 +-
 .../RemoveOldVersionMessage.php               |  2 +-
 .../Service/StoredObjectManager.php           |  2 +-
 .../PersonDocumentACLAwareRepositoryTest.php  |  2 +-
 .../AbstractStoredObjectVoterTest.php         |  2 +-
 ...ompanyingCourseDocumentWorkflowHandler.php |  2 +-
 .../Controller/EventController.php            |  2 +-
 .../Controller/ParticipationController.php    |  4 +--
 .../Export/Filter/EventTypeFilter.php         |  2 +-
 .../Export/Filter/RoleFilter.php              |  2 +-
 .../Form/ChoiceLoader/EventChoiceLoader.php   |  2 +-
 .../Form/Type/PickEventType.php               |  2 +-
 .../Form/Type/PickRoleType.php                |  2 +-
 .../Menu/PersonMenuBuilder.php                |  2 +-
 .../Repository/EventTypeRepository.php        |  2 +-
 .../ChillEventBundle/Search/EventSearch.php   |  4 +--
 .../Authorization/EventStoredObjectVoter.php  |  2 +-
 .../ChillEventBundle/Security/EventVoter.php  |  2 +-
 .../Security/ParticipationVoter.php           |  2 +-
 .../ParticipationControllerTest.php           |  2 +-
 .../Timeline/TimelineEventProvider.php        |  6 ++--
 .../src/ApiHelper/ProcessRequestTrait.php     |  4 +--
 .../RomeAppellationChoiceLoader.php           |  2 +-
 .../src/Form/Type/PickRomeAppellationType.php |  2 +-
 .../CRUD/Controller/CRUDController.php        |  4 +--
 .../Command/ChillImportUsersCommand.php       |  2 +-
 .../ChillUserSendRenewPasswordCodeCommand.php |  2 +-
 .../Command/ExecuteCronJobCommand.php         |  2 +-
 .../LoadAddressesBEFromBestAddressCommand.php |  2 +-
 .../Controller/NewsItemApiController.php      |  2 +-
 .../Controller/PermissionsGroupController.php |  2 +-
 .../Controller/ScopeController.php            |  2 +-
 .../Controller/UIController.php               |  2 +-
 .../Controller/UserController.php             |  4 +--
 .../WorkflowAddSignatureController.php        |  2 +-
 .../ChillMainBundle/Cron/CronManager.php      |  2 +-
 .../ChillMainExtension.php                    |  2 +-
 .../CompilerPass/ExportsCompilerPass.php      |  4 +--
 .../DependencyInjection/Configuration.php     |  2 +-
 .../Widget/AbstractWidgetsCompilerPass.php    |  4 +--
 .../Entity/CronJobExecution.php               |  2 +-
 .../SimpleGeographicalUnitDTO.php             |  2 +-
 .../Entity/Workflow/EntityWorkflow.php        |  2 +-
 .../Export/ExportFormHelper.php               |  4 +--
 .../ChillMainBundle/Export/ExportManager.php  |  8 ++---
 .../Export/Formatter/CSVFormatter.php         |  4 +--
 .../Export/Formatter/CSVListFormatter.php     |  4 +--
 .../Formatter/CSVPivotedListFormatter.php     |  4 +--
 .../Export/Formatter/SpreadSheetFormatter.php |  8 ++---
 .../Formatter/SpreadsheetListFormatter.php    |  4 +--
 .../Export/FormatterInterface.php             |  4 +--
 .../IdToEntityDataTransformer.php             |  2 +-
 .../Form/Type/AppendScopeChoiceTypeTrait.php  |  2 +-
 .../Form/Type/ComposedRoleScopeType.php       |  2 +-
 .../Form/Type/Export/PickCenterType.php       |  2 +-
 .../Form/Type/Listing/FilterOrderType.php     |  4 +--
 .../Form/Type/PostalCodeType.php              |  2 +-
 .../Form/Type/ScopePickerType.php             |  2 +-
 .../Form/Type/UserPickerType.php              |  2 +-
 .../ChillMainBundle/Form/UserPasswordType.php |  2 +-
 .../ChillMainBundle/Form/WorkflowStepType.php |  2 +-
 .../ChillMainBundle/Notification/Mailer.php   |  2 +-
 .../Pagination/ChillItemsPerPageTwig.php      |  2 +-
 .../Pagination/ChillPaginationTwig.php        |  2 +-
 .../ChillMainBundle/Pagination/Page.php       |  2 +-
 .../ChillMainBundle/Pagination/Paginator.php  |  2 +-
 .../Pagination/PaginatorFactory.php           |  4 +--
 .../Phonenumber/PhonenumberHelper.php         |  2 +-
 .../Repository/NewsItemRepository.php         |  2 +-
 .../MenuBuilder/AdminUserMenuBuilder.php      |  2 +-
 .../ChillMainBundle/Search/Model/Result.php   |  2 +-
 .../ChillMainBundle/Search/SearchProvider.php |  4 +--
 .../Authorization/AuthorizationHelper.php     |  2 +-
 .../Authorization/DefaultVoterHelper.php      |  2 +-
 .../Security/ParentRoleHelper.php             |  2 +-
 .../PasswordRecover/RecoverPasswordHelper.php |  2 +-
 .../ChillMainBundle/Security/RoleProvider.php |  2 +-
 .../Import/AddressReferenceBaseImporter.php   |  2 +-
 .../Import/GeographicalUnitBaseImporter.php   |  2 +-
 .../Service/Import/PostalCodeBaseImporter.php |  2 +-
 .../Service/RollingDate/RollingDate.php       |  2 +-
 .../ShortMessageOvh/OvhShortMessageSender.php |  2 +-
 .../Templating/ChillTwigHelper.php            |  2 +-
 .../Templating/ChillTwigRoutingHelper.php     |  2 +-
 .../Listing/FilterOrderHelperBuilder.php      |  2 +-
 .../Templating/Listing/Templating.php         |  2 +-
 .../ChillMainBundle/Test/DummyPaginator.php   |  2 +-
 .../Test/PrepareClientTrait.php               |  2 +-
 .../Tests/Export/ExportManagerTest.php        |  2 +-
 .../Tests/Pagination/PageTest.php             |  6 ++--
 .../Tests/Pagination/PaginatorTest.php        |  8 ++---
 .../Authorization/AuthorizationHelperTest.php |  2 +-
 .../ChillMainBundle/Tests/TestHelper.php      |  2 +-
 ...ntityWorkflowTransitionEventSubscriber.php |  2 +-
 .../NotificationOnTransition.php              |  2 +-
 .../SendAccessKeyEventSubscriber.php          |  2 +-
 .../Workflow/WorkflowTransitionContextDTO.php |  2 +-
 .../ChillPersonBundle/Actions/ActionEvent.php |  2 +-
 .../Actions/Remove/PersonMove.php             |  2 +-
 .../Command/ChillPersonMoveCommand.php        |  2 +-
 .../Command/ImportSocialWorkMetadata.php      |  2 +-
 .../Config/ConfigPersonAltNamesHelper.php     |  2 +-
 .../AccompanyingCourseWorkController.php      |  2 +-
 .../AccompanyingPeriodController.php          |  2 +-
 .../HouseholdCompositionController.php        |  2 +-
 .../Controller/PersonApiController.php        |  2 +-
 .../UserAccompanyingPeriodController.php      |  2 +-
 .../DataFixtures/ORM/LoadPeople.php           |  2 +-
 .../AccompanyingPeriodWorkReferrerHistory.php |  2 +-
 .../Entity/AccompanyingPeriod/UserHistory.php |  2 +-
 .../AccompanyingPeriodParticipation.php       |  2 +-
 .../ChillPersonBundle/Entity/Person.php       |  4 +--
 .../Entity/Person/PersonCenterHistory.php     |  2 +-
 .../Entity/SocialWork/SocialAction.php        |  2 +-
 .../CreatorJobAggregator.php                  |  2 +-
 .../OriginAggregator.php                      |  2 +-
 .../ReferrerAggregator.php                    |  2 +-
 .../ByStepAggregator.php                      |  2 +-
 .../CreatorAggregator.php                     |  2 +-
 .../CreatorJobAggregator.php                  |  2 +-
 .../CreatorScopeAggregator.php                |  2 +-
 .../SocialWorkAggregators/JobAggregator.php   |  2 +-
 .../ReferrerAggregator.php                    |  2 +-
 .../SocialWorkAggregators/ScopeAggregator.php |  2 +-
 ...rkPersonAssociatedOnAccompanyingPeriod.php |  2 +-
 ...vgDurationAPWorkPersonAssociatedOnWork.php |  2 +-
 .../Export/Export/ListPersonDuplicate.php     |  2 +-
 .../CreatorJobFilter.php                      |  2 +-
 .../GeographicalUnitStatFilter.php            |  2 +-
 .../ReferrerFilterBetweenDates.php            |  2 +-
 .../SocialActionFilter.php                    |  2 +-
 .../SocialIssueFilter.php                     |  2 +-
 .../ByDateFilter.php                          |  2 +-
 .../HouseholdFilters/CompositionFilter.php    |  2 +-
 .../SocialWorkFilters/CreatorJobFilter.php    |  2 +-
 .../SocialWorkFilters/CreatorScopeFilter.php  |  2 +-
 .../Filter/SocialWorkFilters/ScopeFilter.php  |  2 +-
 .../Helper/ListAccompanyingPeriodHelper.php   |  2 +-
 .../Form/ChoiceLoader/PersonChoiceLoader.php  |  2 +-
 .../Form/CreationPersonType.php               |  2 +-
 .../Form/Type/ClosingMotivePickerType.php     |  2 +-
 .../Form/Type/PickPersonType.php              |  2 +-
 .../Household/MembersEditor.php               |  4 +--
 .../Menu/PersonMenuBuilder.php                |  2 +-
 .../Menu/UserMenuBuilder.php                  |  2 +-
 .../Privacy/PrivacyEventSubscriber.php        |  2 +-
 .../AccompanyingPeriodACLAwareRepository.php  |  4 +--
 ...nyingPeriodACLAwareRepositoryInterface.php |  2 +-
 .../Household/HouseholdACLAwareRepository.php |  2 +-
 .../HouseholdACLAwareRepositoryInterface.php  |  2 +-
 .../Repository/PersonACLAwareRepository.php   |  8 ++---
 .../PersonACLAwareRepositoryInterface.php     |  6 ++--
 .../Repository/PersonRepository.php           |  4 +--
 .../Search/SimilarPersonMatcher.php           |  4 +--
 .../Authorization/AccompanyingPeriodVoter.php |  2 +-
 .../AccompanyingPeriodWorkVoter.php           |  2 +-
 .../Security/Authorization/PersonVoter.php    |  2 +-
 ...orkEvaluationDocumentStoredObjectVoter.php |  2 +-
 .../Normalizer/PersonJsonNormalizer.php       |  2 +-
 .../AccompanyingPeriodContext.php             |  2 +-
 .../Service/DocGenerator/PersonContext.php    |  2 +-
 .../PersonContextWithThirdParty.php           |  2 +-
 .../Service/Import/SocialWorkMetadata.php     |  4 +--
 .../Templating/Entity/ClosingMotiveRender.php |  2 +-
 .../Events/PersonMoveEventSubscriberTest.php  |  2 +-
 .../Controller/PersonControllerCreateTest.php |  2 +-
 .../Tests/Household/MembersEditorTest.php     |  2 +-
 .../Normalizer/PersonDocGenNormalizerTest.php |  4 +--
 .../Normalizer/PersonJsonNormalizerTest.php   |  2 +-
 .../AccompanyingPeriodContextTest.php         |  2 +-
 .../DocGenerator/PersonContextTest.php        |  4 +--
 ...odWorkEvaluationGenericDocProviderTest.php |  2 +-
 .../Constraints/Person/BirthdateValidator.php |  2 +-
 .../Widget/AddAPersonWidget.php               |  2 +-
 ...dWorkEvaluationDocumentWorkflowHandler.php |  2 +-
 ...ingPeriodWorkEvaluationWorkflowHandler.php |  2 +-
 .../AccompanyingPeriodWorkWorkflowHandler.php |  2 +-
 .../Controller/ReportController.php           |  2 +-
 .../ORM/LoadCustomFieldsGroup.php             |  2 +-
 .../DataFixtures/ORM/LoadReports.php          |  2 +-
 .../Export/Export/ReportListProvider.php      |  2 +-
 .../ChillReportBundle/Form/ReportType.php     |  2 +-
 .../Tests/Controller/ReportControllerTest.php |  2 +-
 .../Authorization/ReportVoterTest.php         |  2 +-
 .../Controller/SingleTaskController.php       |  8 ++---
 .../Controller/TaskController.php             |  2 +-
 .../Event/Lifecycle/TaskLifecycleEvent.php    |  2 +-
 .../Form/SingleTaskListType.php               |  2 +-
 .../ChillTaskBundle/Menu/MenuBuilder.php      |  2 +-
 .../Menu/SectionMenuBuilder.php               |  2 +-
 .../ChillTaskBundle/Menu/UserMenuBuilder.php  |  2 +-
 .../SingleTaskAclAwareRepository.php          | 30 +++++++++----------
 .../SingleTaskAclAwareRepositoryInterface.php | 12 ++++----
 .../Repository/SingleTaskStateRepository.php  |  2 +-
 .../Authorization/AuthorizationEvent.php      |  2 +-
 .../Security/Authorization/TaskVoter.php      |  2 +-
 .../Templating/TaskTwigExtension.php          |  2 +-
 .../Templating/UI/CountNotificationTask.php   |  2 +-
 .../Definition/DefaultTaskDefinition.php      |  2 +-
 .../Controller/ThirdPartyController.php       |  2 +-
 .../Form/ThirdPartyType.php                   |  2 +-
 .../Form/Type/PickThirdPartyType.php          |  2 +-
 .../Menu/MenuBuilder.php                      |  2 +-
 .../ThirdPartyACLAwareRepository.php          |  4 +--
 .../ThirdPartyACLAwareRepositoryInterface.php |  2 +-
 .../Search/ThirdPartySearch.php               |  2 +-
 .../src/Controller/Convert.php                |  2 +-
 .../src/Service/Controller/Responder.php      |  6 ++--
 .../Service/Controller/ResponderInterface.php |  6 ++--
 .../Service/Wopi/ChillDocumentLockManager.php |  2 +-
 .../src/Service/Wopi/ChillDocumentManager.php |  2 +-
 .../src/Service/Wopi/ChillWopi.php            | 18 +++++------
 302 files changed, 391 insertions(+), 391 deletions(-)

diff --git a/src/Bundle/ChillActivityBundle/Controller/ActivityController.php b/src/Bundle/ChillActivityBundle/Controller/ActivityController.php
index cbfb93400..f248c6559 100644
--- a/src/Bundle/ChillActivityBundle/Controller/ActivityController.php
+++ b/src/Bundle/ChillActivityBundle/Controller/ActivityController.php
@@ -68,7 +68,7 @@ final class ActivityController extends AbstractController
         private readonly FilterOrderHelperFactoryInterface $filterOrderHelperFactory,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly PaginatorFactory $paginatorFactory,
-        private readonly ChillSecurity $security
+        private readonly ChillSecurity $security,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityReasonAggregator.php b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityReasonAggregator.php
index 33090f297..ad3937a6e 100644
--- a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityReasonAggregator.php
+++ b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityReasonAggregator.php
@@ -28,7 +28,7 @@ class ActivityReasonAggregator implements AggregatorInterface, ExportElementVali
     public function __construct(
         protected ActivityReasonCategoryRepository $activityReasonCategoryRepository,
         protected ActivityReasonRepository $activityReasonRepository,
-        protected TranslatableStringHelper $translatableStringHelper
+        protected TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersJobAggregator.php b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersJobAggregator.php
index 3628206ec..b90c2b0cc 100644
--- a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersJobAggregator.php
+++ b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersJobAggregator.php
@@ -26,7 +26,7 @@ class ActivityUsersJobAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserJobRepositoryInterface $userJobRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersScopeAggregator.php b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersScopeAggregator.php
index bffce629f..a93a2a875 100644
--- a/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersScopeAggregator.php
+++ b/src/Bundle/ChillActivityBundle/Export/Aggregator/ActivityUsersScopeAggregator.php
@@ -26,7 +26,7 @@ class ActivityUsersScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly ScopeRepositoryInterface $scopeRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorJobAggregator.php b/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorJobAggregator.php
index d57670e7f..ef8dd8c50 100644
--- a/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorJobAggregator.php
+++ b/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorJobAggregator.php
@@ -26,7 +26,7 @@ class CreatorJobAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserJobRepositoryInterface $userJobRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorScopeAggregator.php b/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorScopeAggregator.php
index 6641f0807..ddf90dfbc 100644
--- a/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorScopeAggregator.php
+++ b/src/Bundle/ChillActivityBundle/Export/Aggregator/CreatorScopeAggregator.php
@@ -26,7 +26,7 @@ class CreatorScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly ScopeRepository $scopeRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Export/LinkedToPerson/StatActivityDuration.php b/src/Bundle/ChillActivityBundle/Export/Export/LinkedToPerson/StatActivityDuration.php
index 3cdadac67..547dbf6bc 100644
--- a/src/Bundle/ChillActivityBundle/Export/Export/LinkedToPerson/StatActivityDuration.php
+++ b/src/Bundle/ChillActivityBundle/Export/Export/LinkedToPerson/StatActivityDuration.php
@@ -42,7 +42,7 @@ class StatActivityDuration implements ExportInterface, GroupedExportInterface
         /**
          * The action for this report.
          */
-        protected string $action = 'sum'
+        protected string $action = 'sum',
     ) {
         $this->filterStatsByCenters = $parameterBag->get('chill_main')['acl']['filter_stats_by_center'];
     }
diff --git a/src/Bundle/ChillActivityBundle/Export/Export/ListActivityHelper.php b/src/Bundle/ChillActivityBundle/Export/Export/ListActivityHelper.php
index 15137b013..dd817e7ab 100644
--- a/src/Bundle/ChillActivityBundle/Export/Export/ListActivityHelper.php
+++ b/src/Bundle/ChillActivityBundle/Export/Export/ListActivityHelper.php
@@ -39,7 +39,7 @@ class ListActivityHelper
         private readonly TranslatorInterface $translator,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly TranslatableStringExportLabelHelper $translatableStringLabelHelper,
-        private readonly UserHelper $userHelper
+        private readonly UserHelper $userHelper,
     ) {}
 
     public function addSelect(QueryBuilder $qb): void
diff --git a/src/Bundle/ChillActivityBundle/Export/Filter/ActivityPresenceFilter.php b/src/Bundle/ChillActivityBundle/Export/Filter/ActivityPresenceFilter.php
index 201b9f810..c9eab9066 100644
--- a/src/Bundle/ChillActivityBundle/Export/Filter/ActivityPresenceFilter.php
+++ b/src/Bundle/ChillActivityBundle/Export/Filter/ActivityPresenceFilter.php
@@ -25,7 +25,7 @@ final readonly class ActivityPresenceFilter implements FilterInterface
 {
     public function __construct(
         private TranslatableStringHelperInterface $translatableStringHelper,
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function getTitle()
diff --git a/src/Bundle/ChillActivityBundle/Export/Filter/ActivityTypeFilter.php b/src/Bundle/ChillActivityBundle/Export/Filter/ActivityTypeFilter.php
index ae47146df..96e42c3e6 100644
--- a/src/Bundle/ChillActivityBundle/Export/Filter/ActivityTypeFilter.php
+++ b/src/Bundle/ChillActivityBundle/Export/Filter/ActivityTypeFilter.php
@@ -26,7 +26,7 @@ class ActivityTypeFilter implements ExportElementValidatedInterface, FilterInter
 {
     public function __construct(
         protected TranslatableStringHelperInterface $translatableStringHelper,
-        protected ActivityTypeRepositoryInterface $activityTypeRepository
+        protected ActivityTypeRepositoryInterface $activityTypeRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Filter/UsersJobFilter.php b/src/Bundle/ChillActivityBundle/Export/Filter/UsersJobFilter.php
index f6d23ea78..cf2787359 100644
--- a/src/Bundle/ChillActivityBundle/Export/Filter/UsersJobFilter.php
+++ b/src/Bundle/ChillActivityBundle/Export/Filter/UsersJobFilter.php
@@ -29,7 +29,7 @@ class UsersJobFilter implements FilterInterface
 
     public function __construct(
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly UserJobRepositoryInterface $userJobRepository
+        private readonly UserJobRepositoryInterface $userJobRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Export/Filter/UsersScopeFilter.php b/src/Bundle/ChillActivityBundle/Export/Filter/UsersScopeFilter.php
index 4ce9c845a..bbf1630c4 100644
--- a/src/Bundle/ChillActivityBundle/Export/Filter/UsersScopeFilter.php
+++ b/src/Bundle/ChillActivityBundle/Export/Filter/UsersScopeFilter.php
@@ -29,7 +29,7 @@ class UsersScopeFilter implements FilterInterface
 
     public function __construct(
         private readonly ScopeRepositoryInterface $scopeRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillActivityBundle/Form/ActivityType.php b/src/Bundle/ChillActivityBundle/Form/ActivityType.php
index 9e2358e8b..28c607acd 100644
--- a/src/Bundle/ChillActivityBundle/Form/ActivityType.php
+++ b/src/Bundle/ChillActivityBundle/Form/ActivityType.php
@@ -59,7 +59,7 @@ class ActivityType extends AbstractType
         protected TranslatableStringHelper $translatableStringHelper,
         protected array $timeChoices,
         protected SocialIssueRender $socialIssueRender,
-        protected SocialActionRender $socialActionRender
+        protected SocialActionRender $socialActionRender,
     ) {
         if (!$tokenStorage->getToken()->getUser() instanceof User) {
             throw new \RuntimeException('you should have a valid user');
diff --git a/src/Bundle/ChillActivityBundle/Form/Type/PickActivityReasonType.php b/src/Bundle/ChillActivityBundle/Form/Type/PickActivityReasonType.php
index be1e372f1..ca411b6ac 100644
--- a/src/Bundle/ChillActivityBundle/Form/Type/PickActivityReasonType.php
+++ b/src/Bundle/ChillActivityBundle/Form/Type/PickActivityReasonType.php
@@ -27,7 +27,7 @@ class PickActivityReasonType extends AbstractType
     public function __construct(
         private readonly ActivityReasonRepository $activityReasonRepository,
         private readonly ActivityReasonRender $reasonRender,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function configureOptions(OptionsResolver $resolver)
diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityDocumentACLAwareRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityDocumentACLAwareRepository.php
index c0fd359f1..f57da1a36 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityDocumentACLAwareRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityDocumentACLAwareRepository.php
@@ -32,7 +32,7 @@ final readonly class ActivityDocumentACLAwareRepository implements ActivityDocum
         private EntityManagerInterface $em,
         private CenterResolverManagerInterface $centerResolverManager,
         private AuthorizationHelperForCurrentUserInterface $authorizationHelperForCurrentUser,
-        private Security $security
+        private Security $security,
     ) {}
 
     public function buildFetchQueryActivityDocumentLinkedToPersonFromPersonContext(Person $person, ?\DateTimeImmutable $startDate = null, ?\DateTimeImmutable $endDate = null, ?string $content = null): FetchQueryInterface
diff --git a/src/Bundle/ChillActivityBundle/Repository/ActivityReasonRepository.php b/src/Bundle/ChillActivityBundle/Repository/ActivityReasonRepository.php
index 47a7b35e8..7943c0fb3 100644
--- a/src/Bundle/ChillActivityBundle/Repository/ActivityReasonRepository.php
+++ b/src/Bundle/ChillActivityBundle/Repository/ActivityReasonRepository.php
@@ -25,7 +25,7 @@ class ActivityReasonRepository extends ServiceEntityRepository
 {
     public function __construct(
         ManagerRegistry $registry,
-        private readonly RequestStack $requestStack
+        private readonly RequestStack $requestStack,
     ) {
         parent::__construct($registry, ActivityReason::class);
     }
diff --git a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
index 4be101c45..78def7318 100644
--- a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityStoredObjectVoter.php
@@ -24,7 +24,7 @@ class ActivityStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly ActivityRepository $repository,
         Security $security,
-        WorkflowStoredObjectPermissionHelper $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService,
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityVoter.php b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityVoter.php
index dd51a1f55..7a73a709c 100644
--- a/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityVoter.php
+++ b/src/Bundle/ChillActivityBundle/Security/Authorization/ActivityVoter.php
@@ -75,7 +75,7 @@ class ActivityVoter extends AbstractChillVoter implements ProvideRoleHierarchyIn
 
     public function __construct(
         protected Security $security,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory->generate(self::class)
             ->addCheckFor(Person::class, [self::SEE, self::CREATE])
diff --git a/src/Bundle/ChillActivityBundle/Service/DocGenerator/ActivityContext.php b/src/Bundle/ChillActivityBundle/Service/DocGenerator/ActivityContext.php
index 46e466ae1..cd0ca2a4f 100644
--- a/src/Bundle/ChillActivityBundle/Service/DocGenerator/ActivityContext.php
+++ b/src/Bundle/ChillActivityBundle/Service/DocGenerator/ActivityContext.php
@@ -50,7 +50,7 @@ class ActivityContext implements
         private readonly TranslatorInterface $translator,
         private readonly BaseContextData $baseContextData,
         private readonly ThirdPartyRender $thirdPartyRender,
-        private readonly ThirdPartyRepository $thirdPartyRepository
+        private readonly ThirdPartyRepository $thirdPartyRepository,
     ) {}
 
     public function adminFormReverseTransform(array $data): array
diff --git a/src/Bundle/ChillActivityBundle/Service/DocGenerator/ListActivitiesByAccompanyingPeriodContext.php b/src/Bundle/ChillActivityBundle/Service/DocGenerator/ListActivitiesByAccompanyingPeriodContext.php
index a2fa996a6..56b9de408 100644
--- a/src/Bundle/ChillActivityBundle/Service/DocGenerator/ListActivitiesByAccompanyingPeriodContext.php
+++ b/src/Bundle/ChillActivityBundle/Service/DocGenerator/ListActivitiesByAccompanyingPeriodContext.php
@@ -56,7 +56,7 @@ class ListActivitiesByAccompanyingPeriodContext implements
         private readonly SocialIssueRepository $socialIssueRepository,
         private readonly ThirdPartyRepository $thirdPartyRepository,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly UserRepository $userRepository
+        private readonly UserRepository $userRepository,
     ) {}
 
     public function adminFormReverseTransform(array $data): array
diff --git a/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityReasonTest.php b/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityReasonTest.php
index 014c3ae9f..750758f72 100644
--- a/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityReasonTest.php
+++ b/src/Bundle/ChillActivityBundle/Tests/Form/Type/TranslatableActivityReasonTest.php
@@ -76,7 +76,7 @@ final class TranslatableActivityReasonTest extends TypeTestCase
      */
     protected function getTranslatableStringHelper(
         $locale = 'en',
-        $fallbackLocale = 'en'
+        $fallbackLocale = 'en',
     ) {
         $prophet = new \Prophecy\Prophet();
         $requestStack = $prophet->prophesize();
diff --git a/src/Bundle/ChillActivityBundle/Tests/Security/Authorization/ActivityVoterTest.php b/src/Bundle/ChillActivityBundle/Tests/Security/Authorization/ActivityVoterTest.php
index e3ab7b60a..0a9e7d8ba 100644
--- a/src/Bundle/ChillActivityBundle/Tests/Security/Authorization/ActivityVoterTest.php
+++ b/src/Bundle/ChillActivityBundle/Tests/Security/Authorization/ActivityVoterTest.php
@@ -138,7 +138,7 @@ final class ActivityVoterTest extends KernelTestCase
         Scope $scope,
         Center $center,
         $attribute,
-        $message
+        $message,
     ) {
         $token = $this->prepareToken($user);
         $activity = $this->prepareActivity($scope, $this->preparePerson($center));
diff --git a/src/Bundle/ChillActivityBundle/Timeline/TimelineActivityProvider.php b/src/Bundle/ChillActivityBundle/Timeline/TimelineActivityProvider.php
index 23a75e9fe..5fe56bbce 100644
--- a/src/Bundle/ChillActivityBundle/Timeline/TimelineActivityProvider.php
+++ b/src/Bundle/ChillActivityBundle/Timeline/TimelineActivityProvider.php
@@ -32,7 +32,7 @@ class TimelineActivityProvider implements TimelineProviderInterface
         protected EntityManagerInterface $em,
         protected AuthorizationHelperInterface $helper,
         TokenStorageInterface $storage,
-        protected ActivityACLAwareRepository $aclAwareRepository
+        protected ActivityACLAwareRepository $aclAwareRepository,
     ) {
         if (!$storage->getToken()->getUser() instanceof User) {
             throw new \RuntimeException('A user should be authenticated !');
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Controller/AsideActivityController.php b/src/Bundle/ChillAsideActivityBundle/src/Controller/AsideActivityController.php
index ffeab7630..fbc9338d6 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Controller/AsideActivityController.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Controller/AsideActivityController.php
@@ -25,7 +25,7 @@ final class AsideActivityController extends CRUDController
 {
     public function __construct(
         private readonly AsideActivityCategoryRepository $categoryRepository,
-        private readonly Security $security
+        private readonly Security $security,
     ) {}
 
     public function createEntity(string $action, Request $request): object
@@ -76,7 +76,7 @@ final class AsideActivityController extends CRUDController
         string $action,
         $query,
         Request $request,
-        PaginatorInterface $paginator
+        PaginatorInterface $paginator,
     ) {
         if ('index' === $action) {
             return $query->orderBy('e.date', 'DESC');
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByActivityTypeAggregator.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByActivityTypeAggregator.php
index 4271ae118..cc311d470 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByActivityTypeAggregator.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByActivityTypeAggregator.php
@@ -22,7 +22,7 @@ class ByActivityTypeAggregator implements AggregatorInterface
 {
     public function __construct(
         private readonly AsideActivityCategoryRepository $asideActivityCategoryRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserJobAggregator.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserJobAggregator.php
index c3883b18a..58d5584b4 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserJobAggregator.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserJobAggregator.php
@@ -26,7 +26,7 @@ class ByUserJobAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserJobRepositoryInterface $userJobRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserScopeAggregator.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserScopeAggregator.php
index a99d2b75f..a0277a37b 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserScopeAggregator.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Aggregator/ByUserScopeAggregator.php
@@ -26,7 +26,7 @@ class ByUserScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly ScopeRepositoryInterface $scopeRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Export/ListAsideActivity.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Export/ListAsideActivity.php
index 33155c62f..816af5771 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Export/ListAsideActivity.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Export/ListAsideActivity.php
@@ -41,7 +41,7 @@ final readonly class ListAsideActivity implements ListInterface, GroupedExportIn
         private AsideActivityCategoryRepository $asideActivityCategoryRepository,
         private CategoryRender $categoryRender,
         private LocationRepository $locationRepository,
-        private TranslatableStringHelperInterface $translatableStringHelper
+        private TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder) {}
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByActivityTypeFilter.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByActivityTypeFilter.php
index 708b12ef1..bfb8fe0b1 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByActivityTypeFilter.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByActivityTypeFilter.php
@@ -27,7 +27,7 @@ class ByActivityTypeFilter implements FilterInterface
     public function __construct(
         private readonly CategoryRender $categoryRender,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly AsideActivityCategoryRepository $asideActivityTypeRepository
+        private readonly AsideActivityCategoryRepository $asideActivityTypeRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByLocationFilter.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByLocationFilter.php
index 6de002606..23c141a06 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByLocationFilter.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByLocationFilter.php
@@ -24,7 +24,7 @@ use Symfony\Component\Security\Core\Security;
 final readonly class ByLocationFilter implements FilterInterface
 {
     public function __construct(
-        private Security $security
+        private Security $security,
     ) {}
 
     public function getTitle(): string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserJobFilter.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserJobFilter.php
index ec2e3d220..551e91cd8 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserJobFilter.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserJobFilter.php
@@ -29,7 +29,7 @@ class ByUserJobFilter implements FilterInterface
 
     public function __construct(
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly UserJobRepositoryInterface $userJobRepository
+        private readonly UserJobRepositoryInterface $userJobRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserScopeFilter.php b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserScopeFilter.php
index 8f8d50462..5257495aa 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserScopeFilter.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Export/Filter/ByUserScopeFilter.php
@@ -29,7 +29,7 @@ class ByUserScopeFilter implements FilterInterface
 
     public function __construct(
         private readonly ScopeRepositoryInterface $scopeRepository,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Menu/UserMenuBuilder.php b/src/Bundle/ChillAsideActivityBundle/src/Menu/UserMenuBuilder.php
index 154556bca..540b1264a 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Menu/UserMenuBuilder.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Menu/UserMenuBuilder.php
@@ -44,7 +44,7 @@ class UserMenuBuilder implements LocalMenuBuilderInterface
         CountNotificationTask $counter,
         TokenStorageInterface $tokenStorage,
         TranslatorInterface $translator,
-        AuthorizationCheckerInterface $authorizationChecker
+        AuthorizationCheckerInterface $authorizationChecker,
     ) {
         $this->counter = $counter;
         $this->tokenStorage = $tokenStorage;
diff --git a/src/Bundle/ChillAsideActivityBundle/src/Security/AsideActivityVoter.php b/src/Bundle/ChillAsideActivityBundle/src/Security/AsideActivityVoter.php
index e15abd439..7fe56e5e4 100644
--- a/src/Bundle/ChillAsideActivityBundle/src/Security/AsideActivityVoter.php
+++ b/src/Bundle/ChillAsideActivityBundle/src/Security/AsideActivityVoter.php
@@ -26,7 +26,7 @@ class AsideActivityVoter extends AbstractChillVoter implements ProvideRoleHierar
     private readonly VoterHelperInterface $voterHelper;
 
     public function __construct(
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillCalendarBundle/Command/SendTestShortMessageOnCalendarCommand.php b/src/Bundle/ChillCalendarBundle/Command/SendTestShortMessageOnCalendarCommand.php
index 1b76f25fa..80ee424b8 100644
--- a/src/Bundle/ChillCalendarBundle/Command/SendTestShortMessageOnCalendarCommand.php
+++ b/src/Bundle/ChillCalendarBundle/Command/SendTestShortMessageOnCalendarCommand.php
@@ -47,7 +47,7 @@ class SendTestShortMessageOnCalendarCommand extends Command
         private readonly PhoneNumberHelperInterface $phoneNumberHelper,
         private readonly ShortMessageForCalendarBuilderInterface $messageForCalendarBuilder,
         private readonly ShortMessageTransporterInterface $transporter,
-        private readonly UserRepositoryInterface $userRepository
+        private readonly UserRepositoryInterface $userRepository,
     ) {
         parent::__construct('chill:calendar:test-send-short-message');
     }
diff --git a/src/Bundle/ChillCalendarBundle/Controller/CalendarController.php b/src/Bundle/ChillCalendarBundle/Controller/CalendarController.php
index e57d2743d..94db03b1f 100644
--- a/src/Bundle/ChillCalendarBundle/Controller/CalendarController.php
+++ b/src/Bundle/ChillCalendarBundle/Controller/CalendarController.php
@@ -59,7 +59,7 @@ class CalendarController extends AbstractController
         private readonly AccompanyingPeriodRepository $accompanyingPeriodRepository,
         private readonly UserRepositoryInterface $userRepository,
         private readonly TranslatorInterface $translator,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillCalendarBundle/Entity/CalendarDoc.php b/src/Bundle/ChillCalendarBundle/Entity/CalendarDoc.php
index 90143231e..aff996095 100644
--- a/src/Bundle/ChillCalendarBundle/Entity/CalendarDoc.php
+++ b/src/Bundle/ChillCalendarBundle/Entity/CalendarDoc.php
@@ -47,7 +47,7 @@ class CalendarDoc implements TrackCreationInterface, TrackUpdateInterface
         Calendar $calendar,
         #[ORM\ManyToOne(targetEntity: StoredObject::class, cascade: ['persist'])]
         #[ORM\JoinColumn(nullable: false)]
-        private ?StoredObject $storedObject
+        private ?StoredObject $storedObject,
     ) {
         $this->setCalendar($calendar);
         $this->datetimeVersion = $calendar->getDateTimeVersion();
diff --git a/src/Bundle/ChillCalendarBundle/Export/Aggregator/JobAggregator.php b/src/Bundle/ChillCalendarBundle/Export/Aggregator/JobAggregator.php
index 76cbe5cd8..1182ea374 100644
--- a/src/Bundle/ChillCalendarBundle/Export/Aggregator/JobAggregator.php
+++ b/src/Bundle/ChillCalendarBundle/Export/Aggregator/JobAggregator.php
@@ -26,7 +26,7 @@ final readonly class JobAggregator implements AggregatorInterface
 
     public function __construct(
         private UserJobRepository $jobRepository,
-        private TranslatableStringHelper $translatableStringHelper
+        private TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillCalendarBundle/Export/Aggregator/ScopeAggregator.php b/src/Bundle/ChillCalendarBundle/Export/Aggregator/ScopeAggregator.php
index 4998f6d1f..ff24baa8c 100644
--- a/src/Bundle/ChillCalendarBundle/Export/Aggregator/ScopeAggregator.php
+++ b/src/Bundle/ChillCalendarBundle/Export/Aggregator/ScopeAggregator.php
@@ -26,7 +26,7 @@ final readonly class ScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private ScopeRepository $scopeRepository,
-        private TranslatableStringHelper $translatableStringHelper
+        private TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillCalendarBundle/Export/Filter/JobFilter.php b/src/Bundle/ChillCalendarBundle/Export/Filter/JobFilter.php
index 5543a453b..3c87397e4 100644
--- a/src/Bundle/ChillCalendarBundle/Export/Filter/JobFilter.php
+++ b/src/Bundle/ChillCalendarBundle/Export/Filter/JobFilter.php
@@ -28,7 +28,7 @@ final readonly class JobFilter implements FilterInterface
 
     public function __construct(
         private TranslatableStringHelper $translatableStringHelper,
-        private UserJobRepositoryInterface $userJobRepository
+        private UserJobRepositoryInterface $userJobRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillCalendarBundle/Export/Filter/ScopeFilter.php b/src/Bundle/ChillCalendarBundle/Export/Filter/ScopeFilter.php
index 2f46db892..3a1c5a35a 100644
--- a/src/Bundle/ChillCalendarBundle/Export/Filter/ScopeFilter.php
+++ b/src/Bundle/ChillCalendarBundle/Export/Filter/ScopeFilter.php
@@ -30,7 +30,7 @@ class ScopeFilter implements FilterInterface
     public function __construct(
         protected TranslatorInterface $translator,
         private readonly TranslatableStringHelper $translatableStringHelper,
-        private readonly ScopeRepositoryInterface $scopeRepository
+        private readonly ScopeRepositoryInterface $scopeRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillCalendarBundle/Form/CalendarType.php b/src/Bundle/ChillCalendarBundle/Form/CalendarType.php
index eec0b3f9f..eb1e1b5f2 100644
--- a/src/Bundle/ChillCalendarBundle/Form/CalendarType.php
+++ b/src/Bundle/ChillCalendarBundle/Form/CalendarType.php
@@ -37,7 +37,7 @@ class CalendarType extends AbstractType
         private readonly IdToUsersDataTransformer $idToUsersDataTransformer,
         private readonly IdToLocationDataTransformer $idToLocationDataTransformer,
         private readonly ThirdPartiesToIdDataTransformer $partiesToIdDataTransformer,
-        private readonly IdToCalendarRangeDataTransformer $calendarRangeDataTransformer
+        private readonly IdToCalendarRangeDataTransformer $calendarRangeDataTransformer,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillCalendarBundle/Messenger/Message/CalendarMessage.php b/src/Bundle/ChillCalendarBundle/Messenger/Message/CalendarMessage.php
index 9bcd81c67..1476ed346 100644
--- a/src/Bundle/ChillCalendarBundle/Messenger/Message/CalendarMessage.php
+++ b/src/Bundle/ChillCalendarBundle/Messenger/Message/CalendarMessage.php
@@ -46,7 +46,7 @@ class CalendarMessage
     public function __construct(
         Calendar $calendar,
         private readonly string $action,
-        User $byUser
+        User $byUser,
     ) {
         $this->calendarId = $calendar->getId();
         $this->byUserId = $byUser->getId();
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MSUserAbsenceReader.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MSUserAbsenceReader.php
index 4acc9de46..2c0e913f3 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MSUserAbsenceReader.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MSUserAbsenceReader.php
@@ -59,7 +59,7 @@ final readonly class MSUserAbsenceReader implements MSUserAbsenceReaderInterface
             'alwaysEnabled' => true,
             'scheduled' => RemoteEventConverter::convertStringDateWithoutTimezone($automaticRepliesSettings['scheduledStartDateTime']['dateTime']) < $this->clock->now()
                 && RemoteEventConverter::convertStringDateWithoutTimezone($automaticRepliesSettings['scheduledEndDateTime']['dateTime']) > $this->clock->now(),
-            default => throw new UserAbsenceSyncException('this status is not documented by Microsoft')
+            default => throw new UserAbsenceSyncException('this status is not documented by Microsoft'),
         };
     }
 }
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MapCalendarToUser.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MapCalendarToUser.php
index 5577adc2e..7b56fda34 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MapCalendarToUser.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/MapCalendarToUser.php
@@ -177,7 +177,7 @@ class MapCalendarToUser
         User $user,
         int $expiration,
         ?string $id = null,
-        ?string $secret = null
+        ?string $secret = null,
     ): void {
         $user->setAttributeByDomain(self::METADATA_KEY, self::EXPIRATION_SUBSCRIPTION_EVENT, $expiration);
 
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
index 84797f6f1..2e2a8acaf 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraph/RemoteEventConverter.php
@@ -57,7 +57,7 @@ class RemoteEventConverter
         private readonly LocationConverter $locationConverter,
         private readonly LoggerInterface $logger,
         private readonly PersonRenderInterface $personRender,
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
     ) {
         $this->defaultDateTimeZone = (new \DateTimeImmutable())->getTimezone();
         $this->remoteDateTimeZone = self::getRemoteTimeZone();
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraphRemoteCalendarConnector.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraphRemoteCalendarConnector.php
index a85de21d3..8b95e1c74 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraphRemoteCalendarConnector.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Connector/MSGraphRemoteCalendarConnector.php
@@ -351,7 +351,7 @@ class MSGraphRemoteCalendarConnector implements RemoteCalendarConnectorInterface
         [
             'id' => $id,
             'lastModifiedDateTime' => $lastModified,
-            'changeKey' => $changeKey
+            'changeKey' => $changeKey,
         ] = $this->createOnRemote($eventData, $calendar->getMainUser(), 'calendar_'.$calendar->getId());
 
         if (null === $id) {
@@ -427,7 +427,7 @@ class MSGraphRemoteCalendarConnector implements RemoteCalendarConnectorInterface
         [
             'id' => $id,
             'lastModifiedDateTime' => $lastModified,
-            'changeKey' => $changeKey
+            'changeKey' => $changeKey,
         ] = $this->createOnRemote(
             $eventData,
             $calendarRange->getUser(),
@@ -564,7 +564,7 @@ class MSGraphRemoteCalendarConnector implements RemoteCalendarConnectorInterface
             [
                 'id' => $id,
                 'lastModifiedDateTime' => $lastModified,
-                'changeKey' => $changeKey
+                'changeKey' => $changeKey,
             ] = $this->patchOnRemote(
                 $calendar->getRemoteId(),
                 $eventData,
diff --git a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Model/RemoteEvent.php b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Model/RemoteEvent.php
index 8da4e74d7..3d86da7f4 100644
--- a/src/Bundle/ChillCalendarBundle/RemoteCalendar/Model/RemoteEvent.php
+++ b/src/Bundle/ChillCalendarBundle/RemoteCalendar/Model/RemoteEvent.php
@@ -33,6 +33,6 @@ class RemoteEvent
         #[Serializer\Groups(['read'])]
         public \DateTimeImmutable $endDate,
         #[Serializer\Groups(['read'])]
-        public bool $isAllDay = false
+        public bool $isAllDay = false,
     ) {}
 }
diff --git a/src/Bundle/ChillCalendarBundle/Repository/CalendarRangeRepository.php b/src/Bundle/ChillCalendarBundle/Repository/CalendarRangeRepository.php
index d6e1ac8a5..33f2f5818 100644
--- a/src/Bundle/ChillCalendarBundle/Repository/CalendarRangeRepository.php
+++ b/src/Bundle/ChillCalendarBundle/Repository/CalendarRangeRepository.php
@@ -65,7 +65,7 @@ class CalendarRangeRepository implements ObjectRepository
         \DateTimeImmutable $from,
         \DateTimeImmutable $to,
         ?int $limit = null,
-        ?int $offset = null
+        ?int $offset = null,
     ): array {
         $qb = $this->buildQueryAvailableRangesForUser($user, $from, $to);
 
diff --git a/src/Bundle/ChillCalendarBundle/Service/DocGenerator/CalendarContext.php b/src/Bundle/ChillCalendarBundle/Service/DocGenerator/CalendarContext.php
index 087f5ea86..c45acd41f 100644
--- a/src/Bundle/ChillCalendarBundle/Service/DocGenerator/CalendarContext.php
+++ b/src/Bundle/ChillCalendarBundle/Service/DocGenerator/CalendarContext.php
@@ -40,7 +40,7 @@ final readonly class CalendarContext implements CalendarContextInterface
         private PersonRepository $personRepository,
         private ThirdPartyRender $thirdPartyRender,
         private ThirdPartyRepository $thirdPartyRepository,
-        private TranslatableStringHelperInterface $translatableStringHelper
+        private TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function adminFormReverseTransform(array $data): array
diff --git a/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/AccompanyingPeriodCalendarGenericDocProvider.php b/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/AccompanyingPeriodCalendarGenericDocProvider.php
index 7d4544b37..ce851a31f 100644
--- a/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/AccompanyingPeriodCalendarGenericDocProvider.php
+++ b/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/AccompanyingPeriodCalendarGenericDocProvider.php
@@ -37,7 +37,7 @@ final readonly class AccompanyingPeriodCalendarGenericDocProvider implements Gen
 
     public function __construct(
         private Security $security,
-        private EntityManagerInterface $em
+        private EntityManagerInterface $em,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/PersonCalendarGenericDocProvider.php b/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/PersonCalendarGenericDocProvider.php
index 5ca52744b..176f7978b 100644
--- a/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/PersonCalendarGenericDocProvider.php
+++ b/src/Bundle/ChillCalendarBundle/Service/GenericDoc/Providers/PersonCalendarGenericDocProvider.php
@@ -36,7 +36,7 @@ final readonly class PersonCalendarGenericDocProvider implements GenericDocForPe
 
     public function __construct(
         private Security $security,
-        private EntityManagerInterface $em
+        private EntityManagerInterface $em,
     ) {}
 
     private function addWhereClausesToQuery(FetchQuery $query, ?\DateTimeImmutable $startDate = null, ?\DateTimeImmutable $endDate = null, ?string $content = null): FetchQuery
diff --git a/src/Bundle/ChillCalendarBundle/Tests/Form/CalendarTypeTest.php b/src/Bundle/ChillCalendarBundle/Tests/Form/CalendarTypeTest.php
index 0d1202b67..83366c848 100644
--- a/src/Bundle/ChillCalendarBundle/Tests/Form/CalendarTypeTest.php
+++ b/src/Bundle/ChillCalendarBundle/Tests/Form/CalendarTypeTest.php
@@ -156,7 +156,7 @@ final class CalendarTypeTest extends TypeTestCase
 
     private function buildMultiToIdDataTransformer(
         string $classTransformer,
-        string $objClass
+        string $objClass,
     ) {
         $transformer = $this->prophesize($classTransformer);
         $transformer->transform(Argument::type('array'))
@@ -195,7 +195,7 @@ final class CalendarTypeTest extends TypeTestCase
 
     private function buildSingleToIdDataTransformer(
         string $classTransformer,
-        string $class
+        string $class,
     ) {
         $transformer = $this->prophesize($classTransformer);
         $transformer->transform(Argument::type('object'))
diff --git a/src/Bundle/ChillCalendarBundle/Tests/Service/DocGenerator/CalendarContextTest.php b/src/Bundle/ChillCalendarBundle/Tests/Service/DocGenerator/CalendarContextTest.php
index c06872a66..8674a6b44 100644
--- a/src/Bundle/ChillCalendarBundle/Tests/Service/DocGenerator/CalendarContextTest.php
+++ b/src/Bundle/ChillCalendarBundle/Tests/Service/DocGenerator/CalendarContextTest.php
@@ -203,7 +203,7 @@ final class CalendarContextTest extends TestCase
 
     private function buildCalendarContext(
         ?EntityManagerInterface $entityManager = null,
-        ?NormalizerInterface $normalizer = null
+        ?NormalizerInterface $normalizer = null,
     ): CalendarContext {
         $baseContext = $this->prophesize(BaseContextData::class);
         $baseContext->getData(null)->willReturn(['base_context' => 'data']);
diff --git a/src/Bundle/ChillCustomFieldsBundle/Command/CreateFieldsOnGroupCommand.php b/src/Bundle/ChillCustomFieldsBundle/Command/CreateFieldsOnGroupCommand.php
index 24c531860..9fd474e24 100644
--- a/src/Bundle/ChillCustomFieldsBundle/Command/CreateFieldsOnGroupCommand.php
+++ b/src/Bundle/ChillCustomFieldsBundle/Command/CreateFieldsOnGroupCommand.php
@@ -44,7 +44,7 @@ class CreateFieldsOnGroupCommand extends Command
         private readonly EntityManager $entityManager,
         private readonly ValidatorInterface $validator,
         private $availableLanguages,
-        private $customizablesEntities
+        private $customizablesEntities,
     ) {
         parent::__construct();
     }
diff --git a/src/Bundle/ChillCustomFieldsBundle/Controller/CustomFieldsGroupController.php b/src/Bundle/ChillCustomFieldsBundle/Controller/CustomFieldsGroupController.php
index 5d16269e6..7c1b0c5ea 100644
--- a/src/Bundle/ChillCustomFieldsBundle/Controller/CustomFieldsGroupController.php
+++ b/src/Bundle/ChillCustomFieldsBundle/Controller/CustomFieldsGroupController.php
@@ -39,7 +39,7 @@ class CustomFieldsGroupController extends AbstractController
     public function __construct(
         private readonly CustomFieldProvider $customFieldProvider,
         private readonly TranslatorInterface $translator,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldChoice.php b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldChoice.php
index a54e4c21f..e803742fe 100644
--- a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldChoice.php
+++ b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldChoice.php
@@ -42,7 +42,7 @@ class CustomFieldChoice extends AbstractCustomField
         /**
          * @var TranslatableStringHelper Helper that find the string in current locale from an array of translation
          */
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function allowOtherChoice(CustomField $cf)
diff --git a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldDate.php b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldDate.php
index dac447930..4eee4e829 100644
--- a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldDate.php
+++ b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldDate.php
@@ -44,7 +44,7 @@ class CustomFieldDate extends AbstractCustomField
 
     public function __construct(
         private readonly Environment $templating,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, CustomField $customField)
diff --git a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldNumber.php b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldNumber.php
index e083b9b80..0f303fed6 100644
--- a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldNumber.php
+++ b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldNumber.php
@@ -41,7 +41,7 @@ class CustomFieldNumber extends AbstractCustomField
 
     public function __construct(
         private readonly Environment $templating,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, CustomField $customField)
diff --git a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldText.php b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldText.php
index 17d8e95e7..00daee1c8 100644
--- a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldText.php
+++ b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldText.php
@@ -28,7 +28,7 @@ class CustomFieldText extends AbstractCustomField
 
     public function __construct(
         private readonly Environment $templating,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldTitle.php b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldTitle.php
index 302e04350..75ecc0368 100644
--- a/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldTitle.php
+++ b/src/Bundle/ChillCustomFieldsBundle/CustomFields/CustomFieldTitle.php
@@ -31,7 +31,7 @@ class CustomFieldTitle extends AbstractCustomField
         /**
          * @var TranslatableStringHelper Helper that find the string in current locale from an array of translation
          */
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, CustomField $customField)
diff --git a/src/Bundle/ChillCustomFieldsBundle/Form/CustomFieldsGroupType.php b/src/Bundle/ChillCustomFieldsBundle/Form/CustomFieldsGroupType.php
index 8cf3ea182..13e349012 100644
--- a/src/Bundle/ChillCustomFieldsBundle/Form/CustomFieldsGroupType.php
+++ b/src/Bundle/ChillCustomFieldsBundle/Form/CustomFieldsGroupType.php
@@ -26,7 +26,7 @@ class CustomFieldsGroupType extends AbstractType
     public function __construct(
         private readonly array $customizableEntities,
         // TODO : add comment about this variable
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
     ) {}
 
     // TODO : details about the function
diff --git a/src/Bundle/ChillDocGeneratorBundle/Controller/DocGeneratorTemplateController.php b/src/Bundle/ChillDocGeneratorBundle/Controller/DocGeneratorTemplateController.php
index dfb70d1c8..7bcd6f6d5 100644
--- a/src/Bundle/ChillDocGeneratorBundle/Controller/DocGeneratorTemplateController.php
+++ b/src/Bundle/ChillDocGeneratorBundle/Controller/DocGeneratorTemplateController.php
@@ -48,7 +48,7 @@ final class DocGeneratorTemplateController extends AbstractController
         private readonly PaginatorFactory $paginatorFactory,
         private readonly EntityManagerInterface $entityManager,
         private readonly ClockInterface $clock,
-        private readonly ChillSecurity $security
+        private readonly ChillSecurity $security,
     ) {}
 
     #[Route(path: '{_locale}/admin/doc/gen/generate/test/from/{template}/for/{entityClassName}/{entityId}', name: 'chill_docgenerator_test_generate_from_template')]
@@ -56,7 +56,7 @@ final class DocGeneratorTemplateController extends AbstractController
         DocGeneratorTemplate $template,
         string $entityClassName,
         int $entityId,
-        Request $request
+        Request $request,
     ): Response {
         return $this->generateDocFromTemplate(
             $template,
@@ -71,7 +71,7 @@ final class DocGeneratorTemplateController extends AbstractController
         DocGeneratorTemplate $template,
         string $entityClassName,
         int $entityId,
-        Request $request
+        Request $request,
     ): Response {
         return $this->generateDocFromTemplate(
             $template,
@@ -137,7 +137,7 @@ final class DocGeneratorTemplateController extends AbstractController
         DocGeneratorTemplate $template,
         int $entityId,
         Request $request,
-        bool $isTest
+        bool $isTest,
     ): Response {
         try {
             $context = $this->contextManager->getContextByDocGeneratorTemplate($template);
diff --git a/src/Bundle/ChillDocGeneratorBundle/GeneratorDriver/RelatorioDriver.php b/src/Bundle/ChillDocGeneratorBundle/GeneratorDriver/RelatorioDriver.php
index 1ee3f0ba1..4ce0ad139 100644
--- a/src/Bundle/ChillDocGeneratorBundle/GeneratorDriver/RelatorioDriver.php
+++ b/src/Bundle/ChillDocGeneratorBundle/GeneratorDriver/RelatorioDriver.php
@@ -28,7 +28,7 @@ final readonly class RelatorioDriver implements DriverInterface
     public function __construct(
         private HttpClientInterface $client,
         ParameterBagInterface $parameterBag,
-        private LoggerInterface $logger
+        private LoggerInterface $logger,
     ) {
         $this->url = $parameterBag->get('chill_doc_generator')['driver']['relatorio']['url'];
     }
diff --git a/src/Bundle/ChillDocGeneratorBundle/Serializer/Normalizer/DocGenObjectNormalizer.php b/src/Bundle/ChillDocGeneratorBundle/Serializer/Normalizer/DocGenObjectNormalizer.php
index a19e783d1..e6cec30bb 100644
--- a/src/Bundle/ChillDocGeneratorBundle/Serializer/Normalizer/DocGenObjectNormalizer.php
+++ b/src/Bundle/ChillDocGeneratorBundle/Serializer/Normalizer/DocGenObjectNormalizer.php
@@ -35,7 +35,7 @@ class DocGenObjectNormalizer implements NormalizerAwareInterface, NormalizerInte
 
     public function __construct(
         private readonly ClassMetadataFactoryInterface $classMetadataFactory,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {
         $this->propertyAccess = PropertyAccess::createPropertyAccessor();
     }
diff --git a/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php b/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
index d4ca5cf2e..3e4d8fe3b 100644
--- a/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
+++ b/src/Bundle/ChillDocGeneratorBundle/Service/Generator/Generator.php
@@ -33,7 +33,7 @@ class Generator implements GeneratorInterface
         private readonly DriverInterface $driver,
         private readonly ManagerRegistry $objectManagerRegistry,
         private readonly LoggerInterface $logger,
-        private readonly StoredObjectManagerInterface $storedObjectManager
+        private readonly StoredObjectManagerInterface $storedObjectManager,
     ) {}
 
     public function generateDataDump(
diff --git a/src/Bundle/ChillDocGeneratorBundle/Service/Messenger/OnGenerationFails.php b/src/Bundle/ChillDocGeneratorBundle/Service/Messenger/OnGenerationFails.php
index e3491f339..b9d538a63 100644
--- a/src/Bundle/ChillDocGeneratorBundle/Service/Messenger/OnGenerationFails.php
+++ b/src/Bundle/ChillDocGeneratorBundle/Service/Messenger/OnGenerationFails.php
@@ -39,7 +39,7 @@ final readonly class OnGenerationFails implements EventSubscriberInterface
         private MailerInterface $mailer,
         private StoredObjectRepositoryInterface $storedObjectRepository,
         private TranslatorInterface $translator,
-        private UserRepositoryInterface $userRepository
+        private UserRepositoryInterface $userRepository,
     ) {}
 
     public static function getSubscribedEvents()
diff --git a/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/BaseContextDataTest.php b/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/BaseContextDataTest.php
index ee5a6cc62..c7821e2dd 100644
--- a/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/BaseContextDataTest.php
+++ b/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/BaseContextDataTest.php
@@ -56,7 +56,7 @@ final class BaseContextDataTest extends KernelTestCase
     }
 
     private function buildBaseContext(
-        ?NormalizerInterface $normalizer = null
+        ?NormalizerInterface $normalizer = null,
     ): BaseContextData {
         return new BaseContextData(
             $normalizer ?? self::getContainer()->get(NormalizerInterface::class)
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
index 19a52f71d..19086b1c9 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Driver/OpenstackObjectStore/TempUrlOpenstackGenerator.php
@@ -144,7 +144,7 @@ final readonly class TempUrlOpenstackGenerator implements TempUrlGeneratorInterf
     {
         return match (str_ends_with($this->base_url, '/')) {
             true => $this->base_url.$relative_path,
-            false => $this->base_url.'/'.$relative_path
+            false => $this->base_url.'/'.$relative_path,
         };
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Templating/AsyncUploadExtension.php b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Templating/AsyncUploadExtension.php
index e7c3e6cf0..8bece267b 100644
--- a/src/Bundle/ChillDocStoreBundle/AsyncUpload/Templating/AsyncUploadExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/AsyncUpload/Templating/AsyncUploadExtension.php
@@ -25,7 +25,7 @@ class AsyncUploadExtension extends AbstractExtension
 {
     public function __construct(
         private readonly TempUrlGeneratorInterface $tempUrlGenerator,
-        private readonly UrlGeneratorInterface $routingUrlGenerator
+        private readonly UrlGeneratorInterface $routingUrlGenerator,
     ) {}
 
     public function getFilters()
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseController.php
index a281fc663..018d6cb8f 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseController.php
@@ -35,7 +35,7 @@ class DocumentAccompanyingCourseController extends AbstractController
         protected TranslatorInterface $translator,
         protected EventDispatcherInterface $eventDispatcher,
         protected AuthorizationHelper $authorizationHelper,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[Route(path: '/{id}/delete', name: 'chill_docstore_accompanying_course_document_delete')]
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
index ba17c1c73..2d2cf66f3 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
@@ -44,7 +44,7 @@ class DocumentPersonController extends AbstractController
         protected AuthorizationHelper $authorizationHelper,
         protected PDFSignatureZoneParser $PDFSignatureZoneParser,
         protected StoredObjectManagerInterface $storedObjectManagerInterface,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[Route(path: '/{id}/delete', name: 'chill_docstore_person_document_delete')]
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
index cf5830c53..b67298f4c 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectApiController.php
@@ -26,7 +26,7 @@ class StoredObjectApiController extends ApiController
     public function __construct(
         private readonly Security $security,
         private readonly SerializerInterface $serializer,
-        private readonly EntityManagerInterface $entityManager
+        private readonly EntityManagerInterface $entityManager,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/DocumentCategory.php b/src/Bundle/ChillDocStoreBundle/Entity/DocumentCategory.php
index bac09414a..37882c930 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/DocumentCategory.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/DocumentCategory.php
@@ -42,7 +42,7 @@ class DocumentCategory
          */
         #[ORM\Id]
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, name: 'id_inside_bundle')]
-        private $idInsideBundle
+        private $idInsideBundle,
     ) {}
 
     public function getBundleId() // ::class BundleClass (FQDN)
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index b108d086b..271c7cd32 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -99,7 +99,7 @@ class StoredObject implements Document, TrackCreationInterface
      */
     public function __construct(
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, options: ['default' => 'ready'])]
-        private string $status = 'empty'
+        private string $status = 'empty',
     ) {
         $this->uuid = Uuid::uuid4();
         $this->versions = new ArrayCollection();
diff --git a/src/Bundle/ChillDocStoreBundle/Form/AccompanyingCourseDocumentType.php b/src/Bundle/ChillDocStoreBundle/Form/AccompanyingCourseDocumentType.php
index 5d2096ca0..42711b01a 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/AccompanyingCourseDocumentType.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/AccompanyingCourseDocumentType.php
@@ -27,7 +27,7 @@ use Symfony\Component\OptionsResolver\OptionsResolver;
 final class AccompanyingCourseDocumentType extends AbstractType
 {
     public function __construct(
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillDocStoreBundle/Form/Type/AsyncUploaderType.php b/src/Bundle/ChillDocStoreBundle/Form/Type/AsyncUploaderType.php
index 58d4eebb1..cd87fa922 100644
--- a/src/Bundle/ChillDocStoreBundle/Form/Type/AsyncUploaderType.php
+++ b/src/Bundle/ChillDocStoreBundle/Form/Type/AsyncUploaderType.php
@@ -55,7 +55,7 @@ class AsyncUploaderType extends AbstractType
     public function buildView(
         FormView $view,
         FormInterface $form,
-        array $options
+        array $options,
     ) {
         $view->vars['attr']['data-async-file-upload'] = true;
         $view->vars['attr']['data-generate-temp-url-post'] = $this
diff --git a/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForAccompanyingPeriodProviderInterface.php b/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForAccompanyingPeriodProviderInterface.php
index bffa19b53..82a3ba0e3 100644
--- a/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForAccompanyingPeriodProviderInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForAccompanyingPeriodProviderInterface.php
@@ -20,7 +20,7 @@ interface GenericDocForAccompanyingPeriodProviderInterface
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        ?string $origin = null
+        ?string $origin = null,
     ): FetchQueryInterface;
 
     /**
diff --git a/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForPersonProviderInterface.php b/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForPersonProviderInterface.php
index 264a1d8f2..f85fc763a 100644
--- a/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForPersonProviderInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/GenericDoc/GenericDocForPersonProviderInterface.php
@@ -20,7 +20,7 @@ interface GenericDocForPersonProviderInterface
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        ?string $origin = null
+        ?string $origin = null,
     ): FetchQueryInterface;
 
     /**
diff --git a/src/Bundle/ChillDocStoreBundle/GenericDoc/Manager.php b/src/Bundle/ChillDocStoreBundle/GenericDoc/Manager.php
index a185ce9b6..bec331523 100644
--- a/src/Bundle/ChillDocStoreBundle/GenericDoc/Manager.php
+++ b/src/Bundle/ChillDocStoreBundle/GenericDoc/Manager.php
@@ -46,7 +46,7 @@ final readonly class Manager
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        array $places = []
+        array $places = [],
     ): int {
         ['sql' => $sql, 'params' => $params, 'types' => $types] = $this->buildUnionQuery($accompanyingPeriod, $startDate, $endDate, $content, $places);
 
@@ -76,7 +76,7 @@ final readonly class Manager
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        array $places = []
+        array $places = [],
     ): int {
         ['sql' => $sql, 'params' => $params, 'types' => $types] = $this->buildUnionQuery($person, $startDate, $endDate, $content, $places);
 
@@ -97,7 +97,7 @@ final readonly class Manager
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        array $places = []
+        array $places = [],
     ): iterable {
         ['sql' => $sql, 'params' => $params, 'types' => $types] = $this->buildUnionQuery($accompanyingPeriod, $startDate, $endDate, $content, $places);
 
@@ -140,7 +140,7 @@ final readonly class Manager
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        array $places = []
+        array $places = [],
     ): iterable {
         ['sql' => $sql, 'params' => $params, 'types' => $types] = $this->buildUnionQuery($person, $startDate, $endDate, $content, $places);
 
diff --git a/src/Bundle/ChillDocStoreBundle/GenericDoc/Providers/PersonDocumentGenericDocProvider.php b/src/Bundle/ChillDocStoreBundle/GenericDoc/Providers/PersonDocumentGenericDocProvider.php
index 2b9239c74..e5c99b258 100644
--- a/src/Bundle/ChillDocStoreBundle/GenericDoc/Providers/PersonDocumentGenericDocProvider.php
+++ b/src/Bundle/ChillDocStoreBundle/GenericDoc/Providers/PersonDocumentGenericDocProvider.php
@@ -34,7 +34,7 @@ final readonly class PersonDocumentGenericDocProvider implements GenericDocForPe
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
         ?string $content = null,
-        ?string $origin = null
+        ?string $origin = null,
     ): FetchQueryInterface {
         return $this->personDocumentACLAwareRepository->buildFetchQueryForPerson(
             $person,
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentACLAwareRepositoryInterface.php b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentACLAwareRepositoryInterface.php
index f1bc70812..ef783a92e 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentACLAwareRepositoryInterface.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentACLAwareRepositoryInterface.php
@@ -31,13 +31,13 @@ interface PersonDocumentACLAwareRepositoryInterface
         Person $person,
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
-        ?string $content = null
+        ?string $content = null,
     ): FetchQueryInterface;
 
     public function buildFetchQueryForAccompanyingPeriod(
         AccompanyingPeriod $period,
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
-        ?string $content = null
+        ?string $content = null,
     ): FetchQueryInterface;
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
index d0ef4c9d9..26bc2d60a 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/PersonDocumentRepository.php
@@ -25,7 +25,7 @@ readonly class PersonDocumentRepository implements ObjectRepository, AssociatedE
     private EntityRepository $repository;
 
     public function __construct(
-        private EntityManagerInterface $entityManager
+        private EntityManagerInterface $entityManager,
     ) {
         $this->repository = $this->entityManager->getRepository($this->getClassName());
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
index 7a46184cb..d5811e3d4 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AccompanyingCourseDocumentVoter.php
@@ -40,7 +40,7 @@ class AccompanyingCourseDocumentVoter extends AbstractChillVoter implements Prov
     public function __construct(
         protected LoggerInterface $logger,
         protected Security $security,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
index 708df0467..8b8b8b338 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/AsyncUploadVoter.php
@@ -23,7 +23,7 @@ final class AsyncUploadVoter extends Voter
 
     public function __construct(
         private readonly Security $security,
-        private readonly StoredObjectRepository $storedObjectRepository
+        private readonly StoredObjectRepository $storedObjectRepository,
     ) {}
 
     protected function supports($attribute, $subject): bool
@@ -43,7 +43,7 @@ final class AsyncUploadVoter extends Voter
         return match ($subject->method) {
             'GET', 'HEAD' => $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject),
             'PUT' => $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObject),
-            'POST' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN')
+            'POST' => $this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN'),
         };
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/PersonDocumentVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/PersonDocumentVoter.php
index 21c08e9fd..327581e31 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/PersonDocumentVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/PersonDocumentVoter.php
@@ -40,7 +40,7 @@ class PersonDocumentVoter extends AbstractChillVoter implements ProvideRoleHiera
     public function __construct(
         protected LoggerInterface $logger,
         protected Security $security,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
index 0f7015b10..94ff9149d 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/AccompanyingCourseDocumentStoredObjectVoter.php
@@ -24,7 +24,7 @@ final class AccompanyingCourseDocumentStoredObjectVoter extends AbstractStoredOb
     public function __construct(
         private readonly AccompanyingCourseDocumentRepository $repository,
         Security $security,
-        WorkflowStoredObjectPermissionHelper $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService,
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
index 577f362ef..4c8ae693e 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Authorization/StoredObjectVoter/PersonDocumentStoredObjectVoter.php
@@ -24,7 +24,7 @@ class PersonDocumentStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly PersonDocumentRepository $repository,
         Security $security,
-        WorkflowStoredObjectPermissionHelper $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService,
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Security/Guard/DavTokenAuthenticationEventSubscriber.php b/src/Bundle/ChillDocStoreBundle/Security/Guard/DavTokenAuthenticationEventSubscriber.php
index 7b33c0eec..39da44792 100644
--- a/src/Bundle/ChillDocStoreBundle/Security/Guard/DavTokenAuthenticationEventSubscriber.php
+++ b/src/Bundle/ChillDocStoreBundle/Security/Guard/DavTokenAuthenticationEventSubscriber.php
@@ -43,7 +43,7 @@ class DavTokenAuthenticationEventSubscriber implements EventSubscriberInterface
         $token->setAttribute(self::ACTIONS, match ($payload['e']) {
             0 => StoredObjectRoleEnum::SEE,
             1 => StoredObjectRoleEnum::EDIT,
-            default => throw new \UnexpectedValueException('unsupported value for e parameter')
+            default => throw new \UnexpectedValueException('unsupported value for e parameter'),
         });
 
         $token->setAttribute(self::STORED_OBJECT, $payload['so']);
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index 8fb17905d..d87532c2f 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -33,7 +33,7 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
     public function __construct(
         private readonly JWTDavTokenProviderInterface $JWTDavTokenProvider,
         private readonly UrlGeneratorInterface $urlGenerator,
-        private readonly Security $security
+        private readonly Security $security,
     ) {}
 
     public function normalize($object, ?string $format = null, array $context = [])
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
index 62ae154bc..a312713c6 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
@@ -32,7 +32,7 @@ final readonly class RemoveExpiredStoredObjectCronJob implements CronJobInterfac
     public function __construct(
         private ClockInterface $clock,
         private MessageBusInterface $messageBus,
-        private StoredObjectRepositoryInterface $storedObjectRepository
+        private StoredObjectRepositoryInterface $storedObjectRepository,
     ) {}
 
     public function canRun(?CronJobExecution $cronJobExecution): bool
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
index a151e714c..53c246243 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessage.php
@@ -14,6 +14,6 @@ namespace Chill\DocStoreBundle\Service\StoredObjectCleaner;
 final readonly class RemoveOldVersionMessage
 {
     public function __construct(
-        public int $storedObjectVersionId
+        public int $storedObjectVersionId,
     ) {}
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
index ea745167e..098746efa 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectManager.php
@@ -30,7 +30,7 @@ final class StoredObjectManager implements StoredObjectManagerInterface
 
     public function __construct(
         private readonly HttpClientInterface $client,
-        private readonly TempUrlGeneratorInterface $tempUrlGenerator
+        private readonly TempUrlGeneratorInterface $tempUrlGenerator,
     ) {}
 
     public function getLastModified(StoredObject|StoredObjectVersion $document): \DateTimeInterface
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Repository/PersonDocumentACLAwareRepositoryTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Repository/PersonDocumentACLAwareRepositoryTest.php
index a6c8e591a..b5d030c35 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Repository/PersonDocumentACLAwareRepositoryTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Repository/PersonDocumentACLAwareRepositoryTest.php
@@ -94,7 +94,7 @@ class PersonDocumentACLAwareRepositoryTest extends KernelTestCase
         AccompanyingPeriod $period,
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
-        ?string $content = null
+        ?string $content = null,
     ): void {
         $centerManager = $this->prophesize(CenterResolverManagerInterface::class);
         $centerManager->resolveCenters(Argument::type(Person::class))
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
index 645509439..a045a1fd6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Security/Authorization/AbstractStoredObjectVoterTest.php
@@ -47,7 +47,7 @@ class AbstractStoredObjectVoterTest extends TestCase
                 private readonly bool $canBeAssociatedWithWorkflow,
                 private readonly AssociatedEntityToStoredObjectInterface $repository,
                 Security $security,
-                ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null
+                ?WorkflowStoredObjectPermissionHelper $workflowDocumentService = null,
             ) {
                 parent::__construct($security, $workflowDocumentService);
             }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index dc5394c9c..bc8de6587 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -29,7 +29,7 @@ readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkfl
     public function __construct(
         private TranslatorInterface $translator,
         private EntityWorkflowRepository $workflowRepository,
-        private AccompanyingCourseDocumentRepository $repository
+        private AccompanyingCourseDocumentRepository $repository,
     ) {}
 
     public function getDeletionRoles(): array
diff --git a/src/Bundle/ChillEventBundle/Controller/EventController.php b/src/Bundle/ChillEventBundle/Controller/EventController.php
index dc7da134c..b4f099769 100644
--- a/src/Bundle/ChillEventBundle/Controller/EventController.php
+++ b/src/Bundle/ChillEventBundle/Controller/EventController.php
@@ -58,7 +58,7 @@ final class EventController extends AbstractController
         private readonly TranslatorInterface $translator,
         private readonly PaginatorFactory $paginator,
         private readonly Security $security,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[\Symfony\Component\Routing\Annotation\Route(path: '/{_locale}/event/event/{event_id}/delete', name: 'chill_event__event_delete', requirements: ['event_id' => '\d+'], methods: ['GET', 'POST', 'DELETE'])]
diff --git a/src/Bundle/ChillEventBundle/Controller/ParticipationController.php b/src/Bundle/ChillEventBundle/Controller/ParticipationController.php
index 59501acd7..2449528de 100644
--- a/src/Bundle/ChillEventBundle/Controller/ParticipationController.php
+++ b/src/Bundle/ChillEventBundle/Controller/ParticipationController.php
@@ -41,7 +41,7 @@ final class ParticipationController extends AbstractController
         private readonly TranslatorInterface $translator,
         private readonly EventRepository $eventRepository,
         private readonly PersonRepository $personRepository,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[\Symfony\Component\Routing\Annotation\Route(path: '/{_locale}/event/participation/create', name: 'chill_event_participation_create')]
@@ -545,7 +545,7 @@ final class ParticipationController extends AbstractController
     protected function handleRequest(
         Request $request,
         Participation $participation,
-        bool $multiple = false
+        bool $multiple = false,
     ): array|Participation {
         $em = $this->managerRegistry->getManager();
 
diff --git a/src/Bundle/ChillEventBundle/Export/Filter/EventTypeFilter.php b/src/Bundle/ChillEventBundle/Export/Filter/EventTypeFilter.php
index 9e8855adf..4b64022ea 100644
--- a/src/Bundle/ChillEventBundle/Export/Filter/EventTypeFilter.php
+++ b/src/Bundle/ChillEventBundle/Export/Filter/EventTypeFilter.php
@@ -26,7 +26,7 @@ class EventTypeFilter implements ExportElementValidatedInterface, FilterInterfac
 {
     public function __construct(
         protected TranslatableStringHelperInterface $translatableStringHelper,
-        protected EventTypeRepository $eventTypeRepository
+        protected EventTypeRepository $eventTypeRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillEventBundle/Export/Filter/RoleFilter.php b/src/Bundle/ChillEventBundle/Export/Filter/RoleFilter.php
index 791f07f7a..612cea84e 100644
--- a/src/Bundle/ChillEventBundle/Export/Filter/RoleFilter.php
+++ b/src/Bundle/ChillEventBundle/Export/Filter/RoleFilter.php
@@ -26,7 +26,7 @@ class RoleFilter implements ExportElementValidatedInterface, FilterInterface
 {
     public function __construct(
         protected TranslatableStringHelperInterface $translatableStringHelper,
-        protected RoleRepository $roleRepository
+        protected RoleRepository $roleRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
index 3fe305ff7..0eac3c0be 100644
--- a/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
+++ b/src/Bundle/ChillEventBundle/Form/ChoiceLoader/EventChoiceLoader.php
@@ -38,7 +38,7 @@ class EventChoiceLoader implements ChoiceLoaderInterface
      */
     public function __construct(
         EventRepository $eventRepository,
-        ?array $centers = null
+        ?array $centers = null,
     ) {
         $this->eventRepository = $eventRepository;
 
diff --git a/src/Bundle/ChillEventBundle/Form/Type/PickEventType.php b/src/Bundle/ChillEventBundle/Form/Type/PickEventType.php
index 9fcdbd85f..bcd0026c9 100644
--- a/src/Bundle/ChillEventBundle/Form/Type/PickEventType.php
+++ b/src/Bundle/ChillEventBundle/Form/Type/PickEventType.php
@@ -42,7 +42,7 @@ final class PickEventType extends AbstractType
         private readonly AuthorizationHelperInterface $authorizationHelper,
         private readonly UrlGeneratorInterface $urlGenerator,
         private readonly TranslatorInterface $translator,
-        private readonly Security $security
+        private readonly Security $security,
     ) {}
 
     public function buildView(\Symfony\Component\Form\FormView $view, \Symfony\Component\Form\FormInterface $form, array $options)
diff --git a/src/Bundle/ChillEventBundle/Form/Type/PickRoleType.php b/src/Bundle/ChillEventBundle/Form/Type/PickRoleType.php
index c8d69c119..b9048e116 100644
--- a/src/Bundle/ChillEventBundle/Form/Type/PickRoleType.php
+++ b/src/Bundle/ChillEventBundle/Form/Type/PickRoleType.php
@@ -31,7 +31,7 @@ final class PickRoleType extends AbstractType
     public function __construct(
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly TranslatorInterface $translator,
-        private readonly RoleRepository $roleRepository
+        private readonly RoleRepository $roleRepository,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillEventBundle/Menu/PersonMenuBuilder.php b/src/Bundle/ChillEventBundle/Menu/PersonMenuBuilder.php
index e14e4c979..788c6fac1 100644
--- a/src/Bundle/ChillEventBundle/Menu/PersonMenuBuilder.php
+++ b/src/Bundle/ChillEventBundle/Menu/PersonMenuBuilder.php
@@ -31,7 +31,7 @@ class PersonMenuBuilder implements LocalMenuBuilderInterface
 
     public function __construct(
         AuthorizationCheckerInterface $authorizationChecker,
-        TranslatorInterface $translator
+        TranslatorInterface $translator,
     ) {
         $this->authorizationChecker = $authorizationChecker;
         $this->translator = $translator;
diff --git a/src/Bundle/ChillEventBundle/Repository/EventTypeRepository.php b/src/Bundle/ChillEventBundle/Repository/EventTypeRepository.php
index 28e5672ea..ce09f935e 100644
--- a/src/Bundle/ChillEventBundle/Repository/EventTypeRepository.php
+++ b/src/Bundle/ChillEventBundle/Repository/EventTypeRepository.php
@@ -25,7 +25,7 @@ final class EventTypeRepository extends ServiceEntityRepository
     public function __construct(
         ManagerRegistry $registry,
         private readonly EntityManagerInterface $entityManager,
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
     ) {
         parent::__construct($registry, EventType::class);
     }
diff --git a/src/Bundle/ChillEventBundle/Search/EventSearch.php b/src/Bundle/ChillEventBundle/Search/EventSearch.php
index 57cb9e9c5..ad0e83bd3 100644
--- a/src/Bundle/ChillEventBundle/Search/EventSearch.php
+++ b/src/Bundle/ChillEventBundle/Search/EventSearch.php
@@ -42,7 +42,7 @@ class EventSearch extends AbstractSearch
         private readonly EventRepository $eventRepository,
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly \Twig\Environment $templating,
-        private readonly PaginatorFactory $paginatorFactory
+        private readonly PaginatorFactory $paginatorFactory,
     ) {}
 
     public function getOrder()
@@ -60,7 +60,7 @@ class EventSearch extends AbstractSearch
         $start = 0,
         $limit = 50,
         array $options = [],
-        $format = 'html'
+        $format = 'html',
     ) {
         $total = $this->count($terms);
         $paginator = $this->paginatorFactory->create($total);
diff --git a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
index 16c8caa01..9a23d6d85 100644
--- a/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/Authorization/EventStoredObjectVoter.php
@@ -25,7 +25,7 @@ class EventStoredObjectVoter extends AbstractStoredObjectVoter
     public function __construct(
         private readonly EventRepository $repository,
         Security $security,
-        WorkflowStoredObjectPermissionHelper $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService,
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillEventBundle/Security/EventVoter.php b/src/Bundle/ChillEventBundle/Security/EventVoter.php
index e490e0518..29fcb6e9d 100644
--- a/src/Bundle/ChillEventBundle/Security/EventVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/EventVoter.php
@@ -50,7 +50,7 @@ class EventVoter extends AbstractChillVoter implements ProvideRoleHierarchyInter
     public function __construct(
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly LoggerInterface $logger,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillEventBundle/Security/ParticipationVoter.php b/src/Bundle/ChillEventBundle/Security/ParticipationVoter.php
index 368a47cab..314337791 100644
--- a/src/Bundle/ChillEventBundle/Security/ParticipationVoter.php
+++ b/src/Bundle/ChillEventBundle/Security/ParticipationVoter.php
@@ -47,7 +47,7 @@ class ParticipationVoter extends AbstractChillVoter implements ProvideRoleHierar
     public function __construct(
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly LoggerInterface $logger,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillEventBundle/Tests/Controller/ParticipationControllerTest.php b/src/Bundle/ChillEventBundle/Tests/Controller/ParticipationControllerTest.php
index a4dd546d6..e7ad5f2a4 100644
--- a/src/Bundle/ChillEventBundle/Tests/Controller/ParticipationControllerTest.php
+++ b/src/Bundle/ChillEventBundle/Tests/Controller/ParticipationControllerTest.php
@@ -480,7 +480,7 @@ final class ParticipationControllerTest extends WebTestCase
      */
     protected function getRandomEventWithMultipleParticipations(
         $centerName = 'Center A',
-        $circleName = 'social'
+        $circleName = 'social',
     ) {
         $event = $this->getRandomEvent($centerName, $circleName);
 
diff --git a/src/Bundle/ChillEventBundle/Timeline/TimelineEventProvider.php b/src/Bundle/ChillEventBundle/Timeline/TimelineEventProvider.php
index 9e35a6757..414b07c62 100644
--- a/src/Bundle/ChillEventBundle/Timeline/TimelineEventProvider.php
+++ b/src/Bundle/ChillEventBundle/Timeline/TimelineEventProvider.php
@@ -48,7 +48,7 @@ class TimelineEventProvider implements TimelineProviderInterface
     public function __construct(
         EntityManager $em,
         AuthorizationHelper $helper,
-        TokenStorageInterface $storage
+        TokenStorageInterface $storage,
     ) {
         $this->em = $em;
         $this->helper = $helper;
@@ -153,7 +153,7 @@ class TimelineEventProvider implements TimelineProviderInterface
     private function getFromClause(
         ClassMetadata $metadataEvent,
         ClassMetadata $metadataParticipation,
-        ClassMetadata $metadataPerson
+        ClassMetadata $metadataPerson,
     ) {
         $eventParticipationMapping = $metadataParticipation->getAssociationMapping('event');
         $participationPersonMapping = $metadataParticipation->getAssociationMapping('person');
@@ -181,7 +181,7 @@ class TimelineEventProvider implements TimelineProviderInterface
         ClassMetadata $metadataEvent,
         ClassMetadata $metadataParticipation,
         ClassMetadata $metadataPerson,
-        Person $person
+        Person $person,
     ) {
         $role = 'CHILL_EVENT_SEE';
 
diff --git a/src/Bundle/ChillFranceTravailApiBundle/src/ApiHelper/ProcessRequestTrait.php b/src/Bundle/ChillFranceTravailApiBundle/src/ApiHelper/ProcessRequestTrait.php
index 01ead1109..809b0461b 100644
--- a/src/Bundle/ChillFranceTravailApiBundle/src/ApiHelper/ProcessRequestTrait.php
+++ b/src/Bundle/ChillFranceTravailApiBundle/src/ApiHelper/ProcessRequestTrait.php
@@ -34,7 +34,7 @@ trait ProcessRequestTrait
         Request $request,
         array $parameters,
         Client $client,
-        LoggerInterface $logger
+        LoggerInterface $logger,
     ) {
         return $this->handleRequestRecursive(
             $request,
@@ -54,7 +54,7 @@ trait ProcessRequestTrait
         array $parameters,
         Client $client,
         LoggerInterface $logger,
-        $counter = 0
+        $counter = 0,
     ) {
         try {
             return $client->send($request, $parameters);
diff --git a/src/Bundle/ChillJobBundle/src/Form/ChoiceLoader/RomeAppellationChoiceLoader.php b/src/Bundle/ChillJobBundle/src/Form/ChoiceLoader/RomeAppellationChoiceLoader.php
index 39ab23ae1..834ba6fc9 100644
--- a/src/Bundle/ChillJobBundle/src/Form/ChoiceLoader/RomeAppellationChoiceLoader.php
+++ b/src/Bundle/ChillJobBundle/src/Form/ChoiceLoader/RomeAppellationChoiceLoader.php
@@ -58,7 +58,7 @@ class RomeAppellationChoiceLoader implements ChoiceLoaderInterface
     public function __construct(
         EntityManagerInterface $em,
         PartenaireRomeAppellation $apiAppellation,
-        ValidatorInterface $validator
+        ValidatorInterface $validator,
     ) {
         $this->em = $em;
         $this->apiAppellation = $apiAppellation;
diff --git a/src/Bundle/ChillJobBundle/src/Form/Type/PickRomeAppellationType.php b/src/Bundle/ChillJobBundle/src/Form/Type/PickRomeAppellationType.php
index 174a25c18..b3cb1bc01 100644
--- a/src/Bundle/ChillJobBundle/src/Form/Type/PickRomeAppellationType.php
+++ b/src/Bundle/ChillJobBundle/src/Form/Type/PickRomeAppellationType.php
@@ -68,7 +68,7 @@ class PickRomeAppellationType extends AbstractType
         UrlGeneratorInterface $urlGenerator,
         EntityManagerInterface $em,
         PartenaireRomeAppellation $apiPartenaire,
-        ValidatorInterface $validator
+        ValidatorInterface $validator,
     ) {
         $this->translator = $translator;
         $this->urlGenerator = $urlGenerator;
diff --git a/src/Bundle/ChillMainBundle/CRUD/Controller/CRUDController.php b/src/Bundle/ChillMainBundle/CRUD/Controller/CRUDController.php
index 2384e32b4..19e9014da 100644
--- a/src/Bundle/ChillMainBundle/CRUD/Controller/CRUDController.php
+++ b/src/Bundle/ChillMainBundle/CRUD/Controller/CRUDController.php
@@ -580,7 +580,7 @@ class CRUDController extends AbstractController
         string $action,
         mixed $entity,
         Request $request,
-        array $defaultTemplateParameters = []
+        array $defaultTemplateParameters = [],
     ) {
         return $defaultTemplateParameters;
     }
@@ -685,7 +685,7 @@ class CRUDController extends AbstractController
         Request $request,
         int $totalItems,
         PaginatorInterface $paginator,
-        ?FilterOrderHelper $filterOrder = null
+        ?FilterOrderHelper $filterOrder = null,
     ) {
         $query = $this->queryEntities($action, $request, $paginator, $filterOrder);
 
diff --git a/src/Bundle/ChillMainBundle/Command/ChillImportUsersCommand.php b/src/Bundle/ChillMainBundle/Command/ChillImportUsersCommand.php
index c7871a346..44a86cb24 100644
--- a/src/Bundle/ChillMainBundle/Command/ChillImportUsersCommand.php
+++ b/src/Bundle/ChillMainBundle/Command/ChillImportUsersCommand.php
@@ -57,7 +57,7 @@ class ChillImportUsersCommand extends Command
         protected LoggerInterface $logger,
         protected \Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface $passwordEncoder,
         protected ValidatorInterface $validator,
-        protected UserRepository $userRepository
+        protected UserRepository $userRepository,
     ) {
         parent::__construct('chill:main:import-users');
     }
diff --git a/src/Bundle/ChillMainBundle/Command/ChillUserSendRenewPasswordCodeCommand.php b/src/Bundle/ChillMainBundle/Command/ChillUserSendRenewPasswordCodeCommand.php
index 3e1367a00..c4d835dbd 100644
--- a/src/Bundle/ChillMainBundle/Command/ChillUserSendRenewPasswordCodeCommand.php
+++ b/src/Bundle/ChillMainBundle/Command/ChillUserSendRenewPasswordCodeCommand.php
@@ -69,7 +69,7 @@ class ChillUserSendRenewPasswordCodeCommand extends Command
         LoggerInterface $logger,
         EntityManagerInterface $em,
         RecoverPasswordHelper $recoverPasswordHelper,
-        EventDispatcherInterface $eventDispatcher
+        EventDispatcherInterface $eventDispatcher,
     ) {
         $this->logger = $logger;
         $this->em = $em;
diff --git a/src/Bundle/ChillMainBundle/Command/ExecuteCronJobCommand.php b/src/Bundle/ChillMainBundle/Command/ExecuteCronJobCommand.php
index 6d998f732..1dc56314b 100644
--- a/src/Bundle/ChillMainBundle/Command/ExecuteCronJobCommand.php
+++ b/src/Bundle/ChillMainBundle/Command/ExecuteCronJobCommand.php
@@ -22,7 +22,7 @@ class ExecuteCronJobCommand extends Command
     protected static $defaultDescription = 'Execute the cronjob(s) given as argument, or one cronjob scheduled by system.';
 
     public function __construct(
-        private readonly CronManagerInterface $cronManager
+        private readonly CronManagerInterface $cronManager,
     ) {
         parent::__construct('chill:cron-job:execute');
     }
diff --git a/src/Bundle/ChillMainBundle/Command/LoadAddressesBEFromBestAddressCommand.php b/src/Bundle/ChillMainBundle/Command/LoadAddressesBEFromBestAddressCommand.php
index d5dedd169..dfe485f04 100644
--- a/src/Bundle/ChillMainBundle/Command/LoadAddressesBEFromBestAddressCommand.php
+++ b/src/Bundle/ChillMainBundle/Command/LoadAddressesBEFromBestAddressCommand.php
@@ -24,7 +24,7 @@ class LoadAddressesBEFromBestAddressCommand extends Command
 
     public function __construct(
         private readonly AddressReferenceBEFromBestAddress $addressImporter,
-        private readonly PostalCodeBEFromBestAddress $postalCodeBEFromBestAddressImporter
+        private readonly PostalCodeBEFromBestAddress $postalCodeBEFromBestAddressImporter,
     ) {
         parent::__construct();
     }
diff --git a/src/Bundle/ChillMainBundle/Controller/NewsItemApiController.php b/src/Bundle/ChillMainBundle/Controller/NewsItemApiController.php
index c687acc2f..e122b7a3b 100644
--- a/src/Bundle/ChillMainBundle/Controller/NewsItemApiController.php
+++ b/src/Bundle/ChillMainBundle/Controller/NewsItemApiController.php
@@ -24,7 +24,7 @@ class NewsItemApiController
     public function __construct(
         private readonly NewsItemRepository $newsItemRepository,
         private readonly SerializerInterface $serializer,
-        private readonly PaginatorFactory $paginatorFactory
+        private readonly PaginatorFactory $paginatorFactory,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillMainBundle/Controller/PermissionsGroupController.php b/src/Bundle/ChillMainBundle/Controller/PermissionsGroupController.php
index a326e0ff5..d4ee293b1 100644
--- a/src/Bundle/ChillMainBundle/Controller/PermissionsGroupController.php
+++ b/src/Bundle/ChillMainBundle/Controller/PermissionsGroupController.php
@@ -443,7 +443,7 @@ final class PermissionsGroupController extends AbstractController
      */
     private function createDeleteRoleScopeForm(
         PermissionsGroup $permissionsGroup,
-        RoleScope $roleScope
+        RoleScope $roleScope,
     ): FormInterface {
         return $this->createFormBuilder()
             ->setAction($this->generateUrl(
diff --git a/src/Bundle/ChillMainBundle/Controller/ScopeController.php b/src/Bundle/ChillMainBundle/Controller/ScopeController.php
index 5e932063a..45278d7af 100644
--- a/src/Bundle/ChillMainBundle/Controller/ScopeController.php
+++ b/src/Bundle/ChillMainBundle/Controller/ScopeController.php
@@ -27,7 +27,7 @@ class ScopeController extends AbstractController
 {
     public function __construct(
         private readonly EntityManagerInterface $entityManager,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillMainBundle/Controller/UIController.php b/src/Bundle/ChillMainBundle/Controller/UIController.php
index 6282b717d..718d9a3d0 100644
--- a/src/Bundle/ChillMainBundle/Controller/UIController.php
+++ b/src/Bundle/ChillMainBundle/Controller/UIController.php
@@ -20,7 +20,7 @@ use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 class UIController extends AbstractController
 {
     public function showNotificationUserCounterAction(
-        CountNotificationUser $counter
+        CountNotificationUser $counter,
     ) {
         $nb = $counter->getSumNotification($this->getUser());
 
diff --git a/src/Bundle/ChillMainBundle/Controller/UserController.php b/src/Bundle/ChillMainBundle/Controller/UserController.php
index cc1666494..6c408b3bc 100644
--- a/src/Bundle/ChillMainBundle/Controller/UserController.php
+++ b/src/Bundle/ChillMainBundle/Controller/UserController.php
@@ -46,7 +46,7 @@ class UserController extends CRUDController
         protected ParameterBagInterface $parameterBag,
         private readonly TranslatorInterface $translator,
         private readonly ChillSecurity $security,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[Route(path: '/{_locale}/admin/main/user/{uid}/add_link_groupcenter', name: 'admin_user_add_groupcenter')]
@@ -324,7 +324,7 @@ class UserController extends CRUDController
         Request $request,
         int $totalItems,
         PaginatorInterface $paginator,
-        ?FilterOrderHelper $filterOrder = null
+        ?FilterOrderHelper $filterOrder = null,
     ) {
         if (0 === $totalItems) {
             return [];
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index 353976402..8ee8138fa 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -27,7 +27,7 @@ final readonly class WorkflowAddSignatureController
         private EntityWorkflowManager $entityWorkflowManager,
         private PDFSignatureZoneAvailable $PDFSignatureZoneAvailable,
         private NormalizerInterface $normalizer,
-        private Environment $twig
+        private Environment $twig,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature_add', methods: 'GET')]
diff --git a/src/Bundle/ChillMainBundle/Cron/CronManager.php b/src/Bundle/ChillMainBundle/Cron/CronManager.php
index ded78903d..e32e44817 100644
--- a/src/Bundle/ChillMainBundle/Cron/CronManager.php
+++ b/src/Bundle/ChillMainBundle/Cron/CronManager.php
@@ -54,7 +54,7 @@ final readonly class CronManager implements CronManagerInterface
         private CronJobExecutionRepositoryInterface $cronJobExecutionRepository,
         private EntityManagerInterface $entityManager,
         private iterable $jobs,
-        private LoggerInterface $logger
+        private LoggerInterface $logger,
     ) {}
 
     public function run(?string $forceJob = null): void
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 4dde2076c..9d788c64e 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -335,7 +335,7 @@ class ChillMainExtension extends Extension implements
         ContainerBuilder $container,
         array $crudConfig,
         array $apiConfig,
-        Loader\YamlFileLoader $loader
+        Loader\YamlFileLoader $loader,
     ): void {
         if (0 === \count($crudConfig)) {
             return;
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ExportsCompilerPass.php b/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ExportsCompilerPass.php
index dbd79c0f4..c2126da1e 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ExportsCompilerPass.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/CompilerPass/ExportsCompilerPass.php
@@ -44,7 +44,7 @@ class ExportsCompilerPass implements CompilerPassInterface
 
     private function compileExportElementsProvider(
         Definition $chillManagerDefinition,
-        ContainerBuilder $container
+        ContainerBuilder $container,
     ) {
         $taggedServices = $container->findTaggedServiceIds(
             'chill.export_elements_provider'
@@ -73,7 +73,7 @@ class ExportsCompilerPass implements CompilerPassInterface
 
     private function compileFormatters(
         Definition $chillManagerDefinition,
-        ContainerBuilder $container
+        ContainerBuilder $container,
     ) {
         $taggedServices = $container->findTaggedServiceIds(
             'chill.export_formatter'
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
index 16130f193..b1bb3951f 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Configuration.php
@@ -26,7 +26,7 @@ class Configuration implements ConfigurationInterface
 
     public function __construct(
         array $widgetFactories,
-        private readonly ContainerBuilder $containerBuilder
+        private readonly ContainerBuilder $containerBuilder,
     ) {
         $this->setWidgetFactories($widgetFactories);
     }
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/Widget/AbstractWidgetsCompilerPass.php b/src/Bundle/ChillMainBundle/DependencyInjection/Widget/AbstractWidgetsCompilerPass.php
index 85b7c892f..4253b0ed9 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/Widget/AbstractWidgetsCompilerPass.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/Widget/AbstractWidgetsCompilerPass.php
@@ -122,7 +122,7 @@ abstract class AbstractWidgetsCompilerPass implements CompilerPassInterface
     public function doProcess(
         ContainerBuilder $container,
         $extension,
-        $containerWidgetConfigParameterName
+        $containerWidgetConfigParameterName,
     ) {
         if (!$container->hasDefinition(self::WIDGET_MANAGER)) {
             throw new \LogicException('the service '.self::WIDGET_MANAGER.' should be present. It is required by '.self::class);
@@ -280,7 +280,7 @@ abstract class AbstractWidgetsCompilerPass implements CompilerPassInterface
         WidgetFactoryInterface $factory,
         $place,
         $order,
-        array $config
+        array $config,
     ) {
         $serviceId = $factory->getServiceId($container, $place, $order, $config);
         $definition = $factory->createDefinition(
diff --git a/src/Bundle/ChillMainBundle/Entity/CronJobExecution.php b/src/Bundle/ChillMainBundle/Entity/CronJobExecution.php
index 180a260b8..f2f1194c8 100644
--- a/src/Bundle/ChillMainBundle/Entity/CronJobExecution.php
+++ b/src/Bundle/ChillMainBundle/Entity/CronJobExecution.php
@@ -36,7 +36,7 @@ class CronJobExecution
     public function __construct(
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false)]
         #[ORM\Id]
-        private string $key
+        private string $key,
     ) {
         $this->lastStart = new \DateTimeImmutable('now');
     }
diff --git a/src/Bundle/ChillMainBundle/Entity/GeographicalUnit/SimpleGeographicalUnitDTO.php b/src/Bundle/ChillMainBundle/Entity/GeographicalUnit/SimpleGeographicalUnitDTO.php
index 196b5140a..481b530d9 100644
--- a/src/Bundle/ChillMainBundle/Entity/GeographicalUnit/SimpleGeographicalUnitDTO.php
+++ b/src/Bundle/ChillMainBundle/Entity/GeographicalUnit/SimpleGeographicalUnitDTO.php
@@ -48,6 +48,6 @@ class SimpleGeographicalUnitDTO
          * @psalm-readonly
          */
         #[Serializer\Groups(['read'])]
-        public int $layerId
+        public int $layerId,
     ) {}
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index e653037e0..5a3359c46 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -423,7 +423,7 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
         WorkflowTransitionContextDTO $transitionContextDTO,
         string $transition,
         \DateTimeImmutable $transitionAt,
-        ?User $byUser = null
+        ?User $byUser = null,
     ): self {
         $previousStep = $this->getCurrentStep();
 
diff --git a/src/Bundle/ChillMainBundle/Export/ExportFormHelper.php b/src/Bundle/ChillMainBundle/Export/ExportFormHelper.php
index 4746b6129..ce43c230a 100644
--- a/src/Bundle/ChillMainBundle/Export/ExportFormHelper.php
+++ b/src/Bundle/ChillMainBundle/Export/ExportFormHelper.php
@@ -126,7 +126,7 @@ final readonly class ExportFormHelper
 
     private function savedExportDataToFormDataStepExport(
         SavedExport $savedExport,
-        array $formOptions
+        array $formOptions,
     ): array {
         $builder = $this->formFactory
             ->createBuilder(
@@ -148,7 +148,7 @@ final readonly class ExportFormHelper
 
     private function savedExportDataToFormDataStepFormatter(
         SavedExport $savedExport,
-        array $formOptions
+        array $formOptions,
     ): array {
         $builder = $this->formFactory
             ->createBuilder(
diff --git a/src/Bundle/ChillMainBundle/Export/ExportManager.php b/src/Bundle/ChillMainBundle/Export/ExportManager.php
index d4e87d449..949523eb0 100644
--- a/src/Bundle/ChillMainBundle/Export/ExportManager.php
+++ b/src/Bundle/ChillMainBundle/Export/ExportManager.php
@@ -62,7 +62,7 @@ class ExportManager
         private readonly TokenStorageInterface $tokenStorage,
         iterable $exports,
         iterable $aggregators,
-        iterable $filters
+        iterable $filters,
         // iterable $formatters,
         // iterable $exportElementProvider
     ) {
@@ -451,7 +451,7 @@ class ExportManager
     public function isGrantedForElement(
         DirectExportInterface|ExportInterface|ModifierInterface $element,
         DirectExportInterface|ExportInterface|null $export = null,
-        ?array $centers = null
+        ?array $centers = null,
     ): bool {
         if ($element instanceof ExportInterface || $element instanceof DirectExportInterface) {
             $role = $element->requiredRole();
@@ -533,7 +533,7 @@ class ExportManager
         ExportInterface $export,
         QueryBuilder $qb,
         array $data,
-        array $center
+        array $center,
     ) {
         $aggregators = $this->retrieveUsedAggregators($data);
 
@@ -560,7 +560,7 @@ class ExportManager
         ExportInterface $export,
         QueryBuilder $qb,
         mixed $data,
-        array $centers
+        array $centers,
     ) {
         $filters = $this->retrieveUsedFilters($data);
 
diff --git a/src/Bundle/ChillMainBundle/Export/Formatter/CSVFormatter.php b/src/Bundle/ChillMainBundle/Export/Formatter/CSVFormatter.php
index ee7b5d5c3..f0c2b9cee 100644
--- a/src/Bundle/ChillMainBundle/Export/Formatter/CSVFormatter.php
+++ b/src/Bundle/ChillMainBundle/Export/Formatter/CSVFormatter.php
@@ -51,7 +51,7 @@ class CSVFormatter implements FormatterInterface
 
     public function __construct(
         protected TranslatorInterface $translator,
-        ExportManager $manager
+        ExportManager $manager,
     ) {
         $this->exportManager = $manager;
     }
@@ -118,7 +118,7 @@ class CSVFormatter implements FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     ) {
         $this->result = $result;
         $this->orderingHeaders($formatterData);
diff --git a/src/Bundle/ChillMainBundle/Export/Formatter/CSVListFormatter.php b/src/Bundle/ChillMainBundle/Export/Formatter/CSVListFormatter.php
index 853c177b7..fda49f202 100644
--- a/src/Bundle/ChillMainBundle/Export/Formatter/CSVListFormatter.php
+++ b/src/Bundle/ChillMainBundle/Export/Formatter/CSVListFormatter.php
@@ -68,7 +68,7 @@ class CSVListFormatter implements FormatterInterface
     public function buildForm(
         FormBuilderInterface $builder,
         $exportAlias,
-        array $aggregatorAliases
+        array $aggregatorAliases,
     ) {
         $builder->add('numerotation', ChoiceType::class, [
             'choices' => [
@@ -108,7 +108,7 @@ class CSVListFormatter implements FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     ) {
         $this->result = $result;
         $this->exportAlias = $exportAlias;
diff --git a/src/Bundle/ChillMainBundle/Export/Formatter/CSVPivotedListFormatter.php b/src/Bundle/ChillMainBundle/Export/Formatter/CSVPivotedListFormatter.php
index 8b32714cc..9385f1b61 100644
--- a/src/Bundle/ChillMainBundle/Export/Formatter/CSVPivotedListFormatter.php
+++ b/src/Bundle/ChillMainBundle/Export/Formatter/CSVPivotedListFormatter.php
@@ -66,7 +66,7 @@ class CSVPivotedListFormatter implements FormatterInterface
     public function buildForm(
         FormBuilderInterface $builder,
         $exportAlias,
-        array $aggregatorAliases
+        array $aggregatorAliases,
     ) {
         $builder->add('numerotation', ChoiceType::class, [
             'choices' => [
@@ -107,7 +107,7 @@ class CSVPivotedListFormatter implements FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     ) {
         $this->result = $result;
         $this->exportAlias = $exportAlias;
diff --git a/src/Bundle/ChillMainBundle/Export/Formatter/SpreadSheetFormatter.php b/src/Bundle/ChillMainBundle/Export/Formatter/SpreadSheetFormatter.php
index 4147c0016..76e17378f 100644
--- a/src/Bundle/ChillMainBundle/Export/Formatter/SpreadSheetFormatter.php
+++ b/src/Bundle/ChillMainBundle/Export/Formatter/SpreadSheetFormatter.php
@@ -129,7 +129,7 @@ class SpreadSheetFormatter implements FormatterInterface
     public function buildForm(
         FormBuilderInterface $builder,
         $exportAlias,
-        array $aggregatorAliases
+        array $aggregatorAliases,
     ) {
         // choosing between formats
         $builder->add('format', ChoiceType::class, [
@@ -178,7 +178,7 @@ class SpreadSheetFormatter implements FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     ): Response {
         // store all data when the process is initiated
         $this->result = $result;
@@ -219,7 +219,7 @@ class SpreadSheetFormatter implements FormatterInterface
     protected function addContentTable(
         Worksheet $worksheet,
         $sortedResults,
-        $line
+        $line,
     ) {
         $worksheet->fromArray(
             $sortedResults,
@@ -274,7 +274,7 @@ class SpreadSheetFormatter implements FormatterInterface
     protected function addHeaders(
         Worksheet &$worksheet,
         array $globalKeys,
-        $line
+        $line,
     ) {
         // get the displayable form of headers
         $displayables = [];
diff --git a/src/Bundle/ChillMainBundle/Export/Formatter/SpreadsheetListFormatter.php b/src/Bundle/ChillMainBundle/Export/Formatter/SpreadsheetListFormatter.php
index 7284ff70a..3c5e90381 100644
--- a/src/Bundle/ChillMainBundle/Export/Formatter/SpreadsheetListFormatter.php
+++ b/src/Bundle/ChillMainBundle/Export/Formatter/SpreadsheetListFormatter.php
@@ -72,7 +72,7 @@ class SpreadsheetListFormatter implements FormatterInterface
     public function buildForm(
         FormBuilderInterface $builder,
         $exportAlias,
-        array $aggregatorAliases
+        array $aggregatorAliases,
     ) {
         $builder
             ->add('format', ChoiceType::class, [
@@ -120,7 +120,7 @@ class SpreadsheetListFormatter implements FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     ) {
         $this->result = $result;
         $this->exportAlias = $exportAlias;
diff --git a/src/Bundle/ChillMainBundle/Export/FormatterInterface.php b/src/Bundle/ChillMainBundle/Export/FormatterInterface.php
index 11316ea4b..37ed788f4 100644
--- a/src/Bundle/ChillMainBundle/Export/FormatterInterface.php
+++ b/src/Bundle/ChillMainBundle/Export/FormatterInterface.php
@@ -31,7 +31,7 @@ interface FormatterInterface
     public function buildForm(
         FormBuilderInterface $builder,
         $exportAlias,
-        array $aggregatorAliases
+        array $aggregatorAliases,
     );
 
     /**
@@ -58,7 +58,7 @@ interface FormatterInterface
         $exportAlias,
         array $exportData,
         array $filtersData,
-        array $aggregatorsData
+        array $aggregatorsData,
     );
 
     public function getType();
diff --git a/src/Bundle/ChillMainBundle/Form/DataTransformer/IdToEntityDataTransformer.php b/src/Bundle/ChillMainBundle/Form/DataTransformer/IdToEntityDataTransformer.php
index 1796f7ed2..bb45940fc 100644
--- a/src/Bundle/ChillMainBundle/Form/DataTransformer/IdToEntityDataTransformer.php
+++ b/src/Bundle/ChillMainBundle/Form/DataTransformer/IdToEntityDataTransformer.php
@@ -35,7 +35,7 @@ class IdToEntityDataTransformer implements DataTransformerInterface
     public function __construct(
         private readonly ObjectRepository $repository,
         private readonly bool $multiple = false,
-        ?callable $getId = null
+        ?callable $getId = null,
     ) {
         $this->getId = $getId ?? static fn (object $o) => $o->getId();
     }
diff --git a/src/Bundle/ChillMainBundle/Form/Type/AppendScopeChoiceTypeTrait.php b/src/Bundle/ChillMainBundle/Form/Type/AppendScopeChoiceTypeTrait.php
index 469b9c18e..1b371a473 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/AppendScopeChoiceTypeTrait.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/AppendScopeChoiceTypeTrait.php
@@ -103,7 +103,7 @@ trait AppendScopeChoiceTypeTrait
         AuthorizationHelper $authorizationHelper,
         TranslatableStringHelper $translatableStringHelper,
         ObjectManager $om,
-        $name = 'scope'
+        $name = 'scope',
     ) {
         $reachableScopes = $authorizationHelper
             ->getReachableScopes($user, $role, $center);
diff --git a/src/Bundle/ChillMainBundle/Form/Type/ComposedRoleScopeType.php b/src/Bundle/ChillMainBundle/Form/Type/ComposedRoleScopeType.php
index f4b4da609..2183b85f2 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/ComposedRoleScopeType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/ComposedRoleScopeType.php
@@ -40,7 +40,7 @@ class ComposedRoleScopeType extends AbstractType
 
     public function __construct(
         private readonly TranslatableStringHelper $translatableStringHelper,
-        RoleProvider $roleProvider
+        RoleProvider $roleProvider,
     ) {
         $this->roles = $roleProvider->getRoles();
         $this->rolesWithoutScope = $roleProvider->getRolesWithoutScopes();
diff --git a/src/Bundle/ChillMainBundle/Form/Type/Export/PickCenterType.php b/src/Bundle/ChillMainBundle/Form/Type/Export/PickCenterType.php
index a093dda44..fa8caf488 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/Export/PickCenterType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/Export/PickCenterType.php
@@ -32,7 +32,7 @@ final class PickCenterType extends AbstractType
     public function __construct(
         private readonly ExportManager $exportManager,
         private readonly RegroupmentRepository $regroupmentRepository,
-        private readonly AuthorizationHelperForCurrentUserInterface $authorizationHelper
+        private readonly AuthorizationHelperForCurrentUserInterface $authorizationHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillMainBundle/Form/Type/Listing/FilterOrderType.php b/src/Bundle/ChillMainBundle/Form/Type/Listing/FilterOrderType.php
index 5873c0a45..139328b7c 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/Listing/FilterOrderType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/Listing/FilterOrderType.php
@@ -59,7 +59,7 @@ final class FilterOrderType extends \Symfony\Component\Form\AbstractType
             $entityChoicesBuilder = $builder->create('entity_choices', null, ['compound' => true]);
 
             foreach ($helper->getEntityChoices() as $key => [
-                'label' => $label, 'choices' => $choices, 'options' => $opts, 'class' => $class
+                'label' => $label, 'choices' => $choices, 'options' => $opts, 'class' => $class,
             ]) {
                 $entityChoicesBuilder->add($key, EntityType::class, [
                     'label' => $label,
@@ -114,7 +114,7 @@ final class FilterOrderType extends \Symfony\Component\Form\AbstractType
             $userPickersBuilder = $builder->create('user_pickers', null, ['compound' => true]);
 
             foreach ($helper->getUserPickers() as $name => [
-                'label' => $label, 'options' => $opts
+                'label' => $label, 'options' => $opts,
             ]) {
                 $userPickersBuilder->add(
                     $name,
diff --git a/src/Bundle/ChillMainBundle/Form/Type/PostalCodeType.php b/src/Bundle/ChillMainBundle/Form/Type/PostalCodeType.php
index b02d069f5..f7055858f 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/PostalCodeType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/PostalCodeType.php
@@ -51,7 +51,7 @@ class PostalCodeType extends AbstractType
         TranslatableStringHelper $helper,
         UrlGeneratorInterface $urlGenerator,
         PostalCodeChoiceLoader $choiceLoader,
-        TranslatorInterface $translator
+        TranslatorInterface $translator,
     ) {
         $this->translatableStringHelper = $helper;
         $this->urlGenerator = $urlGenerator;
diff --git a/src/Bundle/ChillMainBundle/Form/Type/ScopePickerType.php b/src/Bundle/ChillMainBundle/Form/Type/ScopePickerType.php
index 10d083bd8..6f10626c6 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/ScopePickerType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/ScopePickerType.php
@@ -42,7 +42,7 @@ class ScopePickerType extends AbstractType
     public function __construct(
         private readonly AuthorizationHelperInterface $authorizationHelper,
         private readonly Security $security,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillMainBundle/Form/Type/UserPickerType.php b/src/Bundle/ChillMainBundle/Form/Type/UserPickerType.php
index ebda0c34f..b49d59442 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/UserPickerType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/UserPickerType.php
@@ -49,7 +49,7 @@ class UserPickerType extends AbstractType
         TokenStorageInterface $tokenStorage,
         protected UserRepository $userRepository,
         protected UserACLAwareRepositoryInterface $userACLAwareRepository,
-        private readonly UserRender $userRender
+        private readonly UserRender $userRender,
     ) {
         $this->authorizationHelper = $authorizationHelper;
         $this->tokenStorage = $tokenStorage;
diff --git a/src/Bundle/ChillMainBundle/Form/UserPasswordType.php b/src/Bundle/ChillMainBundle/Form/UserPasswordType.php
index b3ae403a3..256e68731 100644
--- a/src/Bundle/ChillMainBundle/Form/UserPasswordType.php
+++ b/src/Bundle/ChillMainBundle/Form/UserPasswordType.php
@@ -37,7 +37,7 @@ class UserPasswordType extends AbstractType
 
     public function __construct(
         \Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface $passwordEncoder,
-        LoggerInterface $chillLogger
+        LoggerInterface $chillLogger,
     ) {
         $this->passwordEncoder = $passwordEncoder;
         $this->chillLogger = $chillLogger;
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index a113c62c5..e2aece468 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -35,7 +35,7 @@ class WorkflowStepType extends AbstractType
 {
     public function __construct(
         private readonly Registry $registry,
-        private readonly TranslatableStringHelperInterface $translatableStringHelper
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillMainBundle/Notification/Mailer.php b/src/Bundle/ChillMainBundle/Notification/Mailer.php
index 2d50cb850..48adcd24f 100644
--- a/src/Bundle/ChillMainBundle/Notification/Mailer.php
+++ b/src/Bundle/ChillMainBundle/Notification/Mailer.php
@@ -73,7 +73,7 @@ class Mailer
         array $subject,
         array $bodies,
         ?callable $callback = null,
-        mixed $force = false
+        mixed $force = false,
     ) {
         $fromEmail = $this->routeParameters['from_email'];
         $fromName = $this->routeParameters['from_name'];
diff --git a/src/Bundle/ChillMainBundle/Pagination/ChillItemsPerPageTwig.php b/src/Bundle/ChillMainBundle/Pagination/ChillItemsPerPageTwig.php
index d66adb974..ede9a6a61 100644
--- a/src/Bundle/ChillMainBundle/Pagination/ChillItemsPerPageTwig.php
+++ b/src/Bundle/ChillMainBundle/Pagination/ChillItemsPerPageTwig.php
@@ -42,7 +42,7 @@ class ChillItemsPerPageTwig extends AbstractExtension
     public function paginationRender(
         Environment $env,
         PaginatorInterface $paginator,
-        $template = '@ChillMain/Pagination/items_per_page.html.twig'
+        $template = '@ChillMain/Pagination/items_per_page.html.twig',
     ) {
         return $env->render($template, [
             'paginator' => $paginator,
diff --git a/src/Bundle/ChillMainBundle/Pagination/ChillPaginationTwig.php b/src/Bundle/ChillMainBundle/Pagination/ChillPaginationTwig.php
index e5883d593..c8f06f1a9 100644
--- a/src/Bundle/ChillMainBundle/Pagination/ChillPaginationTwig.php
+++ b/src/Bundle/ChillMainBundle/Pagination/ChillPaginationTwig.php
@@ -46,7 +46,7 @@ class ChillPaginationTwig extends AbstractExtension
     public function paginationRender(
         Environment $env,
         PaginatorInterface $paginator,
-        $template = '@ChillMain/Pagination/long.html.twig'
+        $template = '@ChillMain/Pagination/long.html.twig',
     ) {
         $t = match ($template) {
             'long' => self::LONG_TEMPLATE,
diff --git a/src/Bundle/ChillMainBundle/Pagination/Page.php b/src/Bundle/ChillMainBundle/Pagination/Page.php
index 9858a27b8..fc49db94f 100644
--- a/src/Bundle/ChillMainBundle/Pagination/Page.php
+++ b/src/Bundle/ChillMainBundle/Pagination/Page.php
@@ -44,7 +44,7 @@ class Page implements PageInterface
         /**
          * The number of items in the whole iteration.
          */
-        protected int $totalItems
+        protected int $totalItems,
     ) {
         $this->urlGenerator = $urlGenerator;
     }
diff --git a/src/Bundle/ChillMainBundle/Pagination/Paginator.php b/src/Bundle/ChillMainBundle/Pagination/Paginator.php
index 34a405a20..b2500dfc2 100644
--- a/src/Bundle/ChillMainBundle/Pagination/Paginator.php
+++ b/src/Bundle/ChillMainBundle/Pagination/Paginator.php
@@ -56,7 +56,7 @@ class Paginator implements PaginatorInterface
         /**
          * the key in the GET parameter to indicate the number of item per page.
          */
-        protected string $itemPerPageKey
+        protected string $itemPerPageKey,
     ) {}
 
     public function count(): int
diff --git a/src/Bundle/ChillMainBundle/Pagination/PaginatorFactory.php b/src/Bundle/ChillMainBundle/Pagination/PaginatorFactory.php
index 6453db4ae..9a809287b 100644
--- a/src/Bundle/ChillMainBundle/Pagination/PaginatorFactory.php
+++ b/src/Bundle/ChillMainBundle/Pagination/PaginatorFactory.php
@@ -38,7 +38,7 @@ final readonly class PaginatorFactory implements PaginatorFactoryInterface
          * the default item per page. This may be overriden by
          * the request or inside the paginator.
          */
-        private int $itemPerPage = 20
+        private int $itemPerPage = 20,
     ) {}
 
     /**
@@ -53,7 +53,7 @@ final readonly class PaginatorFactory implements PaginatorFactoryInterface
     public function create(
         int $totalItems,
         ?string $route = null,
-        ?array $routeParameters = null
+        ?array $routeParameters = null,
     ): PaginatorInterface {
         return new Paginator(
             $totalItems,
diff --git a/src/Bundle/ChillMainBundle/Phonenumber/PhonenumberHelper.php b/src/Bundle/ChillMainBundle/Phonenumber/PhonenumberHelper.php
index d08d393a3..a73c3c71c 100644
--- a/src/Bundle/ChillMainBundle/Phonenumber/PhonenumberHelper.php
+++ b/src/Bundle/ChillMainBundle/Phonenumber/PhonenumberHelper.php
@@ -40,7 +40,7 @@ final class PhonenumberHelper implements PhoneNumberHelperInterface
     public function __construct(
         private readonly CacheItemPoolInterface $cachePool,
         ParameterBagInterface $parameterBag,
-        private readonly LoggerInterface $logger
+        private readonly LoggerInterface $logger,
     ) {
         $this->config = $config = $parameterBag->get('chill_main.phone_helper');
 
diff --git a/src/Bundle/ChillMainBundle/Repository/NewsItemRepository.php b/src/Bundle/ChillMainBundle/Repository/NewsItemRepository.php
index 4552e2a92..65292f849 100644
--- a/src/Bundle/ChillMainBundle/Repository/NewsItemRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/NewsItemRepository.php
@@ -58,7 +58,7 @@ class NewsItemRepository implements ObjectRepository
     }
 
     private function buildBaseQuery(
-        ?string $pattern = null
+        ?string $pattern = null,
     ): QueryBuilder {
         $qb = $this->createQueryBuilder('n');
 
diff --git a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
index 809733287..22bdfbeb8 100644
--- a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
+++ b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
@@ -25,7 +25,7 @@ class AdminUserMenuBuilder implements LocalMenuBuilderInterface
 
     public function __construct(
         AuthorizationCheckerInterface $authorizationChecker,
-        protected ParameterBagInterface $parameterBag
+        protected ParameterBagInterface $parameterBag,
     ) {
         $this->authorizationChecker = $authorizationChecker;
     }
diff --git a/src/Bundle/ChillMainBundle/Search/Model/Result.php b/src/Bundle/ChillMainBundle/Search/Model/Result.php
index 1866da2f2..d2365d348 100644
--- a/src/Bundle/ChillMainBundle/Search/Model/Result.php
+++ b/src/Bundle/ChillMainBundle/Search/Model/Result.php
@@ -18,7 +18,7 @@ class Result
         /**
          * mixed an arbitrary result.
          */
-        private $result
+        private $result,
     ) {}
 
     public function getRelevance(): float
diff --git a/src/Bundle/ChillMainBundle/Search/SearchProvider.php b/src/Bundle/ChillMainBundle/Search/SearchProvider.php
index 73c48f4cf..fbf005430 100644
--- a/src/Bundle/ChillMainBundle/Search/SearchProvider.php
+++ b/src/Bundle/ChillMainBundle/Search/SearchProvider.php
@@ -120,7 +120,7 @@ class SearchProvider
         $start = 0,
         $limit = 50,
         array $options = [],
-        $format = 'html'
+        $format = 'html',
     ) {
         $terms = $this->parse($pattern);
         $search = $this->getByName($name);
@@ -150,7 +150,7 @@ class SearchProvider
         $start = 0,
         $limit = 50,
         array $options = [],
-        $format = 'html'
+        $format = 'html',
     ) {
         $terms = $this->parse($pattern);
         $results = [];
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/AuthorizationHelper.php b/src/Bundle/ChillMainBundle/Security/Authorization/AuthorizationHelper.php
index 098b741e6..52f1646c4 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/AuthorizationHelper.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/AuthorizationHelper.php
@@ -33,7 +33,7 @@ class AuthorizationHelper implements AuthorizationHelperInterface
         private readonly LoggerInterface $logger,
         private readonly ScopeResolverDispatcher $scopeResolverDispatcher,
         private readonly UserACLAwareRepositoryInterface $userACLAwareRepository,
-        private readonly ParentRoleHelper $parentRoleHelper
+        private readonly ParentRoleHelper $parentRoleHelper,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelper.php b/src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelper.php
index 071388fcf..dbc958cc4 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelper.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/DefaultVoterHelper.php
@@ -17,7 +17,7 @@ final readonly class DefaultVoterHelper implements VoterHelperInterface
 {
     public function __construct(
         private AuthorizationHelper $authorizationHelper,
-        private array $configuration
+        private array $configuration,
     ) {}
 
     public function supports($attribute, $subject): bool
diff --git a/src/Bundle/ChillMainBundle/Security/ParentRoleHelper.php b/src/Bundle/ChillMainBundle/Security/ParentRoleHelper.php
index 231bc021d..ccaf26872 100644
--- a/src/Bundle/ChillMainBundle/Security/ParentRoleHelper.php
+++ b/src/Bundle/ChillMainBundle/Security/ParentRoleHelper.php
@@ -30,7 +30,7 @@ class ParentRoleHelper
 
     public function __construct(
         protected RoleHierarchyInterface $roleHierarchy,
-        ParameterBagInterface $parameterBag
+        ParameterBagInterface $parameterBag,
     ) {
         $this->hierarchy = $parameterBag->get('security.role_hierarchy.roles');
     }
diff --git a/src/Bundle/ChillMainBundle/Security/PasswordRecover/RecoverPasswordHelper.php b/src/Bundle/ChillMainBundle/Security/PasswordRecover/RecoverPasswordHelper.php
index e868262e2..b325a9345 100644
--- a/src/Bundle/ChillMainBundle/Security/PasswordRecover/RecoverPasswordHelper.php
+++ b/src/Bundle/ChillMainBundle/Security/PasswordRecover/RecoverPasswordHelper.php
@@ -47,7 +47,7 @@ class RecoverPasswordHelper
         array $templateParameters = [],
         $force = false,
         array $additionalUrlParameters = [],
-        $emailSubject = 'Recover your password'
+        $emailSubject = 'Recover your password',
     ) {
         if (null === $user->getEmail() || '' === trim($user->getEmail())) {
             throw new \UnexpectedValueException('No emaail associated to the user');
diff --git a/src/Bundle/ChillMainBundle/Security/RoleProvider.php b/src/Bundle/ChillMainBundle/Security/RoleProvider.php
index ff3b8f411..ccaa92409 100644
--- a/src/Bundle/ChillMainBundle/Security/RoleProvider.php
+++ b/src/Bundle/ChillMainBundle/Security/RoleProvider.php
@@ -25,7 +25,7 @@ class RoleProvider
         /**
          * @var iterable<ProvideRoleInterface>
          */
-        private readonly iterable $providers
+        private readonly iterable $providers,
     ) {}
 
     public function getRoles(): array
diff --git a/src/Bundle/ChillMainBundle/Service/Import/AddressReferenceBaseImporter.php b/src/Bundle/ChillMainBundle/Service/Import/AddressReferenceBaseImporter.php
index 7e4c93b3f..707754c4b 100644
--- a/src/Bundle/ChillMainBundle/Service/Import/AddressReferenceBaseImporter.php
+++ b/src/Bundle/ChillMainBundle/Service/Import/AddressReferenceBaseImporter.php
@@ -68,7 +68,7 @@ final class AddressReferenceBaseImporter
         string $source,
         ?float $lat = null,
         ?float $lon = null,
-        ?int $srid = null
+        ?int $srid = null,
     ): void {
         if (!$this->isInitialized) {
             $this->initialize($source);
diff --git a/src/Bundle/ChillMainBundle/Service/Import/GeographicalUnitBaseImporter.php b/src/Bundle/ChillMainBundle/Service/Import/GeographicalUnitBaseImporter.php
index 705314642..642cea31a 100644
--- a/src/Bundle/ChillMainBundle/Service/Import/GeographicalUnitBaseImporter.php
+++ b/src/Bundle/ChillMainBundle/Service/Import/GeographicalUnitBaseImporter.php
@@ -64,7 +64,7 @@ final class GeographicalUnitBaseImporter
         string $unitName,
         string $unitKey,
         string $geomAsWKT,
-        ?int $srid = null
+        ?int $srid = null,
     ): void {
         $this->initialize();
 
diff --git a/src/Bundle/ChillMainBundle/Service/Import/PostalCodeBaseImporter.php b/src/Bundle/ChillMainBundle/Service/Import/PostalCodeBaseImporter.php
index a0fc5a5db..7ee381cf0 100644
--- a/src/Bundle/ChillMainBundle/Service/Import/PostalCodeBaseImporter.php
+++ b/src/Bundle/ChillMainBundle/Service/Import/PostalCodeBaseImporter.php
@@ -69,7 +69,7 @@ class PostalCodeBaseImporter
         string $refPostalCodeSource,
         float $centerLat,
         float $centerLon,
-        int $centerSRID
+        int $centerSRID,
     ): void {
         $this->waitingForInsert[] = [
             $countryCode,
diff --git a/src/Bundle/ChillMainBundle/Service/RollingDate/RollingDate.php b/src/Bundle/ChillMainBundle/Service/RollingDate/RollingDate.php
index 445b35cb0..1f7f01dbc 100644
--- a/src/Bundle/ChillMainBundle/Service/RollingDate/RollingDate.php
+++ b/src/Bundle/ChillMainBundle/Service/RollingDate/RollingDate.php
@@ -68,7 +68,7 @@ class RollingDate
     public function __construct(
         private readonly string $roll,
         private readonly ?\DateTimeImmutable $fixedDate = null,
-        private readonly \DateTimeImmutable $pivotDate = new \DateTimeImmutable('now')
+        private readonly \DateTimeImmutable $pivotDate = new \DateTimeImmutable('now'),
     ) {}
 
     public function getFixedDate(): ?\DateTimeImmutable
diff --git a/src/Bundle/ChillMainBundle/Service/ShortMessageOvh/OvhShortMessageSender.php b/src/Bundle/ChillMainBundle/Service/ShortMessageOvh/OvhShortMessageSender.php
index d81123c9a..cf70ed282 100644
--- a/src/Bundle/ChillMainBundle/Service/ShortMessageOvh/OvhShortMessageSender.php
+++ b/src/Bundle/ChillMainBundle/Service/ShortMessageOvh/OvhShortMessageSender.php
@@ -35,7 +35,7 @@ class OvhShortMessageSender implements ShortMessageSenderInterface
         private readonly string $sender,
         // for DI, must remains as third argument
         private readonly LoggerInterface $logger,
-        private readonly PhoneNumberUtil $phoneNumberUtil
+        private readonly PhoneNumberUtil $phoneNumberUtil,
     ) {}
 
     public function send(ShortMessage $shortMessage): void
diff --git a/src/Bundle/ChillMainBundle/Templating/ChillTwigHelper.php b/src/Bundle/ChillMainBundle/Templating/ChillTwigHelper.php
index da91fc6f8..ac0def71b 100644
--- a/src/Bundle/ChillMainBundle/Templating/ChillTwigHelper.php
+++ b/src/Bundle/ChillMainBundle/Templating/ChillTwigHelper.php
@@ -55,7 +55,7 @@ class ChillTwigHelper extends AbstractExtension
         $value,
         $message = 'No value',
         $template = 'default',
-        array $options = []
+        array $options = [],
     ) {
         if ($value instanceof \DateTimeInterface) {
             $options = \array_merge([
diff --git a/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php b/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
index 9a11a7ffc..5f67ccfe2 100644
--- a/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
+++ b/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
@@ -37,7 +37,7 @@ class ChillTwigRoutingHelper extends AbstractExtension
 
     public function __construct(
         RequestStack $requestStack,
-        RoutingExtension $originalExtension
+        RoutingExtension $originalExtension,
     ) {
         $this->requestStack = $requestStack;
         $this->originalExtension = $originalExtension;
diff --git a/src/Bundle/ChillMainBundle/Templating/Listing/FilterOrderHelperBuilder.php b/src/Bundle/ChillMainBundle/Templating/Listing/FilterOrderHelperBuilder.php
index b213203df..350f71d4b 100644
--- a/src/Bundle/ChillMainBundle/Templating/Listing/FilterOrderHelperBuilder.php
+++ b/src/Bundle/ChillMainBundle/Templating/Listing/FilterOrderHelperBuilder.php
@@ -128,7 +128,7 @@ class FilterOrderHelperBuilder
         foreach (
             $this->userPickers as $name => [
                 'label' => $label,
-                'options' => $options
+                'options' => $options,
             ]
         ) {
             $helper->addUserPicker($name, $label, $options);
diff --git a/src/Bundle/ChillMainBundle/Templating/Listing/Templating.php b/src/Bundle/ChillMainBundle/Templating/Listing/Templating.php
index 6d91cdd83..0bf487072 100644
--- a/src/Bundle/ChillMainBundle/Templating/Listing/Templating.php
+++ b/src/Bundle/ChillMainBundle/Templating/Listing/Templating.php
@@ -45,7 +45,7 @@ class Templating extends AbstractExtension
         Environment $environment,
         FilterOrderHelper $helper,
         ?string $template = '@ChillMain/FilterOrder/base.html.twig',
-        ?array $options = []
+        ?array $options = [],
     ): string {
         $otherParameters = [];
 
diff --git a/src/Bundle/ChillMainBundle/Test/DummyPaginator.php b/src/Bundle/ChillMainBundle/Test/DummyPaginator.php
index a44c65e9b..d85608a6b 100644
--- a/src/Bundle/ChillMainBundle/Test/DummyPaginator.php
+++ b/src/Bundle/ChillMainBundle/Test/DummyPaginator.php
@@ -22,7 +22,7 @@ class DummyPaginator implements PaginatorFactoryInterface
     public function __construct(
         private readonly UrlGeneratorInterface $urlGenerator,
         private readonly string $route,
-        private readonly array $routeParameters = []
+        private readonly array $routeParameters = [],
     ) {}
 
     public function create(int $totalItems, ?string $route = null, ?array $routeParameters = null): PaginatorInterface
diff --git a/src/Bundle/ChillMainBundle/Test/PrepareClientTrait.php b/src/Bundle/ChillMainBundle/Test/PrepareClientTrait.php
index 353653619..619436269 100644
--- a/src/Bundle/ChillMainBundle/Test/PrepareClientTrait.php
+++ b/src/Bundle/ChillMainBundle/Test/PrepareClientTrait.php
@@ -30,7 +30,7 @@ trait PrepareClientTrait
      */
     public function getClientAuthenticated(
         $username = 'center a_social',
-        $password = 'password'
+        $password = 'password',
     ): KernelBrowser {
         if ('admin' === $username) {
             return $this->getClientAuthenticatedAsAdmin();
diff --git a/src/Bundle/ChillMainBundle/Tests/Export/ExportManagerTest.php b/src/Bundle/ChillMainBundle/Tests/Export/ExportManagerTest.php
index 7739bc7b9..e2d0e1393 100644
--- a/src/Bundle/ChillMainBundle/Tests/Export/ExportManagerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Export/ExportManagerTest.php
@@ -531,7 +531,7 @@ class DummyFilterWithApplying implements FilterInterface
 {
     public function __construct(
         private readonly ?string $role,
-        private readonly string $applyOn
+        private readonly string $applyOn,
     ) {}
 
     public function getTitle()
diff --git a/src/Bundle/ChillMainBundle/Tests/Pagination/PageTest.php b/src/Bundle/ChillMainBundle/Tests/Pagination/PageTest.php
index 14bb7dfe6..787a5833a 100644
--- a/src/Bundle/ChillMainBundle/Tests/Pagination/PageTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Pagination/PageTest.php
@@ -79,7 +79,7 @@ final class PageTest extends KernelTestCase
     public function testGetFirstItemNumber(
         $number,
         $itemPerPage,
-        $expectedItemPerPage
+        $expectedItemPerPage,
     ) {
         $page = $this->generatePage($number, $itemPerPage);
 
@@ -96,7 +96,7 @@ final class PageTest extends KernelTestCase
     public function testGetLastItemNumber(
         $number,
         $itemPerPage,
-        $expectedItemPerPage
+        $expectedItemPerPage,
     ) {
         $page = $this->generatePage($number, $itemPerPage);
 
@@ -121,7 +121,7 @@ final class PageTest extends KernelTestCase
         $itemPerPage = 10,
         $route = 'route',
         array $routeParameters = [],
-        mixed $totalItems = 100
+        mixed $totalItems = 100,
     ) {
         $urlGenerator = $this->prophet->prophesize();
         $urlGenerator->willImplement(UrlGeneratorInterface::class);
diff --git a/src/Bundle/ChillMainBundle/Tests/Pagination/PaginatorTest.php b/src/Bundle/ChillMainBundle/Tests/Pagination/PaginatorTest.php
index 579348196..f32a772eb 100644
--- a/src/Bundle/ChillMainBundle/Tests/Pagination/PaginatorTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Pagination/PaginatorTest.php
@@ -120,7 +120,7 @@ final class PaginatorTest extends KernelTestCase
         $totalItems,
         $itemPerPage,
         $currentPage,
-        $expectedHasNextPage
+        $expectedHasNextPage,
     ) {
         $paginator = $this->generatePaginator($totalItems, $itemPerPage, $currentPage);
 
@@ -141,7 +141,7 @@ final class PaginatorTest extends KernelTestCase
         $totalItems,
         $itemPerpage,
         $pageNumber,
-        $expectedHasPage
+        $expectedHasPage,
     ) {
         $paginator = $this->generatePaginator($totalItems, $itemPerpage);
 
@@ -159,7 +159,7 @@ final class PaginatorTest extends KernelTestCase
         $totalItems,
         $itemPerPage,
         $currentPage,
-        mixed $expectedHasNextPage
+        mixed $expectedHasNextPage,
     ) {
         $paginator = $this->generatePaginator($totalItems, $itemPerPage, $currentPage);
 
@@ -227,7 +227,7 @@ final class PaginatorTest extends KernelTestCase
         $itemPerPage,
         mixed $currentPageNumber = 1,
         $route = '',
-        array $routeParameters = []
+        array $routeParameters = [],
     ) {
         $urlGenerator = $this->prophet->prophesize();
         $urlGenerator->willImplement(UrlGeneratorInterface::class);
diff --git a/src/Bundle/ChillMainBundle/Tests/Security/Authorization/AuthorizationHelperTest.php b/src/Bundle/ChillMainBundle/Tests/Security/Authorization/AuthorizationHelperTest.php
index 1ebe9610d..4ce7034ce 100644
--- a/src/Bundle/ChillMainBundle/Tests/Security/Authorization/AuthorizationHelperTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Security/Authorization/AuthorizationHelperTest.php
@@ -233,7 +233,7 @@ final class AuthorizationHelperTest extends KernelTestCase
         User $user,
         string $role,
         Center $center,
-        $message
+        $message,
     ) {
         $reachableScopes = $this->getAuthorizationHelper()
             ->getReachableScopes($user, $role, $center);
diff --git a/src/Bundle/ChillMainBundle/Tests/TestHelper.php b/src/Bundle/ChillMainBundle/Tests/TestHelper.php
index 6c144a5fa..b7221e3d8 100644
--- a/src/Bundle/ChillMainBundle/Tests/TestHelper.php
+++ b/src/Bundle/ChillMainBundle/Tests/TestHelper.php
@@ -25,7 +25,7 @@ class TestHelper
      */
     public static function getAuthenticatedClientOptions(
         mixed $username = 'center a_social',
-        mixed $password = 'password'
+        mixed $password = 'password',
     ) {
         return [
             'PHP_AUTH_USER' => $username,
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
index 9c74c861c..fe489c59d 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
@@ -26,7 +26,7 @@ final readonly class EntityWorkflowTransitionEventSubscriber implements EventSub
     public function __construct(
         private LoggerInterface $chillLogger,
         private Security $security,
-        private UserRender $userRender
+        private UserRender $userRender,
     ) {}
 
     public static function getSubscribedEvents(): array
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
index 386b2eff6..d955d777f 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
@@ -28,7 +28,7 @@ class NotificationOnTransition implements EventSubscriberInterface
         private readonly \Twig\Environment $engine,
         private readonly MetadataExtractor $metadataExtractor,
         private readonly Security $security,
-        private readonly Registry $registry
+        private readonly Registry $registry,
     ) {}
 
     public static function getSubscribedEvents(): array
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
index 1a4b573d5..a7bae81d4 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
@@ -25,7 +25,7 @@ class SendAccessKeyEventSubscriber
         private readonly MetadataExtractor $metadataExtractor,
         private readonly Registry $registry,
         private readonly EntityWorkflowManager $entityWorkflowManager,
-        private readonly MailerInterface $mailer
+        private readonly MailerInterface $mailer,
     ) {}
 
     public function postPersist(EntityWorkflowStep $step): void
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index 88bb0fa76..f675b9646 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -69,7 +69,7 @@ class WorkflowTransitionContextDTO
     public string $comment = '';
 
     public function __construct(
-        public EntityWorkflow $entityWorkflow
+        public EntityWorkflow $entityWorkflow,
     ) {}
 
     #[Assert\Callback()]
diff --git a/src/Bundle/ChillPersonBundle/Actions/ActionEvent.php b/src/Bundle/ChillPersonBundle/Actions/ActionEvent.php
index ac3363db0..c8c1add72 100644
--- a/src/Bundle/ChillPersonBundle/Actions/ActionEvent.php
+++ b/src/Bundle/ChillPersonBundle/Actions/ActionEvent.php
@@ -51,7 +51,7 @@ class ActionEvent extends \Symfony\Contracts\EventDispatcher\Event
         /**
          * an array of key value data to describe the movement.
          */
-        protected $metadata = []
+        protected $metadata = [],
     ) {}
 
     /**
diff --git a/src/Bundle/ChillPersonBundle/Actions/Remove/PersonMove.php b/src/Bundle/ChillPersonBundle/Actions/Remove/PersonMove.php
index 292c805a0..2ebae0457 100644
--- a/src/Bundle/ChillPersonBundle/Actions/Remove/PersonMove.php
+++ b/src/Bundle/ChillPersonBundle/Actions/Remove/PersonMove.php
@@ -32,7 +32,7 @@ class PersonMove
     public function __construct(
         private readonly EntityManagerInterface $em,
         private readonly PersonMoveManager $personMoveManager,
-        private readonly EventDispatcherInterface $eventDispatcher
+        private readonly EventDispatcherInterface $eventDispatcher,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillPersonBundle/Command/ChillPersonMoveCommand.php b/src/Bundle/ChillPersonBundle/Command/ChillPersonMoveCommand.php
index 6472a48f5..19d64c488 100644
--- a/src/Bundle/ChillPersonBundle/Command/ChillPersonMoveCommand.php
+++ b/src/Bundle/ChillPersonBundle/Command/ChillPersonMoveCommand.php
@@ -28,7 +28,7 @@ final class ChillPersonMoveCommand extends Command
     public function __construct(
         private readonly PersonMove $mover,
         private readonly EntityManagerInterface $em,
-        private readonly LoggerInterface $chillLogger
+        private readonly LoggerInterface $chillLogger,
     ) {
         parent::__construct('chill:person:move');
     }
diff --git a/src/Bundle/ChillPersonBundle/Command/ImportSocialWorkMetadata.php b/src/Bundle/ChillPersonBundle/Command/ImportSocialWorkMetadata.php
index 6aab04389..636330138 100644
--- a/src/Bundle/ChillPersonBundle/Command/ImportSocialWorkMetadata.php
+++ b/src/Bundle/ChillPersonBundle/Command/ImportSocialWorkMetadata.php
@@ -24,7 +24,7 @@ final class ImportSocialWorkMetadata extends Command
     protected EntityManagerInterface $em;
 
     public function __construct(
-        protected SocialWorkMetadataInterface $importer
+        protected SocialWorkMetadataInterface $importer,
     ) {
         parent::__construct('chill:person:import-socialwork');
     }
diff --git a/src/Bundle/ChillPersonBundle/Config/ConfigPersonAltNamesHelper.php b/src/Bundle/ChillPersonBundle/Config/ConfigPersonAltNamesHelper.php
index 3f233c174..4be480442 100644
--- a/src/Bundle/ChillPersonBundle/Config/ConfigPersonAltNamesHelper.php
+++ b/src/Bundle/ChillPersonBundle/Config/ConfigPersonAltNamesHelper.php
@@ -23,7 +23,7 @@ class ConfigPersonAltNamesHelper
         /**
          * the raw config, directly from the container parameter.
          */
-        private $config
+        private $config,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php b/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
index c43dbd128..523d5a875 100644
--- a/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/AccompanyingCourseWorkController.php
@@ -40,7 +40,7 @@ final class AccompanyingCourseWorkController extends AbstractController
         private readonly LoggerInterface $chillLogger,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly FilterOrderHelperFactoryInterface $filterOrderHelperFactory,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     #[Route(path: '{_locale}/person/accompanying-period/{id}/work/new', name: 'chill_person_accompanying_period_work_new', methods: ['GET'])]
diff --git a/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodController.php b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodController.php
index 7c18ab8a3..7c7def6a7 100644
--- a/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodController.php
@@ -39,7 +39,7 @@ class AccompanyingPeriodController extends AbstractController
         private readonly EventDispatcherInterface $eventDispatcher,
         private readonly ValidatorInterface $validator,
         private readonly TranslatorInterface $translator,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillPersonBundle/Controller/HouseholdCompositionController.php b/src/Bundle/ChillPersonBundle/Controller/HouseholdCompositionController.php
index d9583c8d8..789adf471 100644
--- a/src/Bundle/ChillPersonBundle/Controller/HouseholdCompositionController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/HouseholdCompositionController.php
@@ -43,7 +43,7 @@ class HouseholdCompositionController extends AbstractController
         private readonly EntityManagerInterface $entityManager,
         private readonly TranslatorInterface $translator,
         private readonly \Twig\Environment $engine,
-        private readonly UrlGeneratorInterface $urlGenerator
+        private readonly UrlGeneratorInterface $urlGenerator,
     ) {}
 
     #[Route(path: '/{_locale}/person/household/{household_id}/composition/{composition_id}/delete', name: 'chill_person_household_composition_delete')]
diff --git a/src/Bundle/ChillPersonBundle/Controller/PersonApiController.php b/src/Bundle/ChillPersonBundle/Controller/PersonApiController.php
index 6a1820b24..ffe3295d9 100644
--- a/src/Bundle/ChillPersonBundle/Controller/PersonApiController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/PersonApiController.php
@@ -31,7 +31,7 @@ class PersonApiController extends ApiController
     public function __construct(
         private readonly AuthorizedCenterOnPersonCreationInterface $authorizedCenterOnPersonCreation,
         private readonly ConfigPersonAltNamesHelper $configPersonAltNameHelper,
-        ParameterBagInterface $parameterBag
+        ParameterBagInterface $parameterBag,
     ) {
         $this->showCenters = $parameterBag->get('chill_main')['acl']['form_show_centers'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Controller/UserAccompanyingPeriodController.php b/src/Bundle/ChillPersonBundle/Controller/UserAccompanyingPeriodController.php
index adaaa27d0..3a2b1be6e 100644
--- a/src/Bundle/ChillPersonBundle/Controller/UserAccompanyingPeriodController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/UserAccompanyingPeriodController.php
@@ -35,7 +35,7 @@ class UserAccompanyingPeriodController extends AbstractController
             ],
             false => [
                 AccompanyingPeriod::STEP_CLOSED,
-            ]
+            ],
         };
 
         $total = $this->accompanyingPeriodRepository->countBy(['user' => $this->getUser(), 'step' => $steps]);
diff --git a/src/Bundle/ChillPersonBundle/DataFixtures/ORM/LoadPeople.php b/src/Bundle/ChillPersonBundle/DataFixtures/ORM/LoadPeople.php
index e8026d04b..d356cf9ad 100644
--- a/src/Bundle/ChillPersonBundle/DataFixtures/ORM/LoadPeople.php
+++ b/src/Bundle/ChillPersonBundle/DataFixtures/ORM/LoadPeople.php
@@ -227,7 +227,7 @@ class LoadPeople extends AbstractFixture implements ContainerAwareInterface, Ord
         protected CountryRepository $countryRepository,
         protected MaritalStatusRepository $maritalStatusRepository,
         protected ScopeRepository $scopeRepository,
-        protected UserRepository $userRepository
+        protected UserRepository $userRepository,
     ) {
         $this->faker = Factory::create('fr_FR');
         $this->faker->addProvider($this);
diff --git a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/AccompanyingPeriodWorkReferrerHistory.php b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/AccompanyingPeriodWorkReferrerHistory.php
index 0942874ea..ac09a1433 100644
--- a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/AccompanyingPeriodWorkReferrerHistory.php
+++ b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/AccompanyingPeriodWorkReferrerHistory.php
@@ -45,7 +45,7 @@ class AccompanyingPeriodWorkReferrerHistory implements TrackCreationInterface, T
          * @var \DateTimeImmutable
          */
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::DATE_IMMUTABLE, nullable: false)]
-        private \DateTimeImmutable $startDate
+        private \DateTimeImmutable $startDate,
     ) {}
 
     public function getId(): ?int
diff --git a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/UserHistory.php b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/UserHistory.php
index 4376eba8c..b600ab0bf 100644
--- a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/UserHistory.php
+++ b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriod/UserHistory.php
@@ -39,7 +39,7 @@ class UserHistory implements TrackCreationInterface
         #[ORM\JoinColumn(nullable: false)]
         private User $user,
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::DATETIME_IMMUTABLE, nullable: false, options: ['default' => 'now()'])]
-        private \DateTimeImmutable $startDate = new \DateTimeImmutable('now')
+        private \DateTimeImmutable $startDate = new \DateTimeImmutable('now'),
     ) {}
 
     public function getAccompanyingPeriod(): AccompanyingPeriod
diff --git a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriodParticipation.php b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriodParticipation.php
index b6da20f58..498aa44e4 100644
--- a/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriodParticipation.php
+++ b/src/Bundle/ChillPersonBundle/Entity/AccompanyingPeriodParticipation.php
@@ -42,7 +42,7 @@ class AccompanyingPeriodParticipation
         #[ORM\JoinColumn(name: 'accompanyingperiod_id', referencedColumnName: 'id', nullable: false)]
         private ?AccompanyingPeriod $accompanyingPeriod,
         #[Groups(['read', 'docgen:read'])] #[ORM\ManyToOne(targetEntity: Person::class, inversedBy: 'accompanyingPeriodParticipations')] #[ORM\JoinColumn(name: 'person_id', referencedColumnName: 'id', nullable: false)]
-        private ?Person $person
+        private ?Person $person,
     ) {
         $this->startDate = new \DateTime('now');
         $person->getAccompanyingPeriodParticipations()->add($this);
diff --git a/src/Bundle/ChillPersonBundle/Entity/Person.php b/src/Bundle/ChillPersonBundle/Entity/Person.php
index b9b3e5bf4..0b4b54681 100644
--- a/src/Bundle/ChillPersonBundle/Entity/Person.php
+++ b/src/Bundle/ChillPersonBundle/Entity/Person.php
@@ -594,7 +594,7 @@ class Person implements HasCenterInterface, TrackCreationInterface, TrackUpdateI
      */
     public function getAccompanyingPeriodInvolved(
         bool $asParticipantOpen = true,
-        bool $asRequestor = true
+        bool $asRequestor = true,
     ): Collection {
         $result = new ArrayCollection();
 
@@ -621,7 +621,7 @@ class Person implements HasCenterInterface, TrackCreationInterface, TrackUpdateI
 
     public function countAccompanyingPeriodInvolved(
         bool $asParticipantOpen = true,
-        bool $asRequestor = true
+        bool $asRequestor = true,
     ): int {
         // TODO should be optimized to avoid loading accompanying period ?
         return $this->getAccompanyingPeriodInvolved($asParticipantOpen, $asRequestor)
diff --git a/src/Bundle/ChillPersonBundle/Entity/Person/PersonCenterHistory.php b/src/Bundle/ChillPersonBundle/Entity/Person/PersonCenterHistory.php
index f03eb7907..6c5d19413 100644
--- a/src/Bundle/ChillPersonBundle/Entity/Person/PersonCenterHistory.php
+++ b/src/Bundle/ChillPersonBundle/Entity/Person/PersonCenterHistory.php
@@ -44,7 +44,7 @@ class PersonCenterHistory implements TrackCreationInterface, TrackUpdateInterfac
         #[ORM\ManyToOne(targetEntity: Center::class)]
         private ?Center $center = null,
         #[ORM\Column(type: \Doctrine\DBAL\Types\Types::DATE_IMMUTABLE, nullable: false)]
-        private ?\DateTimeImmutable $startDate = null
+        private ?\DateTimeImmutable $startDate = null,
     ) {}
 
     public function getCenter(): ?Center
diff --git a/src/Bundle/ChillPersonBundle/Entity/SocialWork/SocialAction.php b/src/Bundle/ChillPersonBundle/Entity/SocialWork/SocialAction.php
index da5a72b77..0d0a59c87 100644
--- a/src/Bundle/ChillPersonBundle/Entity/SocialWork/SocialAction.php
+++ b/src/Bundle/ChillPersonBundle/Entity/SocialWork/SocialAction.php
@@ -403,7 +403,7 @@ class SocialAction
 
         return match ($actions instanceof ReadableCollection) {
             true => $actions->filter($filterFn),
-            false => array_filter($actions, $filterFn)
+            false => array_filter($actions, $filterFn),
         };
     }
 }
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/CreatorJobAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/CreatorJobAggregator.php
index bc18315c1..94202d958 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/CreatorJobAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/CreatorJobAggregator.php
@@ -26,7 +26,7 @@ class CreatorJobAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserJobRepository $jobRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/OriginAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/OriginAggregator.php
index e15539fb1..070122f2e 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/OriginAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/OriginAggregator.php
@@ -26,7 +26,7 @@ final readonly class OriginAggregator implements AggregatorInterface
 
     public function __construct(
         EntityManagerInterface $em,
-        private TranslatableStringHelper $translatableStringHelper
+        private TranslatableStringHelper $translatableStringHelper,
     ) {
         $this->repository = $em->getRepository(Origin::class);
     }
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/ReferrerAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/ReferrerAggregator.php
index 8e987a606..2df724517 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/ReferrerAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingCourseAggregators/ReferrerAggregator.php
@@ -31,7 +31,7 @@ final readonly class ReferrerAggregator implements AggregatorInterface, DataTran
     public function __construct(
         private UserRepository $userRepository,
         private UserRender $userRender,
-        private RollingDateConverterInterface $rollingDateConverter
+        private RollingDateConverterInterface $rollingDateConverter,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingPeriodStepHistoryAggregators/ByStepAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingPeriodStepHistoryAggregators/ByStepAggregator.php
index e2494526a..b3be83da2 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingPeriodStepHistoryAggregators/ByStepAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/AccompanyingPeriodStepHistoryAggregators/ByStepAggregator.php
@@ -26,7 +26,7 @@ final readonly class ByStepAggregator implements AggregatorInterface
     private const KEY = 'acpstephistory_step_agg';
 
     public function __construct(
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder)
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorAggregator.php
index f7c203a4e..46cc85de6 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorAggregator.php
@@ -24,7 +24,7 @@ class CreatorAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserRepository $userRepository,
-        private readonly UserRender $userRender
+        private readonly UserRender $userRender,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorJobAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorJobAggregator.php
index 1f7fdca5a..c1b7c248b 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorJobAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorJobAggregator.php
@@ -26,7 +26,7 @@ class CreatorJobAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly UserJobRepository $jobRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorScopeAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorScopeAggregator.php
index c57607693..b38096079 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorScopeAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/CreatorScopeAggregator.php
@@ -26,7 +26,7 @@ class CreatorScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private readonly ScopeRepository $scopeRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/JobAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/JobAggregator.php
index c8336b09b..282a36db4 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/JobAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/JobAggregator.php
@@ -27,7 +27,7 @@ final readonly class JobAggregator implements AggregatorInterface
 
     public function __construct(
         private UserJobRepository $jobRepository,
-        private TranslatableStringHelper $translatableStringHelper
+        private TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ReferrerAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ReferrerAggregator.php
index c97229048..7543da857 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ReferrerAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ReferrerAggregator.php
@@ -28,7 +28,7 @@ final readonly class ReferrerAggregator implements AggregatorInterface
     public function __construct(
         private UserRepository $userRepository,
         private UserRender $userRender,
-        private RollingDateConverterInterface $rollingDateConverter
+        private RollingDateConverterInterface $rollingDateConverter,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ScopeAggregator.php b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ScopeAggregator.php
index dfffaa9e4..0bedaf267 100644
--- a/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ScopeAggregator.php
+++ b/src/Bundle/ChillPersonBundle/Export/Aggregator/SocialWorkAggregators/ScopeAggregator.php
@@ -27,7 +27,7 @@ final readonly class ScopeAggregator implements AggregatorInterface
 
     public function __construct(
         private ScopeRepository $scopeRepository,
-        private TranslatableStringHelper $translatableStringHelper
+        private TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnAccompanyingPeriod.php b/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnAccompanyingPeriod.php
index ad3f8f745..18a0c54b0 100644
--- a/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnAccompanyingPeriod.php
+++ b/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnAccompanyingPeriod.php
@@ -29,7 +29,7 @@ class AvgDurationAPWorkPersonAssociatedOnAccompanyingPeriod implements ExportInt
 
     public function __construct(
         ParameterBagInterface $parameterBag,
-        private readonly AccompanyingPeriodWorkRepository $accompanyingPeriodWorkRepository
+        private readonly AccompanyingPeriodWorkRepository $accompanyingPeriodWorkRepository,
     ) {
         $this->filterStatsByCenters = $parameterBag->get('chill_main')['acl']['filter_stats_by_center'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnWork.php b/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnWork.php
index 8d34837ae..a8750e42c 100644
--- a/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnWork.php
+++ b/src/Bundle/ChillPersonBundle/Export/Export/AvgDurationAPWorkPersonAssociatedOnWork.php
@@ -29,7 +29,7 @@ class AvgDurationAPWorkPersonAssociatedOnWork implements ExportInterface, Groupe
 
     public function __construct(
         ParameterBagInterface $parameterBag,
-        private readonly AccompanyingPeriodWorkRepository $accompanyingPeriodWorkRepository
+        private readonly AccompanyingPeriodWorkRepository $accompanyingPeriodWorkRepository,
     ) {
         $this->filterStatsByCenters = $parameterBag->get('chill_main')['acl']['filter_stats_by_center'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Export/Export/ListPersonDuplicate.php b/src/Bundle/ChillPersonBundle/Export/Export/ListPersonDuplicate.php
index 1a1fd0316..69d00a612 100644
--- a/src/Bundle/ChillPersonBundle/Export/Export/ListPersonDuplicate.php
+++ b/src/Bundle/ChillPersonBundle/Export/Export/ListPersonDuplicate.php
@@ -51,7 +51,7 @@ class ListPersonDuplicate implements DirectExportInterface, ExportElementValidat
         EntityManagerInterface $em,
         private readonly TranslatorInterface $translator,
         private readonly UrlGeneratorInterface $router,
-        $routeParameters
+        $routeParameters,
     ) {
         $this->entityManager = $em;
         $this->baseUrl = $routeParameters['scheme'].
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/CreatorJobFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/CreatorJobFilter.php
index cc7e21b08..dd1264bd2 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/CreatorJobFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/CreatorJobFilter.php
@@ -28,7 +28,7 @@ class CreatorJobFilter implements FilterInterface
 
     public function __construct(
         private readonly TranslatableStringHelper $translatableStringHelper,
-        private readonly UserJobRepositoryInterface $userJobRepository
+        private readonly UserJobRepositoryInterface $userJobRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/GeographicalUnitStatFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/GeographicalUnitStatFilter.php
index 7adf03d13..7d6d90e64 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/GeographicalUnitStatFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/GeographicalUnitStatFilter.php
@@ -37,7 +37,7 @@ class GeographicalUnitStatFilter implements FilterInterface
         private readonly GeographicalUnitRepositoryInterface $geographicalUnitRepository,
         private readonly GeographicalUnitLayerRepositoryInterface $geographicalUnitLayerRepository,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly RollingDateConverterInterface $rollingDateConverter
+        private readonly RollingDateConverterInterface $rollingDateConverter,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/ReferrerFilterBetweenDates.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/ReferrerFilterBetweenDates.php
index a5b43375f..6116e968b 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/ReferrerFilterBetweenDates.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/ReferrerFilterBetweenDates.php
@@ -41,7 +41,7 @@ final readonly class ReferrerFilterBetweenDates implements FilterInterface
 
     public function __construct(
         private RollingDateConverterInterface $rollingDateConverter,
-        private UserRender $userRender
+        private UserRender $userRender,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialActionFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialActionFilter.php
index dc5ffa042..545c35f5e 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialActionFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialActionFilter.php
@@ -30,7 +30,7 @@ final readonly class SocialActionFilter implements FilterInterface
     public function __construct(
         private SocialActionRender $actionRender,
         private RollingDateConverterInterface $rollingDateConverter,
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialIssueFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialIssueFilter.php
index 52010ff81..afcdd15bc 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialIssueFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingCourseFilters/SocialIssueFilter.php
@@ -30,7 +30,7 @@ class SocialIssueFilter implements FilterInterface
 
     public function __construct(
         TranslatorInterface $translator,
-        private readonly SocialIssueRender $socialIssueRender
+        private readonly SocialIssueRender $socialIssueRender,
     ) {
         $this->translator = $translator;
     }
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingPeriodStepHistoryFilters/ByDateFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingPeriodStepHistoryFilters/ByDateFilter.php
index 1625953f6..84a5814b3 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingPeriodStepHistoryFilters/ByDateFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/AccompanyingPeriodStepHistoryFilters/ByDateFilter.php
@@ -32,7 +32,7 @@ use Symfony\Component\Form\FormBuilderInterface;
 final readonly class ByDateFilter implements FilterInterface
 {
     public function __construct(
-        private RollingDateConverterInterface $rollingDateConverter
+        private RollingDateConverterInterface $rollingDateConverter,
     ) {}
 
     public function getTitle()
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/HouseholdFilters/CompositionFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/HouseholdFilters/CompositionFilter.php
index 733e41480..b9f9075ed 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/HouseholdFilters/CompositionFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/HouseholdFilters/CompositionFilter.php
@@ -27,7 +27,7 @@ readonly class CompositionFilter implements FilterInterface
 {
     public function __construct(
         private TranslatableStringHelper $translatableStringHelper,
-        private RollingDateConverterInterface $rollingDateConverter
+        private RollingDateConverterInterface $rollingDateConverter,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorJobFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorJobFilter.php
index 2b7a6ef07..3087d156e 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorJobFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorJobFilter.php
@@ -28,7 +28,7 @@ class CreatorJobFilter implements FilterInterface
 
     public function __construct(
         private readonly UserJobRepository $userJobRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorScopeFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorScopeFilter.php
index 16ed52755..414740c7a 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorScopeFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/CreatorScopeFilter.php
@@ -28,7 +28,7 @@ class CreatorScopeFilter implements FilterInterface
 
     public function __construct(
         private readonly ScopeRepository $scopeRepository,
-        private readonly TranslatableStringHelper $translatableStringHelper
+        private readonly TranslatableStringHelper $translatableStringHelper,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/ScopeFilter.php b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/ScopeFilter.php
index e22c84696..9f2041aaa 100644
--- a/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/ScopeFilter.php
+++ b/src/Bundle/ChillPersonBundle/Export/Filter/SocialWorkFilters/ScopeFilter.php
@@ -30,7 +30,7 @@ class ScopeFilter implements FilterInterface
     public function __construct(
         protected TranslatorInterface $translator,
         private readonly TranslatableStringHelper $translatableStringHelper,
-        private readonly ScopeRepositoryInterface $scopeRepository
+        private readonly ScopeRepositoryInterface $scopeRepository,
     ) {}
 
     public function addRole(): ?string
diff --git a/src/Bundle/ChillPersonBundle/Export/Helper/ListAccompanyingPeriodHelper.php b/src/Bundle/ChillPersonBundle/Export/Helper/ListAccompanyingPeriodHelper.php
index 87ed9eec0..f66a8b039 100644
--- a/src/Bundle/ChillPersonBundle/Export/Helper/ListAccompanyingPeriodHelper.php
+++ b/src/Bundle/ChillPersonBundle/Export/Helper/ListAccompanyingPeriodHelper.php
@@ -87,7 +87,7 @@ final readonly class ListAccompanyingPeriodHelper
         private TranslatorInterface $translator,
         private UserHelper $userHelper,
         private LabelPersonHelper $labelPersonHelper,
-        private CenterRepository $centerRepository
+        private CenterRepository $centerRepository,
     ) {}
 
     public function getQueryKeys($data)
diff --git a/src/Bundle/ChillPersonBundle/Form/ChoiceLoader/PersonChoiceLoader.php b/src/Bundle/ChillPersonBundle/Form/ChoiceLoader/PersonChoiceLoader.php
index 9de66b272..5b294e2f5 100644
--- a/src/Bundle/ChillPersonBundle/Form/ChoiceLoader/PersonChoiceLoader.php
+++ b/src/Bundle/ChillPersonBundle/Form/ChoiceLoader/PersonChoiceLoader.php
@@ -27,7 +27,7 @@ class PersonChoiceLoader implements ChoiceLoaderInterface
 
     public function __construct(
         protected PersonRepository $personRepository,
-        ?array $centers = null
+        ?array $centers = null,
     ) {
         if (null !== $centers) {
             $this->centers = $centers;
diff --git a/src/Bundle/ChillPersonBundle/Form/CreationPersonType.php b/src/Bundle/ChillPersonBundle/Form/CreationPersonType.php
index 01814af38..9bfb75e31 100644
--- a/src/Bundle/ChillPersonBundle/Form/CreationPersonType.php
+++ b/src/Bundle/ChillPersonBundle/Form/CreationPersonType.php
@@ -45,7 +45,7 @@ final class CreationPersonType extends AbstractType
     public function __construct(
         private readonly ConfigPersonAltNamesHelper $configPersonAltNamesHelper,
         private readonly EventDispatcherInterface $dispatcher,
-        ParameterBagInterface $parameterBag
+        ParameterBagInterface $parameterBag,
     ) {
         $this->askCenters = $parameterBag->get('chill_main')['acl']['form_show_centers'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Form/Type/ClosingMotivePickerType.php b/src/Bundle/ChillPersonBundle/Form/Type/ClosingMotivePickerType.php
index 49e23f7c6..f1c01eb34 100644
--- a/src/Bundle/ChillPersonBundle/Form/Type/ClosingMotivePickerType.php
+++ b/src/Bundle/ChillPersonBundle/Form/Type/ClosingMotivePickerType.php
@@ -47,7 +47,7 @@ class ClosingMotivePickerType extends AbstractType
     public function __construct(
         TranslatableStringHelper $translatableStringHelper,
         ChillEntityRenderExtension $chillEntityRenderExtension,
-        ClosingMotiveRepository $closingMotiveRepository
+        ClosingMotiveRepository $closingMotiveRepository,
     ) {
         $this->translatableStringHelper = $translatableStringHelper;
         $this->entityRenderExtension = $chillEntityRenderExtension;
diff --git a/src/Bundle/ChillPersonBundle/Form/Type/PickPersonType.php b/src/Bundle/ChillPersonBundle/Form/Type/PickPersonType.php
index f8086369f..9ddee9c7e 100644
--- a/src/Bundle/ChillPersonBundle/Form/Type/PickPersonType.php
+++ b/src/Bundle/ChillPersonBundle/Form/Type/PickPersonType.php
@@ -48,7 +48,7 @@ final class PickPersonType extends AbstractType
         private readonly TokenStorageInterface $tokenStorage,
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly UrlGeneratorInterface $urlGenerator,
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
     ) {}
 
     public function buildView(\Symfony\Component\Form\FormView $view, \Symfony\Component\Form\FormInterface $form, array $options)
diff --git a/src/Bundle/ChillPersonBundle/Household/MembersEditor.php b/src/Bundle/ChillPersonBundle/Household/MembersEditor.php
index ee93efd6b..d5e1dfe59 100644
--- a/src/Bundle/ChillPersonBundle/Household/MembersEditor.php
+++ b/src/Bundle/ChillPersonBundle/Household/MembersEditor.php
@@ -41,7 +41,7 @@ class MembersEditor
     public function __construct(
         private readonly ValidatorInterface $validator,
         private readonly ?Household $household,
-        private readonly EventDispatcherInterface $eventDispatcher
+        private readonly EventDispatcherInterface $eventDispatcher,
     ) {}
 
     /**
@@ -162,7 +162,7 @@ class MembersEditor
      */
     public function leaveMovement(
         \DateTimeImmutable $date,
-        Person $person
+        Person $person,
     ): self {
         $criteria = new Criteria();
         $expr = Criteria::expr();
diff --git a/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php b/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
index 5dce8c477..1984c4c93 100644
--- a/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
+++ b/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
@@ -42,7 +42,7 @@ class PersonMenuBuilder implements LocalMenuBuilderInterface
         ParameterBagInterface $parameterBag,
         private readonly Security $security,
         protected TranslatorInterface $translator,
-        private readonly ResidentialAddressRepository $residentialAddressRepo
+        private readonly ResidentialAddressRepository $residentialAddressRepo,
     ) {
         $this->showAccompanyingPeriod = $parameterBag->get('chill_person.accompanying_period');
     }
diff --git a/src/Bundle/ChillPersonBundle/Menu/UserMenuBuilder.php b/src/Bundle/ChillPersonBundle/Menu/UserMenuBuilder.php
index 4e95d9275..7f7d2fe5a 100644
--- a/src/Bundle/ChillPersonBundle/Menu/UserMenuBuilder.php
+++ b/src/Bundle/ChillPersonBundle/Menu/UserMenuBuilder.php
@@ -29,7 +29,7 @@ class UserMenuBuilder implements LocalMenuBuilderInterface
     public $translator;
 
     public function __construct(
-        AuthorizationCheckerInterface $authorizationChecker
+        AuthorizationCheckerInterface $authorizationChecker,
     ) {
         $this->authorizationChecker = $authorizationChecker;
     }
diff --git a/src/Bundle/ChillPersonBundle/Privacy/PrivacyEventSubscriber.php b/src/Bundle/ChillPersonBundle/Privacy/PrivacyEventSubscriber.php
index 00ffa47f5..7dfa9cb4b 100644
--- a/src/Bundle/ChillPersonBundle/Privacy/PrivacyEventSubscriber.php
+++ b/src/Bundle/ChillPersonBundle/Privacy/PrivacyEventSubscriber.php
@@ -44,7 +44,7 @@ final readonly class PrivacyEventSubscriber implements EventSubscriberInterface
      */
     public function __construct(
         private LoggerInterface $logger,
-        private TokenStorageInterface $token
+        private TokenStorageInterface $token,
     ) {}
 
     public static function getSubscribedEvents()
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepository.php
index 32c2a6f80..ebd72e0b4 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepository.php
@@ -39,7 +39,7 @@ final readonly class AccompanyingPeriodACLAwareRepository implements Accompanyin
         private AccompanyingPeriodRepository $accompanyingPeriodRepository,
         private Security $security,
         private AuthorizationHelperForCurrentUserInterface $authorizationHelper,
-        private CenterResolverManagerInterface $centerResolver
+        private CenterResolverManagerInterface $centerResolver,
     ) {}
 
     public function buildQueryOpenedAccompanyingCourseByUserAndPostalCodes(?User $user, array $postalCodes = []): QueryBuilder
@@ -108,7 +108,7 @@ final readonly class AccompanyingPeriodACLAwareRepository implements Accompanyin
         string $role,
         ?array $orderBy = [],
         ?int $limit = null,
-        ?int $offset = null
+        ?int $offset = null,
     ): array {
         $qb = $this->accompanyingPeriodRepository->createQueryBuilder('ap');
         $scopes = $this->authorizationHelper
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepositoryInterface.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepositoryInterface.php
index ba3396af8..560917ac8 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepositoryInterface.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriodACLAwareRepositoryInterface.php
@@ -41,7 +41,7 @@ interface AccompanyingPeriodACLAwareRepositoryInterface
         string $role,
         ?array $orderBy = [],
         ?int $limit = null,
-        ?int $offset = null
+        ?int $offset = null,
     ): array;
 
     /**
diff --git a/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepository.php b/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepository.php
index 26121ffdc..89a1c4e82 100644
--- a/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepository.php
@@ -85,7 +85,7 @@ final readonly class HouseholdACLAwareRepository implements HouseholdACLAwareRep
     public function findByAddressReference(
         AddressReference $addressReference,
         ?int $firstResult = 0,
-        ?int $maxResult = 50
+        ?int $maxResult = 50,
     ): array {
         $qb = $this->buildQueryByAddressReference($addressReference);
         $qb = $this->addACL($qb);
diff --git a/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepositoryInterface.php b/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepositoryInterface.php
index fe8408f91..b634ab205 100644
--- a/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepositoryInterface.php
+++ b/src/Bundle/ChillPersonBundle/Repository/Household/HouseholdACLAwareRepositoryInterface.php
@@ -24,6 +24,6 @@ interface HouseholdACLAwareRepositoryInterface
     public function findByAddressReference(
         AddressReference $addressReference,
         ?int $firstResult = 0,
-        ?int $maxResult = 50
+        ?int $maxResult = 50,
     ): array;
 }
diff --git a/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepository.php b/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepository.php
index 303773c3e..9e76dd374 100644
--- a/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepository.php
@@ -37,7 +37,7 @@ final readonly class PersonACLAwareRepository implements PersonACLAwareRepositor
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): SearchApiQuery {
         $query = $this->createSearchQuery(
             $default,
@@ -65,7 +65,7 @@ final readonly class PersonACLAwareRepository implements PersonACLAwareRepositor
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): int {
         $query = $this->buildAuthorizedQuery(
             $default,
@@ -99,7 +99,7 @@ final readonly class PersonACLAwareRepository implements PersonACLAwareRepositor
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): SearchApiQuery {
         $query = new SearchApiQuery();
         $query
@@ -256,7 +256,7 @@ final readonly class PersonACLAwareRepository implements PersonACLAwareRepositor
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): array {
         $query = $this->buildAuthorizedQuery(
             $default,
diff --git a/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepositoryInterface.php b/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepositoryInterface.php
index c327ecd40..7a45d6648 100644
--- a/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepositoryInterface.php
+++ b/src/Bundle/ChillPersonBundle/Repository/PersonACLAwareRepositoryInterface.php
@@ -26,7 +26,7 @@ interface PersonACLAwareRepositoryInterface
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): SearchApiQuery;
 
     public function countBySearchCriteria(
@@ -39,7 +39,7 @@ interface PersonACLAwareRepositoryInterface
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     );
 
     /**
@@ -58,6 +58,6 @@ interface PersonACLAwareRepositoryInterface
         ?string $gender = null,
         ?string $countryCode = null,
         ?string $phonenumber = null,
-        ?string $city = null
+        ?string $city = null,
     ): array;
 }
diff --git a/src/Bundle/ChillPersonBundle/Repository/PersonRepository.php b/src/Bundle/ChillPersonBundle/Repository/PersonRepository.php
index b7104a843..6d6373999 100644
--- a/src/Bundle/ChillPersonBundle/Repository/PersonRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/PersonRepository.php
@@ -33,7 +33,7 @@ class PersonRepository implements ObjectRepository
     public function countByPhone(
         string $phonenumber,
         $centers,
-        array $only = ['mobile', 'phone']
+        array $only = ['mobile', 'phone'],
     ): int {
         $qb = $this->repository->createQueryBuilder('p');
         $qb->select('COUNT(p)');
@@ -77,7 +77,7 @@ class PersonRepository implements ObjectRepository
         $centers,
         $firstResult,
         $maxResults,
-        array $only = ['mobile', 'phone']
+        array $only = ['mobile', 'phone'],
     ) {
         $qb = $this->repository->createQueryBuilder('p');
         $qb->select('p');
diff --git a/src/Bundle/ChillPersonBundle/Search/SimilarPersonMatcher.php b/src/Bundle/ChillPersonBundle/Search/SimilarPersonMatcher.php
index 74deb91e1..e0020aff2 100644
--- a/src/Bundle/ChillPersonBundle/Search/SimilarPersonMatcher.php
+++ b/src/Bundle/ChillPersonBundle/Search/SimilarPersonMatcher.php
@@ -45,7 +45,7 @@ class SimilarPersonMatcher
         AuthorizationHelper $authorizationHelper,
         TokenStorageInterface $tokenStorage,
         protected PersonNotDuplicateRepository $personNotDuplicateRepository,
-        protected PersonRenderInterface $personRender
+        protected PersonRenderInterface $personRender,
     ) {
         $this->em = $em;
         $this->authorizationHelper = $authorizationHelper;
@@ -56,7 +56,7 @@ class SimilarPersonMatcher
         Person $person,
         float $precision = 0.30,
         string $orderBy = self::SIMILAR_SEARCH_ORDER_BY_SIMILARITY,
-        bool $addYearComparison = false
+        bool $addYearComparison = false,
     ) {
         $centers = $this->authorizationHelper->getReachableCenters(
             $this->tokenStorage->getToken()->getUser(),
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodVoter.php
index 9aadd3d95..4e609a620 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodVoter.php
@@ -109,7 +109,7 @@ class AccompanyingPeriodVoter extends AbstractChillVoter implements ProvideRoleH
 
     public function __construct(
         private readonly Security $security,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkVoter.php
index 64b25498c..58cb7390e 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/AccompanyingPeriodWorkVoter.php
@@ -43,7 +43,7 @@ class AccompanyingPeriodWorkVoter extends Voter implements ProvideRoleHierarchyI
 
     public function __construct(
         private readonly Security $security,
-        VoterHelperFactoryInterface $voterHelperFactory
+        VoterHelperFactoryInterface $voterHelperFactory,
     ) {
         $this->voterHelper = $voterHelperFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/PersonVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/PersonVoter.php
index 2de8a1554..5f41ba09b 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/PersonVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/PersonVoter.php
@@ -36,7 +36,7 @@ class PersonVoter extends AbstractChillVoter implements ProvideRoleHierarchyInte
     protected VoterHelperInterface $voter;
 
     public function __construct(
-        VoterHelperFactoryInterface $voterFactory
+        VoterHelperFactoryInterface $voterFactory,
     ) {
         $this->voter = $voterFactory
             ->generate(self::class)
diff --git a/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
index 4a81367d7..e2ede26e5 100644
--- a/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
+++ b/src/Bundle/ChillPersonBundle/Security/Authorization/StoredObjectVoter/AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter.php
@@ -25,7 +25,7 @@ class AccompanyingPeriodWorkEvaluationDocumentStoredObjectVoter extends Abstract
     public function __construct(
         private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
         Security $security,
-        WorkflowStoredObjectPermissionHelper $workflowDocumentService
+        WorkflowStoredObjectPermissionHelper $workflowDocumentService,
     ) {
         parent::__construct($security, $workflowDocumentService);
     }
diff --git a/src/Bundle/ChillPersonBundle/Serializer/Normalizer/PersonJsonNormalizer.php b/src/Bundle/ChillPersonBundle/Serializer/Normalizer/PersonJsonNormalizer.php
index eae33f399..d39a69d73 100644
--- a/src/Bundle/ChillPersonBundle/Serializer/Normalizer/PersonJsonNormalizer.php
+++ b/src/Bundle/ChillPersonBundle/Serializer/Normalizer/PersonJsonNormalizer.php
@@ -47,7 +47,7 @@ class PersonJsonNormalizer implements DenormalizerAwareInterface, NormalizerAwar
         private readonly PersonRepository $repository,
         private readonly CenterResolverManagerInterface $centerResolverManager,
         private readonly ResidentialAddressRepository $residentialAddressRepository,
-        private readonly PhoneNumberHelperInterface $phoneNumberHelper
+        private readonly PhoneNumberHelperInterface $phoneNumberHelper,
     ) {}
 
     public function denormalize($data, $type, $format = null, array $context = [])
diff --git a/src/Bundle/ChillPersonBundle/Service/DocGenerator/AccompanyingPeriodContext.php b/src/Bundle/ChillPersonBundle/Service/DocGenerator/AccompanyingPeriodContext.php
index 61edc0205..96054b59f 100644
--- a/src/Bundle/ChillPersonBundle/Service/DocGenerator/AccompanyingPeriodContext.php
+++ b/src/Bundle/ChillPersonBundle/Service/DocGenerator/AccompanyingPeriodContext.php
@@ -59,7 +59,7 @@ class AccompanyingPeriodContext implements
         private readonly TranslatorInterface $translator,
         private readonly BaseContextData $baseContextData,
         private readonly ThirdPartyRender $thirdPartyRender,
-        private readonly ThirdPartyRepository $thirdPartyRepository
+        private readonly ThirdPartyRepository $thirdPartyRepository,
     ) {}
 
     public function adminFormReverseTransform(array $data): array
diff --git a/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContext.php b/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContext.php
index 890fa40ff..eb588cdaf 100644
--- a/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContext.php
+++ b/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContext.php
@@ -65,7 +65,7 @@ final readonly class PersonContext implements PersonContextInterface
         private TranslatableStringHelperInterface $translatableStringHelper,
         private ThirdPartyRender $thirdPartyRender,
         private ThirdPartyRepository $thirdPartyRepository,
-        private ResidentialAddressRepository $residentialAddressRepository
+        private ResidentialAddressRepository $residentialAddressRepository,
     ) {
         $this->showScopes = $parameterBag->get('chill_main')['acl']['form_show_scopes'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContextWithThirdParty.php b/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContextWithThirdParty.php
index 7f142fdbf..2386f0655 100644
--- a/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContextWithThirdParty.php
+++ b/src/Bundle/ChillPersonBundle/Service/DocGenerator/PersonContextWithThirdParty.php
@@ -30,7 +30,7 @@ class PersonContextWithThirdParty implements DocGeneratorContextWithAdminFormInt
     public function __construct(
         private readonly PersonContextInterface $personContext,
         private readonly NormalizerInterface $normalizer,
-        private readonly ThirdPartyRepository $thirdPartyRepository
+        private readonly ThirdPartyRepository $thirdPartyRepository,
     ) {}
 
     public function adminFormReverseTransform(array $data): array
diff --git a/src/Bundle/ChillPersonBundle/Service/Import/SocialWorkMetadata.php b/src/Bundle/ChillPersonBundle/Service/Import/SocialWorkMetadata.php
index 21406072d..3086ee31a 100644
--- a/src/Bundle/ChillPersonBundle/Service/Import/SocialWorkMetadata.php
+++ b/src/Bundle/ChillPersonBundle/Service/Import/SocialWorkMetadata.php
@@ -226,7 +226,7 @@ final readonly class SocialWorkMetadata implements SocialWorkMetadataInterface
         float $orderingParent,
         float $orderingChild,
         ?SocialAction $previousSocialAction,
-        ?SocialAction $previousSocialActionChild
+        ?SocialAction $previousSocialActionChild,
     ): array {
         if (null === $socialActionTitle) {
             return [
@@ -275,7 +275,7 @@ final readonly class SocialWorkMetadata implements SocialWorkMetadataInterface
         float $orderingParent,
         float $orderingChild,
         ?SocialIssue $previousSocialIssue,
-        ?SocialIssue $previousSocialIssueChild
+        ?SocialIssue $previousSocialIssueChild,
     ): array {
         $return = [];
 
diff --git a/src/Bundle/ChillPersonBundle/Templating/Entity/ClosingMotiveRender.php b/src/Bundle/ChillPersonBundle/Templating/Entity/ClosingMotiveRender.php
index 29ed4226a..51587d715 100644
--- a/src/Bundle/ChillPersonBundle/Templating/Entity/ClosingMotiveRender.php
+++ b/src/Bundle/ChillPersonBundle/Templating/Entity/ClosingMotiveRender.php
@@ -29,7 +29,7 @@ final readonly class ClosingMotiveRender implements ChillEntityRenderInterface
 
     public function __construct(
         private TranslatableStringHelperInterface $translatableStringHelper,
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function renderBox($entity, array $options): string
diff --git a/src/Bundle/ChillPersonBundle/Tests/AccompanyingPeriod/Events/PersonMoveEventSubscriberTest.php b/src/Bundle/ChillPersonBundle/Tests/AccompanyingPeriod/Events/PersonMoveEventSubscriberTest.php
index bb833c96b..83d8518c0 100644
--- a/src/Bundle/ChillPersonBundle/Tests/AccompanyingPeriod/Events/PersonMoveEventSubscriberTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/AccompanyingPeriod/Events/PersonMoveEventSubscriberTest.php
@@ -247,7 +247,7 @@ final class PersonMoveEventSubscriberTest extends KernelTestCase
         ?\Twig\Environment $engine = null,
         ?NotificationPersisterInterface $notificationPersister = null,
         ?Security $security = null,
-        ?TranslatorInterface $translator = null
+        ?TranslatorInterface $translator = null,
     ): PersonAddressMoveEventSubscriber {
         if (null === $translator) {
             $double = $this->prophesize(TranslatorInterface::class);
diff --git a/src/Bundle/ChillPersonBundle/Tests/Controller/PersonControllerCreateTest.php b/src/Bundle/ChillPersonBundle/Tests/Controller/PersonControllerCreateTest.php
index 900a08ebd..75ad19d33 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Controller/PersonControllerCreateTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Controller/PersonControllerCreateTest.php
@@ -222,7 +222,7 @@ final class PersonControllerCreateTest extends WebTestCase
         Form &$creationForm,
         string $firstname = 'God',
         string $lastname = 'Jesus',
-        ?\DateTime $birthdate = null
+        ?\DateTime $birthdate = null,
     ) {
         $creationForm->get(self::FIRSTNAME_INPUT)->setValue($firstname.'_'.uniqid());
         $creationForm->get(self::LASTNAME_INPUT)->setValue($lastname.'_'.uniqid());
diff --git a/src/Bundle/ChillPersonBundle/Tests/Household/MembersEditorTest.php b/src/Bundle/ChillPersonBundle/Tests/Household/MembersEditorTest.php
index 99515562c..4e7f0dd9c 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Household/MembersEditorTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Household/MembersEditorTest.php
@@ -562,7 +562,7 @@ final class MembersEditorTest extends TestCase
 
     private function buildMembersEditorFactory(
         ?EventDispatcherInterface $eventDispatcher = null,
-        ?ValidatorInterface $validator = null
+        ?ValidatorInterface $validator = null,
     ) {
         if (null === $eventDispatcher) {
             $double = $this->getProphet()->prophesize();
diff --git a/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonDocGenNormalizerTest.php b/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonDocGenNormalizerTest.php
index 4c7ceee42..e3ba0e196 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonDocGenNormalizerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonDocGenNormalizerTest.php
@@ -242,7 +242,7 @@ final class PersonDocGenNormalizerTest extends KernelTestCase
         ?TranslatorInterface $translator = null,
         ?TranslatableStringHelper $translatableStringHelper = null,
         ?NormalizerInterface $normalizer = null,
-        ?SummaryBudgetInterface $summaryBudget = null
+        ?SummaryBudgetInterface $summaryBudget = null,
     ): PersonDocGenNormalizer {
         if (null === $summaryBudget) {
             $summaryBudget = $this->prophesize(SummaryBudgetInterface::class);
@@ -278,7 +278,7 @@ final class PersonDocGenNormalizerTest extends KernelTestCase
         ?RelationshipRepository $relationshipRepository = null,
         ?TranslatorInterface $translator = null,
         ?TranslatableStringHelper $translatableStringHelper = null,
-        ?SummaryBudgetInterface $summaryBudget = null
+        ?SummaryBudgetInterface $summaryBudget = null,
     ): PersonDocGenNormalizer {
         if (null === $relationshipRepository) {
             $relationshipRepository = $this->prophesize(RelationshipRepository::class);
diff --git a/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonJsonNormalizerTest.php b/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonJsonNormalizerTest.php
index f60278d5f..af78e2475 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonJsonNormalizerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Serializer/Normalizer/PersonJsonNormalizerTest.php
@@ -68,7 +68,7 @@ final class PersonJsonNormalizerTest extends KernelTestCase
         CenterResolverManagerInterface $centerResolverManager,
         ResidentialAddressRepository $residentialAddressRepository,
         PhoneNumberHelperInterface $phoneNumberHelper,
-        NormalizerInterface $normalizer
+        NormalizerInterface $normalizer,
     ): PersonJsonNormalizer {
         $personJsonNormalizer = new PersonJsonNormalizer(
             $render,
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/AccompanyingPeriodContextTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/AccompanyingPeriodContextTest.php
index c73de9f78..48832b259 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/AccompanyingPeriodContextTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/AccompanyingPeriodContextTest.php
@@ -105,7 +105,7 @@ class AccompanyingPeriodContextTest extends KernelTestCase
         AccompanyingPeriod $entity,
         array $data,
         array $expectedNormalized,
-        callable $assertionsOnData
+        callable $assertionsOnData,
     ): void {
         $context = $this->buildContext();
         $template = new DocGeneratorTemplate();
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/PersonContextTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/PersonContextTest.php
index ff360ccaa..8d46105f5 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/PersonContextTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/DocGenerator/PersonContextTest.php
@@ -77,7 +77,7 @@ final class PersonContextTest extends KernelTestCase
         Person $entity,
         array $data,
         array $expectedNormalized,
-        callable $assertionsOnData
+        callable $assertionsOnData,
     ): void {
         // we boot kernel only for this test
         self::bootKernel();
@@ -354,7 +354,7 @@ final class PersonContextTest extends KernelTestCase
         ?TranslatableStringHelperInterface $translatableStringHelper = null,
         ?ThirdPartyRender $thirdPartyRender = null,
         ?ThirdPartyRepository $thirdPartyRepository = null,
-        ?ResidentialAddressRepository $residentialAddressRepository = null
+        ?ResidentialAddressRepository $residentialAddressRepository = null,
     ): PersonContext {
         if (null === $authorizationHelper) {
             $authorizationHelper = $this->prophesize(AuthorizationHelperInterface::class)->reveal();
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/GenericDoc/Providers/AccompanyingPeriodWorkEvaluationGenericDocProviderTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/GenericDoc/Providers/AccompanyingPeriodWorkEvaluationGenericDocProviderTest.php
index 8d49a54e8..a90d5f751 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Service/GenericDoc/Providers/AccompanyingPeriodWorkEvaluationGenericDocProviderTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/GenericDoc/Providers/AccompanyingPeriodWorkEvaluationGenericDocProviderTest.php
@@ -41,7 +41,7 @@ class AccompanyingPeriodWorkEvaluationGenericDocProviderTest extends KernelTestC
     public function testBuildFetchQueryForAccompanyingPeriod(
         ?\DateTimeImmutable $startDate = null,
         ?\DateTimeImmutable $endDate = null,
-        ?string $content = null
+        ?string $content = null,
     ): void {
         $period = $this->entityManager->createQuery('SELECT a FROM '.AccompanyingPeriod::class.' a')
             ->setMaxResults(1)
diff --git a/src/Bundle/ChillPersonBundle/Validator/Constraints/Person/BirthdateValidator.php b/src/Bundle/ChillPersonBundle/Validator/Constraints/Person/BirthdateValidator.php
index 1a7634136..2e65f1f25 100644
--- a/src/Bundle/ChillPersonBundle/Validator/Constraints/Person/BirthdateValidator.php
+++ b/src/Bundle/ChillPersonBundle/Validator/Constraints/Person/BirthdateValidator.php
@@ -25,7 +25,7 @@ class BirthdateValidator extends ConstraintValidator
 
     public function __construct(
         private readonly ParameterBagInterface $parameterBag,
-        private readonly ClockInterface $clock
+        private readonly ClockInterface $clock,
     ) {
         $this->interval_spec = $this->parameterBag->get('chill_person')['validation']['birthdate_not_after'];
     }
diff --git a/src/Bundle/ChillPersonBundle/Widget/AddAPersonWidget.php b/src/Bundle/ChillPersonBundle/Widget/AddAPersonWidget.php
index ef150f91d..bf1274d72 100644
--- a/src/Bundle/ChillPersonBundle/Widget/AddAPersonWidget.php
+++ b/src/Bundle/ChillPersonBundle/Widget/AddAPersonWidget.php
@@ -23,7 +23,7 @@ class AddAPersonWidget implements WidgetInterface
         Environment $env,
         $place,
         array $context,
-        array $config
+        array $config,
     ) {
         return $env->render('@ChillPerson/Widget/homepage_add_a_person.html.twig');
     }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index c987ea17e..861dd4cb9 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -30,7 +30,7 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
         private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
         private readonly EntityWorkflowRepository $workflowRepository,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
-        private readonly TranslatorInterface $translator
+        private readonly TranslatorInterface $translator,
     ) {}
 
     public function getDeletionRoles(): array
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index 11b47a684..e619532ff 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -30,7 +30,7 @@ readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements Entity
         private AccompanyingPeriodWorkEvaluationRepository $repository,
         private EntityWorkflowRepository $workflowRepository,
         private TranslatableStringHelperInterface $translatableStringHelper,
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function getDeletionRoles(): array
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 6bed52cfb..772523ad5 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -31,7 +31,7 @@ readonly class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHa
         private AccompanyingPeriodWorkRepository $repository,
         private EntityWorkflowRepository $workflowRepository,
         private TranslatableStringHelperInterface $translatableStringHelper,
-        private TranslatorInterface $translator
+        private TranslatorInterface $translator,
     ) {}
 
     public function getDeletionRoles(): array
diff --git a/src/Bundle/ChillReportBundle/Controller/ReportController.php b/src/Bundle/ChillReportBundle/Controller/ReportController.php
index 13c16672b..644bc7c65 100644
--- a/src/Bundle/ChillReportBundle/Controller/ReportController.php
+++ b/src/Bundle/ChillReportBundle/Controller/ReportController.php
@@ -37,7 +37,7 @@ class ReportController extends AbstractController
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly PaginatorFactory $paginator,
         private readonly TranslatorInterface $translator,
-        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
+        private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadCustomFieldsGroup.php b/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadCustomFieldsGroup.php
index af2f06e69..6e4639210 100644
--- a/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadCustomFieldsGroup.php
+++ b/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadCustomFieldsGroup.php
@@ -60,7 +60,7 @@ class LoadCustomFieldsGroup extends AbstractFixture implements OrderedFixtureInt
     private function createReport(
         ObjectManager $manager,
         array $name,
-        array $options = []
+        array $options = [],
     ) {
         echo $name['fr']." \n";
 
diff --git a/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadReports.php b/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadReports.php
index 6c61b1914..222458a25 100644
--- a/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadReports.php
+++ b/src/Bundle/ChillReportBundle/DataFixtures/ORM/LoadReports.php
@@ -30,7 +30,7 @@ final class LoadReports extends AbstractFixture implements OrderedFixtureInterfa
     private readonly \Faker\Generator $faker;
 
     public function __construct(
-        private readonly EntityManagerInterface $entityManager
+        private readonly EntityManagerInterface $entityManager,
     ) {
         $this->faker = FakerFactory::create('fr_FR');
     }
diff --git a/src/Bundle/ChillReportBundle/Export/Export/ReportListProvider.php b/src/Bundle/ChillReportBundle/Export/Export/ReportListProvider.php
index 082c1ef4a..fcc21e726 100644
--- a/src/Bundle/ChillReportBundle/Export/Export/ReportListProvider.php
+++ b/src/Bundle/ChillReportBundle/Export/Export/ReportListProvider.php
@@ -45,7 +45,7 @@ class ReportListProvider implements ExportElementsProviderInterface
         EntityManagerInterface $em,
         TranslatableStringHelper $translatableStringHelper,
         TranslatorInterface $translator,
-        CustomFieldProvider $customFieldProvider
+        CustomFieldProvider $customFieldProvider,
     ) {
         $this->em = $em;
         $this->translatableStringHelper = $translatableStringHelper;
diff --git a/src/Bundle/ChillReportBundle/Form/ReportType.php b/src/Bundle/ChillReportBundle/Form/ReportType.php
index 9d979458a..c680e496f 100644
--- a/src/Bundle/ChillReportBundle/Form/ReportType.php
+++ b/src/Bundle/ChillReportBundle/Form/ReportType.php
@@ -31,7 +31,7 @@ final class ReportType extends AbstractType
         private readonly AuthorizationHelper $authorizationHelper,
         private readonly TokenStorageInterface $tokenStorage,
         private readonly TranslatableStringHelper $translatableStringHelper,
-        private readonly ObjectManager $om
+        private readonly ObjectManager $om,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
diff --git a/src/Bundle/ChillReportBundle/Tests/Controller/ReportControllerTest.php b/src/Bundle/ChillReportBundle/Tests/Controller/ReportControllerTest.php
index e5270c038..30472ace8 100644
--- a/src/Bundle/ChillReportBundle/Tests/Controller/ReportControllerTest.php
+++ b/src/Bundle/ChillReportBundle/Tests/Controller/ReportControllerTest.php
@@ -411,7 +411,7 @@ final class ReportControllerTest extends WebTestCase
     protected function getReportForm(
         Person $person,
         CustomFieldsGroup $group,
-        \Symfony\Component\BrowserKit\AbstractBrowser $client
+        \Symfony\Component\BrowserKit\AbstractBrowser $client,
     ) {
         $url = sprintf(
             'fr/person/%d/report/cfgroup/%d/new',
diff --git a/src/Bundle/ChillReportBundle/Tests/Security/Authorization/ReportVoterTest.php b/src/Bundle/ChillReportBundle/Tests/Security/Authorization/ReportVoterTest.php
index 6c0769e56..c71051821 100644
--- a/src/Bundle/ChillReportBundle/Tests/Security/Authorization/ReportVoterTest.php
+++ b/src/Bundle/ChillReportBundle/Tests/Security/Authorization/ReportVoterTest.php
@@ -132,7 +132,7 @@ final class ReportVoterTest extends KernelTestCase
         Report $report,
         $action,
         $message,
-        ?User $user = null
+        ?User $user = null,
     ) {
         $token = $this->prepareToken($user);
         $result = $this->voter->vote($token, $report, [$action]);
diff --git a/src/Bundle/ChillTaskBundle/Controller/SingleTaskController.php b/src/Bundle/ChillTaskBundle/Controller/SingleTaskController.php
index 0c3b8a7ba..9b97809dd 100644
--- a/src/Bundle/ChillTaskBundle/Controller/SingleTaskController.php
+++ b/src/Bundle/ChillTaskBundle/Controller/SingleTaskController.php
@@ -160,7 +160,7 @@ final class SingleTaskController extends AbstractController
     #[Route(path: '/{_locale}/task/single-task/{id}/edit', name: 'chill_task_single_task_edit')]
     public function editAction(
         SingleTask $task,
-        Request $request
+        Request $request,
     ) {
         $this->denyAccessUnlessGranted(TaskVoter::UPDATE, $task, 'You are not '
             .'allowed to edit this task');
@@ -250,7 +250,7 @@ final class SingleTaskController extends AbstractController
      */
     #[Route(path: '/{_locale}/task/single-task/list', name: 'chill_task_singletask_list')]
     public function listAction(
-        Request $request
+        Request $request,
     ) {
         $this->denyAccessUnlessGranted(TaskVoter::SHOW, null);
 
@@ -305,7 +305,7 @@ final class SingleTaskController extends AbstractController
     public function listCourseTasks(
         AccompanyingPeriod $course,
         FormFactoryInterface $formFactory,
-        Request $request
+        Request $request,
     ): Response {
         $this->denyAccessUnlessGranted(TaskVoter::SHOW, $course);
 
@@ -350,7 +350,7 @@ final class SingleTaskController extends AbstractController
 
     #[Route(path: '/{_locale}/task/single-task/by-person/{id}', name: 'chill_task_singletask_by-person_list')]
     public function listPersonTasks(
-        Person $person
+        Person $person,
     ): Response {
         $this->denyAccessUnlessGranted(TaskVoter::SHOW, $person);
 
diff --git a/src/Bundle/ChillTaskBundle/Controller/TaskController.php b/src/Bundle/ChillTaskBundle/Controller/TaskController.php
index 8837dda05..2b6c3d0bb 100644
--- a/src/Bundle/ChillTaskBundle/Controller/TaskController.php
+++ b/src/Bundle/ChillTaskBundle/Controller/TaskController.php
@@ -52,7 +52,7 @@ class TaskController extends AbstractController
         EntityManagerInterface $em,
         Request $request,
         TranslatorInterface $translator,
-        EventDispatcherInterface $eventDispatcher
+        EventDispatcherInterface $eventDispatcher,
     ) {
         switch ($kind) {
             case 'single-task':
diff --git a/src/Bundle/ChillTaskBundle/Event/Lifecycle/TaskLifecycleEvent.php b/src/Bundle/ChillTaskBundle/Event/Lifecycle/TaskLifecycleEvent.php
index e6966f16e..280eddeea 100644
--- a/src/Bundle/ChillTaskBundle/Event/Lifecycle/TaskLifecycleEvent.php
+++ b/src/Bundle/ChillTaskBundle/Event/Lifecycle/TaskLifecycleEvent.php
@@ -32,7 +32,7 @@ class TaskLifecycleEvent implements EventSubscriberInterface
 
     public function __construct(
         TokenStorageInterface $tokenStorage,
-        EntityManagerInterface $em
+        EntityManagerInterface $em,
     ) {
         $this->tokenStorage = $tokenStorage;
         $this->em = $em;
diff --git a/src/Bundle/ChillTaskBundle/Form/SingleTaskListType.php b/src/Bundle/ChillTaskBundle/Form/SingleTaskListType.php
index e0221545b..e4f92341d 100644
--- a/src/Bundle/ChillTaskBundle/Form/SingleTaskListType.php
+++ b/src/Bundle/ChillTaskBundle/Form/SingleTaskListType.php
@@ -55,7 +55,7 @@ class SingleTaskListType extends AbstractType
         EntityManagerInterface $em,
         TokenStorageInterface $tokenStorage,
         AuthorizationHelper $authorizationHelper,
-        TaskWorkflowManager $taskWorkflowManager
+        TaskWorkflowManager $taskWorkflowManager,
     ) {
         $this->em = $em;
         $this->tokenStorage = $tokenStorage;
diff --git a/src/Bundle/ChillTaskBundle/Menu/MenuBuilder.php b/src/Bundle/ChillTaskBundle/Menu/MenuBuilder.php
index 6b710744d..eb35cd913 100644
--- a/src/Bundle/ChillTaskBundle/Menu/MenuBuilder.php
+++ b/src/Bundle/ChillTaskBundle/Menu/MenuBuilder.php
@@ -32,7 +32,7 @@ class MenuBuilder implements LocalMenuBuilderInterface
 
     public function __construct(
         AuthorizationCheckerInterface $authorizationChecker,
-        TranslatorInterface $translator
+        TranslatorInterface $translator,
     ) {
         $this->translator = $translator;
         $this->authorizationChecker = $authorizationChecker;
diff --git a/src/Bundle/ChillTaskBundle/Menu/SectionMenuBuilder.php b/src/Bundle/ChillTaskBundle/Menu/SectionMenuBuilder.php
index 9b5ace64e..052eb5d9b 100644
--- a/src/Bundle/ChillTaskBundle/Menu/SectionMenuBuilder.php
+++ b/src/Bundle/ChillTaskBundle/Menu/SectionMenuBuilder.php
@@ -31,7 +31,7 @@ class SectionMenuBuilder implements LocalMenuBuilderInterface
 
     public function __construct(
         AuthorizationCheckerInterface $authorizationChecker,
-        TranslatorInterface $translator
+        TranslatorInterface $translator,
     ) {
         $this->authorizationChecker = $authorizationChecker;
         $this->translator = $translator;
diff --git a/src/Bundle/ChillTaskBundle/Menu/UserMenuBuilder.php b/src/Bundle/ChillTaskBundle/Menu/UserMenuBuilder.php
index 7f1f8fde8..32d7ebd03 100644
--- a/src/Bundle/ChillTaskBundle/Menu/UserMenuBuilder.php
+++ b/src/Bundle/ChillTaskBundle/Menu/UserMenuBuilder.php
@@ -25,7 +25,7 @@ final readonly class UserMenuBuilder implements LocalMenuBuilderInterface
         private CountNotificationTask $counter,
         private TokenStorageInterface $tokenStorage,
         private TranslatorInterface $translator,
-        private AuthorizationCheckerInterface $authorizationChecker
+        private AuthorizationCheckerInterface $authorizationChecker,
     ) {}
 
     public function buildMenu($menuId, MenuItem $menu, array $parameters)
diff --git a/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepository.php b/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepository.php
index 3f0966a45..56a750220 100644
--- a/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepository.php
+++ b/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepository.php
@@ -29,7 +29,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?string $pattern = null,
         ?array $flags = [],
         ?array $types = [],
-        ?array $users = []
+        ?array $users = [],
     ): QueryBuilder {
         $qb = $this->em->createQueryBuilder();
         $qb
@@ -149,7 +149,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
     public function buildQueryByCourse(
         AccompanyingPeriod $course,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): QueryBuilder {
         $qb = $this->buildBaseQuery($pattern, $flags);
 
@@ -161,7 +161,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
     public function buildQueryByPerson(
         Person $person,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): QueryBuilder {
         $qb = $this->buildBaseQuery($pattern, $flags);
 
@@ -172,7 +172,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
 
     public function buildQueryMyTasks(
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): QueryBuilder {
         $qb = $this->buildBaseQuery($pattern, $flags);
 
@@ -185,7 +185,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?string $pattern = null,
         ?array $flags = [],
         ?array $types = [],
-        ?array $users = []
+        ?array $users = [],
     ): int {
         $qb = $this->buildBaseQuery($pattern, $flags, $types, $users);
 
@@ -198,7 +198,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
     public function countByCourse(
         AccompanyingPeriod $course,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): int {
         $qb = $this->buildQueryByCourse($course, $pattern, $flags);
 
@@ -210,7 +210,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
 
     public function countByCurrentUsersTasks(
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): int {
         return $this->buildQueryMyTasks($pattern, $flags)
             ->select('COUNT(t)')
@@ -220,7 +220,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
     public function countByPerson(
         Person $person,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): int {
         $qb = $this->buildQueryByPerson($person, $pattern, $flags);
 
@@ -237,7 +237,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?array $users = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array {
         $qb = $this->buildBaseQuery($pattern, $flags, $types, $users);
         $qb = $this->addACLGlobal($qb);
@@ -251,7 +251,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?array $flags = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array {
         $qb = $this->buildQueryByCourse($course, $pattern, $flags);
         $qb = $this->addACL($qb, $course);
@@ -264,7 +264,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?array $flags = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array {
         $qb = $this->buildQueryMyTasks($pattern, $flags);
 
@@ -277,7 +277,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         ?array $flags = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array {
         $qb = $this->buildQueryByPerson($person, $pattern, $flags);
         $qb = $this->addACL($qb, $person);
@@ -289,7 +289,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
         QueryBuilder $qb,
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array {
         $qb->select('t');
 
@@ -306,7 +306,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
 
     private function addACL(
         QueryBuilder $qb,
-        $entity
+        $entity,
     ): QueryBuilder {
         foreach ($this->centerResolverDispatcher->resolveCenters($entity) as $center) {
             $scopes = $this->authorizationHelper->getReachableScopes(
@@ -323,7 +323,7 @@ final readonly class SingleTaskAclAwareRepository implements SingleTaskAclAwareR
     }
 
     private function addACLGlobal(
-        QueryBuilder $qb
+        QueryBuilder $qb,
     ): QueryBuilder {
         $allowedCenters = $this->authorizationHelper
             ->getReachableCenters($this->security->getUser(), TaskVoter::SHOW);
diff --git a/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepositoryInterface.php b/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepositoryInterface.php
index bb63c0caa..f535791ea 100644
--- a/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepositoryInterface.php
+++ b/src/Bundle/ChillTaskBundle/Repository/SingleTaskAclAwareRepositoryInterface.php
@@ -20,13 +20,13 @@ interface SingleTaskAclAwareRepositoryInterface
         ?string $pattern = null,
         ?array $flags = [],
         ?array $types = [],
-        ?array $users = []
+        ?array $users = [],
     ): int;
 
     public function countByCourse(
         AccompanyingPeriod $course,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): int;
 
     public function countByCurrentUsersTasks(?string $pattern = null, ?array $flags = []): int;
@@ -34,7 +34,7 @@ interface SingleTaskAclAwareRepositoryInterface
     public function countByPerson(
         Person $person,
         ?string $pattern = null,
-        ?array $flags = []
+        ?array $flags = [],
     ): int;
 
     public function findByAllViewable(
@@ -44,7 +44,7 @@ interface SingleTaskAclAwareRepositoryInterface
         ?array $users = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array;
 
     public function findByCourse(
@@ -53,7 +53,7 @@ interface SingleTaskAclAwareRepositoryInterface
         ?array $flags = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array;
 
     public function findByCurrentUsersTasks(?string $pattern = null, ?array $flags = [], ?int $start = 0, ?int $limit = 50, ?array $orderBy = []): array;
@@ -64,6 +64,6 @@ interface SingleTaskAclAwareRepositoryInterface
         ?array $flags = [],
         ?int $start = 0,
         ?int $limit = 50,
-        ?array $orderBy = []
+        ?array $orderBy = [],
     ): array;
 }
diff --git a/src/Bundle/ChillTaskBundle/Repository/SingleTaskStateRepository.php b/src/Bundle/ChillTaskBundle/Repository/SingleTaskStateRepository.php
index 614870264..f1be255a6 100644
--- a/src/Bundle/ChillTaskBundle/Repository/SingleTaskStateRepository.php
+++ b/src/Bundle/ChillTaskBundle/Repository/SingleTaskStateRepository.php
@@ -21,7 +21,7 @@ class SingleTaskStateRepository
     SQL;
 
     public function __construct(
-        private readonly Connection $connection
+        private readonly Connection $connection,
     ) {}
 
     /**
diff --git a/src/Bundle/ChillTaskBundle/Security/Authorization/AuthorizationEvent.php b/src/Bundle/ChillTaskBundle/Security/Authorization/AuthorizationEvent.php
index 2b39ead51..ff97930c5 100644
--- a/src/Bundle/ChillTaskBundle/Security/Authorization/AuthorizationEvent.php
+++ b/src/Bundle/ChillTaskBundle/Security/Authorization/AuthorizationEvent.php
@@ -28,7 +28,7 @@ class AuthorizationEvent extends \Symfony\Contracts\EventDispatcher\Event
     public function __construct(
         private readonly AbstractTask|AccompanyingPeriod|Person|null $subject,
         private readonly string $attribute,
-        private readonly TokenInterface $token
+        private readonly TokenInterface $token,
     ) {}
 
     public function getAttribute()
diff --git a/src/Bundle/ChillTaskBundle/Security/Authorization/TaskVoter.php b/src/Bundle/ChillTaskBundle/Security/Authorization/TaskVoter.php
index cc3992329..daee05133 100644
--- a/src/Bundle/ChillTaskBundle/Security/Authorization/TaskVoter.php
+++ b/src/Bundle/ChillTaskBundle/Security/Authorization/TaskVoter.php
@@ -52,7 +52,7 @@ final class TaskVoter extends AbstractChillVoter implements ProvideRoleHierarchy
         private readonly AccessDecisionManagerInterface $accessDecisionManager,
         private readonly EventDispatcherInterface $eventDispatcher,
         private readonly LoggerInterface $logger,
-        VoterHelperFactoryInterface $voterFactory
+        VoterHelperFactoryInterface $voterFactory,
     ) {
         $this->voter = $voterFactory
             ->generate(AbstractTask::class)
diff --git a/src/Bundle/ChillTaskBundle/Templating/TaskTwigExtension.php b/src/Bundle/ChillTaskBundle/Templating/TaskTwigExtension.php
index affaab8c7..5ab051c03 100644
--- a/src/Bundle/ChillTaskBundle/Templating/TaskTwigExtension.php
+++ b/src/Bundle/ChillTaskBundle/Templating/TaskTwigExtension.php
@@ -39,7 +39,7 @@ class TaskTwigExtension extends AbstractExtension
         AbstractTask $task,
         string $key,
         $metadataSubject = null,
-        ?string $name = null
+        ?string $name = null,
     ) {
         return $this->taskWorkflowManager->getWorkflowMetadata($task, $key, $metadataSubject, $name);
     }
diff --git a/src/Bundle/ChillTaskBundle/Templating/UI/CountNotificationTask.php b/src/Bundle/ChillTaskBundle/Templating/UI/CountNotificationTask.php
index c442dda8f..7c2768682 100644
--- a/src/Bundle/ChillTaskBundle/Templating/UI/CountNotificationTask.php
+++ b/src/Bundle/ChillTaskBundle/Templating/UI/CountNotificationTask.php
@@ -34,7 +34,7 @@ class CountNotificationTask implements NotificationCounterInterface
 
     public function __construct(
         SingleTaskRepository $singleTaskRepository,
-        CacheItemPoolInterface $cachePool
+        CacheItemPoolInterface $cachePool,
     ) {
         $this->singleTaskRepository = $singleTaskRepository;
         $this->cachePool = $cachePool;
diff --git a/src/Bundle/ChillTaskBundle/Workflow/Definition/DefaultTaskDefinition.php b/src/Bundle/ChillTaskBundle/Workflow/Definition/DefaultTaskDefinition.php
index 0f38252d8..8263ea652 100644
--- a/src/Bundle/ChillTaskBundle/Workflow/Definition/DefaultTaskDefinition.php
+++ b/src/Bundle/ChillTaskBundle/Workflow/Definition/DefaultTaskDefinition.php
@@ -53,7 +53,7 @@ class DefaultTaskDefinition implements \Chill\TaskBundle\Workflow\TaskWorkflowDe
     public function getWorkflowMetadata(
         AbstractTask $task,
         string $key,
-        $metadataSubject = null
+        $metadataSubject = null,
     ) {
         $keys = \explode('.', $key);
 
diff --git a/src/Bundle/ChillThirdPartyBundle/Controller/ThirdPartyController.php b/src/Bundle/ChillThirdPartyBundle/Controller/ThirdPartyController.php
index 30082d90b..13641ba31 100644
--- a/src/Bundle/ChillThirdPartyBundle/Controller/ThirdPartyController.php
+++ b/src/Bundle/ChillThirdPartyBundle/Controller/ThirdPartyController.php
@@ -37,7 +37,7 @@ final class ThirdPartyController extends CRUDController
         protected PaginatorFactory $paginatorFactory,
         protected RequestStack $requestStack,
         protected ThirdPartyACLAwareRepositoryInterface $thirdPartyACLAwareRepository,
-        ParameterBagInterface $parameterBag
+        ParameterBagInterface $parameterBag,
     ) {
         $this->askCenter = $parameterBag->get('chill_main')['acl']['form_show_centers'];
     }
diff --git a/src/Bundle/ChillThirdPartyBundle/Form/ThirdPartyType.php b/src/Bundle/ChillThirdPartyBundle/Form/ThirdPartyType.php
index 046d553e9..26ed31d32 100644
--- a/src/Bundle/ChillThirdPartyBundle/Form/ThirdPartyType.php
+++ b/src/Bundle/ChillThirdPartyBundle/Form/ThirdPartyType.php
@@ -44,7 +44,7 @@ class ThirdPartyType extends AbstractType
         protected ThirdPartyTypeManager $typesManager,
         protected TranslatableStringHelper $translatableStringHelper,
         protected EntityManagerInterface $om,
-        ParameterBagInterface $parameterBag
+        ParameterBagInterface $parameterBag,
     ) {
         $this->askCenter = $parameterBag->get('chill_main')['acl']['form_show_centers'];
     }
diff --git a/src/Bundle/ChillThirdPartyBundle/Form/Type/PickThirdPartyType.php b/src/Bundle/ChillThirdPartyBundle/Form/Type/PickThirdPartyType.php
index 85fe9fe7a..9e79ff813 100644
--- a/src/Bundle/ChillThirdPartyBundle/Form/Type/PickThirdPartyType.php
+++ b/src/Bundle/ChillThirdPartyBundle/Form/Type/PickThirdPartyType.php
@@ -55,7 +55,7 @@ class PickThirdPartyType extends AbstractType
         EntityManagerInterface $em,
         UrlGeneratorInterface $urlGenerator,
         TranslatorInterface $translator,
-        ThirdPartyTypeManager $typesManager
+        ThirdPartyTypeManager $typesManager,
     ) {
         $this->em = $em;
         $this->urlGenerator = $urlGenerator;
diff --git a/src/Bundle/ChillThirdPartyBundle/Menu/MenuBuilder.php b/src/Bundle/ChillThirdPartyBundle/Menu/MenuBuilder.php
index b66a3a552..dda6d2d99 100644
--- a/src/Bundle/ChillThirdPartyBundle/Menu/MenuBuilder.php
+++ b/src/Bundle/ChillThirdPartyBundle/Menu/MenuBuilder.php
@@ -34,7 +34,7 @@ class MenuBuilder implements LocalMenuBuilderInterface
 
     public function __construct(
         AuthorizationCheckerInterface $authorizationChecker,
-        TranslatorInterface $translator
+        TranslatorInterface $translator,
     ) {
         $this->authorizationChecker = $authorizationChecker;
         $this->translator = $translator;
diff --git a/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepository.php b/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepository.php
index 04246d8c8..3bada1f33 100644
--- a/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepository.php
+++ b/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepository.php
@@ -39,7 +39,7 @@ final readonly class ThirdPartyACLAwareRepository implements ThirdPartyACLAwareR
 
     public function countThirdParties(
         string $role,
-        ?string $filterString
+        ?string $filterString,
     ): int {
         $qb = $this->buildQuery($filterString);
         $qb->select('count(tp)');
@@ -52,7 +52,7 @@ final readonly class ThirdPartyACLAwareRepository implements ThirdPartyACLAwareR
         ?string $filterString,
         ?array $orderBy = [],
         ?int $limit = null,
-        ?int $offset = null
+        ?int $offset = null,
     ): array {
         $qb = $this->buildQuery($filterString);
 
diff --git a/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepositoryInterface.php b/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepositoryInterface.php
index a63100aef..9c5dde0ff 100644
--- a/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepositoryInterface.php
+++ b/src/Bundle/ChillThirdPartyBundle/Repository/ThirdPartyACLAwareRepositoryInterface.php
@@ -25,6 +25,6 @@ interface ThirdPartyACLAwareRepositoryInterface
         ?string $filterString,
         ?array $orderBy = [],
         ?int $limit = 0,
-        ?int $offset = 50
+        ?int $offset = 50,
     ): array;
 }
diff --git a/src/Bundle/ChillThirdPartyBundle/Search/ThirdPartySearch.php b/src/Bundle/ChillThirdPartyBundle/Search/ThirdPartySearch.php
index 8b8f724d0..065bc16ac 100644
--- a/src/Bundle/ChillThirdPartyBundle/Search/ThirdPartySearch.php
+++ b/src/Bundle/ChillThirdPartyBundle/Search/ThirdPartySearch.php
@@ -51,7 +51,7 @@ class ThirdPartySearch implements SearchInterface
         TokenStorageInterface $tokenStorage,
         AuthorizationHelper $authorizationHelper,
         PaginatorFactory $paginatorFactory,
-        private readonly ThirdPartyRepository $thirdPartyRepository
+        private readonly ThirdPartyRepository $thirdPartyRepository,
     ) {
         $this->em = $em;
         $this->tokenStorage = $tokenStorage;
diff --git a/src/Bundle/ChillWopiBundle/src/Controller/Convert.php b/src/Bundle/ChillWopiBundle/src/Controller/Convert.php
index 3b2744b28..16be18803 100644
--- a/src/Bundle/ChillWopiBundle/src/Controller/Convert.php
+++ b/src/Bundle/ChillWopiBundle/src/Controller/Convert.php
@@ -46,7 +46,7 @@ class Convert
         private readonly Security $security,
         private readonly StoredObjectManagerInterface $storedObjectManager,
         private readonly LoggerInterface $logger,
-        ParameterBagInterface $parameters
+        ParameterBagInterface $parameters,
     ) {
         $this->collaboraDomain = $parameters->get('wopi')['server'];
     }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Controller/Responder.php b/src/Bundle/ChillWopiBundle/src/Service/Controller/Responder.php
index 89eec1685..0bf5b7788 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Controller/Responder.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Controller/Responder.php
@@ -27,7 +27,7 @@ final readonly class Responder implements ResponderInterface
     public function file(
         $file,
         ?string $filename = null,
-        string $disposition = ResponseHeaderBag::DISPOSITION_ATTACHMENT
+        string $disposition = ResponseHeaderBag::DISPOSITION_ATTACHMENT,
     ): BinaryFileResponse {
         $response = new BinaryFileResponse($file);
 
@@ -41,7 +41,7 @@ final readonly class Responder implements ResponderInterface
         $data,
         int $status = 200,
         array $headers = [],
-        array $context = []
+        array $context = [],
     ): JsonResponse {
         return new JsonResponse(
             $this
@@ -66,7 +66,7 @@ final readonly class Responder implements ResponderInterface
         string $route,
         array $parameters = [],
         int $status = 302,
-        array $headers = []
+        array $headers = [],
     ): RedirectResponse {
         return $this->redirect($this->urlGenerator->generate($route, $parameters), $status, $headers);
     }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Controller/ResponderInterface.php b/src/Bundle/ChillWopiBundle/src/Service/Controller/ResponderInterface.php
index a2d7b5518..237063fe3 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Controller/ResponderInterface.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Controller/ResponderInterface.php
@@ -28,7 +28,7 @@ interface ResponderInterface
     public function file(
         $file,
         ?string $filename = null,
-        string $disposition = ResponseHeaderBag::DISPOSITION_ATTACHMENT
+        string $disposition = ResponseHeaderBag::DISPOSITION_ATTACHMENT,
     ): BinaryFileResponse;
 
     /**
@@ -41,7 +41,7 @@ interface ResponderInterface
         mixed $data,
         int $status = 200,
         array $headers = [],
-        array $context = []
+        array $context = [],
     ): JsonResponse;
 
     /**
@@ -61,7 +61,7 @@ interface ResponderInterface
         string $route,
         array $parameters = [],
         int $status = 302,
-        array $headers = []
+        array $headers = [],
     ): RedirectResponse;
 
     /**
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentLockManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentLockManager.php
index e6889778c..92140d996 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentLockManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentLockManager.php
@@ -27,7 +27,7 @@ class ChillDocumentLockManager implements DocumentLockManagerInterface
 
     public function __construct(
         private readonly ChillRedis $redis,
-        private readonly int $ttlAfterDeleteSeconds = self::LOCK_GRACEFUL_DURATION_TIME
+        private readonly int $ttlAfterDeleteSeconds = self::LOCK_GRACEFUL_DURATION_TIME,
     ) {}
 
     public function deleteLock(Document $document, RequestInterface $request): bool
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
index 639133976..d24f050f3 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillDocumentManager.php
@@ -38,7 +38,7 @@ final readonly class ChillDocumentManager implements DocumentManagerInterface
         private Psr17Interface $psr17,
         RequestStack $requestStack,
         private StoredObjectManagerInterface $storedObjectManager,
-        private StoredObjectRepository $storedObjectRepository
+        private StoredObjectRepository $storedObjectRepository,
     ) {
         $this->request = $httpMessageFactory->createRequest($requestStack->getCurrentRequest());
     }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillWopi.php b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillWopi.php
index 9f2dac4f0..7f68ac0ea 100644
--- a/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillWopi.php
+++ b/src/Bundle/ChillWopiBundle/src/Service/Wopi/ChillWopi.php
@@ -22,7 +22,7 @@ final readonly class ChillWopi implements WopiInterface
     public function checkFileInfo(
         string $fileId,
         ?string $accessToken,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->checkFileInfo($fileId, $accessToken, $request, [
             'SupportsRename' => false,
@@ -37,7 +37,7 @@ final readonly class ChillWopi implements WopiInterface
     public function enumerateAncestors(
         string $fileId,
         ?string $accessToken,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->enumerateAncestors($fileId, $accessToken, $request);
     }
@@ -55,7 +55,7 @@ final readonly class ChillWopi implements WopiInterface
     public function getShareUrl(
         string $fileId,
         ?string $accessToken,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->getShareUrl($fileId, $accessToken, $request);
     }
@@ -64,7 +64,7 @@ final readonly class ChillWopi implements WopiInterface
         string $fileId,
         ?string $accessToken,
         string $xWopiLock,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->lock($fileId, $accessToken, $xWopiLock, $request);
     }
@@ -74,7 +74,7 @@ final readonly class ChillWopi implements WopiInterface
         ?string $accessToken,
         string $xWopiLock,
         string $xWopiEditors,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->putFile($fileId, $accessToken, $xWopiLock, $xWopiEditors, $request);
     }
@@ -93,7 +93,7 @@ final readonly class ChillWopi implements WopiInterface
         string $fileId,
         ?string $accessToken,
         string $xWopiLock,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->refreshLock($fileId, $accessToken, $xWopiLock, $request);
     }
@@ -103,7 +103,7 @@ final readonly class ChillWopi implements WopiInterface
         ?string $accessToken,
         string $xWopiLock,
         string $xWopiRequestedName,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->renameFile($fileId, $accessToken, $xWopiLock, $xWopiRequestedName, $request);
     }
@@ -112,7 +112,7 @@ final readonly class ChillWopi implements WopiInterface
         string $fileId,
         ?string $accessToken,
         string $xWopiLock,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->unlock($fileId, $accessToken, $xWopiLock, $request);
     }
@@ -122,7 +122,7 @@ final readonly class ChillWopi implements WopiInterface
         ?string $accessToken,
         string $xWopiLock,
         string $xWopiOldLock,
-        RequestInterface $request
+        RequestInterface $request,
     ): ResponseInterface {
         return $this->wopi->unlockAndRelock($fileId, $accessToken, $xWopiLock, $xWopiOldLock, $request);
     }

From 6e9f111fd973e475529a5c01b90e08e7c3d537f4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:45:17 +0200
Subject: [PATCH 167/375] Fix syntax errors in RemoveExpiredStoredObjectCronJob
 class

Correct syntax errors involving constant definitions in the RemoveExpiredStoredObjectCronJob class. This change ensures compliance with PHP's constant declaration standards.
---
 .../StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
index a312713c6..5dcce5360 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveExpiredStoredObjectCronJob.php
@@ -25,9 +25,9 @@ use Symfony\Component\Messenger\MessageBusInterface;
  */
 final readonly class RemoveExpiredStoredObjectCronJob implements CronJobInterface
 {
-    public const string KEY = 'remove-expired-stored-object';
+    public const KEY = 'remove-expired-stored-object';
 
-    private const string LAST_DELETED_KEY = 'last-deleted-stored-object-id';
+    private const LAST_DELETED_KEY = 'last-deleted-stored-object-id';
 
     public function __construct(
         private ClockInterface $clock,

From 0e6b7d76a470c21609731978dcc747923472876d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 14:54:49 +0200
Subject: [PATCH 168/375] Add exists method to WebdavControllerTest

Included a new method `exists` to handle existence checks for StoredObject or StoredObjectVersion within WebdavControllerTest. This method currently always returns true, ensuring initial compatibility and providing a foundation for future logic refinements.
---
 .../Tests/Controller/WebdavControllerTest.php                | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
index 435acc51f..9d469369d 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/WebdavControllerTest.php
@@ -446,4 +446,9 @@ class MockedStoredObjectManager implements StoredObjectManagerInterface
     public function clearCache(): void {}
 
     public function delete(StoredObjectVersion $storedObjectVersion): void {}
+
+    public function exists(StoredObject|StoredObjectVersion $document): bool
+    {
+        return true;
+    }
 }

From 3e5a558cdf596cfb6788cbbd83054da8bc5fe983 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 15:18:07 +0200
Subject: [PATCH 169/375] Add exists method to
 RemoveOldVersionMessageHandlerTest

Introduce the exists method to handle checks for StoredObject or StoredObjectVersion in test cases. This modification ensures consistency and proper exception handling in the testing framework.
---
 .../RemoveOldVersionMessageHandlerTest.php                   | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
index be268225d..c5c07aa02 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionMessageHandlerTest.php
@@ -120,4 +120,9 @@ class DummyStoredObjectManager implements StoredObjectManagerInterface
     {
         throw new \RuntimeException();
     }
+
+    public function exists(StoredObject|StoredObjectVersion $document): bool
+    {
+        throw new \RuntimeException();
+    }
 }

From 3e6d764b9b3d5ef4cbe97d4bbd7fb7dff2799f46 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 12:44:34 +0200
Subject: [PATCH 170/375] Replace sign button with signed statement if
 person/user has signed

---
 .../Controller/WorkflowController.php            | 10 ++++++++--
 .../views/Workflow/_signature.html.twig          | 16 ++++++++++------
 .../ChillMainBundle/translations/messages.fr.yml |  1 +
 3 files changed, 19 insertions(+), 8 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 277a18142..9f2196982 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -14,11 +14,11 @@ namespace Chill\MainBundle\Controller;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Form\WorkflowSignatureMetadataType;
 use Chill\MainBundle\Form\WorkflowStepType;
 use Chill\MainBundle\Pagination\PaginatorFactory;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
 use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
 use Chill\MainBundle\Security\ChillSecurity;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
@@ -32,6 +32,7 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Validator\Validator\ValidatorInterface;
 use Symfony\Component\Workflow\Registry;
@@ -51,6 +52,7 @@ class WorkflowController extends AbstractController
         private readonly ChillSecurity $security,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
         private readonly ClockInterface $clock,
+        private readonly EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/create', name: 'chill_main_workflow_create')]
@@ -374,7 +376,11 @@ class WorkflowController extends AbstractController
     #[Route(path: '/{_locale}/main/workflow/signature/{signature_id}/metadata', name: 'chill_main_workflow_signature_metadata')]
     public function addSignatureMetadata(int $signature_id, Request $request): Response
     {
-        $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
+        $signature = $this->entityWorkflowStepSignatureRepository->find($signature_id);
+
+        if (null === $signature) {
+            throw new NotFoundHttpException('signature not found');
+        }
 
         if ($signature->getSigner() instanceof User) {
             return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index f613b69dd..ddccc6a4c 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -6,12 +6,16 @@
             <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
             <div class="col-sm-12 col-md-4">
                 <ul class="record_actions">
-                    <li>
-                        <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                        {% if s.state is same as('signed') %}
-                            <p class="updatedBy">{{ s.stateDate }}</p>
-                        {% endif %}
-                    </li>
+                    {% if s.state.value == 'signed' %}
+                        <p>{{ 'workflow.signature_zone.has_signed_statement'|trans( { '%datetime%' : s.stateDate|date('j M Y à H:i:s') } ) }}</p>
+                    {% else %}
+                        <li>
+                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                            {% if s.state is same as('signed') %}
+                                <p class="updatedBy">{{ s.stateDate }}</p>
+                            {% endif %}
+                        </li>
+                    {% endif %}
                 </ul>
             </div>
         {% endfor %}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 9a90b7fa1..23a77c710 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -531,6 +531,7 @@ workflow:
     signature_zone:
         title: Appliquer les signatures électroniques
         button_sign: Signer
+        has_signed_statement: 'À signé le %datetime%'
         metadata:
             sign_by: 'Signature pour %name%'
             docType: Type de document

From ee6edba2067982a9968709f80a2378ab8e651d29 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 14:18:16 +0200
Subject: [PATCH 171/375] Create isSigned method in
 EntityWorkflowStepSignature.php

Refactorization and ease of use in template and workflow controller
---
 .../Entity/Workflow/EntityWorkflowStepSignature.php          | 5 +++++
 .../Resources/views/Workflow/_signature.html.twig            | 2 +-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index 46c8bb04d..527ede0ef 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -135,4 +135,9 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
 
         return $this;
     }
+
+    public function isSigned(): bool
+    {
+        return EntityWorkflowSignatureStateEnum::SIGNED == $this->getState();
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index ddccc6a4c..e439f2268 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -6,7 +6,7 @@
             <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
             <div class="col-sm-12 col-md-4">
                 <ul class="record_actions">
-                    {% if s.state.value == 'signed' %}
+                    {% if s.isSigned %}
                         <p>{{ 'workflow.signature_zone.has_signed_statement'|trans( { '%datetime%' : s.stateDate|date('j M Y à H:i:s') } ) }}</p>
                     {% else %}
                         <li>

From 0c797c29970d68dd0ea7b434e7eb4e98827e7696 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 14:18:34 +0200
Subject: [PATCH 172/375] Redirect to workflow show page if document already
 signed

Verify the state of the signature. If isSigned is true, redirection to
workflow show page.
---
 src/Bundle/ChillMainBundle/Controller/WorkflowController.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 9f2196982..b9c728eeb 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -382,6 +382,10 @@ class WorkflowController extends AbstractController
             throw new NotFoundHttpException('signature not found');
         }
 
+        if ($signature->isSigned()) {
+            return $this->redirectToRoute('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()]);
+        }
+
         if ($signature->getSigner() instanceof User) {
             return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
         }

From cc8214d52cc9c7de5d5b020e46bc82ec203e5048 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 16:13:26 +0200
Subject: [PATCH 173/375] Add flash message in case signature was already
 applied

---
 src/Bundle/ChillMainBundle/Controller/WorkflowController.php | 4 ++++
 src/Bundle/ChillMainBundle/translations/messages.fr.yml      | 1 +
 2 files changed, 5 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index b9c728eeb..5d78103b8 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -383,6 +383,10 @@ class WorkflowController extends AbstractController
         }
 
         if ($signature->isSigned()) {
+            $this->addFlash(
+                'notice',
+                $this->translator->trans('workflow.signature_zone.already_signed_alert')
+            );
             return $this->redirectToRoute('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()]);
         }
 
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 23a77c710..e442f38aa 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -542,6 +542,7 @@ workflow:
         user signature: Selectionner utilisateur pour signer
         persons: Usagers
         user: Utilisateur
+        already_signed_alert: La signature a déjà été appliquée
 
 
 Subscribe final: Recevoir une notification à l'étape finale

From 5f5d4b8f06a8d44641bef5e347528f080ac9abf4 Mon Sep 17 00:00:00 2001
From: LenaertsJ <julie.lenaerts@champs-libres.coop>
Date: Wed, 4 Sep 2024 15:13:14 +0000
Subject: [PATCH 174/375] Add person menu entry for signature  list

---
 .../_workflow.html.twig                       |  5 ++
 ...owSignatureACLAwareRepositoryInterface.php | 23 +++++++
 .../Workflow/EntityWorkflowStepRepository.php |  4 +-
 ...orkflowStepSignatureACLAwareRepository.php | 54 +++++++++++++++++
 .../EntityWorkflowStepSignatureRepository.php | 41 ++++---------
 .../Controller/PersonSignatureController.php  | 60 +++++++++++++++++++
 .../Menu/PersonMenuBuilder.php                | 17 ++++++
 .../views/Person/signature_list.html.twig     | 44 ++++++++++++++
 .../_accompanying_period_work.html.twig       |  5 ++
 .../views/Workflow/_evaluation.html.twig      |  5 ++
 .../Workflow/_evaluation_document.html.twig   |  5 ++
 .../config/services/controller.yaml           |  3 +
 .../translations/messages.fr.yml              |  4 ++
 13 files changed, 240 insertions(+), 30 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowSignatureACLAwareRepositoryInterface.php
 create mode 100644 src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureACLAwareRepository.php
 create mode 100644 src/Bundle/ChillPersonBundle/Controller/PersonSignatureController.php
 create mode 100644 src/Bundle/ChillPersonBundle/Resources/views/Person/signature_list.html.twig

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/AccompanyingCourseDocument/_workflow.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/AccompanyingCourseDocument/_workflow.html.twig
index 58d4903b4..b1850ff82 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/AccompanyingCourseDocument/_workflow.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/AccompanyingCourseDocument/_workflow.html.twig
@@ -38,6 +38,11 @@
 
     {% if display_action is defined and display_action == true %}
         <ul class="record_actions">
+            {% for dam in display_action_more|default([]) %}
+                <li>
+                    {{ dam|raw }}
+                </li>
+            {% endfor %}
             {% if document.course != null and is_granted('CHILL_PERSON_ACCOMPANYING_PERIOD_SEE', document.course) %}
                 <li>
                     <a href="{{ path('chill_person_accompanying_course_index', {'accompanying_period_id': document.course.id}) }}" class="btn btn-show change-icon">
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowSignatureACLAwareRepositoryInterface.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowSignatureACLAwareRepositoryInterface.php
new file mode 100644
index 000000000..996374231
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowSignatureACLAwareRepositoryInterface.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\PersonBundle\Entity\Person;
+
+interface EntityWorkflowSignatureACLAwareRepositoryInterface
+{
+    /**
+     * @return array<EntityWorkflowStepSignature>
+     */
+    public function findByPersonAndPendingState(Person $person): array;
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
index 545ec2873..db57836c2 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
@@ -18,9 +18,9 @@ use Doctrine\ORM\EntityRepository;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-class EntityWorkflowStepRepository implements ObjectRepository
+readonly class EntityWorkflowStepRepository implements ObjectRepository
 {
-    private readonly EntityRepository $repository;
+    private EntityRepository $repository;
 
     public function __construct(EntityManagerInterface $entityManager)
     {
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureACLAwareRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureACLAwareRepository.php
new file mode 100644
index 000000000..1ac21e533
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureACLAwareRepository.php
@@ -0,0 +1,54 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository\Workflow;
+
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\PersonBundle\Entity\Person;
+use Symfony\Component\Security\Core\Security;
+
+class EntityWorkflowStepSignatureACLAwareRepository implements EntityWorkflowSignatureACLAwareRepositoryInterface
+{
+    public function __construct(
+        private readonly EntityWorkflowStepSignatureRepository $repository,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly Security $security,
+    ) {}
+
+    public function findByPersonAndPendingState(Person $person): array
+    {
+        $signatures = $this->repository->findByPerson($person);
+
+        $filteredSignatures = [];
+
+        foreach ($signatures as $signature) {
+            if (EntityWorkflowSignatureStateEnum::SIGNED === $signature->getState() || EntityWorkflowSignatureStateEnum::CANCELED === $signature->getState() || EntityWorkflowSignatureStateEnum::REJECTED === $signature->getState()) {
+                continue;
+            }
+
+            $workflow = $signature->getStep()->getEntityWorkflow();
+
+            $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($workflow);
+
+            if (null === $storedObject) {
+                continue;
+            }
+
+            if ($this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
+                $filteredSignatures[] = $signature;
+            }
+        }
+
+        return $filteredSignatures;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
index a057c1660..8bd3de586 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepSignatureRepository.php
@@ -12,43 +12,28 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
-use Doctrine\ORM\EntityManagerInterface;
-use Doctrine\Persistence\ObjectRepository;
+use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
+use Chill\PersonBundle\Entity\Person;
+use Doctrine\Persistence\ManagerRegistry;
 
 /**
- * @template-implements ObjectRepository<EntityWorkflowStepSignature>
+ * @template-extends ServiceEntityRepository<EntityWorkflowStepSignature>
  */
-class EntityWorkflowStepSignatureRepository implements ObjectRepository
+class EntityWorkflowStepSignatureRepository extends ServiceEntityRepository
 {
-    private readonly \Doctrine\ORM\EntityRepository $repository;
-
-    public function __construct(EntityManagerInterface $entityManager)
+    public function __construct(ManagerRegistry $registry)
     {
-        $this->repository = $entityManager->getRepository(EntityWorkflowStepSignature::class);
+        parent::__construct($registry, EntityWorkflowStepSignature::class);
     }
 
-    public function find($id): ?EntityWorkflowStepSignature
+    public function findByPerson(Person $person): array
     {
-        return $this->repository->find($id);
-    }
+        $qb = $this->createQueryBuilder('ewss');
+        $qb->select('ewss');
+        $qb->where($qb->expr()->eq('ewss.personSigner', ':person'));
 
-    public function findAll(): array
-    {
-        return $this->repository->findAll();
-    }
+        $qb->setParameter('person', $person);
 
-    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
-    {
-        return $this->findBy($criteria, $orderBy, $limit, $offset);
-    }
-
-    public function findOneBy(array $criteria): ?EntityWorkflowStepSignature
-    {
-        return $this->findOneBy($criteria);
-    }
-
-    public function getClassName(): string
-    {
-        return EntityWorkflowStepSignature::class;
+        return $qb->getQuery()->getResult();
     }
 }
diff --git a/src/Bundle/ChillPersonBundle/Controller/PersonSignatureController.php b/src/Bundle/ChillPersonBundle/Controller/PersonSignatureController.php
new file mode 100644
index 000000000..aa9407c11
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Controller/PersonSignatureController.php
@@ -0,0 +1,60 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Controller;
+
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureACLAwareRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\PersonBundle\Entity\Person;
+use Chill\PersonBundle\Security\Authorization\PersonVoter;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Annotation\Route;
+
+class PersonSignatureController extends AbstractController
+{
+    public function __construct(
+        private readonly EntityWorkflowStepSignatureACLAwareRepository $signatureRepository,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+    ) {}
+
+    #[Route(path: '/{_locale}/signatures/by-person/{id}', name: 'chill_person_signature_list')]
+    public function listSignatures(Person $person): Response
+    {
+        $this->denyAccessUnlessGranted(PersonVoter::SEE, $person);
+
+        $signatures = $this->signatureRepository->findByPersonAndPendingState($person);
+        $signatureData = [];
+
+        foreach ($signatures as $signature) {
+            $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+            $handler = $this->entityWorkflowManager->getHandler($entityWorkflow);
+
+            $workflow = [
+                'handler_template' => $handler->getTemplate($entityWorkflow),
+                'handler_template_data' => $handler->getTemplateData($entityWorkflow),
+                'entity_workflow' => $entityWorkflow,
+            ];
+
+            $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+            $signatureData[] = [
+                'signature' => $signature,
+                'document' => $storedObject,
+                'workflow' => $workflow,
+            ];
+        }
+
+        return $this->render('@ChillPerson/Person/signature_list.html.twig', [
+            'signatures' => $signatureData,
+            'person' => $person,
+        ]);
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php b/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
index 1984c4c93..f9973a4cf 100644
--- a/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
+++ b/src/Bundle/ChillPersonBundle/Menu/PersonMenuBuilder.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Menu;
 
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureACLAwareRepository;
 use Chill\MainBundle\Routing\LocalMenuBuilderInterface;
 use Chill\PersonBundle\Entity\Person;
 use Chill\PersonBundle\Repository\ResidentialAddressRepository;
@@ -43,6 +44,7 @@ class PersonMenuBuilder implements LocalMenuBuilderInterface
         private readonly Security $security,
         protected TranslatorInterface $translator,
         private readonly ResidentialAddressRepository $residentialAddressRepo,
+        private readonly EntityWorkflowStepSignatureACLAwareRepository $entityWorkflowStepSignatureRepository,
     ) {
         $this->showAccompanyingPeriod = $parameterBag->get('chill_person.accompanying_period');
     }
@@ -125,6 +127,21 @@ class PersonMenuBuilder implements LocalMenuBuilderInterface
                         ? $nbAccompanyingPeriod : null,
                 ]);
         }
+
+        $nbSignatures = count($this->entityWorkflowStepSignatureRepository->findByPersonAndPendingState($parameters['person']));
+
+        if ($nbSignatures > 0) {
+            $menu->addChild($this->translator->trans('workflow.signature_list.menu'), [
+                'route' => 'chill_person_signature_list',
+                'routeParameters' => [
+                    'id' => $parameters['person']->getId(),
+                ],
+            ])
+                ->setExtras([
+                    'order' => 110,
+                    'counter' => $nbSignatures,
+                ]);
+        }
     }
 
     public static function getMenuIds(): array
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Person/signature_list.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Person/signature_list.html.twig
new file mode 100644
index 000000000..13f9659c3
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Person/signature_list.html.twig
@@ -0,0 +1,44 @@
+{% extends "@ChillPerson/Person/layout.html.twig"  %}
+{% set activeRouteKey = 'chill_person_signature_list' %}
+
+{% block title %}{{ 'Person signatures'|trans ~ ' ' ~ person|chill_entity_render_string }}{% endblock %}
+
+{% block dam %}
+    <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.signature.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+{% endblock %}
+
+{% block content %}
+
+    <h1>{{ 'workflow.signature_list.title'|trans }}</h1>
+
+    <div class="container">
+        <div class="row align-items-center">
+            {% for s in signatures %}
+                {% set signature = s.signature %}
+                {% set workflow = s.workflow %}
+                {% set document = s.document %}
+
+                <div class="item-bloc">
+                        <div class="item-row">
+                            <div class="item-col flex-grow-1">
+                                {% include workflow.handler_template with workflow.handler_template_data|merge({'display_action': true, 'display_action_more': [block('dam')|raw] }) %}
+                            </div>
+                        </div>
+                </div>
+            {% endfor %}
+        </div>
+    </div>
+
+{% endblock %}
+
+{% block css %}
+    {{ parent() }}
+    {{ encore_entry_link_tags('mod_async_upload') }}
+    {{ encore_entry_script_tags('mod_document_action_buttons_group') }}
+{% endblock css %}
+
+{% block js %}
+    {{ parent() }}
+    {{ encore_entry_script_tags('mod_async_upload') }}
+    {{ encore_entry_link_tags('mod_document_action_buttons_group') }}
+{% endblock js %}
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_accompanying_period_work.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_accompanying_period_work.html.twig
index ee89af10a..c2eaacfcf 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_accompanying_period_work.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_accompanying_period_work.html.twig
@@ -13,6 +13,11 @@
     </div>
     {% if display_action is defined and display_action == true %}
         <ul class="record_actions">
+            {% for dam in display_action_more|default([]) %}
+                <li>
+                    {{ dam|raw }}
+                </li>
+            {% endfor %}
             <li>
                 <a class="btn btn-update"
                    href="{{ chill_path_add_return_path('chill_person_accompanying_period_work_edit', { 'id': work.id }) }}">
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation.html.twig
index d90dccdab..65d8f03c5 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation.html.twig
@@ -94,6 +94,11 @@
 {% if display_action is defined and display_action == true %}
     {# TODO add acl #}
     <ul class="record_actions">
+        {% for dam in display_action_more|default([]) %}
+            <li>
+                {{ dam|raw }}
+            </li>
+        {% endfor %}
         <li>
             <a class="btn btn-show" href="{{ path('chill_person_accompanying_period_work_edit', {'id': evaluation.accompanyingPeriodWork.id}) }}">
                 {{ 'Show'|trans }}
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation_document.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation_document.html.twig
index 26979a8a6..4a5f8bd48 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation_document.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Workflow/_evaluation_document.html.twig
@@ -121,6 +121,11 @@
 
     {% if display_action is defined and display_action == true %}
         <ul class="record_actions">
+            {% for dam in display_action_more|default([]) %}
+                <li>
+                    {{ dam|raw }}
+                </li>
+            {% endfor %}
             <li>{{ doc.storedObject|chill_document_button_group(doc.title, is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_UPDATE', evaluation.accompanyingPeriodWork)) }}</li>
             <li>
                 <a class="btn btn-show" href="{{ path('chill_person_accompanying_period_work_edit', {'id': evaluation.accompanyingPeriodWork.id, 'doc_id': doc.id}) }}">
diff --git a/src/Bundle/ChillPersonBundle/config/services/controller.yaml b/src/Bundle/ChillPersonBundle/config/services/controller.yaml
index 9691db298..6d5efcfe1 100644
--- a/src/Bundle/ChillPersonBundle/config/services/controller.yaml
+++ b/src/Bundle/ChillPersonBundle/config/services/controller.yaml
@@ -68,3 +68,6 @@ services:
         autowire: true
         tags: ['controller.service_arguments']
 
+    Chill\PersonBundle\Controller\PersonSignatureController:
+        tags: [ 'controller.service_arguments' ]
+
diff --git a/src/Bundle/ChillPersonBundle/translations/messages.fr.yml b/src/Bundle/ChillPersonBundle/translations/messages.fr.yml
index 490927679..7d393d647 100644
--- a/src/Bundle/ChillPersonBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillPersonBundle/translations/messages.fr.yml
@@ -957,6 +957,10 @@ workflow:
     Doc for evaluation (n°%eval%): Document de l'évaluation n°%eval%
     doc for evaluation deleted: Document supprimé dans une évaluation
     SocialAction deleted: Action sociale supprimée
+    signature_list:
+        title: Signature en attente
+        menu: Signature en attente
+        no_signatures: Aucune signature demandée
 
 period_by_user_list:
     Period by user: Parcours d'accompagnement par utilisateur

From ce781a5b587859b333d11b671e3bc48ca93b3a68 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 16:27:04 +0200
Subject: [PATCH 175/375] Translate datetime object with icu: split date and
 time

Translate datetime within icu format
---
 src/Bundle/ChillMainBundle/Controller/WorkflowController.php   | 1 +
 .../Resources/views/Workflow/_signature.html.twig              | 2 +-
 .../ChillMainBundle/translations/messages+intl-icu.fr.yaml     | 3 +++
 src/Bundle/ChillMainBundle/translations/messages.fr.yml        | 1 -
 4 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 5d78103b8..eb72c2624 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -387,6 +387,7 @@ class WorkflowController extends AbstractController
                 'notice',
                 $this->translator->trans('workflow.signature_zone.already_signed_alert')
             );
+
             return $this->redirectToRoute('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()]);
         }
 
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index e439f2268..a2a4129f1 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -7,7 +7,7 @@
             <div class="col-sm-12 col-md-4">
                 <ul class="record_actions">
                     {% if s.isSigned %}
-                        <p>{{ 'workflow.signature_zone.has_signed_statement'|trans( { '%datetime%' : s.stateDate|date('j M Y à H:i:s') } ) }}</p>
+                        <p>{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</p>
                     {% else %}
                         <li>
                             <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 96b2edd98..a0753f7a6 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -45,6 +45,9 @@ workflow:
             few {# workflows}
             other {# workflows}
         }
+    signature_zone:
+        has_signed_statement: 'A signé le {datetime, date, short} à {datetime, time, short}'
+
 
 duration:
     minute: >-
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index e442f38aa..f6f30bcd0 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -531,7 +531,6 @@ workflow:
     signature_zone:
         title: Appliquer les signatures électroniques
         button_sign: Signer
-        has_signed_statement: 'À signé le %datetime%'
         metadata:
             sign_by: 'Signature pour %name%'
             docType: Type de document

From 71d3aa3969936cb6d98e7702d439d4ada173a238 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 17:24:11 +0200
Subject: [PATCH 176/375] Refactor signature rendering logic

Reorganized the signature rendering loop for better readability. Moved the row alignment inside the loop and added text alignment for signed statements. Simplified the conditional checks within the loop to enhance code maintainability.
---
 .../views/Workflow/_signature.html.twig       | 38 +++++++++----------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index a2a4129f1..2452411d5 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -1,24 +1,24 @@
 <h2>{{ 'workflow.signature_zone.title'|trans }}</h2>
 
 <div class="container">
-    <div class="row align-items-center">
-        {% for s in signatures %}
-            <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
-            <div class="col-sm-12 col-md-4">
-                <ul class="record_actions">
-                    {% if s.isSigned %}
-                        <p>{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</p>
-                    {% else %}
-                        <li>
-                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                            {% if s.state is same as('signed') %}
-                                <p class="updatedBy">{{ s.stateDate }}</p>
-                            {% endif %}
-                        </li>
-                    {% endif %}
-                </ul>
-            </div>
-        {% endfor %}
-    </div>
+    {% for s in signatures %}
+        <div class="row align-items-center">
+                <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
+                <div class="col-sm-12 col-md-4">
+                        {% if s.isSigned %}
+                            <p class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</p>
+                        {% else %}
+                            <ul class="record_actions">
+                                <li>
+                                    <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                                    {% if s.state is same as('signed') %}
+                                        <p class="updatedBy">{{ s.stateDate }}</p>
+                                    {% endif %}
+                                </li>
+                            </ul>
+                        {% endif %}
+                </div>
+        </div>
+    {% endfor %}
 </div>
 

From 20f2bc6c35e3b2b3d5f46d2dd50ad795ab341d12 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 17:26:46 +0200
Subject: [PATCH 177/375] Enhance signature display with detailed person
 information

Updated the signature view template to include person details using the '_insert_vue_onthefly.html.twig' template. This change adds more contextual information about the signer, such as their name and status, improving the user experience.
---
 .../Resources/views/Workflow/_signature.html.twig        | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index 2452411d5..a938f9e05 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -3,7 +3,14 @@
 <div class="container">
     {% for s in signatures %}
         <div class="row align-items-center">
-                <div class="col-sm-12 col-md-8"><span>{{ s.signer|chill_entity_render_box }}</span></div>
+                <div class="col-sm-12 col-md-8">
+                    {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                        action: 'show', displayBadge: true,
+                        targetEntity: { name: 'person', id: s.signer.id },
+                        buttonText: s.signer|chill_entity_render_string,
+                        isDead: s.signer.deathDate is not null
+                    } %}
+                </div>
                 <div class="col-sm-12 col-md-4">
                         {% if s.isSigned %}
                             <p class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</p>

From d0031e82e8eb5e8d6f9610361204a315a9fb17a2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 17:55:01 +0200
Subject: [PATCH 178/375] Add hover effect and slim class to dev assets and
 apply in signature list

Introduced a new SCSS file to handle hover effects on rows and added the ability to remove bottom margins with a "slim" class. Updated various twig templates to utilize these new styles for better visual feedback and alignment.
---
 .../Resources/public/chill/chillmain.scss     |  2 +
 .../Resources/public/chill/scss/hover.scss    | 11 +++
 .../public/chill/scss/record_actions.scss     |  4 +
 .../Resources/views/Dev/dev.assets.html.twig  | 89 +++++++++++++++++++
 .../views/Workflow/_signature.html.twig       |  6 +-
 5 files changed, 109 insertions(+), 3 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/public/chill/scss/hover.scss

diff --git a/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss b/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
index 2523ee202..eabc2adc4 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
+++ b/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
@@ -31,6 +31,8 @@
 // Specific templates
 @import './scss/notification';
 
+@import './scss/hover.scss';
+
 /*
  *    BASE LAYOUT POSITION
  */
diff --git a/src/Bundle/ChillMainBundle/Resources/public/chill/scss/hover.scss b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/hover.scss
new file mode 100644
index 000000000..95fe12efc
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/hover.scss
@@ -0,0 +1,11 @@
+
+
+.row.row-hover {
+    padding: 0.3rem;
+
+    &:hover {
+        background-color: $gray-100;
+        border-top: 1px solid $gray-400;
+        border-bottom: 1px solid $gray-400;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Resources/public/chill/scss/record_actions.scss b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/record_actions.scss
index 5158a826e..d37765e6b 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/chill/scss/record_actions.scss
+++ b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/record_actions.scss
@@ -17,6 +17,10 @@ ul.record_actions {
         display: inline-block;
     }
 
+    &.slim {
+        margin-bottom: 0;
+    }
+
    &.column {
       flex-direction: column;
    }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Dev/dev.assets.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Dev/dev.assets.html.twig
index 6a7c4edf0..5aafb6635 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Dev/dev.assets.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Dev/dev.assets.html.twig
@@ -300,7 +300,96 @@
         </ul>
     </div>
 
+    <h3><code>slim</code></h3>
+
+    <p>Ajouter <code>slim</code> enlève la marge inférieure. Permet un meilleur alignement horizontal dans une <code>row</code></p>
+
+    <div class="container">
+        <div class="row row-hover">
+            <div class="col-8">
+                Some text, ul_record_actions sans slim
+            </div>
+            <div class="col-4">
+                <ul class="record_actions">
+                    <li><button class="btn">Some action</button></li>
+                </ul>
+            </div>
+        </div>
+        <div class="row row-hover">
+            <div class="col-8">
+                Some text, ul_record_actions avec slim
+            </div>
+            <div class="col-4">
+                <ul class="record_actions slim">
+                    <li><button class="btn">Some action</button></li>
+                </ul>
+            </div>
+        </div>
+    </div>
+
+
+
 <xmp><a class="btn btn-submit">Text</a></xmp>
 Toutes les classes btn-* de bootstrap sont fonctionnelles
+
+    <h2>Hover</h2>
+
+    <p>Ajouter <code>.row-hover</code> sur une class <code>.row</code> provoque un changement de background au survol</p>
+
+    <div class="container">
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-8">
+                <span class="onthefly-container" data-target-name="person" data-target-id="329" data-action="show" data-button-text="Fatoumata Binta DIALLO (33 ans)" data-display-badge="true" data-v-app=""><a data-v-0c1a1125=""><span data-v-0c1a1125="" class="chill-entity entity-person badge-person">Fatoumata Binta DIALLO (33 ans)<!--v-if--></span></a><!--teleport start--><!--teleport end--></span>
+            </div>
+            <div class="col-sm-12 col-md-4">
+                <span class="text-end">A signé le 04/09/2024 à 13:55</span>
+            </div>
+        </div>
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-8">
+                <span class="onthefly-container" data-target-name="person" data-target-id="330" data-action="show" data-button-text="Abdoulaye DIALLO (9 ans)" data-display-badge="true" data-v-app=""><a data-v-0c1a1125=""><span data-v-0c1a1125="" class="chill-entity entity-person badge-person">Abdoulaye DIALLO (9 ans)<!--v-if--></span></a><!--teleport start--><!--teleport end--></span>
+            </div>
+            <div class="col-sm-12 col-md-4">
+                <ul class="record_actions">
+                    <li>
+                        <a class="btn btn-misc" href="/fr/main/workflow/signature/6/metadata?returnPath=/fr/main/workflow/15/show"><i class="fa fa-pencil-square-o"></i> Signer</a>
+                    </li>
+                </ul>
+            </div>
+        </div>
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-8">
+                <span class="onthefly-container" data-target-name="person" data-target-id="332" data-action="show" data-button-text="Mohamed DIALLO (44 ans)" data-display-badge="true" data-v-app=""><a data-v-0c1a1125=""><span data-v-0c1a1125="" class="chill-entity entity-person badge-person">Mohamed DIALLO (44 ans)<!--v-if--></span></a><!--teleport start--><!--teleport end--></span>
+            </div>
+            <div class="col-sm-12 col-md-4">
+                <span class="text-end">A signé le 04/09/2024 à 13:57</span>
+            </div>
+        </div>
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-8">
+                <span class="onthefly-container" data-target-name="person" data-target-id="333" data-action="show" data-button-text="Fatou DIALLO (37 ans)" data-display-badge="true" data-v-app=""><a data-v-0c1a1125=""><span data-v-0c1a1125="" class="chill-entity entity-person badge-person">Fatou DIALLO (37 ans)<!--v-if--></span></a><!--teleport start--><!--teleport end--></span>
+            </div>
+            <div class="col-sm-12 col-md-4">
+                <ul class="record_actions">
+                    <li>
+                        <a class="btn btn-misc" href="/fr/main/workflow/signature/8/metadata?returnPath=/fr/main/workflow/15/show"><i class="fa fa-pencil-square-o"></i> Signer</a>
+                    </li>
+                </ul>
+            </div>
+        </div>
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-8">
+                <span class="onthefly-container" data-target-name="person" data-target-id="334" data-action="show" data-button-text="Fanta DIALLO (7 ans)" data-display-badge="true" data-v-app=""><a data-v-0c1a1125=""><span data-v-0c1a1125="" class="chill-entity entity-person badge-person">Fanta DIALLO (7 ans)<!--v-if--></span></a><!--teleport start--><!--teleport end--></span>
+            </div>
+            <div class="col-sm-12 col-md-4">
+                <ul class="record_actions">
+                    <li>
+                        <a class="btn btn-misc" href="/fr/main/workflow/signature/9/metadata?returnPath=/fr/main/workflow/15/show"><i class="fa fa-pencil-square-o"></i> Signer</a>
+                    </li>
+                </ul>
+            </div>
+        </div>
+    </div>
 </div>
+
 {% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index a938f9e05..68b6f4274 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -2,7 +2,7 @@
 
 <div class="container">
     {% for s in signatures %}
-        <div class="row align-items-center">
+        <div class="row row-hover align-items-center">
                 <div class="col-sm-12 col-md-8">
                     {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
                         action: 'show', displayBadge: true,
@@ -13,9 +13,9 @@
                 </div>
                 <div class="col-sm-12 col-md-4">
                         {% if s.isSigned %}
-                            <p class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</p>
+                            <span class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
                         {% else %}
-                            <ul class="record_actions">
+                            <ul class="record_actions slim">
                                 <li>
                                     <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
                                     {% if s.state is same as('signed') %}

From 3c9ee41b3b2ee3a0864f61278d8ac9be706b35eb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 4 Sep 2024 18:30:18 +0200
Subject: [PATCH 179/375] fix some tests

---
 .gitlab-ci.yml                                |  2 +-
 .../Context/Generator/GeneratorTest.php       | 27 ++++++++----
 .../Entity/StoredObject.php                   |  5 +++
 .../Controller/AsyncUploadControllerTest.php  |  4 ++
 .../AsyncFileExistsValidatorTest.php          | 44 ++++++++++++-------
 5 files changed, 55 insertions(+), 27 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index e493e6556..acd66a42e 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -122,7 +122,7 @@ unit_tests:
         - php tests/console chill:db:sync-views --env=test
         - php -d memory_limit=2G tests/console cache:clear --env=test
         - php -d memory_limit=3G tests/console doctrine:fixtures:load -n --env=test
-        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive --exclude-group openstack-integration
+        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive,openstack-integration
     artifacts:
         expire_in: 1 day
         paths:
diff --git a/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/Generator/GeneratorTest.php b/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/Generator/GeneratorTest.php
index 0bb274228..ea21f09e5 100644
--- a/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/Generator/GeneratorTest.php
+++ b/src/Bundle/ChillDocGeneratorBundle/tests/Service/Context/Generator/GeneratorTest.php
@@ -19,6 +19,7 @@ use Chill\DocGeneratorBundle\Service\Generator\Generator;
 use Chill\DocGeneratorBundle\Service\Generator\ObjectReadyException;
 use Chill\DocGeneratorBundle\Service\Generator\RelatedEntityNotFoundException;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\User;
 use Doctrine\ORM\EntityManagerInterface;
@@ -39,11 +40,11 @@ class GeneratorTest extends TestCase
 
     public function testSuccessfulGeneration(): void
     {
-        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject = (new StoredObject())
-            ->setType('application/test'));
+        $templateStoredObject = new StoredObject();
+        $templateStoredObject->registerVersion(type: 'application/test');
+        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject);
         $destinationStoredObject = (new StoredObject())->setStatus(StoredObject::STATUS_PENDING);
         $reflection = new \ReflectionClass($destinationStoredObject);
-        $reflection->getProperty('id')->setAccessible(true);
         $reflection->getProperty('id')->setValue($destinationStoredObject, 1);
         $entity = new class () {};
         $data = [];
@@ -76,7 +77,14 @@ class GeneratorTest extends TestCase
 
         $storedObjectManager = $this->prophesize(StoredObjectManagerInterface::class);
         $storedObjectManager->read($templateStoredObject)->willReturn('template');
-        $storedObjectManager->write($destinationStoredObject, 'generated')->shouldBeCalled();
+        $storedObjectManager->write($destinationStoredObject, 'generated', 'application/test')
+            ->will(function ($args): StoredObjectVersion {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0];
+
+                return $storedObject->registerVersion(type: $args[2]);
+            })
+            ->shouldBeCalled();
 
         $generator = new Generator(
             $contextManagerInterface->reveal(),
@@ -107,8 +115,9 @@ class GeneratorTest extends TestCase
             $this->prophesize(StoredObjectManagerInterface::class)->reveal()
         );
 
-        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject = (new StoredObject())
-            ->setType('application/test'));
+        $templateStoredObject = new StoredObject();
+        $templateStoredObject->registerVersion(type: 'application/test');
+        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject);
         $destinationStoredObject = (new StoredObject())->setStatus(StoredObject::STATUS_READY);
 
         $generator->generateDocFromTemplate(
@@ -124,11 +133,11 @@ class GeneratorTest extends TestCase
     {
         $this->expectException(RelatedEntityNotFoundException::class);
 
-        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject = (new StoredObject())
-            ->setType('application/test'));
+        $templateStoredObject = new StoredObject();
+        $templateStoredObject->registerVersion(type: 'application/test');
+        $template = (new DocGeneratorTemplate())->setFile($templateStoredObject);
         $destinationStoredObject = (new StoredObject())->setStatus(StoredObject::STATUS_PENDING);
         $reflection = new \ReflectionClass($destinationStoredObject);
-        $reflection->getProperty('id')->setAccessible(true);
         $reflection->getProperty('id')->setValue($destinationStoredObject, 1);
 
         $context = $this->prophesize(DocGeneratorContextInterface::class);
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 271c7cd32..6efc3fb9c 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -261,6 +261,11 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->versions;
     }
 
+    public function hasCurrentVersion(): bool
+    {
+        return null !== $this->getCurrentVersion();
+    }
+
     public function hasTemplate(): bool
     {
         return null !== $this->template;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
index 489bf1185..c26d22d6a 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/AsyncUploadControllerTest.php
@@ -16,6 +16,7 @@ use Chill\DocStoreBundle\AsyncUpload\SignedUrlPost;
 use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Controller\AsyncUploadController;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
@@ -61,6 +62,7 @@ class AsyncUploadControllerTest extends TestCase
         $storedObject->registerVersion();
         $security = $this->prophesize(Security::class);
         $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+        $security->getUser()->willReturn(new User());
 
         $controller = new AsyncUploadController(
             $this->buildTempUrlGenerator(),
@@ -105,6 +107,7 @@ class AsyncUploadControllerTest extends TestCase
 
         $security = $this->prophesize(Security::class);
         $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+        $security->getUser()->willReturn(new User());
 
         $controller = new AsyncUploadController(
             $this->buildTempUrlGenerator(),
@@ -136,6 +139,7 @@ class AsyncUploadControllerTest extends TestCase
 
         $security = $this->prophesize(Security::class);
         $security->isGranted('SEE', $storedObject)->willReturn(true)->shouldBeCalled();
+        $security->getUser()->willReturn(new User());
 
         $controller = new AsyncUploadController(
             $this->buildTempUrlGenerator(),
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
index ac0f4a6e7..77f6d872e 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Validator/Constraints/AsyncFileExistsValidatorTest.php
@@ -11,15 +11,13 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Tests\Validator\Constraints;
 
-use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
-use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\DocStoreBundle\Validator\Constraints\AsyncFileExists;
 use Chill\DocStoreBundle\Validator\Constraints\AsyncFileExistsValidator;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
-use Symfony\Component\HttpClient\MockHttpClient;
-use Symfony\Component\HttpClient\Response\MockResponse;
 use Symfony\Component\Validator\Test\ConstraintValidatorTestCase;
 
 /**
@@ -33,35 +31,47 @@ class AsyncFileExistsValidatorTest extends ConstraintValidatorTestCase
 
     protected function createValidator()
     {
-        $client = new MockHttpClient(function ($method, $url, $options): MockResponse {
-            if (str_contains((string) $url, '404')) {
-                return new MockResponse('', ['http_code' => 404]);
-            }
+        $storedObjectManager = $this->prophesize(StoredObjectManagerInterface::class);
+        $storedObjectManager->exists(Argument::any())
+            ->will(function ($args): bool {
+                /** @var StoredObject|StoredObjectVersion $arg0 */
+                $arg0 = $args[0];
 
-            return new MockResponse('', ['http_code' => 200]);
-        });
+                if ($arg0 instanceof StoredObjectVersion) {
+                    $storedObject = $arg0->getStoredObject();
+                } else {
+                    $storedObject = $arg0;
+                }
 
-        $generator = $this->prophesize(TempUrlGeneratorInterface::class);
-        $generator->generate(Argument::in(['GET', 'HEAD']), Argument::type('string'), Argument::any())
-            ->will(fn (array $args): SignedUrl => new SignedUrl($args[0], 'https://object.store.example/container/'.$args[1], new \DateTimeImmutable('1 hours'), $args[1]));
+                if ('present' === $storedObject->getCurrentVersion()->getFilename()) {
+                    return true;
+                }
 
-        return new AsyncFileExistsValidator($generator->reveal(), $client);
+                return false;
+            });
+
+        return new AsyncFileExistsValidator($storedObjectManager->reveal());
     }
 
     public function testWhenFileExistsIsValid(): void
     {
-        $this->validator->validate((new StoredObject())->setFilename('present'), new AsyncFileExists());
+        $object = new StoredObject();
+        $object->registerVersion(filename: 'present');
+        $this->validator->validate($object, new AsyncFileExists());
 
         $this->assertNoViolation();
     }
 
     public function testWhenFileIsNotPresent(): void
     {
+        $object = new StoredObject();
+        $object->registerVersion(filename: 'absent');
+
         $this->validator->validate(
-            (new StoredObject())->setFilename('is_404'),
+            $object,
             new AsyncFileExists(['message' => 'my_message'])
         );
 
-        $this->buildViolation('my_message')->setParameter('{{ filename }}', 'is_404')->assertRaised();
+        $this->buildViolation('my_message')->setParameter('{{ filename }}', 'absent')->assertRaised();
     }
 }

From 5b906322313d9bc0e68f6d0c020af9ee07da4f75 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 4 Sep 2024 10:14:08 +0200
Subject: [PATCH 180/375] Signature: add a signature zone manually

---
 .../Resources/public/types.ts                 |   4 +-
 .../public/vuejs/DocumentSignature/App.vue    | 163 +++++++++++++-----
 .../public/vuejs/DocumentSignature/index.ts   |   4 +-
 3 files changed, 128 insertions(+), 43 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 840421991..921da3a9a 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -83,7 +83,7 @@ export interface PDFPage {
   height: number,
 }
 export interface SignatureZone {
-  index: number,
+  index: number | null,
   x: number,
   y: number,
   width: number,
@@ -98,3 +98,5 @@ export interface Signature {
 }
 
 export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
+
+export type CanvasEvent = 'select' | 'add';
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 47edd87c3..04cdf9eea 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -80,8 +80,32 @@
   </div>
 
   <div class="col-12 p-4" id="action-buttons" v-if="signedState !== 'signed'">
+
+    <div class="row mb-3">
+      <div class="col-12 d-flex justify-content-end">
+        <div class="col-4 col-xl-3 gap-2 d-grid">
+          <button
+            v-if="adding"
+            class="btn btn-misc btn-cancel me-2 btn-sm"
+            @click="removeNewZone()"
+          >
+            {{ $t("remove_sign_zone") }}
+          </button>
+        </div>
+        <div class="col-4 gap-2 d-grid">
+          <button
+            class="btn btn-create btn-sm"
+            :class="{ active: canvasEvent === 'add' }"
+            @click="toggleAddZone()"
+          >
+            {{ $t("add_sign_zone") }}
+          </button>
+        </div>
+      </div>
+    </div>
+
     <div class="row">
-      <div class="col-6">
+      <div class="col-4">
         <button
           class="btn btn-action me-2"
           :disabled="!userSignatureZone"
@@ -90,7 +114,7 @@
           {{ $t("sign") }}
         </button>
       </div>
-      <div class="col-6 d-flex justify-content-end">
+      <div class="col-8 d-flex justify-content-end">
         <button
           class="btn btn-misc me-2"
           :hidden="!userSignatureZone"
@@ -119,7 +143,12 @@
 import { ref, Ref, reactive } from "vue";
 import { useToast } from "vue-toast-notification";
 import "vue-toast-notification/dist/theme-sugar.css";
-import { Signature, SignatureZone, SignedState } from "../../types";
+import {
+  CanvasEvent,
+  Signature,
+  SignatureZone,
+  SignedState,
+} from "../../types";
 import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
 import {
@@ -143,11 +172,12 @@ pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
 const modalOpen: Ref<boolean> = ref(false);
 const loading: Ref<boolean> = ref(false);
+const adding: Ref<boolean> = ref(false);
+const canvasEvent: Ref<CanvasEvent> = ref("select");
 const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 let userSignatureZone: Ref<null | SignatureZone> = ref(null);
-let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
 
 declare global {
@@ -160,6 +190,8 @@ const $toast = useToast();
 
 const signature = window.signature;
 
+console.log(signature);
+
 const mountPdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
   pdf = await loadingTask.promise;
@@ -202,33 +234,31 @@ async function downloadAndOpen(): Promise<Blob> {
 
 const initPdf = () => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
-  canvas.addEventListener(
-    "pointerup",
-    (e: PointerEvent) => canvasClick(e, canvas),
-    false
-  );
+  canvas.addEventListener("pointerup", canvasClick, false);
   setTimeout(() => addZones(page.value), 800);
 };
 
+const scaleXToCanvas = (x: number, canvasWidth: number, PDFWidth: number) =>
+  Math.round((x * canvasWidth) / PDFWidth);
+
+const scaleYToCanvas = (h: number, canvasHeight: number, PDFHeight: number) =>
+  Math.round((h * canvasHeight) / PDFHeight);
+
 const hitSignature = (
   zone: SignatureZone,
   xy: number[],
   canvasWidth: number,
   canvasHeight: number
-) => {
-  const scaleXToCanvas = (x: number) =>
-    Math.round((x * canvasWidth) / zone.PDFPage.width);
-  const scaleHeightToCanvas = (h: number) =>
-    Math.round((h * canvasHeight) / zone.PDFPage.height);
-  const scaleYToCanvas = (y: number) =>
-    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
-  return (
-    scaleXToCanvas(zone.x) < xy[0] &&
-    xy[0] < scaleXToCanvas(zone.x + zone.width) &&
-    scaleYToCanvas(zone.y) < xy[1] &&
-    xy[1] < scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height)
-  );
-};
+) =>
+  scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) < xy[0] &&
+  xy[0] <
+    scaleXToCanvas(zone.x + zone.width, canvasWidth, zone.PDFPage.width) &&
+  zone.PDFPage.height -
+    scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) <
+    xy[1] &&
+  xy[1] <
+    scaleYToCanvas(zone.height - zone.y, canvasHeight, zone.PDFPage.height) +
+      zone.PDFPage.height;
 
 const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   userSignatureZone.value = z;
@@ -239,7 +269,7 @@ const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   }
 };
 
-const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+const selectZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
@@ -256,6 +286,13 @@ const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
       }
     });
 
+const canvasClick = (e: PointerEvent) => {
+  const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
+  canvasEvent.value === "select"
+    ? selectZoneOnCanvas(e, canvas)
+    : addZoneOnCanvas(e, canvas);
+};
+
 const turnPage = async (upOrDown: number) => {
   userSignatureZone.value = null;
   page.value = page.value + upOrDown;
@@ -290,12 +327,6 @@ const drawZone = (
 ) => {
   const unselectedBlue = "#007bff";
   const selectedBlue = "#034286";
-  const scaleXToCanvas = (x: number) =>
-    Math.round((x * canvasWidth) / zone.PDFPage.width);
-  const scaleHeightToCanvas = (h: number) =>
-    Math.round((h * canvasHeight) / zone.PDFPage.height);
-  const scaleYToCanvas = (y: number) =>
-    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
   ctx.strokeStyle =
     userSignatureZone.value?.index === zone.index
       ? selectedBlue
@@ -303,16 +334,22 @@ const drawZone = (
   ctx.lineWidth = 2;
   ctx.lineJoin = "bevel";
   ctx.strokeRect(
-    scaleXToCanvas(zone.x),
-    scaleYToCanvas(zone.y),
-    scaleXToCanvas(zone.width),
-    scaleHeightToCanvas(zone.height)
+    scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width),
+    zone.PDFPage.height -
+      scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height),
+    scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width),
+    scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height)
   );
   ctx.font = "bold 16px serif";
   ctx.textAlign = "center";
   ctx.fillStyle = "black";
-  const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
-  const yText = scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height) / 2;
+  const xText =
+    scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) +
+    scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width) / 2;
+  const yText =
+    zone.PDFPage.height -
+    scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) +
+    scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height) / 2;
   if (userSignatureZone.value?.index === zone.index) {
     ctx.fillStyle = selectedBlue;
     ctx.fillText("Signer ici", xText, yText);
@@ -414,14 +451,58 @@ const confirmSign = () => {
 };
 
 const undoSign = async () => {
-  // const canvas = document.querySelectorAll("canvas")[0];
-  // const ctx = canvas.getContext("2d");
-  // if (ctx && userSignatureZone.value) {
-  //   //drawZone(userSignatureZone.value, ctx, canvas.width, canvas.height);
-  // }
+  signature.zones = signature.zones.filter((z) => z.index !== null);
   await setPage(page.value);
   setTimeout(() => addZones(page.value), 200);
   userSignatureZone.value = null;
+  adding.value = false;
+};
+
+const toggleAddZone = () => {
+  canvasEvent.value === "select"
+    ? (canvasEvent.value = "add")
+    : (canvasEvent.value = "select");
+};
+
+const addZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) => {
+  const BOX_WIDTH = 180;
+  const BOX_HEIGHT = 90;
+  const PDFPageHeight = canvas.height;
+  const PDFPageWidth = canvas.width;
+
+  const x = e.offsetX;
+  const y = e.offsetY;
+  const newZone: SignatureZone = {
+    index: null,
+    x:
+      scaleXToCanvas(x, canvas.width, PDFPageWidth) -
+      scaleXToCanvas(BOX_WIDTH / 2, canvas.width, PDFPageWidth),
+    y:
+      PDFPageHeight -
+      scaleYToCanvas(y, canvas.height, PDFPageHeight) +
+      scaleYToCanvas(BOX_HEIGHT / 2, canvas.height, PDFPageHeight),
+    width: BOX_WIDTH,
+    height: BOX_HEIGHT,
+    PDFPage: {
+      index: page.value - 1,
+      width: PDFPageWidth,
+      height: PDFPageHeight,
+    },
+  };
+  signature.zones.push(newZone);
+
+  setTimeout(() => addZones(page.value), 200);
+  canvasEvent.value = "select";
+  adding.value = true;
+};
+
+const removeNewZone = async () => {
+  signature.zones = signature.zones.filter((z) => z.index !== null);
+  userSignatureZone.value = null;
+  await setPage(page.value);
+  setTimeout(() => addZones(page.value), 200);
+  canvasEvent.value = "select";
+  adding.value = false;
 };
 
 downloadAndOpen();
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 77f2ee48c..c5c4b5eb8 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -16,7 +16,9 @@ const appMessages = {
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
         electronic_signature_in_progress: 'Signature électronique en cours...',
-        loading: 'Chargement...'
+        loading: 'Chargement...',
+        add_sign_zone: 'Ajouter une zone de signature',
+        remove_sign_zone: 'Enlever la zone',
     }
 }
 

From 0d62d8d1c694ca7401936cfc79fcdd2eb4b57731 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 4 Sep 2024 12:04:59 +0200
Subject: [PATCH 181/375] Signature - improve UI signature app

---
 .../public/vuejs/DocumentSignature/App.vue    | 72 +++++++++----------
 .../views/Workflow/_signature_sign.html.twig  |  2 +-
 2 files changed, 37 insertions(+), 37 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 04cdf9eea..2074c4163 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -26,37 +26,9 @@
       </template>
     </modal>
   </teleport>
-  <div class="col-12">
-    <div
-      class="row justify-content-center mb-2"
-      v-if="signature.zones.length > 1"
-    >
-      <div class="col-4 gap-2 d-grid">
-        <button
-          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
-          class="btn btn-light btn-sm"
-          @click="turnSignature(-1)"
-        >
-          {{ $t("last_sign_zone") }}
-        </button>
-      </div>
-      <div class="col-4 gap-2 d-grid">
-        <button
-          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
-          class="btn btn-light btn-sm"
-          @click="turnSignature(1)"
-        >
-          {{ $t("next_sign_zone") }}
-        </button>
-      </div>
-    </div>
-
-    <div
-      id="turn-page"
-      class="row justify-content-center mb-2"
-      v-if="pageCount > 1"
-    >
-      <div class="col-6-sm col-3-md text-center">
+  <div class="col-12 m-auto">
+    <div class="row justify-content-center border-bottom pdf-tools">
+      <div v-if="pageCount > 1" class="col-4 text-center turn-page">
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
@@ -73,14 +45,35 @@
           ❯
         </button>
       </div>
+      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-end">
+        <button
+          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(-1)"
+        >
+          {{ $t("last_sign_zone") }}
+        </button>
+      </div>
+      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-start">
+        <button
+          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(1)"
+        >
+          {{ $t("next_sign_zone") }}
+        </button>
+      </div>
     </div>
   </div>
-  <div class="col-12 text-center">
+  <div class="col-xs-12 col-md-12 col-lg-9 m-auto my-5 text-center">
     <canvas class="m-auto" id="canvas"></canvas>
   </div>
 
-  <div class="col-12 p-4" id="action-buttons" v-if="signedState !== 'signed'">
-
+  <div
+    class="col-xs-12 col-md-12 col-lg-9 m-auto p-4"
+    id="action-buttons"
+    v-if="signedState !== 'signed'"
+  >
     <div class="row mb-3">
       <div class="col-12 d-flex justify-content-end">
         <div class="col-4 col-xl-3 gap-2 d-grid">
@@ -510,7 +503,7 @@ downloadAndOpen();
 
 <style scoped lang="scss">
 #canvas {
-  box-shadow: 0 20px 20px rgba(0, 0, 0, 0.1);
+  box-shadow: 0 20px 20px rgba(0, 0, 0, 0.2);
 }
 div#action-buttons {
   position: sticky;
@@ -518,7 +511,14 @@ div#action-buttons {
   background-color: white;
   z-index: 100;
 }
-div#turn-page {
+div.pdf-tools {
+  background-color: #f3f3f3;
+  @media (min-width: 1200px) {
+    background: none;
+    border: none !important;
+  }
+}
+div.turn-page {
   span {
     font-size: 0.8rem;
     margin: 0 0.4rem;
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
index 8b2770952..1c4b0a8f2 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
@@ -27,7 +27,7 @@
     <div class="content" id="content">
         <div class="container-xxl">
             <div class="row">
-               <div class="col-xs-12 col-md-12 col-lg-9 my-5 m-auto">
+               <div class="col-12 m-auto">
                    <div class="row" id="document-signature"></div>
                </div>
             </div>

From 479a02bbc7959f623983a33b77c7d3043d0a5bf7 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 5 Sep 2024 14:11:57 +0200
Subject: [PATCH 182/375] Signature: add and process returnPath in the
 signature app

---
 .../public/vuejs/DocumentSignature/App.vue    | 19 +++++++++++++------
 .../Controller/WorkflowController.php         | 10 ++++++++--
 2 files changed, 21 insertions(+), 8 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 2074c4163..5e3b0f0db 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -124,9 +124,9 @@
         >
           {{ $t("cancel") }}
         </button>
-        <button class="btn btn-delete" @click="undoSign">
+        <a class="btn btn-delete" :href="getReturnPath()">
           {{ $t("cancel_signing") }}
-        </button>
+        </a>
       </div>
     </div>
   </div>
@@ -157,9 +157,7 @@ console.log(PdfWorker); // incredible but this is needed
 // pdfjsLib.GlobalWorkerOptions.workerSrc = PdfWorker;
 
 import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
-import {
-  download_and_decrypt_doc,
-} from "../StoredObjectButton/helpers";
+import { download_and_decrypt_doc } from "../StoredObjectButton/helpers";
 
 pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
@@ -215,7 +213,10 @@ const setPage = async (page: number) => {
 async function downloadAndOpen(): Promise<Blob> {
   let raw;
   try {
-    raw = await download_and_decrypt_doc(signature.storedObject, signature.storedObject.currentVersion);
+    raw = await download_and_decrypt_doc(
+      signature.storedObject,
+      signature.storedObject.currentVersion
+    );
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
@@ -498,6 +499,12 @@ const removeNewZone = async () => {
   adding.value = false;
 };
 
+const getReturnPath = () =>
+  window.location.search
+    ? window.location.search.split("?returnPath=")[1] ??
+      window.location.pathname
+    : window.location.pathname;
+
 downloadAndOpen();
 </script>
 
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 277a18142..4e4b4928a 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -377,7 +377,10 @@ class WorkflowController extends AbstractController
         $signature = $this->entityManager->getRepository(EntityWorkflowStepSignature::class)->find($signature_id);
 
         if ($signature->getSigner() instanceof User) {
-            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', [
+                'id' => $signature_id,
+                'returnPath' => $request->query->get('returnPath', null),
+            ]);
         }
 
         $metadataForm = $this->createForm(WorkflowSignatureMetadataType::class);
@@ -401,7 +404,10 @@ class WorkflowController extends AbstractController
             $this->entityManager->persist($signature);
             $this->entityManager->flush();
 
-            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', [
+                'id' => $signature_id,
+                'returnPath' => $request->query->get('returnPath', null),
+            ]);
         }
 
         return $this->render(

From 8ea87053f04ab9c0ff58ead24558e0a8005d1d9f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 5 Sep 2024 16:47:45 +0200
Subject: [PATCH 183/375] fix some tests

---
 .../Tests/Service/StoredObjectManagerTest.php               | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
index e09a2dc1e..39412b9f7 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectManagerTest.php
@@ -220,7 +220,8 @@ final class StoredObjectManagerTest extends TestCase
             ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
                 $method,
                 'https://example.com/'.$objectName,
-                new \DateTimeImmutable('1 hours')
+                new \DateTimeImmutable('1 hours'),
+                $objectName
             ));
 
         $storedObjectManager = new StoredObjectManager($httpClient, $tempUrlGenerator);
@@ -306,7 +307,8 @@ final class StoredObjectManagerTest extends TestCase
             ->willReturnCallback(fn (string $method, string $objectName) => new SignedUrl(
                 $method,
                 'https://example.com/'.$objectName,
-                new \DateTimeImmutable('1 hours')
+                new \DateTimeImmutable('1 hours'),
+                $objectName
             ));
 
         $manager = new StoredObjectManager($client, $tempUrlGenerator);

From 9475a708c39bc4f955947bc27b559c080c5bd2e5 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 16:47:29 +0200
Subject: [PATCH 184/375] Add EntityWorkflowStepHold entity to allow workflow
 to be put on hold by user

Entity created, migration, and repository.
---
 .../Workflow/EntityWorkflowStepHold.php       | 60 +++++++++++++++
 .../EntityWorkflowStepHoldRepository.php      | 74 +++++++++++++++++++
 .../migrations/Version20240807123801.php      | 41 ++++++++++
 3 files changed, 175 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
 create mode 100644 src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240807123801.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
new file mode 100644
index 000000000..6005b284f
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
@@ -0,0 +1,60 @@
+<?php
+
+namespace Chill\MainBundle\Entity\Workflow;
+
+use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
+use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Chill\MainBundle\Entity\User;
+use Doctrine\ORM\Mapping as ORM;
+
+
+#[ORM\Entity]
+#[ORM\Table('chill_main_workflow_entity_step_hold')]
+class EntityWorkflowStepHold implements TrackCreationInterface
+{
+    use TrackCreationTrait;
+
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
+    private ?int $id;
+
+    #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class)]
+    #[ORM\JoinColumn(nullable: false)]
+    private EntityWorkflowStep $step;
+
+    #[ORM\ManyToOne(targetEntity: User::class)]
+    #[ORM\JoinColumn(nullable: false)]
+    private User $byUser;
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function setId(?int $id): void
+    {
+        $this->id = $id;
+    }
+
+    public function getStep(): EntityWorkflowStep
+    {
+        return $this->step;
+    }
+
+    public function setStep(EntityWorkflowStep $step): void
+    {
+        $this->step = $step;
+    }
+
+    public function getByUser(): User
+    {
+        return $this->byUser;
+    }
+
+    public function setByUser(User $byUser): void
+    {
+        $this->byUser = $byUser;
+    }
+
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
new file mode 100644
index 000000000..59f0464f8
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -0,0 +1,74 @@
+<?php
+
+namespace Chill\MainBundle\Repository\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
+use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
+use Doctrine\ORM\NonUniqueResultException;
+use Doctrine\ORM\NoResultException;
+use Doctrine\Persistence\ManagerRegistry;
+
+class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
+{
+    public function __construct(ManagerRegistry $registry)
+    {
+        parent::__construct($registry, EntityWorkflowStepHold::class);
+    }
+
+    /**
+     * Find an EntityWorkflowStepHold by its ID.
+     *
+     * @param int $id
+     * @return EntityWorkflowStepHold|null
+     */
+    public function findById(int $id): ?EntityWorkflowStepHold
+    {
+        return $this->find($id);
+    }
+
+    /**
+     * Find all EntityWorkflowStepHold records.
+     *
+     * @return EntityWorkflowStepHold[]
+     */
+    public function findAllHolds(): array
+    {
+        return $this->findAll();
+    }
+
+    /**
+     * Find EntityWorkflowStepHold by a specific step.
+     *
+     * @param EntityWorkflowStep $step
+     * @return EntityWorkflowStepHold[]
+     */
+    public function findByStep(EntityWorkflowStep $step): array
+    {
+        return $this->findBy(['step' => $step]);
+    }
+
+    /**
+     * Find a single EntityWorkflowStepHold by step and user.
+     *
+     * @param EntityWorkflowStep $step
+     * @param User $user
+     * @return EntityWorkflowStepHold|null
+     * @throws NonUniqueResultException
+     */
+    public function findOneByStepAndUser(EntityWorkflowStep $step, User $user): ?EntityWorkflowStepHold
+    {
+        try {
+            return $this->createQueryBuilder('e')
+                ->andWhere('e.step = :step')
+                ->andWhere('e.byUser = :user')
+                ->setParameter('step', $step)
+                ->setParameter('user', $user)
+                ->getQuery()
+                ->getSingleResult();
+        } catch (NoResultException $e) {
+            return null;
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
new file mode 100644
index 000000000..e626778e9
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+/**
+ * Auto-generated Migration: Please modify to your needs!
+ */
+final class Version20240807123801 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Create workflow step waiting entity';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_main_workflow_entity_step_hold_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE TABLE chill_main_workflow_entity_step_hold (id INT NOT NULL, step_id INT NOT NULL, createdAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL, byUser_id INT NOT NULL, createdBy_id INT DEFAULT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE INDEX IDX_1BE2E7C73B21E9C ON chill_main_workflow_entity_step_hold (step_id)');
+        $this->addSql('CREATE INDEX IDX_1BE2E7CD23C0240 ON chill_main_workflow_entity_step_hold (byUser_id)');
+        $this->addSql('CREATE INDEX IDX_1BE2E7C3174800F ON chill_main_workflow_entity_step_hold (createdBy_id)');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_step_hold.createdAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold ADD CONSTRAINT FK_1BE2E7C73B21E9C FOREIGN KEY (step_id) REFERENCES chill_main_workflow_entity_step (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold ADD CONSTRAINT FK_1BE2E7CD23C0240 FOREIGN KEY (byUser_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold ADD CONSTRAINT FK_1BE2E7C3174800F FOREIGN KEY (createdBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_main_workflow_entity_step_hold_id_seq CASCADE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold DROP CONSTRAINT FK_1BE2E7C73B21E9C');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold DROP CONSTRAINT FK_1BE2E7CD23C0240');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold DROP CONSTRAINT FK_1BE2E7C3174800F');
+        $this->addSql('DROP TABLE chill_main_workflow_entity_step_hold');
+    }
+}

From 42471269db32b721217dc302b8a81283f19b2c38 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 16:48:59 +0200
Subject: [PATCH 185/375] Implement logic to put workflow on hold and resume it

---
 .../Controller/WorkflowController.php         |  8 +++++++
 .../Resources/views/Workflow/index.html.twig  | 21 ++++++++++++-------
 .../translations/messages.fr.yml              |  2 ++
 3 files changed, 24 insertions(+), 7 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index eb72c2624..71ff897e0 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -19,11 +19,13 @@ use Chill\MainBundle\Form\WorkflowStepType;
 use Chill\MainBundle\Pagination\PaginatorFactory;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
 use Chill\MainBundle\Security\ChillSecurity;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\ORM\NonUniqueResultException;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Form\Extension\Core\Type\FormType;
@@ -52,6 +54,7 @@ class WorkflowController extends AbstractController
         private readonly ChillSecurity $security,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
         private readonly ClockInterface $clock,
+        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository,
         private readonly EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
     ) {}
 
@@ -283,6 +286,9 @@ class WorkflowController extends AbstractController
         );
     }
 
+    /**
+     * @throws NonUniqueResultException
+     */
     #[Route(path: '/{_locale}/main/workflow/{id}/show', name: 'chill_main_workflow_show')]
     public function show(EntityWorkflow $entityWorkflow, Request $request): Response
     {
@@ -292,6 +298,7 @@ class WorkflowController extends AbstractController
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $errors = [];
         $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
+        $holdOnStepByUser = $this->entityWorkflowStepHoldRepository->findOneByStepAndUser($entityWorkflow->getCurrentStep(), $this->security->getUser());
 
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
@@ -354,6 +361,7 @@ class WorkflowController extends AbstractController
                 'entity_workflow' => $entityWorkflow,
                 'transition_form_errors' => $errors,
                 'signatures' => $signatures,
+                'holdOnStepByUser' => $holdOnStepByUser,
             ]
         );
     }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index da4d073b2..5955f89c5 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -64,14 +64,21 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_comment.html.twig' %}</section> #}
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
 
-    {# useful ?
     <ul class="record_actions sticky-form-buttons">
-        <li class="cancel">
-            <a class="btn btn-cancel" href="{{ path('chill_main_workflow_list_dest') }}">
-                {{ 'Back to the list'|trans }}
-            </a>
-        </li>
+        {% if holdOnStepByUser|length > 0 %}
+            <li>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'holdId': holdOnStepByUser.id}) }}"><i class="fa fa-hourglass"></i>
+                    {{ 'workflow.Remove hold'|trans }}
+                </a>
+            </li>
+        {% else %}
+            <li>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_on_hold', {'id': entity_workflow.id}) }}"><i class="fa fa-hourglass"></i>
+                    {{ 'workflow.Put on hold'|trans }}
+                </a>
+            </li>
+        {% endif %}
     </ul>
-    #}
+
 </div>
 {% endblock %}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index f6f30bcd0..335de609d 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -527,6 +527,8 @@ workflow:
     Access link copied: Lien d'accès copié
     This link grant any user to apply a transition: Le lien d'accès suivant permet d'appliquer une transition
     The workflow may be accssed through this link: Une transition peut être appliquée sur ce workflow grâce au lien d'accès suivant
+    Put on hold: Mettre en attente
+    Remove hold: Enlever la mise en attente
 
     signature_zone:
         title: Appliquer les signatures électroniques

From 15eaf648df384763b0684199162a3317e5a82954 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 7 Aug 2024 17:25:41 +0200
Subject: [PATCH 186/375] Add label to workflow listing and history to indicate
 whether it's on hold

---
 .../ChillMainBundle/Entity/Workflow/EntityWorkflow.php   | 5 +++++
 .../Entity/Workflow/EntityWorkflowStep.php               | 9 +++++++++
 .../Resources/views/Workflow/_history.html.twig          | 6 +++++-
 .../Resources/views/Workflow/list.html.twig              | 3 +++
 src/Bundle/ChillMainBundle/translations/messages.fr.yml  | 1 +
 5 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 5a3359c46..14b39a065 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -480,4 +480,9 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
 
         return $this->steps->get($this->steps->count() - 2);
     }
+
+    public function isOnHoldAtCurrentStep(): bool
+    {
+        return $this->getCurrentStep()->getHoldsOnStep()->count() > 0;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 953fb31b1..156588bd2 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -98,12 +98,16 @@ class EntityWorkflowStep
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: true)]
     private ?string $transitionByEmail = null;
 
+    #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepHold::class)]
+    private Collection $holdsOnStep;
+
     public function __construct()
     {
         $this->ccUser = new ArrayCollection();
         $this->destUser = new ArrayCollection();
         $this->destUserByAccessKey = new ArrayCollection();
         $this->signatures = new ArrayCollection();
+        $this->holdsOnStep = new ArrayCollection();
         $this->accessKey = bin2hex(openssl_random_pseudo_bytes(32));
     }
 
@@ -413,6 +417,11 @@ class EntityWorkflowStep
         return $this;
     }
 
+    public function getHoldsOnStep(): Collection
+    {
+        return $this->holdsOnStep;
+    }
+
     #[Assert\Callback]
     public function validateOnCreation(ExecutionContextInterface $context, mixed $payload): void
     {
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index a3e2e24b9..a56656102 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -76,7 +76,11 @@
                             <p><b>{{ 'workflow.Users allowed to apply transition'|trans }}&nbsp;: </b></p>
                             <ul>
                                 {% for u in step.destUser %}
-                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</li>
+                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}
+                                        {% if entity_workflow.isOnHoldAtCurrentStep %}
+                                            <span class="badge bg-success rounded-pill" title="{{ 'workflow.On hold'|trans|escape('html_attr') }}">{{ 'workflow.On hold'|trans }}</span>
+                                        {% endif %}
+                                    </li>
                                 {% endfor %}
                             </ul>
                         {% endif %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/list.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/list.html.twig
index 5d8c39c63..5dd6dc714 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/list.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/list.html.twig
@@ -69,6 +69,9 @@
                     </button>
                     <div>
                         {{ macro.breadcrumb(l) }}
+                        {% if l.entity_workflow.isOnHoldAtCurrentStep %}
+                            <span class="badge bg-success rounded-pill" title="{{ 'workflow.On hold'|trans|escape('html_attr') }}">{{ 'workflow.On hold'|trans }}</span>
+                        {% endif %}
                     </div>
 
                 </div>
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 335de609d..f5c2cfc46 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -529,6 +529,7 @@ workflow:
     The workflow may be accssed through this link: Une transition peut être appliquée sur ce workflow grâce au lien d'accès suivant
     Put on hold: Mettre en attente
     Remove hold: Enlever la mise en attente
+    On hold: En attente
 
     signature_zone:
         title: Appliquer les signatures électroniques

From c21de777fd1f8bac5e1958039950de43107adca8 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 8 Aug 2024 12:18:59 +0200
Subject: [PATCH 187/375] Place on_hold label next to breadcrumb in twig
 template

---
 .../ChillMainBundle/Resources/views/Workflow/index.html.twig   | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 5955f89c5..191499b0a 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -39,6 +39,9 @@
             <h2>{{ handler.entityTitle(entity_workflow) }}</h2>
 
             {{ macro.breadcrumb({'entity_workflow': entity_workflow}) }}
+            {% if entity_workflow.isOnHoldAtCurrentStep %}
+                <span class="badge bg-success rounded-pill" title="{{ 'workflow.On hold'|trans|escape('html_attr') }}">{{ 'workflow.On hold'|trans }}</span>
+            {% endif %}
         </div>
 
         {% include handler_template with handler_template_data|merge({'display_action': true }) %}

From d119ba49f70cff54bd16bde29b568b70c128b3d4 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 8 Aug 2024 12:19:33 +0200
Subject: [PATCH 188/375] Add on_hold label to vue components

---
 .../ChillMainBundle/Resources/public/chill/chillmain.scss   | 1 +
 .../public/vuejs/HomepageWidget/MyWorkflowsTable.vue        | 5 ++++-
 .../Resources/public/vuejs/HomepageWidget/js/i18n.js        | 1 +
 .../vuejs/_components/EntityWorkflow/ListWorkflow.vue       | 6 ++++--
 .../Serializer/Normalizer/EntityWorkflowNormalizer.php      | 1 +
 5 files changed, 11 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss b/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
index eabc2adc4..4f215859f 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
+++ b/src/Bundle/ChillMainBundle/Resources/public/chill/chillmain.scss
@@ -498,6 +498,7 @@ div.workflow {
     div.breadcrumb {
         display: initial;
         margin-bottom: 0;
+        margin-right: .5rem;
         padding-right: 0.5em;
         background-color: tint-color($chill-yellow, 90%);
         border: 1px solid $chill-yellow;
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/MyWorkflowsTable.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/MyWorkflowsTable.vue
index f98d7a5cb..f82e8a88c 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/MyWorkflowsTable.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/MyWorkflowsTable.vue
@@ -9,13 +9,16 @@
         </template>
         <template v-slot:tbody>
             <tr v-for="(w, i) in workflows.results" :key="`workflow-${i}`">
-                <td>{{ w.title }}</td>
+                <td>
+                    {{ w.title }}
+                </td>
                 <td>
                     <div class="workflow">
                         <div class="breadcrumb">
                             <i class="fa fa-circle me-1 text-chill-yellow mx-2"></i>
                             <span class="mx-2">{{ getStep(w) }}</span>
                         </div>
+                        <span v-if="w.isOnHoldAtCurrentStep" class="badge bg-success rounded-pill">{{ $t('on_hold') }}</span>
                     </div>
                 </td>
                 <td v-if="w.datas.persons !== null">
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/js/i18n.js b/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/js/i18n.js
index ddc1b55ef..0205df092 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/js/i18n.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/HomepageWidget/js/i18n.js
@@ -41,6 +41,7 @@ const appMessages = {
         Step: "Étape",
         concerned_users: "Usagers concernés",
         Object_workflow: "Objet du workflow",
+        on_hold: "En attente",
         show_entity: "Voir {entity}",
         the_activity: "l'échange",
         the_course: "le parcours",
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
index 0e16b522f..de645f899 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
@@ -6,7 +6,7 @@
          <div>
             <div class="item-row col">
                <h2>{{ w.title }}</h2>
-               <div class="flex-grow-1 ms-3 h3">
+                <div class="flex-grow-1 ms-3 h3">
                   <div class="visually-hidden">
                      {{ w.relatedEntityClass }}
                      {{ w.relatedEntityId }}
@@ -38,6 +38,7 @@
                   </span>
                </template>
             </div>
+            <span v-if="w.isOnHoldAtCurrentStep" class="badge bg-success rounded-pill">{{ $t('on_hold') }}</span>
          </div>
 
          <div class="item-row">
@@ -73,7 +74,8 @@ const i18n = {
          you_subscribed_to_all_steps: "Vous recevrez une notification à chaque étape",
          you_subscribed_to_final_step: "Vous recevrez une notification à l'étape finale",
          by: "Par",
-         at: "Le"
+         at: "Le",
+         on_hold: "En attente"
       }
    }
 }
diff --git a/src/Bundle/ChillMainBundle/Serializer/Normalizer/EntityWorkflowNormalizer.php b/src/Bundle/ChillMainBundle/Serializer/Normalizer/EntityWorkflowNormalizer.php
index b1f3807ed..a84220099 100644
--- a/src/Bundle/ChillMainBundle/Serializer/Normalizer/EntityWorkflowNormalizer.php
+++ b/src/Bundle/ChillMainBundle/Serializer/Normalizer/EntityWorkflowNormalizer.php
@@ -45,6 +45,7 @@ class EntityWorkflowNormalizer implements NormalizerInterface, NormalizerAwareIn
             'steps' => $this->normalizer->normalize($object->getStepsChained(), $format, $context),
             'datas' => $this->normalizer->normalize($handler->getEntityData($object), $format, $context),
             'title' => $handler->getEntityTitle($object),
+            'isOnHoldAtCurrentStep' => $object->isOnHoldAtCurrentStep(),
         ];
     }
 

From e85c31826f264454f8d10bde7b102d2a184a9e11 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 8 Aug 2024 12:20:41 +0200
Subject: [PATCH 189/375] php cs fixes

---
 .../Entity/Workflow/EntityWorkflowStepHold.php   | 11 +++++++++--
 .../EntityWorkflowStepHoldRepository.php         | 16 +++++++++-------
 .../migrations/Version20240807123801.php         |  7 +++++++
 3 files changed, 25 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
index 6005b284f..166b8cfd2 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Entity\Workflow;
 
 use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
@@ -7,7 +16,6 @@ use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
 use Chill\MainBundle\Entity\User;
 use Doctrine\ORM\Mapping as ORM;
 
-
 #[ORM\Entity]
 #[ORM\Table('chill_main_workflow_entity_step_hold')]
 class EntityWorkflowStepHold implements TrackCreationInterface
@@ -56,5 +64,4 @@ class EntityWorkflowStepHold implements TrackCreationInterface
     {
         $this->byUser = $byUser;
     }
-
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
index 59f0464f8..f445b33ee 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
@@ -19,9 +28,6 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
 
     /**
      * Find an EntityWorkflowStepHold by its ID.
-     *
-     * @param int $id
-     * @return EntityWorkflowStepHold|null
      */
     public function findById(int $id): ?EntityWorkflowStepHold
     {
@@ -41,7 +47,6 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
     /**
      * Find EntityWorkflowStepHold by a specific step.
      *
-     * @param EntityWorkflowStep $step
      * @return EntityWorkflowStepHold[]
      */
     public function findByStep(EntityWorkflowStep $step): array
@@ -52,9 +57,6 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
     /**
      * Find a single EntityWorkflowStepHold by step and user.
      *
-     * @param EntityWorkflowStep $step
-     * @param User $user
-     * @return EntityWorkflowStepHold|null
      * @throws NonUniqueResultException
      */
     public function findOneByStepAndUser(EntityWorkflowStep $step, User $user): ?EntityWorkflowStepHold
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
index e626778e9..746066cc8 100644
--- a/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
@@ -2,6 +2,13 @@
 
 declare(strict_types=1);
 
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\Migrations\Main;
 
 use Doctrine\DBAL\Schema\Schema;

From 18abc84e68b1b9c7acea41215d0f8a3530ea46e5 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 8 Aug 2024 13:00:09 +0200
Subject: [PATCH 190/375] Rector fixes

---
 .../ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php     | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 156588bd2..1cdb157b1 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -98,6 +98,9 @@ class EntityWorkflowStep
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: true)]
     private ?string $transitionByEmail = null;
 
+    /**
+     * @var \Doctrine\Common\Collections\Collection<int, \Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold>
+     */
     #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepHold::class)]
     private Collection $holdsOnStep;
 

From 6fc5a10dc4dd24caa5284c40743ce01a2a27f287 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 17:15:09 +0200
Subject: [PATCH 191/375] Add unique constraint to migration

---
 .../ChillMainBundle/migrations/Version20240807123801.php      | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
index 746066cc8..1e95bd359 100644
--- a/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240807123801.php
@@ -14,9 +14,6 @@ namespace Chill\Migrations\Main;
 use Doctrine\DBAL\Schema\Schema;
 use Doctrine\Migrations\AbstractMigration;
 
-/**
- * Auto-generated Migration: Please modify to your needs!
- */
 final class Version20240807123801 extends AbstractMigration
 {
     public function getDescription(): string
@@ -31,6 +28,7 @@ final class Version20240807123801 extends AbstractMigration
         $this->addSql('CREATE INDEX IDX_1BE2E7C73B21E9C ON chill_main_workflow_entity_step_hold (step_id)');
         $this->addSql('CREATE INDEX IDX_1BE2E7CD23C0240 ON chill_main_workflow_entity_step_hold (byUser_id)');
         $this->addSql('CREATE INDEX IDX_1BE2E7C3174800F ON chill_main_workflow_entity_step_hold (createdBy_id)');
+        $this->addSql('CREATE UNIQUE INDEX chill_main_workflow_hold_unique_idx ON chill_main_workflow_entity_step_hold (step_id, byUser_id)');
         $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_step_hold.createdAt IS \'(DC2Type:datetime_immutable)\'');
         $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold ADD CONSTRAINT FK_1BE2E7C73B21E9C FOREIGN KEY (step_id) REFERENCES chill_main_workflow_entity_step (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
         $this->addSql('ALTER TABLE chill_main_workflow_entity_step_hold ADD CONSTRAINT FK_1BE2E7CD23C0240 FOREIGN KEY (byUser_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');

From c1e5f4a57e15bd0ac297a41a4c3d4f0035850079 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 17:15:38 +0200
Subject: [PATCH 192/375] Move onHold methods to a separate WorkflowOnHold
 controller

---
 .../Controller/WorkflowOnHoldController.php   | 59 +++++++++++++++++++
 1 file changed, 59 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
new file mode 100644
index 000000000..4d86dfb0a
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -0,0 +1,59 @@
+<?php
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
+use Chill\MainBundle\Security\ChillSecurity;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Workflow\Registry;
+
+class WorkflowOnHoldController extends AbstractController
+{
+    public function __construct(
+        private readonly EntityManagerInterface $entityManager,
+        private readonly ChillSecurity $security,
+        private readonly Registry $registry,
+        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository
+    ) {}
+
+    #[Route(path: '/{_locale}/main/workflow/{id}/hold', name: 'chill_main_workflow_on_hold')]
+    public function putOnHold(EntityWorkflow $entityWorkflow, Request $request): Response
+    {
+        $currentStep = $entityWorkflow->getCurrentStep();
+        $currentUser = $this->security->getUser();
+
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        $enabledTransitions = $workflow->getEnabledTransitions($entityWorkflow);
+        $usersInvolved = $entityWorkflow->getUsersInvolved();
+
+        /*        if (count($enabledTransitions) > 0) {
+
+                }*/
+
+        $stepHold = new EntityWorkflowStepHold($currentStep, $currentUser);
+
+        $this->entityManager->persist($stepHold);
+        $this->entityManager->flush();
+
+        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
+    }
+
+    #[Route(path: '/{_locale}/main/workflow/{holdId}/remove_hold', name: 'chill_main_workflow_remove_hold')]
+    public function removeOnHold(int $holdId, Request $request): Response
+    {
+        $hold = $this->entityWorkflowStepHoldRepository->findById($holdId);
+        $entityWorkflow = $hold->getStep()->getEntityWorkflow();
+
+        $this->entityManager->remove($hold);
+        $this->entityManager->flush();
+
+        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
+    }
+}

From deb4bda16efd74d61adbebf5a51ae859df64839e Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 17:16:50 +0200
Subject: [PATCH 193/375] Add unique constraint as attribute on
 EntityWorkflowStepHold class

---
 .../Workflow/EntityWorkflowStepHold.php       | 22 ++++++-------------
 1 file changed, 7 insertions(+), 15 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
index 166b8cfd2..47ae0f954 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
@@ -18,6 +18,7 @@ use Doctrine\ORM\Mapping as ORM;
 
 #[ORM\Entity]
 #[ORM\Table('chill_main_workflow_entity_step_hold')]
+#[ORM\UniqueConstraint(name: 'chill_main_workflow_hold_unique_idx', columns: ['step_id', 'byUser_id'])]
 class EntityWorkflowStepHold implements TrackCreationInterface
 {
     use TrackCreationTrait;
@@ -35,33 +36,24 @@ class EntityWorkflowStepHold implements TrackCreationInterface
     #[ORM\JoinColumn(nullable: false)]
     private User $byUser;
 
+    public function __construct(EntityWorkflowStep $step, User $byUser)
+    {
+        $this->step = $step;
+        $this->byUser = $byUser;
+    }
+
     public function getId(): ?int
     {
         return $this->id;
     }
 
-    public function setId(?int $id): void
-    {
-        $this->id = $id;
-    }
-
     public function getStep(): EntityWorkflowStep
     {
         return $this->step;
     }
 
-    public function setStep(EntityWorkflowStep $step): void
-    {
-        $this->step = $step;
-    }
-
     public function getByUser(): User
     {
         return $this->byUser;
     }
-
-    public function setByUser(User $byUser): void
-    {
-        $this->byUser = $byUser;
-    }
 }

From a82b99aeccda4ad30f65a2ad717131938319140c Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 17:17:24 +0200
Subject: [PATCH 194/375] Add template-extends on
 EntityWorkflowStepHoldRepository

---
 .../Repository/Workflow/EntityWorkflowStepHoldRepository.php  | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
index f445b33ee..9e1316e05 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -19,6 +19,10 @@ use Doctrine\ORM\NonUniqueResultException;
 use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
 
+/**
+ * @template-extends ServiceEntityRepository<EntityWorkflowStepHold>
+ */
+
 class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
 {
     public function __construct(ManagerRegistry $registry)

From 9c8a84cdbd4525006b07ee7f7935269ec0b64431 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 17:26:58 +0200
Subject: [PATCH 195/375] Add test for WorkflowOnHoldControllerTest

---
 .../WorkflowOnHoldControllerTest.php          | 61 +++++++++++++++++++
 1 file changed, 61 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
new file mode 100644
index 000000000..b603c0f25
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -0,0 +1,61 @@
+<?php
+
+namespace Chill\MainBundle\Tests\Controller;
+
+use Chill\MainBundle\Controller\WorkflowOnHoldController;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
+use Chill\MainBundle\Security\ChillSecurity;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\Workflow;
+
+class WorkflowOnHoldControllerTest extends TestCase
+{
+    public function testPutOnHoldSuccess()
+    {
+        // Mocks
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $security = $this->createMock(ChillSecurity::class);
+        $registry = $this->createMock(Registry::class);
+        $entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
+        $entityWorkflow = $this->createMock(EntityWorkflow::class);
+        $workflow = $this->createMock(Workflow::class);
+        $request = $this->createMock(Request::class);
+        $currentStep = $this->createMock(EntityWorkflow::class);  // Assuming EntityWorkflow is the type, adjust if needed
+        $currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);  // Adjust with actual User entity class
+
+        // Define expected behaviors for the mocks
+        $entityWorkflow->method('getCurrentStep')->willReturn($currentStep);
+        $security->method('getUser')->willReturn($currentUser);
+        $entityWorkflow->method('getWorkflowName')->willReturn('workflow_name');
+        $registry->method('get')->with($entityWorkflow, 'workflow_name')->willReturn($workflow);
+        $workflow->method('getEnabledTransitions')->with($entityWorkflow)->willReturn([]);
+        $entityWorkflow->method('getUsersInvolved')->willReturn([]);
+
+        $entityManager->expects($this->once())
+            ->method('persist')
+            ->with($this->isInstanceOf(EntityWorkflowStepHold::class));
+
+        $entityManager->expects($this->once())
+            ->method('flush');
+
+        $controller = new WorkflowOnHoldController(
+            $entityManager,
+            $security,
+            $registry,
+            $entityWorkflowStepHoldRepository
+        );
+
+        // Smoke test
+        $response = $controller->putOnHold($entityWorkflow, $request);
+
+        $this->assertInstanceOf(Response::class, $response);
+        $this->assertEquals(302, $response->getStatusCode());
+    }
+}

From 8c5e94e29571a4bc2fea62dc3e92b50f1ae38b1f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 29 Aug 2024 16:10:23 +0200
Subject: [PATCH 196/375] Work on test for workflowOnHold controller

---
 .../Controller/WorkflowOnHoldController.php   |  3 ++-
 .../WorkflowOnHoldControllerTest.php          | 21 ++++++++++++-------
 2 files changed, 16 insertions(+), 8 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 4d86dfb0a..5698fe799 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -11,13 +11,14 @@ use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
 
 class WorkflowOnHoldController extends AbstractController
 {
     public function __construct(
         private readonly EntityManagerInterface $entityManager,
-        private readonly ChillSecurity $security,
+        private readonly Security $security,
         private readonly Registry $registry,
         private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository
     ) {}
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index b603c0f25..db9e0cc64 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -4,31 +4,38 @@ namespace Chill\MainBundle\Tests\Controller;
 
 use Chill\MainBundle\Controller\WorkflowOnHoldController;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Chill\MainBundle\Security\ChillSecurity;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\DependencyInjection\ContainerInterface;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
 use Symfony\Component\Workflow\Workflow;
 
-class WorkflowOnHoldControllerTest extends TestCase
+class WorkflowOnHoldControllerTest extends KernelTestCase
 {
     public function testPutOnHoldSuccess()
     {
+        self::bootKernel();
+
         // Mocks
         $entityManager = $this->createMock(EntityManagerInterface::class);
-        $security = $this->createMock(ChillSecurity::class);
+        $security = $this->createMock(Security::class);
         $registry = $this->createMock(Registry::class);
         $entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
+
         $entityWorkflow = $this->createMock(EntityWorkflow::class);
         $workflow = $this->createMock(Workflow::class);
-        $request = $this->createMock(Request::class);
-        $currentStep = $this->createMock(EntityWorkflow::class);  // Assuming EntityWorkflow is the type, adjust if needed
-        $currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);  // Adjust with actual User entity class
+        $request = new Request();
+        $currentStep = $this->createMock(EntityWorkflowStep::class);
+        $currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);
 
         // Define expected behaviors for the mocks
         $entityWorkflow->method('getCurrentStep')->willReturn($currentStep);
@@ -52,10 +59,10 @@ class WorkflowOnHoldControllerTest extends TestCase
             $entityWorkflowStepHoldRepository
         );
 
-        // Smoke test
+/*        // Smoke test
         $response = $controller->putOnHold($entityWorkflow, $request);
 
         $this->assertInstanceOf(Response::class, $response);
-        $this->assertEquals(302, $response->getStatusCode());
+        $this->assertEquals(302, $response->getStatusCode());*/
     }
 }

From 46b31ae1ea204dfc666037ad737c40fae49a478a Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 30 Aug 2024 11:29:25 +0200
Subject: [PATCH 197/375] Adjust logic to only allow on hold if user is allowed
 to apply a transition

---
 .../Controller/WorkflowOnHoldController.php      | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 5698fe799..a7831159c 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -32,11 +32,21 @@ class WorkflowOnHoldController extends AbstractController
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
 
         $enabledTransitions = $workflow->getEnabledTransitions($entityWorkflow);
-        $usersInvolved = $entityWorkflow->getUsersInvolved();
+        if (\count($enabledTransitions) === 0) {
+            throw $this->createAccessDeniedException('No transitions are available for the current workflow state.');
+        }
 
-        /*        if (count($enabledTransitions) > 0) {
+        $isTransitionAllowed = false;
+        foreach ($enabledTransitions as $transition) {
+            if ($workflow->can($entityWorkflow, $transition->getName())) {
+                $isTransitionAllowed = true;
+                break;
+            }
+        }
 
-                }*/
+        if (!$isTransitionAllowed) {
+            throw $this->createAccessDeniedException('You are not allowed to apply any transitions to this workflow, therefore you cannot put it on hold.');
+        }
 
         $stepHold = new EntityWorkflowStepHold($currentStep, $currentUser);
 

From 41ffc470a0cf9caa167d832c0a69a316ed441c94 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 30 Aug 2024 11:30:06 +0200
Subject: [PATCH 198/375] Adjust test to check creation of onHold if user is
 allowed to apply a transition

---
 .../WorkflowOnHoldControllerTest.php          | 87 +++++++++++++------
 1 file changed, 62 insertions(+), 25 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index db9e0cc64..785d5d33c 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -17,52 +17,89 @@ use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\Transition;
 use Symfony\Component\Workflow\Workflow;
 
 class WorkflowOnHoldControllerTest extends KernelTestCase
 {
-    public function testPutOnHoldSuccess()
+    private $entityManager;
+    private $security;
+    private $registry;
+    private $entityWorkflowStepHoldRepository;
+    private $entityWorkflow;
+    private $workflow;
+    private $currentStep;
+    private $currentUser;
+
+    protected function setUp(): void
     {
         self::bootKernel();
 
         // Mocks
-        $entityManager = $this->createMock(EntityManagerInterface::class);
-        $security = $this->createMock(Security::class);
-        $registry = $this->createMock(Registry::class);
-        $entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
+        $this->entityManager = $this->createMock(EntityManagerInterface::class);
+        $this->security = $this->createMock(Security::class);
+        $this->registry = $this->createMock(Registry::class);
+        $this->entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
 
-        $entityWorkflow = $this->createMock(EntityWorkflow::class);
-        $workflow = $this->createMock(Workflow::class);
-        $request = new Request();
-        $currentStep = $this->createMock(EntityWorkflowStep::class);
-        $currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);
+        $this->entityWorkflow = $this->createMock(EntityWorkflow::class);
+        $this->workflow = $this->createMock(Workflow::class);
+        $this->currentStep = $this->createMock(EntityWorkflowStep::class);
+        $this->currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);
 
         // Define expected behaviors for the mocks
-        $entityWorkflow->method('getCurrentStep')->willReturn($currentStep);
-        $security->method('getUser')->willReturn($currentUser);
-        $entityWorkflow->method('getWorkflowName')->willReturn('workflow_name');
-        $registry->method('get')->with($entityWorkflow, 'workflow_name')->willReturn($workflow);
-        $workflow->method('getEnabledTransitions')->with($entityWorkflow)->willReturn([]);
-        $entityWorkflow->method('getUsersInvolved')->willReturn([]);
+        $this->entityWorkflow->method('getCurrentStep')->willReturn($this->currentStep);
+        $this->security->method('getUser')->willReturn($this->currentUser);
+        $this->entityWorkflow->method('getWorkflowName')->willReturn('workflow_name');
+        $this->registry->method('get')->with($this->entityWorkflow, 'workflow_name')->willReturn($this->workflow);
+        $this->workflow->method('getEnabledTransitions')->with($this->entityWorkflow)->willReturn([]);
+        $this->entityWorkflow->method('getUsersInvolved')->willReturn([]);
+    }
 
-        $entityManager->expects($this->once())
+    public function testPutOnHoldPersistence(): void
+    {
+        // Adjust mock for getEnabledTransitions to return a non-empty array
+        $transition = $this->createMock(Transition::class);
+        $transition->method('getName')->willReturn('dummy_transition');
+
+        $this->workflow->method('getEnabledTransitions')
+            ->with($this->entityWorkflow)
+            ->willReturn([$transition]);
+
+        $this->workflow->method('can')
+            ->with($this->entityWorkflow, 'dummy_transition')
+            ->willReturn(true);
+
+        $this->entityManager->expects($this->once())
             ->method('persist')
             ->with($this->isInstanceOf(EntityWorkflowStepHold::class));
 
-        $entityManager->expects($this->once())
+        $this->entityManager->expects($this->once())
             ->method('flush');
 
         $controller = new WorkflowOnHoldController(
-            $entityManager,
-            $security,
-            $registry,
-            $entityWorkflowStepHoldRepository
+            $this->entityManager,
+            $this->security,
+            $this->registry,
+            $this->entityWorkflowStepHoldRepository
         );
 
-/*        // Smoke test
-        $response = $controller->putOnHold($entityWorkflow, $request);
+        $request = new Request();
+        $controller->putOnHold($this->entityWorkflow, $request);
+    }
+
+    public function testPutOnHoldSmokeTest(): void
+    {
+        $controller = new WorkflowOnHoldController(
+            $this->entityManager,
+            $this->security,
+            $this->registry,
+            $this->entityWorkflowStepHoldRepository
+        );
+
+        $request = new Request();
+        $response = $controller->putOnHold($this->entityWorkflow, $request);
 
         $this->assertInstanceOf(Response::class, $response);
-        $this->assertEquals(302, $response->getStatusCode());*/
+        $this->assertEquals(302, $response->getStatusCode());
     }
 }

From 745a29f74284623e9860733274cb4cf78753b56a Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 30 Aug 2024 12:59:08 +0200
Subject: [PATCH 199/375] Adjust logic for removing the hold on a workflow only
 by user who owns the hold and when a transition is applied on the workflow

---
 .../Controller/WorkflowController.php         |  8 ++++--
 .../Controller/WorkflowOnHoldController.php   | 28 +++++++++----------
 .../EntityWorkflowStepHoldRepository.php      | 19 +++++++++++++
 .../Resources/views/Workflow/index.html.twig  |  4 +--
 .../WorkflowOnHoldControllerTest.php          | 15 +++++-----
 5 files changed, 48 insertions(+), 26 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 71ff897e0..6c9ee2f8c 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -298,7 +298,7 @@ class WorkflowController extends AbstractController
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $errors = [];
         $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
-        $holdOnStepByUser = $this->entityWorkflowStepHoldRepository->findOneByStepAndUser($entityWorkflow->getCurrentStep(), $this->security->getUser());
+        $onHoldStep = $this->entityWorkflowStepHoldRepository->findByWorkflow($entityWorkflow);
 
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
@@ -343,6 +343,10 @@ class WorkflowController extends AbstractController
 
                 $this->entityManager->flush();
 
+                if ($onHoldStep) {
+                    $this->entityManager->remove($onHoldStep);
+                }
+
                 return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
             }
 
@@ -361,7 +365,7 @@ class WorkflowController extends AbstractController
                 'entity_workflow' => $entityWorkflow,
                 'transition_form_errors' => $errors,
                 'signatures' => $signatures,
-                'holdOnStepByUser' => $holdOnStepByUser,
+                'onHoldStep' => $onHoldStep,
             ]
         );
     }
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index a7831159c..36c419e79 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -4,6 +4,7 @@ namespace Chill\MainBundle\Controller;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Chill\MainBundle\Security\ChillSecurity;
 use Doctrine\ORM\EntityManagerInterface;
@@ -20,32 +21,23 @@ class WorkflowOnHoldController extends AbstractController
         private readonly EntityManagerInterface $entityManager,
         private readonly Security $security,
         private readonly Registry $registry,
-        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository
+        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository,
+        private readonly EntityWorkflowRepository $entityWorkflowRepository
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/{id}/hold', name: 'chill_main_workflow_on_hold')]
     public function putOnHold(EntityWorkflow $entityWorkflow, Request $request): Response
     {
+        $entityWorkflow = $this->entityWorkflowRepository->find($entityWorkflow);
+
         $currentStep = $entityWorkflow->getCurrentStep();
         $currentUser = $this->security->getUser();
 
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
-
         $enabledTransitions = $workflow->getEnabledTransitions($entityWorkflow);
-        if (\count($enabledTransitions) === 0) {
-            throw $this->createAccessDeniedException('No transitions are available for the current workflow state.');
-        }
 
-        $isTransitionAllowed = false;
-        foreach ($enabledTransitions as $transition) {
-            if ($workflow->can($entityWorkflow, $transition->getName())) {
-                $isTransitionAllowed = true;
-                break;
-            }
-        }
-
-        if (!$isTransitionAllowed) {
-            throw $this->createAccessDeniedException('You are not allowed to apply any transitions to this workflow, therefore you cannot put it on hold.');
+        if (!count($enabledTransitions) > 0) {
+            throw $this->createAccessDeniedException('You are not allowed to apply any transitions to this workflow, therefore you cannot toggle the hold status.');
         }
 
         $stepHold = new EntityWorkflowStepHold($currentStep, $currentUser);
@@ -61,10 +53,16 @@ class WorkflowOnHoldController extends AbstractController
     {
         $hold = $this->entityWorkflowStepHoldRepository->findById($holdId);
         $entityWorkflow = $hold->getStep()->getEntityWorkflow();
+        $currentUser = $this->security->getUser();
+
+        if ($hold->getByUser() !== $currentUser) {
+            throw $this->createAccessDeniedException('You are not allowed to remove the hold status.');
+        }
 
         $this->entityManager->remove($hold);
         $this->entityManager->flush();
 
         return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
     }
+
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
index 9e1316e05..4b6cc7d1c 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -12,12 +12,14 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
 use Doctrine\ORM\NonUniqueResultException;
 use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
+use Symfony\Component\Workflow\Workflow;
 
 /**
  * @template-extends ServiceEntityRepository<EntityWorkflowStepHold>
@@ -58,6 +60,23 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
         return $this->findBy(['step' => $step]);
     }
 
+    /**
+     * @throws NonUniqueResultException
+     */
+    public function findByWorkflow(EntityWorkflow $workflow): ?EntityWorkflowStepHold
+    {
+        $qb = $this->getEntityManager()->createQueryBuilder();
+
+        $qb->select('h')
+            ->from(EntityWorkflowStepHold::class, 'h')
+            ->join('h.step', 's')
+            ->join('s.entityWorkflow', 'w')
+            ->where('w = :workflow')
+            ->setParameter('workflow', $workflow);
+
+        return $qb->getQuery()->getOneOrNullResult();
+    }
+
     /**
      * Find a single EntityWorkflowStepHold by step and user.
      *
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 191499b0a..20f617c0e 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -68,9 +68,9 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
 
     <ul class="record_actions sticky-form-buttons">
-        {% if holdOnStepByUser|length > 0 %}
+        {% if onHoldStep is not null  %}
             <li>
-                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'holdId': holdOnStepByUser.id}) }}"><i class="fa fa-hourglass"></i>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'holdId': onHoldStep.id}) }}"><i class="fa fa-hourglass"></i>
                     {{ 'workflow.Remove hold'|trans }}
                 </a>
             </li>
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index 785d5d33c..5ca829029 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -30,6 +30,7 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
     private $workflow;
     private $currentStep;
     private $currentUser;
+    private $controller;
 
     protected function setUp(): void
     {
@@ -53,6 +54,13 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
         $this->registry->method('get')->with($this->entityWorkflow, 'workflow_name')->willReturn($this->workflow);
         $this->workflow->method('getEnabledTransitions')->with($this->entityWorkflow)->willReturn([]);
         $this->entityWorkflow->method('getUsersInvolved')->willReturn([]);
+
+        $this->controller = new WorkflowOnHoldController(
+            $this->entityManager,
+            $this->security,
+            $this->registry,
+            $this->entityWorkflowStepHoldRepository
+        );
     }
 
     public function testPutOnHoldPersistence(): void
@@ -76,13 +84,6 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
         $this->entityManager->expects($this->once())
             ->method('flush');
 
-        $controller = new WorkflowOnHoldController(
-            $this->entityManager,
-            $this->security,
-            $this->registry,
-            $this->entityWorkflowStepHoldRepository
-        );
-
         $request = new Request();
         $controller->putOnHold($this->entityWorkflow, $request);
     }

From 8c4f342ca1c69148f1e2e4cf6a5290b2c3c3bdfd Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Fri, 30 Aug 2024 13:02:39 +0200
Subject: [PATCH 200/375] Correct instantiation of controller within test

---
 .../Controller/WorkflowOnHoldControllerTest.php  | 16 ++++++----------
 1 file changed, 6 insertions(+), 10 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index 5ca829029..8c06e9f90 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -6,6 +6,7 @@ use Chill\MainBundle\Controller\WorkflowOnHoldController;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Chill\MainBundle\Security\ChillSecurity;
 use Doctrine\ORM\EntityManagerInterface;
@@ -41,6 +42,7 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
         $this->security = $this->createMock(Security::class);
         $this->registry = $this->createMock(Registry::class);
         $this->entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
+        $this->entityWorkflowRepository = $this->createMock(EntityWorkflowRepository::class);
 
         $this->entityWorkflow = $this->createMock(EntityWorkflow::class);
         $this->workflow = $this->createMock(Workflow::class);
@@ -59,7 +61,8 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
             $this->entityManager,
             $this->security,
             $this->registry,
-            $this->entityWorkflowStepHoldRepository
+            $this->entityWorkflowStepHoldRepository,
+            $this->entityWorkflowRepository
         );
     }
 
@@ -85,20 +88,13 @@ class WorkflowOnHoldControllerTest extends KernelTestCase
             ->method('flush');
 
         $request = new Request();
-        $controller->putOnHold($this->entityWorkflow, $request);
+        $this->controller->putOnHold($this->entityWorkflow, $request);
     }
 
     public function testPutOnHoldSmokeTest(): void
     {
-        $controller = new WorkflowOnHoldController(
-            $this->entityManager,
-            $this->security,
-            $this->registry,
-            $this->entityWorkflowStepHoldRepository
-        );
-
         $request = new Request();
-        $response = $controller->putOnHold($this->entityWorkflow, $request);
+        $response = $this->controller->putOnHold($this->entityWorkflow, $request);
 
         $this->assertInstanceOf(Response::class, $response);
         $this->assertEquals(302, $response->getStatusCode());

From e29e1db6ed337cdf3856db8d7fcaa24c1351a830 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 5 Sep 2024 17:38:18 +0200
Subject: [PATCH 201/375] Take into account 'destUserByAccessKey' in the list
 of workflows associated to a user

Refactor the query to include checks for user membership via both 'destUser' and 'destUserByAccessKey'. This ensures that workflows correctly account for user access by multiple criteria.
---
 .../Repository/Workflow/EntityWorkflowRepository.php         | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 81cdcd551..f5696d2b9 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -230,7 +230,10 @@ class EntityWorkflowRepository implements ObjectRepository
 
         $qb->where(
             $qb->expr()->andX(
-                $qb->expr()->isMemberOf(':user', 'step.destUser'),
+                $qb->expr()->orX(
+                    $qb->expr()->isMemberOf(':user', 'step.destUser'),
+                    $qb->expr()->isMemberOf(':user', 'step.destUserByAccessKey'),
+                ),
                 $qb->expr()->isNull('step.transitionAfter'),
                 $qb->expr()->eq('step.isFinal', "'FALSE'")
             )

From e8f09b507f92c70b72a8d3f68b2cb55bb45abec2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 5 Sep 2024 18:00:37 +0200
Subject: [PATCH 202/375] Fix cs after php-cs-fixer upgrade, fix phpstan and
 rector errors

---
 .../Controller/WorkflowController.php         |  2 +-
 .../Controller/WorkflowOnHoldController.php   | 21 +++++++++++++++----
 .../Workflow/EntityWorkflowStepHold.php       | 20 ++++++------------
 .../EntityWorkflowStepHoldRepository.php      |  4 +---
 .../WorkflowOnHoldControllerTest.php          | 18 ++++++++++++----
 5 files changed, 39 insertions(+), 26 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 6c9ee2f8c..08776fcba 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -343,7 +343,7 @@ class WorkflowController extends AbstractController
 
                 $this->entityManager->flush();
 
-                if ($onHoldStep) {
+                if (null !== $onHoldStep) {
                     $this->entityManager->remove($onHoldStep);
                 }
 
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 36c419e79..75c9fd380 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -1,16 +1,26 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Controller;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
-use Chill\MainBundle\Security\ChillSecurity;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
@@ -22,7 +32,7 @@ class WorkflowOnHoldController extends AbstractController
         private readonly Security $security,
         private readonly Registry $registry,
         private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository,
-        private readonly EntityWorkflowRepository $entityWorkflowRepository
+        private readonly EntityWorkflowRepository $entityWorkflowRepository,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/{id}/hold', name: 'chill_main_workflow_on_hold')]
@@ -33,10 +43,14 @@ class WorkflowOnHoldController extends AbstractController
         $currentStep = $entityWorkflow->getCurrentStep();
         $currentUser = $this->security->getUser();
 
+        if (!$currentUser instanceof User) {
+            throw new AccessDeniedHttpException('only user can put a workflow on hold');
+        }
+
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $enabledTransitions = $workflow->getEnabledTransitions($entityWorkflow);
 
-        if (!count($enabledTransitions) > 0) {
+        if (0 === count($enabledTransitions)) {
             throw $this->createAccessDeniedException('You are not allowed to apply any transitions to this workflow, therefore you cannot toggle the hold status.');
         }
 
@@ -64,5 +78,4 @@ class WorkflowOnHoldController extends AbstractController
 
         return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
     }
-
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
index 47ae0f954..3f4aeb669 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
@@ -26,21 +26,13 @@ class EntityWorkflowStepHold implements TrackCreationInterface
     #[ORM\Id]
     #[ORM\GeneratedValue]
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
-    private ?int $id;
+    private ?int $id = null;
 
-    #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class)]
-    #[ORM\JoinColumn(nullable: false)]
-    private EntityWorkflowStep $step;
-
-    #[ORM\ManyToOne(targetEntity: User::class)]
-    #[ORM\JoinColumn(nullable: false)]
-    private User $byUser;
-
-    public function __construct(EntityWorkflowStep $step, User $byUser)
-    {
-        $this->step = $step;
-        $this->byUser = $byUser;
-    }
+    public function __construct(#[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class)]
+        #[ORM\JoinColumn(nullable: false)]
+        private EntityWorkflowStep $step, #[ORM\ManyToOne(targetEntity: User::class)]
+        #[ORM\JoinColumn(nullable: false)]
+        private User $byUser) {}
 
     public function getId(): ?int
     {
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
index 4b6cc7d1c..7ef877181 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -19,12 +19,10 @@ use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
 use Doctrine\ORM\NonUniqueResultException;
 use Doctrine\ORM\NoResultException;
 use Doctrine\Persistence\ManagerRegistry;
-use Symfony\Component\Workflow\Workflow;
 
 /**
  * @template-extends ServiceEntityRepository<EntityWorkflowStepHold>
  */
-
 class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
 {
     public function __construct(ManagerRegistry $registry)
@@ -92,7 +90,7 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
                 ->setParameter('user', $user)
                 ->getQuery()
                 ->getSingleResult();
-        } catch (NoResultException $e) {
+        } catch (NoResultException) {
             return null;
         }
     }
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index 8c06e9f90..f4788c2ec 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Tests\Controller;
 
 use Chill\MainBundle\Controller\WorkflowOnHoldController;
@@ -8,19 +17,20 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
-use Chill\MainBundle\Security\ChillSecurity;
 use Doctrine\ORM\EntityManagerInterface;
-use PHPUnit\Framework\TestCase;
 use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
-use Symfony\Component\DependencyInjection\ContainerInterface;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
-use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
 use Symfony\Component\Workflow\Transition;
 use Symfony\Component\Workflow\Workflow;
 
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
 class WorkflowOnHoldControllerTest extends KernelTestCase
 {
     private $entityManager;

From ad94310981d160a27c7d027c73f09c78d81f75c7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 5 Sep 2024 20:46:29 +0200
Subject: [PATCH 203/375] Refactor workflow hold functionality to avoid relying
 on database to perform some checks on "user holds entityworkflow"

Simplify the logic in handling workflow on hold status by moving related checks and operations to `EntityWorkflowStep` and `EntityWorkflow` entities. This includes implementing new methods to check if a step or workflow is held by a specific user and refactoring the controller actions to use these methods.
---
 .../Controller/WorkflowController.php         |  8 ------
 .../Controller/WorkflowOnHoldController.php   | 27 +++++++++++++------
 .../Entity/Workflow/EntityWorkflow.php        |  7 +++--
 .../Entity/Workflow/EntityWorkflowStep.php    | 11 ++++++++
 .../EntityWorkflowStepHoldRepository.php      | 18 -------------
 .../Resources/views/Workflow/index.html.twig  |  4 +--
 6 files changed, 37 insertions(+), 38 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 08776fcba..ab3d67307 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -19,7 +19,6 @@ use Chill\MainBundle\Form\WorkflowStepType;
 use Chill\MainBundle\Pagination\PaginatorFactory;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
 use Chill\MainBundle\Security\ChillSecurity;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
@@ -54,7 +53,6 @@ class WorkflowController extends AbstractController
         private readonly ChillSecurity $security,
         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
         private readonly ClockInterface $clock,
-        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository,
         private readonly EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
     ) {}
 
@@ -298,7 +296,6 @@ class WorkflowController extends AbstractController
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $errors = [];
         $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
-        $onHoldStep = $this->entityWorkflowStepHoldRepository->findByWorkflow($entityWorkflow);
 
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
@@ -343,10 +340,6 @@ class WorkflowController extends AbstractController
 
                 $this->entityManager->flush();
 
-                if (null !== $onHoldStep) {
-                    $this->entityManager->remove($onHoldStep);
-                }
-
                 return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
             }
 
@@ -365,7 +358,6 @@ class WorkflowController extends AbstractController
                 'entity_workflow' => $entityWorkflow,
                 'transition_form_errors' => $errors,
                 'signatures' => $signatures,
-                'onHoldStep' => $onHoldStep,
             ]
         );
     }
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 75c9fd380..6e4af7e22 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Controller;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
@@ -21,6 +22,7 @@ use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
@@ -62,20 +64,29 @@ class WorkflowOnHoldController extends AbstractController
         return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
     }
 
-    #[Route(path: '/{_locale}/main/workflow/{holdId}/remove_hold', name: 'chill_main_workflow_remove_hold')]
-    public function removeOnHold(int $holdId, Request $request): Response
+    #[Route(path: '/{_locale}/main/workflow/{id}/remove_hold', name: 'chill_main_workflow_remove_hold')]
+    public function removeOnHold(EntityWorkflowStep $entityWorkflowStep, Request $request): Response
     {
-        $hold = $this->entityWorkflowStepHoldRepository->findById($holdId);
-        $entityWorkflow = $hold->getStep()->getEntityWorkflow();
-        $currentUser = $this->security->getUser();
+        $user = $this->security->getUser();
 
-        if ($hold->getByUser() !== $currentUser) {
-            throw $this->createAccessDeniedException('You are not allowed to remove the hold status.');
+        if (!$user instanceof User) {
+            throw new AccessDeniedHttpException('only user can remove workflow on hold');
+        }
+
+        if (!$entityWorkflowStep->isOnHoldByUser($user)) {
+            throw new AccessDeniedHttpException('You are not allowed to remove workflow on hold');
+        }
+
+        $hold = $this->entityWorkflowStepHoldRepository->findOneByStepAndUser($entityWorkflowStep, $user);
+
+        if (null === $hold) {
+            // this should not happens...
+            throw new NotFoundHttpException();
         }
 
         $this->entityManager->remove($hold);
         $this->entityManager->flush();
 
-        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
+        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflowStep->getEntityWorkflow()->getId()]);
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 14b39a065..1f32a1985 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -339,8 +339,6 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
 
     public function isFreeze(): bool
     {
-        $steps = $this->getStepsChained();
-
         foreach ($this->getStepsChained() as $step) {
             if ($step->isFreezeAfter()) {
                 return true;
@@ -350,6 +348,11 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
         return false;
     }
 
+    public function isOnHoldByUser(User $user): bool
+    {
+        return $this->getCurrentStep()->isOnHoldByUser($user);
+    }
+
     public function isUserSubscribedToFinal(User $user): bool
     {
         return $this->subscriberToFinal->contains($user);
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 1cdb157b1..90aa632f8 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -286,6 +286,17 @@ class EntityWorkflowStep
         return $this->freezeAfter;
     }
 
+    public function isOnHoldByUser(User $user): bool
+    {
+        foreach ($this->getHoldsOnStep() as $onHold) {
+            if ($onHold->getByUser() === $user) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
     public function isWaitingForTransition(): bool
     {
         if (null !== $this->transitionAfter) {
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
index 7ef877181..a925246e4 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepHoldRepository.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
 use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
@@ -58,23 +57,6 @@ class EntityWorkflowStepHoldRepository extends ServiceEntityRepository
         return $this->findBy(['step' => $step]);
     }
 
-    /**
-     * @throws NonUniqueResultException
-     */
-    public function findByWorkflow(EntityWorkflow $workflow): ?EntityWorkflowStepHold
-    {
-        $qb = $this->getEntityManager()->createQueryBuilder();
-
-        $qb->select('h')
-            ->from(EntityWorkflowStepHold::class, 'h')
-            ->join('h.step', 's')
-            ->join('s.entityWorkflow', 'w')
-            ->where('w = :workflow')
-            ->setParameter('workflow', $workflow);
-
-        return $qb->getQuery()->getOneOrNullResult();
-    }
-
     /**
      * Find a single EntityWorkflowStepHold by step and user.
      *
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 20f617c0e..c5daff201 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -68,9 +68,9 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
 
     <ul class="record_actions sticky-form-buttons">
-        {% if onHoldStep is not null  %}
+        {% if entity_workflow.isOnHoldByUser(app.user)  %}
             <li>
-                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'holdId': onHoldStep.id}) }}"><i class="fa fa-hourglass"></i>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'id': entity_workflow.currentStep.id }) }}"><i class="fa fa-hourglass"></i>
                     {{ 'workflow.Remove hold'|trans }}
                 </a>
             </li>

From 49ad25b4c8f6869879b7786fd09fc998f4b4c933 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 6 Sep 2024 13:51:07 +0200
Subject: [PATCH 204/375] Refactor WorkflowOnHoldController and improve tests

Refactored WorkflowOnHoldController to remove dependencies and improve redirect handling. Updated test cases to use PHPUnit instead of KernelTestCase and mock proper dependencies. Added relationship handling in EntityWorkflowStep to manage EntityWorkflowStepHold instances accurately.
---
 .../Controller/WorkflowOnHoldController.php   |  32 +++--
 .../Entity/Workflow/EntityWorkflowStep.php    |   9 ++
 .../Workflow/EntityWorkflowStepHold.php       |   5 +-
 .../WorkflowOnHoldControllerTest.php          | 130 +++++++++---------
 4 files changed, 99 insertions(+), 77 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 6e4af7e22..08f62e53a 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -15,33 +15,29 @@ use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
 use Doctrine\ORM\EntityManagerInterface;
-use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
 
-class WorkflowOnHoldController extends AbstractController
+class WorkflowOnHoldController
 {
     public function __construct(
         private readonly EntityManagerInterface $entityManager,
         private readonly Security $security,
         private readonly Registry $registry,
-        private readonly EntityWorkflowStepHoldRepository $entityWorkflowStepHoldRepository,
-        private readonly EntityWorkflowRepository $entityWorkflowRepository,
+        private readonly UrlGeneratorInterface $urlGenerator,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/{id}/hold', name: 'chill_main_workflow_on_hold')]
     public function putOnHold(EntityWorkflow $entityWorkflow, Request $request): Response
     {
-        $entityWorkflow = $this->entityWorkflowRepository->find($entityWorkflow);
-
         $currentStep = $entityWorkflow->getCurrentStep();
         $currentUser = $this->security->getUser();
 
@@ -53,7 +49,7 @@ class WorkflowOnHoldController extends AbstractController
         $enabledTransitions = $workflow->getEnabledTransitions($entityWorkflow);
 
         if (0 === count($enabledTransitions)) {
-            throw $this->createAccessDeniedException('You are not allowed to apply any transitions to this workflow, therefore you cannot toggle the hold status.');
+            throw new AccessDeniedHttpException('You are not allowed to apply any transitions to this workflow, therefore you cannot toggle the hold status.');
         }
 
         $stepHold = new EntityWorkflowStepHold($currentStep, $currentUser);
@@ -61,11 +57,16 @@ class WorkflowOnHoldController extends AbstractController
         $this->entityManager->persist($stepHold);
         $this->entityManager->flush();
 
-        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflow->getId()]);
+        return new RedirectResponse(
+            $this->urlGenerator->generate(
+                'chill_main_workflow_show',
+                ['id' => $entityWorkflow->getId()]
+            )
+        );
     }
 
     #[Route(path: '/{_locale}/main/workflow/{id}/remove_hold', name: 'chill_main_workflow_remove_hold')]
-    public function removeOnHold(EntityWorkflowStep $entityWorkflowStep, Request $request): Response
+    public function removeOnHold(EntityWorkflowStep $entityWorkflowStep): Response
     {
         $user = $this->security->getUser();
 
@@ -77,7 +78,7 @@ class WorkflowOnHoldController extends AbstractController
             throw new AccessDeniedHttpException('You are not allowed to remove workflow on hold');
         }
 
-        $hold = $this->entityWorkflowStepHoldRepository->findOneByStepAndUser($entityWorkflowStep, $user);
+        $hold = $entityWorkflowStep->getHoldsOnStep()->findFirst(fn(int $index, EntityWorkflowStepHold $entityWorkflowStepHold) => $user === $entityWorkflowStepHold->getByUser());
 
         if (null === $hold) {
             // this should not happens...
@@ -87,6 +88,11 @@ class WorkflowOnHoldController extends AbstractController
         $this->entityManager->remove($hold);
         $this->entityManager->flush();
 
-        return $this->redirectToRoute('chill_main_workflow_show', ['id' => $entityWorkflowStep->getEntityWorkflow()->getId()]);
+        return new RedirectResponse(
+            $this->urlGenerator->generate(
+                'chill_main_workflow_show',
+                ['id' => $entityWorkflowStep->getEntityWorkflow()->getId()]
+            )
+        );
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 90aa632f8..c6a849da5 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -455,4 +455,13 @@ class EntityWorkflowStep
             }
         }
     }
+
+    public function addOnHold(EntityWorkflowStepHold $onHold): self
+    {
+        if (!$this->holdsOnStep->contains($onHold)) {
+            $this->holdsOnStep->add($onHold);
+        }
+
+        return $this;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
index 3f4aeb669..3d163dfc5 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepHold.php
@@ -32,7 +32,10 @@ class EntityWorkflowStepHold implements TrackCreationInterface
         #[ORM\JoinColumn(nullable: false)]
         private EntityWorkflowStep $step, #[ORM\ManyToOne(targetEntity: User::class)]
         #[ORM\JoinColumn(nullable: false)]
-        private User $byUser) {}
+        private User $byUser)
+    {
+        $step->addOnHold($this);
+    }
 
     public function getId(): ?int
     {
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
index f4788c2ec..198adca5f 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowOnHoldControllerTest.php
@@ -12,101 +12,105 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Tests\Controller;
 
 use Chill\MainBundle\Controller\WorkflowOnHoldController;
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepHold;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepHoldRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
 use Doctrine\ORM\EntityManagerInterface;
-use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use PHPUnit\Framework\TestCase;
 use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\DefinitionBuilder;
 use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
 use Symfony\Component\Workflow\Transition;
 use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
 
 /**
  * @internal
  *
  * @coversNothing
  */
-class WorkflowOnHoldControllerTest extends KernelTestCase
+class WorkflowOnHoldControllerTest extends TestCase
 {
-    private $entityManager;
-    private $security;
-    private $registry;
-    private $entityWorkflowStepHoldRepository;
-    private $entityWorkflow;
-    private $workflow;
-    private $currentStep;
-    private $currentUser;
-    private $controller;
-
-    protected function setUp(): void
+    private function buildRegistry(): Registry
     {
-        self::bootKernel();
+        $definitionBuilder = new DefinitionBuilder();
+        $definition = $definitionBuilder
+            ->addPlaces(['initial', 'layout', 'sign'])
+            ->addTransition(new Transition('to_layout', 'initial', 'layout'))
+            ->addTransition(new Transition('to_sign', 'initial', 'sign'))
+            ->build();
 
-        // Mocks
-        $this->entityManager = $this->createMock(EntityManagerInterface::class);
-        $this->security = $this->createMock(Security::class);
-        $this->registry = $this->createMock(Registry::class);
-        $this->entityWorkflowStepHoldRepository = $this->createMock(EntityWorkflowStepHoldRepository::class);
-        $this->entityWorkflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $workflow = new Workflow($definition, new EntityWorkflowMarkingStore(), name: 'dummy_workflow');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
 
-        $this->entityWorkflow = $this->createMock(EntityWorkflow::class);
-        $this->workflow = $this->createMock(Workflow::class);
-        $this->currentStep = $this->createMock(EntityWorkflowStep::class);
-        $this->currentUser = $this->createMock(\Chill\MainBundle\Entity\User::class);
-
-        // Define expected behaviors for the mocks
-        $this->entityWorkflow->method('getCurrentStep')->willReturn($this->currentStep);
-        $this->security->method('getUser')->willReturn($this->currentUser);
-        $this->entityWorkflow->method('getWorkflowName')->willReturn('workflow_name');
-        $this->registry->method('get')->with($this->entityWorkflow, 'workflow_name')->willReturn($this->workflow);
-        $this->workflow->method('getEnabledTransitions')->with($this->entityWorkflow)->willReturn([]);
-        $this->entityWorkflow->method('getUsersInvolved')->willReturn([]);
-
-        $this->controller = new WorkflowOnHoldController(
-            $this->entityManager,
-            $this->security,
-            $this->registry,
-            $this->entityWorkflowStepHoldRepository,
-            $this->entityWorkflowRepository
-        );
+        return $registry;
     }
 
     public function testPutOnHoldPersistence(): void
     {
-        // Adjust mock for getEnabledTransitions to return a non-empty array
-        $transition = $this->createMock(Transition::class);
-        $transition->method('getName')->willReturn('dummy_transition');
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy_workflow');
+        $security = $this->createMock(Security::class);
+        $security->method('getUser')->willReturn($user = new User());
 
-        $this->workflow->method('getEnabledTransitions')
-            ->with($this->entityWorkflow)
-            ->willReturn([$transition]);
-
-        $this->workflow->method('can')
-            ->with($this->entityWorkflow, 'dummy_transition')
-            ->willReturn(true);
-
-        $this->entityManager->expects($this->once())
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $entityManager->expects($this->once())
             ->method('persist')
             ->with($this->isInstanceOf(EntityWorkflowStepHold::class));
 
-        $this->entityManager->expects($this->once())
+        $entityManager->expects($this->once())
             ->method('flush');
 
+        $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
+        $urlGenerator->method('generate')
+            ->with('chill_main_workflow_show', ['id' => null])
+            ->willReturn('/some/url');
+
+        $controller = new WorkflowOnHoldController($entityManager, $security, $this->buildRegistry(), $urlGenerator);
+
         $request = new Request();
-        $this->controller->putOnHold($this->entityWorkflow, $request);
+        $response = $controller->putOnHold($entityWorkflow, $request);
+
+        self::assertEquals(302, $response->getStatusCode());
     }
 
-    public function testPutOnHoldSmokeTest(): void
+    public function testRemoveOnHold(): void
     {
-        $request = new Request();
-        $response = $this->controller->putOnHold($this->entityWorkflow, $request);
+        $user = new User();
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy_workflow');
+        $onHold = new EntityWorkflowStepHold($step = $entityWorkflow->getCurrentStep(), $user);
 
-        $this->assertInstanceOf(Response::class, $response);
-        $this->assertEquals(302, $response->getStatusCode());
+        $security = $this->createMock(Security::class);
+        $security->method('getUser')->willReturn($user);
+
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $entityManager->expects($this->once())
+            ->method('remove')
+            ->with($onHold);
+
+        $entityManager->expects($this->once())
+            ->method('flush');
+
+        $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
+        $urlGenerator->method('generate')
+            ->with('chill_main_workflow_show', ['id' => null])
+            ->willReturn('/some/url');
+
+        $controller = new WorkflowOnHoldController($entityManager, $security, $this->buildRegistry(), $urlGenerator);
+
+        $response = $controller->removeOnHold($step);
+
+        self::assertEquals(302, $response->getStatusCode());
     }
 }

From 4d73f9b81af03b9cfb30188bfd6a6a7a26ca3e8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 6 Sep 2024 14:07:51 +0200
Subject: [PATCH 205/375] Rename Convert to ConvertController for clarity

Renamed Convert class and relevant references to ConvertController to improve clarity and maintain consistency. Updated corresponding test files and route configurations to reflect the new name.
---
 .../{Convert.php => ConvertController.php}         |  2 +-
 .../src/Resources/config/routes/routes.php         |  2 +-
 .../{ConvertTest.php => ConvertControllerTest.php} | 14 ++++++++------
 3 files changed, 10 insertions(+), 8 deletions(-)
 rename src/Bundle/ChillWopiBundle/src/Controller/{Convert.php => ConvertController.php} (99%)
 rename src/Bundle/ChillWopiBundle/tests/Controller/{ConvertTest.php => ConvertControllerTest.php} (86%)

diff --git a/src/Bundle/ChillWopiBundle/src/Controller/Convert.php b/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
similarity index 99%
rename from src/Bundle/ChillWopiBundle/src/Controller/Convert.php
rename to src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
index 16be18803..73207e13a 100644
--- a/src/Bundle/ChillWopiBundle/src/Controller/Convert.php
+++ b/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
@@ -31,7 +31,7 @@ use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
 use Symfony\Contracts\HttpClient\HttpClientInterface;
 use Symfony\Contracts\HttpClient\ResponseInterface;
 
-class Convert
+class ConvertController
 {
     private const LOG_PREFIX = '[convert] ';
 
diff --git a/src/Bundle/ChillWopiBundle/src/Resources/config/routes/routes.php b/src/Bundle/ChillWopiBundle/src/Resources/config/routes/routes.php
index 2272c9efd..62837a3ce 100644
--- a/src/Bundle/ChillWopiBundle/src/Resources/config/routes/routes.php
+++ b/src/Bundle/ChillWopiBundle/src/Resources/config/routes/routes.php
@@ -19,5 +19,5 @@ return static function (RoutingConfigurator $routes) {
 
     $routes
         ->add('chill_wopi_object_convert', '/convert/{uuid}')
-        ->controller(Chill\WopiBundle\Controller\Convert::class);
+        ->controller(Chill\WopiBundle\Controller\ConvertController::class);
 };
diff --git a/src/Bundle/ChillWopiBundle/tests/Controller/ConvertTest.php b/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
similarity index 86%
rename from src/Bundle/ChillWopiBundle/tests/Controller/ConvertTest.php
rename to src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
index 2bc3f4769..0a928bcd9 100644
--- a/src/Bundle/ChillWopiBundle/tests/Controller/ConvertTest.php
+++ b/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
@@ -14,7 +14,7 @@ namespace Chill\WopiBundle\Tests\Controller;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\User;
-use Chill\WopiBundle\Controller\Convert;
+use Chill\WopiBundle\Controller\ConvertController;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Psr\Log\NullLogger;
@@ -30,13 +30,14 @@ use Symfony\Component\Security\Core\Security;
  *
  * @coversNothing
  */
-final class ConvertTest extends TestCase
+final class ConvertControllerTest extends TestCase
 {
     use ProphecyTrait;
 
     public function testConversionFailed(): void
     {
-        $storedObject = (new StoredObject())->setType('application/vnd.oasis.opendocument.text');
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion(type: 'application/vnd.oasis.opendocument.text');
 
         $httpClient = new MockHttpClient([
             new MockResponse('not authorized', ['http_code' => 401]),
@@ -50,7 +51,7 @@ final class ConvertTest extends TestCase
 
         $parameterBag = new ParameterBag(['wopi' => ['server' => 'http://collabora:9980']]);
 
-        $convert = new Convert(
+        $convert = new ConvertController(
             $httpClient,
             $this->makeRequestStack(),
             $security->reveal(),
@@ -66,7 +67,8 @@ final class ConvertTest extends TestCase
 
     public function testEverythingWentFine(): void
     {
-        $storedObject = (new StoredObject())->setType('application/vnd.oasis.opendocument.text');
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion(type: 'application/vnd.oasis.opendocument.text');
 
         $httpClient = new MockHttpClient([
             new MockResponse('1234', ['http_code' => 200]),
@@ -80,7 +82,7 @@ final class ConvertTest extends TestCase
 
         $parameterBag = new ParameterBag(['wopi' => ['server' => 'http://collabora:9980']]);
 
-        $convert = new Convert(
+        $convert = new ConvertController(
             $httpClient,
             $this->makeRequestStack(),
             $security->reveal(),

From bf056046abea186d67169c0de40c53af623dbd13 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 6 Sep 2024 14:40:25 +0200
Subject: [PATCH 206/375] Fix cs

---
 .../ChillMainBundle/Controller/WorkflowOnHoldController.php     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
index 08f62e53a..077b8effa 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowOnHoldController.php
@@ -78,7 +78,7 @@ class WorkflowOnHoldController
             throw new AccessDeniedHttpException('You are not allowed to remove workflow on hold');
         }
 
-        $hold = $entityWorkflowStep->getHoldsOnStep()->findFirst(fn(int $index, EntityWorkflowStepHold $entityWorkflowStepHold) => $user === $entityWorkflowStepHold->getByUser());
+        $hold = $entityWorkflowStep->getHoldsOnStep()->findFirst(fn (int $index, EntityWorkflowStepHold $entityWorkflowStepHold) => $user === $entityWorkflowStepHold->getByUser());
 
         if (null === $hold) {
             // this should not happens...

From 860ae5cedfda6aa67511555d06362b0f502e2afb Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 8 Aug 2024 17:00:27 +0200
Subject: [PATCH 207/375] Create CancelStaleWorkflow message and handler

---
 .../Service/Workflow/CancelStaleWorkflow.php  | 15 ++++++++++
 .../Workflow/CancelStaleWorkflowHandler.php   | 30 +++++++++++++++++++
 2 files changed, 45 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
 create mode 100644 src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
new file mode 100644
index 000000000..d13ca039e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
@@ -0,0 +1,15 @@
+<?php
+
+namespace Chill\MainBundle\Service\Workflow;
+
+class CancelStaleWorkflow
+{
+    public function __construct(public array $workflowIds)
+    {
+    }
+
+    public function getWorkflowIds(): array
+    {
+        return $this->workflowIds;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
new file mode 100644
index 000000000..aff22d1e3
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -0,0 +1,30 @@
+<?php
+
+namespace Chill\MainBundle\Service\Workflow;
+
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Doctrine\ORM\EntityManagerInterface;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+
+class CancelStaleWorkflowHandler implements MessageHandlerInterface
+{
+    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private EntityManagerInterface $em, private LoggerInterface $logger)
+    {
+
+    }
+
+    public function __invoke(CancelStaleWorkflow $message): void
+    {
+        $workflowIds = $message->getWorkflowIds();
+
+        foreach ($workflowIds as $workflowId) {
+            $workflow = $this->workflowRepository->find($workflowId);
+
+            $steps = $workflow->getSteps();
+
+
+        }
+    }
+
+}

From 34edb02cd06ea8bfcf662b14123682017ad9c625 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 11:44:31 +0200
Subject: [PATCH 208/375] Create message and handler for canceling stale
 workflows

---
 .../Service/Workflow/CancelStaleWorkflow.php  |  6 +--
 .../Workflow/CancelStaleWorkflowHandler.php   | 43 +++++++++++++++----
 2 files changed, 38 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
index d13ca039e..078402855 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
@@ -4,12 +4,12 @@ namespace Chill\MainBundle\Service\Workflow;
 
 class CancelStaleWorkflow
 {
-    public function __construct(public array $workflowIds)
+    public function __construct(public int $workflowId)
     {
     }
 
-    public function getWorkflowIds(): array
+    public function getWorkflowId(): int
     {
-        return $this->workflowIds;
+        return $this->workflowId;
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index aff22d1e3..e35464f1d 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -5,26 +5,53 @@ namespace Chill\MainBundle\Service\Workflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
-use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+use Symfony\Component\Messenger\Attribute\AsMessageHandler;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Workflow\Registry;
 
-class CancelStaleWorkflowHandler implements MessageHandlerInterface
+#[AsMessageHandler]
+class CancelStaleWorkflowHandler
 {
-    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private EntityManagerInterface $em, private LoggerInterface $logger)
+    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private EntityManagerInterface $em, private LoggerInterface $logger)
     {
-
     }
 
     public function __invoke(CancelStaleWorkflow $message): void
     {
-        $workflowIds = $message->getWorkflowIds();
+        $workflowId = $message->getWorkflowId();
 
-        foreach ($workflowIds as $workflowId) {
-            $workflow = $this->workflowRepository->find($workflowId);
+        $workflow = $this->workflowRepository->find($workflowId);
+        $workflowComponent = $this->registry->get($workflow, $workflow->getWorkflowName());
+        $metadataStore = $workflowComponent->getMetadataStore();
+        $transitions = $workflowComponent->getEnabledTransitions($workflow);
+        $steps = $workflow->getSteps();
 
-            $steps = $workflow->getSteps();
+        $transitionApplied = false;
 
+        if (count($steps) === 1) {
+            $this->em->remove($workflow->getCurrentStep());
+            $this->em->remove($workflow);
+        } else {
+            foreach ($transitions as $transition) {
+                $isFinal = $metadataStore->getMetadata('isFinal', $transition);
+                $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
 
+                if ($isFinal && !$isFinalPositive) {
+                    $workflowComponent->apply($workflow, 'annule');
+                    $this->logger->info(sprintf('EntityWorkflow %d has been transitioned.', $workflowId));
+                    $transitionApplied = true;
+                    break;
+                }
+            }
+
+            if (!$transitionApplied) {
+                $this->logger->error(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
+                throw new UnrecoverableMessageHandlingException(
+                    sprintf('No valid transition found for EntityWorkflow %d.', $workflowId)
+                );
+            }
         }
+
     }
 
 }

From 29fec50515e3daa1864913b8b4249198ef92f246 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 11:45:27 +0200
Subject: [PATCH 209/375] Add cronjob and repository method to find and cancel
 stale workflows every other day

---
 .../Workflow/EntityWorkflowRepository.php     | 13 +++++
 .../Workflow/CancelStaleWorkflowCronJob.php   | 55 +++++++++++++++++++
 2 files changed, 68 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index f5696d2b9..b6e2e0814 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -198,6 +198,19 @@ class EntityWorkflowRepository implements ObjectRepository
         return $this->repository->findOneBy($criteria);
     }
 
+    public function findWorkflowsWithoutFinalStepAndOlderThan(\DateTimeImmutable $olderThanDate)
+    {
+        $qb = $this->repository->createQueryBuilder('sw');
+
+        $qb->select('sw.id')
+            ->where('NOT EXISTS (SELECT 1 FROM chill_main_entity_workflow_step ews WHERE ews.isFinal = TRUE AND ews.entityWorkflow = sw.id)')
+            ->andWhere(':olderThanDate > ALL (SELECT ews.transitionAt FROM chill_main_entity_workflow_step ews WHERE ews.transitionAt IS NOT NULL AND ews.entityWorkflow = sw.id)')
+            ->andWhere('sw.createdAt < :olderThanDate')
+            ->setParameter('olderThanDate', $olderThanDate);
+
+        return $qb->getQuery()->getResult();
+    }
+
     public function getClassName(): string
     {
         return EntityWorkflow::class;
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
new file mode 100644
index 000000000..2114396f0
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace Chill\MainBundle\Service\Workflow;
+
+use Chill\MainBundle\Cron\CronJobInterface;
+use Chill\MainBundle\Entity\CronJobExecution;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use DateInterval;
+use Doctrine\DBAL\Connection;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+class CancelStaleWorkflowCronJob implements CronJobInterface
+{
+    public const KEY = 'remove-stale-workflow';
+
+    public const KEEP_INTERVAL = 'P90D';
+
+    private const LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
+
+    public function __construct(private readonly EntityWorkflowRepository $workflowRepository,
+                                private readonly ClockInterface           $clock,
+                                private readonly MessageBusInterface      $messageBus,
+    )
+    {
+    }
+
+    public function canRun(?CronJobExecution $cronJobExecution): bool
+    {
+        return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new DateInterval('P1D'));
+    }
+
+    public function getKey(): string
+    {
+        return self::KEY;
+    }
+
+    public function run(array $lastExecutionData): ?array
+    {
+        $olderThanDate = $this->clock->now()->sub(new DateInterval(self::KEEP_INTERVAL));
+
+        $staleWorkflowIds = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
+
+        $lastCanceled = self::LAST_CANCELED_WORKFLOW;
+
+        foreach ($staleWorkflowIds as $wId) {
+            $this->messageBus->dispatch(new CancelStaleWorkflow($wId));
+            $lastCanceled = $wId;
+        }
+
+        return [self::LAST_CANCELED_WORKFLOW => $lastCanceled];
+    }
+
+}

From 6001bb6447e025f4d18fea1a2952295987932be5 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 12:05:03 +0200
Subject: [PATCH 210/375] Add logger messages for possible debugging purposes

---
 .../Workflow/CancelStaleWorkflowCronJob.php   | 26 ++++++++++++-------
 1 file changed, 17 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index 2114396f0..d8888efe8 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -6,22 +6,22 @@ use Chill\MainBundle\Cron\CronJobInterface;
 use Chill\MainBundle\Entity\CronJobExecution;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use DateInterval;
-use Doctrine\DBAL\Connection;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\MessageBusInterface;
 
 class CancelStaleWorkflowCronJob implements CronJobInterface
 {
-    public const KEY = 'remove-stale-workflow';
+    public const string KEY = 'remove-stale-workflow';
 
-    public const KEEP_INTERVAL = 'P90D';
+    public const string KEEP_INTERVAL = 'P90D';
 
-    private const LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
+    private const string LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
 
     public function __construct(private readonly EntityWorkflowRepository $workflowRepository,
                                 private readonly ClockInterface           $clock,
                                 private readonly MessageBusInterface      $messageBus,
+                                private readonly LoggerInterface           $logger,
     )
     {
     }
@@ -38,18 +38,26 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
 
     public function run(array $lastExecutionData): ?array
     {
+        $this->logger->info('Cronjob started: Canceling stale workflows.');
+
         $olderThanDate = $this->clock->now()->sub(new DateInterval(self::KEEP_INTERVAL));
-
         $staleWorkflowIds = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
-
         $lastCanceled = self::LAST_CANCELED_WORKFLOW;
+        $processedCount = 0;
 
         foreach ($staleWorkflowIds as $wId) {
-            $this->messageBus->dispatch(new CancelStaleWorkflow($wId));
-            $lastCanceled = $wId;
+            try {
+                $this->messageBus->dispatch(new CancelStaleWorkflow($wId));
+                $lastCanceled = $wId;
+                $processedCount++;
+            } catch (\Exception $e) {
+                 $this->logger->error("Failed to dispatch CancelStaleWorkflow for ID {$wId}", ['exception' => $e]);
+                 continue;
+            }
         }
 
+        $this->logger->info("Cronjob completed: {$processedCount} workflows processed.");
+
         return [self::LAST_CANCELED_WORKFLOW => $lastCanceled];
     }
-
 }

From dab68fb4090c801bfe0ff4ad7ee0b8ac68f3228f Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 12:05:31 +0200
Subject: [PATCH 211/375] Add CancelStaleWorkflowCronJobTest

---
 .../CancelStaleWorkflowCronJobTest.php        | 107 ++++++++++++++++++
 1 file changed, 107 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
new file mode 100644
index 000000000..6b654f4df
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -0,0 +1,107 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Services\Workflow;
+
+use Chill\MainBundle\Entity\CronJobExecution;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowCronJob;
+use Doctrine\DBAL\Connection;
+use PHPUnit\Framework\MockObject\Exception;
+use Psr\Log\LoggerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\MessageBusInterface;
+
+class CancelStaleWorkflowCronJobTest extends KernelTestCase
+{
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->connection = self::getContainer()->get(Connection::class);
+    }
+
+    /**
+     * @dataProvider buildTestCanRunData
+     * @throws \Exception
+     */
+    public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
+    {
+        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+        $logger = $this->createMock(LoggerInterface::class);
+
+        $cronJob = new CancelStaleWorkflowCronJob($this->createMock(EntityWorkflowRepository::class), $clock, $this->buildMessageBus(), $logger);
+
+        self::assertEquals($expected, $cronJob->canRun($cronJobExecution));
+    }
+
+    /**
+     * @throws \DateMalformedStringException
+     * @throws \DateInvalidTimeZoneException
+     * @throws Exception
+     */
+    public function testRun(): void
+    {
+        $clock = new MockClock((new \DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
+        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $logger = $this->createMock(LoggerInterface::class);
+
+        $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([1, 2, 3]);
+        $messageBus = $this->buildMessageBus(true);
+
+        $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, $logger);
+
+        $results = $cronJob->run([]);
+
+        // Assert the result has the last canceled workflow ID
+        self::assertArrayHasKey('last-canceled-workflow-id', $results);
+        self::assertEquals(3, $results['last-canceled-workflow-id']);
+    }
+
+    /**
+     * @throws \Exception
+     */
+    public static function buildTestCanRunData(): iterable
+    {
+        yield [
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
+            true,
+        ];
+
+        yield [
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
+            false,
+        ];
+    }
+
+    private function buildMessageBus(bool $expectDispatchAtLeastOnce = false): MessageBusInterface
+    {
+        $messageBus = $this->createMock(MessageBusInterface::class);
+
+        $methodDispatch = match ($expectDispatchAtLeastOnce) {
+            true => $messageBus->expects($this->atLeastOnce())->method('dispatch')->with($this->isInstanceOf(CancelStaleWorkflow::class)),
+            false => $messageBus->method('dispatch'),
+        };
+
+        $methodDispatch->willReturnCallback(function (CancelStaleWorkflow $message) {
+            return new Envelope($message);
+        });
+
+        return $messageBus;
+    }
+}

From 35199b69934729e9956bcde41df501f014e74113 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 15:49:22 +0200
Subject: [PATCH 212/375] Create test for CancelStaleWorkflowHandler: wip state

---
 .../CancelStaleWorkflowHandlerTest.php        | 126 ++++++++++++++++++
 1 file changed, 126 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
new file mode 100644
index 000000000..8e2a5ec95
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -0,0 +1,126 @@
+<?php
+
+namespace Services\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowHandler;
+use Doctrine\Common\Collections\ArrayCollection;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Workflow\Metadata\MetadataStoreInterface;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+class CancelStaleWorkflowHandlerTest extends TestCase
+{
+    public function testInvokeWorkflowWithOneStep(): void
+    {
+        $workflow = $this->createMock(EntityWorkflow::class);
+        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class)]));
+        $workflow->expects($this->once())->method('getCurrentStep')->willReturn(new EntityWorkflowStep());
+
+        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
+
+        $em = $this->createMock(EntityManagerInterface::class);
+        $em->expects($this->exactly(2))->method('remove')->with($this->isInstanceOf(EntityWorkflowStep::class));
+        $em->expects($this->once())->method('flush');
+
+        $registry = $this->createMock(Registry::class);
+        $logger = $this->createMock(LoggerInterface::class);
+
+        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
+
+        $handler(new CancelStaleWorkflow(1));
+    }
+
+    public function testInvokeWorkflowWithMultipleStepsAndValidTransition(): void
+    {
+        $workflow = $this->createMock(EntityWorkflow::class);
+        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class), $this->createMock(EntityWorkflowStep::class)]));
+
+        $transition = $this->createMock(Transition::class);
+
+        $workflowComponent = $this->createMock(WorkflowInterface::class);
+        $registryMock = $this->createMock(Registry::class);
+        $registryMock->method('get')
+            ->willReturn($workflowComponent);
+
+        $workflowComponent->method('getEnabledTransitions')->willReturn([$transition]);
+        $workflowComponent->expects($this->once())->method('apply')->with($workflow, 'annule');
+
+        $metadataStore = $this->createMock(MetadataStore::class);
+        $metadataStore->method('getMetadata')->willReturnMap([
+            ['isFinal', $transition, true],
+            ['isFinalPositive', $transition, false],
+        ]);
+
+        $workflowComponent->method('getMetadataStore')->willReturn($metadataStore);
+
+        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
+
+        $em = $this->createMock(EntityManagerInterface::class);
+        $em->expects($this->never())->method('remove');
+        $em->expects($this->once())->method('flush');
+
+        $registry = $this->createMock(Registry::class);
+        $registry->method('get')->willReturn($workflowComponent);
+
+        $logger = $this->createMock(LoggerInterface::class);
+        $logger->expects($this->once())->method('info')->with('EntityWorkflow 1 has been transitioned.');
+
+        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
+
+        $handler(new CancelStaleWorkflow(1));
+    }
+
+    public function testInvokeWorkflowWithMultipleStepsAndNoValidTransition(): void
+    {
+        $this->expectException(UnrecoverableMessageHandlingException::class);
+        $this->expectExceptionMessage('No valid transition found for EntityWorkflow 1.');
+
+        $workflow = $this->createMock(EntityWorkflow::class);
+        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class), $this->createMock(EntityWorkflowStep::class)]));
+
+        $transition = $this->createMock(Transition::class);
+
+        $workflowComponent = $this->createMock(WorkflowInterface::class);
+        $registryMock = $this->createMock(Registry::class);
+        $registryMock->method('get')
+            ->willReturn($workflowComponent);
+        $workflowComponent->method('getEnabledTransitions')->willReturn([$transition]);
+
+        $metadataStore = $this->createMock(MetadataStoreInterface::class);
+        $metadataStore->method('getMetadata')->willReturnMap([
+            ['isFinal', $transition, false],
+            ['isFinalPositive', $transition, true],
+        ]);
+
+        $workflowComponent->method('getMetadataStore')->willReturn($metadataStore);
+
+        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
+
+        $em = $this->createMock(EntityManagerInterface::class);
+        $em->expects($this->never())->method('remove');
+        $em->expects($this->never())->method('flush');
+
+        $registry = $this->createMock(Registry::class);
+        $registry->method('get')->willReturn($workflowComponent);
+
+        $logger = $this->createMock(LoggerInterface::class);
+        $logger->expects($this->once())->method('error')->with('No valid transition found for EntityWorkflow 1.');
+
+        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
+
+        $handler(new CancelStaleWorkflow(1));
+    }
+}

From 5d84e997c1e5337f73cbd1061a424291a52deef5 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Mon, 12 Aug 2024 15:52:21 +0200
Subject: [PATCH 213/375] Php cs fixes

---
 .../Service/Workflow/CancelStaleWorkflow.php  | 13 ++++++--
 .../Workflow/CancelStaleWorkflowCronJob.php   | 33 +++++++++++--------
 .../Workflow/CancelStaleWorkflowHandler.php   | 21 +++++++-----
 .../CancelStaleWorkflowCronJobTest.php        |  6 ++++
 .../CancelStaleWorkflowHandlerTest.php        | 15 ++++++++-
 5 files changed, 62 insertions(+), 26 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
index 078402855..118b9f57e 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
@@ -1,12 +1,19 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Service\Workflow;
 
 class CancelStaleWorkflow
 {
-    public function __construct(public int $workflowId)
-    {
-    }
+    public function __construct(public int $workflowId) {}
 
     public function getWorkflowId(): int
     {
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index d8888efe8..cb6f1c971 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -1,11 +1,19 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Service\Workflow;
 
 use Chill\MainBundle\Cron\CronJobInterface;
 use Chill\MainBundle\Entity\CronJobExecution;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use DateInterval;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\MessageBusInterface;
@@ -18,17 +26,16 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
 
     private const string LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
 
-    public function __construct(private readonly EntityWorkflowRepository $workflowRepository,
-                                private readonly ClockInterface           $clock,
-                                private readonly MessageBusInterface      $messageBus,
-                                private readonly LoggerInterface           $logger,
-    )
-    {
-    }
+    public function __construct(
+        private readonly EntityWorkflowRepository $workflowRepository,
+        private readonly ClockInterface $clock,
+        private readonly MessageBusInterface $messageBus,
+        private readonly LoggerInterface $logger,
+    ) {}
 
     public function canRun(?CronJobExecution $cronJobExecution): bool
     {
-        return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new DateInterval('P1D'));
+        return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new \DateInterval('P1D'));
     }
 
     public function getKey(): string
@@ -40,7 +47,7 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
     {
         $this->logger->info('Cronjob started: Canceling stale workflows.');
 
-        $olderThanDate = $this->clock->now()->sub(new DateInterval(self::KEEP_INTERVAL));
+        $olderThanDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
         $staleWorkflowIds = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
         $lastCanceled = self::LAST_CANCELED_WORKFLOW;
         $processedCount = 0;
@@ -49,10 +56,10 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
             try {
                 $this->messageBus->dispatch(new CancelStaleWorkflow($wId));
                 $lastCanceled = $wId;
-                $processedCount++;
+                ++$processedCount;
             } catch (\Exception $e) {
-                 $this->logger->error("Failed to dispatch CancelStaleWorkflow for ID {$wId}", ['exception' => $e]);
-                 continue;
+                $this->logger->error("Failed to dispatch CancelStaleWorkflow for ID {$wId}", ['exception' => $e]);
+                continue;
             }
         }
 
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index e35464f1d..533283a59 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\MainBundle\Service\Workflow;
 
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
@@ -12,9 +21,7 @@ use Symfony\Component\Workflow\Registry;
 #[AsMessageHandler]
 class CancelStaleWorkflowHandler
 {
-    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private EntityManagerInterface $em, private LoggerInterface $logger)
-    {
-    }
+    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private EntityManagerInterface $em, private LoggerInterface $logger) {}
 
     public function __invoke(CancelStaleWorkflow $message): void
     {
@@ -28,7 +35,7 @@ class CancelStaleWorkflowHandler
 
         $transitionApplied = false;
 
-        if (count($steps) === 1) {
+        if (1 === count($steps)) {
             $this->em->remove($workflow->getCurrentStep());
             $this->em->remove($workflow);
         } else {
@@ -46,12 +53,8 @@ class CancelStaleWorkflowHandler
 
             if (!$transitionApplied) {
                 $this->logger->error(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
-                throw new UnrecoverableMessageHandlingException(
-                    sprintf('No valid transition found for EntityWorkflow %d.', $workflowId)
-                );
+                throw new UnrecoverableMessageHandlingException(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
             }
         }
-
     }
-
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index 6b654f4df..b56faf79b 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -23,6 +23,11 @@ use Symfony\Component\Clock\MockClock;
 use Symfony\Component\Messenger\Envelope;
 use Symfony\Component\Messenger\MessageBusInterface;
 
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
 class CancelStaleWorkflowCronJobTest extends KernelTestCase
 {
     protected function setUp(): void
@@ -33,6 +38,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
 
     /**
      * @dataProvider buildTestCanRunData
+     *
      * @throws \Exception
      */
     public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index 8e2a5ec95..f7887a6cd 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -1,5 +1,14 @@
 <?php
 
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Services\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
@@ -15,9 +24,13 @@ use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
 use Symfony\Component\Workflow\Metadata\MetadataStoreInterface;
 use Symfony\Component\Workflow\Registry;
 use Symfony\Component\Workflow\Transition;
-use Symfony\Component\Workflow\Workflow;
 use Symfony\Component\Workflow\WorkflowInterface;
 
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
 class CancelStaleWorkflowHandlerTest extends TestCase
 {
     public function testInvokeWorkflowWithOneStep(): void

From cb446edd18a1145db1ef48428109ad064474c066 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 11:52:01 +0200
Subject: [PATCH 214/375] Suffix message class with 'Message' and add check on
 workflow to assert no transitions were applied since message placed in queue

---
 .../Workflow/CancelStaleWorkflowCronJob.php   |  4 +--
 .../Workflow/CancelStaleWorkflowHandler.php   | 27 +++++++++++++++----
 ...low.php => CancelStaleWorkflowMessage.php} |  2 +-
 .../CancelStaleWorkflowCronJobTest.php        | 24 ++++++++++-------
 .../CancelStaleWorkflowHandlerTest.php        |  7 ++---
 5 files changed, 43 insertions(+), 21 deletions(-)
 rename src/Bundle/ChillMainBundle/Service/Workflow/{CancelStaleWorkflow.php => CancelStaleWorkflowMessage.php} (92%)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index cb6f1c971..786bae3c9 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -54,8 +54,8 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
 
         foreach ($staleWorkflowIds as $wId) {
             try {
-                $this->messageBus->dispatch(new CancelStaleWorkflow($wId));
-                $lastCanceled = $wId;
+                $this->messageBus->dispatch(new CancelStaleWorkflowMessage($wId));
+                $lastCanceled = max($wId, $lastCanceled);
                 ++$processedCount;
             } catch (\Exception $e) {
                 $this->logger->error("Failed to dispatch CancelStaleWorkflow for ID {$wId}", ['exception' => $e]);
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index 533283a59..a3eefb193 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -14,6 +14,7 @@ namespace Chill\MainBundle\Service\Workflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
+use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\Attribute\AsMessageHandler;
 use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
 use Symfony\Component\Workflow\Registry;
@@ -21,13 +22,29 @@ use Symfony\Component\Workflow\Registry;
 #[AsMessageHandler]
 class CancelStaleWorkflowHandler
 {
-    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private EntityManagerInterface $em, private LoggerInterface $logger) {}
+    public const string KEEP_INTERVAL = 'P90D';
 
-    public function __invoke(CancelStaleWorkflow $message): void
+    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private readonly EntityManagerInterface $em, private readonly LoggerInterface $logger, private readonly ClockInterface $clock) {}
+
+    public function __invoke(CancelStaleWorkflowMessage $message): void
     {
         $workflowId = $message->getWorkflowId();
 
+        $olderThanDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
+        $staleWorkflows = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
+
         $workflow = $this->workflowRepository->find($workflowId);
+
+        if (in_array($workflow, $staleWorkflows, true)) {
+            $this->logger->alert('Workflow has transitioned in the meantime.', [$workflowId]);
+            return;
+        }
+
+        if (null === $workflow) {
+            $this->logger->alert('Workflow was not found!', [$workflowId]);
+            return;
+        }
+
         $workflowComponent = $this->registry->get($workflow, $workflow->getWorkflowName());
         $metadataStore = $workflowComponent->getMetadataStore();
         $transitions = $workflowComponent->getEnabledTransitions($workflow);
@@ -44,15 +61,15 @@ class CancelStaleWorkflowHandler
                 $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
 
                 if ($isFinal && !$isFinalPositive) {
-                    $workflowComponent->apply($workflow, 'annule');
-                    $this->logger->info(sprintf('EntityWorkflow %d has been transitioned.', $workflowId));
+                    $workflowComponent->apply($workflow, $transition->getName());
+                    $this->logger->info('EntityWorkflow has been cancelled automatically.', [$workflowId]);
                     $transitionApplied = true;
                     break;
                 }
             }
 
             if (!$transitionApplied) {
-                $this->logger->error(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
+                $this->logger->error('No valid transition found for EntityWorkflow %d.', [$workflowId]);
                 throw new UnrecoverableMessageHandlingException(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
             }
         }
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowMessage.php
similarity index 92%
rename from src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
rename to src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowMessage.php
index 118b9f57e..30d2b6ab8 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowMessage.php
@@ -11,7 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Service\Workflow;
 
-class CancelStaleWorkflow
+class CancelStaleWorkflowMessage
 {
     public function __construct(public int $workflowId) {}
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index b56faf79b..f433e8b48 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -15,6 +15,10 @@ use Chill\MainBundle\Entity\CronJobExecution;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowCronJob;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
+use DateInvalidTimeZoneException;
+use DateMalformedStringException;
+use DateTimeImmutable;
 use Doctrine\DBAL\Connection;
 use PHPUnit\Framework\MockObject\Exception;
 use Psr\Log\LoggerInterface;
@@ -43,7 +47,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
      */
     public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
     {
-        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+        $clock = new MockClock(new DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
         $logger = $this->createMock(LoggerInterface::class);
 
         $cronJob = new CancelStaleWorkflowCronJob($this->createMock(EntityWorkflowRepository::class), $clock, $this->buildMessageBus(), $logger);
@@ -52,17 +56,17 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
     }
 
     /**
-     * @throws \DateMalformedStringException
-     * @throws \DateInvalidTimeZoneException
-     * @throws Exception
+     * @throws DateMalformedStringException
+     * @throws DateInvalidTimeZoneException
+     * @throws \Exception|Exception
      */
     public function testRun(): void
     {
-        $clock = new MockClock((new \DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
+        $clock = new MockClock((new DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
         $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
         $logger = $this->createMock(LoggerInterface::class);
 
-        $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([1, 2, 3]);
+        $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([1, 3, 2]);
         $messageBus = $this->buildMessageBus(true);
 
         $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, $logger);
@@ -80,17 +84,17 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
     public static function buildTestCanRunData(): iterable
     {
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
             true,
         ];
 
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
             true,
         ];
 
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
             false,
         ];
     }
@@ -104,7 +108,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
             false => $messageBus->method('dispatch'),
         };
 
-        $methodDispatch->willReturnCallback(function (CancelStaleWorkflow $message) {
+        $methodDispatch->willReturnCallback(function (CancelStaleWorkflowMessage $message) {
             return new Envelope($message);
         });
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index f7887a6cd..dbf88098f 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -16,6 +16,7 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowHandler;
+use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
@@ -51,7 +52,7 @@ class CancelStaleWorkflowHandlerTest extends TestCase
 
         $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
 
-        $handler(new CancelStaleWorkflow(1));
+        $handler(new CancelStaleWorkflowMessage(1));
     }
 
     public function testInvokeWorkflowWithMultipleStepsAndValidTransition(): void
@@ -92,7 +93,7 @@ class CancelStaleWorkflowHandlerTest extends TestCase
 
         $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
 
-        $handler(new CancelStaleWorkflow(1));
+        $handler(new CancelStaleWorkflowMessage(1));
     }
 
     public function testInvokeWorkflowWithMultipleStepsAndNoValidTransition(): void
@@ -134,6 +135,6 @@ class CancelStaleWorkflowHandlerTest extends TestCase
 
         $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
 
-        $handler(new CancelStaleWorkflow(1));
+        $handler(new CancelStaleWorkflowMessage(1));
     }
 }

From 2e69d2df90ddac5a55942874fef87619938b18fb Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Wed, 28 Aug 2024 14:27:27 +0200
Subject: [PATCH 215/375] Adjust test to work with actual workflow + minor fix
 of handler logic

---
 .../Entity/Workflow/EntityWorkflow.php        |   2 +-
 .../Workflow/CancelStaleWorkflowHandler.php   |   4 +-
 .../CancelStaleWorkflowHandlerTest.php        | 168 ++++++++----------
 3 files changed, 76 insertions(+), 98 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 1f32a1985..6e6cee077 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -38,7 +38,7 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
     /**
      * @var Collection<int, \Chill\MainBundle\Entity\Workflow\EntityWorkflowComment>
      */
-    #[ORM\OneToMany(targetEntity: EntityWorkflowComment::class, mappedBy: 'entityWorkflow', orphanRemoval: true)]
+    #[ORM\OneToMany(mappedBy: 'entityWorkflow', targetEntity: EntityWorkflowComment::class, orphanRemoval: true)]
     private Collection $comments;
 
     #[ORM\Id]
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index a3eefb193..2aae89f3c 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -35,7 +35,7 @@ class CancelStaleWorkflowHandler
 
         $workflow = $this->workflowRepository->find($workflowId);
 
-        if (in_array($workflow, $staleWorkflows, true)) {
+        if (!in_array($workflow, $staleWorkflows, true)) {
             $this->logger->alert('Workflow has transitioned in the meantime.', [$workflowId]);
             return;
         }
@@ -69,7 +69,7 @@ class CancelStaleWorkflowHandler
             }
 
             if (!$transitionApplied) {
-                $this->logger->error('No valid transition found for EntityWorkflow %d.', [$workflowId]);
+                $this->logger->error('No valid transition found for EntityWorkflow.', [$workflowId]);
                 throw new UnrecoverableMessageHandlingException(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
             }
         }
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index dbf88098f..23c99d16a 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -2,139 +2,117 @@
 
 declare(strict_types=1);
 
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
 namespace Services\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowHandler;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
-use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\LoggerInterface;
-use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
-use Symfony\Component\Workflow\Metadata\MetadataStoreInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Workflow\Registry;
-use Symfony\Component\Workflow\Transition;
 use Symfony\Component\Workflow\WorkflowInterface;
+use Symfony\Component\Yaml\Yaml;
+use DateTimeImmutable;
 
-/**
- * @internal
- *
- * @coversNothing
- */
-class CancelStaleWorkflowHandlerTest extends TestCase
+class CancelStaleWorkflowHandlerTest extends KernelTestCase
 {
-    public function testInvokeWorkflowWithOneStep(): void
+    private EntityManagerInterface $em;
+    private Registry $registry;
+    private LoggerInterface $logger;
+    private EntityWorkflowRepository $workflowRepository;
+    private ClockInterface $clock;
+    private string $workflowName;
+
+    protected function setUp(): void
     {
-        $workflow = $this->createMock(EntityWorkflow::class);
-        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class)]));
-        $workflow->expects($this->once())->method('getCurrentStep')->willReturn(new EntityWorkflowStep());
+        // Boot the Symfony kernel
+        self::bootKernel();
 
-        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
+        // Get the actual services from the container
+        $this->em = self::getContainer()->get(EntityManagerInterface::class);
+        $this->registry = self::getContainer()->get(Registry::class);
+        $this->logger = self::getContainer()->get(LoggerInterface::class);
+        $this->clock = self::getContainer()->get(ClockInterface::class);
+        $this->workflowRepository = $this->createMock(EntityWorkflowRepository::class);
 
-        $em = $this->createMock(EntityManagerInterface::class);
-        $em->expects($this->exactly(2))->method('remove')->with($this->isInstanceOf(EntityWorkflowStep::class));
-        $em->expects($this->once())->method('flush');
+        // Retrieve the workflow configuration dynamically
+        $configPath = self::$kernel->getProjectDir() . '/config/packages/workflow.yaml'; // Adjust the path if needed
+        $config = Yaml::parseFile($configPath);
 
-        $registry = $this->createMock(Registry::class);
-        $logger = $this->createMock(LoggerInterface::class);
-
-        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
-
-        $handler(new CancelStaleWorkflowMessage(1));
+        // Extract the workflow name from the configuration
+        $this->workflowName = array_key_first($config['framework']['workflows']);
     }
 
-    public function testInvokeWorkflowWithMultipleStepsAndValidTransition(): void
+    public function testWorkflowWithOneStepOlderThan90DaysIsDeleted(): void
     {
-        $workflow = $this->createMock(EntityWorkflow::class);
-        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class), $this->createMock(EntityWorkflowStep::class)]));
+        $workflow = new EntityWorkflow();
+        $initialStep = new EntityWorkflowStep();
+        $initialStep->setTransitionAt(new DateTimeImmutable('-93 days'));
+        $workflow->addStep($initialStep);
 
-        $transition = $this->createMock(Transition::class);
+        $this->em->persist($workflow);
+        $this->em->flush();
 
-        $workflowComponent = $this->createMock(WorkflowInterface::class);
-        $registryMock = $this->createMock(Registry::class);
-        $registryMock->method('get')
-            ->willReturn($workflowComponent);
+        $this->handleStaleWorkflow($workflow);
 
-        $workflowComponent->method('getEnabledTransitions')->willReturn([$transition]);
-        $workflowComponent->expects($this->once())->method('apply')->with($workflow, 'annule');
+        $deletedWorkflow = $this->workflowRepository->find($workflow->getId());
+        $this->assertNull($deletedWorkflow, 'The workflow should be deleted.');
 
-        $metadataStore = $this->createMock(MetadataStore::class);
-        $metadataStore->method('getMetadata')->willReturnMap([
-            ['isFinal', $transition, true],
-            ['isFinalPositive', $transition, false],
-        ]);
-
-        $workflowComponent->method('getMetadataStore')->willReturn($metadataStore);
-
-        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
-
-        $em = $this->createMock(EntityManagerInterface::class);
-        $em->expects($this->never())->method('remove');
-        $em->expects($this->once())->method('flush');
-
-        $registry = $this->createMock(Registry::class);
-        $registry->method('get')->willReturn($workflowComponent);
-
-        $logger = $this->createMock(LoggerInterface::class);
-        $logger->expects($this->once())->method('info')->with('EntityWorkflow 1 has been transitioned.');
-
-        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
-
-        $handler(new CancelStaleWorkflowMessage(1));
+        $this->assertNull($this->em->getRepository(EntityWorkflowStep::class)->find($initialStep->getId()), 'The workflow step should be deleted.');
     }
 
-    public function testInvokeWorkflowWithMultipleStepsAndNoValidTransition(): void
+    public function testWorkflowWithMultipleStepsAndNoRecentTransitionsIsCanceled(): void
     {
-        $this->expectException(UnrecoverableMessageHandlingException::class);
-        $this->expectExceptionMessage('No valid transition found for EntityWorkflow 1.');
+        $workflow = new EntityWorkflow();
+        $step1 = new EntityWorkflowStep();
+        $step2 = new EntityWorkflowStep();
 
-        $workflow = $this->createMock(EntityWorkflow::class);
-        $workflow->method('getSteps')->willReturn(new ArrayCollection([$this->createMock(EntityWorkflowStep::class), $this->createMock(EntityWorkflowStep::class)]));
+        $step1->setTransitionAt(new DateTimeImmutable('-92 days'));
+        $step2->setTransitionAt(new DateTimeImmutable('-91 days'));
 
-        $transition = $this->createMock(Transition::class);
+        $workflow->addStep($step1);
+        $workflow->addStep($step2);
 
-        $workflowComponent = $this->createMock(WorkflowInterface::class);
-        $registryMock = $this->createMock(Registry::class);
-        $registryMock->method('get')
-            ->willReturn($workflowComponent);
-        $workflowComponent->method('getEnabledTransitions')->willReturn([$transition]);
+        $this->em->persist($workflow);
+        $this->em->flush();
 
-        $metadataStore = $this->createMock(MetadataStoreInterface::class);
-        $metadataStore->method('getMetadata')->willReturnMap([
-            ['isFinal', $transition, false],
-            ['isFinalPositive', $transition, true],
-        ]);
+        /** @var WorkflowInterface $workflowComponent */
+        $workflowComponent = $this->registry->get($workflow, $this->workflowName);
 
-        $workflowComponent->method('getMetadataStore')->willReturn($metadataStore);
+        $transitions = $workflowComponent->getEnabledTransitions($workflow);
+        $metadataStore = $workflowComponent->getMetadataStore();
 
-        $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-        $workflowRepository->expects($this->once())->method('find')->with($this->identicalTo(1))->willReturn($workflow);
+        $expectedTransition = null;
 
-        $em = $this->createMock(EntityManagerInterface::class);
-        $em->expects($this->never())->method('remove');
-        $em->expects($this->never())->method('flush');
+        // Find the transition that was expected to be applied by the handler
+        foreach ($transitions as $transition) {
+            $isFinal = $metadataStore->getMetadata('isFinal', $transition);
+            $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
 
-        $registry = $this->createMock(Registry::class);
-        $registry->method('get')->willReturn($workflowComponent);
+            if ($isFinal === true && $isFinalPositive === false) {
+                $expectedTransition = $transition;
+                break;
+            }
+        }
 
-        $logger = $this->createMock(LoggerInterface::class);
-        $logger->expects($this->once())->method('error')->with('No valid transition found for EntityWorkflow 1.');
+        $this->assertNotNull($expectedTransition, 'Expected to find a valid transition with isFinal = true and isFinalPositive = false.');
 
-        $handler = new CancelStaleWorkflowHandler($workflowRepository, $registry, $em, $logger);
+        $this->handleStaleWorkflow($workflow);
+        $updatedWorkflow = $this->workflowRepository->find($workflow->getId());
+
+        $this->assertEquals($expectedTransition->getName(), $updatedWorkflow->getCurrentStep());
 
-        $handler(new CancelStaleWorkflowMessage(1));
     }
+
+    public function handleStaleWorkflow($workflow): void
+    {
+        $handler = new CancelStaleWorkflowHandler($this->workflowRepository, $this->registry, $this->em, $this->logger, $this->clock);
+        $handler(new CancelStaleWorkflowMessage($workflow->getId()));
+    }
+
 }

From b97eabf0d28e48f61bac510783fa238caef7fbf6 Mon Sep 17 00:00:00 2001
From: Julie Lenaerts <julielenaerts@gmail.com>
Date: Thu, 29 Aug 2024 16:51:25 +0200
Subject: [PATCH 216/375] Get workflowComponent directly from registry

---
 .../Workflow/CancelStaleWorkflowHandlerTest.php        | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index 23c99d16a..2c3016f82 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -26,7 +26,6 @@ class CancelStaleWorkflowHandlerTest extends KernelTestCase
     private LoggerInterface $logger;
     private EntityWorkflowRepository $workflowRepository;
     private ClockInterface $clock;
-    private string $workflowName;
 
     protected function setUp(): void
     {
@@ -39,13 +38,6 @@ class CancelStaleWorkflowHandlerTest extends KernelTestCase
         $this->logger = self::getContainer()->get(LoggerInterface::class);
         $this->clock = self::getContainer()->get(ClockInterface::class);
         $this->workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-
-        // Retrieve the workflow configuration dynamically
-        $configPath = self::$kernel->getProjectDir() . '/config/packages/workflow.yaml'; // Adjust the path if needed
-        $config = Yaml::parseFile($configPath);
-
-        // Extract the workflow name from the configuration
-        $this->workflowName = array_key_first($config['framework']['workflows']);
     }
 
     public function testWorkflowWithOneStepOlderThan90DaysIsDeleted(): void
@@ -82,7 +74,7 @@ class CancelStaleWorkflowHandlerTest extends KernelTestCase
         $this->em->flush();
 
         /** @var WorkflowInterface $workflowComponent */
-        $workflowComponent = $this->registry->get($workflow, $this->workflowName);
+        $workflowComponent = $this->registry->get($workflowComponent);
 
         $transitions = $workflowComponent->getEnabledTransitions($workflow);
         $metadataStore = $workflowComponent->getMetadataStore();

From ee9530d03f88c15c35d107036b73dc34eb66a536 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 9 Sep 2024 10:40:05 +0200
Subject: [PATCH 217/375] More conditions to find staled workflows

---
 .../Workflow/EntityWorkflowRepository.php     | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index b6e2e0814..62282fbe9 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -198,13 +198,28 @@ class EntityWorkflowRepository implements ObjectRepository
         return $this->repository->findOneBy($criteria);
     }
 
-    public function findWorkflowsWithoutFinalStepAndOlderThan(\DateTimeImmutable $olderThanDate)
+    /**
+     * Finds workflows that are not finalized and are older than the specified date.
+     *
+     * @param \DateTimeImmutable $olderThanDate the date to compare against
+     *
+     * @return list<int> the list of workflow IDs that meet the criteria
+     */
+    public function findWorkflowsWithoutFinalStepAndOlderThan(\DateTimeImmutable $olderThanDate): array
     {
         $qb = $this->repository->createQueryBuilder('sw');
 
         $qb->select('sw.id')
+            // only the workflow which are not finalized
             ->where('NOT EXISTS (SELECT 1 FROM chill_main_entity_workflow_step ews WHERE ews.isFinal = TRUE AND ews.entityWorkflow = sw.id)')
-            ->andWhere(':olderThanDate > ALL (SELECT ews.transitionAt FROM chill_main_entity_workflow_step ews WHERE ews.transitionAt IS NOT NULL AND ews.entityWorkflow = sw.id)')
+            ->andWhere(
+                $qb->expr()->orX(
+                    // only the workflow where all the last transition is older than transitionAt
+                    ':olderThanDate > ALL (SELECT ews.transitionAt FROM chill_main_entity_workflow_step ews WHERE ews.transitionAt IS NOT NULL AND ews.entityWorkflow = sw.id)',
+                    // or the workflow which have only the initial step, with no transition
+                    '1 = (SELECT COUNT(ews.id) FROM chill_main_entity_workflow_step ews WHERE ews.step = :initial AND ews.transitionAt IS NULL AND ews.createdAt < :olderThanDate AND ews.entityWorkflow = sw.id)',
+                )
+            )
             ->andWhere('sw.createdAt < :olderThanDate')
             ->setParameter('olderThanDate', $olderThanDate);
 

From d152efe084aa4d3455d2ae9c928128ec4d560deb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 9 Sep 2024 14:58:19 +0200
Subject: [PATCH 218/375] Refactor imports and remove redundant type strings

This commit refactors the usage of \DateTimeImmutable to ensure consistent namespacing and removes unnecessary string type declarations from constants in CancelStaleWorkflowCronJob. These changes improve code readability and maintainability.
---
 .../Workflow/CancelStaleWorkflowCronJob.php     |  6 +++---
 .../Workflow/CancelStaleWorkflowCronJobTest.php | 17 +++++++----------
 2 files changed, 10 insertions(+), 13 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index 786bae3c9..767af2c5c 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -20,11 +20,11 @@ use Symfony\Component\Messenger\MessageBusInterface;
 
 class CancelStaleWorkflowCronJob implements CronJobInterface
 {
-    public const string KEY = 'remove-stale-workflow';
+    public const KEY = 'remove-stale-workflow';
 
-    public const string KEEP_INTERVAL = 'P90D';
+    public const KEEP_INTERVAL = 'P90D';
 
-    private const string LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
+    private const LAST_CANCELED_WORKFLOW = 'last-canceled-workflow-id';
 
     public function __construct(
         private readonly EntityWorkflowRepository $workflowRepository,
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index f433e8b48..8e06735f6 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -16,9 +16,6 @@ use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowCronJob;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
-use DateInvalidTimeZoneException;
-use DateMalformedStringException;
-use DateTimeImmutable;
 use Doctrine\DBAL\Connection;
 use PHPUnit\Framework\MockObject\Exception;
 use Psr\Log\LoggerInterface;
@@ -47,7 +44,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
      */
     public function testCanRun(?CronJobExecution $cronJobExecution, bool $expected): void
     {
-        $clock = new MockClock(new DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
+        $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
         $logger = $this->createMock(LoggerInterface::class);
 
         $cronJob = new CancelStaleWorkflowCronJob($this->createMock(EntityWorkflowRepository::class), $clock, $this->buildMessageBus(), $logger);
@@ -56,13 +53,13 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
     }
 
     /**
-     * @throws DateMalformedStringException
-     * @throws DateInvalidTimeZoneException
+     * @throws \DateMalformedStringException
+     * @throws \DateInvalidTimeZoneException
      * @throws \Exception|Exception
      */
     public function testRun(): void
     {
-        $clock = new MockClock((new DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
+        $clock = new MockClock((new \DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
         $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
         $logger = $this->createMock(LoggerInterface::class);
 
@@ -84,17 +81,17 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
     public static function buildTestCanRunData(): iterable
     {
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:00', new \DateTimeZone('+00:00'))),
             true,
         ];
 
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-30 23:59:59', new \DateTimeZone('+00:00'))),
             true,
         ];
 
         yield [
-            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
+            (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
             false,
         ];
     }

From f4356ac249ef91bb93c8beb04700d11f6a2250e5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 9 Sep 2024 14:59:26 +0200
Subject: [PATCH 219/375] Add test for detecting stale workflows and enhance
 handler

Added a new test to check if workflows are stale in EntityWorkflowTest. Enhanced CancelStaleWorkflowHandler to handle stale workflows more accurately, including checking if workflows have transitioned recently. Updated EntityWorkflow entity to cascade remove workflow steps.

Refactor tests for handler, to avoid using $kernel during tests
---
 .../Entity/Workflow/EntityWorkflow.php        |  34 ++-
 .../Workflow/CancelStaleWorkflowHandler.php   |  75 ++++---
 .../Entity/Workflow/EntityWorkflowTest.php    |  27 +++
 .../CancelStaleWorkflowCronJobTest.php        |   4 +-
 .../CancelStaleWorkflowHandlerTest.php        | 193 +++++++++++-------
 5 files changed, 226 insertions(+), 107 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 6e6cee077..08b5ee41f 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -56,7 +56,7 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
      * @var Collection<int, EntityWorkflowStep>&Selectable<int, EntityWorkflowStep>
      */
     #[Assert\Valid(traverse: true)]
-    #[ORM\OneToMany(mappedBy: 'entityWorkflow', targetEntity: EntityWorkflowStep::class, cascade: ['persist'], orphanRemoval: true)]
+    #[ORM\OneToMany(mappedBy: 'entityWorkflow', targetEntity: EntityWorkflowStep::class, cascade: ['persist', 'remove'], orphanRemoval: true)]
     #[ORM\OrderBy(['transitionAt' => \Doctrine\Common\Collections\Criteria::ASC, 'id' => 'ASC'])]
     private Collection&Selectable $steps;
 
@@ -488,4 +488,36 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
     {
         return $this->getCurrentStep()->getHoldsOnStep()->count() > 0;
     }
+
+    /**
+     * Determines if the workflow has become stale after a given date.
+     *
+     * This function checks the creation date and the transition states of the workflow steps.
+     * A workflow is considered stale if:
+     * - The creation date is before the given date and no transitions have occurred since the creation.
+     * - Or if there are no transitions after the given date.
+     *
+     * @param \DateTimeImmutable $at the date to compare against the workflow's status
+     *
+     * @return bool true if the workflow is stale after the given date, false otherwise
+     */
+    public function isStaledAt(\DateTimeImmutable $at): bool
+    {
+        // if there is no transition since the creation, then the workflow is staled
+        if ('initial' === $this->getCurrentStep()->getCurrentStep()
+            && null === $this->getCurrentStep()->getTransitionAt()
+        ) {
+            if (null === $this->getCreatedAt()) {
+                return false;
+            }
+
+            if ($this->getCreatedAt() < $at) {
+                return true;
+            }
+
+            return false;
+        }
+
+        return $this->getCurrentStepChained()->getPrevious()->getTransitionAt() < $at;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index 2aae89f3c..54485dad5 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Service\Workflow;
 
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
@@ -20,58 +21,68 @@ use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
 use Symfony\Component\Workflow\Registry;
 
 #[AsMessageHandler]
-class CancelStaleWorkflowHandler
+final readonly class CancelStaleWorkflowHandler
 {
-    public const string KEEP_INTERVAL = 'P90D';
-
-    public function __construct(private readonly EntityWorkflowRepository $workflowRepository, private readonly Registry $registry, private readonly EntityManagerInterface $em, private readonly LoggerInterface $logger, private readonly ClockInterface $clock) {}
+    public function __construct(
+        private EntityWorkflowRepository $workflowRepository,
+        private Registry $registry,
+        private EntityManagerInterface $em,
+        private LoggerInterface $logger,
+        private ClockInterface $clock,
+    ) {}
 
     public function __invoke(CancelStaleWorkflowMessage $message): void
     {
         $workflowId = $message->getWorkflowId();
+        $olderThanDate = $this->clock->now()->sub(new \DateInterval(CancelStaleWorkflowCronJob::KEEP_INTERVAL));
 
-        $olderThanDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
-        $staleWorkflows = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
+        $workflow = $this->workflowRepository->find($message->getWorkflowId());
+        if (null === $workflow) {
+            $this->logger->alert('Workflow was not found!', [$workflowId]);
 
-        $workflow = $this->workflowRepository->find($workflowId);
-
-        if (!in_array($workflow, $staleWorkflows, true)) {
-            $this->logger->alert('Workflow has transitioned in the meantime.', [$workflowId]);
             return;
         }
 
-        if (null === $workflow) {
-            $this->logger->alert('Workflow was not found!', [$workflowId]);
-            return;
+        if (false === $workflow->isStaledAt($olderThanDate)) {
+            $this->logger->alert('Workflow has transitioned in the meantime.', [$workflowId]);
+
+            throw new UnrecoverableMessageHandlingException('the workflow is not staled any more');
         }
 
         $workflowComponent = $this->registry->get($workflow, $workflow->getWorkflowName());
         $metadataStore = $workflowComponent->getMetadataStore();
         $transitions = $workflowComponent->getEnabledTransitions($workflow);
-        $steps = $workflow->getSteps();
 
         $transitionApplied = false;
+        $wasInInitialPosition = 'initial' === $workflow->getStep();
 
-        if (1 === count($steps)) {
-            $this->em->remove($workflow->getCurrentStep());
-            $this->em->remove($workflow);
-        } else {
-            foreach ($transitions as $transition) {
-                $isFinal = $metadataStore->getMetadata('isFinal', $transition);
-                $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
+        foreach ($transitions as $transition) {
+            $isFinal = $metadataStore->getMetadata('isFinal', $transition);
+            $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
 
-                if ($isFinal && !$isFinalPositive) {
-                    $workflowComponent->apply($workflow, $transition->getName());
-                    $this->logger->info('EntityWorkflow has been cancelled automatically.', [$workflowId]);
-                    $transitionApplied = true;
-                    break;
-                }
-            }
-
-            if (!$transitionApplied) {
-                $this->logger->error('No valid transition found for EntityWorkflow.', [$workflowId]);
-                throw new UnrecoverableMessageHandlingException(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
+            if ($isFinal && !$isFinalPositive) {
+                $dto = new WorkflowTransitionContextDTO($workflow);
+                $workflowComponent->apply($workflow, $transition->getName(), [
+                    'context' => $dto,
+                    'byUser' => null,
+                    'transitionAt' => $this->clock->now(),
+                    'transition' => $transition->getName(),
+                ]);
+                $this->logger->info('EntityWorkflow has been cancelled automatically.', [$workflowId]);
+                $transitionApplied = true;
+                break;
             }
         }
+
+        if (!$transitionApplied) {
+            $this->logger->error('No valid transition found for EntityWorkflow.', [$workflowId]);
+            throw new UnrecoverableMessageHandlingException(sprintf('No valid transition found for EntityWorkflow %d.', $workflowId));
+        }
+
+        if ($wasInInitialPosition) {
+            $this->em->remove($workflow);
+        }
+
+        $this->em->flush();
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
index 4eb56f995..3241a41fc 100644
--- a/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Entity/Workflow/EntityWorkflowTest.php
@@ -138,4 +138,31 @@ final class EntityWorkflowTest extends TestCase
         self::assertContains($person1, $persons);
         self::assertContains($person2, $persons);
     }
+
+    public function testIsStaledAt(): void
+    {
+        $creationDate = new \DateTimeImmutable('2024-01-01');
+        $firstStepDate = new \DateTimeImmutable('2024-01-02');
+        $afterFistStep = new \DateTimeImmutable('2024-01-03');
+
+        $entityWorkflow = new EntityWorkflow();
+
+        self::assertFalse($entityWorkflow->isStaledAt($creationDate), 'an entityWorkflow with null createdAt date should never be staled at initial step');
+        self::assertFalse($entityWorkflow->isStaledAt($firstStepDate), 'an entityWorkflow with null createdAt date should never be staled at initial step');
+        self::assertFalse($entityWorkflow->isStaledAt($afterFistStep), 'an entityWorkflow with null createdAt date should never be staled at initial step');
+
+        $entityWorkflow->setCreatedAt($creationDate);
+
+        self::assertFalse($entityWorkflow->isStaledAt($creationDate), 'an entityWorkflow with no step after initial should be staled');
+        self::assertTrue($entityWorkflow->isStaledAt($firstStepDate), 'an entityWorkflow with no step after initial should be staled');
+        self::assertTrue($entityWorkflow->isStaledAt($afterFistStep), 'an entityWorkflow with no step after initial should be staled');
+
+        // apply a first step
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('new_step', $dto, 'to_new_step', $firstStepDate);
+
+        self::assertFalse($entityWorkflow->isStaledAt($creationDate));
+        self::assertFalse($entityWorkflow->isStaledAt($firstStepDate));
+        self::assertTrue($entityWorkflow->isStaledAt($afterFistStep));
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index 8e06735f6..07bca6bc5 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -105,9 +105,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
             false => $messageBus->method('dispatch'),
         };
 
-        $methodDispatch->willReturnCallback(function (CancelStaleWorkflowMessage $message) {
-            return new Envelope($message);
-        });
+        $methodDispatch->willReturnCallback(fn (CancelStaleWorkflowMessage $message) => new Envelope($message));
 
         return $messageBus;
     }
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index 2c3016f82..b6cac68de 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -2,109 +2,160 @@
 
 declare(strict_types=1);
 
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Services\Workflow;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowHandler;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
-use Psr\Log\LoggerInterface;
-use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Psr\Log\NullLogger;
 use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
 use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
 use Symfony\Component\Workflow\WorkflowInterface;
-use Symfony\Component\Yaml\Yaml;
-use DateTimeImmutable;
 
-class CancelStaleWorkflowHandlerTest extends KernelTestCase
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class CancelStaleWorkflowHandlerTest extends TestCase
 {
-    private EntityManagerInterface $em;
-    private Registry $registry;
-    private LoggerInterface $logger;
-    private EntityWorkflowRepository $workflowRepository;
-    private ClockInterface $clock;
+    use ProphecyTrait;
 
-    protected function setUp(): void
+    public function testWorkflowWithOneStepOlderThan90DaysIsCanceled(): void
     {
-        // Boot the Symfony kernel
-        self::bootKernel();
+        $clock = new MockClock('2024-01-01');
+        $daysAgos = new \DateTimeImmutable('2023-09-01');
 
-        // Get the actual services from the container
-        $this->em = self::getContainer()->get(EntityManagerInterface::class);
-        $this->registry = self::getContainer()->get(Registry::class);
-        $this->logger = self::getContainer()->get(LoggerInterface::class);
-        $this->clock = self::getContainer()->get(ClockInterface::class);
-        $this->workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-    }
-
-    public function testWorkflowWithOneStepOlderThan90DaysIsDeleted(): void
-    {
         $workflow = new EntityWorkflow();
-        $initialStep = new EntityWorkflowStep();
-        $initialStep->setTransitionAt(new DateTimeImmutable('-93 days'));
-        $workflow->addStep($initialStep);
+        $workflow->setWorkflowName('dummy_workflow');
+        $workflow->setCreatedAt(new \DateTimeImmutable('2023-09-01'));
+        $workflow->setStep('step1', new WorkflowTransitionContextDTO($workflow), 'to_step1', $daysAgos, new User());
 
-        $this->em->persist($workflow);
-        $this->em->flush();
+        $em = $this->prophesize(EntityManagerInterface::class);
+        $em->flush()->shouldBeCalled();
+        $em->remove($workflow)->shouldNotBeCalled();
 
-        $this->handleStaleWorkflow($workflow);
+        $handler = $this->buildHandler($workflow, $em->reveal(), $clock);
 
-        $deletedWorkflow = $this->workflowRepository->find($workflow->getId());
-        $this->assertNull($deletedWorkflow, 'The workflow should be deleted.');
+        $handler(new CancelStaleWorkflowMessage(1));
 
-        $this->assertNull($this->em->getRepository(EntityWorkflowStep::class)->find($initialStep->getId()), 'The workflow step should be deleted.');
+        self::assertEquals('canceled', $workflow->getStep());
+        self::assertCount(3, $workflow->getSteps());
     }
 
-    public function testWorkflowWithMultipleStepsAndNoRecentTransitionsIsCanceled(): void
+    public function testWorkflowNotInStaledHandlerIsUnrecoverable(): void
     {
+        $this->expectException(UnrecoverableMessageHandlingException::class);
+
+        $clock = new MockClock('2024-01-01');
+        $daysAgos = new \DateTimeImmutable('2023-12-31');
+
         $workflow = new EntityWorkflow();
-        $step1 = new EntityWorkflowStep();
-        $step2 = new EntityWorkflowStep();
+        $workflow->setWorkflowName('dummy_workflow');
+        $workflow->setCreatedAt(new \DateTimeImmutable('2023-12-31'));
+        $workflow->setStep('step1', new WorkflowTransitionContextDTO($workflow), 'to_step1', $daysAgos, new User());
 
-        $step1->setTransitionAt(new DateTimeImmutable('-92 days'));
-        $step2->setTransitionAt(new DateTimeImmutable('-91 days'));
+        $em = $this->prophesize(EntityManagerInterface::class);
+        $em->flush()->shouldNotBeCalled();
+        $em->remove($workflow)->shouldNotBeCalled();
 
-        $workflow->addStep($step1);
-        $workflow->addStep($step2);
+        $handler = $this->buildHandler($workflow, $em->reveal(), $clock);
 
-        $this->em->persist($workflow);
-        $this->em->flush();
-
-        /** @var WorkflowInterface $workflowComponent */
-        $workflowComponent = $this->registry->get($workflowComponent);
-
-        $transitions = $workflowComponent->getEnabledTransitions($workflow);
-        $metadataStore = $workflowComponent->getMetadataStore();
-
-        $expectedTransition = null;
-
-        // Find the transition that was expected to be applied by the handler
-        foreach ($transitions as $transition) {
-            $isFinal = $metadataStore->getMetadata('isFinal', $transition);
-            $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
-
-            if ($isFinal === true && $isFinalPositive === false) {
-                $expectedTransition = $transition;
-                break;
-            }
-        }
-
-        $this->assertNotNull($expectedTransition, 'Expected to find a valid transition with isFinal = true and isFinalPositive = false.');
-
-        $this->handleStaleWorkflow($workflow);
-        $updatedWorkflow = $this->workflowRepository->find($workflow->getId());
-
-        $this->assertEquals($expectedTransition->getName(), $updatedWorkflow->getCurrentStep());
+        $handler(new CancelStaleWorkflowMessage(1));
 
+        self::assertEquals('canceled', $workflow->getStep());
+        self::assertCount(3, $workflow->getSteps());
     }
 
-    public function handleStaleWorkflow($workflow): void
+    public function testWorkflowStaledInInitialStateIsCompletelyRemoved(): void
     {
-        $handler = new CancelStaleWorkflowHandler($this->workflowRepository, $this->registry, $this->em, $this->logger, $this->clock);
-        $handler(new CancelStaleWorkflowMessage($workflow->getId()));
+        $clock = new MockClock('2024-01-01');
+
+        $workflow = new EntityWorkflow();
+        $workflow->setWorkflowName('dummy_workflow');
+        $workflow->setCreatedAt(new \DateTimeImmutable('2023-09-01'));
+
+        $em = $this->prophesize(EntityManagerInterface::class);
+        $em->flush()->shouldBeCalled();
+        $em->remove($workflow)->shouldBeCalled();
+
+        $handler = $this->buildHandler($workflow, $em->reveal(), $clock);
+
+        $handler(new CancelStaleWorkflowMessage(1));
+
+        self::assertEquals('canceled', $workflow->getStep());
+        self::assertCount(2, $workflow->getSteps());
     }
 
+    private function buildHandler(
+        EntityWorkflow $entityWorkflow,
+        EntityManagerInterface $entityManager,
+        ClockInterface $clock,
+    ): CancelStaleWorkflowHandler {
+        // set an id for the workflow
+        $reflection = new \ReflectionClass($entityWorkflow);
+        $reflection->getProperty('id')->setValue($entityWorkflow, 1);
+
+        $repository = $this->prophesize(EntityWorkflowRepository::class);
+        $repository->find(1)->willReturn($entityWorkflow);
+
+        return new CancelStaleWorkflowHandler($repository->reveal(), $this->buildRegistry(), $entityManager, new NullLogger(), $clock);
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $definitionBuilder = new DefinitionBuilder();
+
+        $definitionBuilder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'step1', 'canceled', 'final'])
+            ->addTransition(new Transition('to_step1', 'initial', 'step1'))
+            ->addTransition($cancelInit = new Transition('cancel', 'initial', 'canceled'))
+            ->addTransition($finalizeInit = new Transition('finalize', 'initial', 'final'))
+            ->addTransition($cancelStep1 = new Transition('cancel', 'step1', 'canceled'))
+            ->addTransition($finalizeStep1 = new Transition('finalize', 'step1', 'final'));
+
+        $transitionStorage = new \SplObjectStorage();
+        $transitionStorage->attach($finalizeInit, ['isFinal' => true, 'isFinalPositive' => true]);
+        $transitionStorage->attach($cancelInit, ['isFinal' => true, 'isFinalPositive' => false]);
+        $transitionStorage->attach($finalizeStep1, ['isFinal' => true, 'isFinalPositive' => true]);
+        $transitionStorage->attach($cancelStep1, ['isFinal' => true, 'isFinalPositive' => false]);
+
+        $definitionBuilder->setMetadataStore(new InMemoryMetadataStore([], [], $transitionStorage));
+        $workflow = new Workflow($definitionBuilder->build(), new EntityWorkflowMarkingStore(), null, 'dummy_workflow');
+        $supports =
+            new class () implements WorkflowSupportStrategyInterface {
+                public function supports(WorkflowInterface $workflow, object $subject): bool
+                {
+                    return true;
+                }
+            };
+
+
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, $supports);
+
+        return $registry;
+    }
 }

From 2fb46c65c27893e867749ad27462863b9290349e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 9 Sep 2024 15:16:10 +0200
Subject: [PATCH 220/375] Refactor CancelStaleWorkflowCronJobTest to simplify
 setup

Replaced KernelTestCase with TestCase to simplify test setup and removed dependency on the database connection. Added NullLogger to replace mocked LoggerInterface during testing. Updated method call in tests to correctly reference CancelStaleWorkflowMessage class.
---
 .../Workflow/CancelStaleWorkflowCronJob.php    |  2 +-
 .../CancelStaleWorkflowCronJobTest.php         | 18 +++++-------------
 2 files changed, 6 insertions(+), 14 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index 767af2c5c..be3dd2a5e 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -49,7 +49,7 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
 
         $olderThanDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
         $staleWorkflowIds = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
-        $lastCanceled = self::LAST_CANCELED_WORKFLOW;
+        $lastCanceled = $lastExecutionData[self::LAST_CANCELED_WORKFLOW] ?? 0;
         $processedCount = 0;
 
         foreach ($staleWorkflowIds as $wId) {
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index 07bca6bc5..200b92099 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -13,13 +13,12 @@ namespace Services\Workflow;
 
 use Chill\MainBundle\Entity\CronJobExecution;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Service\Workflow\CancelStaleWorkflow;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowCronJob;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
-use Doctrine\DBAL\Connection;
 use PHPUnit\Framework\MockObject\Exception;
+use PHPUnit\Framework\TestCase;
 use Psr\Log\LoggerInterface;
-use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Psr\Log\NullLogger;
 use Symfony\Component\Clock\MockClock;
 use Symfony\Component\Messenger\Envelope;
 use Symfony\Component\Messenger\MessageBusInterface;
@@ -29,14 +28,8 @@ use Symfony\Component\Messenger\MessageBusInterface;
  *
  * @coversNothing
  */
-class CancelStaleWorkflowCronJobTest extends KernelTestCase
+class CancelStaleWorkflowCronJobTest extends TestCase
 {
-    protected function setUp(): void
-    {
-        self::bootKernel();
-        $this->connection = self::getContainer()->get(Connection::class);
-    }
-
     /**
      * @dataProvider buildTestCanRunData
      *
@@ -61,12 +54,11 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
     {
         $clock = new MockClock((new \DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
         $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
-        $logger = $this->createMock(LoggerInterface::class);
 
         $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([1, 3, 2]);
         $messageBus = $this->buildMessageBus(true);
 
-        $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, $logger);
+        $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, new NullLogger());
 
         $results = $cronJob->run([]);
 
@@ -101,7 +93,7 @@ class CancelStaleWorkflowCronJobTest extends KernelTestCase
         $messageBus = $this->createMock(MessageBusInterface::class);
 
         $methodDispatch = match ($expectDispatchAtLeastOnce) {
-            true => $messageBus->expects($this->atLeastOnce())->method('dispatch')->with($this->isInstanceOf(CancelStaleWorkflow::class)),
+            true => $messageBus->expects($this->atLeastOnce())->method('dispatch')->with($this->isInstanceOf(CancelStaleWorkflowMessage::class)),
             false => $messageBus->method('dispatch'),
         };
 

From f5ba5d574b905ae66755d5c6f7dc733111cb5e22 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 10:44:45 +0200
Subject: [PATCH 221/375] Add WopiConverter service and update Collabora
 integration tests

Introduce the WopiConverter service to handle document-to-PDF conversion using Collabora Online. Extend and update related tests in WopiConvertToPdfTest and ConvertControllerTest for better coverage and reliability. Enhance the GitLab CI configuration to exclude new test category "collabora-integration".
---
 .env                                          |   2 +-
 .env.test                                     |   2 +
 .gitlab-ci.yml                                |   2 +-
 .../src/Controller/ConvertController.php      |  64 +++-------------
 .../src/Service/WopiConverter.php             |  69 ++++++++++++++++++
 .../Controller/ConvertControllerTest.php      |  56 ++++++--------
 .../tests/Service/WopiConvertToPdfTest.php    |  63 ++++++++++++++++
 .../tests/Service/fixtures/test-document.odt  | Bin 0 -> 8918 bytes
 tests/app/config/packages/wopi.yaml           |   2 +
 9 files changed, 171 insertions(+), 89 deletions(-)
 create mode 100644 src/Bundle/ChillWopiBundle/src/Service/WopiConverter.php
 create mode 100644 src/Bundle/ChillWopiBundle/tests/Service/WopiConvertToPdfTest.php
 create mode 100644 src/Bundle/ChillWopiBundle/tests/Service/fixtures/test-document.odt
 create mode 100644 tests/app/config/packages/wopi.yaml

diff --git a/.env b/.env
index 1714966d4..b2eecb78f 100644
--- a/.env
+++ b/.env
@@ -23,7 +23,7 @@ TRUSTED_HOSTS='^(localhost|example\.com|nginx)$'
 ###< symfony/framework-bundle ###
 
 ## Wopi server for editing documents online
-WOPI_SERVER=http://collabora:9980
+EDITOR_SERVER=http://collabora:9980
 
 # must be manually set in .env.local
 # ADMIN_PASSWORD=
diff --git a/.env.test b/.env.test
index f84920e54..c78a1bc63 100644
--- a/.env.test
+++ b/.env.test
@@ -41,3 +41,5 @@ DATABASE_URL="postgresql://postgres:postgres@db:5432/test?serverVersion=14&chars
 ASYNC_UPLOAD_TEMP_URL_KEY=
 ASYNC_UPLOAD_TEMP_URL_BASE_PATH=
 ASYNC_UPLOAD_TEMP_URL_CONTAINER=
+
+EDITOR_SERVER=https://localhost:9980
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index acd66a42e..c1fdebf43 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -122,7 +122,7 @@ unit_tests:
         - php tests/console chill:db:sync-views --env=test
         - php -d memory_limit=2G tests/console cache:clear --env=test
         - php -d memory_limit=3G tests/console doctrine:fixtures:load -n --env=test
-        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive,openstack-integration
+        - php -d memory_limit=4G bin/phpunit --colors=never --exclude-group dbIntensive,openstack-integration,collabora-integration
     artifacts:
         expire_in: 1 day
         paths:
diff --git a/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php b/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
index 73207e13a..86a624e4b 100644
--- a/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
+++ b/src/Bundle/ChillWopiBundle/src/Controller/ConvertController.php
@@ -14,84 +14,44 @@ namespace Chill\WopiBundle\Controller;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Service\StoredObjectManager;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
-use Chill\MainBundle\Entity\User;
+use Chill\WopiBundle\Service\WopiConverter;
 use Psr\Log\LoggerInterface;
-use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
-use Symfony\Component\HttpFoundation\JsonResponse;
-use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
-use Symfony\Component\Mime\Part\DataPart;
-use Symfony\Component\Mime\Part\Multipart\FormDataPart;
 use Symfony\Component\Security\Core\Security;
-use Symfony\Contracts\HttpClient\Exception\ClientExceptionInterface;
-use Symfony\Contracts\HttpClient\Exception\RedirectionExceptionInterface;
-use Symfony\Contracts\HttpClient\Exception\ServerExceptionInterface;
-use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
-use Symfony\Contracts\HttpClient\HttpClientInterface;
-use Symfony\Contracts\HttpClient\ResponseInterface;
 
 class ConvertController
 {
     private const LOG_PREFIX = '[convert] ';
 
-    private readonly string $collaboraDomain;
-
     /**
      * @param StoredObjectManager $storedObjectManager
      */
     public function __construct(
-        private readonly HttpClientInterface $httpClient,
-        private readonly RequestStack $requestStack,
         private readonly Security $security,
         private readonly StoredObjectManagerInterface $storedObjectManager,
+        private readonly WopiConverter $wopiConverter,
         private readonly LoggerInterface $logger,
-        ParameterBagInterface $parameters,
-    ) {
-        $this->collaboraDomain = $parameters->get('wopi')['server'];
-    }
+    ) {}
 
-    public function __invoke(StoredObject $storedObject): Response
+    public function __invoke(StoredObject $storedObject, Request $request): Response
     {
-        if (!$this->security->getUser() instanceof User) {
+        if (!($this->security->isGranted('ROLE_USER') || $this->security->isGranted('ROLE_ADMIN'))) {
             throw new AccessDeniedHttpException('User must be authenticated');
         }
 
         $content = $this->storedObjectManager->read($storedObject);
-        $query = [];
-        if (null !== $request = $this->requestStack->getCurrentRequest()) {
-            $query['lang'] = $request->getLocale();
-        }
+        $lang = $request->getLocale();
 
         try {
-            $url = sprintf('%s/cool/convert-to/pdf', $this->collaboraDomain);
-            $form = new FormDataPart([
-                'data' => new DataPart($content, $storedObject->getUuid()->toString(), $storedObject->getType()),
-            ]);
-            $response = $this->httpClient->request('POST', $url, [
-                'headers' => $form->getPreparedHeaders()->toArray(),
-                'query' => $query,
-                'body' => $form->bodyToString(),
-                'timeout' => 10,
-            ]);
-
-            return new Response($response->getContent(), Response::HTTP_OK, [
+            return new Response($this->wopiConverter->convert($lang, $content, $storedObject->getType()), Response::HTTP_OK, [
                 'Content-Type' => 'application/pdf',
             ]);
-        } catch (ClientExceptionInterface|RedirectionExceptionInterface|ServerExceptionInterface|TransportExceptionInterface $exception) {
-            return $this->onConversionFailed($url, $exception->getResponse());
+        } catch (\RuntimeException $exception) {
+            $this->logger->alert(self::LOG_PREFIX.'Could not convert document', ['message' => $exception->getMessage(), 'exception', $exception->getTraceAsString()]);
+
+            return new Response('convert server not available', Response::HTTP_SERVICE_UNAVAILABLE);
         }
     }
-
-    private function onConversionFailed(string $url, ResponseInterface $response): JsonResponse
-    {
-        $this->logger->error(self::LOG_PREFIX.' could not convert document', [
-            'response_status' => $response->getStatusCode(),
-            'message' => $response->getContent(false),
-            'server' => $this->collaboraDomain,
-            'url' => $url,
-        ]);
-
-        return new JsonResponse(['message' => 'conversion failed : '.$response->getContent(false)], Response::HTTP_SERVICE_UNAVAILABLE);
-    }
 }
diff --git a/src/Bundle/ChillWopiBundle/src/Service/WopiConverter.php b/src/Bundle/ChillWopiBundle/src/Service/WopiConverter.php
new file mode 100644
index 000000000..ded9b3188
--- /dev/null
+++ b/src/Bundle/ChillWopiBundle/src/Service/WopiConverter.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\WopiBundle\Service;
+
+use Psr\Log\LoggerInterface;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
+use Symfony\Component\Mime\Part\DataPart;
+use Symfony\Component\Mime\Part\Multipart\FormDataPart;
+use Symfony\Contracts\HttpClient\Exception\ClientExceptionInterface;
+use Symfony\Contracts\HttpClient\Exception\RedirectionExceptionInterface;
+use Symfony\Contracts\HttpClient\Exception\ServerExceptionInterface;
+use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
+use Symfony\Contracts\HttpClient\HttpClientInterface;
+
+/**
+ * Handles the conversion of documents to PDF using the Collabora Online server.
+ */
+class WopiConverter
+{
+    private readonly string $collaboraDomain;
+
+    private const LOG_PREFIX = '[WopiConverterPDF] ';
+
+    public function __construct(
+        private readonly HttpClientInterface $httpClient,
+        private readonly LoggerInterface $logger,
+        ParameterBagInterface $parameters,
+    ) {
+        $this->collaboraDomain = $parameters->get('wopi')['server'];
+    }
+
+    public function convert(string $lang, string $content, string $contentType, $convertTo = 'pdf'): string
+    {
+        try {
+            $url = sprintf('%s/cool/convert-to/%s', $this->collaboraDomain, $convertTo);
+
+            $form = new FormDataPart([
+                'data' => new DataPart($content, uniqid('temp-file-'), contentType: $contentType),
+            ]);
+            $response = $this->httpClient->request('POST', $url, [
+                'headers' => $form->getPreparedHeaders()->toArray(),
+                'query' => ['lang' => $lang],
+                'body' => $form->bodyToString(),
+                'timeout' => 10,
+            ]);
+
+            if (200 === $response->getStatusCode()) {
+                $this->logger->info(self::LOG_PREFIX.'document converted successfully', ['size' => strlen($content)]);
+            }
+
+            return $response->getContent();
+        } catch (ClientExceptionInterface $e) {
+            throw new \LogicException('no correct request to collabora online', previous: $e);
+        } catch (RedirectionExceptionInterface $e) {
+            throw new \RuntimeException('no redirection expected', previous: $e);
+        } catch (ServerExceptionInterface|TransportExceptionInterface $e) {
+            throw new \RuntimeException('error while converting document', previous: $e);
+        }
+    }
+}
diff --git a/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php b/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
index 0a928bcd9..9a529df6b 100644
--- a/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
+++ b/src/Bundle/ChillWopiBundle/tests/Controller/ConvertControllerTest.php
@@ -13,16 +13,12 @@ namespace Chill\WopiBundle\Tests\Controller;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
-use Chill\MainBundle\Entity\User;
 use Chill\WopiBundle\Controller\ConvertController;
+use Chill\WopiBundle\Service\WopiConverter;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Psr\Log\NullLogger;
-use Symfony\Component\DependencyInjection\ParameterBag\ParameterBag;
-use Symfony\Component\HttpClient\MockHttpClient;
-use Symfony\Component\HttpClient\Response\MockResponse;
 use Symfony\Component\HttpFoundation\Request;
-use Symfony\Component\HttpFoundation\RequestStack;
 use Symfony\Component\Security\Core\Security;
 
 /**
@@ -39,28 +35,27 @@ final class ConvertControllerTest extends TestCase
         $storedObject = new StoredObject();
         $storedObject->registerVersion(type: 'application/vnd.oasis.opendocument.text');
 
-        $httpClient = new MockHttpClient([
-            new MockResponse('not authorized', ['http_code' => 401]),
-        ], 'http://collabora:9980');
-
         $security = $this->prophesize(Security::class);
-        $security->getUser()->willReturn(new User());
+        $security->isGranted('ROLE_USER')->willReturn(true);
 
         $storeManager = $this->prophesize(StoredObjectManagerInterface::class);
         $storeManager->read($storedObject)->willReturn('content');
 
-        $parameterBag = new ParameterBag(['wopi' => ['server' => 'http://collabora:9980']]);
+        $wopiConverter = $this->prophesize(WopiConverter::class);
+        $wopiConverter->convert('fr', 'content', 'application/vnd.oasis.opendocument.text')
+            ->willThrow(new \RuntimeException());
 
-        $convert = new ConvertController(
-            $httpClient,
-            $this->makeRequestStack(),
+        $controller = new ConvertController(
             $security->reveal(),
             $storeManager->reveal(),
+            $wopiConverter->reveal(),
             new NullLogger(),
-            $parameterBag
         );
 
-        $response = $convert($storedObject);
+        $request = new Request();
+        $request->setLocale('fr');
+
+        $response = $controller($storedObject, $request);
 
         $this->assertNotEquals(200, $response->getStatusCode());
     }
@@ -70,38 +65,29 @@ final class ConvertControllerTest extends TestCase
         $storedObject = new StoredObject();
         $storedObject->registerVersion(type: 'application/vnd.oasis.opendocument.text');
 
-        $httpClient = new MockHttpClient([
-            new MockResponse('1234', ['http_code' => 200]),
-        ], 'http://collabora:9980');
-
         $security = $this->prophesize(Security::class);
-        $security->getUser()->willReturn(new User());
+        $security->isGranted('ROLE_USER')->willReturn(true);
 
         $storeManager = $this->prophesize(StoredObjectManagerInterface::class);
         $storeManager->read($storedObject)->willReturn('content');
 
-        $parameterBag = new ParameterBag(['wopi' => ['server' => 'http://collabora:9980']]);
+        $wopiConverter = $this->prophesize(WopiConverter::class);
+        $wopiConverter->convert('fr', 'content', 'application/vnd.oasis.opendocument.text')
+            ->willReturn('1234');
 
-        $convert = new ConvertController(
-            $httpClient,
-            $this->makeRequestStack(),
+        $controller = new ConvertController(
             $security->reveal(),
             $storeManager->reveal(),
+            $wopiConverter->reveal(),
             new NullLogger(),
-            $parameterBag
         );
 
-        $response = $convert($storedObject);
+        $request = new Request();
+        $request->setLocale('fr');
+
+        $response = $controller($storedObject, $request);
 
         $this->assertEquals(200, $response->getStatusCode());
         $this->assertEquals('1234', $response->getContent());
     }
-
-    private function makeRequestStack(): RequestStack
-    {
-        $requestStack = new RequestStack();
-        $requestStack->push(new Request());
-
-        return $requestStack;
-    }
 }
diff --git a/src/Bundle/ChillWopiBundle/tests/Service/WopiConvertToPdfTest.php b/src/Bundle/ChillWopiBundle/tests/Service/WopiConvertToPdfTest.php
new file mode 100644
index 000000000..317932ea5
--- /dev/null
+++ b/src/Bundle/ChillWopiBundle/tests/Service/WopiConvertToPdfTest.php
@@ -0,0 +1,63 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\WopiBundle\Tests\Service;
+
+use Chill\WopiBundle\Service\WopiConverter;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBag;
+use Symfony\Component\HttpClient\HttpClient;
+use Symfony\Component\HttpClient\MockHttpClient;
+use Symfony\Component\HttpClient\Response\MockResponse;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class WopiConvertToPdfTest extends TestCase
+{
+    /**
+     * @group collabora-integration
+     */
+    public function testConvertToPdfWithRealServer(): void
+    {
+        $content = file_get_contents(__DIR__.'/fixtures/test-document.odt');
+
+        $client = HttpClient::create();
+        $parameters = new ParameterBag([
+            'wopi' => ['server' => $_ENV['EDITOR_SERVER']],
+        ]);
+
+        $converter = new WopiConverter($client, new NullLogger(), $parameters);
+
+        $actual = $converter->convert('fr', $content, 'application/vnd.oasis.opendocument.text');
+
+        self::assertIsString($actual);
+    }
+
+    public function testConvertToPdfWithMock(): void
+    {
+        $httpClient = new MockHttpClient([
+            new MockResponse('1234', ['http_code' => 200]),
+        ], 'http://collabora:9980');
+        $parameters = new ParameterBag([
+            'wopi' => ['server' => 'http://collabora:9980'],
+        ]);
+
+        $converter = new WopiConverter($httpClient, new NullLogger(), $parameters);
+
+        $actual = $converter->convert('fr', 'content-string', 'application/vnd.oasis.opendocument.text');
+
+        self::assertEquals('1234', $actual);
+    }
+}
diff --git a/src/Bundle/ChillWopiBundle/tests/Service/fixtures/test-document.odt b/src/Bundle/ChillWopiBundle/tests/Service/fixtures/test-document.odt
new file mode 100644
index 0000000000000000000000000000000000000000..b6f6444082151390d1fc8e52ea568c70c745d22b
GIT binary patch
literal 8918
zcmb7K1z40@w;n)3S|p@PQeprJNhy^^x_gMB24;u>0cnsFq@*My3`#^gq+1$E>1JpU
zi94Kg{nc~P^WViY4{PT6-gmFPcFf-E9aROiE5rZ*768x^5T<R^!i&oS001st$d3T_
zHufMG90D?hK<sSHO<^{U4&1H|7F>>|P#Y+hBLw7N;b`t+4|0HU!9eaX)nCYv`2QFc
z(vx;{u(YvqasG=2%FAtPZVs{oA>TSWbN?PmdkNCU-qZ>N<(9I6*_%S3e*jZl0){y{
z+CfYmKz4t?T^26H+0n`w1cjQJ{wdtcT7<$(VJ`oIyYZVy|J>STC`&s>QyA#~8zaOK
z;sQYqq{|<&a#?E^kRLH(VPX9>kC2`DkKrOcds7D+OAr*s<!oWu9oy~T4<rmghz5ds
zM(=W?qdT*9RDjd#`Ga)Oxp$ruP1Q!mYCX(;wVFOSS8$JSI<ho*!<4EmtR$~N<F+{)
zQ^y1A_ba!AtGFs&jth^CmffO#PQ4BGf0@o+>E^(G$2dNaQxMm#_gyBd`}18<m1>5D
zAt9#+xGklTSXXHxq-^%*A5q-tnZ0VM{SdbHA{u^3Cl)p-od2Q(+q6urCb*35sqfv0
ztBM@~Fn_8_Wrb$G_}zzh8ZtI!TTN;P{4+&Owr)lCj!uQ(<}4U}sVUkt@SlDZXYH|R
z?%^`fygkkM%p`?(Q)RVE1b)7B#?^aHK3iDoDr0xIC(G(MdZ~1WR`Y(Lssbif>7jK$
zItl>bj|KqzJ^wFD-(SlR1T*Dwx3`N>SBgpo5?3E;(^YB%TRszVn7kC*D^<J2ALkK9
z^^Mbs%+8`K=Iq<^-freQdo9U=bBC68CAm;TIKo6PUvqN~xFe=&fRo=basK|Cbp0fE
zRw2jOm<f~pHUg|Fkk`Q5E2pWTz$g><jm4JoiR$#Bsfv`nJn{W&l1xNhC0`7s&WF-T
z{Dlrhvhpn7+U1+^mkv6=qEzj~I&OG5r>D+&B>ZYcksqIkN)p{aPgbbOdM52w{?w*@
z(7<h3bGHoeTkYAR=6Sc`VoCLylGarp&aTf9%!`Py`cPwz6?~&GJ6IPUaP5Y#0>KlZ
zCvuPH0CQr>ta8idL^(oCa+S>wgEm=t8&<?tBF%_m?1^G01(?Y7tOqm*`zyl;WUN}=
zJ)!kHIfBwa22S40_`uQaeG5nVM4d*K2K3xyY?%)4O_Z3Uql~1MR3OwSBz52IU<|fO
z)Nk;Q834DRkZVy4rxZ}u2+UH<v9vCdcJ+^T;VqzUsPs#X12-)vc0R4Yy@Jkl!~O{w
z{Pvbtwc4|Qn~EQgW@KM&K02xyrzxXE_(810X{hLl#6;anh$KZZkDQEx#A^s(2xE>j
zl#3DHuob;hjU4gzKaTjtf`NiyFdGLe=*6hl=ubl_?%;aY)iE@B%3F_>n#RB$2L#=^
zg7JWFMDX3Mda}YAb5FFBLl!u_5?b~%*~2UA1nu!JRnje>+n}_(ES4f=3NPJP)go-v
zzLAO?`|~9*2|F4eF0YE?wU6PgynbN2Ob(QdC~EhpsB*?fhE-sTJ)K#cq#;el6qqI_
z5k!+#QwiH+UvGb5VCV%$9j~^Ugi(CXRPK;7Tp+n7IklG0RjnW;Jw2guaww}MaS2n-
zRlH<t>sxFr!NSSm?!e4Q0h)dfFRtC!(?A<#1?^iRZ*qKGic=KMoH)d8S|n#JfYe-d
zKhkTb-|R|zt2MSaRfu@hx@1e*^eOx05Ov*y?MPk^wMyX%*21t+Lp#crH0e$M@KadU
zmw{fZIKPjMlFB*B!G?Dvz8-l?toY|A?bF|*^>5KwzFMwLaj%7yuoAXlkMV8AdZm(|
z50m<Oqri%J#zfC-)b*z{3e=5Mvo7ZLu0>n;!c~UrmOEM};JhAvxfW*Qse#d(Zm$uV
z?72&Erwa}^afh@j2l1=(4;p6tnL@<etugaY-}3lfbKj|mUa#Dqx~Y!_>GeGaGLvWK
zjZ6vf50jy0m+2&S35ItNoeJkA^y8H4bJaL>%{63tOmZn*gPVUq_CjU6bOJyuLo=Jx
zjDstEjuCwjm=GlCs&rq-CnOknXsFn04kA=zX3$&Duxo5i09I@q5Wxi{9_xC$8AThn
zagZyVUzJ>@C;gVj&($1f0fa_RW6nx!316d9JOi-2{^H0t_8b}prd!{<8lO!wPk=tl
zkgydbDR}#dg6QX$T$!z*{7F-lE$DFu`aC#X-Hf#b5LBho>&ciyr2^ssOBgBK@!8G<
zQdDa*94255+`{5B-~f<DGLucRS=17HhmC~!qquWkxtv;EIZYtjM8^#S6&)w{gv$8H
z*$NRFb-TUr*wRfI4+4pok^(!V1D@)f6YRM|AGy<*<i~YpaMiBOz%bPJs_&0H8-`at
za#tAc*Wk2%%B+<=fL|#)Fe-DDQPCN5O@}7gySo}we|K&0n6N)s$Dd1GOPPJmeWrL3
zHL_ouw3Sv;R7a?~A<$V;w((}Z-&eX4-hD^#*ffh@=JQyo-PbmZX6FRpN<Gfar*uwl
z@pu6Fe6baj)aEo}%KT4+0pqyO6xBmKd3TaP<lgG!Gh#CbsSPK5Pi>p0=u0Qot_8ZQ
zzLNsti+!MrM(1#<#MhX>TAG%3lLfN{?x5jF;!hC@qq-d3Z8%zfC1i~<j^YSvG8M9z
z)xdZ4!`y0f^HL4Dr2@Ro`3A5*T=_b$SO{vNkQEpG=5xA3i)^YV1NwL=Gx_6QA>JJ?
z3LJuLQ>?_gt#32h*-v%D6udYI%>o*`(r-$&Qc`FM&D7jNxoH~p)uN1y-1FcS*hz7@
z*kCo|Dv2!`@qJzLW4ZTT$>bYoq7NiC=-z@*3%haNRahBL^_e%QnGEz0%J+yo(trL%
z{Z0~%xs)`+1AZx#_;7kh8zMy#XZ0?`aMh!#@rAgg6{ra>B}sJ1vlojL>XHit{rjNp
zU6bvHVd$z`43Wfr&eQd)^>;m!?nx1KctnmVn?xougxJ!<dD%79P4eBg9;0h@pv_`Y
z3qlR9b81l9v{TAs6F<2limq|2Bs^x^Ue8TjE&|0ff65l=$_9VOGT-?yg)N@P+_5A3
zM!Xg6sv1t!DASohV)Y^>4GZMR^f2`iUOT;tmbllk`x(4<BTu!ciLeluPgon6Mzqx7
z!l#nlY447@ud>|W)L)gulZM?K-{VOvExi#+8F}WQ)E;_|o5DS|zypMPVjIVjC+mAP
zA<~@cQ5A&TFpw(r?)ht8#*Bi5R{4;j;{BHmI|FN)Y4ASbc{#p-``pjAN(Pr~T<)Js
z&BMp5P2bk4UEhl+`Eb`#+Vx(Q;4Nn0gMhIPp(p&AgzY}Okp=hWG8S%VxJ;mt<`Qp6
zhwX)q(aCRJA@b1Ww7a&rAnMT!?Hqd#(-*Ey)fCQYDCMbG57<Jtv(0>3B!QrrZ?U!M
zDJ>Jtcs~LDXnl%d`|Z@{fqy}F>b8$nPv^E@&WuzIJB*oFTkt$V>DyUR_e%!51Rl6H
zP@k46AjhKHa}DSK*~s_rilvs49HowW$fBToV<PF;lb?D?$DfZO!5WJM^yIa?9p$yd
z;sRd14X7(9HxL~1?0B;jC+hJ=<@0JktGHVKeO{s`@b{bhRN5?lv?h33xpi!cI4(G2
zW><PGB3VvZmy^k<6K3lbyGFe@F!7Ci(8DX@bo^{)(ZcVOM&}gshDQz(FMVyFJ<e<=
z3X$j?B{Wk5pG{^Y`n}CXe9hP|aA2Ji%B*2LDUDo-S98uooyLwvosVzhU`Sj;!KgmK
zGPJVdnAc((M5VV^>uZ2kTC{gA*UzToOndYfRUf1W?3DS~8k}NYe6K3cCnwTi0ssh}
z?<cA67n=Tu^7$pmZ`+I4#qm|c+Qr_?!PLeM$_@MOazPxdLRFRT<6%=^BOk$&dmy6*
z0HA;Y08{`L5(h}}9flzPd8;aF$m*-B*w{jx9l-A1!G12_Ah>;)r$gu?$WvcvN~BL}
z`pajTMR}#wC8ecrYkP|8dW-9OOF#D2SC=<7)Hn7`PL1{s4h#$qjSh}ZjC~#$nwlA#
zoSFDCH?p`pwzN0Bc{IPWxx9v$MV#zxuI+8D@9ZBP?QNZ%ogv#lKR;(lh591HLdeNT
zYPgSW4BKM+-30{p<p(tw`RSVJGU(2oxs9?jGxU52*qw83%;Y8^d~uI+FfWjTADnUF
zJjA(hBJ}=p2Bj{XEK=}yXH_DzV0A*dqDGs)@Z;e2HOJQ*6;X^x*9NzB5>ykVV)PO-
zTQ2wvHkloyZMr%VU1hU5wOikbCiy373Vzg!2;Qq^{aYx=;J$});aotF!TpT=FG#ZP
zJ-!5ZS^qCh#4p%?w0;@MAl6?&UK;H$&;Kz+fA{p?Ng^mv{w+oS+vtBe<iE-D_sALV
zUNTpHNzvb9`d^I8zYi`y_{t>{)aM1ki*V%-xk9c1<RSpb$tuefNSXNk{>F5%h@mjJ
z9q6yq^M;;r)Oh(dA4Dz?R$kjzvOd{4*1h;Rhtp%^CZ<9E5*p`2Qc8K^2jH5XT*Owo
zOnZ#>=WY_tRWF^pDKlM=MZre;l@ST?c)RVp0om1+Q85ebdeQ6)<Ztm0`y?bz@g`*@
zYQHwxrY+rOstV6ll4B3d7Up3f16IU{D9oo!-w#yV=Zb_Yv5QpB&k`1DzqYrlV-#eG
zbI#H`o7*lIb-+dB8k;LgKM{R33JudUjP|0$QG;fPy2Y1uxiBW0cJ?O%Gwl<cN)+|l
zZG6$&9Aw_l>8Mq_hRDq;zZ7}fTIfawM1;q#KYk?Cm5TF*bpaGXGRa4T-F`*9CoU6C
ze|rYDkykOm?<hoO7H<SuS4uI9FAE#uNv|>J7FBhr&Rb>8WBB+kL1w0+^0s5%>eIf}
z-5X^w8?Ka;udKSi8Zbr0WTdDBZ1EmAVvK$;hLThbuAx}Qc4KxiuVtVkmN5H(!S7z@
zOkC&D7t}hU!u)y?*jVk7ocFj1e`WU5aAt}iiM8MHLiW?v=UA`g5|eDI(gOG#MK#ND
z)f3;4vD|#Ev+I85-^MEtBuiKmn!)88^$Crs6>);wl3uKc8FN>P09c&@q!0B)dx~jD
zHlFe#0RHIxYf8<IJM2uEB=ekwZVl_I@K8;jr{Qkfo^;QB5YsMfY#kMZebqG{DcE|w
z1wrvu+IO%uBky%;;VVUu_Ru%vRD@0)QS&Ypi7W~+u`;s7IvR~%u?{9X&`)-ut;vd3
zV$KPRD)$4_GtcNMbSNM8(K>Z6q+>jC1?ug|*m}e0NCGhBD@E1VJgN9K*_vihaKKws
zy@Gf$i|_0P!ui6lS2qoXh0mdDhSf!58qA<|B?&mxFNc4V-)<l2sJoFAtC9VveN_U|
zjE7I^=yTROJ2x)378HIixptdqF^LS~&G&6K-vTyQ=DEMt_8^jS(L;~>v#tkWIhQpB
z+~_a@%<3+~iY-=Tl&az9!~BT~h+j45mYhuMu&q@3i4uiarbVyg^}c`#eUfvnh#zZ{
zEeQOe`RSRfx`i*Fw~Wc#o7iGg_g^nCbKVclMR_P0{NzO={exklK&@*e2A{YM$n3f+
zYpdE$UXaD5y_4EVxwRkeB9jB<^>?AlXOG@6g?3pyE~LP*JDJ=qqqp%6plp7R51{VG
z`tT-k2>k#%oZM3q2=gaoc+RfU*PT=LcAi|(3N_!0K%=xHWD2;a%VH2N*guX{gYqS4
zL@mo<Y(3s^+^g*QJtBzo%PjCSks{W<yW^&U(1M{`)awXOS7j30`h*OHWAx?rN-fLq
znbl8U&~O(%;%0x+WJPg4KN%Uek!kRb6u<s330<ELL-?9qK{-Y5L8Q9vVM;p~uK(fe
zFvxv1;iGzrY}(dAV}-+{Ki`g!Q6A=)zR{Y$??JrYr;M}sy@B979EU=!E;c$&ip;R0
zAXNxT+uM1s(y|3#RGP8ESq-vmUiy2uR^(UOZh+Y_vzY8h1o-$@bL2J6(N{arxB$6#
z>(hIvqu|dT=F!Dzp?V$L_cOUlRDri(2}2{qN9l^bgaJ+34fMR|Y&>tHYnivVM1vhC
z+sxX`7^$35-l!XNny9-wV2sV_s}_-8-L~p2_vC^p+thy)M_)F7VPMs$K*HD%g|-0X
zeQ??vF!*2_?O~v};o7>Fyi?vM%li9m&A4G4&)?h?uf|n?yisoA;_O{GP5r`=hZ#F-
z@}lON%v_F!@RD?p3UF)OV}Cr&DwpS7+N(GwQq|Y>p!W{!4#PS5%PofnY+mz$-i*3#
zAhy6~fE7H;#*Jz`zm<FJ0}&>!O)OtEW}dT3F5X_c^$FpVNJ(0i%+<%Ts);y)<ct-I
z@7|cnRpDPtn@W<<1l}Lvd3SIpS#Q%SZB!T~w$tWL4%y(4NliA_hxE3UVo_hi50*#7
z7X1u2>u#!~r~1XNxb1=+j+4Bz==N0aZZfrR9PZZa;UkM?9OqIbW_t7CU5E^qQ%!3x
zaUCm>MNWa%PDd=ft$=!C-84fyZ#lRCg7jeLGgYfax>?a2B1e0G$upCw)Z7E3v=fpU
zxO=vKLqGk_YTNuY4%%*Ib$wI(W_Su-X8IT6lOsHOnTYBz!sB~0XN8^W=3<V|Y90#h
z?s3Nx;oTsI({&Y(@2{cg+#fgMXX+Q6xxsF=reoMJF_>W`O_VUWH%`bN>(XQ#`b8`n
zg)LZqIx#Agx=84=B`_G{IjvmK0gJvu#xC9j513LlH(qRje(kmNG5%)*>VCJj?jd@w
z;0dD(mq0ssk9ucyHM&-MvjBfZ#KP01?FEniDJ?u(1$$D%N%m%Gho&+?MAbI<YFjFX
zb5GnE&92VuvDY`{ua9-5VRep}r!t>CI%;kQK-cLdC1kDPXG^pmHM^WQH3dL))PkSF
zMrc+zZm9FYn~Dpo7M-D08<B11Q%+LC+`yPy_p>zFyP|0Jm1#x8DQzY_%WEMRNw;Ow
zz7SYph6spD!aOnK4qcLD7#02Bm1R)b<oKMwQ;vVFIlGC1+c3TV=0m4;>@663y)U+t
z<US(OAg@9dRh<M6LCL&Hfzdd2-^%|Z`R)B^es|`wBWWgYyAd<4kL%_^v2g1>^_Z71
zi4=%BQ+^G@+RGv5xCxilQ#8u4>sz5SBcko><TDKw-tQ>PS9o{DV^aDKWFp`B@T=)Q
z(it3eLRs0Ea~-cO`#KGL(`8It>mEg4Usy(`Bk?vdN(d$ibmz)zT)iViozYYh*9V6B
z>-9H}JpHr?7?g~}ZEBs9@b%txytqVAzNp$@LRMR)IKN*aE-T04AP*Pjjt;O3$>X9n
zr>*ZeE<o%(T}Y^5;)tCk)NID@N~=da8jsr;gW~m4PM-N*D3zS<K^=nLrFdS3OP|ck
zNh%F7;a&@snW~#kU>M`EFMp%u<l#bn{|!UT&MTefb8#Q}&Dp~><4sT+^dm33oMA}^
zvy2w$*}WHrNpIrh*|fKZ_2TGnlDr<9yp@jwgL>7-YzS|{LU?dQz9i>VfJte-oe(&e
zG?moIidBAk_GILf3EUT3rntF1^4+3RVe$0Xj%Ea`!hnH$Bcoz)!JA~HvLn*Tii9hv
zebk7j+ptH+Ld{Q#!6pszz*r%U8qeZvU3faEx9NFiZxn%wMW;NjKzQ@ewoGY>RS$x*
zUs2B9^EMNj&XAt_4W^K*i+=p9HS)m&jQVfv6X*mcU=_NvyBlH8BkJeux(cv{&{<Wp
zG)8wKOw1WI=9mYcG@_ojtVZHytm2CdqZ`HWVS0vPky<<$rn!QnJmRZjz;9*9{~XQ9
z!@ZpYe}AFqdgN83Q^8(G7O@?X!S<<;n+beOqSMnKSWYJkq^RA*1nIl{g05Rive-2w
zZ!vgm=~TVy#2aX+HQlM6m!wG(TAsv>z*ZFHH6&}S?*<wAvfSt|>}JZ1SK_D^iYUah
zBA^gl(+%9CxT6?Fwj<)VDKB0EWUJ$_x}Qh+(QYYcq8`$71uyvvFI)G@k?YvNSEV}f
zx?tuOSCN5Wx8-XAXG`0rC-1L<T33Rb3A;77=<NDpn^GkCV#o2o%}#@<)605AAtR^M
zFW!Sc6+LY<q-*Cfy$X^^-1i#CZ*(0jFwA~^<SXq6SC&yJM>XDRU(R463)VcjrPW_8
z((pdn={C>CmRtinD>ttD0K}XbtC`ccf4yiiZIV^=HZTdZdGRqygN^R&YUY>u`0-`N
z@fmEg7kso6SBr2qDZ6v0!RK}${FaiPnDz4*Ee{$Q+Os1*k7FR^B-<9ty`@A#(kZO3
zjkD6w?$M38F;sL;me3D;u>A8>i(NP2qg69)ojED<_Z#R%Gc+jPPfPVwAaO5s2FeB3
z9ZW<0=sQanx?~zD>HRZM=SVD9m<`WdDWh)sXU$)kBcf{dR6GRfrJ69VnCg`43?H5u
zS&yFci$a3t;1%RwIXfbVj-uPfK59N;LKPR<N_i}|+HBunhx3qfJQ9^`PPQfOo0^d&
z`dQ6rTk8R;cX6spb)Jht@7G4{w=Ic^cN^Y=T3o@aI*76uYc-48yF!LOe^uQ54helz
zkaze={68&f66B&*lGTvplvBRP{U5CgxxC-THaIlW;RYeRo`kFsFPC)&JU;;1sC*Iw
zC@4OW!9`W)ca$LFSIWs(W84oa{(3eY|CyRAm9vL1(@CdTyB36QvO(c*-&`AIynrdP
zE?A|U(MKq!9L!MH=#FzM9#uX!Gn7aZ^Pw7NDyE%5s_@+ypS6WNSQshB)MpZVY6E5m
z>xC=*T&7v9+QxxjX6X~@U%r9qB~#4%0ogYMn<xAPNIMK@jz2$E9*#Ha%Qu@XD1>8u
zx}m9t$S~{hv|a6s7BX*aCEo(ArIg??54#`1@|2Q4hD12dN^T@ZFAc+atBr_;Lsi^F
zZy%$~80^Q$YJ&m!4Xe~=K%Qa>3SU-){UhNcclk*IcJr(kD{W$BZZe9wdW6#6sa~s`
zqSKG2u27V1@oXxed|Ulye6fi>QwYZ4L@FFiS1$66f=Uedy||1_`cL*<YW^qcr$+!6
zvg{92Lb`v}lz(mi2ND3dP?djJFw*@e)Bn+!e@}Ly`Tnpbr29{@pEc*-^ZeSqlS_Dh
z)u4aR^lL-{$N~9hL_cfNzvsCqnf)+_OL#7N_P74~-?C(1!tz72{yodDeHy!j<!251
z_dLJ$i3s)o=H`c{{Wr_^bHLAn?S)A9!yX`6{<Ci&HSX_|_&f4v;qOAw{b9k#%?bG%
zi@)UEf1-XaYyR3E9Q{{`@H_H%WzQe&^&yFVR|Nge@;&OGPed0*l^<3?_;ZQnpSYhl
w-HY?m4<jZ2<@EGV;Lp3q#h(1b){txC(j8h=0UhJwv1`ab5OUMer@46dKS$ByxBvhE

literal 0
HcmV?d00001

diff --git a/tests/app/config/packages/wopi.yaml b/tests/app/config/packages/wopi.yaml
new file mode 100644
index 000000000..e02694625
--- /dev/null
+++ b/tests/app/config/packages/wopi.yaml
@@ -0,0 +1,2 @@
+wopi:
+    server: "%env(resolve:EDITOR_SERVER)%"

From d33da6519ae01fe217bdd757b2f005a47abf51bc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 12:05:23 +0200
Subject: [PATCH 222/375] Add StoredObjectPointInTime entity and related
 functionality

Implemented a new StoredObjectPointInTime entity to manage snapshots of stored objects. This includes related migrations, enum for reasons, repository, and integration with StoredObjectVersion.
---
 .../Entity/StoredObjectPointInTime.php        | 67 +++++++++++++++++++
 .../StoredObjectPointInTimeReasonEnum.php     | 18 +++++
 .../Entity/StoredObjectVersion.php            | 46 +++++++++++++
 .../StoredObjectPointInTimeRepository.php     | 27 ++++++++
 .../migrations/Version20240910093735.php      | 49 ++++++++++++++
 5 files changed, 207 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTime.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTimeReasonEnum.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Repository/StoredObjectPointInTimeRepository.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/migrations/Version20240910093735.php

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTime.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTime.php
new file mode 100644
index 000000000..bff5c60c1
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTime.php
@@ -0,0 +1,67 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Entity;
+
+use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
+use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Chill\MainBundle\Entity\User;
+use Doctrine\ORM\Mapping as ORM;
+
+/**
+ * Represents a snapshot of a stored object at a specific point in time.
+ *
+ * This entity tracks versions of stored objects, reasons for the snapshot,
+ * and the user who initiated the action.
+ */
+#[ORM\Entity]
+#[ORM\Table(name: 'stored_object_point_in_time', schema: 'chill_doc')]
+class StoredObjectPointInTime implements TrackCreationInterface
+{
+    use TrackCreationTrait;
+
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER)]
+    private ?int $id = null;
+
+    public function __construct(
+        #[ORM\ManyToOne(targetEntity: StoredObjectVersion::class, inversedBy: 'pointInTimes')]
+        #[ORM\JoinColumn(name: 'stored_object_version_id', nullable: false)]
+        private StoredObjectVersion $objectVersion,
+        #[ORM\Column(name: 'reason', type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, enumType: StoredObjectPointInTimeReasonEnum::class)]
+        private StoredObjectPointInTimeReasonEnum $reason,
+        #[ORM\ManyToOne(targetEntity: User::class)]
+        private ?User $byUser = null,
+    ) {
+        $this->objectVersion->addPointInTime($this);
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getByUser(): ?User
+    {
+        return $this->byUser;
+    }
+
+    public function getObjectVersion(): StoredObjectVersion
+    {
+        return $this->objectVersion;
+    }
+
+    public function getReason(): StoredObjectPointInTimeReasonEnum
+    {
+        return $this->reason;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTimeReasonEnum.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTimeReasonEnum.php
new file mode 100644
index 000000000..9f03c7279
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectPointInTimeReasonEnum.php
@@ -0,0 +1,18 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Entity;
+
+enum StoredObjectPointInTimeReasonEnum: string
+{
+    case KEEP_BEFORE_CONVERSION = 'keep-before-conversion';
+    case KEEP_BY_USER = 'keep-by-user';
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index fed183057..e034cb378 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -13,6 +13,9 @@ namespace Chill\DocStoreBundle\Entity;
 
 use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
 use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Doctrine\Common\Collections\ArrayCollection;
+use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Random\RandomException;
 
@@ -39,6 +42,12 @@ class StoredObjectVersion implements TrackCreationInterface
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
     private string $filename = '';
 
+    /**
+     * @var Collection<int, StoredObjectPointInTime>&Selectable<int, StoredObjectPointInTime>
+     */
+    #[ORM\OneToMany(mappedBy: 'objectVersion', targetEntity: StoredObjectPointInTime::class, cascade: ['persist', 'remove'], orphanRemoval: true)]
+    private Collection&Selectable $pointInTimes;
+
     public function __construct(
         /**
          * The stored object associated with this version.
@@ -77,6 +86,7 @@ class StoredObjectVersion implements TrackCreationInterface
         ?string $filename = null,
     ) {
         $this->filename = $filename ?? self::generateFilename($this);
+        $this->pointInTimes = new ArrayCollection();
     }
 
     public static function generateFilename(StoredObjectVersion $storedObjectVersion): string
@@ -124,4 +134,40 @@ class StoredObjectVersion implements TrackCreationInterface
     {
         return $this->version;
     }
+
+    /**
+     * @return Collection<int, StoredObjectPointInTime>&Selectable<int, StoredObjectPointInTime>
+     */
+    public function getPointInTimes(): Selectable&Collection
+    {
+        return $this->pointInTimes;
+    }
+
+    public function hasPointInTimes(): bool
+    {
+        return $this->pointInTimes->count() > 0;
+    }
+
+    /**
+     * @return $this
+     *
+     * @internal use @see{StoredObjectPointInTime} constructor instead
+     */
+    public function addPointInTime(StoredObjectPointInTime $storedObjectPointInTime): self
+    {
+        if (!$this->pointInTimes->contains($storedObjectPointInTime)) {
+            $this->pointInTimes->add($storedObjectPointInTime);
+        }
+
+        return $this;
+    }
+
+    public function removePointInTime(StoredObjectPointInTime $storedObjectPointInTime): self
+    {
+        if ($this->pointInTimes->contains($storedObjectPointInTime)) {
+            $this->pointInTimes->removeElement($storedObjectPointInTime);
+        }
+
+        return $this;
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectPointInTimeRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectPointInTimeRepository.php
new file mode 100644
index 000000000..c5c923ac9
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectPointInTimeRepository.php
@@ -0,0 +1,27 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Repository;
+
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Doctrine\Bundle\DoctrineBundle\Repository\ServiceEntityRepository;
+use Doctrine\Persistence\ManagerRegistry;
+
+/**
+ * @template-extends ServiceEntityRepository<StoredObjectPointInTime>
+ */
+class StoredObjectPointInTimeRepository extends ServiceEntityRepository
+{
+    public function __construct(ManagerRegistry $registry)
+    {
+        parent::__construct($registry, StoredObjectPointInTime::class);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/migrations/Version20240910093735.php b/src/Bundle/ChillDocStoreBundle/migrations/Version20240910093735.php
new file mode 100644
index 000000000..21906b168
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/migrations/Version20240910093735.php
@@ -0,0 +1,49 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\DocStore;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240910093735 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add point in time for stored object version';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_doc.stored_object_point_in_time_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE TABLE chill_doc.stored_object_point_in_time (id INT NOT NULL, stored_object_version_id INT NOT NULL, reason TEXT NOT NULL, createdAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL, byUser_id INT DEFAULT NULL, createdBy_id INT DEFAULT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE INDEX IDX_CC83C7B81D0AB8B9 ON chill_doc.stored_object_point_in_time (stored_object_version_id)');
+        $this->addSql('CREATE INDEX IDX_CC83C7B8D23C0240 ON chill_doc.stored_object_point_in_time (byUser_id)');
+        $this->addSql('CREATE INDEX IDX_CC83C7B83174800F ON chill_doc.stored_object_point_in_time (createdBy_id)');
+        $this->addSql('COMMENT ON COLUMN chill_doc.stored_object_point_in_time.createdAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time ADD CONSTRAINT FK_CC83C7B81D0AB8B9 FOREIGN KEY (stored_object_version_id) REFERENCES chill_doc.stored_object_version (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time ADD CONSTRAINT FK_CC83C7B8D23C0240 FOREIGN KEY (byUser_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time ADD CONSTRAINT FK_CC83C7B83174800F FOREIGN KEY (createdBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ALTER prefix SET DEFAULT \'\'');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ALTER filename SET DEFAULT \'\'');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_doc.stored_object_point_in_time_id_seq CASCADE');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time DROP CONSTRAINT FK_CC83C7B81D0AB8B9');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time DROP CONSTRAINT FK_CC83C7B8D23C0240');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_point_in_time DROP CONSTRAINT FK_CC83C7B83174800F');
+        $this->addSql('DROP TABLE chill_doc.stored_object_point_in_time');
+        $this->addSql('ALTER TABLE chill_doc.stored_object ALTER prefix DROP DEFAULT');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ALTER filename DROP DEFAULT');
+    }
+}

From 669b967899527e341a8580164695e66544fd1733 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 12:06:09 +0200
Subject: [PATCH 223/375] Enhance object version removal to exclude
 point-in-time versions

Add a check to exclude versions associated with points in time before deleting old object versions. This ensures that such versions are not mistakenly removed, providing greater data integrity. Updated tests and repository methods accordingly.
---
 .../Repository/StoredObjectVersionRepository.php          | 4 +++-
 .../StoredObjectCleaner/RemoveOldVersionCronJob.php       | 2 +-
 .../RemoveOldVersionMessageHandler.php                    | 8 +++++++-
 .../Repository/StoredObjectVersionRepositoryTest.php      | 2 +-
 .../StoredObjectCleaner/RemoveOldVersionCronJobTest.php   | 2 +-
 5 files changed, 13 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
index 1ab9b9edd..60ea07420 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/StoredObjectVersionRepository.php
@@ -62,7 +62,7 @@ class StoredObjectVersionRepository implements ObjectRepository
      *
      * @return iterable returns an iterable with the IDs of the versions
      */
-    public function findIdsByVersionsOlderThanDateAndNotLastVersion(\DateTimeImmutable $beforeDate): iterable
+    public function findIdsByVersionsOlderThanDateAndNotLastVersionAndNotPointInTime(\DateTimeImmutable $beforeDate): iterable
     {
         $results = $this->connection->executeQuery(
             self::QUERY_FIND_IDS_BY_VERSIONS_OLDER_THAN_DATE_AND_NOT_LAST_VERSION,
@@ -83,6 +83,8 @@ class StoredObjectVersionRepository implements ObjectRepository
             sov.createdat < ?::timestamp
             AND
             sov.version < (SELECT MAX(sub_sov.version) FROM chill_doc.stored_object_version sub_sov WHERE sub_sov.stored_object_id = sov.stored_object_id)
+            AND
+            NOT EXISTS (SELECT 1 FROM chill_doc.stored_object_point_in_time sub_poi WHERE sub_poi.stored_object_version_id = sov.id)
         SQL;
 
     public function getClassName(): string
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
index d190a4e45..d2494266b 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionCronJob.php
@@ -50,7 +50,7 @@ final readonly class RemoveOldVersionCronJob implements CronJobInterface
         $deleteBeforeDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
         $maxDeleted = $lastExecutionData[self::LAST_DELETED_KEY] ?? 0;
 
-        foreach ($this->storedObjectVersionRepository->findIdsByVersionsOlderThanDateAndNotLastVersion($deleteBeforeDate) as $id) {
+        foreach ($this->storedObjectVersionRepository->findIdsByVersionsOlderThanDateAndNotLastVersionAndNotPointInTime($deleteBeforeDate) as $id) {
             $this->messageBus->dispatch(new RemoveOldVersionMessage($id));
             $maxDeleted = max($maxDeleted, $id);
         }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
index 69c9f283d..ea3e37be7 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectCleaner/RemoveOldVersionMessageHandler.php
@@ -18,6 +18,7 @@ use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 
 /**
@@ -49,13 +50,18 @@ final readonly class RemoveOldVersionMessageHandler implements MessageHandlerInt
         $this->logger->info(self::LOG_PREFIX.'Received one message', ['storedObjectVersionId' => $message->storedObjectVersionId]);
 
         $storedObjectVersion = $this->storedObjectVersionRepository->find($message->storedObjectVersionId);
-        $storedObject = $storedObjectVersion->getStoredObject();
 
         if (null === $storedObjectVersion) {
             $this->logger->error(self::LOG_PREFIX.'StoredObjectVersion not found in database', ['storedObjectVersionId' => $message->storedObjectVersionId]);
             throw new \RuntimeException('StoredObjectVersion not found with id '.$message->storedObjectVersionId);
         }
 
+        if ($storedObjectVersion->hasPointInTimes()) {
+            throw new UnrecoverableMessageHandlingException('the stored object version is now associated with a point in time');
+        }
+
+        $storedObject = $storedObjectVersion->getStoredObject();
+
         $this->storedObjectManager->delete($storedObjectVersion);
         // to ensure an immediate deletion
         $this->entityManager->remove($storedObjectVersion);
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
index ace122bea..4b134a1fb 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Repository/StoredObjectVersionRepositoryTest.php
@@ -35,7 +35,7 @@ class StoredObjectVersionRepositoryTest extends KernelTestCase
         $repository = new StoredObjectVersionRepository($this->entityManager);
 
         // get old version, to get a chance to get one
-        $actual = $repository->findIdsByVersionsOlderThanDateAndNotLastVersion(new \DateTimeImmutable('1970-01-01'));
+        $actual = $repository->findIdsByVersionsOlderThanDateAndNotLastVersionAndNotPointInTime(new \DateTimeImmutable('1970-01-01'));
 
         self::assertIsIterable($actual);
         self::assertContainsOnly('int', $actual);
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
index 937253c81..df75eea93 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectCleaner/RemoveOldVersionCronJobTest.php
@@ -46,7 +46,7 @@ class RemoveOldVersionCronJobTest extends KernelTestCase
         $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
         $repository = $this->createMock(StoredObjectVersionRepository::class);
         $repository->expects($this->once())
-            ->method('findIdsByVersionsOlderThanDateAndNotLastVersion')
+            ->method('findIdsByVersionsOlderThanDateAndNotLastVersionAndNotPointInTime')
             ->with(new \DateTime('2023-10-03 00:00:00', new \DateTimeZone('+00:00')))
             ->willReturnCallback(function ($arg) {
                 yield 1;

From 1ddd283f26bf0ab545a28b7a41becebc030efc05 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 14:19:14 +0200
Subject: [PATCH 224/375] Add signer type differentiation for workflows

Added a method to determine if the signer is a 'person' or 'user'. Updated the signature template to handle both types accordingly, ensuring the correct entity type is displayed in workflow signatures.
---
 .../Workflow/EntityWorkflowStepSignature.php  | 12 +++++++++++
 .../views/Workflow/_signature.html.twig       | 20 +++++++++++++------
 2 files changed, 26 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index 527ede0ef..7f6c5cdda 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -140,4 +140,16 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
     {
         return EntityWorkflowSignatureStateEnum::SIGNED == $this->getState();
     }
+
+    /**
+     * @return 'person'|'user'
+     */
+    public function getSignerKind(): string
+    {
+        if ($this->personSigner instanceof Person) {
+            return 'person';
+        }
+
+        return 'user';
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index 68b6f4274..50172089c 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -4,12 +4,20 @@
     {% for s in signatures %}
         <div class="row row-hover align-items-center">
                 <div class="col-sm-12 col-md-8">
-                    {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
-                        action: 'show', displayBadge: true,
-                        targetEntity: { name: 'person', id: s.signer.id },
-                        buttonText: s.signer|chill_entity_render_string,
-                        isDead: s.signer.deathDate is not null
-                    } %}
+                    {% if s.signerKind == 'person' %}
+                        {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                            action: 'show', displayBadge: true,
+                            targetEntity: { name: 'person', id: s.signer.id },
+                            buttonText: s.signer|chill_entity_render_string,
+                            isDead: s.signer.deathDate is not null
+                        } %}
+                    {% else %}
+                        {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                            action: 'show', displayBadge: true,
+                            targetEntity: { name: 'user', id: s.signer.id },
+                            buttonText: s.signer|chill_entity_render_string,
+                        } %}
+                    {% endif %}
                 </div>
                 <div class="col-sm-12 col-md-4">
                         {% if s.isSigned %}

From a60ea0e0661674ee56bde9ce823a3d5b8985e380 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 14:28:47 +0200
Subject: [PATCH 225/375] Add StoredObjectToPdfConverter service and unit tests

Introduced the StoredObjectToPdfConverter service to handle conversion of stored objects to PDF format. Added unit tests to ensure proper functionality, including versioning and exception handling.
---
 .../Service/StoredObjectToPdfConverter.php    | 75 +++++++++++++++++++
 .../StoredObjectToPdfConverterTest.php        | 61 +++++++++++++++
 2 files changed, 136 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectToPdfConverter.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectToPdfConverterTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectToPdfConverter.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectToPdfConverter.php
new file mode 100644
index 000000000..abfcca4cc
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectToPdfConverter.php
@@ -0,0 +1,75 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Exception\StoredObjectManagerException;
+use Chill\WopiBundle\Service\WopiConverter;
+use Symfony\Component\Mime\MimeTypesInterface;
+
+/**
+ * Class StoredObjectToPdfConverter.
+ *
+ * Converts stored objects to PDF or other specified formats using WopiConverter.
+ */
+class StoredObjectToPdfConverter
+{
+    public function __construct(
+        private readonly StoredObjectManagerInterface $storedObjectManager,
+        private readonly WopiConverter $wopiConverter,
+        private readonly MimeTypesInterface $mimeTypes,
+    ) {}
+
+    /**
+     * Converts the given stored object to a specified format and stores the new version.
+     *
+     * @param StoredObject $storedObject the stored object to be converted
+     * @param string       $lang         the language for the conversion context
+     * @param string       $convertTo    The target format for the conversion. Default is 'pdf'.
+     *
+     * @return array{0: StoredObjectPointInTime, 1: StoredObjectVersion} contains the point in time before conversion and the new version of the stored object
+     *
+     * @throws \UnexpectedValueException    if the preferred mime type for the conversion is not found
+     * @throws \RuntimeException            if the conversion or storage of the new version fails
+     * @throws StoredObjectManagerException
+     */
+    public function addConvertedVersion(StoredObject $storedObject, string $lang, $convertTo = 'pdf'): array
+    {
+        $newMimeType = $this->mimeTypes->getMimeTypes($convertTo)[0] ?? null;
+
+        if (null === $newMimeType) {
+            throw new \UnexpectedValueException(sprintf('could not find a preferred mime type for conversion to %s', $convertTo));
+        }
+
+        $currentVersion = $storedObject->getCurrentVersion();
+
+        if ($currentVersion->getType() === $newMimeType) {
+            throw new \UnexpectedValueException('Already at the same mime type');
+        }
+
+        $content = $this->storedObjectManager->read($currentVersion);
+
+        try {
+            $converted = $this->wopiConverter->convert($lang, $content, $newMimeType, $convertTo);
+        } catch (\RuntimeException $e) {
+            throw new \RuntimeException('could not store a new version for document', previous: $e);
+        }
+
+        $pointInTime = new StoredObjectPointInTime($currentVersion, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+        $version = $this->storedObjectManager->write($storedObject, $converted, $newMimeType);
+
+        return [$pointInTime, $version];
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectToPdfConverterTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectToPdfConverterTest.php
new file mode 100644
index 000000000..da3ed9210
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectToPdfConverterTest.php
@@ -0,0 +1,61 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\DocStoreBundle\Service\StoredObjectToPdfConverter;
+use Chill\WopiBundle\Service\WopiConverter;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Mime\MimeTypes;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectToPdfConverterTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testAddConvertedVersion(): void
+    {
+        $storedObject = new StoredObject();
+        $currentVersion = $storedObject->registerVersion(type: 'text/html');
+
+        $storedObjectManager = $this->prophesize(StoredObjectManagerInterface::class);
+        $storedObjectManager->read($currentVersion)->willReturn('1234');
+        $storedObjectManager->write($storedObject, '5678', 'application/pdf')->shouldBeCalled()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0];
+
+                return $storedObject->registerVersion(type: $args[2]);
+            });
+
+        $converter = $this->prophesize(WopiConverter::class);
+        $converter->convert('fr', '1234', 'application/pdf', 'pdf')->shouldBeCalled()
+            ->willReturn('5678');
+
+        $converter = new StoredObjectToPdfConverter($storedObjectManager->reveal(), $converter->reveal(), MimeTypes::getDefault());
+
+        $actual = $converter->addConvertedVersion($storedObject, 'fr');
+
+        self::assertIsArray($actual);
+        self::assertInstanceOf(StoredObjectPointInTime::class, $actual[0]);
+        self::assertSame($currentVersion, $actual[0]->getObjectVersion());
+        self::assertInstanceOf(StoredObjectVersion::class, $actual[1]);
+    }
+}

From 941444b7d5b0d8b320f8c4bb061a0935748d4e6b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 10 Sep 2024 14:29:03 +0200
Subject: [PATCH 226/375] Add event subscriber to convert docs to PDF before
 signature

Introduce ConvertToPdfBeforeSignatureStepEventSubscriber to convert documents to PDF when reaching a signature step in the workflow. Includes tests to ensure the conversion process only triggers when necessary.
---
 ...BeforeSignatureStepEventSubscriberTest.php | 208 ++++++++++++++++++
 ...oPdfBeforeSignatureStepEventSubscriber.php |  75 +++++++
 2 files changed, 283 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriberTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriber.php

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriberTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriberTest.php
new file mode 100644
index 000000000..572cb192c
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriberTest.php
@@ -0,0 +1,208 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Workflow;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
+use Chill\DocStoreBundle\Service\StoredObjectToPdfConverter;
+use Chill\DocStoreBundle\Workflow\ConvertToPdfBeforeSignatureStepEventSubscriber;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class ConvertToPdfBeforeSignatureStepEventSubscriberTest extends \PHPUnit\Framework\TestCase
+{
+    use ProphecyTrait;
+
+    public function testConvertToPdfBeforeSignatureStepEventSubscriberToSignature(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $storedObject = new StoredObject();
+        $previousVersion = $storedObject->registerVersion();
+
+        $converter = $this->prophesize(StoredObjectToPdfConverter::class);
+        $converter->addConvertedVersion($storedObject, 'fr', 'pdf')
+            ->shouldBeCalledOnce()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0];
+
+                $pointInTime = new StoredObjectPointInTime($storedObject->getCurrentVersion(), StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+                $newVersion = $storedObject->registerVersion(filename: 'next');
+
+                return [$pointInTime, $newVersion];
+            });
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getAssociatedStoredObject($entityWorkflow)->willReturn($storedObject);
+
+        $request = new Request();
+        $request->setLocale('fr');
+        $stack = new RequestStack();
+        $stack->push($request);
+
+        $eventSubscriber = new ConvertToPdfBeforeSignatureStepEventSubscriber($entityWorkflowManager->reveal(), $converter->reveal(), $stack);
+
+        $registry = $this->buildRegistry($eventSubscriber);
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transition' => 'to_signature', 'transitionAt' => new \DateTimeImmutable('now')]);
+
+        self::assertEquals('signature', $entityWorkflow->getStep());
+        self::assertNotSame($previousVersion, $storedObject->getCurrentVersion());
+        self::assertTrue($previousVersion->hasPointInTimes());
+        self::assertCount(2, $storedObject->getVersions());
+        self::assertEquals('next', $storedObject->getCurrentVersion()->getFilename());
+    }
+
+    public function testConvertToPdfBeforeSignatureStepEventSubscriberToNotASignatureStep(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $storedObject = new StoredObject();
+        $previousVersion = $storedObject->registerVersion();
+
+        $converter = $this->prophesize(StoredObjectToPdfConverter::class);
+        $converter->addConvertedVersion($storedObject, 'fr', 'pdf')
+            ->shouldNotBeCalled();
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getAssociatedStoredObject($entityWorkflow)->willReturn($storedObject);
+
+        $request = new Request();
+        $request->setLocale('fr');
+        $stack = new RequestStack();
+        $stack->push($request);
+
+        $eventSubscriber = new ConvertToPdfBeforeSignatureStepEventSubscriber($entityWorkflowManager->reveal(), $converter->reveal(), $stack);
+
+        $registry = $this->buildRegistry($eventSubscriber);
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $workflow->apply($entityWorkflow, 'to_something', ['context' => $dto, 'transition' => 'to_something', 'transitionAt' => new \DateTimeImmutable('now')]);
+
+        self::assertEquals('something', $entityWorkflow->getStep());
+        self::assertSame($previousVersion, $storedObject->getCurrentVersion());
+        self::assertFalse($previousVersion->hasPointInTimes());
+        self::assertCount(1, $storedObject->getVersions());
+    }
+
+    public function testConvertToPdfBeforeSignatureStepEventSubscriberToSignatureAlreadyAPdf(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $storedObject = new StoredObject();
+        $previousVersion = $storedObject->registerVersion(type: 'application/pdf');
+
+        $converter = $this->prophesize(StoredObjectToPdfConverter::class);
+        $converter->addConvertedVersion($storedObject, 'fr', 'pdf')
+            ->shouldNotBeCalled();
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getAssociatedStoredObject($entityWorkflow)->willReturn($storedObject);
+
+        $request = new Request();
+        $request->setLocale('fr');
+        $stack = new RequestStack();
+        $stack->push($request);
+
+        $eventSubscriber = new ConvertToPdfBeforeSignatureStepEventSubscriber($entityWorkflowManager->reveal(), $converter->reveal(), $stack);
+
+        $registry = $this->buildRegistry($eventSubscriber);
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transition' => 'to_signature', 'transitionAt' => new \DateTimeImmutable('now')]);
+
+        self::assertEquals('signature', $entityWorkflow->getStep());
+        self::assertSame($previousVersion, $storedObject->getCurrentVersion());
+        self::assertFalse($previousVersion->hasPointInTimes());
+        self::assertCount(1, $storedObject->getVersions());
+    }
+
+    public function testConvertToPdfBeforeSignatureStepEventSubscriberToSignatureWithNoStoredObject(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+
+        $converter = $this->prophesize(StoredObjectToPdfConverter::class);
+        $converter->addConvertedVersion(Argument::type(StoredObject::class), 'fr', 'pdf')
+            ->shouldNotBeCalled();
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getAssociatedStoredObject($entityWorkflow)->willReturn(null);
+
+        $request = new Request();
+        $request->setLocale('fr');
+        $stack = new RequestStack();
+        $stack->push($request);
+
+        $eventSubscriber = new ConvertToPdfBeforeSignatureStepEventSubscriber($entityWorkflowManager->reveal(), $converter->reveal(), $stack);
+
+        $registry = $this->buildRegistry($eventSubscriber);
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transition' => 'to_signature', 'transitionAt' => new \DateTimeImmutable('now')]);
+
+        self::assertEquals('signature', $entityWorkflow->getStep());
+    }
+
+    private function buildRegistry(EventSubscriberInterface $eventSubscriber): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'signature', 'something'])
+            ->addTransition(new Transition('to_something', 'initial', 'something'))
+            ->addTransition(new Transition('to_signature', 'initial', 'signature'));
+
+        $metadataStore = new InMemoryMetadataStore([], ['signature' => ['isSignature' => ['user']]]);
+        $builder->setMetadataStore($metadataStore);
+
+        $eventDispatcher = new EventDispatcher();
+        $eventDispatcher->addSubscriber($eventSubscriber);
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), $eventDispatcher, 'dummy');
+
+        $supports = new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        };
+
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, $supports);
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriber.php b/src/Bundle/ChillDocStoreBundle/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriber.php
new file mode 100644
index 000000000..0d5fe9323
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/ConvertToPdfBeforeSignatureStepEventSubscriber.php
@@ -0,0 +1,75 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Workflow;
+
+use Chill\DocStoreBundle\Service\StoredObjectToPdfConverter;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\Workflow\Event\CompletedEvent;
+use Symfony\Component\Workflow\WorkflowEvents;
+
+/**
+ * Event subscriber to convert objects to PDF when the document reach a signature step.
+ */
+class ConvertToPdfBeforeSignatureStepEventSubscriber implements EventSubscriberInterface
+{
+    public function __construct(
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly StoredObjectToPdfConverter $storedObjectToPdfConverter,
+        private readonly RequestStack $requestStack,
+    ) {}
+
+    public static function getSubscribedEvents(): array
+    {
+        return [
+            WorkflowEvents::COMPLETED => 'convertToPdfBeforeSignatureStepEvent',
+        ];
+    }
+
+    public function convertToPdfBeforeSignatureStepEvent(CompletedEvent $event): void
+    {
+        $entityWorkflow = $event->getSubject();
+        if (!$entityWorkflow instanceof EntityWorkflow) {
+            return;
+        }
+
+        $tos = $event->getTransition()->getTos();
+        $workflow = $event->getWorkflow();
+        $metadataStore = $workflow->getMetadataStore();
+
+        foreach ($tos as $to) {
+            $metadata = $metadataStore->getPlaceMetadata($to);
+            if (array_key_exists('isSignature', $metadata) && 0 < count($metadata['isSignature'])) {
+                $this->convertToPdf($entityWorkflow);
+
+                return;
+            }
+        }
+    }
+
+    private function convertToPdf(EntityWorkflow $entityWorkflow): void
+    {
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+
+        if (null === $storedObject) {
+            return;
+        }
+
+        if ('application/pdf' === $storedObject->getCurrentVersion()->getType()) {
+            return;
+        }
+
+        $this->storedObjectToPdfConverter->addConvertedVersion($storedObject, $this->requestStack->getCurrentRequest()->getLocale(), 'pdf');
+    }
+}

From 1197a46f5f934d4ffb9c1cf449c5e47f9de6c542 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 18 Jul 2024 17:13:47 +0200
Subject: [PATCH 227/375] Refactor PDF signature handling and add signature
 state changer

Simplified PdfSignedMessageHandler by delegating signature state changes to a new SignatureStepStateChanger class. Added utility method to EntityWorkflowStepSignature for checking pending signatures and created new test cases for the SignatureStepStateChanger.
---
 .../BaseSigner/PdfSignedMessageHandler.php    |   9 +-
 .../PdfSignedMessageHandlerTest.php           |  10 +-
 .../Workflow/EntityWorkflowStepSignature.php  |  26 ++++
 .../SignatureStepStateChangerTest.php         | 145 ++++++++++++++++++
 .../Workflow/SignatureStepStateChanger.php    |  96 ++++++++++++
 5 files changed, 276 insertions(+), 10 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
index 720bc000f..e97781a15 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandler.php
@@ -12,12 +12,11 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner;
 
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
-use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 
 final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
@@ -33,7 +32,7 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
         private StoredObjectManagerInterface $storedObjectManager,
         private EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
         private EntityManagerInterface $entityManager,
-        private ClockInterface $clock,
+        private SignatureStepStateChanger $signatureStepStateChanger,
     ) {}
 
     public function __invoke(PdfSignedMessage $message): void
@@ -54,8 +53,8 @@ final readonly class PdfSignedMessageHandler implements MessageHandlerInterface
 
         $this->storedObjectManager->write($storedObject, $message->content);
 
-        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED)->setStateDate($this->clock->now());
-        $signature->setZoneSignatureIndex($message->signatureZoneIndex);
+        $this->signatureStepStateChanger->markSignatureAsSigned($signature, $message->signatureZoneIndex);
+
         $this->entityManager->flush();
         $this->entityManager->clear();
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
index 471dc8f9a..fed1b1274 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/Signature/Driver/BaseSigner/PdfSignedMessageHandlerTest.php
@@ -20,12 +20,12 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
-use Symfony\Component\Clock\MockClock;
 
 /**
  * @internal
@@ -45,6 +45,9 @@ class PdfSignedMessageHandlerTest extends TestCase
         $entityWorkflow->setStep('new_step', $dto, 'new_transition', new \DateTimeImmutable(), new User());
         $step = $entityWorkflow->getCurrentStep();
         $signature = $step->getSignatures()->first();
+        $stateChanger = $this->createMock(SignatureStepStateChanger::class);
+        $stateChanger->expects(self::once())->method('markSignatureAsSigned')
+            ->with($signature, 99);
 
         $handler = new PdfSignedMessageHandler(
             new NullLogger(),
@@ -52,15 +55,12 @@ class PdfSignedMessageHandlerTest extends TestCase
             $this->buildStoredObjectManager($storedObject, $expectedContent = '1234'),
             $this->buildSignatureRepository($signature),
             $this->buildEntityManager(true),
-            new MockClock('now'),
+            $stateChanger,
         );
 
         // we simply call the handler. The mocked StoredObjectManager will check that the "write" method is invoked once
         // with the content "1234"
         $handler(new PdfSignedMessage(10, 99, $expectedContent));
-
-        self::assertEquals('signed', $signature->getState()->value);
-        self::assertEquals(99, $signature->getZoneSignatureIndex());
     }
 
     private function buildSignatureRepository(EntityWorkflowStepSignature $signature): EntityWorkflowStepSignatureRepository
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index 7f6c5cdda..a0fe1755c 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -141,6 +141,32 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
         return EntityWorkflowSignatureStateEnum::SIGNED == $this->getState();
     }
 
+    public function isPending(): bool
+    {
+        return EntityWorkflowSignatureStateEnum::PENDING == $this->getState();
+    }
+
+    /**
+     * Checks whether all signatures associated with a given workflow step are not pending.
+     *
+     * Iterates over each signature in the provided workflow step, and returns false if any signature
+     * is found to be pending. If all signatures are not pending, returns true.
+     *
+     * @param EntityWorkflowStep $step the workflow step whose signatures are to be checked
+     *
+     * @return bool true if all signatures are not pending, false otherwise
+     */
+    public static function isAllSignatureNotPendingForStep(EntityWorkflowStep $step): bool
+    {
+        foreach ($step->getSignatures() as $signature) {
+            if ($signature->isPending()) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+
     /**
      * @return 'person'|'user'
      */
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
new file mode 100644
index 000000000..5eb82bab9
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
@@ -0,0 +1,145 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class SignatureStepStateChangerTest extends TestCase
+{
+    public function testMarkSignatureAsSignedScenarioWhichExpectsTransition()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $clock = new MockClock();
+        $user = new User();
+        $changer = new SignatureStepStateChanger($registry, $clock);
+
+        // move it to signature
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futurePersonSignatures = [new Person(), new Person()];
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => $clock->now(),
+            'byUser' => $user, 'transition' => 'to_signature']);
+
+        // get the signature created
+        $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
+
+        if (2 !== count($signatures)) {
+            throw new \LogicException('there should have 2 signatures at this step');
+        }
+
+        // we mark the first signature as signed
+        $changer->markSignatureAsSigned($signatures[0], 1);
+
+        self::assertEquals('signature', $entityWorkflow->getStep(), 'there should have any change in the entity workflow step');
+        self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[0]->getState());
+        self::assertEquals(1, $signatures[0]->getZoneSignatureIndex());
+        self::assertNotNull($signatures[0]->getStateDate());
+
+
+        // we mark the second signature as signed
+        $changer->markSignatureAsSigned($signatures[1], 2);
+        self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[1]->getState());
+        self::assertEquals('post-signature', $entityWorkflow->getStep(), 'the entity workflow step should be post-signature');
+        self::assertContains($user, $entityWorkflow->getCurrentStep()->getAllDestUser());
+        self::assertEquals(2, $signatures[1]->getZoneSignatureIndex());
+        self::assertNotNull($signatures[1]->getStateDate());
+    }
+
+    public function testMarkSignatureAsSignedScenarioWithoutRequiredMetadata()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $clock = new MockClock();
+        $user = new User();
+        $changer = new SignatureStepStateChanger($registry, $clock);
+
+        // move it to signature
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futurePersonSignatures = [new Person()];
+        $workflow->apply($entityWorkflow, 'to_signature-without-metadata', ['context' => $dto, 'transitionAt' => $clock->now(),
+            'byUser' => $user, 'transition' => 'to_signature-without-metadata']);
+
+        // get the signature created
+        $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
+
+        if (1 !== count($signatures)) {
+            throw new \LogicException('there should have 2 signatures at this step');
+        }
+
+        // we mark the first signature as signed
+        $changer->markSignatureAsSigned($signatures[0], 1);
+
+        self::assertEquals('signature-without-metadata', $entityWorkflow->getStep(), 'there should have any change in the entity workflow step');
+        self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[0]->getState());
+        self::assertEquals(1, $signatures[0]->getZoneSignatureIndex());
+        self::assertNotNull($signatures[0]->getStateDate());
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'signature', 'signature-without-metadata', 'post-signature'])
+            ->addTransition(new Transition('to_signature', 'initial', 'signature'))
+            ->addTransition(new Transition('to_signature-without-metadata', 'initial', 'signature-without-metadata'))
+            ->addTransition(new Transition('to_post-signature', 'signature', 'post-signature'))
+            ->addTransition(new Transition('to_post-signature_2', 'signature-without-metadata', 'post-signature'))
+        ;
+
+        $metadata = new InMemoryMetadataStore(
+            [],
+            [
+                'signature' => ['onSignatureCompleted' => ['transitionName' => 'to_post-signature']],
+            ]
+        );
+        $builder->setMetadataStore($metadata);
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow(
+            $workflow,
+            new class () implements WorkflowSupportStrategyInterface {
+                public function supports(WorkflowInterface $workflow, object $subject): bool
+                {
+                    return true;
+                }
+            }
+        );
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
new file mode 100644
index 000000000..efba00b02
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -0,0 +1,96 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Workflow\Registry;
+
+class SignatureStepStateChanger
+{
+    public function __construct(
+        private readonly Registry $registry,
+        private readonly ClockInterface $clock,
+    ) {}
+
+    public function markSignatureAsSigned(EntityWorkflowStepSignature $signature, ?int $atIndex): void
+    {
+        $signature
+            ->setState(EntityWorkflowSignatureStateEnum::SIGNED)
+            ->setZoneSignatureIndex($atIndex)
+            ->setStateDate($this->clock->now())
+        ;
+
+        if (!EntityWorkflowStepSignature::isAllSignatureNotPendingForStep($signature->getStep())) {
+            return;
+        }
+
+        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $metadataStore = $workflow->getMetadataStore();
+
+        // find a transition
+        $marking = $workflow->getMarking($entityWorkflow);
+        $places = $marking->getPlaces();
+
+        $transition = null;
+        foreach ($places as $place => $int) {
+            $metadata = $metadataStore->getPlaceMetadata($place);
+            if (array_key_exists('onSignatureCompleted', $metadata)) {
+                $transition = $metadata['onSignatureCompleted']['transitionName'];
+            }
+        }
+
+        if (null === $transition) {
+            return;
+        }
+
+        $previousUser = $this->getPreviousSender($signature->getStep());
+
+        if (null === $previousUser) {
+            return;
+        }
+
+        $transitionDto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $transitionDto->futureDestUsers[] = $previousUser;
+
+        $workflow->apply($entityWorkflow, $transition, [
+            'context' => $transitionDto,
+            'transitionAt' => $this->clock->now(),
+            'transition' => $transition,
+        ]);
+    }
+
+    private function getPreviousSender(EntityWorkflowStep $entityWorkflowStep): ?User
+    {
+        $stepsChained = $entityWorkflowStep->getEntityWorkflow()->getStepsChained();
+
+        foreach ($stepsChained as $stepChained) {
+            if ($stepChained === $entityWorkflowStep) {
+                if (null === $previous = $stepChained->getPrevious()) {
+                    return null;
+                }
+
+                if (null !== $previousUser = $previous->getTransitionBy()) {
+                    return $previousUser;
+                }
+
+                return $this->getPreviousSender($previous);
+            }
+        }
+
+        throw new \LogicException('no same step found');
+    }
+}

From 70671dadac8d93bd2e17e4af55f6d98819285ba9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 11 Sep 2024 18:29:44 +0200
Subject: [PATCH 228/375] Refactor workflow guard logic and add internal
 methods

Removed guard logic from EntityWorkflowTransitionEventSubscriber and created a new EntityWorkflowGuardTransition class for separation of concerns. Marked several setter methods in EntityWorkflowStepSignature as internal to guide proper usage. Added comprehensive tests to ensure the new guard logic functions correctly.
---
 .../Workflow/EntityWorkflowStepSignature.php  |  15 ++
 .../EntityWorkflowGuardTransitionTest.php     | 168 ++++++++++++++++++
 .../EntityWorkflowGuardTransition.php         | 105 +++++++++++
 ...ntityWorkflowTransitionEventSubscriber.php |  47 +----
 4 files changed, 291 insertions(+), 44 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index a0fe1755c..5b659d844 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -105,6 +105,11 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
         return $this->state;
     }
 
+    /**
+     * @return $this
+     *
+     * @internal You should not use this method directly, use @see{Chill\MainBundle\Workflow\SignatureStepStateChanger} instead
+     */
     public function setState(EntityWorkflowSignatureStateEnum $state): EntityWorkflowStepSignature
     {
         $this->state = $state;
@@ -117,6 +122,11 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
         return $this->stateDate;
     }
 
+    /**
+     * @return $this
+     *
+     * @internal You should not use this method directly, use @see{Chill\MainBundle\Workflow\SignatureStepStateChanger} instead
+     */
     public function setStateDate(?\DateTimeImmutable $stateDate): EntityWorkflowStepSignature
     {
         $this->stateDate = $stateDate;
@@ -129,6 +139,11 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
         return $this->zoneSignatureIndex;
     }
 
+    /**
+     * @return $this
+     *
+     * @internal You should not use this method directly, use @see{Chill\MainBundle\Workflow\SignatureStepStateChanger} instead
+     */
     public function setZoneSignatureIndex(?int $zoneSignatureIndex): EntityWorkflowStepSignature
     {
         $this->zoneSignatureIndex = $zoneSignatureIndex;
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
new file mode 100644
index 000000000..bccd6cf9e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
@@ -0,0 +1,168 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Templating\Entity\UserRender;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowGuardTransition;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Exception\NotEnabledTransitionException;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowGuardTransitionTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public static function buildRegistry(?EventSubscriberInterface $eventSubscriber): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces(['initial'])
+            ->addPlaces(['initial', 'intermediate', 'step1', 'step2', 'step3'])
+            ->addTransition(new Transition('intermediate', 'initial', 'intermediate'))
+            ->addTransition($transition1 = new Transition('transition1', 'intermediate', 'step1'))
+            ->addTransition($transition2 = new Transition('transition2', 'intermediate', 'step2'))
+            ->addTransition($transition3 = new Transition('transition3', 'intermediate', 'step3'))
+        ;
+
+        $transitionMetadata = new \SplObjectStorage();
+        $transitionMetadata->attach($transition1, ['transitionGuard' => 'only-dest']);
+        $transitionMetadata->attach($transition2, ['transitionGuard' => 'only-dest+system']);
+        $transitionMetadata->attach($transition3, ['transitionGuard' => 'system']);
+
+        $builder->setMetadataStore(new InMemoryMetadataStore(transitionsMetadata: $transitionMetadata));
+
+        if (null !== $eventSubscriber) {
+            $eventDispatcher = new EventDispatcher();
+            $eventDispatcher->addSubscriber($eventSubscriber);
+        }
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), $eventDispatcher ?? null, 'dummy');
+
+        $registry = new Registry();
+        $registry->addWorkflow(
+            $workflow,
+            new class () implements WorkflowSupportStrategyInterface {
+                public function supports(WorkflowInterface $workflow, object $subject): bool
+                {
+                    return true;
+                }
+            }
+        );
+
+        return $registry;
+    }
+
+    /**
+     * @dataProvider provideBlockingTransition
+     */
+    public function testTransitionGuardBlocked(EntityWorkflow $entityWorkflow, string $transition, ?User $user, string $uuid): void
+    {
+        $userRender = $this->prophesize(UserRender::class);
+        $userRender->renderString(Argument::type(User::class), [])->willReturn('user-as-string');
+        $security = $this->prophesize(Security::class);
+        $security->getUser()->willReturn($user);
+
+        $transitionGuard = new EntityWorkflowGuardTransition($userRender->reveal(), $security->reveal());
+        $registry = self::buildRegistry($transitionGuard);
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $context = new WorkflowTransitionContextDTO($entityWorkflow);
+
+        self::expectException(NotEnabledTransitionException::class);
+        try {
+            $workflow->apply($entityWorkflow, $transition, ['context' => $context, 'byUser' => $user, 'transition' => $transition, 'transitionAt' => new \DateTimeImmutable('now')]);
+        } catch (NotEnabledTransitionException $e) {
+            $list = $e->getTransitionBlockerList();
+
+            self::assertEquals(1, $list->count());
+            $list = iterator_to_array($list->getIterator());
+            self::assertEquals($uuid, $list[0]->getCode());
+
+            throw $e;
+        }
+    }
+
+    /**
+     * @dataProvider provideValidTransition
+     */
+    public function testTransitionGuardValid(EntityWorkflow $entityWorkflow, string $transition, ?User $user, string $newStep): void
+    {
+        $userRender = $this->prophesize(UserRender::class);
+        $userRender->renderString(Argument::type(User::class), [])->willReturn('user-as-string');
+        $security = $this->prophesize(Security::class);
+        $security->getUser()->willReturn($user);
+
+        $transitionGuard = new EntityWorkflowGuardTransition($userRender->reveal(), $security->reveal());
+        $registry = self::buildRegistry($transitionGuard);
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $context = new WorkflowTransitionContextDTO($entityWorkflow);
+
+        $workflow->apply($entityWorkflow, $transition, ['context' => $context, 'byUser' => $user, 'transition' => $transition, 'transitionAt' => new \DateTimeImmutable('now')]);
+
+        self::assertEquals($newStep, $entityWorkflow->getStep());
+    }
+
+    public static function provideBlockingTransition(): iterable
+    {
+        yield [self::buildEntityWorkflow([new User()]), 'transition1', new User(), 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc'];
+        yield [self::buildEntityWorkflow([]), 'transition1', null, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition1', null, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
+        yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
+    }
+
+    public static function provideValidTransition(): iterable
+    {
+        yield [self::buildEntityWorkflow([$u = new User()]), 'transition1', $u, 'step1'];
+        yield [self::buildEntityWorkflow([$u = new User()]), 'transition2', $u, 'step2'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition2', null, 'step2'];
+        yield [self::buildEntityWorkflow([]), 'transition2', null, 'step2'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition3', null, 'step3'];
+        yield [self::buildEntityWorkflow([]), 'transition3', null, 'step3'];
+    }
+
+    public static function buildEntityWorkflow(array $futureDestUsers): EntityWorkflow
+    {
+        $registry = self::buildRegistry(null);
+        $baseContext = ['transition' => 'intermediate', 'transitionAt' => new \DateTimeImmutable()];
+
+        // test a user not is destination is blocked
+        $entityWorkflow = new EntityWorkflow();
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = $futureDestUsers;
+        $workflow->apply($entityWorkflow, 'intermediate', ['context' => $dto, ...$baseContext]);
+
+        return $entityWorkflow;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
new file mode 100644
index 000000000..25ed21e98
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
@@ -0,0 +1,105 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Templating\Entity\UserRender;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\Event\GuardEvent;
+use Symfony\Component\Workflow\TransitionBlocker;
+
+class EntityWorkflowGuardTransition implements EventSubscriberInterface
+{
+    public function __construct(
+        private readonly UserRender $userRender,
+        private readonly Security $security,
+    ) {}
+
+    public static function getSubscribedEvents(): array
+    {
+        return [
+            'workflow.guard' => [
+                ['guardEntityWorkflow', 0],
+            ],
+        ];
+    }
+
+    public function guardEntityWorkflow(GuardEvent $event)
+    {
+        if (!$event->getSubject() instanceof EntityWorkflow) {
+            return;
+        }
+
+        /** @var EntityWorkflow $entityWorkflow */
+        $entityWorkflow = $event->getSubject();
+
+        if ($entityWorkflow->isFinal()) {
+            $event->addTransitionBlocker(
+                new TransitionBlocker(
+                    'workflow.The workflow is finalized',
+                    'd6306280-7535-11ec-a40d-1f7bee26e2c0'
+                )
+            );
+
+            return;
+        }
+
+        $user = $this->security->getUser();
+        $metadata = $event->getWorkflow()->getMetadataStore()->getTransitionMetadata($event->getTransition());
+        $systemTransitions = explode('+', $metadata['transitionGuard'] ?? 'only-dest');
+
+        if (null === $user) {
+            if (in_array('system', $systemTransitions, true)) {
+                // it is safe to apply this transition
+                return;
+            }
+
+            $event->addTransitionBlocker(
+                new TransitionBlocker(
+                    'workflow.Transition is not allowed for system',
+                    'd9e39a18-704c-11ef-b235-8fe0619caee7'
+                )
+            );
+
+            return;
+        }
+
+        // for users
+        if (!in_array('only-dest', $systemTransitions, true)) {
+            $event->addTransitionBlocker(
+                new TransitionBlocker(
+                    'workflow.Only system can apply this transition',
+                    '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'
+                )
+            );
+        }
+
+        if (!$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($user)) {
+            if ($event->getMarking()->has('initial')) {
+                return;
+            }
+
+            $event->addTransitionBlocker(new TransitionBlocker(
+                'workflow.You are not allowed to apply a transition on this workflow. Only those users are allowed: %users%',
+                'f3eeb57c-7532-11ec-9495-e7942a2ac7bc',
+                [
+                    '%users%' => implode(
+                        ', ',
+                        $entityWorkflow->getCurrentStep()->getAllDestUser()->map(fn (User $u) => $this->userRender->renderString($u, []))->toArray()
+                    ),
+                ]
+            ));
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
index fe489c59d..8903d79eb 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowTransitionEventSubscriber.php
@@ -13,20 +13,16 @@ namespace Chill\MainBundle\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Templating\Entity\UserRender;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\EventDispatcher\EventSubscriberInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Event\Event;
-use Symfony\Component\Workflow\Event\GuardEvent;
-use Symfony\Component\Workflow\TransitionBlocker;
 
 final readonly class EntityWorkflowTransitionEventSubscriber implements EventSubscriberInterface
 {
     public function __construct(
         private LoggerInterface $chillLogger,
         private Security $security,
-        private UserRender $userRender,
     ) {}
 
     public static function getSubscribedEvents(): array
@@ -36,48 +32,9 @@ final readonly class EntityWorkflowTransitionEventSubscriber implements EventSub
             'workflow.completed' => [
                 ['markAsFinal', 2048],
             ],
-            'workflow.guard' => [
-                ['guardEntityWorkflow', 0],
-            ],
         ];
     }
 
-    public function guardEntityWorkflow(GuardEvent $event)
-    {
-        if (!$event->getSubject() instanceof EntityWorkflow) {
-            return;
-        }
-
-        /** @var EntityWorkflow $entityWorkflow */
-        $entityWorkflow = $event->getSubject();
-
-        if ($entityWorkflow->isFinal()) {
-            $event->addTransitionBlocker(
-                new TransitionBlocker(
-                    'workflow.The workflow is finalized',
-                    'd6306280-7535-11ec-a40d-1f7bee26e2c0'
-                )
-            );
-
-            return;
-        }
-
-        if (!$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($this->security->getUser())) {
-            if (!$event->getMarking()->has('initial')) {
-                $event->addTransitionBlocker(new TransitionBlocker(
-                    'workflow.You are not allowed to apply a transition on this workflow. Only those users are allowed: %users%',
-                    'f3eeb57c-7532-11ec-9495-e7942a2ac7bc',
-                    [
-                        '%users%' => implode(
-                            ', ',
-                            $entityWorkflow->getCurrentStep()->getAllDestUser()->map(fn (User $u) => $this->userRender->renderString($u, []))->toArray()
-                        ),
-                    ]
-                ));
-            }
-        }
-    }
-
     public function markAsFinal(Event $event): void
     {
         // NOTE: it is not possible to move this method to the marking store, because
@@ -109,11 +66,13 @@ final readonly class EntityWorkflowTransitionEventSubscriber implements EventSub
         /** @var EntityWorkflow $entityWorkflow */
         $entityWorkflow = $event->getSubject();
 
+        $user = $this->security->getUser();
+
         $this->chillLogger->info('[workflow] apply transition on entityWorkflow', [
             'relatedEntityClass' => $entityWorkflow->getRelatedEntityClass(),
             'relatedEntityId' => $entityWorkflow->getRelatedEntityId(),
             'transition' => $event->getTransition()->getName(),
-            'by_user' => $this->security->getUser(),
+            'by_user' => $user instanceof User ? $user->getId() : (string) $user?->getUserIdentifier(),
             'entityWorkflow' => $entityWorkflow->getId(),
         ]);
     }

From 4e588ed0e0071b8259bd70b6733f065c4b1da8fe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 11 Sep 2024 21:14:07 +0200
Subject: [PATCH 229/375] Add logging to SignatureStepStateChanger

Enhanced the SignatureStepStateChanger by integrating a LoggerInterface to provide detailed logging at key points in the state transition process. This includes informational messages when marking signatures or skipping transitions, as well as debug messages when determining the next steps.
---
 .../Workflow/SignatureStepStateChanger.php       | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
index efba00b02..3e2871810 100644
--- a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -15,14 +15,18 @@ use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Workflow\Registry;
 
 class SignatureStepStateChanger
 {
+    private const LOG_PREFIX = '[SignatureStepStateChanger] ';
+
     public function __construct(
         private readonly Registry $registry,
         private readonly ClockInterface $clock,
+        private readonly LoggerInterface $logger,
     ) {}
 
     public function markSignatureAsSigned(EntityWorkflowStepSignature $signature, ?int $atIndex): void
@@ -33,10 +37,16 @@ class SignatureStepStateChanger
             ->setStateDate($this->clock->now())
         ;
 
+        $this->logger->info(self::LOG_PREFIX.'Mark signature entity as signed', ['signatureId' => $signature->getId(), 'index' => (string) $atIndex]);
+
         if (!EntityWorkflowStepSignature::isAllSignatureNotPendingForStep($signature->getStep())) {
+            $this->logger->info(self::LOG_PREFIX.'This is not the last signature, skipping transition to another place', ['signatureId' => $signature->getId()]);
+
             return;
         }
 
+        $this->logger->debug(self::LOG_PREFIX.'Continuing the process to find a transition', ['signatureId' => $signature->getId()]);
+
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $metadataStore = $workflow->getMetadataStore();
@@ -54,12 +64,16 @@ class SignatureStepStateChanger
         }
 
         if (null === $transition) {
+            $this->logger->info(self::LOG_PREFIX.'The transition is not configured, will not apply a transition', ['signatureId' => $signature->getId()]);
+
             return;
         }
 
         $previousUser = $this->getPreviousSender($signature->getStep());
 
         if (null === $previousUser) {
+            $this->logger->info(self::LOG_PREFIX.'No previous user, will not apply a transition', ['signatureId' => $signature->getId()]);
+
             return;
         }
 
@@ -71,6 +85,8 @@ class SignatureStepStateChanger
             'transitionAt' => $this->clock->now(),
             'transition' => $transition,
         ]);
+
+        $this->logger->info(self::LOG_PREFIX.'Transition automatically applied', ['signatureId' => $signature->getId()]);
     }
 
     private function getPreviousSender(EntityWorkflowStep $entityWorkflowStep): ?User

From f1505a9d15390974caf6fc64f5ee84c8ac5d9272 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 11 Sep 2024 21:16:54 +0200
Subject: [PATCH 230/375] Add locale to workflow URLs in notification templates

This is required to send notification within a console command
---
 ...low_notification_on_transition_completed_content.fr.txt.twig | 2 +-
 .../views/Workflow/workflow_send_access_key.fr.txt.twig         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content.fr.txt.twig
index 1e8469968..034b9c38a 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content.fr.txt.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content.fr.txt.twig
@@ -8,6 +8,6 @@ Vous êtes invités à valider cette étape au plus tôt.
 
 Vous pouvez visualiser le workflow sur cette page:
 
-{{ absolute_url(path('chill_main_workflow_show', {'id': entity_workflow.id})) }}
+{{ absolute_url(path('chill_main_workflow_show', {'id': entity_workflow.id, '_locale': 'fr'})) }}
 
 Cordialement,
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
index 6237cb68a..b4574567d 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
@@ -6,7 +6,7 @@ Titre du workflow: "{{ entityTitle }}".
 
 Vous êtes invité·e à valider cette étape. Pour obtenir un accès, vous pouvez cliquer sur le lien suivant:
 
-{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.currentStep.id, 'accessKey': entity_workflow.currentStep.accessKey})) }}
+{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.currentStep.id, 'accessKey': entity_workflow.currentStep.accessKey, '_locale': fr})) }}
 
 Dès que vous aurez cliqué une fois sur le lien, vous serez autorisé à valider cette étape.
 

From 18af2ca70b3ef76b7047e9275c296b1e25c05230 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 11 Sep 2024 21:52:34 +0200
Subject: [PATCH 231/375] Handle null transitionBy and improve display logic

Added checks for null transitionBy cases in workflow templates to display "Automated transition" when applicable. Also improved conditional rendering for 'destUser' and 'ccUser' fields to avoid empty elements.
---
 .../views/Workflow/_history.html.twig         |  8 +++--
 .../views/Workflow/macro_breadcrumb.html.twig | 30 +++++++++++--------
 .../translations/messages.fr.yml              |  1 +
 3 files changed, 23 insertions(+), 16 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index a56656102..670d27ecc 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -40,11 +40,13 @@
                 {% set forward = workflow_metadata(step.entityWorkflow, 'isForward', transition) %}
                 <div class="item-row separator">
                     <div class="item-col" style="width: inherit;">
-                        {% if step.transitionBy is not null %}
                             <div>
-                                {{ step.transitionBy|chill_entity_render_box({'at_date': step.transitionAt}) }}
+                                {%- if step.transitionBy is not null -%}
+                                    {{ step.transitionBy|chill_entity_render_box({'at_date': step.transitionAt}) }}
+                                {% else %}
+                                    <span class="chill-no-data-statement">{{ 'workflow.Automated transition'|trans }}</span>
+                                {%- endif -%}
                             </div>
-                        {% endif %}
                         <div>
                             <span>{{ step.transitionAt|format_datetime('long', 'medium') }}</span>
                         </div>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
index 71d1efcf1..e3087769f 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
@@ -3,24 +3,28 @@
         {% if step.previous is not null %}
             <li>
                 <span class="item-key">{{ 'By'|trans ~ ' : ' }}</span>
-                <b>{{ step.previous.transitionBy|chill_entity_render_box({'at_date': step.previous.transitionAt }) }}</b>
+                <b>{% if step.previous.transitionBy is not null %}{{ step.previous.transitionBy|chill_entity_render_box({'at_date': step.previous.transitionAt }) }}{% else %}<span class="chill-no-data-statement">{{ 'workflow.Automated transition'|trans }}</span>{% endif %}</b>
             </li>
             <li>
                 <span class="item-key">{{ 'Le'|trans ~ ' : ' }}</span>
                 <b>{{ step.previous.transitionAt|format_datetime('short', 'short') }}</b>
             </li>
-            <li>
-                <span class="item-key">{{ 'workflow.For'|trans ~ ' : ' }}</span>
-                <b>
-                    {% for d in step.destUser %}{{ d|chill_entity_render_string({'at_date': step.previous.transitionAt}) }}{% if not loop.last %}, {% endif %}{% endfor %}
-                </b>
-            </li>
-            <li>
-                <span class="item-key">{{ 'workflow.Cc'|trans ~ ' : ' }}</span>
-                <b>
-                    {% for u in step.ccUser %}{{ u|chill_entity_render_string({'at_date': step.previous.transitionAt }) }}{% if not loop.last %}, {% endif %}{% endfor %}
-                </b>
-            </li>
+            {% if step.destUser|length > 0 %}
+                <li>
+                    <span class="item-key">{{ 'workflow.For'|trans ~ ' : ' }}</span>
+                    <b>
+                        {% for d in step.destUser %}{{ d|chill_entity_render_string({'at_date': step.previous.transitionAt}) }}{% if not loop.last %}, {% endif %}{% endfor %}
+                    </b>
+                </li>
+            {% endif %}
+            {% if step.ccUser|length > 0 %}
+                <li>
+                    <span class="item-key">{{ 'workflow.Cc'|trans ~ ' : ' }}</span>
+                    <b>
+                        {% for u in step.ccUser %}{{ u|chill_entity_render_string({'at_date': step.previous.transitionAt }) }}{% if not loop.last %}, {% endif %}{% endfor %}
+                    </b>
+                </li>
+            {% endif %}
         {% else %}
             <li>
                 <span class="item-key">{{ 'workflow.Created by'|trans ~ ' : ' }}</span>
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index f5c2cfc46..0c0fce51c 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -530,6 +530,7 @@ workflow:
     Put on hold: Mettre en attente
     Remove hold: Enlever la mise en attente
     On hold: En attente
+    Automated transition: Transition automatique
 
     signature_zone:
         title: Appliquer les signatures électroniques

From c23568032c32a2ae7ff6de6cd6dbc33a73b91a45 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 4 Sep 2024 10:14:08 +0200
Subject: [PATCH 232/375] Signature: add a signature zone manually

---
 .../Resources/public/types.ts                 |   4 +-
 .../public/vuejs/DocumentSignature/App.vue    | 163 +++++++++++++-----
 .../public/vuejs/DocumentSignature/index.ts   |   4 +-
 3 files changed, 128 insertions(+), 43 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 840421991..921da3a9a 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -83,7 +83,7 @@ export interface PDFPage {
   height: number,
 }
 export interface SignatureZone {
-  index: number,
+  index: number | null,
   x: number,
   y: number,
   width: number,
@@ -98,3 +98,5 @@ export interface Signature {
 }
 
 export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
+
+export type CanvasEvent = 'select' | 'add';
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 47edd87c3..04cdf9eea 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -80,8 +80,32 @@
   </div>
 
   <div class="col-12 p-4" id="action-buttons" v-if="signedState !== 'signed'">
+
+    <div class="row mb-3">
+      <div class="col-12 d-flex justify-content-end">
+        <div class="col-4 col-xl-3 gap-2 d-grid">
+          <button
+            v-if="adding"
+            class="btn btn-misc btn-cancel me-2 btn-sm"
+            @click="removeNewZone()"
+          >
+            {{ $t("remove_sign_zone") }}
+          </button>
+        </div>
+        <div class="col-4 gap-2 d-grid">
+          <button
+            class="btn btn-create btn-sm"
+            :class="{ active: canvasEvent === 'add' }"
+            @click="toggleAddZone()"
+          >
+            {{ $t("add_sign_zone") }}
+          </button>
+        </div>
+      </div>
+    </div>
+
     <div class="row">
-      <div class="col-6">
+      <div class="col-4">
         <button
           class="btn btn-action me-2"
           :disabled="!userSignatureZone"
@@ -90,7 +114,7 @@
           {{ $t("sign") }}
         </button>
       </div>
-      <div class="col-6 d-flex justify-content-end">
+      <div class="col-8 d-flex justify-content-end">
         <button
           class="btn btn-misc me-2"
           :hidden="!userSignatureZone"
@@ -119,7 +143,12 @@
 import { ref, Ref, reactive } from "vue";
 import { useToast } from "vue-toast-notification";
 import "vue-toast-notification/dist/theme-sugar.css";
-import { Signature, SignatureZone, SignedState } from "../../types";
+import {
+  CanvasEvent,
+  Signature,
+  SignatureZone,
+  SignedState,
+} from "../../types";
 import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
 import {
@@ -143,11 +172,12 @@ pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
 const modalOpen: Ref<boolean> = ref(false);
 const loading: Ref<boolean> = ref(false);
+const adding: Ref<boolean> = ref(false);
+const canvasEvent: Ref<CanvasEvent> = ref("select");
 const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 let userSignatureZone: Ref<null | SignatureZone> = ref(null);
-let pdfSource: Ref<string> = ref("");
 let pdf = {} as PDFDocumentProxy;
 
 declare global {
@@ -160,6 +190,8 @@ const $toast = useToast();
 
 const signature = window.signature;
 
+console.log(signature);
+
 const mountPdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
   pdf = await loadingTask.promise;
@@ -202,33 +234,31 @@ async function downloadAndOpen(): Promise<Blob> {
 
 const initPdf = () => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
-  canvas.addEventListener(
-    "pointerup",
-    (e: PointerEvent) => canvasClick(e, canvas),
-    false
-  );
+  canvas.addEventListener("pointerup", canvasClick, false);
   setTimeout(() => addZones(page.value), 800);
 };
 
+const scaleXToCanvas = (x: number, canvasWidth: number, PDFWidth: number) =>
+  Math.round((x * canvasWidth) / PDFWidth);
+
+const scaleYToCanvas = (h: number, canvasHeight: number, PDFHeight: number) =>
+  Math.round((h * canvasHeight) / PDFHeight);
+
 const hitSignature = (
   zone: SignatureZone,
   xy: number[],
   canvasWidth: number,
   canvasHeight: number
-) => {
-  const scaleXToCanvas = (x: number) =>
-    Math.round((x * canvasWidth) / zone.PDFPage.width);
-  const scaleHeightToCanvas = (h: number) =>
-    Math.round((h * canvasHeight) / zone.PDFPage.height);
-  const scaleYToCanvas = (y: number) =>
-    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
-  return (
-    scaleXToCanvas(zone.x) < xy[0] &&
-    xy[0] < scaleXToCanvas(zone.x + zone.width) &&
-    scaleYToCanvas(zone.y) < xy[1] &&
-    xy[1] < scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height)
-  );
-};
+) =>
+  scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) < xy[0] &&
+  xy[0] <
+    scaleXToCanvas(zone.x + zone.width, canvasWidth, zone.PDFPage.width) &&
+  zone.PDFPage.height -
+    scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) <
+    xy[1] &&
+  xy[1] <
+    scaleYToCanvas(zone.height - zone.y, canvasHeight, zone.PDFPage.height) +
+      zone.PDFPage.height;
 
 const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   userSignatureZone.value = z;
@@ -239,7 +269,7 @@ const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   }
 };
 
-const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+const selectZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
@@ -256,6 +286,13 @@ const canvasClick = (e: PointerEvent, canvas: HTMLCanvasElement) =>
       }
     });
 
+const canvasClick = (e: PointerEvent) => {
+  const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
+  canvasEvent.value === "select"
+    ? selectZoneOnCanvas(e, canvas)
+    : addZoneOnCanvas(e, canvas);
+};
+
 const turnPage = async (upOrDown: number) => {
   userSignatureZone.value = null;
   page.value = page.value + upOrDown;
@@ -290,12 +327,6 @@ const drawZone = (
 ) => {
   const unselectedBlue = "#007bff";
   const selectedBlue = "#034286";
-  const scaleXToCanvas = (x: number) =>
-    Math.round((x * canvasWidth) / zone.PDFPage.width);
-  const scaleHeightToCanvas = (h: number) =>
-    Math.round((h * canvasHeight) / zone.PDFPage.height);
-  const scaleYToCanvas = (y: number) =>
-    Math.round(zone.PDFPage.height - scaleHeightToCanvas(y));
   ctx.strokeStyle =
     userSignatureZone.value?.index === zone.index
       ? selectedBlue
@@ -303,16 +334,22 @@ const drawZone = (
   ctx.lineWidth = 2;
   ctx.lineJoin = "bevel";
   ctx.strokeRect(
-    scaleXToCanvas(zone.x),
-    scaleYToCanvas(zone.y),
-    scaleXToCanvas(zone.width),
-    scaleHeightToCanvas(zone.height)
+    scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width),
+    zone.PDFPage.height -
+      scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height),
+    scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width),
+    scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height)
   );
   ctx.font = "bold 16px serif";
   ctx.textAlign = "center";
   ctx.fillStyle = "black";
-  const xText = scaleXToCanvas(zone.x) + scaleXToCanvas(zone.width) / 2;
-  const yText = scaleYToCanvas(zone.y) + scaleHeightToCanvas(zone.height) / 2;
+  const xText =
+    scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) +
+    scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width) / 2;
+  const yText =
+    zone.PDFPage.height -
+    scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) +
+    scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height) / 2;
   if (userSignatureZone.value?.index === zone.index) {
     ctx.fillStyle = selectedBlue;
     ctx.fillText("Signer ici", xText, yText);
@@ -414,14 +451,58 @@ const confirmSign = () => {
 };
 
 const undoSign = async () => {
-  // const canvas = document.querySelectorAll("canvas")[0];
-  // const ctx = canvas.getContext("2d");
-  // if (ctx && userSignatureZone.value) {
-  //   //drawZone(userSignatureZone.value, ctx, canvas.width, canvas.height);
-  // }
+  signature.zones = signature.zones.filter((z) => z.index !== null);
   await setPage(page.value);
   setTimeout(() => addZones(page.value), 200);
   userSignatureZone.value = null;
+  adding.value = false;
+};
+
+const toggleAddZone = () => {
+  canvasEvent.value === "select"
+    ? (canvasEvent.value = "add")
+    : (canvasEvent.value = "select");
+};
+
+const addZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) => {
+  const BOX_WIDTH = 180;
+  const BOX_HEIGHT = 90;
+  const PDFPageHeight = canvas.height;
+  const PDFPageWidth = canvas.width;
+
+  const x = e.offsetX;
+  const y = e.offsetY;
+  const newZone: SignatureZone = {
+    index: null,
+    x:
+      scaleXToCanvas(x, canvas.width, PDFPageWidth) -
+      scaleXToCanvas(BOX_WIDTH / 2, canvas.width, PDFPageWidth),
+    y:
+      PDFPageHeight -
+      scaleYToCanvas(y, canvas.height, PDFPageHeight) +
+      scaleYToCanvas(BOX_HEIGHT / 2, canvas.height, PDFPageHeight),
+    width: BOX_WIDTH,
+    height: BOX_HEIGHT,
+    PDFPage: {
+      index: page.value - 1,
+      width: PDFPageWidth,
+      height: PDFPageHeight,
+    },
+  };
+  signature.zones.push(newZone);
+
+  setTimeout(() => addZones(page.value), 200);
+  canvasEvent.value = "select";
+  adding.value = true;
+};
+
+const removeNewZone = async () => {
+  signature.zones = signature.zones.filter((z) => z.index !== null);
+  userSignatureZone.value = null;
+  await setPage(page.value);
+  setTimeout(() => addZones(page.value), 200);
+  canvasEvent.value = "select";
+  adding.value = false;
 };
 
 downloadAndOpen();
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 77f2ee48c..c5c4b5eb8 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -16,7 +16,9 @@ const appMessages = {
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
         electronic_signature_in_progress: 'Signature électronique en cours...',
-        loading: 'Chargement...'
+        loading: 'Chargement...',
+        add_sign_zone: 'Ajouter une zone de signature',
+        remove_sign_zone: 'Enlever la zone',
     }
 }
 

From 4933238f3f60c3f08755ef538fd1e6c4c7da8ad7 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 4 Sep 2024 12:04:59 +0200
Subject: [PATCH 233/375] Signature - improve UI signature app

---
 .../public/vuejs/DocumentSignature/App.vue    | 72 +++++++++----------
 .../views/Workflow/_signature_sign.html.twig  |  2 +-
 2 files changed, 37 insertions(+), 37 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 04cdf9eea..2074c4163 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -26,37 +26,9 @@
       </template>
     </modal>
   </teleport>
-  <div class="col-12">
-    <div
-      class="row justify-content-center mb-2"
-      v-if="signature.zones.length > 1"
-    >
-      <div class="col-4 gap-2 d-grid">
-        <button
-          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
-          class="btn btn-light btn-sm"
-          @click="turnSignature(-1)"
-        >
-          {{ $t("last_sign_zone") }}
-        </button>
-      </div>
-      <div class="col-4 gap-2 d-grid">
-        <button
-          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
-          class="btn btn-light btn-sm"
-          @click="turnSignature(1)"
-        >
-          {{ $t("next_sign_zone") }}
-        </button>
-      </div>
-    </div>
-
-    <div
-      id="turn-page"
-      class="row justify-content-center mb-2"
-      v-if="pageCount > 1"
-    >
-      <div class="col-6-sm col-3-md text-center">
+  <div class="col-12 m-auto">
+    <div class="row justify-content-center border-bottom pdf-tools">
+      <div v-if="pageCount > 1" class="col-4 text-center turn-page">
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
@@ -73,14 +45,35 @@
           ❯
         </button>
       </div>
+      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-end">
+        <button
+          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(-1)"
+        >
+          {{ $t("last_sign_zone") }}
+        </button>
+      </div>
+      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-start">
+        <button
+          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(1)"
+        >
+          {{ $t("next_sign_zone") }}
+        </button>
+      </div>
     </div>
   </div>
-  <div class="col-12 text-center">
+  <div class="col-xs-12 col-md-12 col-lg-9 m-auto my-5 text-center">
     <canvas class="m-auto" id="canvas"></canvas>
   </div>
 
-  <div class="col-12 p-4" id="action-buttons" v-if="signedState !== 'signed'">
-
+  <div
+    class="col-xs-12 col-md-12 col-lg-9 m-auto p-4"
+    id="action-buttons"
+    v-if="signedState !== 'signed'"
+  >
     <div class="row mb-3">
       <div class="col-12 d-flex justify-content-end">
         <div class="col-4 col-xl-3 gap-2 d-grid">
@@ -510,7 +503,7 @@ downloadAndOpen();
 
 <style scoped lang="scss">
 #canvas {
-  box-shadow: 0 20px 20px rgba(0, 0, 0, 0.1);
+  box-shadow: 0 20px 20px rgba(0, 0, 0, 0.2);
 }
 div#action-buttons {
   position: sticky;
@@ -518,7 +511,14 @@ div#action-buttons {
   background-color: white;
   z-index: 100;
 }
-div#turn-page {
+div.pdf-tools {
+  background-color: #f3f3f3;
+  @media (min-width: 1200px) {
+    background: none;
+    border: none !important;
+  }
+}
+div.turn-page {
   span {
     font-size: 0.8rem;
     margin: 0 0.4rem;
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
index 8b2770952..1c4b0a8f2 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
@@ -27,7 +27,7 @@
     <div class="content" id="content">
         <div class="container-xxl">
             <div class="row">
-               <div class="col-xs-12 col-md-12 col-lg-9 my-5 m-auto">
+               <div class="col-12 m-auto">
                    <div class="row" id="document-signature"></div>
                </div>
             </div>

From d08212df46f52b8317c6dafd1a937a83dc7e2c6c Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 5 Sep 2024 14:11:57 +0200
Subject: [PATCH 234/375] Signature: add and process returnPath in the
 signature app

---
 .../public/vuejs/DocumentSignature/App.vue    | 19 +++++++++++++------
 .../Controller/WorkflowController.php         | 10 ++++++++--
 2 files changed, 21 insertions(+), 8 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 2074c4163..5e3b0f0db 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -124,9 +124,9 @@
         >
           {{ $t("cancel") }}
         </button>
-        <button class="btn btn-delete" @click="undoSign">
+        <a class="btn btn-delete" :href="getReturnPath()">
           {{ $t("cancel_signing") }}
-        </button>
+        </a>
       </div>
     </div>
   </div>
@@ -157,9 +157,7 @@ console.log(PdfWorker); // incredible but this is needed
 // pdfjsLib.GlobalWorkerOptions.workerSrc = PdfWorker;
 
 import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
-import {
-  download_and_decrypt_doc,
-} from "../StoredObjectButton/helpers";
+import { download_and_decrypt_doc } from "../StoredObjectButton/helpers";
 
 pdfjsLib.GlobalWorkerOptions.workerSrc = "pdfjs-dist/build/pdf.worker.mjs";
 
@@ -215,7 +213,10 @@ const setPage = async (page: number) => {
 async function downloadAndOpen(): Promise<Blob> {
   let raw;
   try {
-    raw = await download_and_decrypt_doc(signature.storedObject, signature.storedObject.currentVersion);
+    raw = await download_and_decrypt_doc(
+      signature.storedObject,
+      signature.storedObject.currentVersion
+    );
   } catch (e) {
     console.error("error while downloading and decrypting document", e);
     throw e;
@@ -498,6 +499,12 @@ const removeNewZone = async () => {
   adding.value = false;
 };
 
+const getReturnPath = () =>
+  window.location.search
+    ? window.location.search.split("?returnPath=")[1] ??
+      window.location.pathname
+    : window.location.pathname;
+
 downloadAndOpen();
 </script>
 
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index ab3d67307..2f8a0fd55 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -396,7 +396,10 @@ class WorkflowController extends AbstractController
         }
 
         if ($signature->getSigner() instanceof User) {
-            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', [
+                'id' => $signature_id,
+                'returnPath' => $request->query->get('returnPath', null),
+            ]);
         }
 
         $metadataForm = $this->createForm(WorkflowSignatureMetadataType::class);
@@ -420,7 +423,10 @@ class WorkflowController extends AbstractController
             $this->entityManager->persist($signature);
             $this->entityManager->flush();
 
-            return $this->redirectToRoute('chill_main_workflow_signature_add', ['id' => $signature_id]);
+            return $this->redirectToRoute('chill_main_workflow_signature_add', [
+                'id' => $signature_id,
+                'returnPath' => $request->query->get('returnPath', null),
+            ]);
         }
 
         return $this->render(

From 09563979a2a0591263c981d13610405dabff1fa6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 12 Sep 2024 11:17:54 +0200
Subject: [PATCH 235/375] Refactor entity rendering with manager pattern

Introduce ChillEntityRenderManager to centralize entity rendering logic, reducing redundancy and improving code organization. Update dependencies and service configuration to support the new manager pattern, enhancing maintainability and flexibility of entity rendering in templates.
---
 .../Entity/ChillEntityRenderExtension.php     | 48 ++-------------
 .../Entity/ChillEntityRenderInterface.php     |  6 +-
 .../Entity/ChillEntityRenderManager.php       | 59 +++++++++++++++++++
 .../ChillEntityRenderManagerInterface.php     | 19 ++++++
 .../config/services/templating.yaml           |  9 ++-
 5 files changed, 93 insertions(+), 48 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
 create mode 100644 src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManagerInterface.php

diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
index 9c8d4599e..8a9e70229 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
@@ -19,24 +19,7 @@ use Twig\TwigFilter;
  */
 class ChillEntityRenderExtension extends AbstractExtension
 {
-    /**
-     * @var ChillEntityRender
-     */
-    protected $defaultRender;
-
-    /**
-     * @var iterable|ChillEntityRenderInterface[]
-     */
-    protected $renders = [];
-
-    /**
-     * ChillEntityRenderExtension constructor.
-     */
-    public function __construct(iterable $renders)
-    {
-        $this->defaultRender = new ChillEntityRender();
-        $this->renders = $renders;
-    }
+    public function __construct(private ChillEntityRenderManagerInterface $renderManager) {}
 
     /**
      * @return array|TwigFilter[]
@@ -53,34 +36,13 @@ class ChillEntityRenderExtension extends AbstractExtension
         ];
     }
 
-    public function renderBox($entity, array $options = []): string
+    public function renderBox(?object $entity, array $options = []): string
     {
-        if (null === $entity) {
-            return '';
-        }
-
-        return $this->getRender($entity, $options)
-            ->renderBox($entity, $options);
+        return $this->renderManager->renderBox($entity, $options);
     }
 
-    public function renderString($entity, array $options = []): string
+    public function renderString(?object $entity, array $options = []): string
     {
-        if (null === $entity) {
-            return '';
-        }
-
-        return $this->getRender($entity, $options)
-            ->renderString($entity, $options);
-    }
-
-    protected function getRender($entity, $options): ?ChillEntityRenderInterface
-    {
-        foreach ($this->renders as $render) {
-            if ($render->supports($entity, $options)) {
-                return $render;
-            }
-        }
-
-        return $this->defaultRender;
+        return $this->renderManager->renderString($entity, $options);
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderInterface.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderInterface.php
index d628420c7..7a7a5e1fe 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderInterface.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderInterface.php
@@ -15,7 +15,7 @@ namespace Chill\MainBundle\Templating\Entity;
  * Interface to implement which will render an entity in template on a custom
  * manner.
  *
- * @template T
+ * @template T of object
  */
 interface ChillEntityRenderInterface
 {
@@ -31,7 +31,7 @@ interface ChillEntityRenderInterface
      * </span>
      * ```
      *
-     * @param T $entity
+     * @param T|null $entity
      *
      * @phpstan-pure
      */
@@ -42,7 +42,7 @@ interface ChillEntityRenderInterface
      *
      * Example: returning the name of a person.
      *
-     * @param T $entity
+     * @param T|null $entity
      *
      * @phpstan-pure
      */
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
new file mode 100644
index 000000000..6437a9c24
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
@@ -0,0 +1,59 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Templating\Entity;
+
+final readonly class ChillEntityRenderManager implements ChillEntityRenderManagerInterface
+{
+    private ChillEntityRender $defaultRender;
+
+    /**
+     * @var iterable<ChillEntityRenderInterface>
+     */
+    private iterable $renders;
+
+    public function __construct(iterable $renders)
+    {
+        $this->defaultRender = new ChillEntityRender();
+        $this->renders = $renders;
+    }
+
+    public function renderBox($entity, array $options = []): string
+    {
+        if (null === $entity) {
+            return '';
+        }
+
+        return $this->getRender($entity, $options)
+            ->renderBox($entity, $options);
+    }
+
+    public function renderString($entity, array $options = []): string
+    {
+        if (null === $entity) {
+            return '';
+        }
+
+        return $this->getRender($entity, $options)
+            ->renderString($entity, $options);
+    }
+
+    private function getRender($entity, $options): ChillEntityRenderInterface
+    {
+        foreach ($this->renders as $render) {
+            if ($render->supports($entity, $options)) {
+                return $render;
+            }
+        }
+
+        return $this->defaultRender;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManagerInterface.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManagerInterface.php
new file mode 100644
index 000000000..44b996d73
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManagerInterface.php
@@ -0,0 +1,19 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Templating\Entity;
+
+interface ChillEntityRenderManagerInterface
+{
+    public function renderBox(?object $entity, array $options = []): string;
+
+    public function renderString(?object $entity, array $options = []): string;
+}
diff --git a/src/Bundle/ChillMainBundle/config/services/templating.yaml b/src/Bundle/ChillMainBundle/config/services/templating.yaml
index 0baa91b69..281d4ad23 100644
--- a/src/Bundle/ChillMainBundle/config/services/templating.yaml
+++ b/src/Bundle/ChillMainBundle/config/services/templating.yaml
@@ -32,11 +32,16 @@ services:
             - { name: twig.extension }
 
     Chill\MainBundle\Templating\Entity\ChillEntityRenderExtension:
-        arguments:
-            $renders: !tagged_iterator chill.render_entity
         tags:
             - { name: twig.extension }
 
+    Chill\MainBundle\Templating\Entity\ChillEntityRenderManager:
+        arguments:
+            $renders: !tagged_iterator chill.render_entity
+
+    Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface:
+        alias: 'Chill\MainBundle\Templating\Entity\ChillEntityRenderManager'
+
     Chill\MainBundle\Templating\Entity\CommentRender:
         tags:
             - { name: 'chill.render_entity' }

From f8a986d59bdc147f3c2301cd0a126d00cc88f1af Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 12 Sep 2024 11:18:15 +0200
Subject: [PATCH 236/375] Add user IP and authenticated user details to
 signature

Updated the SignatureRequest metadata to include the requester's IP address and currently authenticated user details. Also improved the rendering of signer information by leveraging the `ChillEntityRenderManagerInterface`.
---
 .../Controller/SignatureRequestController.php      | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 70d126f78..606bafb15 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -16,11 +16,13 @@ use Chill\DocStoreBundle\Service\Signature\PDFPage;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
 
 class SignatureRequestController
 {
@@ -28,6 +30,8 @@ class SignatureRequestController
         private readonly MessageBusInterface $messageBus,
         private readonly StoredObjectManagerInterface $storedObjectManager,
         private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly ChillEntityRenderManagerInterface $entityRender,
+        private readonly Security $security,
     ) {}
 
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
@@ -51,8 +55,14 @@ class SignatureRequestController
             $signature->getId(),
             $zone,
             $data['zone']['index'],
-            'test signature', // reason (string)
-            'Mme Caroline Diallo', // signerText (string)
+            'Signed by IP: '.(string) $request->getClientIp().', authenticated user: '.$this->entityRender->renderString($this->security->getUser(), []),
+            $this->entityRender->renderString($signature->getSigner(), [
+                // options for user render
+                'absence' => false,
+                'main_scope' => false,
+                // options for person render
+                'addAge' => false,
+            ]),
             $content
         ));
 

From 3c987e0b8d3434e22d2dfdc30663c7123bae89f9 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 11:31:31 +0200
Subject: [PATCH 237/375] Signature: keep selected zone when turning pages

---
 .../public/vuejs/DocumentSignature/App.vue    | 39 +++++++++++--------
 1 file changed, 23 insertions(+), 16 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 5e3b0f0db..c09efda8a 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -229,7 +229,7 @@ async function downloadAndOpen(): Promise<Blob> {
 const initPdf = () => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   canvas.addEventListener("pointerup", canvasClick, false);
-  setTimeout(() => addZones(page.value), 800);
+  setTimeout(() => drawAllZones(page.value), 800);
 };
 
 const scaleXToCanvas = (x: number, canvasWidth: number, PDFWidth: number) =>
@@ -259,11 +259,11 @@ const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   const ctx = canvas.getContext("2d");
   if (ctx) {
     setPage(page.value);
-    setTimeout(() => drawZone(z, ctx, canvas.width, canvas.height), 200);
+    setTimeout(() => drawAllZones(page.value), 200);
   }
 };
 
-const selectZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) =>
+const selectZoneEvent = (e: PointerEvent, canvas: HTMLCanvasElement) =>
   signature.zones
     .filter((z) => z.PDFPage.index + 1 === page.value)
     .map((z) => {
@@ -283,15 +283,15 @@ const selectZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) =>
 const canvasClick = (e: PointerEvent) => {
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   canvasEvent.value === "select"
-    ? selectZoneOnCanvas(e, canvas)
-    : addZoneOnCanvas(e, canvas);
+    ? selectZoneEvent(e, canvas)
+    : addZoneEvent(e, canvas);
 };
 
 const turnPage = async (upOrDown: number) => {
-  userSignatureZone.value = null;
+  //userSignatureZone.value = null; // desactivate the reset of the zone when turning page
   page.value = page.value + upOrDown;
   await setPage(page.value);
-  setTimeout(() => addZones(page.value), 200);
+  setTimeout(() => drawAllZones(page.value), 200);
 };
 
 const turnSignature = async (upOrDown: number) => {
@@ -351,19 +351,24 @@ const drawZone = (
     ctx.fillStyle = unselectedBlue;
     ctx.fillText("Choisir cette", xText, yText - 12);
     ctx.fillText("zone de signature", xText, yText + 12);
-    // ctx.strokeStyle = "#c6c6c6"; // halo
-    // ctx.strokeText("Choisir cette", xText, yText - 12);
-    // ctx.strokeText("zone de signature", xText, yText + 12);
   }
 };
 
-const addZones = (page: number) => {
+const drawAllZones = (page: number) => {
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
   if (ctx) {
     signature.zones
       .filter((z) => z.PDFPage.index + 1 === page)
-      .map((z) => drawZone(z, ctx, canvas.width, canvas.height));
+      .map((z) => {
+        if (userSignatureZone.value) {
+          if (userSignatureZone.value?.index === z.index) {
+            drawZone(z, ctx, canvas.width, canvas.height);
+          }
+        } else {
+          drawZone(z, ctx, canvas.width, canvas.height);
+        }
+      });
   }
 };
 
@@ -447,7 +452,7 @@ const confirmSign = () => {
 const undoSign = async () => {
   signature.zones = signature.zones.filter((z) => z.index !== null);
   await setPage(page.value);
-  setTimeout(() => addZones(page.value), 200);
+  setTimeout(() => drawAllZones(page.value), 200);
   userSignatureZone.value = null;
   adding.value = false;
 };
@@ -458,7 +463,8 @@ const toggleAddZone = () => {
     : (canvasEvent.value = "select");
 };
 
-const addZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) => {
+const addZoneEvent = async (e: PointerEvent, canvas: HTMLCanvasElement) => {
+  userSignatureZone.value = null;
   const BOX_WIDTH = 180;
   const BOX_HEIGHT = 90;
   const PDFPageHeight = canvas.height;
@@ -485,7 +491,8 @@ const addZoneOnCanvas = (e: PointerEvent, canvas: HTMLCanvasElement) => {
   };
   signature.zones.push(newZone);
 
-  setTimeout(() => addZones(page.value), 200);
+  await setPage(page.value);
+  setTimeout(() => drawAllZones(page.value), 200);
   canvasEvent.value = "select";
   adding.value = true;
 };
@@ -494,7 +501,7 @@ const removeNewZone = async () => {
   signature.zones = signature.zones.filter((z) => z.index !== null);
   userSignatureZone.value = null;
   await setPage(page.value);
-  setTimeout(() => addZones(page.value), 200);
+  setTimeout(() => drawAllZones(page.value), 200);
   canvasEvent.value = "select";
   adding.value = false;
 };

From 57d2929ecd0c87d6ae89be612766cebd06862c8e Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 14:03:43 +0200
Subject: [PATCH 238/375] Signature: move buttons to a top toolbar + change
 behavior on a new zone

---
 .../public/vuejs/DocumentSignature/App.vue    | 193 ++++++++++++------
 .../public/vuejs/DocumentSignature/index.ts   |   8 +-
 2 files changed, 142 insertions(+), 59 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index c09efda8a..7c519f54f 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -27,8 +27,8 @@
     </modal>
   </teleport>
   <div class="col-12 m-auto">
-    <div class="row justify-content-center border-bottom pdf-tools">
-      <div v-if="pageCount > 1" class="col-4 text-center turn-page">
+    <div class="row justify-content-center border pdf-tools d-md-none">
+      <div v-if="pageCount > 1" class="col text-center turn-page">
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
@@ -36,7 +36,7 @@
         >
           ❮
         </button>
-        <span>page {{ page }} / {{ pageCount }}</span>
+        <span>{{ page }}/{{ pageCount }}</span>
         <button
           class="btn btn-light btn-sm"
           :disabled="page >= pageCount"
@@ -45,7 +45,101 @@
           ❯
         </button>
       </div>
-      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-end">
+      <div v-if="signature.zones.length > 1" class="col-3 p-0">
+        <button
+          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(-1)"
+        >
+          {{ $t("last_zone") }}
+        </button>
+      </div>
+      <div v-if="signature.zones.length > 1" class="col-3 p-0">
+        <button
+          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(1)"
+        >
+          {{ $t("next_zone") }}
+        </button>
+      </div>
+      <div class="col text-end p-0">
+        <button
+          class="btn btn-misc btn-sm"
+          :hidden="!userSignatureZone"
+          @click="undoSign"
+          v-if="signature.zones.length > 1"
+          :title="$t('choose_another_signature')"
+        >
+          {{ $t("another_zone") }}
+        </button>
+        <button
+          class="btn btn-misc btn-sm"
+          :hidden="!userSignatureZone"
+          @click="undoSign"
+          v-else
+        >
+          {{ $t("cancel") }}
+        </button>
+      </div>
+      <div class="col-1">
+        <button
+          class="btn btn-create btn-sm"
+          :class="{ active: canvasEvent === 'add' }"
+          @click="toggleAddZone()"
+          :title="$t('add_sign_zone')"
+        ></button>
+      </div>
+    </div>
+
+    <div
+      class="row justify-content-center border pdf-tools d-none d-md-flex"
+    >
+      <div v-if="pageCount > 1" class="col-2 text-center turn-page p-0">
+        <button
+          class="btn btn-light btn-sm"
+          :disabled="page <= 1"
+          @click="turnPage(-1)"
+        >
+          ❮
+        </button>
+        <span>{{ page }} / {{ pageCount }}</span>
+        <button
+          class="btn btn-light btn-sm"
+          :disabled="page >= pageCount"
+          @click="turnPage(1)"
+        >
+          ❯
+        </button>
+      </div>
+      <div
+        v-if="signature.zones.length > 1"
+        class="col text-end d-lg-none"
+      >
+        <button
+          :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(-1)"
+        >
+          {{ $t("last_zone") }}
+        </button>
+      </div>
+      <div
+        v-if="signature.zones.length > 1"
+        class="col text-start d-lg-none"
+      >
+        <button
+          :disabled="userSignatureZone?.index >= signature.zones.length - 1"
+          class="btn btn-light btn-sm"
+          @click="turnSignature(1)"
+        >
+          {{ $t("next_zone") }}
+        </button>
+      </div>
+      <div
+        v-if="signature.zones.length > 1"
+        class="col text-end d-none d-lg-flex p-0"
+      >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
           class="btn btn-light btn-sm"
@@ -54,7 +148,10 @@
           {{ $t("last_sign_zone") }}
         </button>
       </div>
-      <div v-if="signature.zones.length > 1" class="col-4 col-xl-3 text-start">
+      <div
+        v-if="signature.zones.length > 1"
+        class="col text-start d-none d-lg-flex p-0"
+      >
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
           class="btn btn-light btn-sm"
@@ -63,6 +160,34 @@
           {{ $t("next_sign_zone") }}
         </button>
       </div>
+      <div class="col text-end p-0">
+        <button
+          class="btn btn-misc btn-sm"
+          :hidden="!userSignatureZone"
+          @click="undoSign"
+          v-if="signature.zones.length > 1"
+        >
+          {{ $t("choose_another_signature") }}
+        </button>
+        <button
+          class="btn btn-misc btn-sm"
+          :hidden="!userSignatureZone"
+          @click="undoSign"
+          v-else
+        >
+          {{ $t("cancel") }}
+        </button>
+      </div>
+      <div class="col text-end p-0 pe-xxl-4">
+        <button
+          class="btn btn-create btn-sm"
+          :class="{ active: canvasEvent === 'add' }"
+          @click="toggleAddZone()"
+          :title="$t('add_sign_zone')"
+        >
+          {{ $t("add_zone") }}
+        </button>
+      </div>
     </div>
   </div>
   <div class="col-xs-12 col-md-12 col-lg-9 m-auto my-5 text-center">
@@ -74,29 +199,6 @@
     id="action-buttons"
     v-if="signedState !== 'signed'"
   >
-    <div class="row mb-3">
-      <div class="col-12 d-flex justify-content-end">
-        <div class="col-4 col-xl-3 gap-2 d-grid">
-          <button
-            v-if="adding"
-            class="btn btn-misc btn-cancel me-2 btn-sm"
-            @click="removeNewZone()"
-          >
-            {{ $t("remove_sign_zone") }}
-          </button>
-        </div>
-        <div class="col-4 gap-2 d-grid">
-          <button
-            class="btn btn-create btn-sm"
-            :class="{ active: canvasEvent === 'add' }"
-            @click="toggleAddZone()"
-          >
-            {{ $t("add_sign_zone") }}
-          </button>
-        </div>
-      </div>
-    </div>
-
     <div class="row">
       <div class="col-4">
         <button
@@ -108,22 +210,6 @@
         </button>
       </div>
       <div class="col-8 d-flex justify-content-end">
-        <button
-          class="btn btn-misc me-2"
-          :hidden="!userSignatureZone"
-          @click="undoSign"
-          v-if="signature.zones.length > 1"
-        >
-          {{ $t("choose_another_signature") }}
-        </button>
-        <button
-          class="btn btn-misc me-2"
-          :hidden="!userSignatureZone"
-          @click="undoSign"
-          v-else
-        >
-          {{ $t("cancel") }}
-        </button>
         <a class="btn btn-delete" :href="getReturnPath()">
           {{ $t("cancel_signing") }}
         </a>
@@ -455,6 +541,7 @@ const undoSign = async () => {
   setTimeout(() => drawAllZones(page.value), 200);
   userSignatureZone.value = null;
   adding.value = false;
+  canvasEvent.value = "select";
 };
 
 const toggleAddZone = () => {
@@ -464,7 +551,6 @@ const toggleAddZone = () => {
 };
 
 const addZoneEvent = async (e: PointerEvent, canvas: HTMLCanvasElement) => {
-  userSignatureZone.value = null;
   const BOX_WIDTH = 180;
   const BOX_HEIGHT = 90;
   const PDFPageHeight = canvas.height;
@@ -490,6 +576,7 @@ const addZoneEvent = async (e: PointerEvent, canvas: HTMLCanvasElement) => {
     },
   };
   signature.zones.push(newZone);
+  userSignatureZone.value = newZone;
 
   await setPage(page.value);
   setTimeout(() => drawAllZones(page.value), 200);
@@ -497,15 +584,6 @@ const addZoneEvent = async (e: PointerEvent, canvas: HTMLCanvasElement) => {
   adding.value = true;
 };
 
-const removeNewZone = async () => {
-  signature.zones = signature.zones.filter((z) => z.index !== null);
-  userSignatureZone.value = null;
-  await setPage(page.value);
-  setTimeout(() => drawAllZones(page.value), 200);
-  canvasEvent.value = "select";
-  adding.value = false;
-};
-
 const getReturnPath = () =>
   window.location.search
     ? window.location.search.split("?returnPath=")[1] ??
@@ -527,9 +605,10 @@ div#action-buttons {
 }
 div.pdf-tools {
   background-color: #f3f3f3;
-  @media (min-width: 1200px) {
-    background: none;
-    border: none !important;
+  font-size: 0.8rem;
+  @media (min-width: 1400px) {
+    // background: none;
+    // border: none !important;
   }
 }
 div.turn-page {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index c5c4b5eb8..6f2ddafe9 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -10,14 +10,18 @@ const appMessages = {
         you_are_going_to_sign: 'Vous allez signer le document',
         signature_confirmation: 'Confirmation de la signature',
         sign: 'Signer',
-        choose_another_signature: 'Choisir une autre zone de signature',
+        choose_another_signature: 'Choisir une autre zone',
         cancel: 'Annuler',
         cancel_signing: 'Refuser de signer',
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
+        add_sign_zone: 'Ajouter une zone de signature',
+        last_zone: 'Zone précédente',
+        next_zone: 'Zone suivante',
+        add_zone: 'Ajouter une zone',
+        another_zone: 'Autre zone',
         electronic_signature_in_progress: 'Signature électronique en cours...',
         loading: 'Chargement...',
-        add_sign_zone: 'Ajouter une zone de signature',
         remove_sign_zone: 'Enlever la zone',
     }
 }

From ae1459cf772983485bf87c1956e13383adf64de0 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 14:22:58 +0200
Subject: [PATCH 239/375] Signature: topbar UI

---
 .../public/vuejs/DocumentSignature/App.vue         | 14 +++++++-------
 .../views/Workflow/_signature_sign.html.twig       |  8 +++-----
 2 files changed, 10 insertions(+), 12 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 7c519f54f..e1d3124ce 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -27,7 +27,7 @@
     </modal>
   </teleport>
   <div class="col-12 m-auto">
-    <div class="row justify-content-center border pdf-tools d-md-none">
+    <div class="row justify-content-center border-bottom pdf-tools d-md-none">
       <div v-if="pageCount > 1" class="col text-center turn-page">
         <button
           class="btn btn-light btn-sm"
@@ -93,7 +93,7 @@
     </div>
 
     <div
-      class="row justify-content-center border pdf-tools d-none d-md-flex"
+      class="row justify-content-center border-bottom pdf-tools d-none d-md-flex"
     >
       <div v-if="pageCount > 1" class="col-2 text-center turn-page p-0">
         <button
@@ -114,7 +114,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1"
-        class="col text-end d-lg-none"
+        class="col text-end d-xl-none"
       >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
@@ -126,7 +126,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1"
-        class="col text-start d-lg-none"
+        class="col text-start d-xl-none"
       >
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
@@ -138,7 +138,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1"
-        class="col text-end d-none d-lg-flex p-0"
+        class="col text-end d-none d-xl-flex p-0"
       >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
@@ -150,7 +150,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1"
-        class="col text-start d-none d-lg-flex p-0"
+        class="col text-start d-none d-xl-flex p-0"
       >
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
@@ -178,7 +178,7 @@
           {{ $t("cancel") }}
         </button>
       </div>
-      <div class="col text-end p-0 pe-xxl-4">
+      <div class="col text-end p-0 pe-2 pe-xxl-4">
         <button
           class="btn btn-create btn-sm"
           :class="{ active: canvasEvent === 'add' }"
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
index 1c4b0a8f2..03e5a9174 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
@@ -25,11 +25,9 @@
     {% endblock %}
 
     <div class="content" id="content">
-        <div class="container-xxl">
-            <div class="row">
-               <div class="col-12 m-auto">
-                   <div class="row" id="document-signature"></div>
-               </div>
+        <div class="row">
+            <div class="col-12 m-auto">
+                <div class="row" id="document-signature"></div>
             </div>
         </div>
     </div>

From 092b5c4f90eb51c8923f149750e77e7d9fa55588 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 15:26:03 +0200
Subject: [PATCH 240/375] Signature: get the stored object back in the check
 signature API

---
 .../Controller/SignatureRequestController.php |  12 +-
 .../Resources/public/types.ts                 | 135 ++++++++++--------
 .../public/vuejs/DocumentSignature/App.vue    |   6 +-
 3 files changed, 91 insertions(+), 62 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 606bafb15..14e33cca3 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -23,6 +23,7 @@ use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 
 class SignatureRequestController
 {
@@ -31,6 +32,7 @@ class SignatureRequestController
         private readonly StoredObjectManagerInterface $storedObjectManager,
         private readonly EntityWorkflowManager $entityWorkflowManager,
         private readonly ChillEntityRenderManagerInterface $entityRender,
+        private readonly NormalizerInterface $normalizer,
         private readonly Security $security,
     ) {}
 
@@ -72,6 +74,14 @@ class SignatureRequestController
     #[Route('/api/1.0/document/workflow/{id}/check-signature', name: 'chill_docstore_check_signature')]
     public function checkSignature(EntityWorkflowStepSignature $signature): JsonResponse
     {
-        return new JsonResponse($signature->getState(), JsonResponse::HTTP_OK, []);
+        $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+        $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
+
+        return new JsonResponse(
+            [
+                'state' => $signature->getState(),
+                'storedObject' => $this->normalizer->normalize($storedObject, 'json')
+            ],
+            JsonResponse::HTTP_OK, []);
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 921da3a9a..ee6b2bf98 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -1,102 +1,119 @@
-import {DateTime, User} from "../../../ChillMainBundle/Resources/public/types";
+import {
+    DateTime,
+    User,
+} from "../../../ChillMainBundle/Resources/public/types";
 
-export type StoredObjectStatus = "empty"|"ready"|"failure"|"pending";
+export type StoredObjectStatus = "empty" | "ready" | "failure" | "pending";
 
 export interface StoredObject {
-    id: number,
-    title: string|null,
-    uuid: string,
-    prefix: string,
-    status: StoredObjectStatus,
-    currentVersion: null|StoredObjectVersionCreated|StoredObjectVersionPersisted,
-    totalVersions: number,
-    datas: object,
+    id: number;
+    title: string | null;
+    uuid: string;
+    prefix: string;
+    status: StoredObjectStatus;
+    currentVersion:
+        | null
+        | StoredObjectVersionCreated
+        | StoredObjectVersionPersisted;
+    totalVersions: number;
+    datas: object;
     /** @deprecated */
-    creationDate: DateTime,
-    createdAt: DateTime|null,
-    createdBy: User|null,
+    creationDate: DateTime;
+    createdAt: DateTime | null;
+    createdBy: User | null;
     _permissions: {
-        canEdit: boolean,
-        canSee: boolean,
-    },
+        canEdit: boolean;
+        canSee: boolean;
+    };
     _links?: {
         dav_link?: {
-            href: string
-            expiration: number
-        },
-    },
+            href: string;
+            expiration: number;
+        };
+    };
 }
 
 export interface StoredObjectVersion {
     /**
      * filename of the object in the object storage
      */
-    filename: string,
-    iv: number[],
-    keyInfos: JsonWebKey,
-    type: string,
+    filename: string;
+    iv: number[];
+    keyInfos: JsonWebKey;
+    type: string;
 }
 
 export interface StoredObjectVersionCreated extends StoredObjectVersion {
-    persisted: false,
+    persisted: false;
 }
 
-export interface StoredObjectVersionPersisted extends StoredObjectVersionCreated {
-    version: number,
-    id: number,
-    createdAt: DateTime|null,
-    createdBy: User|null,
+export interface StoredObjectVersionPersisted
+    extends StoredObjectVersionCreated {
+    version: number;
+    id: number;
+    createdAt: DateTime | null;
+    createdBy: User | null;
 }
 
 export interface StoredObjectStatusChange {
-  id: number,
-  filename: string,
-  status: StoredObjectStatus,
-  type: string,
+    id: number;
+    filename: string;
+    status: StoredObjectStatus;
+    type: string;
 }
 
 /**
  * Function executed by the WopiEditButton component.
  */
 export type WopiEditButtonExecutableBeforeLeaveFunction = {
-  (): Promise<void>
-}
+    (): Promise<void>;
+};
 
 /**
  * Object containing information for performering a POST request to a swift object store
  */
 export interface PostStoreObjectSignature {
-  method: "POST",
-  max_file_size: number,
-  max_file_count: 1,
-  expires: number,
-  submit_delay: 180,
-  redirect: string,
-  prefix: string,
-  url: string,
-  signature: string,
+    method: "POST";
+    max_file_size: number;
+    max_file_count: 1;
+    expires: number;
+    submit_delay: 180;
+    redirect: string;
+    prefix: string;
+    url: string;
+    signature: string;
 }
 
 export interface PDFPage {
-  index: number,
-  width: number,
-  height: number,
+    index: number;
+    width: number;
+    height: number;
 }
 export interface SignatureZone {
-  index: number | null,
-  x: number,
-  y: number,
-  width: number,
-  height: number,
-  PDFPage: PDFPage,
+    index: number | null;
+    x: number;
+    y: number;
+    width: number;
+    height: number;
+    PDFPage: PDFPage;
 }
 
 export interface Signature {
-  id: number,
-  storedObject: StoredObject,
-  zones: SignatureZone[],
+    id: number;
+    storedObject: StoredObject;
+    zones: SignatureZone[];
 }
 
-export type SignedState = 'pending' | 'signed' | 'rejected' | 'canceled' | 'error';
+export type SignedState =
+    | "pending"
+    | "signed"
+    | "rejected"
+    | "canceled"
+    | "error";
 
-export type CanvasEvent = 'select' | 'add';
+export interface CheckSignature {
+    state: SignedState;
+    storedObject: StoredObject;
+}
+
+export type CanvasEvent = "select" | "add";
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index e1d3124ce..3294360ef 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -224,6 +224,7 @@ import { useToast } from "vue-toast-notification";
 import "vue-toast-notification/dist/theme-sugar.css";
 import {
   CanvasEvent,
+  CheckSignature,
   Signature,
   SignatureZone,
   SignedState,
@@ -460,9 +461,10 @@ const drawAllZones = (page: number) => {
 
 const checkSignature = () => {
   const url = `/api/1.0/document/workflow/${signature.id}/check-signature`;
-  return makeFetch("GET", url)
+  return makeFetch<CheckSignature, CheckSignature>("GET", url)
     .then((r) => {
-      signedState.value = r as SignedState;
+      signedState.value = r.state;
+      signature.storedObject = r.storedObject;
       checkForReady();
     })
     .catch((error) => {

From 2b516629f6d8297c7fe8751930500a4d039eb140 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 17:02:08 +0200
Subject: [PATCH 241/375] Signature: refresh document after signature

---
 .../public/vuejs/DocumentSignature/App.vue    | 46 +++++++++++--------
 .../public/vuejs/DocumentSignature/index.ts   |  1 +
 2 files changed, 28 insertions(+), 19 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 3294360ef..0f6b8bcdf 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -82,7 +82,7 @@
           {{ $t("cancel") }}
         </button>
       </div>
-      <div class="col-1">
+      <div class="col-1" v-if="signedState !== 'signed'">
         <button
           class="btn btn-create btn-sm"
           :class="{ active: canvasEvent === 'add' }"
@@ -113,7 +113,7 @@
         </button>
       </div>
       <div
-        v-if="signature.zones.length > 1"
+        v-if="signature.zones.length > 1 && signedState !== 'signed'"
         class="col text-end d-xl-none"
       >
         <button
@@ -125,7 +125,7 @@
         </button>
       </div>
       <div
-        v-if="signature.zones.length > 1"
+        v-if="signature.zones.length > 1 && signedState !== 'signed'"
         class="col text-start d-xl-none"
       >
         <button
@@ -137,7 +137,7 @@
         </button>
       </div>
       <div
-        v-if="signature.zones.length > 1"
+        v-if="signature.zones.length > 1 && signedState !== 'signed'"
         class="col text-end d-none d-xl-flex p-0"
       >
         <button
@@ -149,7 +149,7 @@
         </button>
       </div>
       <div
-        v-if="signature.zones.length > 1"
+        v-if="signature.zones.length > 1 && signedState !== 'signed'"
         class="col text-start d-none d-xl-flex p-0"
       >
         <button
@@ -160,7 +160,7 @@
           {{ $t("next_sign_zone") }}
         </button>
       </div>
-      <div class="col text-end p-0">
+      <div class="col text-end p-0" v-if="signedState !== 'signed'">
         <button
           class="btn btn-misc btn-sm"
           :hidden="!userSignatureZone"
@@ -178,7 +178,10 @@
           {{ $t("cancel") }}
         </button>
       </div>
-      <div class="col text-end p-0 pe-2 pe-xxl-4">
+      <div
+        class="col text-end p-0 pe-2 pe-xxl-4"
+        v-if="signedState !== 'signed'"
+      >
         <button
           class="btn btn-create btn-sm"
           :class="{ active: canvasEvent === 'add' }"
@@ -194,13 +197,9 @@
     <canvas class="m-auto" id="canvas"></canvas>
   </div>
 
-  <div
-    class="col-xs-12 col-md-12 col-lg-9 m-auto p-4"
-    id="action-buttons"
-    v-if="signedState !== 'signed'"
-  >
+  <div class="col-xs-12 col-md-12 col-lg-9 m-auto p-4" id="action-buttons">
     <div class="row">
-      <div class="col-4">
+      <div class="col-4" v-if="signedState !== 'signed'">
         <button
           class="btn btn-action me-2"
           :disabled="!userSignatureZone"
@@ -209,10 +208,18 @@
           {{ $t("sign") }}
         </button>
       </div>
+      <div class="col-4" v-else></div>
       <div class="col-8 d-flex justify-content-end">
-        <a class="btn btn-delete" :href="getReturnPath()">
+        <a
+          class="btn btn-delete"
+          v-if="signedState !== 'signed'"
+          :href="getReturnPath()"
+        >
           {{ $t("cancel_signing") }}
         </a>
+        <a class="btn btn-cancel" v-else :href="getReturnPath()">
+          {{ $t("return") }}
+        </a>
       </div>
     </div>
   </div>
@@ -274,7 +281,7 @@ const mountPdf = async (url: string) => {
   const loadingTask = pdfjsLib.getDocument(url);
   pdf = await loadingTask.promise;
   pageCount.value = pdf.numPages;
-  await setPage(1);
+  await setPage(page.value);
 };
 
 const getRenderContext = (pdfPage: PDFPageProxy) => {
@@ -297,6 +304,8 @@ const setPage = async (page: number) => {
   await pdfPage.render(renderContext);
 };
 
+const init = () => downloadAndOpen().then(initPdf);
+
 async function downloadAndOpen(): Promise<Blob> {
   let raw;
   try {
@@ -309,7 +318,6 @@ async function downloadAndOpen(): Promise<Blob> {
     throw e;
   }
   await mountPdf(URL.createObjectURL(raw));
-  initPdf();
   return raw;
 }
 
@@ -444,7 +452,7 @@ const drawZone = (
 const drawAllZones = (page: number) => {
   const canvas = document.querySelectorAll("canvas")[0];
   const ctx = canvas.getContext("2d");
-  if (ctx) {
+  if (ctx && signedState.value !== "signed") {
     signature.zones
       .filter((z) => z.PDFPage.index + 1 === page)
       .map((z) => {
@@ -461,7 +469,7 @@ const drawAllZones = (page: number) => {
 
 const checkSignature = () => {
   const url = `/api/1.0/document/workflow/${signature.id}/check-signature`;
-  return makeFetch<CheckSignature, CheckSignature>("GET", url)
+  return makeFetch<null, CheckSignature>("GET", url)
     .then((r) => {
       signedState.value = r.state;
       signature.storedObject = r.storedObject;
@@ -592,7 +600,7 @@ const getReturnPath = () =>
       window.location.pathname
     : window.location.pathname;
 
-downloadAndOpen();
+init();
 </script>
 
 <style scoped lang="scss">
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 6f2ddafe9..c6ae996b2 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -23,6 +23,7 @@ const appMessages = {
         electronic_signature_in_progress: 'Signature électronique en cours...',
         loading: 'Chargement...',
         remove_sign_zone: 'Enlever la zone',
+        return: 'Retour',
     }
 }
 

From 119668e415c9220406cc40536e7cf88261914fd4 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 17:02:45 +0200
Subject: [PATCH 242/375] Signature: allow for null index in signature zone

---
 .../Controller/SignatureRequestController.php               | 6 ++++--
 .../Signature/Driver/BaseSigner/RequestPdfSignMessage.php   | 2 +-
 .../Service/Signature/PDFSignatureZone.php                  | 2 +-
 3 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 14e33cca3..2a6e0e223 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -80,8 +80,10 @@ class SignatureRequestController
         return new JsonResponse(
             [
                 'state' => $signature->getState(),
-                'storedObject' => $this->normalizer->normalize($storedObject, 'json')
+                'storedObject' => $this->normalizer->normalize($storedObject, 'json'),
             ],
-            JsonResponse::HTTP_OK, []);
+            JsonResponse::HTTP_OK,
+            []
+        );
     }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
index 144a738e1..95d83c2b4 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/RequestPdfSignMessage.php
@@ -21,7 +21,7 @@ final readonly class RequestPdfSignMessage
     public function __construct(
         public int $signatureId,
         public PDFSignatureZone $PDFSignatureZone,
-        public int $signatureZoneIndex,
+        public ?int $signatureZoneIndex,
         public string $reason,
         public string $signerText,
         public string $content,
diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
index c21b2fdc2..4c5db70f8 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/PDFSignatureZone.php
@@ -17,7 +17,7 @@ final readonly class PDFSignatureZone
 {
     public function __construct(
         #[Groups(['read'])]
-        public int $index,
+        public ?int $index,
         #[Groups(['read'])]
         public float $x,
         #[Groups(['read'])]

From 59c34dabd78567476140510d54415dcd8198ffcc Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Thu, 12 Sep 2024 17:18:13 +0200
Subject: [PATCH 243/375] Signature: allow for null index in signature zone

---
 .../Service/Signature/Driver/BaseSigner/PdfSignedMessage.php    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
index 3116e3b62..9368f188b 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/Signature/Driver/BaseSigner/PdfSignedMessage.php
@@ -18,7 +18,7 @@ final readonly class PdfSignedMessage
 {
     public function __construct(
         public readonly int $signatureId,
-        public readonly int $signatureZoneIndex,
+        public readonly ?int $signatureZoneIndex,
         public readonly string $content,
     ) {}
 }

From f0e8df38aff5b3418ddeb77e0ffd6b17da88f870 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 13 Sep 2024 16:03:06 +0200
Subject: [PATCH 244/375] remove the left-arrow on the "retour" button, because
 it was placed on the right of the page

---
 .../Resources/public/vuejs/DocumentSignature/App.vue            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 0f6b8bcdf..e63997bcd 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -217,7 +217,7 @@
         >
           {{ $t("cancel_signing") }}
         </a>
-        <a class="btn btn-cancel" v-else :href="getReturnPath()">
+        <a class="btn btn-misc" v-else :href="getReturnPath()">
           {{ $t("return") }}
         </a>
       </div>

From 8e984f2006aa5b346288829e2cb5552d59dd4bac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 13 Sep 2024 16:16:42 +0200
Subject: [PATCH 245/375] do not allow to sign if the signature is already
 applyied

---
 .../Controller/SignatureRequestController.php      |  7 +++++++
 .../Controller/WorkflowAddSignatureController.php  | 14 ++++++++++++++
 .../WorkflowAddSignatureControllerTest.php         |  5 ++++-
 3 files changed, 25 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 2a6e0e223..26fc1b098 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -15,11 +15,13 @@ use Chill\DocStoreBundle\Service\Signature\Driver\BaseSigner\RequestPdfSignMessa
 use Chill\DocStoreBundle\Service\Signature\PDFPage;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZone;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Core\Security;
@@ -40,6 +42,11 @@ class SignatureRequestController
     public function processSignature(EntityWorkflowStepSignature $signature, Request $request): JsonResponse
     {
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
+
+        if (EntityWorkflowSignatureStateEnum::PENDING !== $signature->getState()) {
+            return new JsonResponse([], status: Response::HTTP_CONFLICT);
+        }
+
         $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
         $content = $this->storedObjectManager->read($storedObject);
 
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index 8ee8138fa..deb90119b 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -12,12 +12,15 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Controller;
 
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
 
@@ -28,6 +31,7 @@ final readonly class WorkflowAddSignatureController
         private PDFSignatureZoneAvailable $PDFSignatureZoneAvailable,
         private NormalizerInterface $normalizer,
         private Environment $twig,
+        private UrlGeneratorInterface $urlGenerator,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature_add', methods: 'GET')]
@@ -35,6 +39,16 @@ final readonly class WorkflowAddSignatureController
     {
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
 
+        if (EntityWorkflowSignatureStateEnum::PENDING !== $signature->getState()) {
+            if ($request->query->has('returnPath')) {
+                return new RedirectResponse($request->query->get('returnPath'));
+            }
+
+            return new RedirectResponse(
+                $this->urlGenerator->generate('chill_main_workflow_show', ['id' => $entityWorkflow->getId()])
+            );
+        }
+
         $storedObject = $this->entityWorkflowManager->getAssociatedStoredObject($entityWorkflow);
         if (null === $storedObject) {
             throw new NotFoundHttpException('No stored object found');
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
index 81c8d095e..4b6fd38e2 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
@@ -23,6 +23,7 @@ use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
 
@@ -62,7 +63,9 @@ class WorkflowAddSignatureControllerTest extends TestCase
         $twig->method('render')->with('@ChillMain/Workflow/_signature_sign.html.twig', $this->isType('array'))
             ->willReturn('ok');
 
-        $controller = new WorkflowAddSignatureController($entityWorkflowManager, $pdfSignatureZoneAvailable, $normalizer, $twig);
+        $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
+
+        $controller = new WorkflowAddSignatureController($entityWorkflowManager, $pdfSignatureZoneAvailable, $normalizer, $twig, $urlGenerator);
 
         $actual = $controller($signature, new Request());
 

From 911dfc287859727d56b4e5ba111591f638c8eb9c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 13 Sep 2024 16:22:09 +0200
Subject: [PATCH 246/375] fix rector errors

---
 .../Templating/Entity/ChillEntityRenderExtension.php       | 2 +-
 .../Templating/Entity/ChillEntityRenderManager.php         | 7 ++-----
 2 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
index 8a9e70229..cc2664f55 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderExtension.php
@@ -19,7 +19,7 @@ use Twig\TwigFilter;
  */
 class ChillEntityRenderExtension extends AbstractExtension
 {
-    public function __construct(private ChillEntityRenderManagerInterface $renderManager) {}
+    public function __construct(private readonly ChillEntityRenderManagerInterface $renderManager) {}
 
     /**
      * @return array|TwigFilter[]
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
index 6437a9c24..51315a6d6 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
@@ -15,15 +15,12 @@ final readonly class ChillEntityRenderManager implements ChillEntityRenderManage
 {
     private ChillEntityRender $defaultRender;
 
-    /**
+    public function __construct(/**
      * @var iterable<ChillEntityRenderInterface>
      */
-    private iterable $renders;
-
-    public function __construct(iterable $renders)
+    private iterable $renders)
     {
         $this->defaultRender = new ChillEntityRender();
-        $this->renders = $renders;
     }
 
     public function renderBox($entity, array $options = []): string

From 9f1afb8423679e7c703dfb3935458406e6dd41ff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 13 Sep 2024 17:04:57 +0200
Subject: [PATCH 247/375] Add access controls and permissions for signature
 steps

Implemented a Voter to enforce permissions on signature steps, ensuring only authorized users can sign steps. Updated relevant controllers and templates to reflect these permissions, and added corresponding tests to validate the changes.
---
 .../Controller/SignatureRequestController.php |  6 +++
 .../WorkflowAddSignatureController.php        |  8 ++++
 .../Entity/Workflow/EntityWorkflow.php        |  6 ++-
 .../views/Workflow/_signature.html.twig       | 20 +++++----
 .../EntityWorkflowStepSignatureVoter.php      | 41 +++++++++++++++++++
 .../Entity/ChillEntityRenderManager.php       |  4 +-
 .../WorkflowAddSignatureControllerTest.php    |  8 +++-
 .../translations/messages.fr.yml              |  3 +-
 8 files changed, 83 insertions(+), 13 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
index 26fc1b098..c6c564be1 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/SignatureRequestController.php
@@ -18,10 +18,12 @@ use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowStepSignatureVoter;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\JsonResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Core\Security;
@@ -41,6 +43,10 @@ class SignatureRequestController
     #[Route('/api/1.0/document/workflow/{id}/signature-request', name: 'chill_docstore_signature_request')]
     public function processSignature(EntityWorkflowStepSignature $signature, Request $request): JsonResponse
     {
+        if (!$this->security->isGranted(EntityWorkflowStepSignatureVoter::SIGN, $signature)) {
+            throw new AccessDeniedHttpException('not authorized to sign this step');
+        }
+
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
 
         if (EntityWorkflowSignatureStateEnum::PENDING !== $signature->getState()) {
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index deb90119b..2aa180b7a 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -14,13 +14,16 @@ namespace Chill\MainBundle\Controller;
 use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowStepSignatureVoter;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
 
@@ -32,11 +35,16 @@ final readonly class WorkflowAddSignatureController
         private NormalizerInterface $normalizer,
         private Environment $twig,
         private UrlGeneratorInterface $urlGenerator,
+        private Security $security,
     ) {}
 
     #[Route(path: '/{_locale}/main/workflow/signature/{id}/sign', name: 'chill_main_workflow_signature_add', methods: 'GET')]
     public function __invoke(EntityWorkflowStepSignature $signature, Request $request): Response
     {
+        if (!$this->security->isGranted(EntityWorkflowStepSignatureVoter::SIGN, $signature)) {
+            throw new AccessDeniedHttpException('not authorized to sign this step');
+        }
+
         $entityWorkflow = $signature->getStep()->getEntityWorkflow();
 
         if (EntityWorkflowSignatureStateEnum::PENDING !== $signature->getState()) {
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 08b5ee41f..89efde7c0 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -318,7 +318,7 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             }
         }
 
-        return $usersInvolved;
+        return array_values($usersInvolved);
     }
 
     public function getWorkflowName(): string
@@ -446,6 +446,10 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             $newStep->addDestUser($user);
         }
 
+        if (null !== $transitionContextDTO->futureUserSignature) {
+            $newStep->addDestUser($transitionContextDTO->futureUserSignature);
+        }
+
         foreach ($transitionContextDTO->futureDestEmails as $email) {
             $newStep->addDestEmail($email);
         }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index 50172089c..b0e401645 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -23,14 +23,18 @@
                         {% if s.isSigned %}
                             <span class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
                         {% else %}
-                            <ul class="record_actions slim">
-                                <li>
-                                    <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                                    {% if s.state is same as('signed') %}
-                                        <p class="updatedBy">{{ s.stateDate }}</p>
-                                    {% endif %}
-                                </li>
-                            </ul>
+                            {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s) %}
+                                <ul class="record_actions slim">
+                                    <li>
+                                        <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                                        {% if s.state is same as('signed') %}
+                                            <p class="updatedBy">{{ s.stateDate }}</p>
+                                        {% endif %}
+                                    </li>
+                                </ul>
+                            {% else %}
+                                <span class="text-end">{{ 'workflow.waiting_for_signature'|trans }}</span>
+                            {% endif %}
                         {% endif %}
                 </div>
         </div>
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
new file mode 100644
index 000000000..683f1352f
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Security\Authorization;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\PersonBundle\Entity\Person;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+
+final class EntityWorkflowStepSignatureVoter extends Voter
+{
+    public const SIGN = 'CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN';
+
+    protected function supports(string $attribute, $subject)
+    {
+        return $subject instanceof EntityWorkflowStepSignature && self::SIGN === $attribute;
+    }
+
+    protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token)
+    {
+        /** @var EntityWorkflowStepSignature $subject */
+        if ($subject->getSigner() instanceof Person) {
+            return true;
+        }
+
+        if ($subject->getSigner() === $token->getUser()) {
+            return true;
+        }
+
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
index 51315a6d6..daca1fb8a 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/ChillEntityRenderManager.php
@@ -18,8 +18,8 @@ final readonly class ChillEntityRenderManager implements ChillEntityRenderManage
     public function __construct(/**
      * @var iterable<ChillEntityRenderInterface>
      */
-    private iterable $renders)
-    {
+        private iterable $renders,
+    ) {
         $this->defaultRender = new ChillEntityRender();
     }
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
index 4b6fd38e2..9b4507936 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
@@ -18,12 +18,14 @@ use Chill\DocStoreBundle\Service\Signature\PDFSignatureZoneAvailable;
 use Chill\MainBundle\Controller\WorkflowAddSignatureController;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowStepSignatureVoter;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Twig\Environment;
 
@@ -65,7 +67,11 @@ class WorkflowAddSignatureControllerTest extends TestCase
 
         $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
 
-        $controller = new WorkflowAddSignatureController($entityWorkflowManager, $pdfSignatureZoneAvailable, $normalizer, $twig, $urlGenerator);
+        $security = $this->createMock(Security::class);
+        $security->expects($this->once())->method('isGranted')->with(EntityWorkflowStepSignatureVoter::SIGN, $signature)
+            ->willReturn(true);
+
+        $controller = new WorkflowAddSignatureController($entityWorkflowManager, $pdfSignatureZoneAvailable, $normalizer, $twig, $urlGenerator, $security);
 
         $actual = $controller($signature, new Request());
 
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 0c0fce51c..003dcbee5 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -531,9 +531,10 @@ workflow:
     Remove hold: Enlever la mise en attente
     On hold: En attente
     Automated transition: Transition automatique
+    waiting_for_signature: En attente de signature
 
     signature_zone:
-        title: Appliquer les signatures électroniques
+        title: Signatures électroniques
         button_sign: Signer
         metadata:
             sign_by: 'Signature pour %name%'

From e5737b0c49686f6322f31c6505e871782e86e12e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 16 Sep 2024 11:51:58 +0200
Subject: [PATCH 248/375] remove temporary method

---
 .../Controller/DocumentPersonController.php   | 32 -------------------
 1 file changed, 32 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
index 2d2cf66f3..2fd231aec 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentPersonController.php
@@ -201,36 +201,4 @@ class DocumentPersonController extends AbstractController
             ['document' => $document, 'person' => $person]
         );
     }
-
-    #[Route(path: '/{id}/signature', name: 'person_document_signature', methods: 'GET')]
-    public function signature(Person $person, PersonDocument $document): Response
-    {
-        $this->denyAccessUnlessGranted('CHILL_PERSON_SEE', $person);
-        $this->denyAccessUnlessGranted('CHILL_PERSON_DOCUMENT_SEE', $document);
-
-        $event = new PrivacyEvent($person, [
-            'element_class' => PersonDocument::class,
-            'element_id' => $document->getId(),
-            'action' => 'show',
-        ]);
-        $this->eventDispatcher->dispatch($event, PrivacyEvent::PERSON_PRIVACY_EVENT);
-
-        $storedObject = $document->getObject();
-        $content = $this->storedObjectManagerInterface->read($storedObject);
-        $zones = $this->PDFSignatureZoneParser->findSignatureZones($content);
-
-        $signature = [];
-        $signature['id'] = 1;
-        $signature['storedObject'] = [ // TEMP
-            'filename' => $storedObject->getFilename(),
-            'iv' => $storedObject->getIv(),
-            'keyInfos' => $storedObject->getKeyInfos(),
-        ];
-        $signature['zones'] = $zones;
-
-        return $this->render(
-            '@ChillDocStore/PersonDocument/signature.html.twig',
-            ['document' => $document, 'person' => $person, 'signature' => $signature]
-        );
-    }
 }

From 7a7d1d5b16ae790459d13d047d889d7fbc2ad047 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 16 Sep 2024 12:13:52 +0200
Subject: [PATCH 249/375] remove blank file

---
 src/Bundle/ChillWopiBundle/src/Controller/Convert.php | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 src/Bundle/ChillWopiBundle/src/Controller/Convert.php

diff --git a/src/Bundle/ChillWopiBundle/src/Controller/Convert.php b/src/Bundle/ChillWopiBundle/src/Controller/Convert.php
deleted file mode 100644
index e69de29bb..000000000

From 0d54637d3503f699e05cade993a1300c342d0d3b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 16 Sep 2024 13:19:14 +0200
Subject: [PATCH 250/375] Add missing constructor argument in
 SignatureStepStateChangerTest

---
 .../Tests/Workflow/SignatureStepStateChangerTest.php         | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
index 5eb82bab9..16579cbb5 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
@@ -19,6 +19,7 @@ use Chill\MainBundle\Workflow\SignatureStepStateChanger;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
 use Symfony\Component\Clock\MockClock;
 use Symfony\Component\Workflow\DefinitionBuilder;
 use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
@@ -43,7 +44,7 @@ class SignatureStepStateChangerTest extends TestCase
         $workflow = $registry->get($entityWorkflow, 'dummy');
         $clock = new MockClock();
         $user = new User();
-        $changer = new SignatureStepStateChanger($registry, $clock);
+        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger());
 
         // move it to signature
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
@@ -84,7 +85,7 @@ class SignatureStepStateChangerTest extends TestCase
         $workflow = $registry->get($entityWorkflow, 'dummy');
         $clock = new MockClock();
         $user = new User();
-        $changer = new SignatureStepStateChanger($registry, $clock);
+        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger());
 
         // move it to signature
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);

From 4696332a46bf9ab172fb5ea85a99e21033e7b74f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 16 Sep 2024 14:16:42 +0200
Subject: [PATCH 251/375] Create a voter for applying all transitions on all
 workflow's steps

This voter checks that the related entity's centers is reachable by the user.
---
 .../EntityWorkflowTransitionVoter.php         |  88 +++++++++++
 .../EntityWorkflowTransitionVoterTest.php     | 144 ++++++++++++++++++
 .../translations/messages.fr.yml              |   3 +
 3 files changed, 235 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Authorization/EntityWorkflowTransitionVoterTest.php

diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
new file mode 100644
index 000000000..811c45f64
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
@@ -0,0 +1,88 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Security\Authorization;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
+use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
+use Chill\MainBundle\Security\Resolver\CenterResolverManagerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
+use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+
+/**
+ * A voter class that determines if a user has permission to apply all transitions
+ * in a workflow based on their roles and the centers they have access to.
+ */
+final class EntityWorkflowTransitionVoter extends Voter implements ProvideRoleHierarchyInterface
+{
+    final public const APPLY_ALL_TRANSITIONS = 'CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION';
+
+    public function __construct(
+        private readonly EntityWorkflowManager $workflowManager,
+        private readonly AuthorizationHelperForCurrentUserInterface $authorizationHelper,
+        private readonly CenterResolverManagerInterface $centerResolverManager,
+        private readonly AccessDecisionManagerInterface $accessDecisionManager,
+    ) {}
+
+    public function getRoles(): array
+    {
+        return [self::APPLY_ALL_TRANSITIONS];
+    }
+
+    public function getRolesWithoutScope(): array
+    {
+        return [self::APPLY_ALL_TRANSITIONS];
+    }
+
+    public function getRolesWithHierarchy(): array
+    {
+        return [
+            'workflow.Permissions' => [
+                self::APPLY_ALL_TRANSITIONS,
+            ],
+        ];
+    }
+
+    protected function supports(string $attribute, $subject): bool
+    {
+        return self::APPLY_ALL_TRANSITIONS === $attribute && $subject instanceof EntityWorkflowStep;
+    }
+
+    protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool
+    {
+        /** @var EntityWorkflowStep $subject */
+        $entityWorkflow = $subject->getEntityWorkflow();
+
+        if (!$this->accessDecisionManager->decide($token, [EntityWorkflowVoter::SEE], $entityWorkflow)) {
+            return false;
+        }
+
+        $handler = $this->workflowManager->getHandler($entityWorkflow);
+        $entity = $handler->getRelatedEntity($entityWorkflow);
+
+        if (null === $entity) {
+            return false;
+        }
+
+        $centers = $this->centerResolverManager->resolveCenters($entity);
+        $reachableCenters = $this->authorizationHelper->getReachableCenters(self::APPLY_ALL_TRANSITIONS);
+
+        foreach ($centers as $center) {
+            if (in_array($center, $reachableCenters, true)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Authorization/EntityWorkflowTransitionVoterTest.php b/src/Bundle/ChillMainBundle/Tests/Authorization/EntityWorkflowTransitionVoterTest.php
new file mode 100644
index 000000000..035d4cf58
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Authorization/EntityWorkflowTransitionVoterTest.php
@@ -0,0 +1,144 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Authorization;
+
+use Chill\MainBundle\Entity\Center;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Security\Authorization\AuthorizationHelperForCurrentUserInterface;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
+use Chill\MainBundle\Security\Resolver\CenterResolverManagerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
+use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
+use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowTransitionVoterTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testVoteOnAttributeHappyScenario(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $object = new \stdClass();
+        $center = new Center();
+        $user = new User();
+
+        $handler = $this->prophesize(EntityWorkflowHandlerInterface::class);
+        $handler->getRelatedEntity($entityWorkflow)->willReturn($object);
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getHandler($entityWorkflow)->willReturn($handler);
+
+        $centerResolver = $this->prophesize(CenterResolverManagerInterface::class);
+        $centerResolver->resolveCenters($object)->willReturn([$center, new Center()]);
+
+        $autorizationHelper = $this->prophesize(AuthorizationHelperForCurrentUserInterface::class);
+        $autorizationHelper->getReachableCenters('CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION')
+            ->willReturn([$center, new Center()]);
+
+        $token = new UsernamePasswordToken($user, 'default', $user->getRoles());
+
+        $accessDecision = $this->prophesize(AccessDecisionManagerInterface::class);
+        $accessDecision->decide($token, [EntityWorkflowVoter::SEE], $entityWorkflow)
+            ->willReturn(true)->shouldBeCalled();
+
+        $voter = new EntityWorkflowTransitionVoter(
+            $entityWorkflowManager->reveal(),
+            $autorizationHelper->reveal(),
+            $centerResolver->reveal(),
+            $accessDecision->reveal(),
+        );
+
+        self::assertEquals(Voter::ACCESS_GRANTED, $voter->vote($token, $entityWorkflow->getCurrentStep(), ['CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION']));
+    }
+
+    public function testVoteOnAttributeCenterNotReachable(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $object = new \stdClass();
+        $user = new User();
+
+        $handler = $this->prophesize(EntityWorkflowHandlerInterface::class);
+        $handler->getRelatedEntity($entityWorkflow)->willReturn($object);
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getHandler($entityWorkflow)->willReturn($handler);
+
+        $centerResolver = $this->prophesize(CenterResolverManagerInterface::class);
+        $centerResolver->resolveCenters($object)->willReturn([new Center()]);
+
+        $autorizationHelper = $this->prophesize(AuthorizationHelperForCurrentUserInterface::class);
+        $autorizationHelper->getReachableCenters('CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION')
+            ->willReturn([new Center()]);
+
+        $token = new UsernamePasswordToken($user, 'default', $user->getRoles());
+
+        $accessDecision = $this->prophesize(AccessDecisionManagerInterface::class);
+        $accessDecision->decide($token, [EntityWorkflowVoter::SEE], $entityWorkflow)
+            ->willReturn(true)->shouldBeCalled();
+
+        $voter = new EntityWorkflowTransitionVoter(
+            $entityWorkflowManager->reveal(),
+            $autorizationHelper->reveal(),
+            $centerResolver->reveal(),
+            $accessDecision->reveal(),
+        );
+
+        self::assertEquals(Voter::ACCESS_DENIED, $voter->vote($token, $entityWorkflow->getCurrentStep(), ['CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION']));
+    }
+
+    public function testVoteNotOnSupportedAttribute(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $object = new \stdClass();
+        $user = new User();
+
+        $handler = $this->prophesize(EntityWorkflowHandlerInterface::class);
+        $handler->getRelatedEntity($entityWorkflow)->willReturn($object);
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->getHandler($entityWorkflow)->willReturn($handler);
+
+        $centerResolver = $this->prophesize(CenterResolverManagerInterface::class);
+        $centerResolver->resolveCenters($object)->willReturn([new Center()]);
+
+        $autorizationHelper = $this->prophesize(AuthorizationHelperForCurrentUserInterface::class);
+        $autorizationHelper->getReachableCenters('CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION')
+            ->willReturn([new Center()]);
+
+        $token = new UsernamePasswordToken($user, 'default', $user->getRoles());
+
+        $accessDecision = $this->prophesize(AccessDecisionManagerInterface::class);
+        $accessDecision->decide($token, [EntityWorkflowVoter::SEE], $entityWorkflow)
+            ->willReturn(true);
+
+        $voter = new EntityWorkflowTransitionVoter(
+            $entityWorkflowManager->reveal(),
+            $autorizationHelper->reveal(),
+            $centerResolver->reveal(),
+            $accessDecision->reveal(),
+        );
+
+        self::assertEquals(Voter::ACCESS_ABSTAIN, $voter->vote($token, new \stdClass(), ['CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION']));
+        self::assertEquals(Voter::ACCESS_ABSTAIN, $voter->vote($token, $entityWorkflow->getCurrentStep(), ['SOMETHING_ELSE']));
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 003dcbee5..495b9a3bd 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -532,6 +532,8 @@ workflow:
     On hold: En attente
     Automated transition: Transition automatique
     waiting_for_signature: En attente de signature
+    Permissions: Workflows (suivi de décision)
+
 
     signature_zone:
         title: Signatures électroniques
@@ -551,6 +553,7 @@ workflow:
 
 Subscribe final: Recevoir une notification à l'étape finale
 Subscribe all steps: Recevoir une notification à chaque étape
+CHILL_MAIN_WORKFLOW_APPLY_ALL_TRANSITION: Appliquer les transitions sur tous les workflows
 
 notification:
     Notification: Notification

From 4d8de46ac95df05e61fe27dee99b4be2c640fb28 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 16 Sep 2024 14:47:00 +0200
Subject: [PATCH 252/375] Apply the voter to allow all transition on
 EntityWorkflowGuardTransition

This allow to effectively check that a user is allowed to apply all transitions on a workflow and, if yes, enable the given transition.
---
 .../EntityWorkflowGuardTransitionTest.php     | 34 ++++++++++++-------
 .../EntityWorkflowGuardTransition.php         | 20 ++++++++++-
 2 files changed, 41 insertions(+), 13 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
index bccd6cf9e..dd3b12e86 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
 use Chill\MainBundle\Templating\Entity\UserRender;
 use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
 use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowGuardTransition;
@@ -84,12 +85,14 @@ class EntityWorkflowGuardTransitionTest extends TestCase
     /**
      * @dataProvider provideBlockingTransition
      */
-    public function testTransitionGuardBlocked(EntityWorkflow $entityWorkflow, string $transition, ?User $user, string $uuid): void
+    public function testTransitionGuardBlocked(EntityWorkflow $entityWorkflow, string $transition, ?User $user, bool $isGrantedAllTransition, string $uuid): void
     {
         $userRender = $this->prophesize(UserRender::class);
         $userRender->renderString(Argument::type(User::class), [])->willReturn('user-as-string');
         $security = $this->prophesize(Security::class);
         $security->getUser()->willReturn($user);
+        $security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, $entityWorkflow->getCurrentStep())
+            ->willReturn($isGrantedAllTransition);
 
         $transitionGuard = new EntityWorkflowGuardTransition($userRender->reveal(), $security->reveal());
         $registry = self::buildRegistry($transitionGuard);
@@ -115,12 +118,14 @@ class EntityWorkflowGuardTransitionTest extends TestCase
     /**
      * @dataProvider provideValidTransition
      */
-    public function testTransitionGuardValid(EntityWorkflow $entityWorkflow, string $transition, ?User $user, string $newStep): void
+    public function testTransitionGuardValid(EntityWorkflow $entityWorkflow, string $transition, ?User $user, bool $isGrantedAllTransition, string $newStep): void
     {
         $userRender = $this->prophesize(UserRender::class);
         $userRender->renderString(Argument::type(User::class), [])->willReturn('user-as-string');
         $security = $this->prophesize(Security::class);
         $security->getUser()->willReturn($user);
+        $security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, $entityWorkflow->getCurrentStep())
+            ->willReturn($isGrantedAllTransition);
 
         $transitionGuard = new EntityWorkflowGuardTransition($userRender->reveal(), $security->reveal());
         $registry = self::buildRegistry($transitionGuard);
@@ -135,20 +140,25 @@ class EntityWorkflowGuardTransitionTest extends TestCase
 
     public static function provideBlockingTransition(): iterable
     {
-        yield [self::buildEntityWorkflow([new User()]), 'transition1', new User(), 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc'];
-        yield [self::buildEntityWorkflow([]), 'transition1', null, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
-        yield [self::buildEntityWorkflow([new User()]), 'transition1', null, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
-        yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition1', new User(), false, 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc'];
+        yield [self::buildEntityWorkflow([]), 'transition1', null, false, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition1', null, false, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
+        yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, false, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
+        yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, true, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
     }
 
     public static function provideValidTransition(): iterable
     {
-        yield [self::buildEntityWorkflow([$u = new User()]), 'transition1', $u, 'step1'];
-        yield [self::buildEntityWorkflow([$u = new User()]), 'transition2', $u, 'step2'];
-        yield [self::buildEntityWorkflow([new User()]), 'transition2', null, 'step2'];
-        yield [self::buildEntityWorkflow([]), 'transition2', null, 'step2'];
-        yield [self::buildEntityWorkflow([new User()]), 'transition3', null, 'step3'];
-        yield [self::buildEntityWorkflow([]), 'transition3', null, 'step3'];
+        yield [self::buildEntityWorkflow([$u = new User()]), 'transition1', $u, false, 'step1'];
+        yield [self::buildEntityWorkflow([$u = new User()]), 'transition2', $u, false, 'step2'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition2', null, false, 'step2'];
+        yield [self::buildEntityWorkflow([]), 'transition2', null, false, 'step2'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition3', null, false, 'step3'];
+        yield [self::buildEntityWorkflow([]), 'transition3', null, false, 'step3'];
+
+        // transition allowed thanks to permission "apply all transitions"
+        yield [self::buildEntityWorkflow([new User()]), 'transition1', new User(), true, 'step1'];
+        yield [self::buildEntityWorkflow([new User()]), 'transition2', new User(), true, 'step2'];
     }
 
     public static function buildEntityWorkflow(array $futureDestUsers): EntityWorkflow
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
index 25ed21e98..1c9d26fc7 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
@@ -13,12 +13,24 @@ namespace Chill\MainBundle\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
 use Chill\MainBundle\Templating\Entity\UserRender;
 use Symfony\Component\EventDispatcher\EventSubscriberInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Event\GuardEvent;
 use Symfony\Component\Workflow\TransitionBlocker;
 
+/**
+ * Prevent apply a transition on an entity workflow.
+ *
+ * This apply logic and rules to decide if a transition can be applyed.
+ *
+ * Those rules are:
+ *
+ * - if the transition is system-only or is allowed for user;
+ * - if the user is present in the dest users for a workflow;
+ * - or if the user have permission to apply all the transitions
+ */
 class EntityWorkflowGuardTransition implements EventSubscriberInterface
 {
     public function __construct(
@@ -85,11 +97,17 @@ class EntityWorkflowGuardTransition implements EventSubscriberInterface
             );
         }
 
-        if (!$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($user)) {
+        if (
+            !$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($user)
+        ) {
             if ($event->getMarking()->has('initial')) {
                 return;
             }
 
+            if ($this->security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, $entityWorkflow->getCurrentStep())) {
+                return;
+            }
+
             $event->addTransitionBlocker(new TransitionBlocker(
                 'workflow.You are not allowed to apply a transition on this workflow. Only those users are allowed: %users%',
                 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc',

From d9b36533a26c27a05075ef3abaebc12046672bbd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 19 Sep 2024 12:31:46 +0200
Subject: [PATCH 253/375] Fix the query to find staled entity workflows

Add a test to check that the query still works
---
 .../Workflow/EntityWorkflowRepository.php     | 13 ++++--
 .../EntityWorkflowRepositoryTest.php          | 46 +++++++++++++++++++
 2 files changed, 54 insertions(+), 5 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 62282fbe9..13c900ffb 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
 use Doctrine\ORM\QueryBuilder;
@@ -211,17 +212,19 @@ class EntityWorkflowRepository implements ObjectRepository
 
         $qb->select('sw.id')
             // only the workflow which are not finalized
-            ->where('NOT EXISTS (SELECT 1 FROM chill_main_entity_workflow_step ews WHERE ews.isFinal = TRUE AND ews.entityWorkflow = sw.id)')
+            ->where(sprintf('NOT EXISTS (SELECT 1 FROM %s ews WHERE ews.isFinal = TRUE AND ews.entityWorkflow = sw.id)', EntityWorkflowStep::class))
             ->andWhere(
                 $qb->expr()->orX(
-                    // only the workflow where all the last transition is older than transitionAt
-                    ':olderThanDate > ALL (SELECT ews.transitionAt FROM chill_main_entity_workflow_step ews WHERE ews.transitionAt IS NOT NULL AND ews.entityWorkflow = sw.id)',
+                    // only the workflow where all the transitions are older than transitionAt
+                    sprintf(':olderThanDate > ALL (SELECT ews2.transitionAt FROM %s ews2 WHERE ews2.transitionAt IS NOT NULL AND ews2.entityWorkflow = sw)', EntityWorkflowStep::class),
                     // or the workflow which have only the initial step, with no transition
-                    '1 = (SELECT COUNT(ews.id) FROM chill_main_entity_workflow_step ews WHERE ews.step = :initial AND ews.transitionAt IS NULL AND ews.createdAt < :olderThanDate AND ews.entityWorkflow = sw.id)',
+                    sprintf('1 = (SELECT COUNT(ews3.id) FROM %s ews3 WHERE ews3.currentStep = :initial AND ews3.transitionAt IS NULL AND ews3.entityWorkflow = sw)', EntityWorkflowStep::class),
                 )
             )
             ->andWhere('sw.createdAt < :olderThanDate')
-            ->setParameter('olderThanDate', $olderThanDate);
+            ->setParameter('olderThanDate', $olderThanDate)
+            ->setParameter('initial', 'initial')
+        ;
 
         return $qb->getQuery()->getResult();
     }
diff --git a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
new file mode 100644
index 000000000..4efb8196e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
@@ -0,0 +1,46 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace ChillMainBundle\Tests\Repository;
+
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowRepositoryTest extends KernelTestCase
+{
+    private EntityManagerInterface $em;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->em = static::getContainer()->get(EntityManagerInterface::class);
+    }
+
+    /**
+     * This test only check that the query is ok.
+     *
+     * The semantic of the query is not checked.
+     */
+    public function testFindWorkflowsWithoutFinalStepAndOlderThanCheckQueryIsOk(): void
+    {
+        $repository = new EntityWorkflowRepository($this->em);
+
+        $actual = $repository->findWorkflowsWithoutFinalStepAndOlderThan(new \DateTimeImmutable('10 years ago'));
+
+        self::assertIsArray($actual, 'check that the query is successful');
+    }
+}

From 943a42cd3834626d9eb078a636db31f0ec2da583 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 11:55:55 +0200
Subject: [PATCH 254/375] Add StoredObjectVersionApiController and
 corresponding test

Added a new class StoredObjectVersionApiController in ChillDocGeneratorBundle which lists versions of a specified stored object. Corresponding unit test has been added as well. Made modifications in `StoredObject.php` to make the versions selectable. Also updated the API specifications to include a new GET route for retrieving versions.
---
 .../StoredObjectVersionApiController.php      | 64 +++++++++++++++
 .../Entity/StoredObject.php                   |  7 +-
 .../StoredObjectVersionApiControllerTest.php  | 77 +++++++++++++++++++
 .../ChillDocStoreBundle/chill.api.specs.yaml  | 25 ++++++
 4 files changed, 170 insertions(+), 3 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectVersionApiControllerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
new file mode 100644
index 000000000..4104ae67d
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
@@ -0,0 +1,64 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Controller;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\MainBundle\Pagination\PaginatorFactoryInterface;
+use Chill\MainBundle\Serializer\Model\Collection;
+use Doctrine\Common\Collections\Criteria;
+use Doctrine\Common\Collections\Order;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\SerializerInterface;
+
+final readonly class StoredObjectVersionApiController
+{
+    public function __construct(
+        private PaginatorFactoryInterface $paginatorFactory,
+        private SerializerInterface $serializer,
+        private Security $security,
+    ) {}
+
+    /**
+     * Lists the versions of the specified stored object.
+     *
+     * @param StoredObject $storedObject the stored object whose versions are to be listed
+     *
+     * @return JsonResponse a JSON response containing the serialized versions of the stored object, encapsulated in a collection
+     *
+     * @throws AccessDeniedHttpException if the user is not allowed to see the stored object
+     */
+    #[Route('/api/1.0/doc-store/stored-object/{uuid}/versions', name: 'chill_doc_store_stored_object_versions_list')]
+    public function listVersions(StoredObject $storedObject): JsonResponse
+    {
+        if (!$this->security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)) {
+            throw new AccessDeniedHttpException('not allowed to see this stored object');
+        }
+
+        $total = $storedObject->getVersions()->count();
+        $paginator = $this->paginatorFactory->create($total);
+
+        $criteria = Criteria::create();
+        $criteria->orderBy(['id' => Order::Ascending]);
+        $criteria->setMaxResults($paginator->getItemsPerPage())->setFirstResult($paginator->getCurrentPageFirstItemNumber());
+        $items = $storedObject->getVersions()->matching($criteria);
+
+        return new JsonResponse(
+            $this->serializer->serialize(new Collection($items, $paginator), 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            json: true
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index 6efc3fb9c..c6d9e362c 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -18,6 +18,7 @@ use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
 use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Ramsey\Uuid\Uuid;
 use Ramsey\Uuid\UuidInterface;
@@ -89,10 +90,10 @@ class StoredObject implements Document, TrackCreationInterface
     private string $generationErrors = '';
 
     /**
-     * @var Collection<int, StoredObjectVersion>
+     * @var Collection<int, StoredObjectVersion>&Selectable<int, StoredObjectVersion>
      */
     #[ORM\OneToMany(mappedBy: 'storedObject', targetEntity: StoredObjectVersion::class, cascade: ['persist'], orphanRemoval: true)]
-    private Collection $versions;
+    private Collection&Selectable $versions;
 
     /**
      * @param StoredObject::STATUS_* $status
@@ -256,7 +257,7 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->template;
     }
 
-    public function getVersions(): Collection
+    public function getVersions(): Collection&Selectable
     {
         return $this->versions;
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectVersionApiControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectVersionApiControllerTest.php
new file mode 100644
index 000000000..27154831d
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectVersionApiControllerTest.php
@@ -0,0 +1,77 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Controller;
+
+use Chill\DocStoreBundle\Controller\StoredObjectVersionApiController;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectVersionNormalizer;
+use Chill\MainBundle\Pagination\Paginator;
+use Chill\MainBundle\Pagination\PaginatorFactoryInterface;
+use Chill\MainBundle\Serializer\Normalizer\CollectionNormalizer;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Encoder\JsonEncoder;
+use Symfony\Component\Serializer\Serializer;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectVersionApiControllerTest extends \PHPUnit\Framework\TestCase
+{
+    use ProphecyTrait;
+
+    public function testListVersion(): void
+    {
+        $storedObject = new StoredObject();
+        for ($i = 0; $i < 15; ++$i) {
+            $storedObject->registerVersion();
+        }
+
+        $security = $this->prophesize(Security::class);
+        $security->isGranted(StoredObjectRoleEnum::SEE->value, $storedObject)
+            ->willReturn(true)
+            ->shouldBeCalledOnce();
+
+        $controller = $this->buildController($security->reveal());
+
+        $response = $controller->listVersions($storedObject);
+        $body = json_decode($response->getContent(), true, 512, JSON_THROW_ON_ERROR);
+
+        self::assertEquals($response->getStatusCode(), 200);
+        self::assertIsArray($body);
+        self::assertArrayHasKey('results', $body);
+        self::assertCount(10, $body['results']);
+    }
+
+    private function buildController(Security $security): StoredObjectVersionApiController
+    {
+        $paginator = $this->prophesize(Paginator::class);
+        $paginator->getCurrentPageFirstItemNumber()->willReturn(0);
+        $paginator->getItemsPerPage()->willReturn(10);
+        $paginator->getTotalItems()->willReturn(15);
+        $paginator->hasNextPage()->willReturn(false);
+        $paginator->hasPreviousPage()->willReturn(false);
+
+        $paginatorFactory = $this->prophesize(PaginatorFactoryInterface::class);
+        $paginatorFactory->create(Argument::type('int'))->willReturn($paginator);
+
+        $serializer = new Serializer([
+            new StoredObjectVersionNormalizer(), new CollectionNormalizer(),
+        ], [new JsonEncoder()]);
+
+        return new StoredObjectVersionApiController($paginatorFactory->reveal(), $serializer, $security);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
index 28345e463..fb1e71ba5 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
@@ -105,3 +105,28 @@ paths:
                 404:
                     description: "Not found"
 
+    /1.0/doc-store/stored-object/{uuid}/versions:
+        get:
+            tags:
+                - storedobject
+            summary: Get a signed route to post stored object
+            parameters:
+                - in: path
+                  name: uuid
+                  required: true
+                  allowEmptyValue: false
+                  description: The UUID of the storedObjeect
+                  schema:
+                      type: string
+                      format: uuid
+            responses:
+                200:
+                    description: "OK"
+                    content:
+                        application/json:
+                            schema:
+                                type: object
+                403:
+                    description: "Unauthorized"
+                404:
+                    description: "Not found"

From 6a0e26ec314fbc560d9114ea5545ca980ec268a7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 13:23:30 +0200
Subject: [PATCH 255/375] Add point-in-time normalization to stored object
 versions

Introduced a new normalizer for StoredObjectPointInTime and updated the StoredObjectVersionNormalizer to include point-in-time data when specified in the context. Added corresponding test cases to ensure the new normalization logic works correctly.
---
 .../StoredObjectVersionApiController.php      |  7 +-
 .../StoredObjectPointInTimeNormalizer.php     | 38 +++++++++++
 .../StoredObjectVersionNormalizer.php         | 11 +++-
 .../StoredObjectPointInTimeNormalizerTest.php | 64 +++++++++++++++++++
 4 files changed, 118 insertions(+), 2 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectPointInTimeNormalizer.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectPointInTimeNormalizerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
index 4104ae67d..0ffbfc719 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
@@ -13,6 +13,7 @@ namespace Chill\DocStoreBundle\Controller;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectVersionNormalizer;
 use Chill\MainBundle\Pagination\PaginatorFactoryInterface;
 use Chill\MainBundle\Serializer\Model\Collection;
 use Doctrine\Common\Collections\Criteria;
@@ -57,7 +58,11 @@ final readonly class StoredObjectVersionApiController
         $items = $storedObject->getVersions()->matching($criteria);
 
         return new JsonResponse(
-            $this->serializer->serialize(new Collection($items, $paginator), 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            $this->serializer->serialize(
+                new Collection($items, $paginator),
+                'json',
+                [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT]]
+            ),
             json: true
         );
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectPointInTimeNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectPointInTimeNormalizer.php
new file mode 100644
index 000000000..be8fc5f98
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectPointInTimeNormalizer.php
@@ -0,0 +1,38 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+class StoredObjectPointInTimeNormalizer implements NormalizerInterface, NormalizerAwareInterface
+{
+    use NormalizerAwareTrait;
+
+    public function normalize($object, ?string $format = null, array $context = [])
+    {
+        /* @var StoredObjectPointInTime $object */
+        return [
+            'id' => $object->getId(),
+            'reason' => $object->getReason()->value,
+            'byUser' => $this->normalizer->normalize($object->getByUser(), $format, [AbstractNormalizer::GROUPS => 'read']),
+        ];
+    }
+
+    public function supportsNormalization($data, ?string $format = null)
+    {
+        return $data instanceof StoredObjectPointInTime;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
index 15b997d20..d4a1adca2 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Serializer\Normalizer;
 
 use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
@@ -20,13 +21,15 @@ class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAw
 {
     use NormalizerAwareTrait;
 
+    final public const WITH_POINT_IN_TIMES_CONTEXT = 'with-point-in-times';
+
     public function normalize($object, ?string $format = null, array $context = [])
     {
         if (!$object instanceof StoredObjectVersion) {
             throw new \InvalidArgumentException('The object must be an instance of '.StoredObjectVersion::class);
         }
 
-        return [
+        $data = [
             'id' => $object->getId(),
             'filename' => $object->getFilename(),
             'version' => $object->getVersion(),
@@ -36,6 +39,12 @@ class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAw
             'createdAt' => $this->normalizer->normalize($object->getCreatedAt(), $format, $context),
             'createdBy' => $this->normalizer->normalize($object->getCreatedBy(), $format, $context),
         ];
+
+        if (in_array(self::WITH_POINT_IN_TIMES_CONTEXT, $context[AbstractNormalizer::GROUPS])) {
+            $data['point-in-times'] = $this->normalizer->normalize($object->getPointInTimes(), $format, $context);
+        }
+
+        return $data;
     }
 
     public function supportsNormalization($data, ?string $format = null, array $context = [])
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectPointInTimeNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectPointInTimeNormalizerTest.php
new file mode 100644
index 000000000..d53b20278
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectPointInTimeNormalizerTest.php
@@ -0,0 +1,64 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectPointInTimeNormalizer;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Serializer\Normalizer\UserNormalizer;
+use Chill\MainBundle\Templating\Entity\UserRender;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Symfony\Component\Serializer\Serializer;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectPointInTimeNormalizerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testNormalize(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion();
+        $storedObjectPointInTime = new StoredObjectPointInTime($version, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION, new User());
+
+        $normalizer = new StoredObjectPointInTimeNormalizer();
+        $normalizer->setNormalizer($this->buildNormalizer());
+
+        $actual = $normalizer->normalize($storedObjectPointInTime, 'json', ['read']);
+
+        self::assertIsArray($actual);
+        self::assertArrayHasKey('id', $actual);
+        self::assertArrayHasKey('byUser', $actual);
+        self::assertArrayHasKey('reason', $actual);
+        self::assertEquals(StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION->value, $actual['reason']);
+    }
+
+    public function buildNormalizer(): NormalizerInterface
+    {
+        $userRender = $this->prophesize(UserRender::class);
+        $userRender->renderString(Argument::type(User::class), Argument::type('array'))->willReturn('username');
+
+        return new Serializer(
+            [new UserNormalizer($userRender->reveal(), new MockClock())]
+        );
+    }
+}

From 48f727dcfd201c9af720893cffac14d16e2036dc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 17:04:28 +0200
Subject: [PATCH 256/375] Update vue version to ^3.5.6

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index f0d6ca062..05750d5c9 100644
--- a/package.json
+++ b/package.json
@@ -55,7 +55,7 @@
     "mime": "^4.0.0",
     "pdfjs-dist": "^4.3.136",
     "vis-network": "^9.1.0",
-    "vue": "^3.2.37",
+    "vue": "^3.5.6",
     "vue-i18n": "^9.1.6",
     "vue-multiselect": "3.0.0-alpha.2",
     "vue-toast-notification": "^3.1.2",

From 5fa5a2349ef26474cf28a31f00c73fba0a44f24a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 17:05:15 +0200
Subject: [PATCH 257/375] Add FileIcon.vue and refactor DropFile.vue to use it

Introduced `FileIcon.vue` to handle file type icons centrally. Refactored `DropFile.vue` to utilize the new `FileIcon` component, improving code clarity and maintainability.
---
 .../public/vuejs/DropFileWidget/DropFile.vue  | 12 ++-------
 .../Resources/public/vuejs/FileIcon.vue       | 25 +++++++++++++++++++
 2 files changed, 27 insertions(+), 10 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/FileIcon.vue

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
index 464a689f8..99fc31524 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DropFileWidget/DropFile.vue
@@ -3,6 +3,7 @@
 import {StoredObject, StoredObjectVersionCreated} from "../../types";
 import {encryptFile, fetchNewStoredObject, uploadVersion} from "../../js/async-upload/uploader";
 import {computed, ref, Ref} from "vue";
+import FileIcon from "ChillDocStoreAssets/vuejs/FileIcon.vue";
 
 interface DropFileConfig {
     existingDoc?: StoredObject,
@@ -111,16 +112,7 @@ const handleFile = async (file: File): Promise<void> => {
     <div class="drop-file">
         <div v-if="!uploading" :class="{ area: true, dragging: is_dragging}" @click="onZoneClick" @dragover="onDragOver" @dragleave="onDragLeave" @drop="onDrop">
             <p v-if="has_existing_doc" class="file-icon">
-                <i class="fa fa-file-pdf-o" v-if="props.existingDoc?.type === 'application/pdf'"></i>
-                <i class="fa fa-file-word-o" v-else-if="props.existingDoc?.type === 'application/vnd.oasis.opendocument.text'"></i>
-                <i class="fa fa-file-word-o" v-else-if="props.existingDoc?.type === 'application/vnd.openxmlformats-officedocument.wordprocessingml.document'"></i>
-                <i class="fa fa-file-word-o" v-else-if="props.existingDoc?.type === 'application/msword'"></i>
-                <i class="fa fa-file-excel-o" v-else-if="props.existingDoc?.type === 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet'"></i>
-                <i class="fa fa-file-excel-o" v-else-if="props.existingDoc?.type === 'application/vnd.ms-excel'"></i>
-                <i class="fa fa-file-image-o" v-else-if="props.existingDoc?.type === 'image/jpeg'"></i>
-                <i class="fa fa-file-image-o" v-else-if="props.existingDoc?.type === 'image/png'"></i>
-                <i class="fa fa-file-archive-o" v-else-if="props.existingDoc?.type === 'application/x-zip-compressed'"></i>
-                <i class="fa fa-file-code-o" v-else ></i>
+                <file-icon :type="props.existingDoc?.type"></file-icon>
             </p>
 
             <p v-if="display_filename !== null" class="display-filename">{{ display_filename }}</p>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/FileIcon.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/FileIcon.vue
new file mode 100644
index 000000000..437d6bdc8
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/FileIcon.vue
@@ -0,0 +1,25 @@
+<script setup lang="ts">
+interface FileIconConfig {
+    type: string;
+}
+
+const props = defineProps<FileIconConfig>();
+
+</script>
+
+<template>
+    <i class="fa fa-file-pdf-o" v-if="props.type === 'application/pdf'"></i>
+    <i class="fa fa-file-word-o" v-else-if="props.type === 'application/vnd.oasis.opendocument.text'"></i>
+    <i class="fa fa-file-word-o" v-else-if="props.type === 'application/vnd.openxmlformats-officedocument.wordprocessingml.document'"></i>
+    <i class="fa fa-file-word-o" v-else-if="props.type === 'application/msword'"></i>
+    <i class="fa fa-file-excel-o" v-else-if="props.type === 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet'"></i>
+    <i class="fa fa-file-excel-o" v-else-if="props.type === 'application/vnd.ms-excel'"></i>
+    <i class="fa fa-file-image-o" v-else-if="props.type === 'image/jpeg'"></i>
+    <i class="fa fa-file-image-o" v-else-if="props.type === 'image/png'"></i>
+    <i class="fa fa-file-archive-o" v-else-if="props.type === 'application/x-zip-compressed'"></i>
+    <i class="fa fa-file-code-o" v-else ></i>
+</template>
+
+<style scoped lang="scss">
+
+</style>

From dd3f6fb0abdd9d3981f5769fadc8faad4bbc1a97 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 17:08:00 +0200
Subject: [PATCH 258/375] Enhance StoredObjectVersion normalization

Add UserNormalizer dependency and pass createdAt context for createdBy normalization, ensuring compatibility with nullable context groups. This improves the accuracy and completeness of the normalized data.
---
 .../Serializer/Normalizer/StoredObjectVersionNormalizer.php  | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
index d4a1adca2..557780fa3 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Serializer\Normalizer;
 
 use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\MainBundle\Serializer\Normalizer\UserNormalizer;
 use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerAwareTrait;
@@ -37,10 +38,10 @@ class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAw
             'keyInfos' => $object->getKeyInfos(),
             'type' => $object->getType(),
             'createdAt' => $this->normalizer->normalize($object->getCreatedAt(), $format, $context),
-            'createdBy' => $this->normalizer->normalize($object->getCreatedBy(), $format, $context),
+            'createdBy' => $this->normalizer->normalize($object->getCreatedBy(), $format, [...$context, UserNormalizer::AT_DATE => $object->getCreatedAt()]),
         ];
 
-        if (in_array(self::WITH_POINT_IN_TIMES_CONTEXT, $context[AbstractNormalizer::GROUPS])) {
+        if (in_array(self::WITH_POINT_IN_TIMES_CONTEXT, $context[AbstractNormalizer::GROUPS] ?? [], true)) {
             $data['point-in-times'] = $this->normalizer->normalize($object->getPointInTimes(), $format, $context);
         }
 

From b0e2e658850f679802bb5550610f3a521d181095 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 17 Sep 2024 17:08:27 +0200
Subject: [PATCH 259/375] Add document history button with modal viewer

This commit introduces a History button to the DocumentActionButtonsGroup component to view document versions. It includes new components for the modal dialog and API integrations to fetch and display version histories. This feature allows users to view and restore previous versions of stored objects.
---
 .../Resources/public/types.ts                 | 10 ++++
 .../vuejs/DocumentActionButtonsGroup.vue      | 10 +++-
 .../StoredObjectButton/HistoryButton.vue      | 53 +++++++++++++++++++
 .../HistoryButton/HistoryButtonList.vue       | 30 +++++++++++
 .../HistoryButton/HistoryButtonListItem.vue   | 35 ++++++++++++
 .../HistoryButton/HistoryButtonModal.vue      | 39 ++++++++++++++
 .../StoredObjectButton/HistoryButton/api.ts   |  8 +++
 7 files changed, 184 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index ee6b2bf98..a6ce41512 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -62,6 +62,16 @@ export interface StoredObjectStatusChange {
     type: string;
 }
 
+export interface StoredObjectVersionWithPointInTime extends StoredObjectVersionPersisted {
+    "point-in-times": StoredObjectPointInTime[];
+}
+
+export interface StoredObjectPointInTime {
+    id: number;
+    byUser: User | null;
+    reason: 'keep-before-conversion'|'keep-by-user';
+}
+
 /**
  * Function executed by the WopiEditButton component.
  */
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
index 66546f2a5..614dc7a78 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
@@ -16,6 +16,9 @@
       <li v-if="isDownloadable">
         <download-button :stored-object="props.storedObject" :at-version="props.storedObject.currentVersion" :filename="filename" :classes="{'dropdown-item': true}"></download-button>
       </li>
+      <li v-if="isHistoryViewable">
+        <history-button :stored-object="props.storedObject" :can-edit="canEdit && props.storedObject._permissions.canEdit"></history-button>
+      </li>
     </ul>
   </div>
   <div v-else-if="'pending' === props.storedObject.status">
@@ -40,6 +43,7 @@ import {
     WopiEditButtonExecutableBeforeLeaveFunction
 } from "../types";
 import DesktopEditButton from "ChillDocStoreAssets/vuejs/StoredObjectButton/DesktopEditButton.vue";
+import HistoryButton from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton.vue";
 
 interface DocumentActionButtonsGroupConfig {
   storedObject: StoredObject,
@@ -126,7 +130,11 @@ const isConvertibleToPdf = computed<boolean>(() => {
         && is_extension_viewable(props.storedObject.currentVersion.type)
         && props.storedObject.currentVersion.type !== 'application/pdf'
         && props.storedObject.currentVersion.persisted !== false;
-})
+});
+
+const isHistoryViewable = computed<boolean>(() => {
+    return props.storedObject.status === 'ready';
+});
 
 const checkForReady = function(): void {
   if (
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
new file mode 100644
index 000000000..108256909
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
@@ -0,0 +1,53 @@
+<script setup lang="ts">
+
+import HistoryButtonModal from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue";
+import {StoredObject, StoredObjectVersionWithPointInTime} from "./../../types";
+import {computed, reactive, ref, useTemplateRef} from "vue";
+import {get_versions} from "./HistoryButton/api";
+
+interface HistoryButtonConfig {
+    storedObject: StoredObject;
+    canEdit: boolean;
+}
+
+interface HistoryButtonState {
+    versions: StoredObjectVersionWithPointInTime[];
+    loaded: boolean;
+}
+
+const props = defineProps<HistoryButtonConfig>();
+const state = reactive<HistoryButtonState>({versions: [], loaded: false});
+const modal = useTemplateRef<typeof HistoryButtonModal>('modal');
+
+const download_version_and_open_modal = async function (): Promise<void> {
+    if (null !== modal.value) {
+        modal.value.open();
+    } else {
+        console.log("modal is null");
+    }
+
+    if (!state.loaded) {
+        const versions = await get_versions(props.storedObject);
+
+        for (const version of versions) {
+            state.versions.push(version);
+        }
+        state.loaded = true;
+    }
+}
+
+</script>
+
+<template>
+<a @click="download_version_and_open_modal" class="dropdown-item">
+    <history-button-modal ref="modal" :versions="state.versions" :can-edit="canEdit"></history-button-modal>
+    <i class="fa fa-history"></i>
+    Historique
+</a>
+</template>
+
+<style scoped lang="scss">
+i.fa::before {
+    color: var(--bs-dropdown-link-hover-color);
+}
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
new file mode 100644
index 000000000..fccdb6a0d
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
@@ -0,0 +1,30 @@
+<script setup lang="ts">
+import {StoredObjectVersionWithPointInTime} from "./../../../types";
+import HistoryButtonListItem from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue";
+
+interface HistoryButtonListConfig {
+    versions: StoredObjectVersionWithPointInTime[],
+    canEdit: boolean;
+}
+
+const props = defineProps<HistoryButtonListConfig>();
+
+</script>
+
+<template>
+    <template v-if="versions.length > 0">
+        <div class="container">
+            <template v-for="v in versions">
+                <history-button-list-item :version="v" :can-edit="canEdit"></history-button-list-item>
+            </template>
+        </div>
+    </template>
+    <template v-else>
+        <p>Chargement des versions</p>
+    </template>
+
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
new file mode 100644
index 000000000..c60d62302
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
@@ -0,0 +1,35 @@
+<script setup lang="ts">
+import {StoredObjectVersionWithPointInTime} from "./../../../types";
+import UserRenderBoxBadge from "ChillMainAssets/vuejs/_components/Entity/UserRenderBoxBadge.vue";
+import {ISOToDatetime} from "./../../../../../../ChillMainBundle/Resources/public/chill/js/date";
+import FileIcon from "ChillDocStoreAssets/vuejs/FileIcon.vue";
+
+interface HistoryButtonListItemConfig {
+    version: StoredObjectVersionWithPointInTime;
+    canEdit: boolean;
+}
+
+const props = defineProps<HistoryButtonListItemConfig>();
+
+</script>
+
+<template>
+<div class="row">
+    <div class="col">
+        <file-icon :type="version.type"></file-icon>
+        <strong>Par</strong> <UserRenderBoxBadge :user="version.createdBy"></UserRenderBoxBadge>
+        <strong>Le</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601)) }}
+    </div>
+    <div class="col" v-if="canEdit || canRestore">
+        <ul class="record_actions">
+            <li v-if="canEdit">
+                <button class="btn btn-misc">Restaurer</button>
+            </li>
+        </ul>
+    </div>
+</div>
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
new file mode 100644
index 000000000..13b994be2
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
@@ -0,0 +1,39 @@
+<script setup lang="ts">
+import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
+import {reactive} from "vue";
+import HistoryButtonList from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue";
+import {StoredObjectVersionWithPointInTime} from "./../../../types";
+
+interface HistoryButtonListConfig {
+    versions: StoredObjectVersionWithPointInTime[];
+    canEdit: boolean;
+}
+
+interface HistoryButtonModalState {
+    opened: boolean;
+}
+
+const props = defineProps<HistoryButtonListConfig>();
+const state = reactive<HistoryButtonModalState>({opened: false});
+
+const open = () => {
+    console.log('open');
+    state.opened = true;
+}
+
+defineExpose({open});
+
+</script>
+<template>
+    <Teleport to="body">
+        <modal v-if="state.opened" @close="state.opened = false">
+            <template v-slot:body>
+                <history-button-list :versions="props.versions" :can-edit="canEdit"></history-button-list>
+            </template>
+        </modal>
+    </Teleport>
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts
new file mode 100644
index 000000000..b48394826
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts
@@ -0,0 +1,8 @@
+import {StoredObject, StoredObjectVersion, StoredObjectVersionWithPointInTime} from "../../../types";
+import {fetchResults, makeFetch} from "../../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
+
+export const get_versions = async (storedObject: StoredObject): Promise<StoredObjectVersionWithPointInTime[]> => {
+    const versions = await fetchResults<StoredObjectVersionWithPointInTime>(`/api/1.0/doc-store/stored-object/${storedObject.uuid}/versions`);
+
+    return versions.sort((a: StoredObjectVersionWithPointInTime, b: StoredObjectVersionWithPointInTime) => a.version - b.version);
+}

From 59061710410ebb7028d0b0902f19a516215bfeb7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 18 Sep 2024 12:38:47 +0200
Subject: [PATCH 260/375] Add restoration functionality for stored object
 versions

Introduce a service to restore stored object versions along with relevant tests and an API endpoint. This includes database migrations for version relationships, enhancing stored object version tracking.
---
 ...toredObjectRestoreVersionApiController.php | 47 ++++++++++++
 .../Entity/StoredObjectVersion.php            | 60 ++++++++++++++-
 .../Service/StoredObjectRestore.php           | 38 ++++++++++
 .../Service/StoredObjectRestoreInterface.php  | 22 ++++++
 ...dObjectRestoreVersionApiControllerTest.php | 74 +++++++++++++++++++
 .../Tests/Service/StoredObjectRestoreTest.php | 53 +++++++++++++
 .../ChillDocStoreBundle/chill.api.specs.yaml  | 22 ++++++
 .../migrations/Version20240918073234.php      | 37 ++++++++++
 8 files changed, 351 insertions(+), 2 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestoreInterface.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectRestoreVersionApiControllerTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectRestoreTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/migrations/Version20240918073234.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
new file mode 100644
index 000000000..7e9c12943
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
@@ -0,0 +1,47 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Controller;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectVersionNormalizer;
+use Chill\DocStoreBundle\Service\StoredObjectRestoreInterface;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\SerializerInterface;
+
+final readonly class StoredObjectRestoreVersionApiController
+{
+    public function __construct(private Security $security, private StoredObjectRestoreInterface $storedObjectRestore, private EntityManagerInterface $entityManager, private SerializerInterface $serializer) {}
+
+    #[Route('/api/1.0/doc-store/stored-object/restore-from-version/{id}', methods: ['POST'])]
+    public function restoreStoredObjectVersion(StoredObjectVersion $storedObjectVersion): JsonResponse
+    {
+        if (!$this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $storedObjectVersion->getStoredObject())) {
+            throw new AccessDeniedHttpException('not allowed to edit the stored object');
+        }
+
+        $newVersion = $this->storedObjectRestore->restore($storedObjectVersion);
+
+        $this->entityManager->persist($newVersion);
+        $this->entityManager->flush();
+
+        return new JsonResponse(
+            $this->serializer->serialize($newVersion, 'json', [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT]]),
+            json: true
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
index e034cb378..72532def7 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObjectVersion.php
@@ -48,6 +48,25 @@ class StoredObjectVersion implements TrackCreationInterface
     #[ORM\OneToMany(mappedBy: 'objectVersion', targetEntity: StoredObjectPointInTime::class, cascade: ['persist', 'remove'], orphanRemoval: true)]
     private Collection&Selectable $pointInTimes;
 
+    /**
+     * Previous storedObjectVersion, from which the current stored object version is created.
+     *
+     * If null, the current stored object version is generated by other means.
+     *
+     * Those version may be associated with the same storedObject, or not. In this last case, that means that
+     * the stored object's current version is created from another stored object version.
+     */
+    #[ORM\ManyToOne(targetEntity: StoredObjectVersion::class)]
+    private ?StoredObjectVersion $createdFrom = null;
+
+    /**
+     * List of stored object versions created from the current version.
+     *
+     * @var Collection<int, StoredObjectVersion>
+     */
+    #[ORM\OneToMany(mappedBy: 'createdFrom', targetEntity: StoredObjectVersion::class)]
+    private Collection $children;
+
     public function __construct(
         /**
          * The stored object associated with this version.
@@ -87,6 +106,7 @@ class StoredObjectVersion implements TrackCreationInterface
     ) {
         $this->filename = $filename ?? self::generateFilename($this);
         $this->pointInTimes = new ArrayCollection();
+        $this->children = new ArrayCollection();
     }
 
     public static function generateFilename(StoredObjectVersion $storedObjectVersion): string
@@ -149,8 +169,6 @@ class StoredObjectVersion implements TrackCreationInterface
     }
 
     /**
-     * @return $this
-     *
      * @internal use @see{StoredObjectPointInTime} constructor instead
      */
     public function addPointInTime(StoredObjectPointInTime $storedObjectPointInTime): self
@@ -170,4 +188,42 @@ class StoredObjectVersion implements TrackCreationInterface
 
         return $this;
     }
+
+    public function getCreatedFrom(): ?StoredObjectVersion
+    {
+        return $this->createdFrom;
+    }
+
+    public function setCreatedFrom(?StoredObjectVersion $createdFrom): StoredObjectVersion
+    {
+        if (null === $createdFrom && null !== $this->createdFrom) {
+            $this->createdFrom->removeChild($this);
+        }
+
+        $createdFrom?->addChild($this);
+
+        $this->createdFrom = $createdFrom;
+
+        return $this;
+    }
+
+    public function addChild(StoredObjectVersion $child): self
+    {
+        if (!$this->children->contains($child)) {
+            $this->children->add($child);
+        }
+
+        return $this;
+    }
+
+    public function removeChild(StoredObjectVersion $child): self
+    {
+        $result = $this->children->removeElement($child);
+
+        if (false === $result) {
+            throw new \UnexpectedValueException('the child is not associated with the current stored object version');
+        }
+
+        return $this;
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
new file mode 100644
index 000000000..3c6469185
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
@@ -0,0 +1,38 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Psr\Log\LoggerInterface;
+
+final readonly class StoredObjectRestore implements StoredObjectRestoreInterface
+{
+    public function __construct(private readonly StoredObjectManagerInterface $storedObjectManager, private readonly LoggerInterface $logger) {}
+
+    public function restore(StoredObjectVersion $storedObjectVersion): StoredObjectVersion
+    {
+        $oldContent = $this->storedObjectManager->read($storedObjectVersion);
+
+        $newVersion = $this->storedObjectManager->write($storedObjectVersion->getStoredObject(), $oldContent, $storedObjectVersion->getType());
+
+        $newVersion->setCreatedFrom($storedObjectVersion);
+
+        $this->logger->info('[StoredObjectRestore] Restore stored object version', [
+            'stored_object_uuid' => $storedObjectVersion->getStoredObject()->getUuid(),
+            'old_version_id' => $storedObjectVersion->getId(),
+            'old_version_version' => $storedObjectVersion->getVersion(),
+            'new_version_id' => $newVersion->getVersion(),
+        ]);
+
+        return $newVersion;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestoreInterface.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestoreInterface.php
new file mode 100644
index 000000000..516ff4bf6
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestoreInterface.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+
+/**
+ * Restore an old version of the stored object as the current one.
+ */
+interface StoredObjectRestoreInterface
+{
+    public function restore(StoredObjectVersion $storedObjectVersion): StoredObjectVersion;
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectRestoreVersionApiControllerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectRestoreVersionApiControllerTest.php
new file mode 100644
index 000000000..1d7873b21
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Controller/StoredObjectRestoreVersionApiControllerTest.php
@@ -0,0 +1,74 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace App\Tests\Chill\DocStoreBundle\Tests\Controller;
+
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Chill\DocStoreBundle\Service\StoredObjectRestoreInterface;
+use Chill\DocStoreBundle\Controller\StoredObjectRestoreVersionApiController;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\SerializerInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectRestoreVersionApiControllerTest extends TestCase
+{
+    public function testRestoreStoredObjectVersion(): void
+    {
+        $security = $this->createMock(Security::class);
+        $storedObjectRestore = $this->createMock(StoredObjectRestoreInterface::class);
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $serializer = $this->createMock(SerializerInterface::class);
+        $storedObjectVersion = $this->createMock(StoredObjectVersion::class);
+        $controller = new StoredObjectRestoreVersionApiController($security, $storedObjectRestore, $entityManager, $serializer);
+
+        $security->expects($this->once())
+            ->method('isGranted')
+            ->willReturn(true);
+        $storedObjectRestore->expects($this->once())
+            ->method('restore')
+            ->willReturn($storedObjectVersion);
+        $entityManager->expects($this->once())
+            ->method('persist');
+        $entityManager->expects($this->once())
+            ->method('flush');
+
+        $serializer->expects($this->once())
+            ->method('serialize')
+            ->willReturn('test');
+
+        $response = $controller->restoreStoredObjectVersion($storedObjectVersion);
+
+        self::assertEquals(200, $response->getStatusCode());
+        self::assertEquals('test', $response->getContent());
+    }
+
+    public function testRestoreStoredObjectVersionAccessDenied(): void
+    {
+        $security = $this->createMock(Security::class);
+        $storedObjectRestore = $this->createMock(StoredObjectRestoreInterface::class);
+        $entityManager = $this->createMock(EntityManagerInterface::class);
+        $serializer = $this->createMock(SerializerInterface::class);
+        $storedObjectVersion = $this->createMock(StoredObjectVersion::class);
+        $controller = new StoredObjectRestoreVersionApiController($security, $storedObjectRestore, $entityManager, $serializer);
+
+        self::expectException(\Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException::class);
+        $security->expects($this->once())
+            ->method('isGranted')
+            ->willReturn(false);
+        $controller->restoreStoredObjectVersion($storedObjectVersion);
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectRestoreTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectRestoreTest.php
new file mode 100644
index 000000000..2366f6e04
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectRestoreTest.php
@@ -0,0 +1,53 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use Chill\DocStoreBundle\Service\StoredObjectRestore;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Psr\Log\NullLogger;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectRestoreTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testRestore(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion(type: 'application/test');
+
+        $storedObjectManager = $this->prophesize(StoredObjectManagerInterface::class);
+        $storedObjectManager->read($version)->willReturn('1234')->shouldBeCalledOnce();
+        $storedObjectManager->write($storedObject, '1234', 'application/test')->shouldBeCalledOnce()
+            ->will(function ($args) {
+                /** @var StoredObject $object */
+                $object = $args[0];
+
+                return $object->registerVersion();
+            })
+        ;
+
+        $restore = new StoredObjectRestore($storedObjectManager->reveal(), new NullLogger());
+
+        $newVersion = $restore->restore($version);
+
+        self::assertNotSame($version, $newVersion);
+        self::assertSame($version, $newVersion->getCreatedFrom());
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
index fb1e71ba5..127430c70 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillDocStoreBundle/chill.api.specs.yaml
@@ -130,3 +130,25 @@ paths:
                     description: "Unauthorized"
                 404:
                     description: "Not found"
+
+    /1.0/doc-store/stored-object/restore-from-version/{id}:
+        post:
+            tags:
+                - storedobject
+            summary: Restore an old version of a stored object
+            parameters:
+                - in: path
+                  name: id
+                  required: true
+                  allowEmptyValue: false
+                  description: The id of the stored object version
+                  schema:
+                      type: integer
+            responses:
+                200:
+                    description: "OK"
+                    content:
+                        application/json:
+                            schema:
+                                type: object
+
diff --git a/src/Bundle/ChillDocStoreBundle/migrations/Version20240918073234.php b/src/Bundle/ChillDocStoreBundle/migrations/Version20240918073234.php
new file mode 100644
index 000000000..1189f8f08
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/migrations/Version20240918073234.php
@@ -0,0 +1,37 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\DocStore;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240918073234 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add a relation between stored object version when a version is restored';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ADD createdFrom_id INT DEFAULT NULL');
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version ADD CONSTRAINT FK_C1D553024DEC38BB FOREIGN KEY (createdFrom_id) REFERENCES chill_doc.stored_object_version (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('CREATE INDEX IDX_C1D553024DEC38BB ON chill_doc.stored_object_version (createdFrom_id)');
+        $this->addSql('ALTER INDEX chill_doc.idx_c1d55302232d562b RENAME TO IDX_C1D553024B136083');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_doc.stored_object_version DROP createdFrom_id');
+        $this->addSql('ALTER INDEX chill_doc.idx_c1d553024b136083 RENAME TO idx_c1d55302232d562b');
+    }
+}

From 47f575de92d88a23aae8dac7eab687a6b4381ab1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 18 Sep 2024 23:54:06 +0200
Subject: [PATCH 261/375] Enhance version restoration and download features

Introduce a version restoration button and logic to track restored versions throughout the UI. Update download buttons to display action strings conditionally and implement toast notifications for version restoration.
---
 ...toredObjectRestoreVersionApiController.php |   2 +-
 .../StoredObjectVersionApiController.php      |   2 +-
 .../document_action_buttons_group/index.ts    |   3 +-
 .../Resources/public/types.ts                 |   1 +
 .../vuejs/DocumentActionButtonsGroup.vue      |   2 +-
 .../StoredObjectButton/DownloadButton.vue     |  11 +-
 .../StoredObjectButton/HistoryButton.vue      |   6 +-
 .../HistoryButton/HistoryButtonList.vue       |  48 ++++++++-
 .../HistoryButton/HistoryButtonListItem.vue   | 100 ++++++++++++++++--
 .../HistoryButton/HistoryButtonModal.vue      |  13 ++-
 .../HistoryButton/RestoreVersionButton.vue    |  32 ++++++
 .../StoredObjectButton/HistoryButton/api.ts   |   8 +-
 .../StoredObjectVersionNormalizer.php         |   6 ++
 13 files changed, 204 insertions(+), 30 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/RestoreVersionButton.vue

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
index 7e9c12943..e3b4702f5 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectRestoreVersionApiController.php
@@ -40,7 +40,7 @@ final readonly class StoredObjectRestoreVersionApiController
         $this->entityManager->flush();
 
         return new JsonResponse(
-            $this->serializer->serialize($newVersion, 'json', [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT]]),
+            $this->serializer->serialize($newVersion, 'json', [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT, StoredObjectVersionNormalizer::WITH_RESTORED_CONTEXT]]),
             json: true
         );
     }
diff --git a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
index 0ffbfc719..819eb9f84 100644
--- a/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
+++ b/src/Bundle/ChillDocStoreBundle/Controller/StoredObjectVersionApiController.php
@@ -61,7 +61,7 @@ final readonly class StoredObjectVersionApiController
             $this->serializer->serialize(
                 new Collection($items, $paginator),
                 'json',
-                [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT]]
+                [AbstractNormalizer::GROUPS => ['read', StoredObjectVersionNormalizer::WITH_POINT_IN_TIMES_CONTEXT, StoredObjectVersionNormalizer::WITH_RESTORED_CONTEXT]]
             ),
             json: true
         );
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/module/document_action_buttons_group/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/module/document_action_buttons_group/index.ts
index 77eb8c2c9..f9cf13a97 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/module/document_action_buttons_group/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/module/document_action_buttons_group/index.ts
@@ -3,6 +3,7 @@ import DocumentActionButtonsGroup from "../../vuejs/DocumentActionButtonsGroup.v
 import {createApp} from "vue";
 import {StoredObject, StoredObjectStatusChange} from "../../types";
 import {is_object_ready} from "../../vuejs/StoredObjectButton/helpers";
+import ToastPlugin from "vue-toast-notification";
 
 const i18n = _createI18n({});
 
@@ -48,6 +49,6 @@ window.addEventListener('DOMContentLoaded', function (e) {
        }
      });
 
-     app.use(i18n).mount(el);
+     app.use(i18n).use(ToastPlugin).mount(el);
   })
 });
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index a6ce41512..f93e9c5b7 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -64,6 +64,7 @@ export interface StoredObjectStatusChange {
 
 export interface StoredObjectVersionWithPointInTime extends StoredObjectVersionPersisted {
     "point-in-times": StoredObjectPointInTime[];
+    "from-restored": StoredObjectVersionPersisted|null;
 }
 
 export interface StoredObjectPointInTime {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
index 614dc7a78..9c7dac095 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentActionButtonsGroup.vue
@@ -14,7 +14,7 @@
         <convert-button :stored-object="props.storedObject" :filename="filename" :classes="{'dropdown-item': true}"></convert-button>
       </li>
       <li v-if="isDownloadable">
-        <download-button :stored-object="props.storedObject" :at-version="props.storedObject.currentVersion" :filename="filename" :classes="{'dropdown-item': true}"></download-button>
+        <download-button :stored-object="props.storedObject" :at-version="props.storedObject.currentVersion" :filename="filename" :classes="{'dropdown-item': true}" :display-action-string-in-button="true"></download-button>
       </li>
       <li v-if="isHistoryViewable">
         <history-button :stored-object="props.storedObject" :can-edit="canEdit && props.storedObject._permissions.canEdit"></history-button>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
index 92f82dc9d..d1efabcee 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
@@ -1,11 +1,11 @@
 <template>
-    <a v-if="!state.is_ready" :class="props.classes" @click="download_and_open($event)">
+    <a v-if="!state.is_ready" :class="props.classes" @click="download_and_open($event)" title="T&#233;l&#233;charger">
         <i class="fa fa-download"></i>
-        Télécharger
+        <template v-if="displayActionStringInButton">Télécharger</template>
     </a>
-    <a v-else :class="props.classes" target="_blank" :type="props.storedObject.type" :download="buildDocumentName()" :href="state.href_url" ref="open_button">
+    <a v-else :class="props.classes" target="_blank" :type="props.storedObject.type" :download="buildDocumentName()" :href="state.href_url" ref="open_button" title="Ouvrir">
         <i class="fa fa-external-link"></i>
-        Ouvrir
+        <template v-if="displayActionStringInButton">Ouvrir</template>
     </a>
 </template>
 
@@ -20,6 +20,7 @@ interface DownloadButtonConfig {
     atVersion: StoredObjectVersion,
     classes: { [k: string]: boolean },
     filename?: string,
+    displayActionStringInButton: boolean,
 }
 
 interface DownloadButtonState {
@@ -28,7 +29,7 @@ interface DownloadButtonState {
     href_url: string,
 }
 
-const props = defineProps<DownloadButtonConfig>();
+const props = withDefaults(defineProps<DownloadButtonConfig>(), {displayActionStringInButton: true});
 const state: DownloadButtonState = reactive({is_ready: false, is_running: false, href_url: "#"});
 
 const open_button = ref<HTMLAnchorElement | null>(null);
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
index 108256909..547416879 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton.vue
@@ -36,11 +36,15 @@ const download_version_and_open_modal = async function (): Promise<void> {
     }
 }
 
+const onRestoreVersion = ({newVersion}: {newVersion: StoredObjectVersionWithPointInTime}) => {
+    state.versions.unshift(newVersion);
+}
+
 </script>
 
 <template>
 <a @click="download_version_and_open_modal" class="dropdown-item">
-    <history-button-modal ref="modal" :versions="state.versions" :can-edit="canEdit"></history-button-modal>
+    <history-button-modal ref="modal" :versions="state.versions" :stored-object="storedObject" :can-edit="canEdit" @restore-version="onRestoreVersion"></history-button-modal>
     <i class="fa fa-history"></i>
     Historique
 </a>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
index fccdb6a0d..c7be09a44 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
@@ -1,21 +1,59 @@
 <script setup lang="ts">
-import {StoredObjectVersionWithPointInTime} from "./../../../types";
+import {StoredObject, StoredObjectVersionWithPointInTime} from "./../../../types";
 import HistoryButtonListItem from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue";
+import {computed, reactive} from "vue";
 
 interface HistoryButtonListConfig {
-    versions: StoredObjectVersionWithPointInTime[],
+    versions: StoredObjectVersionWithPointInTime[];
+    storedObject: StoredObject;
     canEdit: boolean;
 }
 
+const emit = defineEmits<{
+    restoreVersion: [newVersion: StoredObjectVersionWithPointInTime]
+}>()
+
+interface HistoryButtonListState {
+    /**
+     * Contains the number of the newly created version when a version is restored.
+     */
+    restored: number;
+}
+
 const props = defineProps<HistoryButtonListConfig>();
 
+const state = reactive<HistoryButtonListState>({restored: -1})
+
+const higher_version = computed<number>(() => props.versions.reduce(
+    (accumulator: number, version: StoredObjectVersionWithPointInTime) => Math.max(accumulator, version.version),
+    -1
+    )
+);
+
+/**
+ * Executed when a version in child component is restored.
+ *
+ * internally, keep track of the newly restored version
+ */
+const onRestored = ({newVersion}: {newVersion: StoredObjectVersionWithPointInTime}) => {
+    state.restored = newVersion.version;
+    emit('restoreVersion', {newVersion});
+}
+
 </script>
 
 <template>
-    <template v-if="versions.length > 0">
+    <template v-if="props.versions.length > 0">
         <div class="container">
-            <template v-for="v in versions">
-                <history-button-list-item :version="v" :can-edit="canEdit"></history-button-list-item>
+            <template v-for="v in props.versions">
+                <history-button-list-item
+                    :version="v"
+                    :can-edit="canEdit"
+                    :is-current="higher_version === v.version"
+                    :is-restored="v.version === state.restored"
+                    :stored-object="storedObject"
+                    @restore-version="onRestored"
+                ></history-button-list-item>
             </template>
         </div>
     </template>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
index c60d62302..ec077540e 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
@@ -1,29 +1,59 @@
 <script setup lang="ts">
-import {StoredObjectVersionWithPointInTime} from "./../../../types";
+import {StoredObject, StoredObjectPointInTime, StoredObjectVersionWithPointInTime} from "./../../../types";
 import UserRenderBoxBadge from "ChillMainAssets/vuejs/_components/Entity/UserRenderBoxBadge.vue";
 import {ISOToDatetime} from "./../../../../../../ChillMainBundle/Resources/public/chill/js/date";
 import FileIcon from "ChillDocStoreAssets/vuejs/FileIcon.vue";
+import RestoreVersionButton from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/RestoreVersionButton.vue";
+import DownloadButton from "ChillDocStoreAssets/vuejs/StoredObjectButton/DownloadButton.vue";
+import {computed} from "vue";
 
 interface HistoryButtonListItemConfig {
     version: StoredObjectVersionWithPointInTime;
+    storedObject: StoredObject;
     canEdit: boolean;
+    isCurrent: boolean;
+    isRestored: boolean;
 }
 
+const emit = defineEmits<{
+    restoreVersion: [newVersion: StoredObjectVersionWithPointInTime]
+}>()
+
 const props = defineProps<HistoryButtonListItemConfig>();
 
+const onRestore = ({newVersion}: {newVersion: StoredObjectVersionWithPointInTime}) => {
+    emit('restoreVersion', {newVersion});
+}
+
+const isKeptBeforeConversion = computed<boolean>(() => props.version["point-in-times"].reduce(
+    (accumulator: boolean, pit: StoredObjectPointInTime) => accumulator || "keep-before-conversion" === pit.reason,
+    false
+    ),
+);
+
+const isRestored = computed<boolean>(() => null !== props.version["from-restored"]);
+
+const classes = computed<{row: true, 'row-hover': true, 'blinking-1': boolean, 'blinking-2': boolean}>(() => ({row: true, 'row-hover': true, 'blinking-1': props.isRestored && 0 === props.version.version % 2, 'blinking-2': props.isRestored && 1 === props.version.version % 2}));
+
 </script>
 
 <template>
-<div class="row">
-    <div class="col">
-        <file-icon :type="version.type"></file-icon>
-        <strong>Par</strong> <UserRenderBoxBadge :user="version.createdBy"></UserRenderBoxBadge>
-        <strong>Le</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601)) }}
+<div :class="classes">
+    <div class="col-12 tags" v-if="isCurrent || isKeptBeforeConversion || isRestored">
+        <span class="badge bg-success" v-if="isCurrent">Version actuelle</span>
+        <span class="badge bg-info" v-if="isKeptBeforeConversion">Conservée avant conversion dans un autre format</span>
+        <span class="badge bg-info" v-if="isRestored">Restaurée depuis la version {{ version["from-restored"]?.version }}</span>
     </div>
-    <div class="col" v-if="canEdit || canRestore">
-        <ul class="record_actions">
-            <li v-if="canEdit">
-                <button class="btn btn-misc">Restaurer</button>
+    <div class="col-12">
+        <file-icon :type="version.type"></file-icon> <span><strong>#{{ version.version + 1 }}</strong></span> <strong v-if="version.version == 0">Créé par</strong><strong v-else>modifié par</strong> <span class="badge-user"><UserRenderBoxBadge :user="version.createdBy"></UserRenderBoxBadge></span> <strong>à</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601), 'long') }}
+    </div>
+    <div class="col-12">
+        <ul class="record_actions small slim on-version-actions">
+            <li v-if="canEdit && !isCurrent">
+                <restore-version-button :stored-object-version="props.version" @restore-version="onRestore"></restore-version-button>
+            </li>
+            <li>
+                <download-button :stored-object="storedObject" :at-version="version" :classes="{btn: true, 'btn-outline-primary': true}" :display-action-string-in-button="false"></download-button>
             </li>
         </ul>
     </div>
@@ -31,5 +61,53 @@ const props = defineProps<HistoryButtonListItemConfig>();
 </template>
 
 <style scoped lang="scss">
-
+div.tags {
+    span.badge:not(:last-child) {
+        margin-right: 0.5rem;
+    }
+}
+// to make the animation restart, we have the same animation twice,
+// and alternate between both
+.blinking-1 {
+    animation-name: backgroundColorPalette-1;
+    animation-duration: 8s;
+    animation-iteration-count: 1;
+    animation-direction: normal;
+    animation-timing-function: linear;
+}
+@keyframes backgroundColorPalette-1 {
+    0% {
+        background: var(--bs-chill-green-dark);
+    }
+    25% {
+        background: var(--bs-chill-green);
+    }
+    65% {
+        background: var(--bs-chill-beige);
+    }
+    100% {
+        background: unset;
+    }
+}
+.blinking-2 {
+    animation-name: backgroundColorPalette-2;
+    animation-duration: 8s;
+    animation-iteration-count: 1;
+    animation-direction: normal;
+    animation-timing-function: linear;
+}
+@keyframes backgroundColorPalette-2 {
+    0% {
+        background: var(--bs-chill-green-dark);
+    }
+    25% {
+        background: var(--bs-chill-green);
+    }
+    65% {
+        background: var(--bs-chill-beige);
+    }
+    100% {
+        background: unset;
+    }
+}
 </style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
index 13b994be2..0112ec1d8 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
@@ -2,13 +2,18 @@
 import Modal from "ChillMainAssets/vuejs/_components/Modal.vue";
 import {reactive} from "vue";
 import HistoryButtonList from "ChillDocStoreAssets/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue";
-import {StoredObjectVersionWithPointInTime} from "./../../../types";
+import {StoredObject, StoredObjectVersionWithPointInTime} from "./../../../types";
 
 interface HistoryButtonListConfig {
     versions: StoredObjectVersionWithPointInTime[];
+    storedObject: StoredObject;
     canEdit: boolean;
 }
 
+const emit = defineEmits<{
+    restoreVersion: [newVersion: StoredObjectVersionWithPointInTime]
+}>()
+
 interface HistoryButtonModalState {
     opened: boolean;
 }
@@ -27,8 +32,12 @@ defineExpose({open});
 <template>
     <Teleport to="body">
         <modal v-if="state.opened" @close="state.opened = false">
+            <template v-slot:header>
+                <h3>Historique des versions du document</h3>
+            </template>
             <template v-slot:body>
-                <history-button-list :versions="props.versions" :can-edit="canEdit"></history-button-list>
+                <p>Les versions sont conservées pendant 90 jours.</p>
+                <history-button-list :versions="props.versions" :can-edit="canEdit" :stored-object="storedObject" @restore-version="(payload) => emit('restoreVersion', payload)"></history-button-list>
             </template>
         </modal>
     </Teleport>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/RestoreVersionButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/RestoreVersionButton.vue
new file mode 100644
index 000000000..0c2ba2996
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/RestoreVersionButton.vue
@@ -0,0 +1,32 @@
+<script setup lang="ts">
+import {StoredObjectVersionPersisted, StoredObjectVersionWithPointInTime} from "../../../types";
+import {useToast} from "vue-toast-notification";
+import {restore_version} from "./api";
+
+interface RestoreVersionButtonProps {
+    storedObjectVersion: StoredObjectVersionPersisted,
+}
+
+const emit = defineEmits<{
+    restoreVersion: [newVersion: StoredObjectVersionWithPointInTime]
+}>()
+
+const props = defineProps<RestoreVersionButtonProps>()
+
+const $toast = useToast();
+
+const restore_version_fn = async () => {
+    const newVersion = await restore_version(props.storedObjectVersion);
+
+    $toast.success("Version restaurée");
+    emit('restoreVersion', {newVersion});
+}
+</script>
+
+<template>
+<button class="btn btn-outline-action" @click="restore_version_fn" title="Restaurer"><i class="fa fa-rotate-left"></i> Restaurer</button>
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts
index b48394826..b2865bc48 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/api.ts
@@ -1,8 +1,12 @@
-import {StoredObject, StoredObjectVersion, StoredObjectVersionWithPointInTime} from "../../../types";
+import {StoredObject, StoredObjectVersionPersisted, StoredObjectVersionWithPointInTime} from "../../../types";
 import {fetchResults, makeFetch} from "../../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 
 export const get_versions = async (storedObject: StoredObject): Promise<StoredObjectVersionWithPointInTime[]> => {
     const versions = await fetchResults<StoredObjectVersionWithPointInTime>(`/api/1.0/doc-store/stored-object/${storedObject.uuid}/versions`);
 
-    return versions.sort((a: StoredObjectVersionWithPointInTime, b: StoredObjectVersionWithPointInTime) => a.version - b.version);
+    return versions.sort((a: StoredObjectVersionWithPointInTime, b: StoredObjectVersionWithPointInTime) => b.version - a.version);
+}
+
+export const restore_version = async (version: StoredObjectVersionPersisted): Promise<StoredObjectVersionWithPointInTime> => {
+   return await makeFetch<null, StoredObjectVersionWithPointInTime>("POST", `/api/1.0/doc-store/stored-object/restore-from-version/${version.id}`);
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
index 557780fa3..4b18989cb 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectVersionNormalizer.php
@@ -24,6 +24,8 @@ class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAw
 
     final public const WITH_POINT_IN_TIMES_CONTEXT = 'with-point-in-times';
 
+    final public const WITH_RESTORED_CONTEXT = 'with-restored';
+
     public function normalize($object, ?string $format = null, array $context = [])
     {
         if (!$object instanceof StoredObjectVersion) {
@@ -45,6 +47,10 @@ class StoredObjectVersionNormalizer implements NormalizerInterface, NormalizerAw
             $data['point-in-times'] = $this->normalizer->normalize($object->getPointInTimes(), $format, $context);
         }
 
+        if (in_array(self::WITH_RESTORED_CONTEXT, $context[AbstractNormalizer::GROUPS] ?? [], true)) {
+            $data['from-restored'] = $this->normalizer->normalize($object->getCreatedFrom(), $format, [AbstractNormalizer::GROUPS => ['read']]);
+        }
+
         return $data;
     }
 

From 77d06d756a3dfc3c7947f82a549d50c42cd323b3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 19 Sep 2024 14:24:47 +0200
Subject: [PATCH 262/375] Block document editing if any signature associated to
 a workflow is signed

Add a check in `WorkflowStoredObjectPermissionHelper` to block document editing once any signature is signed. Accompanied by new tests to verify this behavior.
---
 .../WorkflowStoredObjectPermissionHelper.php  |  11 ++
 ...rkflowStoredObjectPermissionHelperTest.php | 101 ++++++++++++++++++
 2 files changed, 112 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
index b27b6d96a..545325121 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Service;
 
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 
@@ -31,6 +32,16 @@ class WorkflowStoredObjectPermissionHelper
             if (!$workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
                 return false;
             }
+
+            // as soon as there is one signatured applyied, we are not able to
+            // edit the document any more
+            foreach ($workflow->getSteps() as $step) {
+                foreach ($step->getSignatures() as $signature) {
+                    if (EntityWorkflowSignatureStateEnum::SIGNED === $signature->getState()) {
+                        return false;
+                    }
+                }
+            }
         }
 
         return true;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
new file mode 100644
index 000000000..e87ea4653
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
@@ -0,0 +1,101 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service;
+
+use Chill\DocStoreBundle\Service\WorkflowStoredObjectPermissionHelper;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\Security\Core\Security;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class WorkflowStoredObjectPermissionHelperTest extends TestCase
+{
+    use ProphecyTrait;
+
+    /**
+     * @dataProvider provideDataNotBlockByWorkflow
+     */
+    public function testNotBlockByWorkflow(EntityWorkflow $entityWorkflow, User $user, bool $expected, string $message): void
+    {
+        $object = new \stdClass();
+        $helper = $this->buildHelper($object, $entityWorkflow, $user);
+
+        self::assertEquals($expected, $helper->notBlockedByWorkflow($entityWorkflow), $message);
+    }
+
+    private function buildHelper(object $relatedEntity, EntityWorkflow $entityWorkflow, User $user): WorkflowStoredObjectPermissionHelper
+    {
+        $security = $this->prophesize(Security::class);
+        $security->getUser()->willReturn($user);
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->findByRelatedEntity(Argument::type('object'))->willReturn([$entityWorkflow]);
+
+        return new WorkflowStoredObjectPermissionHelper($security->reveal(), $entityWorkflowManager->reveal());
+    }
+
+    public static function provideDataNotBlockByWorkflow(): iterable
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable());
+
+        yield [$entityWorkflow, new User(), false, 'blocked because the user is not present as a dest user'];
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+
+        yield [$entityWorkflow, $user, true, 'allowed because the user is present as a dest user'];
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+        $entityWorkflow->getCurrentStep()->setIsFinal(true);
+
+        yield [$entityWorkflow, $user, false, 'blocked because the step is final'];
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+        $step = $entityWorkflow->getCurrentStep();
+        new EntityWorkflowStepSignature($step, new Person());
+
+        yield [$entityWorkflow, $user, true, 'allow, a signature is present but still pending'];
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+        $step = $entityWorkflow->getCurrentStep();
+        $signature = new EntityWorkflowStepSignature($step, new Person());
+        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED);
+
+        yield [$entityWorkflow, $user, false, 'blocked, a signature is present and signed'];
+
+    }
+}

From 5f67a7aadc20c5c1fcb7698508b11337de5450e4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 19 Sep 2024 17:47:55 +0200
Subject: [PATCH 263/375] Create a service to duplicate a storedObject into
 another one

---
 .../Service/StoredObjectDuplicate.php         | 47 ++++++++++++++++++
 .../Service/StoredObjectRestore.php           |  3 ++
 .../Service/StoredObjectDuplicateTest.php     | 48 +++++++++++++++++++
 3 files changed, 98 insertions(+)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
new file mode 100644
index 000000000..b1c7e7a87
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
@@ -0,0 +1,47 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectVersion;
+use Psr\Log\LoggerInterface;
+
+/**
+ * Class which duplicate a stored object into a new one, recreating a stored object.
+ */
+class StoredObjectDuplicate
+{
+    public function __construct(private readonly StoredObjectManagerInterface $storedObjectManager, private readonly LoggerInterface $logger) {}
+
+    public function duplicate(StoredObject|StoredObjectVersion $from): StoredObject
+    {
+        $fromVersion = $from instanceof StoredObjectVersion ? $from : $from->getCurrentVersion();
+
+        $oldContent = $this->storedObjectManager->read($fromVersion);
+
+        $storedObject = new StoredObject();
+
+        $newVersion = $this->storedObjectManager->write($storedObject, $oldContent, $fromVersion->getType());
+
+        $newVersion->setCreatedFrom($fromVersion);
+
+        $this->logger->info('[StoredObjectDuplicate] Duplicated stored object from a version of a previous stored object', [
+            'from_stored_object_uuid' => $fromVersion->getStoredObject()->getUuid(),
+            'to_stored_object_uuid' => $storedObject->getUuid(),
+            'old_version_id' => $fromVersion->getId(),
+            'old_version_version' => $fromVersion->getVersion(),
+            'new_version_id' => $newVersion->getVersion(),
+        ]);
+
+        return $storedObject;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
index 3c6469185..bad032346 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectRestore.php
@@ -14,6 +14,9 @@ namespace Chill\DocStoreBundle\Service;
 use Chill\DocStoreBundle\Entity\StoredObjectVersion;
 use Psr\Log\LoggerInterface;
 
+/**
+ * Class responsible for restoring stored object versions into the same stored object.
+ */
 final readonly class StoredObjectRestore implements StoredObjectRestoreInterface
 {
     public function __construct(private readonly StoredObjectManagerInterface $storedObjectManager, private readonly LoggerInterface $logger) {}
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
new file mode 100644
index 000000000..2e9da0bab
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
@@ -0,0 +1,48 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Service;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
+use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class StoredObjectDuplicateTest extends TestCase
+{
+    public function testDuplicateHappyScenario(): void
+    {
+        $storedObject = new StoredObject();
+        $version = $storedObject->registerVersion(type: $type = 'application/test');
+
+        $manager = $this->createMock(StoredObjectManagerInterface::class);
+        $manager->method('read')->with($version)->willReturn('1234');
+        $manager
+            ->expects($this->once())
+            ->method('write')
+            ->with($this->isInstanceOf(StoredObject::class), '1234', 'application/test')
+            ->willReturnCallback(fn (StoredObject $so, $content, $type) => $so->registerVersion(type: $type));
+
+        $storedObjectDuplicate = new StoredObjectDuplicate($manager, new NullLogger());
+
+        $actual = $storedObjectDuplicate->duplicate($storedObject);
+
+        self::assertNotNull($actual->getCurrentVersion());
+        self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
+        self::assertSame($version, $actual->getCurrentVersion()->getCreatedFrom());
+    }
+}

From a8c5d1f66049725b896fc1586f9e76ff152f0967 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 19 Sep 2024 17:48:34 +0200
Subject: [PATCH 264/375] Remove unused constructor parameter

---
 .../Workflow/Templating/WorkflowTwigExtensionRuntime.php       | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
index f2b7d80db..332ccd2e5 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
@@ -13,7 +13,6 @@ namespace Chill\MainBundle\Workflow\Templating;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Symfony\Component\Workflow\Registry;
@@ -23,7 +22,7 @@ use Twig\Extension\RuntimeExtensionInterface;
 
 class WorkflowTwigExtensionRuntime implements RuntimeExtensionInterface
 {
-    public function __construct(private readonly EntityWorkflowManager $entityWorkflowManager, private readonly Registry $registry, private readonly EntityWorkflowRepository $repository, private readonly MetadataExtractor $metadataExtractor, private readonly NormalizerInterface $normalizer) {}
+    public function __construct(private readonly Registry $registry, private readonly EntityWorkflowRepository $repository, private readonly MetadataExtractor $metadataExtractor, private readonly NormalizerInterface $normalizer) {}
 
     public function getTransitionByString(EntityWorkflow $entityWorkflow, string $key): ?Transition
     {

From 4b65ec9b5406aae58eb5cef8b239868c29f1d659 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 19 Sep 2024 22:44:06 +0200
Subject: [PATCH 265/375] Create a duplicator service for accompanying course
 document

---
 ...companyingCourseDocumentDuplicatorTest.php | 72 +++++++++++++++++++
 .../AccompanyingCourseDocumentDuplicator.php  | 48 +++++++++++++
 ...ompanyingCourseDocumentWorkflowHandler.php |  5 +-
 .../translations/messages+intl-icu.fr.yml     |  3 +
 4 files changed, 126 insertions(+), 2 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
 create mode 100644 src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
new file mode 100644
index 000000000..fd920c7a9
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
@@ -0,0 +1,72 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Workflow;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Entity\DocumentCategory;
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
+use Chill\DocStoreBundle\Workflow\AccompanyingCourseDocumentDuplicator;
+use Chill\MainBundle\Entity\User;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingCourseDocumentDuplicatorTest extends TestCase
+{
+    public function testDuplicate(): void
+    {
+        $object = new StoredObject();
+
+        $document = new AccompanyingCourseDocument();
+        $document
+            ->setDate($date = new \DateTimeImmutable())
+            ->setObject($object)
+            ->setTitle('Title')
+            ->setUser($user = new User())
+            ->setCategory($category = new DocumentCategory('bundle', 10))
+            ->setDescription($description = 'Description');
+
+        $actual = $this->buildDuplicator()->duplicate($document);
+
+        self::assertSame($date, $actual->getDate());
+        // FYI, the duplication of object is checked by the mock
+        self::assertNotNull($actual->getObject());
+        self::assertStringStartsWith('Title', $actual->getTitle());
+        self::assertSame($user, $actual->getUser());
+        self::assertSame($category, $actual->getCategory());
+        self::assertEquals($description, $actual->getDescription());
+    }
+
+    private function buildDuplicator(): AccompanyingCourseDocumentDuplicator
+    {
+        $storedObjectDuplicate = $this->createMock(StoredObjectDuplicate::class);
+        $storedObjectDuplicate->expects($this->once())->method('duplicate')
+            ->with($this->isInstanceOf(StoredObject::class))->willReturn(new StoredObject());
+        $translator = $this->createMock(TranslatorInterface::class);
+        $translator->method('trans')->withAnyParameters()->willReturn('duplicated');
+        $clock = new MockClock();
+
+        return new AccompanyingCourseDocumentDuplicator(
+            $storedObjectDuplicate,
+            $translator,
+            $clock
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
new file mode 100644
index 000000000..b4c15fc22
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
@@ -0,0 +1,48 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Workflow;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+/**
+ * Stores the logic to duplicate an AccompanyingCourseDocument associated to a workflow.
+ */
+class AccompanyingCourseDocumentDuplicator
+{
+    public function __construct(
+        private readonly StoredObjectDuplicate $storedObjectDuplicate,
+        private readonly TranslatorInterface $translator,
+        private readonly ClockInterface $clock,
+    ) {}
+
+    public function duplicate(AccompanyingCourseDocument $document): AccompanyingCourseDocument
+    {
+        $newDoc = new AccompanyingCourseDocument();
+        $newDoc
+            ->setCourse($document->getCourse())
+            ->setTitle($document->getTitle().' ('.$this->translator->trans('acc_course_document.duplicated_at', ['at' => $this->clock->now()]).')')
+            ->setDate($document->getDate())
+            ->setDescription($document->getDescription())
+            ->setCategory($document->getCategory())
+            ->setUser($document->getUser())
+            ->setObject($this->storedObjectDuplicate->duplicate($document->getObject()))
+        ;
+
+        return $newDoc;
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index bc8de6587..ba7c477e5 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -17,6 +17,7 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowWithDuplicableRelatedEntityInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -27,8 +28,8 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
 {
     public function __construct(
-        private TranslatorInterface $translator,
-        private EntityWorkflowRepository $workflowRepository,
+        private TranslatorInterface                  $translator,
+        private EntityWorkflowRepository             $workflowRepository,
         private AccompanyingCourseDocumentRepository $repository,
     ) {}
 
diff --git a/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml b/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml
new file mode 100644
index 000000000..0132cdc4f
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml
@@ -0,0 +1,3 @@
+acc_course_document:
+    duplicated_at: >-
+        Dupliqué le {at, date, long} à {at, time, short}

From 20e8b03588b200b01c7c282f99f91b3fa050f9a1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 23 Sep 2024 12:51:22 +0200
Subject: [PATCH 266/375] Rewrite the Component PickWorkflow.vue into
 typescript

---
 .../lib/entity-workflow/{api.js => api.ts}    |  8 +-
 .../ChillMainBundle/Resources/public/types.ts |  5 ++
 .../EntityWorkflow/PickWorkflow.vue           | 75 ++++++++-----------
 .../vuejs/AccompanyingCourseWorkEdit/App.vue  |  2 +-
 .../components/AddEvaluation.vue              |  2 +-
 .../components/FormEvaluation.vue             |  2 +-
 6 files changed, 42 insertions(+), 52 deletions(-)
 rename src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/{api.js => api.ts} (52%)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.js b/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
similarity index 52%
rename from src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.js
rename to src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
index a89dd66f5..486421904 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
@@ -1,12 +1,8 @@
-const buildLinkCreate = function(workflowName, relatedEntityClass, relatedEntityId) {
+export const buildLinkCreate = (workflowName: string, relatedEntityClass: string, relatedEntityId: number): string => {
     let params = new URLSearchParams();
     params.set('entityClass', relatedEntityClass);
-    params.set('entityId', relatedEntityId);
+    params.set('entityId', relatedEntityId.toString(10));
     params.set('workflow', workflowName);
 
     return `/fr/main/workflow/create?`+params.toString();
 };
-
-export {
-    buildLinkCreate,
-};
diff --git a/src/Bundle/ChillMainBundle/Resources/public/types.ts b/src/Bundle/ChillMainBundle/Resources/public/types.ts
index 2e33b8248..304ebd8e4 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillMainBundle/Resources/public/types.ts
@@ -168,3 +168,8 @@ export interface NewsItemType {
     startDate: DateTime;
     endDate: DateTime | null;
 }
+
+export interface WorkflowAvailable {
+    name: string;
+    text: string;
+}
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
index 9ed1ef6cc..e429adf31 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
@@ -1,63 +1,52 @@
 <template>
-    <template v-if="workflowsAvailables.length >= 1">
+    <template v-if="props.workflowsAvailables.length >= 1">
         <div class="dropdown d-grid gap-2">
             <button class="btn btn-primary dropdown-toggle" type="button" id="createWorkflowButton" data-bs-toggle="dropdown" aria-expanded="false">
                 Créer un workflow
             </button>
             <ul class="dropdown-menu" aria-labelledby="createWorkflowButton">
-                <li v-for="w in workflowsAvailables" :key="w.name">
-                    <a class="dropdown-item" :href="makeLink(w.name)" @click.prevent="goToGenerateWorkflow($event, w.name)">{{ w.text }}</a>
+                <li v-for="w in props.workflowsAvailables" :key="w.name">
+                    <button class="dropdown-item" type="button" @click.prevent="goToGenerateWorkflow($event, w.name)">{{ w.text }}</button>
                 </li>
             </ul>
         </div>
     </template>
 </template>
 
-<script>
+<script setup lang="ts">
 
-import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api.js';
+import {buildLinkCreate} from '../../../lib/entity-workflow/api';
+import {WorkflowAvailable} from "../../../types";
 
-export default {
-    name: "PickWorkflow",
-    props: {
-        relatedEntityClass: {
-            type: String,
-            required: true,
-        },
-        relatedEntityId: {
-            type: Number,
-            required: false,
-        },
-        workflowsAvailables: {
-            type: Array,
-            required: true,
-        },
-        preventDefaultMoveToGenerate: {
-            type: Boolean,
-            required: false,
-            default: false,
-        },
-        goToGenerateWorkflowPayload: {
-            required: false,
-            default: {}
-        },
-    },
-    emits: ['goToGenerateWorkflow'],
-    methods: {
-        makeLink(workflowName) {
-            return buildLinkCreate(workflowName, this.relatedEntityClass, this.relatedEntityId);
-        },
-        goToGenerateWorkflow(event, workflowName) {
-            console.log('goToGenerateWorkflow', event, workflowName);
+interface PickWorkflowConfig {
+    relatedEntityClass: string;
+    relatedEntityId: number;
+    workflowsAvailables: WorkflowAvailable[];
+    preventDefaultMoveToGenerate: boolean;
+    goToGenerateWorkflowPayload: object;
+}
 
-            if (!this.$props.preventDefaultMoveToGenerate) {
-                console.log('to go generate');
-                window.location.assign(this.makeLink(workflowName));
-            }
+const props = withDefaults(defineProps<PickWorkflowConfig>(), {preventDefaultMoveToGenerate: false, goToGenerateWorkflowPayload: {}});
 
-            this.$emit('goToGenerateWorkflow', {event, workflowName, link: this.makeLink(workflowName), payload: this.goToGenerateWorkflowPayload});
-        }
+const emit = defineEmits<{
+    (e: 'goToGenerateWorkflow', {event: MouseEvent, workflowName: string, link: string, payload: object}): void;
+}>();
+
+const makeLink = (workflowName: string): string => buildLinkCreate(workflowName, props.relatedEntityClass, props.relatedEntityId);
+
+const goToGenerateWorkflow = (event: MouseEvent, workflowName: string): void  => {
+    console.log('goToGenerateWorkflow', event, workflowName);
+
+    if (!props.preventDefaultMoveToGenerate) {
+        console.log('to go generate');
+        window.location.assign(makeLink(workflowName));
     }
+
+    emit('goToGenerateWorkflow', {event, workflowName, link: makeLink(workflowName), payload: props.goToGenerateWorkflowPayload});
+}
+
+const goToDuplicateRelatedEntity = (event: MouseEvent, workflowName: string): void => {
+
 }
 </script>
 
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
index c0f5178fd..d0b4affbf 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
@@ -342,7 +342,7 @@ import OnTheFly from 'ChillMainAssets/vuejs/OnTheFly/components/OnTheFly.vue';
 import ListWorkflowModal from 'ChillMainAssets/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue';
 import PickWorkflow from 'ChillMainAssets/vuejs/_components/EntityWorkflow/PickWorkflow.vue';
 import PersonText from 'ChillPersonAssets/vuejs/_components/Entity/PersonText.vue';
-import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api.js';
+import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api';
 import { makeFetch } from 'ChillMainAssets/lib/api/apiMethods';
 
 const i18n = {
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/AddEvaluation.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/AddEvaluation.vue
index baa3fa798..6c2c7f58d 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/AddEvaluation.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/AddEvaluation.vue
@@ -54,7 +54,7 @@
 import FormEvaluation from './FormEvaluation.vue';
 import Modal from 'ChillMainAssets/vuejs/_components/Modal';
 import ListWorkflowModal from 'ChillMainAssets/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue';
-import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api.js';
+import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api';
 
 const i18n = {
    messages: {
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
index 2f02333b1..0c0cc22cb 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
@@ -189,7 +189,7 @@ import { mapGetters, mapState } from 'vuex';
 import PickTemplate from 'ChillDocGeneratorAssets/vuejs/_components/PickTemplate.vue';
 import {buildLink} from 'ChillDocGeneratorAssets/lib/document-generator';
 import ListWorkflowModal from 'ChillMainAssets/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue';
-import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api.js';
+import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api';
 import {buildLinkCreate as buildLinkCreateNotification} from 'ChillMainAssets/lib/entity-notification/api';
 import DocumentActionButtonsGroup from "ChillDocStoreAssets/vuejs/DocumentActionButtonsGroup.vue";
 import DropFileModal from "ChillDocStoreAssets/vuejs/DropFileWidget/DropFileModal.vue";

From 5fc5369db6aa431acd8cdd95cabb2f0852ffa9a8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 23 Sep 2024 14:25:03 +0200
Subject: [PATCH 267/375] in constructor for
 AccompanyingCourseDocumentRepository.php, do not create a property

---
 .../Repository/AccompanyingCourseDocumentRepository.php         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
index 7033a53c9..3590aae7f 100644
--- a/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
+++ b/src/Bundle/ChillDocStoreBundle/Repository/AccompanyingCourseDocumentRepository.php
@@ -23,7 +23,7 @@ class AccompanyingCourseDocumentRepository implements ObjectRepository, Associat
 {
     private readonly EntityRepository $repository;
 
-    public function __construct(private readonly EntityManagerInterface $em)
+    public function __construct(EntityManagerInterface $em)
     {
         $this->repository = $em->getRepository(AccompanyingCourseDocument::class);
     }

From ce80207d982bb54f1ea7ab690892fd0672c40418 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 23 Sep 2024 14:25:43 +0200
Subject: [PATCH 268/375] Create route for duplicating a accompanying course
 document

---
 ...tAccompanyingCourseDuplicateController.php | 55 +++++++++++++++++++
 .../Resources/views/List/list_item.html.twig  | 15 +++--
 2 files changed, 66 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseDuplicateController.php

diff --git a/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseDuplicateController.php b/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseDuplicateController.php
new file mode 100644
index 000000000..129109634
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Controller/DocumentAccompanyingCourseDuplicateController.php
@@ -0,0 +1,55 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Controller;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
+use Chill\DocStoreBundle\Workflow\AccompanyingCourseDocumentDuplicator;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\RedirectResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpFoundation\Session\Session;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+use Symfony\Component\Security\Core\Security;
+
+final readonly class DocumentAccompanyingCourseDuplicateController
+{
+    public function __construct(
+        private Security $security,
+        private AccompanyingCourseDocumentDuplicator $documentWorkflowDuplicator,
+        private EntityManagerInterface $entityManager,
+        private UrlGeneratorInterface $urlGenerator,
+    ) {}
+
+    #[Route('/{_locale}/doc-store/accompanying-course-document/{id}/duplicate', name: 'chill_doc_store_accompanying_course_document_duplicate')]
+    public function __invoke(AccompanyingCourseDocument $document, Request $request, Session $session): Response
+    {
+        if (!$this->security->isGranted(AccompanyingCourseDocumentVoter::SEE, $document)) {
+            throw new AccessDeniedHttpException('not allowed to see this document');
+        }
+
+        if (!$this->security->isGranted(AccompanyingCourseDocumentVoter::CREATE, $document->getCourse())) {
+            throw new AccessDeniedHttpException('not allowed to create this document');
+        }
+
+        $duplicated = $this->documentWorkflowDuplicator->duplicate($document);
+        $this->entityManager->persist($duplicated);
+        $this->entityManager->flush();
+
+        return new RedirectResponse(
+            $this->urlGenerator->generate('accompanying_course_document_edit', ['id' => $duplicated->getId(), 'course' => $duplicated->getCourse()->getId()])
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
index 2a3592d73..7ec761464 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/List/list_item.html.twig
@@ -73,8 +73,15 @@
                     <li>
                         {{ document.object|chill_document_button_group(document.title) }}
                     </li>
+                {% endif %}
+                {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_DELETE', document) %}
+                    <li class="delete">
+                        <a href="{{ chill_return_path_or('chill_docstore_accompanying_course_document_delete', {'course': accompanyingCourse.id, 'id': document.id}) }}" class="btn btn-delete"></a>
+                    </li>
+                {% endif %}
+                {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_CREATE', document.course) %}
                     <li>
-                        <a href="{{ chill_path_add_return_path('accompanying_course_document_show', {'course': accompanyingCourse.id, 'id': document.id}) }}" class="btn btn-show"></a>
+                        <a href="{{ chill_path_add_return_path('chill_doc_store_accompanying_course_document_duplicate', {'id': document.id}) }}" class="btn btn-duplicate" title="{{ 'Duplicate'|trans|e('html_attr') }}"></a>
                     </li>
                 {% endif %}
                 {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_UPDATE', document) %}
@@ -82,9 +89,9 @@
                         <a href="{{ path('accompanying_course_document_edit', {'course': accompanyingCourse.id, 'id': document.id }) }}" class="btn btn-update"></a>
                     </li>
                 {% endif %}
-                {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_DELETE', document) %}
-                    <li class="delete">
-                        <a href="{{ chill_return_path_or('chill_docstore_accompanying_course_document_delete', {'course': accompanyingCourse.id, 'id': document.id}) }}" class="btn btn-delete"></a>
+                {% if is_granted('CHILL_ACCOMPANYING_COURSE_DOCUMENT_SEE_DETAILS', document) %}
+                    <li>
+                        <a href="{{ chill_path_add_return_path('accompanying_course_document_show', {'course': accompanyingCourse.id, 'id': document.id}) }}" class="btn btn-show"></a>
                     </li>
                 {% endif %}
             {% else %}

From 611a968162c66f30f4510946e25488e662155eff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 23 Sep 2024 16:32:47 +0200
Subject: [PATCH 269/375] Duplicate and accompanying course evaluation document

- create a service which duplicate the accompanying course work evaluation document
- create a controller to duplicate this document
- update the vuejs component to use this duplicate action
---
 ...companyingCourseDocumentDuplicatorTest.php |  2 -
 .../AccompanyingCourseDocumentDuplicator.php  |  3 -
 ...ompanyingCourseDocumentWorkflowHandler.php |  5 +-
 ...kEvaluationDocumentDuplicateController.php | 55 ++++++++++++++++++
 .../Resources/public/types.ts                 | 23 +++++++-
 .../components/FormEvaluation.vue             |  6 ++
 .../vuejs/AccompanyingCourseWorkEdit/store.js | 13 +++++
 ...ccompanyingCourseWorkEvaluationDocument.ts |  6 ++
 ...PeriodWorkEvaluationDocumentDuplicator.php | 39 +++++++++++++
 ...odWorkEvaluationDocumentDuplicatorTest.php | 57 +++++++++++++++++++
 .../ChillPersonBundle/chill.api.specs.yaml    | 22 +++++++
 .../translations/messages+intl-icu.fr.yaml    |  8 ++-
 12 files changed, 228 insertions(+), 11 deletions(-)
 create mode 100644 src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
 create mode 100644 src/Bundle/ChillPersonBundle/Resources/public/vuejs/_api/accompanyingCourseWorkEvaluationDocument.ts
 create mode 100644 src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicator.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicatorTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
index fd920c7a9..71df75d20 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentDuplicatorTest.php
@@ -19,8 +19,6 @@ use Chill\DocStoreBundle\Workflow\AccompanyingCourseDocumentDuplicator;
 use Chill\MainBundle\Entity\User;
 use PHPUnit\Framework\TestCase;
 use Symfony\Component\Clock\MockClock;
-use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
-use Symfony\Component\Security\Core\Security;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
index b4c15fc22..22ee65cc3 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentDuplicator.php
@@ -12,11 +12,8 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
-use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
 use Symfony\Component\Clock\ClockInterface;
-use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
-use Symfony\Component\Security\Core\Security;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index ba7c477e5..bc8de6587 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -17,7 +17,6 @@ use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
-use Chill\MainBundle\Workflow\EntityWorkflowWithDuplicableRelatedEntityInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -28,8 +27,8 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
 {
     public function __construct(
-        private TranslatorInterface                  $translator,
-        private EntityWorkflowRepository             $workflowRepository,
+        private TranslatorInterface $translator,
+        private EntityWorkflowRepository $workflowRepository,
         private AccompanyingCourseDocumentRepository $repository,
     ) {}
 
diff --git a/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
new file mode 100644
index 000000000..ec48b5b24
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
@@ -0,0 +1,55 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Controller;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
+use Chill\PersonBundle\Service\AccompanyingPeriodWorkEvaluationDocument\AccompanyingPeriodWorkEvaluationDocumentDuplicator;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+use Symfony\Component\Serializer\SerializerInterface;
+
+class AccompanyingPeriodWorkEvaluationDocumentDuplicateController
+{
+    public function __construct(
+        private readonly AccompanyingPeriodWorkEvaluationDocumentDuplicator $duplicator,
+        private readonly Security $security,
+        private readonly SerializerInterface $serializer,
+        private readonly EntityManagerInterface $entityManager,
+    ) {}
+
+    #[Route('/api/1.0/person/accompanying-course-work-evaluation-document/{id}/duplicate', methods: ['POST'])]
+    public function __invoke(AccompanyingPeriodWorkEvaluationDocument $document): Response
+    {
+        $work = $document->getAccompanyingPeriodWorkEvaluation()->getAccompanyingPeriodWork();
+
+        if (!$this->security->isGranted(AccompanyingPeriodWorkVoter::UPDATE, $work)) {
+            throw new AccessDeniedHttpException('not allowed to edit this accompanying period work');
+        }
+
+        $duplicatedDocument = $this->duplicator->duplicate($document);
+
+        $this->entityManager->persist($duplicatedDocument);
+        $this->entityManager->persist($duplicatedDocument->getStoredObject());
+        $this->entityManager->flush();
+
+        return new JsonResponse(
+            $this->serializer->serialize($duplicatedDocument, 'json', [AbstractNormalizer::GROUPS => ['read']]),
+            json: true
+        );
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/types.ts b/src/Bundle/ChillPersonBundle/Resources/public/types.ts
index 755c23e2d..aae801fc3 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillPersonBundle/Resources/public/types.ts
@@ -1,4 +1,12 @@
-import {Address, Center, Civility, DateTime} from "../../../ChillMainBundle/Resources/public/types";
+import {
+    Address,
+    Center,
+    Civility,
+    DateTime,
+    User,
+    WorkflowAvailable
+} from "../../../ChillMainBundle/Resources/public/types";
+import {StoredObject} from "../../../ChillDocStoreBundle/Resources/public/types";
 
 export interface Person {
     id: number;
@@ -20,3 +28,16 @@ export interface Person {
     current_household_id: number;
     current_residential_addresses: Address[];
 }
+
+export interface AccompanyingPeriodWorkEvaluationDocument {
+    id: number;
+    type: "accompanying_period_work_evaluation_document"
+    storedObject: StoredObject;
+    title: string;
+    createdAt: DateTime | null;
+    createdBy: User | null;
+    updatedAt: DateTime | null;
+    updatedBy: User | null;
+    workflows_availables: WorkflowAvailable[];
+    workflows: object[];
+}
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
index 0c0cc22cb..dbc53c4e8 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
@@ -147,6 +147,9 @@
                      <a class="btn btn-delete" @click="removeDocument(d)">
                      </a>
                    </li>
+                   <li v-if="Number.isInteger(d.id)">
+                     <button type="button" @click="duplicateDocument(d)" class="btn btn-duplicate" title="Dupliquer"></button>
+                   </li>
                  </ul>
                </div>
            </div>
@@ -396,6 +399,9 @@ export default {
             this.$store.commit('removeDocument', {key: this.evaluation.key, document: document});
          }
       },
+      duplicateDocument(document) {
+          this.$store.dispatch('duplicateDocument', {evaluation_key: this.evaluation.key, document: document});
+      },
       onStatusDocumentChanged(newStatus) {
         console.log('onStatusDocumentChanged', newStatus);
         this.$store.commit('statusDocumentChanged', {key: this.evaluation.key, newStatus: newStatus});
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
index 236c77140..4279aa366 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/store.js
@@ -4,6 +4,7 @@ import { findSocialActionsBySocialIssue } from 'ChillPersonAssets/vuejs/_api/Soc
 import { create } from 'ChillPersonAssets/vuejs/_api/AccompanyingCourseWork.js';
 import { fetchResults, makeFetch } from 'ChillMainAssets/lib/api/apiMethods.ts';
 import { fetchTemplates } from 'ChillDocGeneratorAssets/api/pickTemplate.js';
+import { duplicate } from '../_api/accompanyingCourseWorkEvaluationDocument';
 
 const debug = process.env.NODE_ENV !== 'production';
 const evalFQDN = encodeURIComponent("Chill\\PersonBundle\\Entity\\AccompanyingPeriod\\AccompanyingPeriodWorkEvaluation");
@@ -238,6 +239,14 @@ const store = createStore({
       }
       evaluation.documents = evaluation.documents.filter(d => d.key !== document.key);
     },
+    addDuplicatedDocument(state, {document, evaluation_key}) {
+      console.log('add duplicated document', document);
+      console.log('add duplicated dcuemnt - evaluation key', evaluation_key);
+
+      let evaluation = state.evaluationsPicked.find(e => e.key === evaluation_key);
+      document.key = evaluation.documents.length + 1;
+      evaluation.documents.splice(0, 0, document);
+    },
     /**
      * Replaces a document in the state with a new document.
      *
@@ -506,6 +515,10 @@ const store = createStore({
     addDocument({commit}, payload) {
       commit('addDocument', payload);
     },
+    async duplicateDocument({commit}, {document, evaluation_key}) {
+      const newDoc = await duplicate(document.id);
+      commit('addDuplicatedDocument', {document: newDoc, evaluation_key});
+    },
     removeDocument({commit}, payload) {
       commit('removeDocument', payload);
     },
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_api/accompanyingCourseWorkEvaluationDocument.ts b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_api/accompanyingCourseWorkEvaluationDocument.ts
new file mode 100644
index 000000000..a7c03e5ea
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_api/accompanyingCourseWorkEvaluationDocument.ts
@@ -0,0 +1,6 @@
+import {AccompanyingPeriodWorkEvaluationDocument} from "../../types";
+import {makeFetch} from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
+
+export const duplicate = async (id: number): Promise<AccompanyingPeriodWorkEvaluationDocument> => {
+    return makeFetch<null, AccompanyingPeriodWorkEvaluationDocument>("POST", `/api/1.0/person/accompanying-course-work-evaluation-document/${id}/duplicate`);
+}
diff --git a/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicator.php b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicator.php
new file mode 100644
index 000000000..5ca37aa71
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicator.php
@@ -0,0 +1,39 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Service\AccompanyingPeriodWorkEvaluationDocument;
+
+use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+class AccompanyingPeriodWorkEvaluationDocumentDuplicator
+{
+    public function __construct(
+        private readonly StoredObjectDuplicate $storedObjectDuplicate,
+        private readonly TranslatorInterface $translator,
+        private readonly ClockInterface $clock,
+    ) {}
+
+    public function duplicate(AccompanyingPeriodWorkEvaluationDocument $document): AccompanyingPeriodWorkEvaluationDocument
+    {
+        $newDocument = new AccompanyingPeriodWorkEvaluationDocument();
+        $newDocument
+            ->setTitle($document->getTitle().' ('.$this->translator->trans('accompanying_course_evaluation_document.duplicated_at', ['at' => $this->clock->now()]).')')
+            ->setStoredObject($this->storedObjectDuplicate->duplicate($document->getStoredObject()))
+        ;
+
+        $document->getAccompanyingPeriodWorkEvaluation()->addDocument($newDocument);
+
+        return $newDocument;
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicatorTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicatorTest.php
new file mode 100644
index 000000000..e24caef63
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWorkEvaluationDocument/AccompanyingPeriodWorkEvaluationDocumentDuplicatorTest.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Service\AccompanyingPeriodWorkEvaluationDocument;
+
+use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluation;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Service\AccompanyingPeriodWorkEvaluationDocument\AccompanyingPeriodWorkEvaluationDocumentDuplicator;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingPeriodWorkEvaluationDocumentDuplicatorTest extends TestCase
+{
+    public function testDuplicate()
+    {
+        $storedObject = new StoredObject();
+        $evaluation = new AccompanyingPeriodWorkEvaluation();
+        $document = new AccompanyingPeriodWorkEvaluationDocument();
+        $document
+            ->setStoredObject($storedObject)
+            ->setTitle('test title')
+            ->setAccompanyingPeriodWorkEvaluation($evaluation);
+
+        $storedObjectDuplicator = $this->createMock(StoredObjectDuplicate::class);
+        $storedObjectDuplicator->expects($this->once())->method('duplicate')->with($storedObject)->willReturn($newStoredObject = new StoredObject());
+
+        $translator = $this->createMock(TranslatorInterface::class);
+        $translator->method('trans')->willReturn('test translated');
+
+        $clock = new MockClock();
+
+        $duplicator = new AccompanyingPeriodWorkEvaluationDocumentDuplicator($storedObjectDuplicator, $translator, $clock);
+
+        $actual = $duplicator->duplicate($document);
+
+        self::assertNotSame($document, $actual);
+        self::assertStringStartsWith('test title', $actual->getTitle());
+        self::assertSame($newStoredObject, $actual->getStoredObject());
+        self::assertSame($evaluation, $actual->getAccompanyingPeriodWorkEvaluation());
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/chill.api.specs.yaml b/src/Bundle/ChillPersonBundle/chill.api.specs.yaml
index 72a4b78e3..45cccf958 100644
--- a/src/Bundle/ChillPersonBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillPersonBundle/chill.api.specs.yaml
@@ -1948,3 +1948,25 @@ paths:
       responses:
         200:
           description: "OK"
+
+  /1.0/person/accompanying-course-work-evaluation-document/{id}/duplicate:
+    post:
+      tags:
+        - accompanying-course-work-evaluation-document
+      summary: Dupliate an an accompanying period work evaluation document
+      parameters:
+        - in: path
+          name: id
+          required: true
+          description: The document's id
+          schema:
+            type: integer
+            format: integer
+            minimum: 1
+      responses:
+        200:
+          description: "OK"
+          content:
+            application/json:
+              schema:
+                type: object
diff --git a/src/Bundle/ChillPersonBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillPersonBundle/translations/messages+intl-icu.fr.yaml
index 9b2edf573..3ea21e06d 100644
--- a/src/Bundle/ChillPersonBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillPersonBundle/translations/messages+intl-icu.fr.yaml
@@ -163,8 +163,8 @@ exports:
     { total, plural,
         =0 {Aucun usager ne correspond aux termes de recherche}
         one {Un usager correspond aux termes de recherche}
-        many {# usagers correspondent aux terms de recherche}
-        other {# usagers correspondent aux terms de recherche}
+        many {# usagers correspondent aux termes de recherche}
+        other {# usagers correspondent aux termes de recherche}
     }
 
 'nb person with similar name. Please verify that this is a new person': >-
@@ -173,3 +173,7 @@ exports:
         one {Un usager a un nom similaire. Vérifiez qu'il ne s'agit pas de lui.}
         other {# usagers ont un nom similaire. Vérifiez qu'il ne s'agit pas de l'un d'eux}
     }
+
+accompanying_course_evaluation_document:
+    duplicated_at: >-
+        Dupliqué le {at, date, long} à {at, time, short}

From 27df3b2c9b57656972e629232c93d8b72b28ed8e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 10:58:01 +0200
Subject: [PATCH 270/375] Add support for ManagerAwareCenterResolverInterface

Introduce ManagerAwareCenterResolverInterface to ensure resolvers can reference their manager. Added a trait for implementing the interface and updated the CenterResolverManager to initialize resolvers correctly.
---
 .../Resolver/CenterResolverManager.php        |  9 +++++++-
 .../ManagerAwareCenterResolverInterface.php   | 22 +++++++++++++++++++
 .../ManagerAwareCenterResolverTrait.php       | 22 +++++++++++++++++++
 3 files changed, 52 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverInterface.php
 create mode 100644 src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverTrait.php

diff --git a/src/Bundle/ChillMainBundle/Security/Resolver/CenterResolverManager.php b/src/Bundle/ChillMainBundle/Security/Resolver/CenterResolverManager.php
index f629459b4..813ab1526 100644
--- a/src/Bundle/ChillMainBundle/Security/Resolver/CenterResolverManager.php
+++ b/src/Bundle/ChillMainBundle/Security/Resolver/CenterResolverManager.php
@@ -18,7 +18,14 @@ final readonly class CenterResolverManager implements CenterResolverManagerInter
     /**
      * @param \Chill\MainBundle\Security\Resolver\CenterResolverInterface[] $resolvers
      */
-    public function __construct(private iterable $resolvers = []) {}
+    public function __construct(private iterable $resolvers = [])
+    {
+        foreach ($resolvers as $resolver) {
+            if ($resolver instanceof ManagerAwareCenterResolverInterface) {
+                $resolver->setResolverManager($this);
+            }
+        }
+    }
 
     public function resolveCenters($entity, ?array $options = []): array
     {
diff --git a/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverInterface.php b/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverInterface.php
new file mode 100644
index 000000000..eae7ae964
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverInterface.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Security\Resolver;
+
+/**
+ * Center resolver which need the CenterResolverManager.
+ *
+ * Appended to @see{CenterResolverInterface} which needs the @{CenterResolverManager} to resolve the center
+ */
+interface ManagerAwareCenterResolverInterface
+{
+    public function setResolverManager(CenterResolverManagerInterface $manager): void;
+}
diff --git a/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverTrait.php b/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverTrait.php
new file mode 100644
index 000000000..def37ed33
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Security/Resolver/ManagerAwareCenterResolverTrait.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Security\Resolver;
+
+trait ManagerAwareCenterResolverTrait
+{
+    protected CenterResolverManagerInterface $centerResolverManager;
+
+    public function setResolverManager(CenterResolverManagerInterface $manager): void
+    {
+        $this->centerResolverManager = $manager;
+    }
+}

From cf2fe1bba792b22ff7242acb368d092a5fd31cb3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 10:59:33 +0200
Subject: [PATCH 271/375] Add guards and tests for entity workflow transitions

Introduced EntityWorkflowGuardUnsignedTransition to block transitions with pending signatures. Implemented a new center resolver and added comprehensive unit tests for verifying transition rules and permissions.
---
 .../EntityWorkflowTransitionVoter.php         |   7 +-
 ...ityWorkflowGuardUnsignedTransitionTest.php | 203 ++++++++++++++++++
 .../EntityWorkflowGuardUnsignedTransition.php |  69 ++++++
 ...odWorkEvaluationDocumentCenterResolver.php |  40 ++++
 4 files changed, 316 insertions(+), 3 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransitionTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransition.php
 create mode 100644 src/Bundle/ChillPersonBundle/Security/CenterResolver/AccompanyingPeriodWorkEvaluationDocumentCenterResolver.php

diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
index 811c45f64..2c89f563a 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowTransitionVoter.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Security\Authorization;
 
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Security\ProvideRoleHierarchyInterface;
 use Chill\MainBundle\Security\Resolver\CenterResolverManagerInterface;
@@ -55,13 +56,13 @@ final class EntityWorkflowTransitionVoter extends Voter implements ProvideRoleHi
 
     protected function supports(string $attribute, $subject): bool
     {
-        return self::APPLY_ALL_TRANSITIONS === $attribute && $subject instanceof EntityWorkflowStep;
+        return self::APPLY_ALL_TRANSITIONS === $attribute && ($subject instanceof EntityWorkflowStep || $subject instanceof EntityWorkflow);
     }
 
     protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token): bool
     {
-        /** @var EntityWorkflowStep $subject */
-        $entityWorkflow = $subject->getEntityWorkflow();
+        /** @var EntityWorkflowStep|EntityWorkflow $subject */
+        $entityWorkflow = $subject instanceof EntityWorkflowStep ? $subject->getEntityWorkflow() : $subject;
 
         if (!$this->accessDecisionManager->decide($token, [EntityWorkflowVoter::SEE], $entityWorkflow)) {
             return false;
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransitionTest.php
new file mode 100644
index 000000000..6a27e723a
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransitionTest.php
@@ -0,0 +1,203 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
+use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowGuardUnsignedTransition;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\TransitionBlocker;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowGuardUnsignedTransitionTest extends TestCase
+{
+    use ProphecyTrait;
+
+    /**
+     * @dataProvider guardWaitingForSignatureWithoutPermissionToApplyAllTransitionsProvider
+     */
+    public function testGuardWaitingForSignatureWithoutPermissionToApplyAllTransitions(EntityWorkflow $entityWorkflow, string $transition, array $expectedErrors, array $expectedParameters, string $message)
+    {
+        $chillEntityRender = $this->prophesize(ChillEntityRenderManagerInterface::class);
+        $chillEntityRender->renderString(Argument::type('object'), Argument::type('array'))->will(fn ($args) => spl_object_hash($args[0]));
+
+        $security = $this->prophesize(Security::class);
+        if ([] !== $expectedErrors) {
+            $security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, $entityWorkflow)
+                ->shouldBeCalled()
+                ->willReturn(false);
+        }
+
+        $registry = self::buildRegistry($chillEntityRender->reveal(), $security->reveal());
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $actual = $workflow->buildTransitionBlockerList($entityWorkflow, $transition);
+
+        self::assertCount(count($expectedErrors), $actual, $message);
+        $blockers = iterator_to_array($actual->getIterator());
+
+        if ([] !== $expectedErrors) {
+            foreach ($expectedErrors as $k => $expectedError) {
+                self::assertcontains($expectedError, array_map(fn (TransitionBlocker $blocker) => $blocker->getCode(), $blockers));
+                self::assertEquals($expectedParameters[$k], $blockers[$k]->getParameters());
+            }
+        }
+    }
+
+    /**
+     * @dataProvider guardWaitingForSignatureWithPermissionToApplyAllTransitionsProvider
+     */
+    public function testGuardWaitingForSignatureWithPermissionToApplyAllTransitions(EntityWorkflow $entityWorkflow, string $transition, bool $expectIsGranted, string $message)
+    {
+        $chillEntityRender = $this->prophesize(ChillEntityRenderManagerInterface::class);
+        $chillEntityRender->renderString(Argument::type('object'), Argument::type('array'))->will(fn ($args) => spl_object_hash($args[0]));
+
+        $security = $this->prophesize(Security::class);
+        $isGranted = $security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, Argument::type(EntityWorkflow::class));
+        if ($expectIsGranted) {
+            $isGranted->shouldBeCalled();
+        }
+        $isGranted->willReturn(true);
+
+        $registry = self::buildRegistry($chillEntityRender->reveal(), $security->reveal());
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $actual = $workflow->buildTransitionBlockerList($entityWorkflow, $transition);
+
+        self::assertCount(0, $actual, $message);
+    }
+
+    public static function guardWaitingForSignatureWithPermissionToApplyAllTransitionsProvider(): iterable
+    {
+        $registry = self::buildRegistry();
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [$user = new User()];
+        $dto->futureUserSignature = $user;
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User(), 'transition' => 'to_signature']);
+
+        yield [$entityWorkflow, 'to_post-signature', true, 'A transition forward is allowed, even if a signature is pending, because the user has permission to apply all transition'];
+        yield [$entityWorkflow, 'to_cancel', false, 'A transition backward is allowed, even if a signature is pending'];
+    }
+
+    public static function guardWaitingForSignatureWithoutPermissionToApplyAllTransitionsProvider(): iterable
+    {
+        $registry = self::buildRegistry();
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [$user = new User()];
+        $dto->futureUserSignature = $user;
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User(), 'transition' => 'to_signature']);
+
+        yield [$entityWorkflow, 'to_post-signature', ['2eabe9e6-79c2-11ef-986c-2ba376180859'], [['signer' => spl_object_hash($user)]], 'A transition forward is blocked if a signature is pending'];
+        yield [$entityWorkflow, 'to_cancel', [], [], 'A transition backward is allowed, even if a signature is pending'];
+
+        $registry = self::buildRegistry();
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [$user = new User()];
+        $dto->futureUserSignature = $user;
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User(), 'transition' => 'to_signature']);
+        $signature = $entityWorkflow->getCurrentStep()->getSignatures()->first();
+        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED);
+
+        yield [$entityWorkflow, 'to_post-signature', [], [], 'A transition forward is allowed when the signature is applyied'];
+
+        $registry = self::buildRegistry();
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [new User()];
+        $dto->futurePersonSignatures = [new Person(), $p2 = new Person()];
+
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User(), 'transition' => 'to_signature']);
+        $signature = $entityWorkflow->getCurrentStep()->getSignatures()->first();
+        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED);
+
+        yield [$entityWorkflow, 'to_post-signature', ['2eabe9e6-79c2-11ef-986c-2ba376180859'], [['signer' => spl_object_hash($p2)]], 'A transition forward is not allowed as a signature is still pending'];
+        yield [$entityWorkflow, 'to_cancel', [], [], 'A transition backward is allowed, even if a signature is pending'];
+    }
+
+    private static function buildRegistry(?ChillEntityRenderManagerInterface $chillEntityRender = null, ?Security $security = null): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'signature', 'post-signature', 'cancel'])
+            ->addTransition(new Transition('to_signature', 'initial', 'signature'))
+            ->addTransition($postSignature = new Transition('to_post-signature', 'signature', 'post-signature'))
+            ->addTransition($cancel = new Transition('to_cancel', 'signature', 'cancel'))
+        ;
+
+        $transitionsMetadata = new \SplObjectStorage();
+        $transitionsMetadata->attach($postSignature, ['isForward' => true]);
+        $transitionsMetadata->attach($cancel, ['isForward' => false]);
+
+        $metadata = new InMemoryMetadataStore(
+            placesMetadata: ['signature' => ['isSignature' => ['person', 'user']]],
+            transitionsMetadata: $transitionsMetadata,
+        );
+
+        $builder->setMetadataStore($metadata);
+
+        if (null !== $chillEntityRender) {
+            $eventDispatcher = new EventDispatcher();
+            $eventDispatcher->addSubscriber(new EntityWorkflowGuardUnsignedTransition($chillEntityRender, $security));
+        }
+
+        $workflow = new Workflow(
+            $builder->build(),
+            new EntityWorkflowMarkingStore(),
+            $eventDispatcher ?? null,
+            'dummy',
+        );
+
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransition.php
new file mode 100644
index 000000000..b26389c0f
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardUnsignedTransition.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
+use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\Event\GuardEvent;
+use Symfony\Component\Workflow\TransitionBlocker;
+
+/**
+ * Block the transition on EntityWorkflow if there is a still pending signature.
+ */
+final readonly class EntityWorkflowGuardUnsignedTransition implements EventSubscriberInterface
+{
+    public function __construct(private ChillEntityRenderManagerInterface $chillEntityRenderManager, private Security $security) {}
+
+    public static function getSubscribedEvents(): array
+    {
+        return [
+            'workflow.guard' => [
+                ['guardWaitingForSignature', 0],
+            ],
+        ];
+    }
+
+    public function guardWaitingForSignature(GuardEvent $event): void
+    {
+        $entityWorkflow = $event->getSubject();
+
+        if (!$entityWorkflow instanceof EntityWorkflow) {
+            return;
+        }
+
+        $transitionMetadata = $event->getWorkflow()->getMetadataStore()->getTransitionMetadata($event->getTransition());
+
+        if (false === ($transitionMetadata['isForward'] ?? true)) {
+            return;
+        }
+
+        foreach ($entityWorkflow->getCurrentStep()->getSignatures() as $signature) {
+            if (EntityWorkflowSignatureStateEnum::PENDING === $signature->getState()) {
+                if ($this->security->isGranted(EntityWorkflowTransitionVoter::APPLY_ALL_TRANSITIONS, $entityWorkflow)) {
+                    continue;
+                }
+
+                $event->addTransitionBlocker(
+                    new TransitionBlocker(
+                        'workflow.blocked_waiting_for_pending_signer',
+                        '2eabe9e6-79c2-11ef-986c-2ba376180859',
+                        ['signer' => $this->chillEntityRenderManager->renderString($signature->getSigner(), ['addAge' => false])]
+                    )
+                );
+            }
+        }
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Security/CenterResolver/AccompanyingPeriodWorkEvaluationDocumentCenterResolver.php b/src/Bundle/ChillPersonBundle/Security/CenterResolver/AccompanyingPeriodWorkEvaluationDocumentCenterResolver.php
new file mode 100644
index 000000000..973c771d1
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Security/CenterResolver/AccompanyingPeriodWorkEvaluationDocumentCenterResolver.php
@@ -0,0 +1,40 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Security\CenterResolver;
+
+use Chill\MainBundle\Entity\Center;
+use Chill\MainBundle\Security\Resolver\CenterResolverInterface;
+use Chill\MainBundle\Security\Resolver\ManagerAwareCenterResolverInterface;
+use Chill\MainBundle\Security\Resolver\ManagerAwareCenterResolverTrait;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+
+final class AccompanyingPeriodWorkEvaluationDocumentCenterResolver implements CenterResolverInterface, ManagerAwareCenterResolverInterface
+{
+    use ManagerAwareCenterResolverTrait;
+
+    public static function getDefaultPriority(): int
+    {
+        return 0;
+    }
+
+    public function resolveCenter($entity, ?array $options = []): Center|array
+    {
+        /* @var $entity AccompanyingPeriodWorkEvaluationDocument */
+        return $this->centerResolverManager->resolveCenters($entity->getAccompanyingPeriodWorkEvaluation()
+            ->getAccompanyingPeriodWork()->getAccompanyingPeriod(), $options);
+    }
+
+    public function supports($entity, ?array $options = []): bool
+    {
+        return $entity instanceof AccompanyingPeriodWorkEvaluationDocument;
+    }
+}

From e91fce524e32e0251f1fe29fe773273482ba1a28 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 14:17:35 +0200
Subject: [PATCH 272/375] Append workflow name in twig calls to
 workflow_metadata

Ensuring that the twig template works if there are more than one workflow available
---
 .../Resources/views/Workflow/_decision.html.twig           | 2 +-
 .../views/Workflow/_extension_list_workflow_for.html.twig  | 7 ++-----
 .../Resources/views/Workflow/_history.html.twig            | 6 +++---
 .../Resources/views/Workflow/macro_breadcrumb.html.twig    | 4 ++--
 4 files changed, 8 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index ac85525a6..4f43c4dad 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -6,7 +6,7 @@
     {{ form_errors(transition_form) }}
 
     {% set step = entity_workflow.currentStepChained %}
-    {% set labels = workflow_metadata(entity_workflow, 'label', step.currentStep) %}
+    {% set labels = workflow_metadata(entity_workflow, 'label', step.currentStep, entity_workflow.workflowName) %}
     {% set label = labels is null ? step.currentStep : labels|localize_translatable_string %}
 
     <div class="card">
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_extension_list_workflow_for.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_extension_list_workflow_for.html.twig
index cfe8b83f5..f6d49f7d6 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_extension_list_workflow_for.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_extension_list_workflow_for.html.twig
@@ -1,8 +1,5 @@
-{% set acl = "0" %}
-{% if is_granted('CHILL_MAIN_WORKFLOW_CREATE', blank_workflow) %}
-    {% set acl = "1" %}
-{% endif %}
-
+{% set acl = "1" %}
+{# note: the list of available workflows already check that it is possible to create a given workflow #}
 {# vue component #}
 <div data-list-workflows="1"
     data-workflows="{{ entity_workflows_json|json_encode|e('html_attr') }}"
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index 670d27ecc..1a37baf27 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -2,7 +2,7 @@
 
 <div class="flex-table">
     {% for step in entity_workflow.stepsChained %}
-        {% set place_labels = workflow_metadata(entity_workflow, 'label', step.currentStep) %}
+        {% set place_labels = workflow_metadata(entity_workflow, 'label', step.currentStep, entity_workflow.workflowName) %}
         {% set place_label = place_labels is null ? step.currentStep : place_labels|localize_translatable_string %}
 
         <div class="item-bloc {{ 'bloc' ~ step.id }} {% if loop.first %}initial{% endif %}">
@@ -35,9 +35,9 @@
             </div>
             {% if step.next is not null %}
                 {% set transition = chill_workflow_transition_by_string(step.entityWorkflow, step.transitionAfter) %}
-                {% set transition_labels = workflow_metadata(step.entityWorkflow, 'label', transition) %}
+                {% set transition_labels = workflow_metadata(step.entityWorkflow, 'label', transition, step.entityWorkflow.workflowName) %}
                 {% set transition_label = transition_labels is null ? step.transitionAfter : transition_labels|localize_translatable_string %}
-                {% set forward = workflow_metadata(step.entityWorkflow, 'isForward', transition) %}
+                {% set forward = workflow_metadata(step.entityWorkflow, 'isForward', transition, step.entityWorkflow.workflowName) %}
                 <div class="item-row separator">
                     <div class="item-col" style="width: inherit;">
                             <div>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
index e3087769f..61189100c 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
@@ -44,7 +44,7 @@
     {% endif %}
     {% if step.previous is not null %}
         {% set transition = chill_workflow_transition_by_string(step.entityWorkflow, step.previous.transitionAfter) %}
-        {% set labels = workflow_metadata(step.entityWorkflow, 'label', transition) %}
+        {% set labels = workflow_metadata(step.entityWorkflow, 'label', transition, step.entityWorkflow.workflowName) %}
         {% set label = labels is null ? step.previous.transitionAfter : labels|localize_translatable_string %}
         {{ label }}
     {% endif %}
@@ -53,7 +53,7 @@
 {% macro breadcrumb(_ctx) %}
     <div class="breadcrumb">
         {% for step in _ctx.entity_workflow.stepsChained %}
-            {% set labels = workflow_metadata(_ctx.entity_workflow, 'label', step.currentStep) %}
+            {% set labels = workflow_metadata(_ctx.entity_workflow, 'label', step.currentStep, _ctx.entity_workflow.workflowName) %}
             {% set label = labels is null ? step.currentStep : labels|localize_translatable_string %}
             {% set popTitle = _self.popoverTitle(step) %}
             {% set popContent = _self.popoverContent(step) %}

From 758a14366e526be93cba7332ad6a462a74be3646 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 14:18:26 +0200
Subject: [PATCH 273/375] Add OpenedEntityWorkflowHelper and tests

Implemented OpenedEntityWorkflowHelper to handle final state checks for EntityWorkflow. This includes methods to determine if a workflow has reached positive or negative final steps. Added corresponding unit tests to ensure proper functionality.
---
 .../Helper/OpenedEntityWorkflowHelperTest.php | 105 ++++++++++++++++++
 .../Helper/OpenedEntityWorkflowHelper.php     |  83 ++++++++++++++
 2 files changed, 188 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Helper/OpenedEntityWorkflowHelperTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Helper/OpenedEntityWorkflowHelper.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Helper/OpenedEntityWorkflowHelperTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Helper/OpenedEntityWorkflowHelperTest.php
new file mode 100644
index 000000000..cc4827120
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Helper/OpenedEntityWorkflowHelperTest.php
@@ -0,0 +1,105 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Helper;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\Helper\OpenedEntityWorkflowHelper;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class OpenedEntityWorkflowHelperTest extends TestCase
+{
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'final_positive', 'final_negative', 'final_no_data'])
+            ->setMetadataStore(
+                new InMemoryMetadataStore(
+                    placesMetadata: [
+                        'final_positive' => ['isFinalPositive' => true, 'isFinal' => true],
+                        'final_negative' => ['isFinalPositive' => false, 'isFinal' => true],
+                        'final_no_data' => ['isFinal' => true],
+                    ]
+                )
+            );
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow(
+            $workflow,
+            new class () implements WorkflowSupportStrategyInterface {
+                public function supports(WorkflowInterface $workflow, object $subject): bool
+                {
+                    return true;
+                }
+            }
+        );
+
+        return $registry;
+    }
+
+    public function testIsFinalPositive(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('final_positive', $dto, 'fake', new \DateTimeImmutable());
+        $entityWorkflow->getCurrentStep()->setIsFinal(true);
+
+        $helper = new OpenedEntityWorkflowHelper($this->buildRegistry());
+
+        self::assertTrue($helper->isFinalPositive($entityWorkflow));
+        self::assertFalse($helper->isFinalNegative($entityWorkflow));
+    }
+
+    public function testIsFinalNegative(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('final_negative', $dto, 'fake', new \DateTimeImmutable());
+        $entityWorkflow->getCurrentStep()->setIsFinal(true);
+
+        $helper = new OpenedEntityWorkflowHelper($this->buildRegistry());
+
+        self::assertFalse($helper->isFinalPositive($entityWorkflow));
+        self::assertTrue($helper->isFinalNegative($entityWorkflow));
+    }
+
+    public function testIsFinalNoInformation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('final_no_data', $dto, 'fake', new \DateTimeImmutable());
+        $entityWorkflow->getCurrentStep()->setIsFinal(true);
+
+        $helper = new OpenedEntityWorkflowHelper($this->buildRegistry());
+
+        self::assertFalse($helper->isFinalPositive($entityWorkflow));
+        self::assertFalse($helper->isFinalNegative($entityWorkflow));
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Helper/OpenedEntityWorkflowHelper.php b/src/Bundle/ChillMainBundle/Workflow/Helper/OpenedEntityWorkflowHelper.php
new file mode 100644
index 000000000..705210722
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Helper/OpenedEntityWorkflowHelper.php
@@ -0,0 +1,83 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Helper;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Symfony\Component\Workflow\Registry;
+
+/**
+ * Helps to determine the status of the EntityWorkflow.
+ *
+ * A "negative final" step means that the workflow has been canceled, without being formerly finalized
+ */
+class OpenedEntityWorkflowHelper
+{
+    public function __construct(private readonly Registry $registry) {}
+
+    /**
+     * Return true if the entity workflow has reached a final step.
+     *
+     * @return bool true if the entityworkflow has reached a final step
+     */
+    public function isFinal(EntityWorkflow $entityWorkflow): bool
+    {
+        return $entityWorkflow->isFinal();
+    }
+
+    /**
+     * return true if the entity workflow has reached a final and positive step.
+     *
+     * If multiple steps, they are all taken into account: return true if at least one step has the metadata
+     * `isFinalPositive: true`
+     */
+    public function isFinalPositive(EntityWorkflow $entityWorkflow): bool
+    {
+        if (!$this->isFinal($entityWorkflow)) {
+            return false;
+        }
+
+        return $this->findFinalMark($entityWorkflow, true) ?? false;
+    }
+
+    /**
+     * return true if the entity workflow has reached a final and negative step.
+     *
+     * If multiple steps, they are all taken into account: return true if at least one step has the metadata
+     * `isFinalPositive: false`.
+     */
+    public function isFinalNegative(EntityWorkflow $entityWorkflow): bool
+    {
+        if (!$this->isFinal($entityWorkflow)) {
+            return false;
+        }
+
+        return $this->findFinalMark($entityWorkflow, false) ?? false;
+    }
+
+    private function findFinalMark(EntityWorkflow $entityWorkflow, bool $expectedMark): ?bool
+    {
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $marking = $workflow->getMarkingStore()->getMarking($entityWorkflow);
+
+        foreach ($marking->getPlaces() as $place => $key) {
+            $metadata = $workflow->getMetadataStore()->getPlaceMetadata($place);
+
+            if (array_key_exists('isFinalPositive', $metadata)) {
+                if ($expectedMark === $metadata['isFinalPositive']) {
+                    return true;
+                }
+            }
+        }
+
+        return null;
+    }
+}

From 5a5d259d1853a9e4c0e3a4c2c8f0b559e98e7ca9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 14:18:50 +0200
Subject: [PATCH 274/375] Add duplicate workflow prevention in
 MetadataExtractor

Integrate DuplicateEntityWorkflowFinder to prevent creating workflows for entities with existing opened or positive final workflows. Updated EntityWorkflowVoter to implement the same check before allowing creation. Removed unnecessary blank workflow parameter from Twig template.
---
 .../Authorization/EntityWorkflowVoter.php     | 16 +++++-
 .../Helper/DuplicateEntityWorkflowFinder.php  | 57 +++++++++++++++++++
 .../Workflow/Helper/MetadataExtractor.php     | 17 +++++-
 .../WorkflowTwigExtensionRuntime.php          |  1 -
 4 files changed, 87 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Helper/DuplicateEntityWorkflowFinder.php

diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
index 44766a583..ee45d1e56 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Security\Authorization;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\Helper\DuplicateEntityWorkflowFinder;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 use Symfony\Component\Security\Core\Security;
@@ -27,7 +28,11 @@ class EntityWorkflowVoter extends Voter
 
     final public const SHOW_ENTITY_LINK = 'CHILL_MAIN_WORKFLOW_LINK_SHOW';
 
-    public function __construct(private readonly EntityWorkflowManager $manager, private readonly Security $security) {}
+    public function __construct(
+        private readonly EntityWorkflowManager $manager,
+        private readonly Security $security,
+        private readonly DuplicateEntityWorkflowFinder $duplicateEntityWorkflowFinder,
+    ) {}
 
     protected function supports($attribute, $subject)
     {
@@ -41,6 +46,15 @@ class EntityWorkflowVoter extends Voter
     {
         switch ($attribute) {
             case self::CREATE:
+                if (false === $this->voteOnAttribute(self::SEE, $subject, $token)) {
+                    return false;
+                }
+
+                if ($this->duplicateEntityWorkflowFinder->hasDuplicateOpenedOrFinalPositiveEntityWorkflow($subject)) {
+                    return false;
+                }
+
+                return true;
             case self::SEE:
                 $handler = $this->manager->getHandler($subject);
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/Helper/DuplicateEntityWorkflowFinder.php b/src/Bundle/ChillMainBundle/Workflow/Helper/DuplicateEntityWorkflowFinder.php
new file mode 100644
index 000000000..7ade75223
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Helper/DuplicateEntityWorkflowFinder.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Helper;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+
+/**
+ * Class DuplicateEntityWorkflowFinder.
+ *
+ * Finds duplicate entity workflows based on their status.
+ */
+class DuplicateEntityWorkflowFinder
+{
+    public function __construct(private readonly EntityWorkflowRepository $entityWorkflowRepository, private readonly OpenedEntityWorkflowHelper $openedEntityWorkflowHelper) {}
+
+    /**
+     * Return true if the related entity has opened workflow with same name, or workflow with a positive final step.
+     *
+     * This will return false if the other workflow is final **and** negative (because it has been canceled, for instance).
+     *
+     * If there isn't any other workflow related to the same entity, this will return false.
+     */
+    public function hasDuplicateOpenedOrFinalPositiveEntityWorkflow(EntityWorkflow $entityWorkflow): bool
+    {
+        $otherWorkflows = $this->entityWorkflowRepository->findByRelatedEntity($entityWorkflow->getRelatedEntityClass(), $entityWorkflow->getRelatedEntityId());
+
+        foreach ($otherWorkflows as $otherWorkflow) {
+            if ($entityWorkflow === $otherWorkflow) {
+                continue;
+            }
+
+            if ($otherWorkflow->getWorkflowName() !== $entityWorkflow->getWorkflowName()) {
+                continue;
+            }
+
+            if (!$this->openedEntityWorkflowHelper->isFinal($otherWorkflow)) {
+                return true;
+            }
+
+            if ($this->openedEntityWorkflowHelper->isFinalPositive($otherWorkflow)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php b/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
index f99449dc3..0774ad10a 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
@@ -19,20 +19,33 @@ use Symfony\Component\Workflow\WorkflowInterface;
 
 class MetadataExtractor
 {
-    public function __construct(private readonly Registry $registry, private readonly TranslatableStringHelperInterface $translatableStringHelper) {}
+    public function __construct(
+        private readonly Registry $registry,
+        private readonly TranslatableStringHelperInterface $translatableStringHelper,
+        private readonly DuplicateEntityWorkflowFinder $duplicateEntityWorkflowFinder,
+    ) {}
 
     public function availableWorkflowFor(string $relatedEntityClass, ?int $relatedEntityId = 0): array
     {
         $blankEntityWorkflow = new EntityWorkflow();
         $blankEntityWorkflow
             ->setRelatedEntityId($relatedEntityId)
-            ->setRelatedEntityClass($relatedEntityClass);
+            ->setRelatedEntityClass($relatedEntityClass)
+        ;
 
         // build the list of available workflows, and extract their names from metadata
         $workflows = $this->registry->all($blankEntityWorkflow);
         $workflowsList = [];
 
         foreach ($workflows as $workflow) {
+            // shortcut: we must not be able to create a new workflow if there are already created workflows,
+            // so, we find if there are workflows opened or final positive for the same entity
+            $blankEntityWorkflow->setWorkflowName($workflow->getName());
+            if ($this->duplicateEntityWorkflowFinder->hasDuplicateOpenedOrFinalPositiveEntityWorkflow($blankEntityWorkflow)) {
+                // if yes, we skip suggesting workflow
+                continue;
+            }
+
             $metadata = $workflow->getMetadataStore()->getWorkflowMetadata();
             $text = \array_key_exists('label', $metadata) ?
                 $this->translatableStringHelper->localize($metadata['label']) : $workflow->getName();
diff --git a/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
index 332ccd2e5..87fbf4498 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowTwigExtensionRuntime.php
@@ -59,7 +59,6 @@ class WorkflowTwigExtensionRuntime implements RuntimeExtensionInterface
 
         return $environment->render('@ChillMain/Workflow/_extension_list_workflow_for.html.twig', [
             'entity_workflows_json' => $this->normalizer->normalize($entityWorkflows, 'json', ['groups' => 'read']),
-            'blank_workflow' => $blankEntityWorkflow,
             'workflows_available' => $workflowsAvailable,
             'relatedEntityClass' => $relatedEntityClass,
             'relatedEntityId' => $relatedEntityId,

From 90c5b0341afb8036e8f4ee794e5a8b0e099bf2e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 24 Sep 2024 14:36:01 +0200
Subject: [PATCH 275/375] Handle null transitionPreviousBy in ListWorkflow.vue

Previously, the getPopContent method assumed transitionPreviousBy would always have a value, which led to errors when it was null. This update adds a conditional check to handle cases where transitionPreviousBy is null, ensuring the component renders correctly.
---
 .../_components/EntityWorkflow/ListWorkflow.vue  | 16 +++++++++++-----
 1 file changed, 11 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
index de645f899..943ea85f3 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflow.vue
@@ -102,11 +102,17 @@ export default {
       },
       getPopContent(step) {
          if (step.transitionPrevious != null) {
-            return `<ul class="small_in_title">
-              <li><span class="item-key">${i18n.messages.fr.by} : </span><b>${step.transitionPreviousBy.text}</b></li>
-              <li><span class="item-key">${i18n.messages.fr.at} : </span><b>${this.formatDate(step.transitionPreviousAt.datetime)}</b></li>
-              </ul>`
-            ;
+             if (step.transitionPreviousBy !== null) {
+                 return `<ul class="small_in_title">
+                      <li><span class="item-key">${i18n.messages.fr.by} : </span><b>${step.transitionPreviousBy.text}</b></li>
+                      <li><span class="item-key">${i18n.messages.fr.at} : </span><b>${this.formatDate(step.transitionPreviousAt.datetime)}</b></li>
+                      </ul>`
+                     ;
+             } else {
+                 return `<ul class="small_in_title">
+                      <li><span class="item-key">${i18n.messages.fr.at} : </span><b>${this.formatDate(step.transitionPreviousAt.datetime)}</b></li>
+                      </ul>`
+             }
          }
       },
       formatDate(datetime) {

From 5a467ae38de2212e31fb2d881ae0a410053e35de Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 25 Sep 2024 10:57:52 +0200
Subject: [PATCH 276/375] Add ChillUrlGenerator and ChillUrlGeneratorInterface

Introduced a new interface ChillUrlGeneratorInterface for URL generation with return path handling. Implemented this interface in the ChillUrlGenerator class, which uses Symfony components to manage URL generation and request information.
---
 .../Routing/ChillUrlGenerator.php             | 43 +++++++++++++++++++
 .../Routing/ChillUrlGeneratorInterface.php    | 35 +++++++++++++++
 .../config/services/routing.yaml              |  5 +++
 3 files changed, 83 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
 create mode 100644 src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php

diff --git a/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
new file mode 100644
index 000000000..eaecee628
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
@@ -0,0 +1,43 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Routing;
+
+use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+
+final readonly class ChillUrlGenerator implements ChillUrlGeneratorInterface
+{
+    public function __construct(private UrlGeneratorInterface $urlGenerator, private RequestStack $requestStack) {}
+
+    public function generate(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string
+    {
+        return $this->urlGenerator->generate($name, $parameters, $referenceType);
+    }
+
+    public function generateWithReturnPath(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string
+    {
+        $uri = $this->requestStack->getCurrentRequest()->getRequestUri();
+
+        return $this->urlGenerator->generate($name, [$parameters, 'returnPath' => $uri], $referenceType);
+    }
+
+    public function returnPathOr(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string
+    {
+        $request = $this->requestStack->getCurrentRequest();
+
+        if ($request->query->has('returnPath')) {
+            return $request->query->get('returnPath');
+        }
+
+        return $this->urlGenerator->generate($name, $parameters, $referenceType);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php b/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php
new file mode 100644
index 000000000..5c00fa665
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php
@@ -0,0 +1,35 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Routing;
+
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+
+/**
+ * Interface for generating URLs with returnPath information.
+ */
+interface ChillUrlGeneratorInterface
+{
+    /**
+     * Generate an URL without any return path. This is the same as using @see{UrlGeneratorInterface::generate}.
+     */
+    public function generate(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string;
+
+    /**
+     * Generate an url, append a return path in it.
+     */
+    public function generateWithReturnPath(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string;
+
+    /**
+     * Get the return path or, if any, generate an url.
+     */
+    public function returnPathOr(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string;
+}
diff --git a/src/Bundle/ChillMainBundle/config/services/routing.yaml b/src/Bundle/ChillMainBundle/config/services/routing.yaml
index 90ce6066f..7d5a80358 100644
--- a/src/Bundle/ChillMainBundle/config/services/routing.yaml
+++ b/src/Bundle/ChillMainBundle/config/services/routing.yaml
@@ -22,3 +22,8 @@ services:
         class: Chill\MainBundle\Routing\MenuTwig
         tags:
             - { name: twig.extension }
+
+    Chill\MainBundle\Routing\ChillUrlGenerator: ~
+
+    Chill\MainBundle\Routing\ChillUrlGeneratorInterface:
+        alias: 'Chill\MainBundle\Routing\ChillUrlGenerator'

From 83121c2a8397815e38cfb6a384f5a3e8563c69da Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 25 Sep 2024 10:58:53 +0200
Subject: [PATCH 277/375] Implement signature cancellation feature

Added functionality to cancel signatures in workflow, including controller, view, and tests. Updated translations and adjusted templates to support and display cancellation actions.
---
 .../WorkflowSignatureCancelController.php     | 69 +++++++++++++++
 .../Workflow/EntityWorkflowStepSignature.php  | 10 +++
 .../views/Workflow/_signature.html.twig       | 30 ++++---
 .../views/WorkflowSignature/cancel.html.twig  | 20 +++++
 .../EntityWorkflowStepSignatureVoter.php      |  5 +-
 .../Workflow/SignatureStepStateChanger.php    |  7 ++
 .../translations/messages+intl-icu.fr.yaml    |  6 +-
 .../translations/messages.fr.yml              |  5 ++
 ...kflowSignatureCancelControllerStepTest.php | 86 +++++++++++++++++++
 9 files changed, 223 insertions(+), 15 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Controller/WorkflowSignatureCancelControllerStepTest.php

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
new file mode 100644
index 000000000..20fce559a
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Routing\ChillUrlGeneratorInterface;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowStepSignatureVoter;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\Form\Extension\Core\Type\SubmitType;
+use Symfony\Component\Form\FormFactoryInterface;
+use Symfony\Component\HttpFoundation\RedirectResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Twig\Environment;
+
+final readonly class WorkflowSignatureCancelController
+{
+    public function __construct(
+        private EntityManagerInterface $entityManager,
+        private Security $security,
+        private FormFactoryInterface $formFactory,
+        private Environment $twig,
+        private SignatureStepStateChanger $signatureStepStateChanger,
+        private ChillUrlGeneratorInterface $chillUrlGenerator,
+    ) {}
+
+    #[Route('/{_locale}/main/workflow/signature/{id}/cancel', name: 'chill_main_workflow_signature_cancel')]
+    public function cancelSignature(EntityWorkflowStepSignature $signature, Request $request): Response
+    {
+        if (!$this->security->isGranted(EntityWorkflowStepSignatureVoter::CANCEL, $signature)) {
+            throw new AccessDeniedHttpException('not allowed to cancel this signature');
+        }
+
+        $form = $this->formFactory->create();
+        $form->add('confirm', SubmitType::class, ['label' => 'Confirm']);
+
+        $form->handleRequest($request);
+
+        if ($form->isSubmitted() && $form->isValid()) {
+            $this->signatureStepStateChanger->markSignatureAsCanceled($signature);
+            $this->entityManager->flush();
+
+            return new RedirectResponse(
+                $this->chillUrlGenerator->returnPathOr('chill_main_workflow_show', ['id' => $signature->getStep()->getEntityWorkflow()->getId()])
+            );
+        }
+
+        return
+            new Response(
+                $this->twig->render(
+                    '@ChillMain/WorkflowSignature/cancel.html.twig',
+                    ['form' => $form->createView(), 'signature' => $signature]
+                )
+            );
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
index 5b659d844..945e0d024 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStepSignature.php
@@ -161,6 +161,16 @@ class EntityWorkflowStepSignature implements TrackCreationInterface, TrackUpdate
         return EntityWorkflowSignatureStateEnum::PENDING == $this->getState();
     }
 
+    public function isCanceled(): bool
+    {
+        return EntityWorkflowSignatureStateEnum::CANCELED === $this->getState();
+    }
+
+    public function isRejected(): bool
+    {
+        return EntityWorkflowSignatureStateEnum::REJECTED === $this->getState();
+    }
+
     /**
      * Checks whether all signatures associated with a given workflow step are not pending.
      *
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index b0e401645..3cefd2a41 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -3,7 +3,7 @@
 <div class="container">
     {% for s in signatures %}
         <div class="row row-hover align-items-center">
-                <div class="col-sm-12 col-md-8">
+                <div class="col-sm-12 col-md-5">
                     {% if s.signerKind == 'person' %}
                         {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
                             action: 'show', displayBadge: true,
@@ -19,21 +19,27 @@
                         } %}
                     {% endif %}
                 </div>
-                <div class="col-sm-12 col-md-4">
+                <div class="col-sm-12 col-md-7 text-end">
                         {% if s.isSigned %}
-                            <span class="text-end">{{ 'workflow.signature_zone.has_signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                            <span class="text-end">{{ 'workflow.signature.signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                        {% elseif s.isCanceled %}
+                            <span class="text-end">{{ 'workflow.signature.canceled_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                        {% elseif s.isRejected%}
+                            <span class="text-end">{{ 'workflow.signature.rejected_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
                         {% else %}
-                            {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s) %}
+                            {% if (is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) or is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s)) %}
                                 <ul class="record_actions slim">
-                                    <li>
-                                        <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                                        {% if s.state is same as('signed') %}
-                                            <p class="updatedBy">{{ s.stateDate }}</p>
-                                        {% endif %}
-                                    </li>
+                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) %}
+                                        <li>
+                                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_cancel', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_cancel'|trans }}</a>
+                                        </li>
+                                    {% endif %}
+                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s) %}
+                                        <li>
+                                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                                        </li>
+                                    {% endif %}
                                 </ul>
-                            {% else %}
-                                <span class="text-end">{{ 'workflow.waiting_for_signature'|trans }}</span>
                             {% endif %}
                         {% endif %}
                 </div>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
new file mode 100644
index 000000000..aaad933cf
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
@@ -0,0 +1,20 @@
+{% extends '@ChillMain/layout.html.twig' %}
+
+{% block title %}{{ 'workflow.signature.cancel_signature_of'|trans({ '%signer%': signature.signer|chill_entity_render_string }) }}{% endblock %}
+
+{% block content %}
+    <h1>{{ block('title') }}</h1>
+
+    <p>{{ 'workflow.signature.are_you_sure'|trans({'%signer%': signature.signer|chill_entity_render_string}) }}</p>
+
+    {{ form_start(form) }}
+    <ul class="record_actions sticky-form-buttons">
+        <li class="cancel">
+            <a class="btn btn-cancel" href="{{ chill_return_path_or('chill_main_workflow_show', {'id': signature.step.entityWorkflow.id}) }}">{{ 'Cancel'|trans }}</a>
+        </li>
+        <li>
+            {{ form_widget(form.confirm, {'attr': {'class': 'btn btn-misc'}}) }}
+        </li>
+    </ul>
+    {{ form_end(form) }}
+{% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
index 683f1352f..35a640a07 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
@@ -20,9 +20,12 @@ final class EntityWorkflowStepSignatureVoter extends Voter
 {
     public const SIGN = 'CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN';
 
+    public const CANCEL = 'CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL';
+
     protected function supports(string $attribute, $subject)
     {
-        return $subject instanceof EntityWorkflowStepSignature && self::SIGN === $attribute;
+        return $subject instanceof EntityWorkflowStepSignature
+            && in_array($attribute, [self::SIGN, self::CANCEL], true);
     }
 
     protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token)
diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
index 3e2871810..06046d111 100644
--- a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -89,6 +89,13 @@ class SignatureStepStateChanger
         $this->logger->info(self::LOG_PREFIX.'Transition automatically applied', ['signatureId' => $signature->getId()]);
     }
 
+    public function markSignatureAsCanceled(EntityWorkflowStepSignature $signature): void
+    {
+        $signature
+            ->setState(EntityWorkflowSignatureStateEnum::CANCELED)
+            ->setStateDate($this->clock->now());
+    }
+
     private function getPreviousSender(EntityWorkflowStep $entityWorkflowStep): ?User
     {
         $stepsChained = $entityWorkflowStep->getEntityWorkflow()->getStepsChained();
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index a0753f7a6..7f941b13a 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -45,8 +45,10 @@ workflow:
             few {# workflows}
             other {# workflows}
         }
-    signature_zone:
-        has_signed_statement: 'A signé le {datetime, date, short} à {datetime, time, short}'
+    signature:
+        signed_statement: 'Signature appliquée le {datetime, date, short} à {datetime, time, short}'
+        rejected_statement: 'Signature rejectée le {datetime, date, short} à {datetime, time, short}'
+        canceled_statement: 'Signature annulée le {datetime, date, short} à {datetime, time, short}'
 
 
 duration:
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 495b9a3bd..12ecb09a7 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -538,6 +538,7 @@ workflow:
     signature_zone:
         title: Signatures électroniques
         button_sign: Signer
+        button_cancel: Annuler
         metadata:
             sign_by: 'Signature pour %name%'
             docType: Type de document
@@ -550,6 +551,10 @@ workflow:
         user: Utilisateur
         already_signed_alert: La signature a déjà été appliquée
 
+    signature:
+        cancel_signature_of: Annulation de la signature de %signer%
+        are_you_sure: Êtes-vous sûr de vouloir annuler la signature de %signer%
+
 
 Subscribe final: Recevoir une notification à l'étape finale
 Subscribe all steps: Recevoir une notification à chaque étape
diff --git a/src/Bundle/ChillPersonBundle/Tests/Controller/WorkflowSignatureCancelControllerStepTest.php b/src/Bundle/ChillPersonBundle/Tests/Controller/WorkflowSignatureCancelControllerStepTest.php
new file mode 100644
index 000000000..727f525d3
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Controller/WorkflowSignatureCancelControllerStepTest.php
@@ -0,0 +1,86 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Controller;
+
+use Chill\MainBundle\Controller\WorkflowSignatureCancelController;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Routing\ChillUrlGeneratorInterface;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowStepSignatureVoter;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Doctrine\ORM\EntityManager;
+use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;
+use Symfony\Component\Form\FormFactoryInterface;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\RequestStack;
+use Symfony\Component\Routing\RequestContext;
+use Symfony\Component\Security\Core\Security;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class WorkflowSignatureCancelControllerStepTest extends WebTestCase
+{
+    private FormFactoryInterface $formFactory;
+    private SignatureStepStateChanger $signatureStepStateChanger;
+    private ChillUrlGeneratorInterface $chillUrlGenerator;
+    private RequestStack $requestStack;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+
+        $this->formFactory = self::getContainer()->get('form.factory');
+        $this->signatureStepStateChanger = self::getContainer()->get(SignatureStepStateChanger::class);
+        $this->chillUrlGenerator = self::getContainer()->get(ChillUrlGeneratorInterface::class);
+
+        $requestContext = self::getContainer()->get(RequestContext::class);
+        $requestContext->setParameter('_locale', 'fr');
+
+        $this->requestStack = self::getContainer()->get(RequestStack::class);
+
+    }
+
+    public function testCancelSignatureGet(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureUserSignature = new User();
+        $entityWorkflow->setStep('signature', $dto, 'to_signature', new \DateTimeImmutable(), new User());
+        $signature = $entityWorkflow->getCurrentStep()->getSignatures()->first();
+
+        $security = $this->createMock(Security::class);
+        $security->expects($this->once())->method('isGranted')
+            ->with(EntityWorkflowStepSignatureVoter::CANCEL, $signature)->willReturn(true);
+
+        $entityManager = $this->createMock(EntityManager::class);
+
+        $twig = $this->createMock(Environment::class);
+        $twig->expects($this->once())->method('render')->withAnyParameters()
+            ->willReturn('template');
+
+        $controller = new WorkflowSignatureCancelController($entityManager, $security, $this->formFactory, $twig, $this->signatureStepStateChanger, $this->chillUrlGenerator);
+
+        $request = new Request();
+        $request->setMethod('GET');
+
+        $this->requestStack->push($request);
+
+        $response = $controller->cancelSignature($signature, $request);
+
+        self::assertEquals(200, $response->getStatusCode());
+    }
+}

From cfce5317540058a576bfd3f2633dd8bdfe1d4f3a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 25 Sep 2024 11:31:27 +0200
Subject: [PATCH 278/375] Add reject functionality for workflow signatures

Implemented the ability to reject workflow signatures by adding necessary templates, routes, and authorization checks. Updated the `WorkflowSignatureCancelController` to handle rejection and modified existing templates and translations to support the new feature.
---
 .../WorkflowSignatureCancelController.php     | 35 +++++++++++++++++--
 .../views/Workflow/_signature.html.twig       |  5 +++
 .../views/WorkflowSignature/cancel.html.twig  |  2 +-
 .../views/WorkflowSignature/reject.html.twig  | 20 +++++++++++
 .../EntityWorkflowStepSignatureVoter.php      |  4 ++-
 .../Workflow/SignatureStepStateChanger.php    | 31 ++++++++++------
 .../translations/messages.fr.yml              |  6 ++--
 7 files changed, 86 insertions(+), 17 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/reject.html.twig

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
index 20fce559a..95cd1b779 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowSignatureCancelController.php
@@ -40,7 +40,36 @@ final readonly class WorkflowSignatureCancelController
     #[Route('/{_locale}/main/workflow/signature/{id}/cancel', name: 'chill_main_workflow_signature_cancel')]
     public function cancelSignature(EntityWorkflowStepSignature $signature, Request $request): Response
     {
-        if (!$this->security->isGranted(EntityWorkflowStepSignatureVoter::CANCEL, $signature)) {
+        return $this->markSignatureAction(
+            $signature,
+            $request,
+            EntityWorkflowStepSignatureVoter::CANCEL,
+            function (EntityWorkflowStepSignature $signature) {$this->signatureStepStateChanger->markSignatureAsCanceled($signature); },
+            '@ChillMain/WorkflowSignature/cancel.html.twig',
+        );
+    }
+
+    #[Route('/{_locale}/main/workflow/signature/{id}/reject', name: 'chill_main_workflow_signature_reject')]
+    public function rejectSignature(EntityWorkflowStepSignature $signature, Request $request): Response
+    {
+        return $this->markSignatureAction(
+            $signature,
+            $request,
+            EntityWorkflowStepSignatureVoter::REJECT,
+            function (EntityWorkflowStepSignature $signature) {$this->signatureStepStateChanger->markSignatureAsRejected($signature); },
+            '@ChillMain/WorkflowSignature/reject.html.twig',
+        );
+    }
+
+    private function markSignatureAction(
+        EntityWorkflowStepSignature $signature,
+        Request $request,
+        string $permissionAttribute,
+        callable $markSignature,
+        string $template,
+    ): Response {
+
+        if (!$this->security->isGranted($permissionAttribute, $signature)) {
             throw new AccessDeniedHttpException('not allowed to cancel this signature');
         }
 
@@ -50,7 +79,7 @@ final readonly class WorkflowSignatureCancelController
         $form->handleRequest($request);
 
         if ($form->isSubmitted() && $form->isValid()) {
-            $this->signatureStepStateChanger->markSignatureAsCanceled($signature);
+            $markSignature($signature);
             $this->entityManager->flush();
 
             return new RedirectResponse(
@@ -61,7 +90,7 @@ final readonly class WorkflowSignatureCancelController
         return
             new Response(
                 $this->twig->render(
-                    '@ChillMain/WorkflowSignature/cancel.html.twig',
+                    $template,
                     ['form' => $form->createView(), 'signature' => $signature]
                 )
             );
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index 3cefd2a41..42a3b68d8 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -29,6 +29,11 @@
                         {% else %}
                             {% if (is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) or is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s)) %}
                                 <ul class="record_actions slim">
+                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_REJECT', s) %}
+                                        <li>
+                                            <a class="btn btn-remove" href="{{ chill_path_add_return_path('chill_main_workflow_signature_reject', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_reject'|trans }}</a>
+                                        </li>
+                                    {% endif %}
                                     {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) %}
                                         <li>
                                             <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_cancel', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_cancel'|trans }}</a>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
index aaad933cf..583a5af4c 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/cancel.html.twig
@@ -5,7 +5,7 @@
 {% block content %}
     <h1>{{ block('title') }}</h1>
 
-    <p>{{ 'workflow.signature.are_you_sure'|trans({'%signer%': signature.signer|chill_entity_render_string}) }}</p>
+    <p>{{ 'workflow.signature.cancel_are_you_sure'|trans({'%signer%': signature.signer|chill_entity_render_string}) }}</p>
 
     {{ form_start(form) }}
     <ul class="record_actions sticky-form-buttons">
diff --git a/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/reject.html.twig b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/reject.html.twig
new file mode 100644
index 000000000..f4047268e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/WorkflowSignature/reject.html.twig
@@ -0,0 +1,20 @@
+{% extends '@ChillMain/layout.html.twig' %}
+
+{% block title %}{{ 'workflow.signature.reject_signature_of'|trans({ '%signer%': signature.signer|chill_entity_render_string }) }}{% endblock %}
+
+{% block content %}
+    <h1>{{ block('title') }}</h1>
+
+    <p>{{ 'workflow.signature.reject_are_you_sure'|trans({'%signer%': signature.signer|chill_entity_render_string}) }}</p>
+
+    {{ form_start(form) }}
+    <ul class="record_actions sticky-form-buttons">
+        <li class="cancel">
+            <a class="btn btn-cancel" href="{{ chill_return_path_or('chill_main_workflow_show', {'id': signature.step.entityWorkflow.id}) }}">{{ 'Cancel'|trans }}</a>
+        </li>
+        <li>
+            {{ form_widget(form.confirm, {'attr': {'class': 'btn btn-misc'}}) }}
+        </li>
+    </ul>
+    {{ form_end(form) }}
+{% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
index 35a640a07..ef2813e30 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowStepSignatureVoter.php
@@ -22,10 +22,12 @@ final class EntityWorkflowStepSignatureVoter extends Voter
 
     public const CANCEL = 'CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL';
 
+    public const REJECT = 'CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_REJECT';
+
     protected function supports(string $attribute, $subject)
     {
         return $subject instanceof EntityWorkflowStepSignature
-            && in_array($attribute, [self::SIGN, self::CANCEL], true);
+            && in_array($attribute, [self::SIGN, self::CANCEL, self::REJECT], true);
     }
 
     protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token)
diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
index 06046d111..08e1773cc 100644
--- a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -34,11 +34,29 @@ class SignatureStepStateChanger
         $signature
             ->setState(EntityWorkflowSignatureStateEnum::SIGNED)
             ->setZoneSignatureIndex($atIndex)
-            ->setStateDate($this->clock->now())
-        ;
-
+            ->setStateDate($this->clock->now());
         $this->logger->info(self::LOG_PREFIX.'Mark signature entity as signed', ['signatureId' => $signature->getId(), 'index' => (string) $atIndex]);
+        $this->onPostMark($signature);
+    }
 
+    public function markSignatureAsCanceled(EntityWorkflowStepSignature $signature): void
+    {
+        $signature
+            ->setState(EntityWorkflowSignatureStateEnum::CANCELED)
+            ->setStateDate($this->clock->now());
+        $this->logger->info(self::LOG_PREFIX.'Mark signature entity as canceled', ['signatureId' => $signature->getId()]);
+    }
+
+    public function markSignatureAsRejected(EntityWorkflowStepSignature $signature): void
+    {
+        $signature
+            ->setState(EntityWorkflowSignatureStateEnum::REJECTED)
+            ->setStateDate($this->clock->now());
+        $this->logger->info(self::LOG_PREFIX.'Mark signature entity as rejected', ['signatureId' => $signature->getId()]);
+    }
+
+    private function onPostMark(EntityWorkflowStepSignature $signature): void
+    {
         if (!EntityWorkflowStepSignature::isAllSignatureNotPendingForStep($signature->getStep())) {
             $this->logger->info(self::LOG_PREFIX.'This is not the last signature, skipping transition to another place', ['signatureId' => $signature->getId()]);
 
@@ -89,13 +107,6 @@ class SignatureStepStateChanger
         $this->logger->info(self::LOG_PREFIX.'Transition automatically applied', ['signatureId' => $signature->getId()]);
     }
 
-    public function markSignatureAsCanceled(EntityWorkflowStepSignature $signature): void
-    {
-        $signature
-            ->setState(EntityWorkflowSignatureStateEnum::CANCELED)
-            ->setStateDate($this->clock->now());
-    }
-
     private function getPreviousSender(EntityWorkflowStep $entityWorkflowStep): ?User
     {
         $stepsChained = $entityWorkflowStep->getEntityWorkflow()->getStepsChained();
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 12ecb09a7..8bade3ce6 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -539,6 +539,7 @@ workflow:
         title: Signatures électroniques
         button_sign: Signer
         button_cancel: Annuler
+        button_reject: Rejeter
         metadata:
             sign_by: 'Signature pour %name%'
             docType: Type de document
@@ -553,8 +554,9 @@ workflow:
 
     signature:
         cancel_signature_of: Annulation de la signature de %signer%
-        are_you_sure: Êtes-vous sûr de vouloir annuler la signature de %signer%
-
+        cancel_are_you_sure: Êtes-vous sûr de vouloir annuler la signature de %signer%
+        reject_signature_of: Rejet de la signature de %signer%
+        reject_are_you_sure: Êtes-vous sûr de vouloir rejeter la signature de %signer%
 
 Subscribe final: Recevoir une notification à l'étape finale
 Subscribe all steps: Recevoir une notification à chaque étape

From 5287824dbefda465479bdcf2df14b688b86cd050 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 25 Sep 2024 11:58:41 +0200
Subject: [PATCH 279/375] Add async handling for signature state changes

Introduce MessageBus to handle post-signature operations asynchronously. This ensures that further steps are executed through dispatched messages, improving system scalability and performance. Implement new handlers and messages for the workflow state transitions.
---
 .../SignatureStepStateChangerTest.php         | 13 +++++-
 .../PostSignatureStateChangeHandler.php       | 41 +++++++++++++++++++
 .../PostSignatureStateChangeMessage.php       | 22 ++++++++++
 .../Workflow/SignatureStepStateChanger.php    | 14 ++++++-
 4 files changed, 86 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeHandler.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeMessage.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
index 16579cbb5..fa3cd5c2d 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
@@ -21,6 +21,7 @@ use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\NullLogger;
 use Symfony\Component\Clock\MockClock;
+use Symfony\Component\Messenger\MessageBus;
 use Symfony\Component\Workflow\DefinitionBuilder;
 use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
 use Symfony\Component\Workflow\Registry;
@@ -44,7 +45,9 @@ class SignatureStepStateChangerTest extends TestCase
         $workflow = $registry->get($entityWorkflow, 'dummy');
         $clock = new MockClock();
         $user = new User();
-        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger());
+
+        $messengerBus = new MessageBus([]);
+        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger(), $messengerBus);
 
         // move it to signature
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
@@ -61,6 +64,8 @@ class SignatureStepStateChangerTest extends TestCase
 
         // we mark the first signature as signed
         $changer->markSignatureAsSigned($signatures[0], 1);
+        // the next step should be done by handling an async message
+        $changer->onPostMark($signatures[0]);
 
         self::assertEquals('signature', $entityWorkflow->getStep(), 'there should have any change in the entity workflow step');
         self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[0]->getState());
@@ -70,6 +75,8 @@ class SignatureStepStateChangerTest extends TestCase
 
         // we mark the second signature as signed
         $changer->markSignatureAsSigned($signatures[1], 2);
+        // the next step should be done by handling an async message
+        $changer->onPostMark($signatures[1]);
         self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[1]->getState());
         self::assertEquals('post-signature', $entityWorkflow->getStep(), 'the entity workflow step should be post-signature');
         self::assertContains($user, $entityWorkflow->getCurrentStep()->getAllDestUser());
@@ -85,7 +92,7 @@ class SignatureStepStateChangerTest extends TestCase
         $workflow = $registry->get($entityWorkflow, 'dummy');
         $clock = new MockClock();
         $user = new User();
-        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger());
+        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger(), new MessageBus([]));
 
         // move it to signature
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
@@ -102,6 +109,8 @@ class SignatureStepStateChangerTest extends TestCase
 
         // we mark the first signature as signed
         $changer->markSignatureAsSigned($signatures[0], 1);
+        // the next step should be done by handling an async message
+        $changer->onPostMark($signatures[0]);
 
         self::assertEquals('signature-without-metadata', $entityWorkflow->getStep(), 'there should have any change in the entity workflow step');
         self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[0]->getState());
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeHandler.php
new file mode 100644
index 000000000..1a0d7bc5d
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeHandler.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepSignatureRepository;
+use Chill\MainBundle\Workflow\SignatureStepStateChanger;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+
+final readonly class PostSignatureStateChangeHandler implements MessageHandlerInterface
+{
+    public function __construct(
+        private EntityWorkflowStepSignatureRepository $entityWorkflowStepSignatureRepository,
+        private SignatureStepStateChanger $signatureStepStateChanger,
+        private EntityManagerInterface $entityManager,
+    ) {}
+
+    public function __invoke(PostSignatureStateChangeMessage $message): void
+    {
+        $signature = $this->entityWorkflowStepSignatureRepository->find($message->signatureId);
+
+        if (null === $signature) {
+            throw new UnrecoverableMessageHandlingException('signature not found');
+        }
+
+        $this->signatureStepStateChanger->onPostMark($signature);
+
+        $this->entityManager->flush();
+        $this->entityManager->clear();
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeMessage.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeMessage.php
new file mode 100644
index 000000000..44db0c500
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSignatureStateChangeMessage.php
@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+/**
+ * Message which is dispatched after a notification has a step changed.
+ */
+class PostSignatureStateChangeMessage
+{
+    public function __construct(
+        public int $signatureId,
+    ) {}
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
index 08e1773cc..58a6485c2 100644
--- a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -15,8 +15,10 @@ use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
+use Chill\MainBundle\Workflow\Messenger\PostSignatureStateChangeMessage;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Workflow\Registry;
 
 class SignatureStepStateChanger
@@ -27,6 +29,7 @@ class SignatureStepStateChanger
         private readonly Registry $registry,
         private readonly ClockInterface $clock,
         private readonly LoggerInterface $logger,
+        private readonly MessageBusInterface $messageBus,
     ) {}
 
     public function markSignatureAsSigned(EntityWorkflowStepSignature $signature, ?int $atIndex): void
@@ -36,7 +39,7 @@ class SignatureStepStateChanger
             ->setZoneSignatureIndex($atIndex)
             ->setStateDate($this->clock->now());
         $this->logger->info(self::LOG_PREFIX.'Mark signature entity as signed', ['signatureId' => $signature->getId(), 'index' => (string) $atIndex]);
-        $this->onPostMark($signature);
+        $this->messageBus->dispatch(new PostSignatureStateChangeMessage((int) $signature->getId()));
     }
 
     public function markSignatureAsCanceled(EntityWorkflowStepSignature $signature): void
@@ -45,6 +48,7 @@ class SignatureStepStateChanger
             ->setState(EntityWorkflowSignatureStateEnum::CANCELED)
             ->setStateDate($this->clock->now());
         $this->logger->info(self::LOG_PREFIX.'Mark signature entity as canceled', ['signatureId' => $signature->getId()]);
+        $this->messageBus->dispatch(new PostSignatureStateChangeMessage((int) $signature->getId()));
     }
 
     public function markSignatureAsRejected(EntityWorkflowStepSignature $signature): void
@@ -53,9 +57,15 @@ class SignatureStepStateChanger
             ->setState(EntityWorkflowSignatureStateEnum::REJECTED)
             ->setStateDate($this->clock->now());
         $this->logger->info(self::LOG_PREFIX.'Mark signature entity as rejected', ['signatureId' => $signature->getId()]);
+        $this->messageBus->dispatch(new PostSignatureStateChangeMessage((int) $signature->getId()));
     }
 
-    private function onPostMark(EntityWorkflowStepSignature $signature): void
+    /**
+     * Executed after a signature has a new state.
+     *
+     * This should be executed only by a system user (without any user registered)
+     */
+    public function onPostMark(EntityWorkflowStepSignature $signature): void
     {
         if (!EntityWorkflowStepSignature::isAllSignatureNotPendingForStep($signature->getStep())) {
             $this->logger->info(self::LOG_PREFIX.'This is not the last signature, skipping transition to another place', ['signatureId' => $signature->getId()]);

From b4fa478177671258b31e5f97fc4fdc14880fd178 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 11:17:50 +0200
Subject: [PATCH 280/375] Add UserGroup to chill (import from branch
 ticket-app-master)

Import the UserGrou feature from ticket-app-master branch. This includes:

- import all the entities and migrations, modification of typescript types, templating, and so on;
- apply some verification and formatting rules, like:
  - reformat file on chill.api.specs.yaml (MainBundle)
  - reformat file on types.ts (Main Bundle)

Migrations kept the same filename.
---
 .../Controller/UserGroupApiController.php     |  16 +
 .../DataFixtures/ORM/LoadUserGroup.php        |  68 ++++
 .../ChillMainExtension.php                    |  17 +
 .../ChillMainBundle/Entity/UserGroup.php      | 151 ++++++++
 .../ChillMainBundle/Resources/public/types.ts | 229 ++++++------
 .../views/Entity/user_group.html.twig         |   1 +
 .../Templating/Entity/UserGroupRender.php     |  38 ++
 .../Entity/UserGroupRenderInterface.php       |  14 +
 .../Constraint/UserGroupDoNotExclude.php      |  31 ++
 .../Validator/UserGroupDoNotExclude.php       |  69 ++++
 .../ChillMainBundle/chill.api.specs.yaml      | 352 ++++++++++--------
 .../config/services/templating.yaml           |   4 +
 .../config/services/validator.yaml            |   3 +
 .../migrations/Version20240416145021.php      |  41 ++
 .../migrations/Version20240422091752.php      |  41 ++
 .../Resources/public/chill/scss/badge.scss    |   7 +
 16 files changed, 823 insertions(+), 259 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/UserGroupApiController.php
 create mode 100644 src/Bundle/ChillMainBundle/DataFixtures/ORM/LoadUserGroup.php
 create mode 100644 src/Bundle/ChillMainBundle/Entity/UserGroup.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Entity/user_group.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
 create mode 100644 src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRenderInterface.php
 create mode 100644 src/Bundle/ChillMainBundle/Validation/Constraint/UserGroupDoNotExclude.php
 create mode 100644 src/Bundle/ChillMainBundle/Validation/Validator/UserGroupDoNotExclude.php
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240416145021.php
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240422091752.php

diff --git a/src/Bundle/ChillMainBundle/Controller/UserGroupApiController.php b/src/Bundle/ChillMainBundle/Controller/UserGroupApiController.php
new file mode 100644
index 000000000..602b84ec5
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/UserGroupApiController.php
@@ -0,0 +1,16 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\CRUD\Controller\ApiController;
+
+class UserGroupApiController extends ApiController {}
diff --git a/src/Bundle/ChillMainBundle/DataFixtures/ORM/LoadUserGroup.php b/src/Bundle/ChillMainBundle/DataFixtures/ORM/LoadUserGroup.php
new file mode 100644
index 000000000..614a83515
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/DataFixtures/ORM/LoadUserGroup.php
@@ -0,0 +1,68 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\DataFixtures\ORM;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
+use Doctrine\Bundle\FixturesBundle\Fixture;
+use Doctrine\Bundle\FixturesBundle\FixtureGroupInterface;
+use Doctrine\Persistence\ObjectManager;
+
+class LoadUserGroup extends Fixture implements FixtureGroupInterface
+{
+    public static function getGroups(): array
+    {
+        return ['user-group'];
+    }
+
+    public function load(ObjectManager $manager)
+    {
+        $centerASocial = $manager->getRepository(User::class)->findOneBy(['username' => 'center a_social']);
+        $centerBSocial = $manager->getRepository(User::class)->findOneBy(['username' => 'center b_social']);
+        $multiCenter = $manager->getRepository(User::class)->findOneBy(['username' => 'multi_center']);
+        $administrativeA = $manager->getRepository(User::class)->findOneBy(['username' => 'center a_administrative']);
+        $administrativeB = $manager->getRepository(User::class)->findOneBy(['username' => 'center b_administrative']);
+
+        $level1 = $this->generateLevelGroup('Niveau 1', '#eec84aff', '#000000ff', 'level');
+        $level1->addUser($centerASocial)->addUser($centerBSocial);
+        $manager->persist($level1);
+
+        $level2 = $this->generateLevelGroup('Niveau 2', ' #e2793dff', '#000000ff', 'level');
+        $level2->addUser($multiCenter);
+        $manager->persist($level2);
+
+        $level3 = $this->generateLevelGroup('Niveau 3', ' #df4949ff', '#000000ff', 'level');
+        $level3->addUser($multiCenter);
+        $manager->persist($level3);
+
+        $tss = $this->generateLevelGroup('Travailleur sociaux', '#43b29dff', '#000000ff', '');
+        $tss->addUser($multiCenter)->addUser($centerASocial)->addUser($centerBSocial);
+        $manager->persist($tss);
+        $admins = $this->generateLevelGroup('Administratif', '#334d5cff', '#000000ff', '');
+        $admins->addUser($administrativeA)->addUser($administrativeB);
+        $manager->persist($admins);
+
+        $manager->flush();
+    }
+
+    private function generateLevelGroup(string $title, string $backgroundColor, string $foregroundColor, string $excludeKey): UserGroup
+    {
+        $userGroup = new UserGroup();
+
+        return $userGroup
+            ->setLabel(['fr' => $title])
+            ->setBackgroundColor($backgroundColor)
+            ->setForegroundColor($foregroundColor)
+            ->setExcludeKey($excludeKey)
+        ;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 9d788c64e..97df404af 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -24,6 +24,7 @@ use Chill\MainBundle\Controller\LocationTypeController;
 use Chill\MainBundle\Controller\NewsItemController;
 use Chill\MainBundle\Controller\RegroupmentController;
 use Chill\MainBundle\Controller\UserController;
+use Chill\MainBundle\Controller\UserGroupApiController;
 use Chill\MainBundle\Controller\UserJobApiController;
 use Chill\MainBundle\Controller\UserJobController;
 use Chill\MainBundle\DependencyInjection\Widget\Factory\WidgetFactoryInterface;
@@ -59,6 +60,7 @@ use Chill\MainBundle\Entity\LocationType;
 use Chill\MainBundle\Entity\NewsItem;
 use Chill\MainBundle\Entity\Regroupment;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\UserJob;
 use Chill\MainBundle\Form\CenterType;
 use Chill\MainBundle\Form\CivilityType;
@@ -803,6 +805,21 @@ class ChillMainExtension extends Extension implements
                         ],
                     ],
                 ],
+                [
+                    'class' => UserGroup::class,
+                    'controller' => UserGroupApiController::class,
+                    'name' => 'user-group',
+                    'base_path' => '/api/1.0/main/user-group',
+                    'base_role' => 'ROLE_USER',
+                    'actions' => [
+                        '_index' => [
+                            'methods' => [
+                                Request::METHOD_GET => true,
+                                Request::METHOD_HEAD => true,
+                            ],
+                        ],
+                    ],
+                ],
             ],
         ]);
     }
diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
new file mode 100644
index 000000000..03da74326
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -0,0 +1,151 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Entity;
+
+use Doctrine\Common\Collections\ArrayCollection;
+use Doctrine\Common\Collections\Collection;
+use Doctrine\ORM\Mapping as ORM;
+use Symfony\Component\Serializer\Annotation as Serializer;
+
+#[ORM\Entity]
+#[ORM\Table(name: 'chill_main_user_group')]
+#[Serializer\DiscriminatorMap(typeProperty: 'type', mapping: ['user_group' => UserGroup::class])]
+class UserGroup
+{
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, nullable: false)]
+    #[Serializer\Groups(['read'])]
+    private ?int $id = null;
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, nullable: false, options: ['default' => '[]'])]
+    #[Serializer\Groups(['read'])]
+    private array $label = [];
+
+    /**
+     * @var \Doctrine\Common\Collections\Collection<int, \Chill\MainBundle\Entity\User>
+     */
+    #[ORM\ManyToMany(targetEntity: User::class)]
+    #[ORM\JoinTable(name: 'chill_main_user_group_user')]
+    private Collection $users;
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => '#ffffffff'])]
+    #[Serializer\Groups(['read'])]
+    private string $backgroundColor = '#ffffffff';
+
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => '#000000ff'])]
+    #[Serializer\Groups(['read'])]
+    private string $foregroundColor = '#000000ff';
+
+    /**
+     * Groups with same exclude key are mutually exclusive: adding one in a many-to-one relationship
+     * will exclude others.
+     *
+     * An empty string means "no exclusion"
+     */
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
+    #[Serializer\Groups(['read'])]
+    private string $excludeKey = '';
+
+    public function __construct()
+    {
+        $this->users = new ArrayCollection();
+    }
+
+    public function addUser(User $user): self
+    {
+        if (!$this->users->contains($user)) {
+            $this->users[] = $user;
+        }
+
+        return $this;
+    }
+
+    public function removeUser(User $user): self
+    {
+        if ($this->users->contains($user)) {
+            $this->users->removeElement($user);
+        }
+
+        return $this;
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getLabel(): array
+    {
+        return $this->label;
+    }
+
+    public function getUsers(): Collection
+    {
+        return $this->users;
+    }
+
+    public function getForegroundColor(): string
+    {
+        return $this->foregroundColor;
+    }
+
+    public function getExcludeKey(): string
+    {
+        return $this->excludeKey;
+    }
+
+    public function getBackgroundColor(): string
+    {
+        return $this->backgroundColor;
+    }
+
+    public function setForegroundColor(string $foregroundColor): self
+    {
+        $this->foregroundColor = $foregroundColor;
+
+        return $this;
+    }
+
+    public function setBackgroundColor(string $backgroundColor): self
+    {
+        $this->backgroundColor = $backgroundColor;
+
+        return $this;
+    }
+
+    public function setExcludeKey(string $excludeKey): self
+    {
+        $this->excludeKey = $excludeKey;
+
+        return $this;
+    }
+
+    public function setLabel(array $label): self
+    {
+        $this->label = $label;
+
+        return $this;
+    }
+
+    /**
+     * Checks if the current object is an instance of the UserGroup class.
+     *
+     * In use in twig template, to discriminate when there an object can be polymorphic.
+     *
+     * @return bool returns true if the current object is an instance of UserGroup, false otherwise
+     */
+    public function isUserGroup(): bool
+    {
+        return true;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Resources/public/types.ts b/src/Bundle/ChillMainBundle/Resources/public/types.ts
index 304ebd8e4..8d2ea2ded 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillMainBundle/Resources/public/types.ts
@@ -1,164 +1,175 @@
 export interface DateTime {
-  datetime: string;
-  datetime8601: string
+    datetime: string;
+    datetime8601: string;
 }
 
 export interface Civility {
-  id: number;
-  // TODO
+    id: number;
+    // TODO
 }
 
 export interface Job {
-  id: number;
-  type: "user_job";
-  label: {
-    "fr": string; // could have other key. How to do that in ts ?
-  }
+    id: number;
+    type: "user_job";
+    label: {
+        fr: string; // could have other key. How to do that in ts ?
+    };
 }
 
 export interface Center {
-  id: number;
-  type: "center";
-  name: string;
+    id: number;
+    type: "center";
+    name: string;
 }
 
 export interface Scope {
-  id: number;
-  type: "scope";
-  name: {
-    "fr": string
-  }
+    id: number;
+    type: "scope";
+    name: {
+        fr: string;
+    };
 }
 
 export interface User {
-  type: "user";
-  id: number;
-  username: string;
-  text: string;
-  text_without_absence: string;
-  email: string;
-  user_job: Job;
-  label: string;
-  // todo: mainCenter; mainJob; etc..
+    type: "user";
+    id: number;
+    username: string;
+    text: string;
+    text_without_absence: string;
+    email: string;
+    user_job: Job;
+    label: string;
+    // todo: mainCenter; mainJob; etc..
 }
 
+export interface UserGroup {
+    type: "chill_main_user_group" | "user_group";
+    id: number;
+    label: TranslatableString;
+    backgroundColor: string;
+    foregroundColor: string;
+    excludeKey: string;
+}
+
+export type UserGroupOrUser = User | UserGroup;
+
 export interface UserAssociatedInterface {
-  type: "user";
-  id: number;
-};
-
-export type TranslatableString = {
-  fr?: string;
-  nl?: string;
+    type: "user";
+    id: number;
 }
 
+export type TranslatableString = {
+    fr?: string;
+    nl?: string;
+};
+
 export interface Postcode {
-  id: number;
-  name: string;
-  code: string;
-  center: Point;
+    id: number;
+    name: string;
+    code: string;
+    center: Point;
 }
 
 export type Point = {
-  type: "Point";
-  coordinates: [lat: number, lon: number];
-}
+    type: "Point";
+    coordinates: [lat: number, lon: number];
+};
 
 export interface Country {
-  id: number;
-  name: TranslatableString;
-  code: string;
+    id: number;
+    name: TranslatableString;
+    code: string;
 }
 
-export type AddressRefStatus = 'match'|'to_review'|'reviewed';
+export type AddressRefStatus = "match" | "to_review" | "reviewed";
 
 export interface Address {
-  type: "address";
-  address_id: number;
-  text: string;
-  street: string;
-  streetNumber: string;
-  postcode: Postcode;
-  country: Country;
-  floor: string | null;
-  corridor: string | null;
-  steps: string | null;
-  flat: string | null;
-  buildingName: string | null;
-  distribution: string | null;
-  extra: string | null;
-  confidential: boolean;
-  lines: string[];
-  addressReference: AddressReference | null;
-  validFrom: DateTime;
-  validTo: DateTime | null;
-  point: Point | null;
-  refStatus: AddressRefStatus;
-  isNoAddress: boolean;
+    type: "address";
+    address_id: number;
+    text: string;
+    street: string;
+    streetNumber: string;
+    postcode: Postcode;
+    country: Country;
+    floor: string | null;
+    corridor: string | null;
+    steps: string | null;
+    flat: string | null;
+    buildingName: string | null;
+    distribution: string | null;
+    extra: string | null;
+    confidential: boolean;
+    lines: string[];
+    addressReference: AddressReference | null;
+    validFrom: DateTime;
+    validTo: DateTime | null;
+    point: Point | null;
+    refStatus: AddressRefStatus;
+    isNoAddress: boolean;
 }
 
 export interface AddressWithPoint extends Address {
-  point: Point
+    point: Point;
 }
 
 export interface AddressReference {
-  id: number;
-  createdAt: DateTime | null;
-  deletedAt: DateTime | null;
-  municipalityCode: string;
-  point: Point;
-  postcode: Postcode;
-  refId: string;
-  source: string;
-  street: string;
-  streetNumber: string;
-  updatedAt: DateTime | null;
+    id: number;
+    createdAt: DateTime | null;
+    deletedAt: DateTime | null;
+    municipalityCode: string;
+    point: Point;
+    postcode: Postcode;
+    refId: string;
+    source: string;
+    street: string;
+    streetNumber: string;
+    updatedAt: DateTime | null;
 }
 
 export interface SimpleGeographicalUnit {
-  id: number;
-  layerId: number;
-  unitName: string;
-  unitRefId: string;
+    id: number;
+    layerId: number;
+    unitName: string;
+    unitRefId: string;
 }
 
 export interface GeographicalUnitLayer {
-  id: number;
-  name: TranslatableString;
-  refId: string;
+    id: number;
+    name: TranslatableString;
+    refId: string;
 }
 
 export interface Location {
-  type: "location";
-  id: number;
-  active: boolean;
-  address: Address | null;
-  availableForUsers: boolean;
-  createdAt: DateTime | null;
-  createdBy: User | null;
-  updatedAt: DateTime | null;
-  updatedBy: User | null;
-  email: string | null
-  name: string;
-  phonenumber1: string | null;
-  phonenumber2: string | null;
-  locationType: LocationType;
+    type: "location";
+    id: number;
+    active: boolean;
+    address: Address | null;
+    availableForUsers: boolean;
+    createdAt: DateTime | null;
+    createdBy: User | null;
+    updatedAt: DateTime | null;
+    updatedBy: User | null;
+    email: string | null;
+    name: string;
+    phonenumber1: string | null;
+    phonenumber2: string | null;
+    locationType: LocationType;
 }
 
 export interface LocationAssociated {
-  type: "location";
-  id: number;
+    type: "location";
+    id: number;
 }
 
 export interface LocationType {
-  type: "location-type";
-  id: number;
-  active: boolean;
-  addressRequired: "optional" | "required";
-  availableForUsers: boolean;
-  editableByUsers: boolean;
-  contactData: "optional" | "required";
-  title: TranslatableString;
+    type: "location-type";
+    id: number;
+    active: boolean;
+    addressRequired: "optional" | "required";
+    availableForUsers: boolean;
+    editableByUsers: boolean;
+    contactData: "optional" | "required";
+    title: TranslatableString;
 }
 
 export interface NewsItemType {
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Entity/user_group.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Entity/user_group.html.twig
new file mode 100644
index 000000000..cb6c3be40
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Entity/user_group.html.twig
@@ -0,0 +1 @@
+<span class="badge-user-group" style="color: {{ user_group.foregroundColor }}; background-color: {{  user_group.backgroundColor }};">{{ user_group.label|localize_translatable_string }}</span>
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
new file mode 100644
index 000000000..b63fca8cf
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
@@ -0,0 +1,38 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Templating\Entity;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Twig\Environment;
+
+final readonly class UserGroupRender implements UserGroupRenderInterface
+{
+    public function __construct(private TranslatableStringHelperInterface $translatableStringHelper, private Environment $environment) {}
+
+    public function renderBox($entity, array $options): string
+    {
+        /* @var $entity UserGroup */
+        return $this->environment->render('@ChillMain/Entity/user_group.html.twig', ['user_group' => $entity]);
+    }
+
+    public function renderString($entity, array $options): string
+    {
+        /* @var $entity UserGroup */
+        return $this->translatableStringHelper->localize($entity->getLabel());
+    }
+
+    public function supports(object $entity, array $options): bool
+    {
+        return $entity instanceof UserGroup;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRenderInterface.php b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRenderInterface.php
new file mode 100644
index 000000000..7ebf70028
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRenderInterface.php
@@ -0,0 +1,14 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Templating\Entity;
+
+interface UserGroupRenderInterface extends ChillEntityRenderInterface {}
diff --git a/src/Bundle/ChillMainBundle/Validation/Constraint/UserGroupDoNotExclude.php b/src/Bundle/ChillMainBundle/Validation/Constraint/UserGroupDoNotExclude.php
new file mode 100644
index 000000000..5ec688e5b
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Validation/Constraint/UserGroupDoNotExclude.php
@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Validation\Constraint;
+
+use Symfony\Component\Validator\Constraint;
+
+#[\Attribute(\Attribute::TARGET_PROPERTY)]
+class UserGroupDoNotExclude extends Constraint
+{
+    public string $message = 'The groups {{ excluded_groups }} do exclude themselves. Please choose one between them';
+    public string $code = 'e16c8226-0090-11ef-8560-f7239594db09';
+
+    public function getTargets()
+    {
+        return [self::PROPERTY_CONSTRAINT];
+    }
+
+    public function validatedBy()
+    {
+        return \Chill\MainBundle\Validation\Validator\UserGroupDoNotExclude::class;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Validation/Validator/UserGroupDoNotExclude.php b/src/Bundle/ChillMainBundle/Validation/Validator/UserGroupDoNotExclude.php
new file mode 100644
index 000000000..9bd7167c7
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Validation/Validator/UserGroupDoNotExclude.php
@@ -0,0 +1,69 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Validation\Validator;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Symfony\Component\Validator\Constraint;
+use Symfony\Component\Validator\ConstraintValidator;
+use Symfony\Component\Validator\Exception\UnexpectedTypeException;
+use Symfony\Component\Validator\Exception\UnexpectedValueException;
+
+final class UserGroupDoNotExclude extends ConstraintValidator
+{
+    public function __construct(private readonly TranslatableStringHelperInterface $translatableStringHelper) {}
+
+    public function validate($value, Constraint $constraint)
+    {
+        if (!$constraint instanceof \Chill\MainBundle\Validation\Constraint\UserGroupDoNotExclude) {
+            throw new UnexpectedTypeException($constraint, UserGroupDoNotExclude::class);
+        }
+
+        if (null === $value) {
+            return;
+        }
+
+        if (!is_iterable($value)) {
+            throw new UnexpectedValueException($value, 'iterable');
+        }
+
+        $groups = [];
+
+        foreach ($value as $gr) {
+            if ($gr instanceof UserGroup) {
+                $groups[$gr->getExcludeKey()][] = $gr;
+            }
+        }
+
+        foreach ($groups as $excludeKey => $groupByKey) {
+            if ('' === $excludeKey) {
+                continue;
+            }
+
+            if (1 < count($groupByKey)) {
+                $excludedGroups = implode(
+                    ', ',
+                    array_map(
+                        fn (UserGroup $group) => $this->translatableStringHelper->localize($group->getLabel()),
+                        $groupByKey
+                    )
+                );
+
+                $this->context
+                    ->buildViolation($constraint->message)
+                    ->setCode($constraint->code)
+                    ->setParameters(['excluded_groups' => $excludedGroups])
+                    ->addViolation();
+            }
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/chill.api.specs.yaml b/src/Bundle/ChillMainBundle/chill.api.specs.yaml
index 1abdfc72e..b31669043 100644
--- a/src/Bundle/ChillMainBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillMainBundle/chill.api.specs.yaml
@@ -5,8 +5,8 @@ info:
     title: "Chill api"
     description: "Api documentation for chill. Currently, work in progress"
 servers:
-    - url: "/api"
-      description: "Your current dev server"
+    -   url: "/api"
+        description: "Your current dev server"
 
 components:
     schemas:
@@ -29,6 +29,42 @@ components:
                     type: string
                 text:
                     type: string
+        UserById:
+            type: object
+            properties:
+                id:
+                    type: integer
+                type:
+                    type: string
+                    enum:
+                        - user
+        UserGroup:
+            type: object
+            properties:
+                id:
+                    type: integer
+                type:
+                    type: string
+                    enum:
+                        - user_group
+                label:
+                    type: object
+                    additionalProperties: true
+                backgroundColor:
+                    type: string
+                foregroundColor:
+                    type: string
+                exclusionKey:
+                    type: string
+        UserGroupById:
+            type: object
+            properties:
+                id:
+                    type: integer
+                type:
+                    type: string
+                    enum:
+                        - user_group
         Center:
             type: object
             properties:
@@ -181,25 +217,25 @@ paths:
                 The results are ordered by relevance, from the most to the lowest relevant.
 
             parameters:
-                - name: q
-                  in: query
-                  required: true
-                  description: the pattern to search
-                  schema:
-                      type: string
-                - name: type[]
-                  in: query
-                  required: true
-                  description: the type entities amongst the search is performed
-                  schema:
-                      type: array
-                      items:
-                          type: string
-                          enum:
-                              - person
-                              - thirdparty
-                              - user
-                              - household
+                -   name: q
+                    in: query
+                    required: true
+                    description: the pattern to search
+                    schema:
+                        type: string
+                -   name: type[]
+                    in: query
+                    required: true
+                    description: the type entities amongst the search is performed
+                    schema:
+                        type: array
+                        items:
+                            type: string
+                            enum:
+                                - person
+                                - thirdparty
+                                - user
+                                - household
             responses:
                 200:
                     description: "OK"
@@ -236,7 +272,7 @@ paths:
                                     minItems: 2
                                     maxItems: 2
                                 postcode:
-                                    $ref: "#/components/schemas/PostalCode"
+                                    $ref: '#/components/schemas/PostalCode'
                                 steps:
                                     type: string
                                 street:
@@ -260,14 +296,14 @@ paths:
                 - address
             summary: Return an address by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The address id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The address id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -284,14 +320,14 @@ paths:
                 - address
             summary: patch an address
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The address id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The address id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             requestBody:
                 required: true
                 content:
@@ -349,14 +385,14 @@ paths:
                 - address
             summary: Duplicate an existing address
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The address id that will be duplicated
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The address id that will be duplicated
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -375,12 +411,12 @@ paths:
                 - address
             summary: Return a list of all reference addresses
             parameters:
-                - in: query
-                  name: postal_code
-                  required: false
-                  schema:
-                      type: integer
-                  description: The id of a postal code to filter the reference addresses
+                -   in: query
+                    name: postal_code
+                    required: false
+                    schema:
+                        type: integer
+                    description: The id of a postal code to filter the reference addresses
             responses:
                 200:
                     description: "ok"
@@ -390,14 +426,14 @@ paths:
                 - address
             summary: Return a reference address by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The reference address id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The reference address id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -417,20 +453,20 @@ paths:
                 - search
             summary: Return a reference address by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The reference address id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
-                - name: q
-                  in: query
-                  required: true
-                  description: The search pattern
-                  schema:
-                      type: string
+                -   name: id
+                    in: path
+                    required: true
+                    description: The reference address id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
+                -   name: q
+                    in: query
+                    required: true
+                    description: The search pattern
+                    schema:
+                        type: string
             responses:
                 200:
                     description: "ok"
@@ -450,12 +486,12 @@ paths:
                 - address
             summary: Return a list of all postal-code
             parameters:
-                - in: query
-                  name: country
-                  required: false
-                  schema:
-                      type: integer
-                  description: The id of a country to filter the postal code
+                -   in: query
+                    name: country
+                    required: false
+                    schema:
+                        type: integer
+                    description: The id of a country to filter the postal code
             responses:
                 200:
                     description: "ok"
@@ -494,14 +530,14 @@ paths:
                 - address
             summary: Return a postal code by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The postal code id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The postal code id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -521,18 +557,18 @@ paths:
                 - search
             summary: Search a postal code
             parameters:
-                - name: q
-                  in: query
-                  required: true
-                  description: The search pattern
-                  schema:
-                      type: string
-                - name: country
-                  in: query
-                  required: false
-                  description: The country id
-                  schema:
-                      type: integer
+                -   name: q
+                    in: query
+                    required: true
+                    description: The search pattern
+                    schema:
+                        type: string
+                -   name: country
+                    in: query
+                    required: false
+                    description: The country id
+                    schema:
+                        type: integer
             responses:
                 200:
                     description: "ok"
@@ -559,14 +595,14 @@ paths:
                 - address
             summary: Return a country by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The country id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The country id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -609,14 +645,14 @@ paths:
                 - user
             summary: Return a user by id
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The user id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The user id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -646,14 +682,14 @@ paths:
                 - scope
             summary: return a list of scopes
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The scope id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The scope id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -721,14 +757,14 @@ paths:
                 - location
             summary: Return the given location
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The location id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The location id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 200:
                     description: "ok"
@@ -788,14 +824,14 @@ paths:
                 - notification
             summary: mark a notification as read
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The notification id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The notification id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 202:
                     description: "accepted"
@@ -807,14 +843,14 @@ paths:
                 - notification
             summary: mark a notification as unread
             parameters:
-                - name: id
-                  in: path
-                  required: true
-                  description: The notification id
-                  schema:
-                      type: integer
-                      format: integer
-                      minimum: 1
+                -   name: id
+                    in: path
+                    required: true
+                    description: The notification id
+                    schema:
+                        type: integer
+                        format: integer
+                        minimum: 1
             responses:
                 202:
                     description: "accepted"
@@ -846,7 +882,7 @@ paths:
                                     type: array
                                     items:
                                         type: integer
-                                        example: [1, 2, 3] # Example array of IDs
+                                        example: [ 1, 2, 3 ] # Example array of IDs
             responses:
                 "202":
                     description: Notifications marked as unread successfully
@@ -934,6 +970,22 @@ paths:
                             schema:
                                 type: array
                                 items:
-                                    $ref: "#/components/schemas/NewsItem"
+                                    $ref: '#/components/schemas/NewsItem'
+                403:
+                    description: "Unauthorized"
+    /1.0/main/user-group.json:
+        get:
+            tags:
+                - user-group
+            summary: Return a list of users-groups
+            responses:
+                200:
+                    description: "ok"
+                    content:
+                        application/json:
+                            schema:
+                                type: array
+                                items:
+                                    $ref: '#/components/schemas/UserGroup'
                 403:
                     description: "Unauthorized"
diff --git a/src/Bundle/ChillMainBundle/config/services/templating.yaml b/src/Bundle/ChillMainBundle/config/services/templating.yaml
index 281d4ad23..04117bf16 100644
--- a/src/Bundle/ChillMainBundle/config/services/templating.yaml
+++ b/src/Bundle/ChillMainBundle/config/services/templating.yaml
@@ -56,6 +56,10 @@ services:
 
     Chill\MainBundle\Templating\Entity\UserRender: ~
 
+    Chill\MainBundle\Templating\Entity\UserGroupRender: ~
+    Chill\MainBundle\Templating\Entity\UserGroupRenderInterface:
+        alias: Chill\MainBundle\Templating\Entity\UserGroupRender
+
     Chill\MainBundle\Templating\Listing\:
         resource: './../../Templating/Listing'
 
diff --git a/src/Bundle/ChillMainBundle/config/services/validator.yaml b/src/Bundle/ChillMainBundle/config/services/validator.yaml
index b3b60b9d6..32b8903cc 100644
--- a/src/Bundle/ChillMainBundle/config/services/validator.yaml
+++ b/src/Bundle/ChillMainBundle/config/services/validator.yaml
@@ -3,6 +3,9 @@ services:
         autowire: true
         autoconfigure: true
 
+    Chill\MainBundle\Validation\:
+        resource: '../../Validation'
+
     chill_main.validator_user_circle_consistency:
         class: Chill\MainBundle\Validator\Constraints\Entity\UserCircleConsistencyValidator
         arguments:
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240416145021.php b/src/Bundle/ChillMainBundle/migrations/Version20240416145021.php
new file mode 100644
index 000000000..f2f8d37dd
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240416145021.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240416145021 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Create tables for user_group';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_main_user_group_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE TABLE chill_main_user_group (id INT NOT NULL, label JSON DEFAULT \'[]\' NOT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE TABLE chill_main_user_group_user (usergroup_id INT NOT NULL, user_id INT NOT NULL, PRIMARY KEY(usergroup_id, user_id))');
+        $this->addSql('CREATE INDEX IDX_1E07F044D2112630 ON chill_main_user_group_user (usergroup_id)');
+        $this->addSql('CREATE INDEX IDX_1E07F044A76ED395 ON chill_main_user_group_user (user_id)');
+        $this->addSql('ALTER TABLE chill_main_user_group_user ADD CONSTRAINT FK_1E07F044D2112630 FOREIGN KEY (usergroup_id) REFERENCES chill_main_user_group (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_user_group_user ADD CONSTRAINT FK_1E07F044A76ED395 FOREIGN KEY (user_id) REFERENCES users (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_main_user_group_id_seq');
+        $this->addSql('DROP TABLE chill_main_user_group_user');
+        $this->addSql('DROP TABLE chill_main_user_group');
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240422091752.php b/src/Bundle/ChillMainBundle/migrations/Version20240422091752.php
new file mode 100644
index 000000000..960b3cc79
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240422091752.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240422091752 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add colors and exclude string to user groups';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_user_group ADD backgroundColor TEXT DEFAULT \'#ffffffff\' NOT NULL');
+        $this->addSql('ALTER TABLE chill_main_user_group ADD foregroundColor TEXT DEFAULT \'#000000ff\' NOT NULL');
+        $this->addSql('ALTER TABLE chill_main_user_group ADD excludeKey TEXT DEFAULT \'\' NOT NULL');
+        $this->addSql('ALTER INDEX idx_1e07f044d2112630 RENAME TO IDX_738BC82BD2112630');
+        $this->addSql('ALTER INDEX idx_1e07f044a76ed395 RENAME TO IDX_738BC82BA76ED395');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_user_group DROP backgroundColor');
+        $this->addSql('ALTER TABLE chill_main_user_group DROP foregroundColor');
+        $this->addSql('ALTER TABLE chill_main_user_group DROP excludeKey');
+        $this->addSql('ALTER INDEX idx_738bc82bd2112630 RENAME TO idx_1e07f044d2112630');
+        $this->addSql('ALTER INDEX idx_738bc82ba76ed395 RENAME TO idx_1e07f044a76ed395');
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss b/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
index 072f13949..d1faf5614 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
+++ b/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
@@ -3,8 +3,10 @@
 */
 
 span.badge-user,
+span.badge-user-group,
 span.badge-person,
 span.badge-thirdparty {
+    margin: 0.2rem 0.1rem;
     display: inline-block;
     padding: 0 0.5em !important;
     background-color: $white;
@@ -18,6 +20,11 @@ span.badge-thirdparty {
     }
 }
 
+span.badge-user-group {
+    font-weight: 600;
+    border-width: 0px;
+}
+
 span.badge-user {
     border-bottom-width: 1px;
     &.system {

From 9e69c972508980ad9092f7cbf65979cfb3d7726c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 14:17:19 +0200
Subject: [PATCH 281/375] Add search functionality for user groups

Implemented `SearchUserGroupApiProvider` to handle user group search requests. Added `UserGroupRepository` and its interface to support search queries. Updated API specs to include user group as a searchable type.
---
 .../Repository/UserGroupRepository.php        | 68 +++++++++++++++++++
 .../UserGroupRepositoryInterface.php          | 27 ++++++++
 .../Entity/SearchUserGroupApiProvider.php     | 59 ++++++++++++++++
 .../Repository/UserGroupRepositoryTest.php    | 50 ++++++++++++++
 .../ChillMainBundle/chill.api.specs.yaml      |  1 +
 5 files changed, 205 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
 create mode 100644 src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
 create mode 100644 src/Bundle/ChillMainBundle/Search/Entity/SearchUserGroupApiProvider.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Repository/UserGroupRepositoryTest.php

diff --git a/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
new file mode 100644
index 000000000..aa2d6f5f5
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
@@ -0,0 +1,68 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Search\SearchApiQuery;
+use Doctrine\ORM\EntityManagerInterface;
+use Doctrine\ORM\EntityRepository;
+
+final readonly class UserGroupRepository implements UserGroupRepositoryInterface
+{
+    private EntityRepository $repository;
+
+    public function __construct(EntityManagerInterface $em)
+    {
+        $this->repository = $em->getRepository(UserGroup::class);
+    }
+
+    public function find($id): ?UserGroup
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll(): array
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria): ?UserGroup
+    {
+        return $this->repository->findOneBy($criteria);
+    }
+
+    public function getClassName(): string
+    {
+        return UserGroup::class;
+    }
+
+    public function provideSearchApiQuery(string $pattern, string $lang, string $selectKey = 'user-group'): SearchApiQuery
+    {
+        $query = new SearchApiQuery();
+        $query
+            ->setSelectKey($selectKey)
+            ->setSelectJsonbMetadata("jsonb_build_object('id', ug.id)")
+            ->setSelectPertinence('3 + SIMILARITY(LOWER(UNACCENT(?)), ug.label->>?) + CASE WHEN (EXISTS(SELECT 1 FROM unnest(string_to_array(label->>?, \' \')) AS t WHERE LOWER(t) LIKE \'%\' || LOWER(UNACCENT(?)) || \'%\')) THEN 100 ELSE 0 END', [$pattern, $lang, $lang, $pattern])
+            ->setFromClause('chill_main_user_group AS ug')
+            ->setWhereClauses('
+                SIMILARITY(LOWER(UNACCENT(?)), ug.label->>?) > 0.15
+                OR ug.label->>? LIKE \'%\' || LOWER(UNACCENT(?)) || \'%\'
+            ', [$pattern, $lang, $pattern, $lang]);
+
+        return $query;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php b/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
new file mode 100644
index 000000000..9512e7b25
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
@@ -0,0 +1,27 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Search\SearchApiQuery;
+use Doctrine\Persistence\ObjectRepository;
+
+/**
+ * @template-extends ObjectRepository<UserGroup>
+ */
+interface UserGroupRepositoryInterface extends ObjectRepository
+{
+    /**
+     * Provide a SearchApiQuery for searching amongst user groups.
+     */
+    public function provideSearchApiQuery(string $pattern, string $lang, string $selectKey = 'user-group'): SearchApiQuery;
+}
diff --git a/src/Bundle/ChillMainBundle/Search/Entity/SearchUserGroupApiProvider.php b/src/Bundle/ChillMainBundle/Search/Entity/SearchUserGroupApiProvider.php
new file mode 100644
index 000000000..acdd99976
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Search/Entity/SearchUserGroupApiProvider.php
@@ -0,0 +1,59 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Search\Entity;
+
+use Chill\MainBundle\Repository\UserGroupRepositoryInterface;
+use Chill\MainBundle\Search\SearchApiInterface;
+use Chill\MainBundle\Search\SearchApiQuery;
+use Symfony\Contracts\Translation\LocaleAwareInterface;
+
+/**
+ * Provide search api for user group.
+ */
+class SearchUserGroupApiProvider implements SearchApiInterface, LocaleAwareInterface
+{
+    private string $locale;
+
+    public function __construct(private readonly UserGroupRepositoryInterface $userGroupRepository) {}
+
+    public function setLocale(string $locale): void
+    {
+        $this->locale = $locale;
+    }
+
+    public function getLocale(): string
+    {
+        return $this->locale;
+    }
+
+    public function getResult(string $key, array $metadata, float $pertinence)
+    {
+        return $this->userGroupRepository->find($metadata['id']);
+    }
+
+    public function prepare(array $metadatas): void {}
+
+    public function provideQuery(string $pattern, array $parameters): SearchApiQuery
+    {
+        return $this->userGroupRepository->provideSearchApiQuery($pattern, $this->getLocale(), 'user-group');
+    }
+
+    public function supportsResult(string $key, array $metadatas): bool
+    {
+        return 'user-group' === $key;
+    }
+
+    public function supportsTypes(string $pattern, array $types, array $parameters): bool
+    {
+        return in_array('user-group', $types, true);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Repository/UserGroupRepositoryTest.php b/src/Bundle/ChillMainBundle/Tests/Repository/UserGroupRepositoryTest.php
new file mode 100644
index 000000000..1ea243541
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Repository/UserGroupRepositoryTest.php
@@ -0,0 +1,50 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Repository;
+
+use Chill\MainBundle\Repository\UserGroupRepository;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class UserGroupRepositoryTest extends KernelTestCase
+{
+    private EntityManagerInterface $entityManager;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->entityManager = static::getContainer()->get(EntityManagerInterface::class);
+
+    }
+
+    public function testProvideSearchApiQuery(): void
+    {
+        $repository = new UserGroupRepository($this->entityManager);
+
+        $apiQuery = $repository->provideSearchApiQuery('trav', 'fr');
+
+        // test that the query does works
+        $sql = $apiQuery->buildQuery();
+        $params = $apiQuery->buildParameters();
+
+        $result = $this->entityManager->getConnection()->executeQuery($sql, $params);
+        $results = $result->fetchAllAssociative();
+
+        self::assertIsArray($results);
+
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/chill.api.specs.yaml b/src/Bundle/ChillMainBundle/chill.api.specs.yaml
index b31669043..ea1ae10bd 100644
--- a/src/Bundle/ChillMainBundle/chill.api.specs.yaml
+++ b/src/Bundle/ChillMainBundle/chill.api.specs.yaml
@@ -236,6 +236,7 @@ paths:
                                 - thirdparty
                                 - user
                                 - household
+                                - user-group
             responses:
                 200:
                     description: "OK"

From 82cd77678b821cc48fd22d4be691479f3f6cad4e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 15:10:34 +0200
Subject: [PATCH 282/375] Create a PickUserGroupOrUserDynamicType

- add necessary vue component to render usergroup within the component AddPersons;
- add necessary normalization and denormalization process for matching the selected usergroup with entities in database
---
 .../ChillMainBundle/Entity/UserGroup.php      |  7 --
 .../EntityToJsonTransformer.php               |  2 +
 .../Type/PickUserGroupOrUserDynamicType.php   | 68 +++++++++++++++++++
 .../ChillMainBundle/Resources/public/types.ts |  8 ++-
 .../_components/Entity/UserGroupRenderBox.vue | 26 +++++++
 .../Normalizer/UserGroupDenormalizer.php      | 37 ++++++++++
 .../Normalizer/UserGroupNormalizer.php        | 41 +++++++++++
 .../Normalizer/UserGroupDenormalizerTest.php  | 62 +++++++++++++++++
 .../Normalizer/UserGroupNormalizerTest.php    | 56 +++++++++++++++
 .../Resources/public/chill/scss/badge.scss    |  4 ++
 .../AddPersons/PersonSuggestion.vue           |  7 ++
 .../_components/AddPersons/TypeUserGroup.vue  | 30 ++++++++
 12 files changed, 340 insertions(+), 8 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/Entity/UserGroupRenderBox.vue
 create mode 100644 src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupDenormalizer.php
 create mode 100644 src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupNormalizer.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupDenormalizerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupNormalizerTest.php
 create mode 100644 src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/TypeUserGroup.vue

diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index 03da74326..588013b65 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -14,21 +14,17 @@ namespace Chill\MainBundle\Entity;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
 use Doctrine\ORM\Mapping as ORM;
-use Symfony\Component\Serializer\Annotation as Serializer;
 
 #[ORM\Entity]
 #[ORM\Table(name: 'chill_main_user_group')]
-#[Serializer\DiscriminatorMap(typeProperty: 'type', mapping: ['user_group' => UserGroup::class])]
 class UserGroup
 {
     #[ORM\Id]
     #[ORM\GeneratedValue]
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, nullable: false)]
-    #[Serializer\Groups(['read'])]
     private ?int $id = null;
 
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, nullable: false, options: ['default' => '[]'])]
-    #[Serializer\Groups(['read'])]
     private array $label = [];
 
     /**
@@ -39,11 +35,9 @@ class UserGroup
     private Collection $users;
 
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => '#ffffffff'])]
-    #[Serializer\Groups(['read'])]
     private string $backgroundColor = '#ffffffff';
 
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => '#000000ff'])]
-    #[Serializer\Groups(['read'])]
     private string $foregroundColor = '#000000ff';
 
     /**
@@ -53,7 +47,6 @@ class UserGroup
      * An empty string means "no exclusion"
      */
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
-    #[Serializer\Groups(['read'])]
     private string $excludeKey = '';
 
     public function __construct()
diff --git a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
index d193ea2ef..737c4683f 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Form\Type\DataTransformer;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\PersonBundle\Entity\Person;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Symfony\Component\Form\DataTransformerInterface;
@@ -74,6 +75,7 @@ class EntityToJsonTransformer implements DataTransformerInterface
             'user' => User::class,
             'person' => Person::class,
             'thirdparty' => ThirdParty::class,
+            'user_group' => UserGroup::class,
             default => throw new \UnexpectedValueException('This type is not supported'),
         };
 
diff --git a/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
new file mode 100644
index 000000000..00d783a97
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
@@ -0,0 +1,68 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Form\Type;
+
+use Chill\MainBundle\Form\Type\DataTransformer\EntityToJsonTransformer;
+use Symfony\Component\Form\AbstractType;
+use Symfony\Component\Form\FormBuilderInterface;
+use Symfony\Component\Form\FormInterface;
+use Symfony\Component\Form\FormView;
+use Symfony\Component\OptionsResolver\OptionsResolver;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+use Symfony\Component\Serializer\SerializerInterface;
+
+/**
+ * Entity which picks a user **or** a user group.
+ */
+final class PickUserGroupOrUserDynamicType extends AbstractType
+{
+    public function __construct(private readonly DenormalizerInterface $denormalizer, private readonly SerializerInterface $serializer, private readonly NormalizerInterface $normalizer) {}
+
+    public function buildForm(FormBuilderInterface $builder, array $options)
+    {
+        $builder->addViewTransformer(new EntityToJsonTransformer($this->denormalizer, $this->serializer, $options['multiple'], 'user_group'));
+    }
+
+    public function buildView(FormView $view, FormInterface $form, array $options)
+    {
+        $view->vars['multiple'] = $options['multiple'];
+        $view->vars['types'] = ['user-group', 'user'];
+        $view->vars['uniqid'] = uniqid('pick_usergroup_dyn');
+        $view->vars['suggested'] = [];
+        $view->vars['as_id'] = true === $options['as_id'] ? '1' : '0';
+        $view->vars['submit_on_adding_new_entity'] = true === $options['submit_on_adding_new_entity'] ? '1' : '0';
+
+        foreach ($options['suggested'] as $userGroup) {
+            $view->vars['suggested'][] = $this->normalizer->normalize($userGroup, 'json', ['groups' => 'read']);
+        }
+    }
+
+    public function configureOptions(OptionsResolver $resolver)
+    {
+        $resolver
+            ->setDefault('multiple', false)
+            ->setAllowedTypes('multiple', ['bool'])
+            ->setDefault('compound', false)
+            ->setDefault('suggested', [])
+            // if set to true, only the id will be set inside the content. The denormalization will not work.
+            ->setDefault('as_id', false)
+            ->setAllowedTypes('as_id', ['bool'])
+            ->setDefault('submit_on_adding_new_entity', false)
+            ->setAllowedTypes('submit_on_adding_new_entity', ['bool']);
+    }
+
+    public function getBlockPrefix()
+    {
+        return 'pick_entity_dynamic';
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Resources/public/types.ts b/src/Bundle/ChillMainBundle/Resources/public/types.ts
index 8d2ea2ded..9df338549 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillMainBundle/Resources/public/types.ts
@@ -30,6 +30,11 @@ export interface Scope {
     };
 }
 
+export interface ResultItem<T> {
+    result: T;
+    relevance: number;
+}
+
 export interface User {
     type: "user";
     id: number;
@@ -43,12 +48,13 @@ export interface User {
 }
 
 export interface UserGroup {
-    type: "chill_main_user_group" | "user_group";
+    type: "user_group";
     id: number;
     label: TranslatableString;
     backgroundColor: string;
     foregroundColor: string;
     excludeKey: string;
+    text: string;
 }
 
 export type UserGroupOrUser = User | UserGroup;
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/Entity/UserGroupRenderBox.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/Entity/UserGroupRenderBox.vue
new file mode 100644
index 000000000..d25100776
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/Entity/UserGroupRenderBox.vue
@@ -0,0 +1,26 @@
+<script setup lang="ts">
+import {UserGroup} from "../../../types";
+import {computed} from "vue";
+
+interface UserGroupRenderBoxProps {
+    userGroup: UserGroup;
+}
+
+const props = defineProps<UserGroupRenderBoxProps>();
+
+const styles = computed<{color: string, "background-color": string}>(() => {
+    return {
+        color: props.userGroup.foregroundColor,
+        "background-color": props.userGroup.backgroundColor,
+    }
+});
+
+</script>
+
+<template>
+    <span class="badge-user-group" :style="styles">{{ userGroup.label.fr }}</span>
+</template>
+
+<style scoped lang="scss">
+
+</style>
diff --git a/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupDenormalizer.php b/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupDenormalizer.php
new file mode 100644
index 000000000..0960ea218
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupDenormalizer.php
@@ -0,0 +1,37 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Serializer\Normalizer;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Repository\UserGroupRepositoryInterface;
+use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
+
+class UserGroupDenormalizer implements DenormalizerInterface
+{
+    public function __construct(private readonly UserGroupRepositoryInterface $userGroupRepository) {}
+
+    public function denormalize($data, string $type, ?string $format = null, array $context = []): ?UserGroup
+    {
+        return $this->userGroupRepository->find($data['id']);
+    }
+
+    public function supportsDenormalization($data, string $type, ?string $format = null): bool
+    {
+        return UserGroup::class === $type
+            && 'json' === $format
+            && is_array($data)
+            && array_key_exists('id', $data)
+            && 'user_group' === ($data['type'] ?? false)
+            && 2 === count(array_keys($data))
+        ;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupNormalizer.php b/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupNormalizer.php
new file mode 100644
index 000000000..8738167eb
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Serializer/Normalizer/UserGroupNormalizer.php
@@ -0,0 +1,41 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Serializer\Normalizer;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Templating\Entity\UserGroupRenderInterface;
+use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
+
+class UserGroupNormalizer implements NormalizerInterface
+{
+    public function __construct(private readonly UserGroupRenderInterface $userGroupRender) {}
+
+    public function normalize($object, ?string $format = null, array $context = [])
+    {
+        /* @var UserGroup $object */
+
+        return [
+            'type' => 'user_group',
+            'id' => $object->getId(),
+            'label' => $object->getLabel(),
+            'backgroundColor' => $object->getBackgroundColor(),
+            'foregroundColor' => $object->getForegroundColor(),
+            'excludeKey' => $object->getExcludeKey(),
+            'text' => $this->userGroupRender->renderString($object, []),
+        ];
+    }
+
+    public function supportsNormalization($data, ?string $format = null)
+    {
+        return $data instanceof UserGroup;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupDenormalizerTest.php b/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupDenormalizerTest.php
new file mode 100644
index 000000000..95a633519
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupDenormalizerTest.php
@@ -0,0 +1,62 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Serializer\Normalizer;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Repository\UserGroupRepositoryInterface;
+use Chill\MainBundle\Serializer\Normalizer\UserGroupDenormalizer;
+use PHPUnit\Framework\TestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class UserGroupDenormalizerTest extends TestCase
+{
+    /**
+     * @throws \PHPUnit\Framework\MockObject\Exception
+     *
+     * @dataProvider provideSupportsDenormalization
+     */
+    public function testSupportsDenormalization($data, string $type, bool $expected): void
+    {
+        $repository = $this->createMock(UserGroupRepositoryInterface::class);
+        $denormalizer = new UserGroupDenormalizer($repository);
+
+        $actual = $denormalizer->supportsDenormalization($data, $type, 'json');
+
+        self::assertSame($expected, $actual);
+    }
+
+    public static function provideSupportsDenormalization(): iterable
+    {
+        yield [['type' => 'user_group', 'id' => 10], UserGroup::class, true];
+        yield [['type' => 'person', 'id' => 10], UserGroup::class, false];
+        yield [['type' => 'user_group', 'id' => 10], \stdClass::class, false];
+    }
+
+    public function testDenormalize(): void
+    {
+        $repository = $this->createMock(UserGroupRepositoryInterface::class);
+        $repository->expects($this->once())
+            ->method('find')
+            ->with(10)
+            ->willReturn($userGroup = new UserGroup());
+
+        $denormalizer = new UserGroupDenormalizer($repository);
+
+        $actual = $denormalizer->denormalize(['type' => 'user_group', 'id' => 10], UserGroup::class, 'json');
+
+        self::assertSame($userGroup, $actual);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupNormalizerTest.php b/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupNormalizerTest.php
new file mode 100644
index 000000000..eb85c99a7
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Serializer/Normalizer/UserGroupNormalizerTest.php
@@ -0,0 +1,56 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Serializer\Normalizer;
+
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Serializer\Normalizer\UserGroupNormalizer;
+use Chill\MainBundle\Templating\Entity\UserGroupRenderInterface;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class UserGroupNormalizerTest extends TestCase
+{
+    public function testNormalize()
+    {
+        $userGroup = new UserGroup();
+        $userGroup
+            ->setLabel(['fr' => 'test'])
+            ->setExcludeKey('top')
+            ->setForegroundColor('#123456')
+            ->setBackgroundColor('#456789');
+
+        $entityRender = $this->createMock(UserGroupRenderInterface::class);
+        $entityRender->expects($this->once())
+            ->method('renderString')
+            ->with($userGroup, [])
+            ->willReturn('text');
+
+        $normalizer = new UserGroupNormalizer($entityRender);
+
+        $actual = $normalizer->normalize($userGroup, 'json', [AbstractNormalizer::GROUPS => ['read']]);
+
+        self::assertEqualsCanonicalizing([
+            'type' => 'user_group',
+            'text' => 'text',
+            'label' => ['fr' => 'test'],
+            'excludeKey' => 'top',
+            'foregroundColor' => '#123456',
+            'backgroundColor' => '#456789',
+            'id' => null,
+        ], $actual);
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss b/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
index d1faf5614..cec272a3a 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
+++ b/src/Bundle/ChillPersonBundle/Resources/public/chill/scss/badge.scss
@@ -238,6 +238,10 @@ div[class*='budget-'] {
         background-color: $chill-ll-gray;
         color: $chill-blue;
     }
+    &.bg-user-group {
+        background-color: $chill-l-gray;
+        color: $chill-blue;
+    }
     &.bg-confidential {
         background-color: $chill-ll-gray;
         color: $chill-red;
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/PersonSuggestion.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/PersonSuggestion.vue
index b605cd5b5..ec9556a95 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/PersonSuggestion.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/PersonSuggestion.vue
@@ -27,6 +27,11 @@
             v-bind:item="item">
          </suggestion-user>
 
+        <suggestion-user-group
+            v-if="item.result.type === 'user_group'"
+            v-bind:item="item">
+        ></suggestion-user-group>
+
          <suggestion-household
                v-if="item.result.type === 'household'"
                v-bind:item="item">
@@ -41,6 +46,7 @@ import SuggestionPerson from './TypePerson';
 import SuggestionThirdParty from './TypeThirdParty';
 import SuggestionUser from './TypeUser';
 import SuggestionHousehold from './TypeHousehold';
+import SuggestionUserGroup from './TypeUserGroup';
 
 export default {
    name: 'PersonSuggestion',
@@ -49,6 +55,7 @@ export default {
       SuggestionThirdParty,
       SuggestionUser,
       SuggestionHousehold,
+      SuggestionUserGroup,
    },
    props: [
       'item',
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/TypeUserGroup.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/TypeUserGroup.vue
new file mode 100644
index 000000000..f1a83ff22
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/_components/AddPersons/TypeUserGroup.vue
@@ -0,0 +1,30 @@
+<script setup lang="ts">
+
+import {ResultItem, UserGroup} from "../../../../../../ChillMainBundle/Resources/public/types";
+import BadgeEntity from "ChillMainAssets/vuejs/_components/BadgeEntity.vue";
+import UserRenderBoxBadge from "ChillMainAssets/vuejs/_components/Entity/UserRenderBoxBadge.vue";
+import UserGroupRenderBox from "ChillMainAssets/vuejs/_components/Entity/UserGroupRenderBox.vue";
+
+interface TypeUserGroupProps {
+  item: ResultItem<UserGroup>;
+}
+
+const props = defineProps<TypeUserGroupProps>();
+</script>
+
+<template>
+  <div class="container user-group-container">
+    <div class="user-group-identification">
+      <user-group-render-box :user-group="props.item.result"></user-group-render-box>
+    </div>
+  </div>
+  <div class="right_actions">
+    <span class="badge rounded-pill bg-user-group">
+        Groupe d'utilisateur
+    </span>
+  </div>
+</template>
+
+<style scoped lang="scss">
+
+</style>

From 17f4c85fa5d855184cf63eb56b5cbfe5dcb4ef07 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 15:35:40 +0200
Subject: [PATCH 283/375] Add user group support in entity workflow steps

Enhanced the WorkflowTransitionContextDTO to include user groups alongside individual users for future steps. Updated the relevant entity and form classes to accommodate this change and included the necessary database migration script.
---
 .../Entity/Workflow/EntityWorkflow.php        |  6 ++-
 .../Entity/Workflow/EntityWorkflowStep.php    | 25 ++++++++++++
 .../ChillMainBundle/Form/WorkflowStepType.php |  3 +-
 .../Workflow/WorkflowTransitionContextDTO.php | 25 ++++++++++--
 .../migrations/Version20240926132856.php      | 39 +++++++++++++++++++
 5 files changed, 92 insertions(+), 6 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240926132856.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index 89efde7c0..d25d20d6a 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -442,10 +442,14 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             $newStep->addCcUser($user);
         }
 
-        foreach ($transitionContextDTO->futureDestUsers as $user) {
+        foreach ($transitionContextDTO->getFutureDestUsers() as $user) {
             $newStep->addDestUser($user);
         }
 
+        foreach ($transitionContextDTO->getFutureDestUserGroups() as $userGroup) {
+            $newStep->addDestUserGroup($userGroup);
+        }
+
         if (null !== $transitionContextDTO->futureUserSignature) {
             $newStep->addDestUser($transitionContextDTO->futureUserSignature);
         }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index c6a849da5..419b42a83 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Entity\Workflow;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
 use Doctrine\ORM\Mapping as ORM;
@@ -48,6 +49,13 @@ class EntityWorkflowStep
     #[ORM\JoinTable(name: 'chill_main_workflow_entity_step_user')]
     private Collection $destUser;
 
+    /**
+     * @var Collection<int, UserGroup>
+     */
+    #[ORM\ManyToMany(targetEntity: UserGroup::class)]
+    #[ORM\JoinTable(name: 'chill_main_workflow_entity_step_user_group')]
+    private Collection $destUserGroups;
+
     /**
      * @var Collection<int, User>
      */
@@ -108,6 +116,7 @@ class EntityWorkflowStep
     {
         $this->ccUser = new ArrayCollection();
         $this->destUser = new ArrayCollection();
+        $this->destUserGroups = new ArrayCollection();
         $this->destUserByAccessKey = new ArrayCollection();
         $this->signatures = new ArrayCollection();
         $this->holdsOnStep = new ArrayCollection();
@@ -141,6 +150,22 @@ class EntityWorkflowStep
         return $this;
     }
 
+    public function addDestUserGroup(UserGroup $userGroup): self
+    {
+        if (!$this->destUserGroups->contains($userGroup)) {
+            $this->destUserGroups[] = $userGroup;
+        }
+
+        return $this;
+    }
+
+    public function removeDestUserGroup(UserGroup $userGroup): self
+    {
+        $this->destUserGroups->removeElement($userGroup);
+
+        return $this;
+    }
+
     public function addDestUserByAccessKey(User $user): self
     {
         if (!$this->destUserByAccessKey->contains($user) && !$this->destUser->contains($user)) {
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index e2aece468..8ab17e1e1 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -15,6 +15,7 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Form\Type\ChillCollectionType;
 use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
+use Chill\MainBundle\Form\Type\PickUserGroupOrUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
@@ -156,7 +157,7 @@ class WorkflowStepType extends AbstractType
                 'label' => 'workflow.signature_zone.user signature',
                 'multiple' => false,
             ])
-            ->add('futureDestUsers', PickUserDynamicType::class, [
+            ->add('futureDestUsers', PickUserGroupOrUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
                 'empty_data' => '[]',
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index f675b9646..cc22d614a 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Workflow;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\PersonBundle\Entity\Person;
 use Symfony\Component\Validator\Constraints as Assert;
@@ -24,25 +25,25 @@ use Symfony\Component\Workflow\Transition;
 class WorkflowTransitionContextDTO
 {
     /**
-     * a list of future dest users for the next steps.
+     * a list of future dest users or user groups for the next step.
      *
      * This is in used in order to let controller inform who will be the future users which will validate
      * the next step. This is necessary to perform some computation about the next users, before they are
      * associated to the entity EntityWorkflowStep.
      *
-     * @var array|User[]
+     * @var list<User|UserGroup>
      */
     public array $futureDestUsers = [];
 
     /**
-     * a list of future cc users for the next steps.
+     * a list of future cc users for the next step.
      *
      * @var array|User[]
      */
     public array $futureCcUsers = [];
 
     /**
-     * a list of future dest emails for the next steps.
+     * a list of future dest emails for the next step.
      *
      * This is in used in order to let controller inform who will be the future emails which will validate
      * the next step. This is necessary to perform some computation about the next emails, before they are
@@ -72,6 +73,22 @@ class WorkflowTransitionContextDTO
         public EntityWorkflow $entityWorkflow,
     ) {}
 
+    /**
+     * @return list<User>
+     */
+    public function getFutureDestUsers(): array
+    {
+        return array_values(array_filter($this->futureDestUsers, fn (User|UserGroup $user) => $user instanceof User));
+    }
+
+    /**
+     * @return list<UserGroup>
+     */
+    public function getFutureDestUserGroups(): array
+    {
+        return array_values(array_filter($this->futureDestUsers, fn (User|UserGroup $user) => $user instanceof UserGroup));
+    }
+
     #[Assert\Callback()]
     public function validateCCUserIsNotInDest(ExecutionContextInterface $context, $payload): void
     {
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240926132856.php b/src/Bundle/ChillMainBundle/migrations/Version20240926132856.php
new file mode 100644
index 000000000..e14bf7e78
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240926132856.php
@@ -0,0 +1,39 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240926132856 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add a relation between entityworkflow step and user groups';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE TABLE chill_main_workflow_entity_step_user_group (entityworkflowstep_id INT NOT NULL, usergroup_id INT NOT NULL, PRIMARY KEY(entityworkflowstep_id, usergroup_id))');
+        $this->addSql('CREATE INDEX IDX_AB433F907E6AF9D4 ON chill_main_workflow_entity_step_user_group (entityworkflowstep_id)');
+        $this->addSql('CREATE INDEX IDX_AB433F90D2112630 ON chill_main_workflow_entity_step_user_group (usergroup_id)');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_user_group ADD CONSTRAINT FK_AB433F907E6AF9D4 FOREIGN KEY (entityworkflowstep_id) REFERENCES chill_main_workflow_entity_step (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_user_group ADD CONSTRAINT FK_AB433F90D2112630 FOREIGN KEY (usergroup_id) REFERENCES chill_main_user_group (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_user_group DROP CONSTRAINT FK_AB433F907E6AF9D4');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_step_user_group DROP CONSTRAINT FK_AB433F90D2112630');
+        $this->addSql('DROP TABLE chill_main_workflow_entity_step_user_group');
+    }
+}

From 86ec6f82dacf4b1c7a68e9505bf9403a67958a00 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 16:04:53 +0200
Subject: [PATCH 284/375] Do not block transition in EntityWorkflow when the
 user is member of a dest user group

- refactor EntityWorkflowGuardTransition + tests
- allow to find easily user within userGroup by adding a dedicated method to UserGroup::contains
---
 .../ChillMainBundle/Entity/UserGroup.php       |  5 +++++
 .../Entity/Workflow/EntityWorkflowStep.php     | 12 +++++++++++-
 .../EntityWorkflowGuardTransitionTest.php      | 10 ++++++++++
 .../EntityWorkflowGuardTransition.php          | 18 ++++++++++++++++++
 4 files changed, 44 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index 588013b65..dddd01c70 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -141,4 +141,9 @@ class UserGroup
     {
         return true;
     }
+
+    public function contains(User $user): bool
+    {
+        return $this->users->contains($user);
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 419b42a83..b64d61b71 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -203,7 +203,9 @@ class EntityWorkflowStep
 
     /**
      * get all the users which are allowed to apply a transition: those added manually, and
-     * those added automatically bu using an access key.
+     * those added automatically by using an access key.
+     *
+     * This method exclude the users associated with user groups
      *
      * @psalm-suppress DuplicateArrayKey
      */
@@ -217,6 +219,14 @@ class EntityWorkflowStep
         );
     }
 
+    /**
+     * @return Collection<int, UserGroup>
+     */
+    public function getDestUserGroups(): Collection
+    {
+        return $this->destUserGroups;
+    }
+
     public function getCcUser(): Collection
     {
         return $this->ccUser;
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
index dd3b12e86..eaef9b0c2 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardTransitionTest.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Security\Authorization\EntityWorkflowTransitionVoter;
 use Chill\MainBundle\Templating\Entity\UserRender;
@@ -145,6 +146,11 @@ class EntityWorkflowGuardTransitionTest extends TestCase
         yield [self::buildEntityWorkflow([new User()]), 'transition1', null, false, 'd9e39a18-704c-11ef-b235-8fe0619caee7'];
         yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, false, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
         yield [self::buildEntityWorkflow([$user = new User()]), 'transition3', $user, true, '5b6b95e0-704d-11ef-a5a9-4b6fc11a8eeb'];
+
+        $userGroup = new UserGroup();
+        $userGroup->addUser(new User());
+
+        yield [self::buildEntityWorkflow([$userGroup]), 'transition1', new User(), false, 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc'];
     }
 
     public static function provideValidTransition(): iterable
@@ -159,6 +165,10 @@ class EntityWorkflowGuardTransitionTest extends TestCase
         // transition allowed thanks to permission "apply all transitions"
         yield [self::buildEntityWorkflow([new User()]), 'transition1', new User(), true, 'step1'];
         yield [self::buildEntityWorkflow([new User()]), 'transition2', new User(), true, 'step2'];
+
+        $userGroup = new UserGroup();
+        $userGroup->addUser($u = new User());
+        yield [self::buildEntityWorkflow([$userGroup]), 'transition1', $u, false, 'step1'];
     }
 
     public static function buildEntityWorkflow(array $futureDestUsers): EntityWorkflow
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
index 1c9d26fc7..5f9e0bca5 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardTransition.php
@@ -87,6 +87,17 @@ class EntityWorkflowGuardTransition implements EventSubscriberInterface
             return;
         }
 
+        if (!$user instanceof User) {
+            $event->addTransitionBlocker(
+                new TransitionBlocker(
+                    'workflow.Only regular user can apply a transition',
+                    '04fb4f76-7c0e-11ef-afc3-877bad7b0fe7'
+                )
+            );
+
+            return;
+        }
+
         // for users
         if (!in_array('only-dest', $systemTransitions, true)) {
             $event->addTransitionBlocker(
@@ -108,6 +119,13 @@ class EntityWorkflowGuardTransition implements EventSubscriberInterface
                 return;
             }
 
+            // we give a second chance, searching for the presence of the user within userGroups
+            foreach ($entityWorkflow->getCurrentStep()->getDestUserGroups() as $userGroup) {
+                if ($userGroup->contains($user)) {
+                    return;
+                }
+            }
+
             $event->addTransitionBlocker(new TransitionBlocker(
                 'workflow.You are not allowed to apply a transition on this workflow. Only those users are allowed: %users%',
                 'f3eeb57c-7532-11ec-9495-e7942a2ac7bc',

From 87599425dfe557a107f0d6e5763999906b029401 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 17:29:27 +0200
Subject: [PATCH 285/375] Send a notification to all User which are members of
 UserGroups, when a workflow is sent to them

---
 .../NotificationOnTransitionTest.php          | 33 ++++++++-----------
 .../NotificationOnTransition.php              | 14 +++++++-
 2 files changed, 26 insertions(+), 21 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationOnTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationOnTransitionTest.php
index fed7f2dce..e2fc30da8 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationOnTransitionTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationOnTransitionTest.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\Notification;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Chill\MainBundle\Workflow\EventSubscriber\NotificationOnTransition;
@@ -20,8 +21,6 @@ use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Prophecy\Argument;
-use Prophecy\Call\Call;
-use Prophecy\Exception\Prediction\FailedPredictionException;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Event\Event;
@@ -57,29 +56,23 @@ final class NotificationOnTransitionTest extends TestCase
         $id->setValue($entityWorkflow, 1);
 
         $step = new EntityWorkflowStep();
+        $userGroup = (new UserGroup())->addUser($userInGroup = new User())->addUser($dest);
         $entityWorkflow->addStep($step);
-        $step->addDestUser($dest)
+        $step
+            ->addDestUser($dest)
+            ->addDestUserGroup($userGroup)
             ->setCurrentStep('to_state');
 
         $em = $this->prophesize(EntityManagerInterface::class);
-        $em->persist(Argument::type(Notification::class))->should(
-            static function ($args) use ($dest) {
-                /** @var Call[] $args */
-                if (1 !== \count($args)) {
-                    throw new FailedPredictionException('no notification sent');
-                }
 
-                $notification = $args[0]->getArguments()[0];
-
-                if (!$notification instanceof Notification) {
-                    throw new FailedPredictionException('persist is not a notification');
-                }
-
-                if (!$notification->getAddressees()->contains($dest)) {
-                    throw new FailedPredictionException('the dest is not notified');
-                }
-            }
-        );
+        // we check that both notification has been persisted once,
+        // eliminating doublons
+        $em->persist(Argument::that(
+            fn ($notificationCandidate) => $notificationCandidate instanceof Notification && $notificationCandidate->getAddressees()->contains($dest)
+        ))->shouldBeCalledOnce();
+        $em->persist(Argument::that(
+            fn ($notificationCandidate) => $notificationCandidate instanceof Notification && $notificationCandidate->getAddressees()->contains($userInGroup)
+        ))->shouldBeCalledOnce();
 
         $engine = $this->prophesize(\Twig\Environment::class);
         $engine->render(Argument::type('string'), Argument::type('array'))
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
index d955d777f..89ae65f4c 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Workflow\EventSubscriber;
 
 use Chill\MainBundle\Entity\Notification;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
 use Doctrine\ORM\EntityManagerInterface;
@@ -69,7 +70,18 @@ class NotificationOnTransition implements EventSubscriberInterface
             // the dests for the current step
             $entityWorkflow->getCurrentStep()->getDestUser()->toArray(),
             // the cc users for the current step
-            $entityWorkflow->getCurrentStep()->getCcUser()->toArray()
+            $entityWorkflow->getCurrentStep()->getCcUser()->toArray(),
+            // the users within groups
+            $entityWorkflow->getCurrentStep()->getDestUserGroups()->reduce(
+                function (array $accumulator, UserGroup $userGroup) {
+                    foreach ($userGroup->getUsers() as $user) {
+                        $accumulator[] = $user;
+                    }
+
+                    return $accumulator;
+                },
+                []
+            ),
         ) as $dest) {
             $dests[spl_object_hash($dest)] = $dest;
         }

From 0c1d9ee4be43311c36df3807914540ad11a6536c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 26 Sep 2024 17:44:31 +0200
Subject: [PATCH 286/375] Add support for handling user groups in workflow
 counters and list workflows in "my workflows" controller

- rewrite queries in repositories;
- fix cache key cleaning for members of users when a workflow is transitionned
---
 .../Workflow/EntityWorkflowRepository.php     |  2 +
 .../Workflow/EntityWorkflowStepRepository.php |  7 ++-
 .../EntityWorkflowRepositoryTest.php          | 11 +++++
 .../EntityWorkflowStepRepositoryTest.php      | 44 +++++++++++++++++++
 .../Counter/WorkflowByUserCounter.php         | 13 ++++++
 5 files changed, 76 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowStepRepositoryTest.php

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index 13c900ffb..cd39b6e28 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Doctrine\ORM\EntityManagerInterface;
@@ -264,6 +265,7 @@ class EntityWorkflowRepository implements ObjectRepository
                 $qb->expr()->orX(
                     $qb->expr()->isMemberOf(':user', 'step.destUser'),
                     $qb->expr()->isMemberOf(':user', 'step.destUserByAccessKey'),
+                    $qb->expr()->exists(sprintf('SELECT 1 FROM %s ug WHERE ug MEMBER OF step.destUserGroups AND :user MEMBER OF ug.users', UserGroup::class))
                 ),
                 $qb->expr()->isNull('step.transitionAfter'),
                 $qb->expr()->eq('step.isFinal', "'FALSE'")
diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
index db57836c2..bdf47357a 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowStepRepository.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Repository\Workflow;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
@@ -65,7 +66,11 @@ readonly class EntityWorkflowStepRepository implements ObjectRepository
 
         $qb->where(
             $qb->expr()->andX(
-                $qb->expr()->isMemberOf(':user', 'e.destUser'),
+                $qb->expr()->orX(
+                    $qb->expr()->isMemberOf(':user', 'e.destUser'),
+                    $qb->expr()->isMemberOf(':user', 'e.destUserByAccessKey'),
+                    $qb->expr()->exists(sprintf('SELECT 1 FROM %s ug WHERE ug MEMBER OF e.destUserGroups AND :user MEMBER OF ug.users', UserGroup::class))
+                ),
                 $qb->expr()->isNull('e.transitionAt'),
                 $qb->expr()->eq('e.isFinal', ':bool'),
             )
diff --git a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
index 4efb8196e..a26b29709 100644
--- a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace ChillMainBundle\Tests\Repository;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
@@ -43,4 +44,14 @@ class EntityWorkflowRepositoryTest extends KernelTestCase
 
         self::assertIsArray($actual, 'check that the query is successful');
     }
+
+    public function testCountQueryByDest(): void
+    {
+        $repository = new EntityWorkflowRepository($this->em);
+        $user = $this->em->createQuery(sprintf('SELECT u FROM %s u', User::class))
+            ->setMaxResults(1)->getSingleResult();
+        $actual = $repository->countByDest($user);
+
+        self::assertIsInt($actual);
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowStepRepositoryTest.php b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowStepRepositoryTest.php
new file mode 100644
index 000000000..572f7d66b
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowStepRepositoryTest.php
@@ -0,0 +1,44 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace ChillMainBundle\Tests\Repository;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepRepository;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowStepRepositoryTest extends KernelTestCase
+{
+    private EntityManagerInterface $entityManager;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->entityManager = self::getContainer()->get(EntityManagerInterface::class);
+    }
+
+    public function testCountUnreadByUser(): void
+    {
+        $repository = new EntityWorkflowStepRepository($this->entityManager);
+        $user = $this->entityManager->createQuery(sprintf('SELECT u FROM %s u', User::class))
+            ->setMaxResults(1)->getSingleResult();
+
+        $actual = $repository->countUnreadByUser($user);
+
+        self::assertIsInt($actual);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Counter/WorkflowByUserCounter.php b/src/Bundle/ChillMainBundle/Workflow/Counter/WorkflowByUserCounter.php
index a1b631265..8a6474034 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Counter/WorkflowByUserCounter.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Counter/WorkflowByUserCounter.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Workflow\Counter;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowStepRepository;
 use Chill\MainBundle\Templating\UI\NotificationCounterInterface;
@@ -82,6 +83,18 @@ final readonly class WorkflowByUserCounter implements NotificationCounterInterfa
         foreach ($step->getDestUser() as $user) {
             $keys[] = self::generateCacheKeyWorkflowByUser($user);
         }
+        foreach ($step->getDestUserGroups()->reduce(
+            function (array $accumulator, UserGroup $userGroup) {
+                foreach ($userGroup->getUsers() as $user) {
+                    $accumulator[] = $user;
+                }
+
+                return $accumulator;
+            },
+            []
+        ) as $user) {
+            $keys[] = self::generateCacheKeyWorkflowByUser($user);
+        }
 
         if ([] !== $keys) {
             $this->cacheItemPool->deleteItems($keys);

From 2e71808be1389ea84106aa5eb7c4f76a09834911 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 27 Sep 2024 12:01:35 +0200
Subject: [PATCH 287/375] Add admin users and active status to UserGroup

Added a new table `chill_main_user_group_user_admin` for admin users and modified the UserGroup entity to include an `active` status column. Included methods for managing the admin users and the active status in the UserGroup entity.
---
 .../ChillMainBundle/Entity/UserGroup.php      | 45 +++++++++++++++++++
 .../migrations/Version20240927095751.php      | 34 ++++++++++++++
 2 files changed, 79 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20240927095751.php

diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index dddd01c70..35e967e5f 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -24,6 +24,9 @@ class UserGroup
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::INTEGER, nullable: false)]
     private ?int $id = null;
 
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::BOOLEAN, nullable: false, options: ['default' => true])]
+    private bool $active = true;
+
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::JSON, nullable: false, options: ['default' => '[]'])]
     private array $label = [];
 
@@ -34,6 +37,13 @@ class UserGroup
     #[ORM\JoinTable(name: 'chill_main_user_group_user')]
     private Collection $users;
 
+    /**
+     * @var Collection<int, User>&Selectable<int, User>
+     */
+    #[ORM\ManyToMany(targetEntity: User::class)]
+    #[ORM\JoinTable(name: 'chill_main_user_group_user_admin')]
+    private Collection&Selectable $adminUsers;
+
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => '#ffffffff'])]
     private string $backgroundColor = '#ffffffff';
 
@@ -54,6 +64,33 @@ class UserGroup
         $this->users = new ArrayCollection();
     }
 
+    public function isActive(): bool
+    {
+        return $this->active;
+    }
+
+    public function setActive(bool $active): self
+    {
+        $this->active = $active;
+        return $this;
+    }
+
+    public function addAdminUser(User $user): self
+    {
+        if (!$this->adminUsers->contains($user)) {
+            $this->adminUsers[] = $user;
+        }
+
+        return $this;
+    }
+
+    public function removeAdminUser(User $user): self
+    {
+        $this->adminUsers->removeElement($user);
+
+        return $this;
+    }
+
     public function addUser(User $user): self
     {
         if (!$this->users->contains($user)) {
@@ -87,6 +124,14 @@ class UserGroup
         return $this->users;
     }
 
+    /**
+     * @return Selectable<int, User>&Collection<int, User>
+     */
+    public function getAdminUsers(): Collection&Selectable
+    {
+        return $this->adminUsers;
+    }
+
     public function getForegroundColor(): string
     {
         return $this->foregroundColor;
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php b/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php
new file mode 100644
index 000000000..ce34eb5c2
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php
@@ -0,0 +1,34 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20240927095751 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add admin users and active on user groups';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE TABLE chill_main_user_group_user_admin (usergroup_id INT NOT NULL, user_id INT NOT NULL, PRIMARY KEY(usergroup_id, user_id))');
+        $this->addSql('CREATE INDEX IDX_DAD75036D2112630 ON chill_main_user_group_user_admin (usergroup_id)');
+        $this->addSql('CREATE INDEX IDX_DAD75036A76ED395 ON chill_main_user_group_user_admin (user_id)');
+        $this->addSql('ALTER TABLE chill_main_user_group_user_admin ADD CONSTRAINT FK_DAD75036D2112630 FOREIGN KEY (usergroup_id) REFERENCES chill_main_user_group (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_user_group_user_admin ADD CONSTRAINT FK_DAD75036A76ED395 FOREIGN KEY (user_id) REFERENCES users (id) ON DELETE CASCADE NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_user_group ADD active BOOLEAN DEFAULT true NOT NULL');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_user_group_user_admin DROP CONSTRAINT FK_DAD75036D2112630');
+        $this->addSql('ALTER TABLE chill_main_user_group_user_admin DROP CONSTRAINT FK_DAD75036A76ED395');
+        $this->addSql('DROP TABLE chill_main_user_group_user_admin');
+        $this->addSql('ALTER TABLE chill_main_user_group DROP active');
+    }
+}

From debca1f474fa0fc5248cbd049924d213e6e5a3df Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 27 Sep 2024 11:54:23 +0200
Subject: [PATCH 288/375] Admin CRUD for user groups

---
 .../Controller/UserGroupAdminController.php   | 28 ++++++
 .../ChillMainExtension.php                    | 24 ++++++
 .../ChillMainBundle/Entity/UserGroup.php      | 31 ++++++-
 .../ChillMainBundle/Form/UserGroupType.php    | 58 +++++++++++++
 .../Repository/UserGroupRepository.php        |  3 +-
 .../public/chill/scss/flex_table.scss         |  2 +-
 .../Resources/views/UserGroup/edit.html.twig  | 21 +++++
 .../Resources/views/UserGroup/index.html.twig | 86 +++++++++++++++++++
 .../Resources/views/UserGroup/new.html.twig   | 21 +++++
 .../MenuBuilder/AdminUserMenuBuilder.php      |  4 +
 .../migrations/Version20240927095751.php      |  7 ++
 .../translations/messages+intl-icu.fr.yaml    |  9 ++
 .../translations/messages.fr.yml              | 20 +++++
 13 files changed, 309 insertions(+), 5 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/UserGroupAdminController.php
 create mode 100644 src/Bundle/ChillMainBundle/Form/UserGroupType.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/UserGroup/edit.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/UserGroup/index.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/UserGroup/new.html.twig

diff --git a/src/Bundle/ChillMainBundle/Controller/UserGroupAdminController.php b/src/Bundle/ChillMainBundle/Controller/UserGroupAdminController.php
new file mode 100644
index 000000000..04a9a9910
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/UserGroupAdminController.php
@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\CRUD\Controller\CRUDController;
+use Chill\MainBundle\Pagination\PaginatorInterface;
+use Symfony\Component\HttpFoundation\Request;
+
+class UserGroupAdminController extends CRUDController
+{
+    protected function orderQuery(string $action, $query, Request $request, PaginatorInterface $paginator)
+    {
+        $query->addSelect('JSON_EXTRACT(e.label, :lang) AS HIDDEN labeli18n')
+            ->setParameter('lang', $request->getLocale());
+        $query->addOrderBy('labeli18n', 'ASC');
+
+        return $query;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
index 97df404af..999277ed1 100644
--- a/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
+++ b/src/Bundle/ChillMainBundle/DependencyInjection/ChillMainExtension.php
@@ -24,6 +24,7 @@ use Chill\MainBundle\Controller\LocationTypeController;
 use Chill\MainBundle\Controller\NewsItemController;
 use Chill\MainBundle\Controller\RegroupmentController;
 use Chill\MainBundle\Controller\UserController;
+use Chill\MainBundle\Controller\UserGroupAdminController;
 use Chill\MainBundle\Controller\UserGroupApiController;
 use Chill\MainBundle\Controller\UserJobApiController;
 use Chill\MainBundle\Controller\UserJobController;
@@ -70,6 +71,7 @@ use Chill\MainBundle\Form\LocationFormType;
 use Chill\MainBundle\Form\LocationTypeType;
 use Chill\MainBundle\Form\NewsItemType;
 use Chill\MainBundle\Form\RegroupmentType;
+use Chill\MainBundle\Form\UserGroupType;
 use Chill\MainBundle\Form\UserJobType;
 use Chill\MainBundle\Form\UserType;
 use Misd\PhoneNumberBundle\Doctrine\DBAL\Types\PhoneNumberType;
@@ -355,6 +357,28 @@ class ChillMainExtension extends Extension implements
     {
         $container->prependExtensionConfig('chill_main', [
             'cruds' => [
+                [
+                    'class' => UserGroup::class,
+                    'controller' => UserGroupAdminController::class,
+                    'name' => 'admin_user_group',
+                    'base_path' => '/admin/main/user-group',
+                    'base_role' => 'ROLE_ADMIN',
+                    'form_class' => UserGroupType::class,
+                    'actions' => [
+                        'index' => [
+                            'role' => 'ROLE_ADMIN',
+                            'template' => '@ChillMain/UserGroup/index.html.twig',
+                        ],
+                        'new' => [
+                            'role' => 'ROLE_ADMIN',
+                            'template' => '@ChillMain/UserGroup/new.html.twig',
+                        ],
+                        'edit' => [
+                            'role' => 'ROLE_ADMIN',
+                            'template' => '@ChillMain/UserGroup/edit.html.twig',
+                        ],
+                    ],
+                ],
                 [
                     'class' => UserJob::class,
                     'controller' => UserJobController::class,
diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index 35e967e5f..b42609693 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -13,6 +13,10 @@ namespace Chill\MainBundle\Entity;
 
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Criteria;
+use Doctrine\Common\Collections\Order;
+use Doctrine\Common\Collections\ReadableCollection;
+use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 
 #[ORM\Entity]
@@ -31,11 +35,11 @@ class UserGroup
     private array $label = [];
 
     /**
-     * @var \Doctrine\Common\Collections\Collection<int, \Chill\MainBundle\Entity\User>
+     * @var Collection<int, User>&Selectable<int, User>
      */
     #[ORM\ManyToMany(targetEntity: User::class)]
     #[ORM\JoinTable(name: 'chill_main_user_group_user')]
-    private Collection $users;
+    private Collection&Selectable $users;
 
     /**
      * @var Collection<int, User>&Selectable<int, User>
@@ -61,6 +65,7 @@ class UserGroup
 
     public function __construct()
     {
+        $this->adminUsers = new \Doctrine\Common\Collections\ArrayCollection();
         $this->users = new ArrayCollection();
     }
 
@@ -72,6 +77,7 @@ class UserGroup
     public function setActive(bool $active): self
     {
         $this->active = $active;
+
         return $this;
     }
 
@@ -119,7 +125,10 @@ class UserGroup
         return $this->label;
     }
 
-    public function getUsers(): Collection
+    /**
+     * @return Selectable<int, User>&Collection<int, User>
+     */
+    public function getUsers(): Collection&Selectable
     {
         return $this->users;
     }
@@ -191,4 +200,20 @@ class UserGroup
     {
         return $this->users->contains($user);
     }
+
+    public function getUserListByLabelAscending(): ReadableCollection
+    {
+        $criteria = Criteria::create();
+        $criteria->orderBy(['label' => Order::Ascending]);
+
+        return $this->getUsers()->matching($criteria);
+    }
+
+    public function getAdminUserListByLabelAscending(): ReadableCollection
+    {
+        $criteria = Criteria::create();
+        $criteria->orderBy(['label' => Order::Ascending]);
+
+        return $this->getAdminUsers()->matching($criteria);
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Form/UserGroupType.php b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
new file mode 100644
index 000000000..8a4685c7c
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
@@ -0,0 +1,58 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Form;
+
+use Chill\MainBundle\Form\Type\PickUserDynamicType;
+use Chill\MainBundle\Form\Type\TranslatableStringFormType;
+use Symfony\Component\Form\AbstractType;
+use Symfony\Component\Form\Extension\Core\Type\ColorType;
+use Symfony\Component\Form\Extension\Core\Type\TextType;
+use Symfony\Component\Form\FormBuilderInterface;
+
+class UserGroupType extends AbstractType
+{
+    public function buildForm(FormBuilderInterface $builder, array $options)
+    {
+        $builder
+            ->add('label', TranslatableStringFormType::class, [
+                'label' => 'user_group.Label',
+                'required' => true,
+            ])
+            ->add('active')
+            ->add('backgroundColor', ColorType::class, [
+                'label' => 'user_group.BackgroundColor',
+            ])
+            ->add('foregroundColor', ColorType::class, [
+                'label' => 'user_group.ForegroundColor',
+            ])
+            ->add('excludeKey', TextType::class, [
+                'label' => 'user_group.ExcludeKey',
+                'help' => 'user_group.ExcludeKeyHelp',
+                'required' => false,
+                'empty_data' => '',
+            ])
+            ->add('users', PickUserDynamicType::class, [
+                'label' => 'user_group.Users',
+                'multiple' => true,
+                'required' => false,
+                'empty_data' => [],
+            ])
+            ->add('adminUsers', PickUserDynamicType::class, [
+                'label' => 'user_group.adminUsers',
+                'multiple' => true,
+                'required' => false,
+                'empty_data' => [],
+                'help' => 'user_group.adminUsersHelp',
+            ])
+        ;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
index aa2d6f5f5..637846526 100644
--- a/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
@@ -59,8 +59,9 @@ final readonly class UserGroupRepository implements UserGroupRepositoryInterface
             ->setSelectPertinence('3 + SIMILARITY(LOWER(UNACCENT(?)), ug.label->>?) + CASE WHEN (EXISTS(SELECT 1 FROM unnest(string_to_array(label->>?, \' \')) AS t WHERE LOWER(t) LIKE \'%\' || LOWER(UNACCENT(?)) || \'%\')) THEN 100 ELSE 0 END', [$pattern, $lang, $lang, $pattern])
             ->setFromClause('chill_main_user_group AS ug')
             ->setWhereClauses('
+                ug.active AND (
                 SIMILARITY(LOWER(UNACCENT(?)), ug.label->>?) > 0.15
-                OR ug.label->>? LIKE \'%\' || LOWER(UNACCENT(?)) || \'%\'
+                OR ug.label->>? LIKE \'%\' || LOWER(UNACCENT(?)) || \'%\')
             ', [$pattern, $lang, $pattern, $lang]);
 
         return $query;
diff --git a/src/Bundle/ChillMainBundle/Resources/public/chill/scss/flex_table.scss b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/flex_table.scss
index 673d5129a..0adf2b628 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/chill/scss/flex_table.scss
+++ b/src/Bundle/ChillMainBundle/Resources/public/chill/scss/flex_table.scss
@@ -233,7 +233,7 @@ div.wrap-header {
         }
         &:last-child {}
 
-        div.wh-col {
+        & > div.wh-col {
             &:first-child {
                 flex-grow: 0; flex-shrink: 1; flex-basis: auto;
             }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/UserGroup/edit.html.twig b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/edit.html.twig
new file mode 100644
index 000000000..3090cb87c
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/edit.html.twig
@@ -0,0 +1,21 @@
+{% extends '@ChillMain/CRUD/Admin/index.html.twig' %}
+
+{% block css %}
+    {{ parent() }}
+    {{ encore_entry_link_tags('mod_pickentity_type') }}
+{% endblock %}
+
+{% block js %}
+    {{ parent() }}
+    {{ encore_entry_script_tags('mod_pickentity_type') }}
+{% endblock %}
+
+{% block title %}
+    {% include('@ChillMain/CRUD/_edit_title.html.twig') %}
+{% endblock %}
+
+{% block admin_content %}
+    {% embed '@ChillMain/CRUD/_edit_content.html.twig' %}
+        {% block content_form_actions_save_and_show %}{% endblock %}
+    {% endembed %}
+{% endblock admin_content %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/UserGroup/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/index.html.twig
new file mode 100644
index 000000000..c9d666f76
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/index.html.twig
@@ -0,0 +1,86 @@
+{% extends '@ChillMain/CRUD/Admin/index.html.twig' %}
+
+{% block admin_content %}
+    {% embed '@ChillMain/CRUD/_index.html.twig' %}
+
+        {% block table_entities %}
+            <div class="flex-table">
+                {% for entity in entities %}
+                    <div class="item-bloc">
+                        <div class="item-row">
+                            <div class="wrap-header">
+                                <div class="wh-row">
+                                    <div class="wh-col">
+                                        {{ entity|chill_entity_render_box }}
+                                    </div>
+                                    <div class="wh-col">
+                                        {%- if not entity.active -%}
+                                            <div>
+                                                <span class="badge bg-danger">{{ 'user_group.inactive'|trans }}</span>
+                                            </div>&nbsp;
+                                        {%- endif -%}
+                                        <div>{{ 'user_group.with_count_users'|trans({'count': entity.users|length}) }}</div>
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                        <div class="item-row separator">
+                            <div class="wrap-list">
+                                <div class="wl-row">
+                                    <div class="wl-col title">
+                                        <strong>{{ 'user_group.with_users'|trans }}</strong>
+                                    </div>
+                                    <div class="wl-col list">
+                                        {% for user in entity.userListByLabelAscending %}
+                                            <p class="wl-item">
+                                            <span class="badge-user">
+                                                {{ user|chill_entity_render_box }}
+                                            </span>
+                                            </p>
+                                        {% else %}
+                                            <p class="wl-item chill-no-data-statement">{{ 'user_group.no_users'|trans }}</p>
+                                        {% endfor %}
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                        <div class="item-row separator">
+                            <div class="wrap-list">
+                                <div class="wl-row">
+                                    <div class="wl-col title">
+                                        <strong>{{ 'user_group.adminUsers'|trans }}</strong>
+                                    </div>
+                                    <div class="wl-col list">
+                                        {% for user in entity.adminUserListByLabelAscending %}
+                                            <p class="wl-item">
+                                            <span class="badge-user">
+                                                {{ user|chill_entity_render_box }}
+                                            </span>
+                                            </p>
+                                        {% else %}
+                                            <p class="wl-item chill-no-data-statement">{{ 'user_group.no_admin_users'|trans }}</p>
+                                        {% endfor %}
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                        <div class="item-row separator">
+                            <ul class="record_actions slim">
+                                <li>
+                                    <a href="{{ chill_path_add_return_path('chill_crud_admin_user_group_edit', {'id': entity.id}) }}" class="btn btn-edit"></a>
+                                </li>
+                            </ul>
+                        </div>
+                    </div>
+                {% endfor %}
+            </div>
+        {% endblock %}
+
+        {% block actions_before %}
+            <li class='cancel'>
+                <a href="{{ path('chill_main_admin_central') }}" class="btn btn-cancel">{{'Back to the admin'|trans }}</a>
+            </li>
+        {% endblock %}
+
+    {% endembed %}
+{% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/UserGroup/new.html.twig b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/new.html.twig
new file mode 100644
index 000000000..2bb0c3d1f
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/new.html.twig
@@ -0,0 +1,21 @@
+{% extends '@ChillMain/CRUD/Admin/index.html.twig' %}
+
+{% block css %}
+    {{ parent() }}
+    {{ encore_entry_link_tags('mod_pickentity_type') }}
+{% endblock %}
+
+{% block js %}
+    {{ parent() }}
+    {{ encore_entry_script_tags('mod_pickentity_type') }}
+{% endblock %}
+
+{% block title %}
+    {% include('@ChillMain/CRUD/_new_title.html.twig') %}
+{% endblock %}
+
+{% block admin_content %}
+    {% embed '@ChillMain/CRUD/_new_content.html.twig' %}
+        {% block content_form_actions_save_and_show %}{% endblock %}
+    {% endembed %}
+{% endblock admin_content %}
diff --git a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
index 22bdfbeb8..6c2baf0fd 100644
--- a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
+++ b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/AdminUserMenuBuilder.php
@@ -67,6 +67,10 @@ class AdminUserMenuBuilder implements LocalMenuBuilderInterface
             'route' => 'chill_crud_admin_user_index',
         ])->setExtras(['order' => 1040]);
 
+        $menu->addChild('crud.admin_user_group.index.title', [
+            'route' => 'chill_crud_admin_user_group_index',
+        ])->setExtras(['order' => 1042]);
+
         $menu->addChild('User jobs', [
             'route' => 'chill_crud_admin_user_job_index',
         ])->setExtras(['order' => 1050]);
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php b/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php
index ce34eb5c2..788efb1e8 100644
--- a/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php
+++ b/src/Bundle/ChillMainBundle/migrations/Version20240927095751.php
@@ -2,6 +2,13 @@
 
 declare(strict_types=1);
 
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
 namespace Chill\Migrations\Main;
 
 use Doctrine\DBAL\Schema\Schema;
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 7f941b13a..ecfd0f5c8 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -5,6 +5,15 @@ years_old: >-
         other {# ans}
     }
 
+user_group:
+    with_count_users: >-
+        {count, plural,
+            =0 {Aucun membre}
+            one {1 utilisateur}
+            many {# utilisateurs}
+            other {# utilisateurs}
+        }
+
 notification:
     My notifications with counter: >-
         {nb, plural,
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 8bade3ce6..484e72a41 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -51,6 +51,20 @@ user:
         no job: Pas de métier assigné
         no scope: Pas de cercle assigné
 
+user_group:
+    inactive: Inactif
+    with_users: Associé aux utilisateurs
+    no_users: Aucun utilisateur associé
+    no_admin_users: Aucun administrateur
+    Label: Nom du groupe
+    BackgroundColor: Couleur de fond du badge
+    ForegroundColor: Couleur de la police du badge
+    ExcludeKey: Clé d'exclusion
+    ExcludeKeyHelp: Lorsque cela est pertinent, les groupes comportant la même clé d'exclusion s'excluent mutuellement.
+    Users: Membres du groupe
+    adminUsers: Administrateurs du groupe
+    adminUsersHelp: Les administrateurs du groupe peuvent ajouter ou retirer des membres dans le groupe.
+
 inactive: inactif
 
 Edit: Modifier
@@ -395,6 +409,12 @@ crud:
             add_new: Créer
         title_new: Nouveau métier
         title_edit: Modifier un métier
+    admin_user_group:
+        index:
+            title: Groupes d'utilisateurs
+            add_new: Créer
+        title_edit: Modifier un groupe d'utilisateur
+        title_new: Nouveau groupe utilisateur
     main_location_type:
         index:
             title: Liste des types de localisations

From 81706a61ef2d1be9addd68f08192db8a45a0863f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:02:32 +0200
Subject: [PATCH 289/375] Fix issue with duplicate a tag

---
 .../ChillMainBundle/Resources/views/Layout/_header.html.twig    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Layout/_header.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Layout/_header.html.twig
index ab823ff2e..035b8278a 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Layout/_header.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Layout/_header.html.twig
@@ -60,7 +60,7 @@
                                     data-bs-toggle="dropdown"
                                     aria-haspopup="true"
                                     aria-expanded="false">
-                                    <a href="#" class="more">{{ app.request.locale | capitalize }}</a>
+                                    {{ app.request.locale | capitalize }}
                                 </a>
                                 <div class="dropdown-menu dropdown-menu-end"
                                     aria-labelledby="menu-languages">

From 03a150aa16fafe6a45e8b97a798a801c4f59dae5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:03:11 +0200
Subject: [PATCH 290/375] Fix ChillUrlGenerator: merge parameters correctly

---
 src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
index eaecee628..f88ac0c8a 100644
--- a/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
+++ b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
@@ -27,7 +27,7 @@ final readonly class ChillUrlGenerator implements ChillUrlGeneratorInterface
     {
         $uri = $this->requestStack->getCurrentRequest()->getRequestUri();
 
-        return $this->urlGenerator->generate($name, [$parameters, 'returnPath' => $uri], $referenceType);
+        return $this->urlGenerator->generate($name, [...$parameters, 'returnPath' => $uri], $referenceType);
     }
 
     public function returnPathOr(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string

From 6b764114e4ef94dc0d95dca6bbe915791201e952 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:03:34 +0200
Subject: [PATCH 291/375] Add event for handling end of addNewEntity process

Added new event 'addNewEntityProcessEnded' to PickEntity component. This event triggers form submission when 'submit_on_adding_new_entity' is enabled, ensuring proper flow control.
---
 .../Resources/public/module/pick-entity/index.js    | 13 ++++++++-----
 .../public/vuejs/PickEntity/PickEntity.vue          |  3 ++-
 2 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/module/pick-entity/index.js b/src/Bundle/ChillMainBundle/Resources/public/module/pick-entity/index.js
index 03220630f..19194e318 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/module/pick-entity/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/module/pick-entity/index.js
@@ -44,7 +44,9 @@ function loadDynamicPicker(element) {
                 ':suggested="notPickedSuggested" ' +
                 ':label="label" ' +
                 '@addNewEntity="addNewEntity" ' +
-                '@removeEntity="removeEntity"></pick-entity>',
+                '@removeEntity="removeEntity" ' +
+                '@addNewEntityProcessEnded="addNewEntityProcessEnded"' +
+              '></pick-entity>',
             components: {
                 PickEntity,
             },
@@ -97,10 +99,11 @@ function loadDynamicPicker(element) {
                             }
                         }
                     }
-
-                    if (this.submit_on_adding_new_entity) {
-                        input.form.submit();
-                    }
+                },
+                addNewEntityProcessEnded() {
+                  if (this.submit_on_adding_new_entity) {
+                    input.form.submit();
+                  }
                 },
                 removeEntity({entity}) {
                     if (-1 === this.suggested.findIndex(e => e.type === entity.type && e.id === entity.id)) {
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/PickEntity/PickEntity.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/PickEntity/PickEntity.vue
index 75abc4fdd..e2ba91f8f 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/PickEntity/PickEntity.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/PickEntity/PickEntity.vue
@@ -62,7 +62,7 @@ export default {
             required: false,
         }
     },
-    emits: ['addNewEntity', 'removeEntity'],
+    emits: ['addNewEntity', 'removeEntity', 'addNewEntityProcessEnded'],
     components: {
         AddPersons,
     },
@@ -121,6 +121,7 @@ export default {
           );
           this.$refs.addPersons.resetSearch(); // to cast child method
           modal.showModal = false;
+          this.$emit('addNewEntityProcessEnded');
       },
       removeEntity(entity) {
           if (!this.$props.removableIfSet) {

From 7bedf1b5b8ff5b91f4f0d6c6994f2d8be817f63b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:03:53 +0200
Subject: [PATCH 292/375] Add some doc for PickUserDynamicType

---
 .../ChillMainBundle/Form/Type/PickUserDynamicType.php      | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php b/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
index aab9d4c51..2d6c5972a 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
@@ -24,6 +24,13 @@ use Symfony\Component\Serializer\SerializerInterface;
 
 /**
  * Pick user dymically, using vuejs module "AddPerson".
+ *
+ * Possible options:
+ *
+ * - `multiple`: pick one or more users
+ * - `suggested`: a list of suggested users
+ * - `as_id`: only the id will be set in the returned data
+ * - `submit_on_adding_new_entity`: the browser will immediately submit the form when new users are checked
  */
 class PickUserDynamicType extends AbstractType
 {

From 479651b31ee44fdee25a0c3e0f0272daaad5d2dd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:09:44 +0200
Subject: [PATCH 293/375] Add a list of user groups in User menu, and
 implements the feature to add / remove users

---
 .../Controller/UserGroupController.php        | 177 ++++++++++++++++++
 .../Repository/UserGroupRepository.php        |  68 ++++++-
 .../UserGroupRepositoryInterface.php          |   5 +
 .../views/UserGroup/my_user_groups.html.twig  | 160 ++++++++++++++++
 .../Resources/views/layout.html.twig          |   6 +-
 .../Routing/MenuBuilder/UserMenuBuilder.php   |   9 +-
 .../Security/Authorization/UserGroupVoter.php |  46 +++++
 .../translations/messages+intl-icu.fr.yaml    |   2 +
 .../translations/messages.fr.yml              |   7 +-
 9 files changed, 473 insertions(+), 7 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/UserGroupController.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/UserGroup/my_user_groups.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Security/Authorization/UserGroupVoter.php

diff --git a/src/Bundle/ChillMainBundle/Controller/UserGroupController.php b/src/Bundle/ChillMainBundle/Controller/UserGroupController.php
new file mode 100644
index 000000000..f1786206c
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/UserGroupController.php
@@ -0,0 +1,177 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Form\Type\PickUserDynamicType;
+use Chill\MainBundle\Pagination\PaginatorFactoryInterface;
+use Chill\MainBundle\Repository\UserGroupRepositoryInterface;
+use Chill\MainBundle\Routing\ChillUrlGeneratorInterface;
+use Chill\MainBundle\Security\Authorization\UserGroupVoter;
+use Chill\MainBundle\Templating\Entity\ChillEntityRenderManagerInterface;
+use Doctrine\ORM\EntityManagerInterface;
+use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
+use Symfony\Component\Form\Extension\Core\Type\FormType;
+use Symfony\Component\Form\FormFactoryInterface;
+use Symfony\Component\Form\FormInterface;
+use Symfony\Component\HttpFoundation\RedirectResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpFoundation\Session\Session;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Translation\TranslatableMessage;
+use Twig\Environment;
+
+/**
+ * Controller to see and manage user groups.
+ */
+final readonly class UserGroupController
+{
+    public function __construct(
+        private UserGroupRepositoryInterface $userGroupRepository,
+        private Security $security,
+        private PaginatorFactoryInterface $paginatorFactory,
+        private Environment $twig,
+        private FormFactoryInterface $formFactory,
+        private ChillUrlGeneratorInterface $chillUrlGenerator,
+        private EntityManagerInterface $objectManager,
+        private ChillEntityRenderManagerInterface $chillEntityRenderManager,
+    ) {}
+
+    #[Route('/{_locale}/main/user-groups/my', name: 'chill_main_user_groups_my')]
+    public function myUserGroups(): Response
+    {
+        if (!$this->security->isGranted('ROLE_USER')) {
+            throw new AccessDeniedHttpException();
+        }
+
+        $user = $this->security->getUser();
+
+        if (!$user instanceof User) {
+            throw new AccessDeniedHttpException();
+        }
+
+        $nb = $this->userGroupRepository->countByUser($user);
+        $paginator = $this->paginatorFactory->create($nb);
+
+        $groups = $this->userGroupRepository->findByUser($user, true, $paginator->getItemsPerPage(), $paginator->getCurrentPageFirstItemNumber());
+        $forms = new \SplObjectStorage();
+
+        foreach ($groups as $group) {
+            $forms->attach($group, $this->createFormAppendUserForGroup($group)?->createView());
+        }
+
+        return new Response($this->twig->render('@ChillMain/UserGroup/my_user_groups.html.twig', [
+            'groups' => $groups,
+            'paginator' => $paginator,
+            'forms' => $forms,
+        ]));
+    }
+
+    #[Route('/{_locale}/main/user-groups/{id}/append', name: 'chill_main_user_groups_append_users')]
+    public function appendUsersToGroup(UserGroup $userGroup, Request $request, Session $session): Response
+    {
+        if (!$this->security->isGranted(UserGroupVoter::APPEND_TO_GROUP, $userGroup)) {
+            throw new AccessDeniedHttpException();
+        }
+
+        $form = $this->createFormAppendUserForGroup($userGroup);
+
+        $form->handleRequest($request);
+
+        if ($form->isSubmitted() && $form->isValid()) {
+            foreach ($form['users']->getData() as $user) {
+                $userGroup->addUser($user);
+
+                $session->getFlashBag()->add(
+                    'success',
+                    new TranslatableMessage(
+                        'user_group.user_added',
+                        [
+                            'user_group' => $this->chillEntityRenderManager->renderString($userGroup, []),
+                            'user' => $this->chillEntityRenderManager->renderString($user, []),
+                        ]
+                    )
+                );
+            }
+
+            $this->objectManager->flush();
+
+            return new RedirectResponse(
+                $this->chillUrlGenerator->returnPathOr('chill_main_user_groups_my')
+            );
+        }
+        if ($form->isSubmitted()) {
+            $errors = [];
+            foreach ($form->getErrors() as $error) {
+                $errors[] = $error->getMessage();
+            }
+
+            return new Response(implode(', ', $errors));
+        }
+
+        return new RedirectResponse(
+            $this->chillUrlGenerator->returnPathOr('chill_main_user_groups_my')
+        );
+    }
+
+    /**
+     * @ParamConverter("user", class=User::class, options={"id" = "userId"})
+     */
+    #[Route('/{_locale}/main/user-group/{id}/user/{userId}/remove', name: 'chill_main_user_groups_remove_user')]
+    public function removeUserToGroup(UserGroup $userGroup, User $user, Session $session): Response
+    {
+        if (!$this->security->isGranted(UserGroupVoter::APPEND_TO_GROUP, $userGroup)) {
+            throw new AccessDeniedHttpException();
+        }
+
+        $userGroup->removeUser($user);
+        $this->objectManager->flush();
+
+        $session->getFlashBag()->add(
+            'success',
+            new TranslatableMessage(
+                'user_group.user_removed',
+                [
+                    'user_group' => $this->chillEntityRenderManager->renderString($userGroup, []),
+                    'user' => $this->chillEntityRenderManager->renderString($user, []),
+                ]
+            )
+        );
+
+        return new RedirectResponse(
+            $this->chillUrlGenerator->returnPathOr('chill_main_user_groups_my')
+        );
+    }
+
+    private function createFormAppendUserForGroup(UserGroup $group): ?FormInterface
+    {
+        if (!$this->security->isGranted(UserGroupVoter::APPEND_TO_GROUP, $group)) {
+            return null;
+        }
+
+        $builder = $this->formFactory->createBuilder(FormType::class, ['users' => []], [
+            'action' => $this->chillUrlGenerator->generateWithReturnPath('chill_main_user_groups_append_users', ['id' => $group->getId()]),
+        ]);
+        $builder->add('users', PickUserDynamicType::class, [
+            'submit_on_adding_new_entity' => true,
+            'label' => 'user_group.append_users',
+            'mapped' => false,
+            'multiple' => true,
+        ]);
+
+        return $builder->getForm();
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
index 637846526..e1c54442d 100644
--- a/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/UserGroupRepository.php
@@ -11,20 +11,34 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Repository;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Search\SearchApiQuery;
 use Doctrine\ORM\EntityManagerInterface;
 use Doctrine\ORM\EntityRepository;
+use Symfony\Contracts\Translation\LocaleAwareInterface;
 
-final readonly class UserGroupRepository implements UserGroupRepositoryInterface
+final class UserGroupRepository implements UserGroupRepositoryInterface, LocaleAwareInterface
 {
-    private EntityRepository $repository;
+    private readonly EntityRepository $repository;
+
+    private string $locale;
 
     public function __construct(EntityManagerInterface $em)
     {
         $this->repository = $em->getRepository(UserGroup::class);
     }
 
+    public function setLocale(string $locale): void
+    {
+        $this->locale = $locale;
+    }
+
+    public function getLocale(): string
+    {
+        return $this->locale;
+    }
+
     public function find($id): ?UserGroup
     {
         return $this->repository->find($id);
@@ -66,4 +80,54 @@ final readonly class UserGroupRepository implements UserGroupRepositoryInterface
 
         return $query;
     }
+
+    public function findByUser(User $user, bool $onlyActive = true, ?int $limit = null, ?int $offset = null): array
+    {
+        $qb = $this->buildQueryByUser($user, $onlyActive);
+
+        if (null !== $limit) {
+            $qb->setMaxResults($limit);
+        }
+
+        if (null !== $offset) {
+            $qb->setFirstResult($offset);
+        }
+
+        // ordering thing
+        $qb->addSelect('JSON_EXTRACT(ug.label, :lang) AS HIDDEN label_ordering')
+            ->addOrderBy('label_ordering', 'ASC')
+            ->setParameter('lang', $this->getLocale());
+
+        return $qb->getQuery()->getResult();
+    }
+
+    public function countByUser(User $user, bool $onlyActive = true): int
+    {
+        $qb = $this->buildQueryByUser($user, $onlyActive);
+        $qb->select('count(ug)');
+
+        return $qb->getQuery()->getSingleScalarResult();
+    }
+
+    private function buildQueryByUser(User $user, bool $onlyActive): \Doctrine\ORM\QueryBuilder
+    {
+        $qb = $this->repository->createQueryBuilder('ug');
+        $qb->where(
+            $qb->expr()->orX(
+                $qb->expr()->isMemberOf(':user', 'ug.users'),
+                $qb->expr()->isMemberOf(':user', 'ug.adminUsers')
+            )
+        );
+
+        $qb->setParameter('user', $user);
+
+        if ($onlyActive) {
+            $qb->andWhere(
+                $qb->expr()->eq('ug.active', ':active')
+            );
+            $qb->setParameter('active', true);
+        }
+
+        return $qb;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php b/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
index 9512e7b25..c3a729ad4 100644
--- a/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
+++ b/src/Bundle/ChillMainBundle/Repository/UserGroupRepositoryInterface.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Repository;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Search\SearchApiQuery;
 use Doctrine\Persistence\ObjectRepository;
@@ -24,4 +25,8 @@ interface UserGroupRepositoryInterface extends ObjectRepository
      * Provide a SearchApiQuery for searching amongst user groups.
      */
     public function provideSearchApiQuery(string $pattern, string $lang, string $selectKey = 'user-group'): SearchApiQuery;
+
+    public function findByUser(User $user, bool $onlyActive = true, ?int $limit = null, ?int $offset = null): array;
+
+    public function countByUser(User $user, bool $onlyActive = true): int;
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/UserGroup/my_user_groups.html.twig b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/my_user_groups.html.twig
new file mode 100644
index 000000000..7f13c1618
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/UserGroup/my_user_groups.html.twig
@@ -0,0 +1,160 @@
+{% extends '@ChillMain/layout.html.twig' %}
+
+{% block css %}
+    {{ parent() }}
+    {{ encore_entry_link_tags('mod_pickentity_type') }}
+
+    <style type="text/css">
+        form.remove {
+            display: inline-block;
+            padding: 1px;
+            border: 1px solid transparent;
+            border-radius: 4px;
+        }
+        form:hover {
+            animation-duration: 0.5s;
+            animation-name: onHover;
+            animation-iteration-count: 1;
+            border: 1px solid #dee2e6;
+            border-radius: 4px;
+        }
+        form.remove button.remove {
+            display: inline;
+            background-color: unset;
+            border: none;
+            color: var(--bs-chill-red);
+        }
+
+        @keyframes onHover {
+           from {
+               border: 1px solid transparent;
+           }
+           to {
+               border: 1px solid #dee2e6;
+           }
+        }
+    </style>
+{% endblock %}
+
+{% block js %}
+    {{ parent() }}
+    {{ encore_entry_script_tags('mod_pickentity_type') }}
+{% endblock %}
+
+{% block title 'user_group.my_groups'|trans %}
+
+{% block content %}
+    <h1>{{ block('title') }}</h1>
+
+    {% if paginator.totalItems == 0 %}
+        <p>{{ 'user_group.no_user_groups'|trans }}</p>
+    {% else %}
+        <div class="flex-table">
+            {% for entity in groups %}
+                <div class="item-bloc">
+                    <div class="item-row">
+                        <div class="wrap-header">
+                            <div class="wh-row">
+                                <div class="wh-col">
+                                    {{ entity|chill_entity_render_box }}
+                                </div>
+                                <div class="wh-col">
+                                    {%- if not entity.active -%}
+                                        <div>
+                                            <span class="badge bg-danger">{{ 'user_group.inactive'|trans }}</span>
+                                        </div>&nbsp;
+                                    {%- endif -%}
+                                    <div>{{ 'user_group.with_count_users'|trans({'count': entity.users|length}) }}</div>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                    <div class="item-row separator">
+                        <div class="wrap-list">
+                            <div class="wl-row">
+                                <div class="wl-col title">
+                                    <strong>{{ 'user_group.with_users'|trans }}</strong>
+                                </div>
+                                <div class="wl-col list">
+                                    {% if entity.users.contains(app.user) %}
+                                        {% if is_granted('CHILL_MAIN_USER_GROUP_APPEND_TO_GROUP', entity) %}
+                                            <form class="remove" method="POST" action="{{ chill_path_add_return_path('chill_main_user_groups_remove_user', {'id': entity.id, 'userId': app.user.id}) }}">
+                                                <p class="wl-item">
+                                                    {{ 'user_group.me'|trans }}
+                                                    <button class="remove" type="submit"><i class="fa fa-times"></i></button>
+                                                </p>
+                                            </form>
+                                        {% else %}
+                                            <p class="wl-item">
+                                                {% if entity.users|length > 1 %}{{ 'user_group.me_and'|trans }}{% else %}{{ 'user_group.me_only'|trans }}{% endif %}
+                                            </p>
+                                        {% endif %}
+                                    {% endif %}
+                                    {% for user in entity.userListByLabelAscending %}
+                                        {% if user is not same as app.user %}
+                                            {% if is_granted('CHILL_MAIN_USER_GROUP_APPEND_TO_GROUP', entity) %}
+                                                <form class="remove" method="POST" action="{{ chill_path_add_return_path('chill_main_user_groups_remove_user', {'id': entity.id, 'userId': user.id}) }}">
+                                                    <p class="wl-item">
+                                                        <span class="badge-user">
+                                                            {{ user|chill_entity_render_box }}
+                                                        </span>
+                                                        <button class="remove" type="submit"><i class="fa fa-times"></i></button>
+                                                    </p>
+                                                </form>
+                                            {% else %}
+                                                <p class="wl-item">
+                                                    <span class="badge-user">
+                                                        {{ user|chill_entity_render_box }}
+                                                    </span>
+                                                </p>
+                                            {% endif %}
+                                        {% endif %}
+                                    {% endfor %}
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                    {% if entity.adminUsers|length > 0 %}
+                        <div class="item-row separator">
+                            <div class="wrap-list">
+                                <div class="wl-row">
+                                    <div class="wl-col title">
+                                        <strong>{{ 'user_group.adminUsers'|trans }}</strong>
+                                    </div>
+                                    <div class="wl-col list">
+                                        {% if entity.adminUsers.contains(app.user) %}
+                                            <p class="wl-item">{% if entity.adminUsers|length > 1 %}{{ 'user_group.me_and'|trans }}{% else %}{{ 'user_group.me_only'|trans }}{% endif %}</p>
+                                        {% endif %}
+                                        {% for user in entity.adminUserListByLabelAscending %}
+                                            {% if user is not same as app.user %}
+                                                <p class="wl-item">
+                                                    <span class="badge-user">
+                                                        {{ user|chill_entity_render_box }}
+                                                    </span>
+                                                </p>
+                                            {% endif %}
+                                        {% endfor %}
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                    {% endif -%}
+                    {%- set form = forms.offsetGet(entity) %}
+                    {%- if form is not null -%}
+                        <div class="item-row separator">
+                            <ul class="record_actions slim">
+                                <li>
+                                    {{- form_start(form) -}}
+                                    {{- form_widget(form.users) -}}
+                                    {{- form_end(form) -}}
+                                </li>
+                            </ul>
+                        </div>
+                    {%- endif %}
+                </div>
+            {% endfor %}
+        </div>
+
+        {{ chill_pagination(paginator) }}
+    {% endif %}
+{% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/layout.html.twig b/src/Bundle/ChillMainBundle/Resources/views/layout.html.twig
index bef5c9abd..30f84c855 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/layout.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/layout.html.twig
@@ -49,19 +49,19 @@
 
                             {% for flashMessage in app.session.flashbag.get('success') %}
                                 <div class="alert alert-success flash_message">
-                                    <span>{{ flashMessage|raw }}</span>
+                                    <span>{{ flashMessage|trans }}</span>
                                 </div>
                             {% endfor %}
 
                             {% for flashMessage in app.session.flashbag.get('error') %}
                                 <div class="alert alert-danger flash_message">
-                                    <span>{{ flashMessage|raw }}</span>
+                                    <span>{{ flashMessage|trans }}</span>
                                 </div>
                             {% endfor %}
 
                             {% for flashMessage in app.session.flashbag.get('notice') %}
                                 <div class="alert alert-warning flash_message">
-                                    <span>{{ flashMessage|raw }}</span>
+                                    <span>{{ flashMessage|trans }}</span>
                                 </div>
                             {% endfor %}
 
diff --git a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/UserMenuBuilder.php b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/UserMenuBuilder.php
index 3427face3..228e2c967 100644
--- a/src/Bundle/ChillMainBundle/Routing/MenuBuilder/UserMenuBuilder.php
+++ b/src/Bundle/ChillMainBundle/Routing/MenuBuilder/UserMenuBuilder.php
@@ -60,7 +60,6 @@ class UserMenuBuilder implements LocalMenuBuilderInterface
 
             $nbNotifications = $this->notificationByUserCounter->countUnreadByUser($user);
 
-            // TODO add an icon? How exactly? For example a clock icon...
             $menu
                 ->addChild($this->translator->trans('absence.Set absence date'), [
                     'route' => 'chill_main_user_absence_index',
@@ -69,6 +68,14 @@ class UserMenuBuilder implements LocalMenuBuilderInterface
                     'order' => -8_888_888,
                 ]);
 
+            $menu
+                ->addChild($this->translator->trans('user_group.my_groups'), [
+                    'route' => 'chill_main_user_groups_my',
+                ])
+                ->setExtras([
+                    'order' => -7_777_777,
+                ]);
+
             $menu
                 ->addChild(
                     $this->translator->trans('notification.My notifications with counter', ['nb' => $nbNotifications]),
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/UserGroupVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/UserGroupVoter.php
new file mode 100644
index 000000000..7256c2567
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/UserGroupVoter.php
@@ -0,0 +1,46 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Security\Authorization;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+use Symfony\Component\Security\Core\Security;
+
+final class UserGroupVoter extends Voter
+{
+    public const APPEND_TO_GROUP = 'CHILL_MAIN_USER_GROUP_APPEND_TO_GROUP';
+
+    public function __construct(private readonly Security $security) {}
+
+    protected function supports(string $attribute, $subject)
+    {
+        return self::APPEND_TO_GROUP === $attribute && $subject instanceof UserGroup;
+    }
+
+    protected function voteOnAttribute(string $attribute, $subject, TokenInterface $token)
+    {
+        /* @var UserGroup $subject */
+        if ($this->security->isGranted('ROLE_ADMIN')) {
+            return true;
+        }
+
+        $user = $this->security->getUser();
+
+        if (!$user instanceof User) {
+            return false;
+        }
+
+        return $subject->getAdminUsers()->contains($user);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index ecfd0f5c8..79205862a 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -13,6 +13,8 @@ user_group:
             many {# utilisateurs}
             other {# utilisateurs}
         }
+    user_removed: L'utilisateur {user} est enlevé du groupe {user_group} avec succès
+    user_added: L'utilisateur {user} est ajouté groupe {user_group} avec succès
 
 notification:
     My notifications with counter: >-
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 484e72a41..bec5e1adb 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -53,7 +53,7 @@ user:
 
 user_group:
     inactive: Inactif
-    with_users: Associé aux utilisateurs
+    with_users: Membres
     no_users: Aucun utilisateur associé
     no_admin_users: Aucun administrateur
     Label: Nom du groupe
@@ -64,6 +64,11 @@ user_group:
     Users: Membres du groupe
     adminUsers: Administrateurs du groupe
     adminUsersHelp: Les administrateurs du groupe peuvent ajouter ou retirer des membres dans le groupe.
+    my_groups: Mes groupes
+    me_and: Moi et
+    me_only: Uniquement moi
+    me: Moi
+    append_users: Ajouter des utilisateurs
 
 inactive: inactif
 

From 803332ba5fe5843347e9325ecae01f7edc4fa726 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 16:28:32 +0200
Subject: [PATCH 294/375] Remove the feature "send a workflow to an email
 address"

---
 .../Entity/Workflow/EntityWorkflow.php        |  4 --
 .../Entity/Workflow/EntityWorkflowStep.php    |  8 +++
 .../ChillMainBundle/Form/WorkflowStepType.php | 22 +------
 .../views/Workflow/_decision.html.twig        | 13 ----
 .../workflow_send_access_key.fr.txt.twig      | 15 -----
 ...workflow_send_access_key_title.fr.txt.twig |  1 -
 .../EntityWorkflowMarkingStoreTest.php        |  2 -
 .../SendAccessKeyEventSubscriber.php          | 59 -------------------
 .../Workflow/WorkflowTransitionContextDTO.php | 11 ----
 .../ChillMainBundle/config/services.yaml      | 11 ----
 10 files changed, 9 insertions(+), 137 deletions(-)
 delete mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
 delete mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key_title.fr.txt.twig
 delete mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index d25d20d6a..f68dc7b7e 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -454,10 +454,6 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             $newStep->addDestUser($transitionContextDTO->futureUserSignature);
         }
 
-        foreach ($transitionContextDTO->futureDestEmails as $email) {
-            $newStep->addDestEmail($email);
-        }
-
         if (null !== $transitionContextDTO->futureUserSignature) {
             new EntityWorkflowStepSignature($newStep, $transitionContextDTO->futureUserSignature);
         } else {
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index b64d61b71..3daacd49d 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -132,6 +132,9 @@ class EntityWorkflowStep
         return $this;
     }
 
+    /**
+     * @deprecated
+     */
     public function addDestEmail(string $email): self
     {
         if (!\in_array($email, $this->destEmail, true)) {
@@ -242,6 +245,11 @@ class EntityWorkflowStep
         return $this->currentStep;
     }
 
+    /**
+     * @return array<string>
+     *
+     * @deprecated
+     */
     public function getDestEmail(): array
     {
         return $this->destEmail;
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 8ab17e1e1..e55b1896d 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -12,7 +12,6 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Form;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
-use Chill\MainBundle\Form\Type\ChillCollectionType;
 use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Form\Type\PickUserGroupOrUserDynamicType;
@@ -21,12 +20,9 @@ use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
-use Symfony\Component\Form\Extension\Core\Type\EmailType;
 use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\OptionsResolver\OptionsResolver;
 use Symfony\Component\Validator\Constraints\Callback;
-use Symfony\Component\Validator\Constraints\Email;
-use Symfony\Component\Validator\Constraints\NotBlank;
 use Symfony\Component\Validator\Constraints\NotNull;
 use Symfony\Component\Validator\Context\ExecutionContextInterface;
 use Symfony\Component\Workflow\Registry;
@@ -170,21 +166,6 @@ class WorkflowStepType extends AbstractType
                 'suggested' => $options['suggested_users'],
                 'empty_data' => '[]',
                 'attr' => ['class' => 'future-cc-users'],
-            ])
-            ->add('futureDestEmails', ChillCollectionType::class, [
-                'label' => 'workflow.dest by email',
-                'help' => 'workflow.dest by email help',
-                'allow_add' => true,
-                'entry_type' => EmailType::class,
-                'button_add_label' => 'workflow.Add an email',
-                'button_remove_label' => 'workflow.Remove an email',
-                'empty_collection_explain' => 'workflow.Any email',
-                'entry_options' => [
-                    'constraints' => [
-                        new NotNull(), new NotBlank(), new Email(),
-                    ],
-                    'label' => 'Email',
-                ],
             ]);
 
         $builder
@@ -223,9 +204,8 @@ class WorkflowStepType extends AbstractType
                                 }
                             }
                             $destUsers = $step->futureDestUsers;
-                            $destEmails = $step->futureDestEmails;
 
-                            if (!$toFinal && [] === $destUsers && [] === $destEmails) {
+                            if (!$toFinal && [] === $destUsers) {
                                 $context
                                     ->buildViolation('workflow.You must add at least one dest user or email')
                                     ->atPath('future_dest_users')
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 4f43c4dad..575e7cb22 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -82,10 +82,6 @@
         {{ form_row(transition_form.futureCcUsers) }}
         {{ form_errors(transition_form.futureCcUsers) }}
         </div>
-        <div id="future-dest-emails">
-        {{ form_row(transition_form.futureDestEmails) }}
-        {{ form_errors(transition_form.futureDestEmails) }}
-        </div>
     </div>
 
     <p>{{ form_label(transition_form.comment) }}</p>
@@ -115,15 +111,6 @@
                 </ul>
             {% endif %}
 
-            {% if entity_workflow.currentStep.destEmail|length > 0 %}
-                <p><b>{{ 'workflow.An access key was also sent to those addresses'|trans }}&nbsp;:</b></p>
-                <ul>
-                    {% for e in entity_workflow.currentStep.destEmail -%}
-                        <li><a href="mailto:{{ e|escape('html_attr') }}">{{ e }}</a></li>
-                    {%- endfor %}
-                </ul>
-            {% endif %}
-
             {% if entity_workflow.currentStep.destUserByAccessKey|length > 0 %}
                 <p><b>{{ 'workflow.Those users are also granted to apply a transition by using an access key'|trans }}&nbsp;:</b></p>
                 <ul>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
deleted file mode 100644
index b4574567d..000000000
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key.fr.txt.twig
+++ /dev/null
@@ -1,15 +0,0 @@
-Madame, Monsieur,
-
-Un suivi "{{ workflow.text }}" a atteint une nouvelle étape: {{ workflow.text }}.
-
-Titre du workflow: "{{ entityTitle }}".
-
-Vous êtes invité·e à valider cette étape. Pour obtenir un accès, vous pouvez cliquer sur le lien suivant:
-
-{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.currentStep.id, 'accessKey': entity_workflow.currentStep.accessKey, '_locale': fr})) }}
-
-Dès que vous aurez cliqué une fois sur le lien, vous serez autorisé à valider cette étape.
-
-Notez que vous devez disposer d'un compte utilisateur valide dans Chill.
-
-Cordialement,
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key_title.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key_title.fr.txt.twig
deleted file mode 100644
index b505a97ed..000000000
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_access_key_title.fr.txt.twig
+++ /dev/null
@@ -1 +0,0 @@
-Un suivi {{ workflow.text }} demande votre attention: {{ entityTitle }}
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
index 4922cab17..952528dda 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowMarkingStoreTest.php
@@ -44,7 +44,6 @@ class EntityWorkflowMarkingStoreTest extends TestCase
         $dto = new WorkflowTransitionContextDTO($workflow);
         $dto->futureCcUsers[] = $user1 = new User();
         $dto->futureDestUsers[] = $user2 = new User();
-        $dto->futureDestEmails[] = $email = 'test@example.com';
 
         $markingStore->setMarking($workflow, new Marking(['foo' => 1]), [
             'context' => $dto,
@@ -55,7 +54,6 @@ class EntityWorkflowMarkingStoreTest extends TestCase
 
         $currentStep = $workflow->getCurrentStep();
         self::assertEquals('foo', $currentStep->getCurrentStep());
-        self::assertContains($email, $currentStep->getDestEmail());
         self::assertContains($user1, $currentStep->getCcUser());
         self::assertContains($user2, $currentStep->getDestUser());
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
deleted file mode 100644
index a7bae81d4..000000000
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/SendAccessKeyEventSubscriber.php
+++ /dev/null
@@ -1,59 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-/*
- * Chill is a software for social workers
- *
- * For the full copyright and license information, please view
- * the LICENSE file that was distributed with this source code.
- */
-
-namespace Chill\MainBundle\Workflow\EventSubscriber;
-
-use Chill\MainBundle\Entity\Workflow\EntityWorkflowStep;
-use Chill\MainBundle\Workflow\EntityWorkflowManager;
-use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
-use Symfony\Component\Mailer\MailerInterface;
-use Symfony\Component\Mime\Email;
-use Symfony\Component\Workflow\Registry;
-
-class SendAccessKeyEventSubscriber
-{
-    public function __construct(
-        private readonly \Twig\Environment $engine,
-        private readonly MetadataExtractor $metadataExtractor,
-        private readonly Registry $registry,
-        private readonly EntityWorkflowManager $entityWorkflowManager,
-        private readonly MailerInterface $mailer,
-    ) {}
-
-    public function postPersist(EntityWorkflowStep $step): void
-    {
-        $entityWorkflow = $step->getEntityWorkflow();
-
-        $place = $this->metadataExtractor->buildArrayPresentationForPlace($entityWorkflow);
-        $workflow = $this->metadataExtractor->buildArrayPresentationForWorkflow(
-            $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName())
-        );
-        $handler = $this->entityWorkflowManager->getHandler($entityWorkflow);
-
-        foreach ($step->getDestEmail() as $emailAddress) {
-            $context = [
-                'entity_workflow' => $entityWorkflow,
-                'dest' => $emailAddress,
-                'place' => $place,
-                'workflow' => $workflow,
-                'entityTitle' => $handler->getEntityTitle($entityWorkflow),
-            ];
-
-            $email = new Email();
-            $email
-                ->addTo($emailAddress)
-                ->subject($this->engine->render('@ChillMain/Workflow/workflow_send_access_key_title.fr.txt.twig', $context))
-                ->text($this->engine->render('@ChillMain/Workflow/workflow_send_access_key.fr.txt.twig', $context));
-
-            $this->mailer->send($email);
-        }
-    }
-}
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index cc22d614a..370aef0cf 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -42,17 +42,6 @@ class WorkflowTransitionContextDTO
      */
     public array $futureCcUsers = [];
 
-    /**
-     * a list of future dest emails for the next step.
-     *
-     * This is in used in order to let controller inform who will be the future emails which will validate
-     * the next step. This is necessary to perform some computation about the next emails, before they are
-     * associated to the entity EntityWorkflowStep.
-     *
-     * @var array|string[]
-     */
-    public array $futureDestEmails = [];
-
     /**
      * A list of future @see{Person} with will sign the next step.
      *
diff --git a/src/Bundle/ChillMainBundle/config/services.yaml b/src/Bundle/ChillMainBundle/config/services.yaml
index 5976cb8b0..8b4aaa7bf 100644
--- a/src/Bundle/ChillMainBundle/config/services.yaml
+++ b/src/Bundle/ChillMainBundle/config/services.yaml
@@ -42,17 +42,6 @@ services:
         arguments:
             $handlers: !tagged_iterator chill_main.workflow_handler
 
-    Chill\MainBundle\Workflow\EventSubscriber\SendAccessKeyEventSubscriber:
-        autoconfigure: true
-        autowire: true
-        tags:
-            -
-                name: 'doctrine.orm.entity_listener'
-                event: 'postPersist'
-                entity: 'Chill\MainBundle\Entity\Workflow\EntityWorkflowStep'
-                # set the 'lazy' option to TRUE to only instantiate listeners when they are used
-                lazy: true
-
     # other stuffes
 
     chill.main.helper.translatable_string:

From d8ad8c36052086f26a3709175ddbfbed1f2e5968 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 17:14:58 +0200
Subject: [PATCH 295/375] Add previous exception to the stack when denormlizing
 Discriminated Object

---
 .../Serializer/Normalizer/DiscriminatedObjectDenormalizer.php   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Serializer/Normalizer/DiscriminatedObjectDenormalizer.php b/src/Bundle/ChillMainBundle/Serializer/Normalizer/DiscriminatedObjectDenormalizer.php
index 1ecb7824f..12b7a908f 100644
--- a/src/Bundle/ChillMainBundle/Serializer/Normalizer/DiscriminatedObjectDenormalizer.php
+++ b/src/Bundle/ChillMainBundle/Serializer/Normalizer/DiscriminatedObjectDenormalizer.php
@@ -47,7 +47,7 @@ class DiscriminatedObjectDenormalizer implements ContextAwareDenormalizerInterfa
             }
         }
 
-        throw new RuntimeException(sprintf('Could not find any denormalizer for those ALLOWED_TYPES: %s', \implode(', ', $context[self::ALLOWED_TYPES])));
+        throw new RuntimeException(sprintf('Could not find any denormalizer for those ALLOWED_TYPES: %s', \implode(', ', $context[self::ALLOWED_TYPES])), previous: $lastException ?? null);
     }
 
     public function supportsDenormalization($data, $type, $format = null, array $context = [])

From c4c7280b5294cdadfe7d00bad612c2a60c5062bd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 17:16:49 +0200
Subject: [PATCH 296/375] Fix Create a PickUserGroupOrUserDynamicType

---
 src/Bundle/ChillMainBundle/Entity/UserGroup.php        |  5 ++++-
 .../Type/DataTransformer/EntityToJsonTransformer.php   | 10 +++++++++-
 .../Form/Type/PickUserGroupOrUserDynamicType.php       |  2 +-
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index b42609693..b39216b11 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -18,9 +18,12 @@ use Doctrine\Common\Collections\Order;
 use Doctrine\Common\Collections\ReadableCollection;
 use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
+use Symfony\Component\Serializer\Annotation\DiscriminatorMap;
 
 #[ORM\Entity]
 #[ORM\Table(name: 'chill_main_user_group')]
+// this discriminator key is required for automated denormalization
+#[DiscriminatorMap('type', mapping: ['user_group' => UserGroup::class])]
 class UserGroup
 {
     #[ORM\Id]
@@ -65,7 +68,7 @@ class UserGroup
 
     public function __construct()
     {
-        $this->adminUsers = new \Doctrine\Common\Collections\ArrayCollection();
+        $this->adminUsers = new ArrayCollection();
         $this->users = new ArrayCollection();
     }
 
diff --git a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
index 737c4683f..c6839efa8 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Form\Type\DataTransformer;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Serializer\Normalizer\DiscriminatedObjectDenormalizer;
 use Chill\PersonBundle\Entity\Person;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Symfony\Component\Form\DataTransformerInterface;
@@ -76,15 +77,22 @@ class EntityToJsonTransformer implements DataTransformerInterface
             'person' => Person::class,
             'thirdparty' => ThirdParty::class,
             'user_group' => UserGroup::class,
+            'user_group_or_user' => DiscriminatedObjectDenormalizer::TYPE,
             default => throw new \UnexpectedValueException('This type is not supported'),
         };
 
+        $context = [AbstractNormalizer::GROUPS => ['read']];
+
+        if ('user_group_or_user' === $this->type) {
+            $context[DiscriminatedObjectDenormalizer::ALLOWED_TYPES] = [UserGroup::class, User::class];
+        }
+
         return
             $this->denormalizer->denormalize(
                 ['type' => $item['type'], 'id' => $item['id']],
                 $class,
                 'json',
-                [AbstractNormalizer::GROUPS => ['read']],
+                $context,
             );
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
index 00d783a97..c4e91cce4 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
@@ -30,7 +30,7 @@ final class PickUserGroupOrUserDynamicType extends AbstractType
 
     public function buildForm(FormBuilderInterface $builder, array $options)
     {
-        $builder->addViewTransformer(new EntityToJsonTransformer($this->denormalizer, $this->serializer, $options['multiple'], 'user_group'));
+        $builder->addViewTransformer(new EntityToJsonTransformer($this->denormalizer, $this->serializer, $options['multiple'], 'user_group_or_user'));
     }
 
     public function buildView(FormView $view, FormInterface $form, array $options)

From cef641ee245cf5b613e2d1e1656e61b434ff1ccd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 18:18:14 +0200
Subject: [PATCH 297/375] Render the history for workflow, with signature and
 onHold, and destUserGroups

---
 .../views/Workflow/_decision.html.twig        | 15 ++++-
 .../views/Workflow/_history.html.twig         | 40 ++++++++++----
 .../views/Workflow/_signature.html.twig       | 55 +------------------
 .../views/Workflow/_signature_list.html.twig  | 52 ++++++++++++++++++
 .../Resources/views/Workflow/index.html.twig  | 15 -----
 .../Templating/Entity/UserGroupRender.php     |  2 +-
 .../translations/messages+intl-icu.fr.yaml    | 10 +++-
 7 files changed, 106 insertions(+), 83 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_list.html.twig

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index 575e7cb22..abad0801a 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -88,7 +88,20 @@
 
     {{ form_widget(transition_form.comment) }}
 
-    <ul class="record_actions">
+    <ul class="record_actions sticky-form-buttons">
+        {% if entity_workflow.isOnHoldByUser(app.user)  %}
+            <li>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'id': entity_workflow.currentStep.id }) }}"><i class="fa fa-hourglass"></i>
+                    {{ 'workflow.Remove hold'|trans }}
+                </a>
+            </li>
+        {% else %}
+            <li>
+                <a class="btn btn-misc" href="{{ path('chill_main_workflow_on_hold', {'id': entity_workflow.id}) }}"><i class="fa fa-hourglass"></i>
+                    {{ 'workflow.Put on hold'|trans }}
+                </a>
+            </li>
+        {% endif %}
         <li>
             <button type="submit" class="btn btn-save">{{ 'Save'|trans }}</button>
         </li>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index 1a37baf27..d6e5e3216 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -13,22 +13,22 @@
                         {{ 'workflow.No transitions'|trans }}
                     </div>
                 {% else %}
-
                     <div class="item-col">
                         {% if step.previous is not null and step.previous.freezeAfter == true %}
                             <i class="fa fa-snowflake-o fa-sm me-1" title="{{ 'workflow.Freezed'|trans }}"></i>
                         {% endif %}
+                        {% if loop.last %}
+                            {% if entity_workflow.isOnHoldAtCurrentStep %}
+                                {% for hold in step.holdsOnStep %}
+                                    <span class="badge bg-success rounded-pill" title="{{ 'workflow.On hold by'|trans({'by': hold.byUser|chill_entity_render_string})|escape('html_attr') }}">{{ 'workflow.On hold by'|trans({'by': hold.byUser|chill_entity_render_string}) }}</span>
+                                {% endfor %}
+                            {% endif %}
+                        {% endif %}
                     </div>
                     <div class="item-col flex-column align-items-end">
                         <div class="decided">
                             {{ place_label }}
                         </div>
-                        {#
-                        <div class="decided">
-                        <i class="fa fa-times fa-fw text-danger"></i>
-                        Refusé
-                        </div>
-                        #}
                     </div>
                 {% endif %}
 
@@ -71,19 +71,33 @@
                     </blockquote>
                 </div>
             {% endif %}
-            {% if loop.last and step.allDestUser|length > 0 %}
+            {% if not loop.last and step.signatures|length > 0 %}
+                <div class="separator">
+                    <div>
+                        <p><b>{{ 'workflow.signature_required_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
+                        <div>
+                            {{ include('@ChillMain/Workflow/_signature_list.html.twig', {'signatures': step.signatures, is_small: true }) }}
+                        </div>
+                    </div>
+                </div>
+            {% endif %}
+            {% if loop.last and not step.isFinal %}
                 <div class="item-row separator">
                     <div>
-                        {% if step.destUser|length > 0 %}
+                        {% if step.destUser|length > 0 or step.destUserGroups|length > 0 %}
                             <p><b>{{ 'workflow.Users allowed to apply transition'|trans }}&nbsp;: </b></p>
                             <ul>
                                 {% for u in step.destUser %}
-                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}
-                                        {% if entity_workflow.isOnHoldAtCurrentStep %}
+                                    <li>
+                                        <span class="badge-user">{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</span>
+                                        {% if step.isOnHoldByUser(u) %}
                                             <span class="badge bg-success rounded-pill" title="{{ 'workflow.On hold'|trans|escape('html_attr') }}">{{ 'workflow.On hold'|trans }}</span>
                                         {% endif %}
                                     </li>
                                 {% endfor %}
+                                {% for u in step.destUserGroups %}
+                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</li>
+                                {% endfor %}
                             </ul>
                         {% endif %}
 
@@ -115,6 +129,10 @@
                         {% endif %}
                     </div>
                 </div>
+                {% if step.signatures|length > 0 %}
+                    <p><b>{{ 'workflow.signature_required_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
+                    {{ include('@ChillMain/Workflow/_signature_list.html.twig', {'signatures': step.signatures, is_small: true }) }}
+                {% endif %}
             {% endif %}
         </div>
 
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
index 42a3b68d8..300465016 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature.html.twig
@@ -1,54 +1,3 @@
-<h2>{{ 'workflow.signature_zone.title'|trans }}</h2>
-
-<div class="container">
-    {% for s in signatures %}
-        <div class="row row-hover align-items-center">
-                <div class="col-sm-12 col-md-5">
-                    {% if s.signerKind == 'person' %}
-                        {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
-                            action: 'show', displayBadge: true,
-                            targetEntity: { name: 'person', id: s.signer.id },
-                            buttonText: s.signer|chill_entity_render_string,
-                            isDead: s.signer.deathDate is not null
-                        } %}
-                    {% else %}
-                        {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
-                            action: 'show', displayBadge: true,
-                            targetEntity: { name: 'user', id: s.signer.id },
-                            buttonText: s.signer|chill_entity_render_string,
-                        } %}
-                    {% endif %}
-                </div>
-                <div class="col-sm-12 col-md-7 text-end">
-                        {% if s.isSigned %}
-                            <span class="text-end">{{ 'workflow.signature.signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
-                        {% elseif s.isCanceled %}
-                            <span class="text-end">{{ 'workflow.signature.canceled_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
-                        {% elseif s.isRejected%}
-                            <span class="text-end">{{ 'workflow.signature.rejected_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
-                        {% else %}
-                            {% if (is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) or is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s)) %}
-                                <ul class="record_actions slim">
-                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_REJECT', s) %}
-                                        <li>
-                                            <a class="btn btn-remove" href="{{ chill_path_add_return_path('chill_main_workflow_signature_reject', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_reject'|trans }}</a>
-                                        </li>
-                                    {% endif %}
-                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) %}
-                                        <li>
-                                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_cancel', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_cancel'|trans }}</a>
-                                        </li>
-                                    {% endif %}
-                                    {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s) %}
-                                        <li>
-                                            <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
-                                        </li>
-                                    {% endif %}
-                                </ul>
-                            {% endif %}
-                        {% endif %}
-                </div>
-        </div>
-    {% endfor %}
-</div>
+<h2>{{ 'workflow.signature_required_title'|trans({'nb_signatures': signatures|length}) }}</h2>
 
+{{ include('@ChillMain/Workflow/_signature_list.html.twig') }}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_list.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_list.html.twig
new file mode 100644
index 000000000..e72cb0ba3
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_list.html.twig
@@ -0,0 +1,52 @@
+<div class="container">
+    {% for s in signatures %}
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-5">
+                {% if s.signerKind == 'person' %}
+                    {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                        action: 'show', displayBadge: true,
+                        targetEntity: { name: 'person', id: s.signer.id },
+                        buttonText: s.signer|chill_entity_render_string,
+                        isDead: s.signer.deathDate is not null
+                    } %}
+                {% else %}
+                    {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                        action: 'show', displayBadge: true,
+                        targetEntity: { name: 'user', id: s.signer.id },
+                        buttonText: s.signer|chill_entity_render_string,
+                    } %}
+                {% endif %}
+            </div>
+            <div class="col-sm-12 col-md-7 text-end">
+                {% if s.isSigned %}
+                    <span class="text-end">{{ 'workflow.signature.signed_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                {% elseif s.isCanceled %}
+                    <span class="text-end">{{ 'workflow.signature.canceled_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                {% elseif s.isRejected%}
+                    <span class="text-end">{{ 'workflow.signature.rejected_statement'|trans({ 'datetime' : s.stateDate }) }}</span>
+                {% else %}
+                    {% if (is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) or is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s)) %}
+                        <ul class="record_actions slim {% if is_small|default(false) %}small{% endif %}">
+                            {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_REJECT', s) %}
+                                <li>
+                                    <a class="btn btn-remove" href="{{ chill_path_add_return_path('chill_main_workflow_signature_reject', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_reject'|trans }}</a>
+                                </li>
+                            {% endif %}
+                            {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_CANCEL', s) %}
+                                <li>
+                                    <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_cancel', { 'id': s.id}) }}">{{ 'workflow.signature_zone.button_cancel'|trans }}</a>
+                                </li>
+                            {% endif %}
+                            {% if is_granted('CHILL_MAIN_ENTITY_WORKFLOW_SIGNATURE_SIGN', s) %}
+                                <li>
+                                    <a class="btn btn-misc" href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', { 'signature_id': s.id}) }}"><i class="fa fa-pencil-square-o"></i> {{ 'workflow.signature_zone.button_sign'|trans }}</a>
+                                </li>
+                            {% endif %}
+                        </ul>
+                    {% endif %}
+                {% endif %}
+            </div>
+        </div>
+    {% endfor %}
+</div>
+
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index c5daff201..43d225796 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -67,21 +67,6 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_comment.html.twig' %}</section> #}
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
 
-    <ul class="record_actions sticky-form-buttons">
-        {% if entity_workflow.isOnHoldByUser(app.user)  %}
-            <li>
-                <a class="btn btn-misc" href="{{ path('chill_main_workflow_remove_hold', {'id': entity_workflow.currentStep.id }) }}"><i class="fa fa-hourglass"></i>
-                    {{ 'workflow.Remove hold'|trans }}
-                </a>
-            </li>
-        {% else %}
-            <li>
-                <a class="btn btn-misc" href="{{ path('chill_main_workflow_on_hold', {'id': entity_workflow.id}) }}"><i class="fa fa-hourglass"></i>
-                    {{ 'workflow.Put on hold'|trans }}
-                </a>
-            </li>
-        {% endif %}
-    </ul>
 
 </div>
 {% endblock %}
diff --git a/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
index b63fca8cf..f5a3c78aa 100644
--- a/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
+++ b/src/Bundle/ChillMainBundle/Templating/Entity/UserGroupRender.php
@@ -28,7 +28,7 @@ final readonly class UserGroupRender implements UserGroupRenderInterface
     public function renderString($entity, array $options): string
     {
         /* @var $entity UserGroup */
-        return $this->translatableStringHelper->localize($entity->getLabel());
+        return (string) $this->translatableStringHelper->localize($entity->getLabel());
     }
 
     public function supports(object $entity, array $options): bool
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 79205862a..9100f8ab8 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -58,9 +58,15 @@ workflow:
         }
     signature:
         signed_statement: 'Signature appliquée le {datetime, date, short} à {datetime, time, short}'
-        rejected_statement: 'Signature rejectée le {datetime, date, short} à {datetime, time, short}'
+        rejected_statement: 'Signature rejetée le {datetime, date, short} à {datetime, time, short}'
         canceled_statement: 'Signature annulée le {datetime, date, short} à {datetime, time, short}'
-
+    On hold by: En attente par {by}
+    signature_required_title: >-
+        {nb_signatures, plural,
+            =0 {Aucune signature demandée}
+            one {Signature demandée}
+            other {Signatures demandées}
+        }
 
 duration:
     minute: >-

From 818d8003848105126dbc17bbd7324ee01bf92c26 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 1 Oct 2024 18:37:38 +0200
Subject: [PATCH 298/375] In workflow index page, show signature or decision,
 not both

---
 .../ChillMainBundle/Resources/views/Workflow/index.html.twig | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 43d225796..4decb6fec 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -62,9 +62,10 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_follow.html.twig' %}</section>
     {% if signatures|length > 0 %}
         <section class="step my-4">{% include '@ChillMain/Workflow/_signature.html.twig' %}</section>
+    {% else %}
+        <section class="step my-4">{% include '@ChillMain/Workflow/_decision.html.twig' %}</section>
     {% endif %}
-    <section class="step my-4">{% include '@ChillMain/Workflow/_decision.html.twig' %}</section>{#
-    <section class="step my-4">{% include '@ChillMain/Workflow/_comment.html.twig' %}</section> #}
+    {# <section class="step my-4">{% include '@ChillMain/Workflow/_comment.html.twig' %}</section> #}
     <section class="step my-4">{% include '@ChillMain/Workflow/_history.html.twig' %}</section>
 
 

From 4cc001a070cbfdff641e298b94d6f5741e6d08ec Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 2 Oct 2024 13:13:26 +0200
Subject: [PATCH 299/375] Enhance behaviour of duplicating storedObject to keep
 only the last "kept before conversion" version if any

Enhance the duplication service to selectively handle versions tagged with "KEEP_BEFORE_CONVERSION". Modify StoredObject to support retrieval and checking of such versions. Add relevant test cases to validate this behavior.
---
 .../Entity/StoredObject.php                   | 71 ++++++++++++++++
 .../Service/StoredObjectDuplicate.php         | 13 ++-
 .../Tests/Entity/StoredObjectTest.php         | 25 ++++++
 .../Service/StoredObjectDuplicateTest.php     | 82 +++++++++++++++++++
 4 files changed, 189 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index c6d9e362c..b2ac22582 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -18,6 +18,8 @@ use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
 use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Order;
+use Doctrine\Common\Collections\ReadableCollection;
 use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Ramsey\Uuid\Uuid;
@@ -257,11 +259,39 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->template;
     }
 
+    /**
+     * @return Selectable<int, StoredObjectVersion>&Collection<int, StoredObjectVersion>
+     */
     public function getVersions(): Collection&Selectable
     {
         return $this->versions;
     }
 
+    /**
+     * Retrieves versions sorted by a given order.
+     *
+     * @param 'ASC'|'DESC' $order the sorting order, default is Order::Ascending
+     *
+     * @return readableCollection&Selectable The ordered collection of versions
+     */
+    public function getVersionsOrdered(string $order = 'ASC'): ReadableCollection&Selectable
+    {
+        $versions = $this->getVersions()->toArray();
+
+        switch ($order) {
+            case 'ASC':
+                usort($versions, static fn (StoredObjectVersion $a, StoredObjectVersion $b) => $a->getVersion() <=> $b->getVersion());
+                break;
+            case 'DESC':
+                usort($versions, static fn (StoredObjectVersion $a, StoredObjectVersion $b) => $b->getVersion() <=> $a->getVersion());
+                break;
+            default:
+                throw new \UnexpectedValueException('Unknown order');
+        }
+
+        return new ArrayCollection($versions);
+    }
+
     public function hasCurrentVersion(): bool
     {
         return null !== $this->getCurrentVersion();
@@ -272,6 +302,47 @@ class StoredObject implements Document, TrackCreationInterface
         return null !== $this->template;
     }
 
+    /**
+     * Checks if there is a version kept before conversion.
+     *
+     * @return bool true if a version is kept before conversion, false otherwise
+     */
+    public function hasKeptBeforeConversionVersion(): bool
+    {
+        foreach ($this->getVersions() as $version) {
+            foreach ($version->getPointInTimes() as $pointInTime) {
+                if (StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION === $pointInTime->getReason()) {
+                    return true;
+                }
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Retrieves the last version of the stored object that was kept before conversion.
+     *
+     * This method iterates through the ordered versions and their respective points
+     * in time to find the most recent version that has a point in time with the reason
+     * 'KEEP_BEFORE_CONVERSION'.
+     *
+     * @return StoredObjectVersion|null the version that was kept before conversion,
+     *                                  or null if not found
+     */
+    public function getLastKeptBeforeConversionVersion(): ?StoredObjectVersion
+    {
+        foreach ($this->getVersionsOrdered('DESC') as $version) {
+            foreach ($version->getPointInTimes() as $pointInTime) {
+                if (StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION === $pointInTime->getReason()) {
+                    return $version;
+                }
+            }
+        }
+
+        return null;
+    }
+
     public function setTemplate(?DocGeneratorTemplate $template): StoredObject
     {
         $this->template = $template;
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
index b1c7e7a87..f49a147d5 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
@@ -22,9 +22,18 @@ class StoredObjectDuplicate
 {
     public function __construct(private readonly StoredObjectManagerInterface $storedObjectManager, private readonly LoggerInterface $logger) {}
 
-    public function duplicate(StoredObject|StoredObjectVersion $from): StoredObject
+    public function duplicate(StoredObject|StoredObjectVersion $from, bool $onlyLastKeptBeforeConversionVersion = true): StoredObject
     {
-        $fromVersion = $from instanceof StoredObjectVersion ? $from : $from->getCurrentVersion();
+        $storedObject = $from instanceof StoredObjectVersion ? $from->getStoredObject() : $from;
+
+        $fromVersion = match ($storedObject->hasKeptBeforeConversionVersion() && $onlyLastKeptBeforeConversionVersion) {
+            true => $from->getLastKeptBeforeConversionVersion(),
+            false => $storedObject->getCurrentVersion(),
+        };
+
+        if (null === $fromVersion) {
+            throw new \UnexpectedValueException('could not find a version to restore');
+        }
 
         $oldContent = $this->storedObjectManager->read($fromVersion);
 
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
index 5bcfed16f..b501fe3b6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Tests\Entity;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
 use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
 
 /**
@@ -54,4 +56,27 @@ class StoredObjectTest extends KernelTestCase
 
         self::assertNotSame($firstVersion, $version);
     }
+
+    public function testHasKeptBeforeConversionVersion(): void
+    {
+        $storedObject = new StoredObject();
+        $version1 = $storedObject->registerVersion();
+
+        self::assertFalse($storedObject->hasKeptBeforeConversionVersion());
+
+        // add a point in time without the correct version
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BY_USER);
+
+        self::assertFalse($storedObject->hasKeptBeforeConversionVersion());
+        self::assertNull($storedObject->getLastKeptBeforeConversionVersion());
+
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+
+        self::assertTrue($storedObject->hasKeptBeforeConversionVersion());
+        // add a second version
+        $version2 = $storedObject->registerVersion();
+        new StoredObjectPointInTime($version2, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+
+        self::assertSame($version2, $storedObject->getLastKeptBeforeConversionVersion());
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
index 2e9da0bab..11cb00592 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
@@ -12,9 +12,13 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Tests\Service;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
 use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
 use Psr\Log\NullLogger;
 
 /**
@@ -24,9 +28,13 @@ use Psr\Log\NullLogger;
  */
 class StoredObjectDuplicateTest extends TestCase
 {
+    use ProphecyTrait;
+
     public function testDuplicateHappyScenario(): void
     {
         $storedObject = new StoredObject();
+        // we create multiple version, we want the last to be duplicated
+        $storedObject->registerVersion(type: 'application/test');
         $version = $storedObject->registerVersion(type: $type = 'application/test');
 
         $manager = $this->createMock(StoredObjectManagerInterface::class);
@@ -45,4 +53,78 @@ class StoredObjectDuplicateTest extends TestCase
         self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
         self::assertSame($version, $actual->getCurrentVersion()->getCreatedFrom());
     }
+
+    public function testDuplicateWithKeptVersion(): void
+    {
+        $storedObject = new StoredObject();
+        // we create two versions for stored object
+        // the first one is "kept before conversion", and that one should
+        // be duplicated, not the second one
+        $version1 = $storedObject->registerVersion(type: $type = 'application/test');
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+        $version2 = $storedObject->registerVersion(type: $type = 'application/test');
+
+        $manager = $this->prophesize(StoredObjectManagerInterface::class);
+
+        // we create both possibilities for the method "read"
+        $manager->read($version1)->willReturn('1234');
+        $manager->read($version2)->willReturn('4567');
+
+        // we create the write method, and check that it is called with the content from version1, not version2
+        $manager->write(Argument::type(StoredObject::class), '1234', 'application/test')
+            ->shouldBeCalled()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0]; // args are ordered by key, so the first one is the stored object...
+                $type = $args[2]; // and the last one is the string $type
+
+                return $storedObject->registerVersion(type: $type);
+            });
+
+        // we create the service which will duplicate things
+        $storedObjectDuplicate = new StoredObjectDuplicate($manager->reveal(), new NullLogger());
+
+        $actual = $storedObjectDuplicate->duplicate($storedObject);
+
+        self::assertNotNull($actual->getCurrentVersion());
+        self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
+        self::assertSame($version1, $actual->getCurrentVersion()->getCreatedFrom());
+    }
+
+    public function testDuplicateWithKeptVersionButWeWantToDuplicateTheLastOne(): void
+    {
+        $storedObject = new StoredObject();
+        // we create two versions for stored object
+        // the first one is "kept before conversion", and that one should
+        // be duplicated, not the second one
+        $version1 = $storedObject->registerVersion(type: $type = 'application/test');
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+        $version2 = $storedObject->registerVersion(type: $type = 'application/test');
+
+        $manager = $this->prophesize(StoredObjectManagerInterface::class);
+
+        // we create both possibilities for the method "read"
+        $manager->read($version1)->willReturn('1234');
+        $manager->read($version2)->willReturn('4567');
+
+        // we create the write method, and check that it is called with the content from version1, not version2
+        $manager->write(Argument::type(StoredObject::class), '4567', 'application/test')
+            ->shouldBeCalled()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0]; // args are ordered by key, so the first one is the stored object...
+                $type = $args[2]; // and the last one is the string $type
+
+                return $storedObject->registerVersion(type: $type);
+            });
+
+        // we create the service which will duplicate things
+        $storedObjectDuplicate = new StoredObjectDuplicate($manager->reveal(), new NullLogger());
+
+        $actual = $storedObjectDuplicate->duplicate($storedObject, false);
+
+        self::assertNotNull($actual->getCurrentVersion());
+        self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
+        self::assertSame($version2, $actual->getCurrentVersion()->getCreatedFrom());
+    }
 }

From 9a9d14eb5a5d851a7fb77ccad957e83958bb746b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 2 Oct 2024 13:13:26 +0200
Subject: [PATCH 300/375] Enhance behaviour of duplicating storedObject to keep
 only the last "kept before conversion" version if any

Enhance the duplication service to selectively handle versions tagged with "KEEP_BEFORE_CONVERSION". Modify StoredObject to support retrieval and checking of such versions. Add relevant test cases to validate this behavior.
---
 .../Entity/StoredObject.php                   | 65 +++++++++++++++
 .../Service/StoredObjectDuplicate.php         | 13 ++-
 .../Tests/Entity/StoredObjectTest.php         | 25 ++++++
 .../Service/StoredObjectDuplicateTest.php     | 82 +++++++++++++++++++
 4 files changed, 183 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
index c6d9e362c..06c2e5bd3 100644
--- a/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
+++ b/src/Bundle/ChillDocStoreBundle/Entity/StoredObject.php
@@ -18,6 +18,8 @@ use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
 use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
+use Doctrine\Common\Collections\Order;
+use Doctrine\Common\Collections\ReadableCollection;
 use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Ramsey\Uuid\Uuid;
@@ -257,11 +259,33 @@ class StoredObject implements Document, TrackCreationInterface
         return $this->template;
     }
 
+    /**
+     * @return Selectable<int, StoredObjectVersion>&Collection<int, StoredObjectVersion>
+     */
     public function getVersions(): Collection&Selectable
     {
         return $this->versions;
     }
 
+    /**
+     * Retrieves versions sorted by a given order.
+     *
+     * @param 'ASC'|'DESC' $order the sorting order, default is Order::Ascending
+     *
+     * @return readableCollection&Selectable The ordered collection of versions
+     */
+    public function getVersionsOrdered(string $order = 'ASC'): ReadableCollection&Selectable
+    {
+        $versions = $this->getVersions()->toArray();
+
+        match ($order) {
+            'ASC' => usort($versions, static fn (StoredObjectVersion $a, StoredObjectVersion $b) => $a->getVersion() <=> $b->getVersion()),
+            'DESC' => usort($versions, static fn (StoredObjectVersion $a, StoredObjectVersion $b) => $b->getVersion() <=> $a->getVersion()),
+        };
+
+        return new ArrayCollection($versions);
+    }
+
     public function hasCurrentVersion(): bool
     {
         return null !== $this->getCurrentVersion();
@@ -272,6 +296,47 @@ class StoredObject implements Document, TrackCreationInterface
         return null !== $this->template;
     }
 
+    /**
+     * Checks if there is a version kept before conversion.
+     *
+     * @return bool true if a version is kept before conversion, false otherwise
+     */
+    public function hasKeptBeforeConversionVersion(): bool
+    {
+        foreach ($this->getVersions() as $version) {
+            foreach ($version->getPointInTimes() as $pointInTime) {
+                if (StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION === $pointInTime->getReason()) {
+                    return true;
+                }
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Retrieves the last version of the stored object that was kept before conversion.
+     *
+     * This method iterates through the ordered versions and their respective points
+     * in time to find the most recent version that has a point in time with the reason
+     * 'KEEP_BEFORE_CONVERSION'.
+     *
+     * @return StoredObjectVersion|null the version that was kept before conversion,
+     *                                  or null if not found
+     */
+    public function getLastKeptBeforeConversionVersion(): ?StoredObjectVersion
+    {
+        foreach ($this->getVersionsOrdered('DESC') as $version) {
+            foreach ($version->getPointInTimes() as $pointInTime) {
+                if (StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION === $pointInTime->getReason()) {
+                    return $version;
+                }
+            }
+        }
+
+        return null;
+    }
+
     public function setTemplate(?DocGeneratorTemplate $template): StoredObject
     {
         $this->template = $template;
diff --git a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
index b1c7e7a87..f49a147d5 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/StoredObjectDuplicate.php
@@ -22,9 +22,18 @@ class StoredObjectDuplicate
 {
     public function __construct(private readonly StoredObjectManagerInterface $storedObjectManager, private readonly LoggerInterface $logger) {}
 
-    public function duplicate(StoredObject|StoredObjectVersion $from): StoredObject
+    public function duplicate(StoredObject|StoredObjectVersion $from, bool $onlyLastKeptBeforeConversionVersion = true): StoredObject
     {
-        $fromVersion = $from instanceof StoredObjectVersion ? $from : $from->getCurrentVersion();
+        $storedObject = $from instanceof StoredObjectVersion ? $from->getStoredObject() : $from;
+
+        $fromVersion = match ($storedObject->hasKeptBeforeConversionVersion() && $onlyLastKeptBeforeConversionVersion) {
+            true => $from->getLastKeptBeforeConversionVersion(),
+            false => $storedObject->getCurrentVersion(),
+        };
+
+        if (null === $fromVersion) {
+            throw new \UnexpectedValueException('could not find a version to restore');
+        }
 
         $oldContent = $this->storedObjectManager->read($fromVersion);
 
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
index 5bcfed16f..b501fe3b6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Entity/StoredObjectTest.php
@@ -12,6 +12,8 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Tests\Entity;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
 use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
 
 /**
@@ -54,4 +56,27 @@ class StoredObjectTest extends KernelTestCase
 
         self::assertNotSame($firstVersion, $version);
     }
+
+    public function testHasKeptBeforeConversionVersion(): void
+    {
+        $storedObject = new StoredObject();
+        $version1 = $storedObject->registerVersion();
+
+        self::assertFalse($storedObject->hasKeptBeforeConversionVersion());
+
+        // add a point in time without the correct version
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BY_USER);
+
+        self::assertFalse($storedObject->hasKeptBeforeConversionVersion());
+        self::assertNull($storedObject->getLastKeptBeforeConversionVersion());
+
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+
+        self::assertTrue($storedObject->hasKeptBeforeConversionVersion());
+        // add a second version
+        $version2 = $storedObject->registerVersion();
+        new StoredObjectPointInTime($version2, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+
+        self::assertSame($version2, $storedObject->getLastKeptBeforeConversionVersion());
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
index 2e9da0bab..11cb00592 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/StoredObjectDuplicateTest.php
@@ -12,9 +12,13 @@ declare(strict_types=1);
 namespace Chill\DocStoreBundle\Tests\Service;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTime;
+use Chill\DocStoreBundle\Entity\StoredObjectPointInTimeReasonEnum;
 use Chill\DocStoreBundle\Service\StoredObjectDuplicate;
 use Chill\DocStoreBundle\Service\StoredObjectManagerInterface;
 use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
 use Psr\Log\NullLogger;
 
 /**
@@ -24,9 +28,13 @@ use Psr\Log\NullLogger;
  */
 class StoredObjectDuplicateTest extends TestCase
 {
+    use ProphecyTrait;
+
     public function testDuplicateHappyScenario(): void
     {
         $storedObject = new StoredObject();
+        // we create multiple version, we want the last to be duplicated
+        $storedObject->registerVersion(type: 'application/test');
         $version = $storedObject->registerVersion(type: $type = 'application/test');
 
         $manager = $this->createMock(StoredObjectManagerInterface::class);
@@ -45,4 +53,78 @@ class StoredObjectDuplicateTest extends TestCase
         self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
         self::assertSame($version, $actual->getCurrentVersion()->getCreatedFrom());
     }
+
+    public function testDuplicateWithKeptVersion(): void
+    {
+        $storedObject = new StoredObject();
+        // we create two versions for stored object
+        // the first one is "kept before conversion", and that one should
+        // be duplicated, not the second one
+        $version1 = $storedObject->registerVersion(type: $type = 'application/test');
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+        $version2 = $storedObject->registerVersion(type: $type = 'application/test');
+
+        $manager = $this->prophesize(StoredObjectManagerInterface::class);
+
+        // we create both possibilities for the method "read"
+        $manager->read($version1)->willReturn('1234');
+        $manager->read($version2)->willReturn('4567');
+
+        // we create the write method, and check that it is called with the content from version1, not version2
+        $manager->write(Argument::type(StoredObject::class), '1234', 'application/test')
+            ->shouldBeCalled()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0]; // args are ordered by key, so the first one is the stored object...
+                $type = $args[2]; // and the last one is the string $type
+
+                return $storedObject->registerVersion(type: $type);
+            });
+
+        // we create the service which will duplicate things
+        $storedObjectDuplicate = new StoredObjectDuplicate($manager->reveal(), new NullLogger());
+
+        $actual = $storedObjectDuplicate->duplicate($storedObject);
+
+        self::assertNotNull($actual->getCurrentVersion());
+        self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
+        self::assertSame($version1, $actual->getCurrentVersion()->getCreatedFrom());
+    }
+
+    public function testDuplicateWithKeptVersionButWeWantToDuplicateTheLastOne(): void
+    {
+        $storedObject = new StoredObject();
+        // we create two versions for stored object
+        // the first one is "kept before conversion", and that one should
+        // be duplicated, not the second one
+        $version1 = $storedObject->registerVersion(type: $type = 'application/test');
+        new StoredObjectPointInTime($version1, StoredObjectPointInTimeReasonEnum::KEEP_BEFORE_CONVERSION);
+        $version2 = $storedObject->registerVersion(type: $type = 'application/test');
+
+        $manager = $this->prophesize(StoredObjectManagerInterface::class);
+
+        // we create both possibilities for the method "read"
+        $manager->read($version1)->willReturn('1234');
+        $manager->read($version2)->willReturn('4567');
+
+        // we create the write method, and check that it is called with the content from version1, not version2
+        $manager->write(Argument::type(StoredObject::class), '4567', 'application/test')
+            ->shouldBeCalled()
+            ->will(function ($args) {
+                /** @var StoredObject $storedObject */
+                $storedObject = $args[0]; // args are ordered by key, so the first one is the stored object...
+                $type = $args[2]; // and the last one is the string $type
+
+                return $storedObject->registerVersion(type: $type);
+            });
+
+        // we create the service which will duplicate things
+        $storedObjectDuplicate = new StoredObjectDuplicate($manager->reveal(), new NullLogger());
+
+        $actual = $storedObjectDuplicate->duplicate($storedObject, false);
+
+        self::assertNotNull($actual->getCurrentVersion());
+        self::assertNotNull($actual->getCurrentVersion()->getCreatedFrom());
+        self::assertSame($version2, $actual->getCurrentVersion()->getCreatedFrom());
+    }
 }

From 2213f6f429cf452e2d9ec16298dbd028dc1ceee1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 3 Oct 2024 11:55:58 +0200
Subject: [PATCH 301/375] Add EntityWorkflowSend and EntityWorkflowSendView
 entities

Introduced EntityWorkflowSend and EntityWorkflowSendView entities to enable tracking of workflow content sent to external parties. Updated EntityWorkflowStep to associate with these entities and added a corresponding database migration script.
---
 .../Entity/Workflow/EntityWorkflowSend.php    | 164 ++++++++++++++++++
 .../Workflow/EntityWorkflowSendView.php       |  60 +++++++
 .../Entity/Workflow/EntityWorkflowStep.php    |  18 ++
 .../migrations/Version20241003094904.php      |  61 +++++++
 4 files changed, 303 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
 create mode 100644 src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSendView.php
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20241003094904.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
new file mode 100644
index 000000000..ef0422fe0
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -0,0 +1,164 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Entity\Workflow;
+
+use Chill\MainBundle\Doctrine\Model\TrackCreationInterface;
+use Chill\MainBundle\Doctrine\Model\TrackCreationTrait;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Doctrine\Common\Collections\ArrayCollection;
+use Doctrine\Common\Collections\Collection;
+use Doctrine\DBAL\Types\Types;
+use Doctrine\ORM\Mapping as ORM;
+use Ramsey\Uuid\Uuid;
+use Ramsey\Uuid\UuidInterface;
+use Random\Randomizer;
+
+/**
+ * An entity which stores then sending of a workflow's content to
+ * some external entity.
+ */
+#[ORM\Entity]
+#[ORM\Table(name: 'chill_main_workflow_entity_send')]
+class EntityWorkflowSend implements TrackCreationInterface
+{
+    use TrackCreationTrait;
+
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: Types::INTEGER)]
+    private ?int $id = null;
+
+    #[ORM\ManyToOne(targetEntity: ThirdParty::class)]
+    #[ORM\JoinColumn(nullable: true)]
+    private ?ThirdParty $destineeThirdParty = null;
+
+    #[ORM\Column(type: Types::TEXT, nullable: false, options: ['default' => ''])]
+    private string $destineeEmail = '';
+
+    #[ORM\Column(type: 'uuid', unique: true, nullable: false)]
+    private UuidInterface $uuid;
+
+    #[ORM\Column(type: Types::STRING, length: 255, nullable: false)]
+    private string $privateToken;
+
+    #[ORM\Column(type: Types::INTEGER, nullable: false, options: ['default' => 0])]
+    private int $numberOfErrorTrials = 0;
+
+    /**
+     * @var Collection<int, EntityWorkflowSendView>
+     */
+    #[ORM\OneToMany(targetEntity: EntityWorkflowSendView::class, mappedBy: 'send')]
+    private Collection $views;
+
+    public function __construct(
+        #[ORM\ManyToOne(targetEntity: EntityWorkflowStep::class, inversedBy: 'sends')]
+        #[ORM\JoinColumn(nullable: false)]
+        private EntityWorkflowStep $entityWorkflowStep,
+        string|ThirdParty $destinee,
+        #[ORM\Column(type: Types::DATETIME_IMMUTABLE, nullable: false)]
+        private \DateTimeImmutable $expireAt,
+    ) {
+        $this->uuid = Uuid::uuid4();
+        $random = new Randomizer();
+        $this->privateToken = bin2hex($random->getBytes(48));
+
+        $this->entityWorkflowStep->addSend($this);
+
+        if ($destinee instanceof ThirdParty) {
+            $this->destineeThirdParty = $destinee;
+        } else {
+            $this->destineeEmail = $destinee;
+        }
+
+        $this->views = new ArrayCollection();
+    }
+
+    /**
+     * @internal use the @see{EntityWorkflowSendView}'s constructor instead
+     */
+    public function addView(EntityWorkflowSendView $view): self
+    {
+        if (!$this->views->contains($view)) {
+            $this->views->add($view);
+        }
+
+        return $this;
+    }
+
+    public function getDestineeEmail(): string
+    {
+        return $this->destineeEmail;
+    }
+
+    public function getDestineeThirdParty(): ?ThirdParty
+    {
+        return $this->destineeThirdParty;
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getNumberOfErrorTrials(): int
+    {
+        return $this->numberOfErrorTrials;
+    }
+
+    public function getPrivateToken(): string
+    {
+        return $this->privateToken;
+    }
+
+    public function getUuid(): UuidInterface
+    {
+        return $this->uuid;
+    }
+
+    public function increaseErrorTrials(): void
+    {
+        $this->numberOfErrorTrials = $this->numberOfErrorTrials + 1;
+    }
+
+    public function getDestinee(): string|ThirdParty
+    {
+        if (null !== $this->getDestineeThirdParty()) {
+            return $this->getDestineeThirdParty();
+        }
+
+        return $this->getDestineeEmail();
+    }
+
+    /**
+     * Determines the kind of destinee based on whether the destinee is a thirdParty or an emailAddress.
+     *
+     * @return 'thirdParty'|'email' 'thirdParty' if the destinee is a third party, 'email' otherwise
+     */
+    public function getDestineeKind(): string
+    {
+        if (null !== $this->getDestineeThirdParty()) {
+            return 'thirdParty';
+        }
+
+        return 'email';
+    }
+
+    public function isViewed(): bool
+    {
+        return $this->views->count() > 0;
+    }
+
+    public function isExpired(\DateTimeImmutable $now): bool
+    {
+        return $now >= $this->expireAt;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSendView.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSendView.php
new file mode 100644
index 000000000..40d9d9736
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSendView.php
@@ -0,0 +1,60 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Entity\Workflow;
+
+use Doctrine\DBAL\Types\Types;
+use Doctrine\ORM\Mapping as ORM;
+
+/**
+ * Register the viewing action from an external destinee.
+ */
+#[ORM\Entity(readOnly: true)]
+#[ORM\Table(name: 'chill_main_workflow_entity_send_views')]
+class EntityWorkflowSendView
+{
+    #[ORM\Id]
+    #[ORM\GeneratedValue]
+    #[ORM\Column(type: Types::INTEGER)]
+    private ?int $id = null;
+
+    public function __construct(
+        #[ORM\ManyToOne(targetEntity: EntityWorkflowSend::class, inversedBy: 'views')]
+        #[ORM\JoinColumn(nullable: false)]
+        private EntityWorkflowSend $send,
+        #[ORM\Column(type: Types::DATETIME_IMMUTABLE)]
+        private \DateTimeInterface $viewAt,
+        #[ORM\Column(type: Types::TEXT)]
+        private string $remoteIp = '',
+    ) {
+        $this->send->addView($this);
+    }
+
+    public function getId(): ?int
+    {
+        return $this->id;
+    }
+
+    public function getRemoteIp(): string
+    {
+        return $this->remoteIp;
+    }
+
+    public function getSend(): EntityWorkflowSend
+    {
+        return $this->send;
+    }
+
+    public function getViewAt(): \DateTimeInterface
+    {
+        return $this->viewAt;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 3daacd49d..4f42dee6e 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -112,6 +112,11 @@ class EntityWorkflowStep
     #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepHold::class)]
     private Collection $holdsOnStep;
 
+    /**
+     * @var Collection<int, EntityWorkflowSend>
+     */
+    private Collection $sends;
+
     public function __construct()
     {
         $this->ccUser = new ArrayCollection();
@@ -120,6 +125,7 @@ class EntityWorkflowStep
         $this->destUserByAccessKey = new ArrayCollection();
         $this->signatures = new ArrayCollection();
         $this->holdsOnStep = new ArrayCollection();
+        $this->sends = new ArrayCollection();
         $this->accessKey = bin2hex(openssl_random_pseudo_bytes(32));
     }
 
@@ -190,6 +196,18 @@ class EntityWorkflowStep
         return $this;
     }
 
+    /**
+     * @internal use @see{EntityWorkflowSend}'s constructor instead
+     */
+    public function addSend(EntityWorkflowSend $send): self
+    {
+        if (!$this->sends->contains($send)) {
+            $this->sends[] = $send;
+        }
+
+        return $this;
+    }
+
     public function removeSignature(EntityWorkflowStepSignature $signature): self
     {
         if ($this->signatures->contains($signature)) {
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20241003094904.php b/src/Bundle/ChillMainBundle/migrations/Version20241003094904.php
new file mode 100644
index 000000000..a309a927d
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20241003094904.php
@@ -0,0 +1,61 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20241003094904 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Create tables for EntityWorkflowSend and EntityWorkflowSendView';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('CREATE SEQUENCE chill_main_workflow_entity_send_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE SEQUENCE chill_main_workflow_entity_send_views_id_seq INCREMENT BY 1 MINVALUE 1 START 1');
+        $this->addSql('CREATE TABLE chill_main_workflow_entity_send (id INT NOT NULL,'
+            .' destineeEmail TEXT DEFAULT \'\' NOT NULL, uuid UUID NOT NULL, privateToken VARCHAR(255) NOT NULL,'
+            .' numberOfErrorTrials INT DEFAULT 0 NOT NULL, expireAt TIMESTAMP(0) WITHOUT TIME ZONE NOT NULL, '
+            .'createdAt TIMESTAMP(0) WITHOUT TIME ZONE DEFAULT NULL, destineeThirdParty_id INT DEFAULT NULL, '
+            .'entityWorkflowStep_id INT NOT NULL, createdBy_id INT DEFAULT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE UNIQUE INDEX UNIQ_A0C0620FD17F50A6 ON chill_main_workflow_entity_send (uuid)');
+        $this->addSql('CREATE INDEX IDX_A0C0620FDDFA98DE ON chill_main_workflow_entity_send (destineeThirdParty_id)');
+        $this->addSql('CREATE INDEX IDX_A0C0620F3912FED6 ON chill_main_workflow_entity_send (entityWorkflowStep_id)');
+        $this->addSql('CREATE INDEX IDX_A0C0620F3174800F ON chill_main_workflow_entity_send (createdBy_id)');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_send.uuid IS \'(DC2Type:uuid)\'');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_send.expireAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_send.createdAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('CREATE TABLE chill_main_workflow_entity_send_views (id INT NOT NULL, send_id INT NOT NULL, '
+            .'viewAt TIMESTAMP(0) WITHOUT TIME ZONE NOT NULL, remoteIp TEXT NOT NULL, PRIMARY KEY(id))');
+        $this->addSql('CREATE INDEX IDX_2659558513933E7B ON chill_main_workflow_entity_send_views (send_id)');
+        $this->addSql('COMMENT ON COLUMN chill_main_workflow_entity_send_views.viewAt IS \'(DC2Type:datetime_immutable)\'');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send ADD CONSTRAINT FK_A0C0620FDDFA98DE FOREIGN KEY (destineeThirdParty_id) REFERENCES chill_3party.third_party (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send ADD CONSTRAINT FK_A0C0620F3912FED6 FOREIGN KEY (entityWorkflowStep_id) REFERENCES chill_main_workflow_entity_step (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send ADD CONSTRAINT FK_A0C0620F3174800F FOREIGN KEY (createdBy_id) REFERENCES users (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send_views ADD CONSTRAINT FK_2659558513933E7B FOREIGN KEY (send_id) REFERENCES chill_main_workflow_entity_send (id) NOT DEFERRABLE INITIALLY IMMEDIATE');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('DROP SEQUENCE chill_main_workflow_entity_send_id_seq CASCADE');
+        $this->addSql('DROP SEQUENCE chill_main_workflow_entity_send_views_id_seq CASCADE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send DROP CONSTRAINT FK_A0C0620FDDFA98DE');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send DROP CONSTRAINT FK_A0C0620F3912FED6');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send DROP CONSTRAINT FK_A0C0620F3174800F');
+        $this->addSql('ALTER TABLE chill_main_workflow_entity_send_views DROP CONSTRAINT FK_2659558513933E7B');
+        $this->addSql('DROP TABLE chill_main_workflow_entity_send');
+        $this->addSql('DROP TABLE chill_main_workflow_entity_send_views');
+    }
+}

From a563ba644ec2a260f515184c98a4bcc8b7d0d077 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 3 Oct 2024 13:56:16 +0200
Subject: [PATCH 302/375] clean the file from code in error

---
 .../public/page/workflow-show/index.js        | 31 ++++++-------------
 1 file changed, 10 insertions(+), 21 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 1536417b1..0b19c316a 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -1,27 +1,19 @@
 import {ShowHide} from 'ChillMainAssets/lib/show_hide/show_hide.js';
 
 window.addEventListener('DOMContentLoaded', function() {
-    let
+    const
         divTransitions = document.querySelector('#transitions'),
-        futureDestUsersContainer = document.querySelector('#futureDests')
-        personSignatureField = document.querySelector('#person-signature-field');
-        userSignatureField = document.querySelector('#user-signature-field');
-        signatureTypeChoices = document.querySelector('#signature-type-choice');
-        personChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_0');
-        userChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_1');
-        signatureZone = document.querySelector('#signature-zone');
-  ;
-
-    let
-      transitionFilterContainer = document.querySelector('#transitionFilter'),
-      transitionsContainer = document.querySelector('#transitions')
+        futureDestUsersContainer = document.querySelector('#futureDests'),
+        personSignatureField = document.querySelector('#person-signature-field'),
+        userSignatureField = document.querySelector('#user-signature-field'),
+        signatureTypeChoices = document.querySelector('#signature-type-choice'),
+        personChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_0'),
+        userChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_1'),
+        signatureZone = document.querySelector('#signature-zone'),
+        transitionFilterContainer = document.querySelector('#transitionFilter'),
+        transitionsContainer = document.querySelector('#transitions')
     ;
 
-    // ShowHide instance for signatureTypeChoices. This should always be present in the DOM and we toggle visibility.
-    // The field is not mapped and so not submitted with the form. Without it's presence upon DOM loading other show hides do not function well.
-    signatureTypeChoices.style.display = 'none';
-
-
     // ShowHide instance for future dest users
     new ShowHide({
       debug: false,
@@ -34,13 +26,11 @@ window.addEventListener('DOMContentLoaded', function() {
             if (input.checked) {
               const inputData = JSON.parse(input.getAttribute('data-is-signature'))
               if (inputData.includes('person') || inputData.includes('user')) {
-                signatureTypeChoices.style.display = '';
                 return false;
               } else {
                 personChoice.checked = false
                 userChoice.checked = false
 
-                signatureTypeChoices.style.display = 'none';
                 return true;
               }
             }
@@ -62,7 +52,6 @@ window.addEventListener('DOMContentLoaded', function() {
             if (input.checked) {
               const inputData = JSON.parse(input.getAttribute('data-is-signature'))
               if (inputData.includes('person') || inputData.includes('user')) {
-                signatureTypeChoices.style.display = '';
                 return true;
               }
             }

From da6589ba87024f76a1556e4309fef62076ad8f1c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 3 Oct 2024 17:14:42 +0200
Subject: [PATCH 303/375] Add ThirdPartyHasEmail validator

Introduce a new validator that ensures a third party has an email address, including the corresponding translation for error messaging and unit tests to verify its functionality.
---
 .../ThirdPartyHasEmailValidatorTest.php       | 63 +++++++++++++++++++
 .../Validator/ThirdPartyHasEmail.php          | 31 +++++++++
 .../Validator/ThirdPartyHasEmailValidator.php | 45 +++++++++++++
 .../config/services.yaml                      |  5 ++
 .../translations/validators.fr.yml            |  2 +
 5 files changed, 146 insertions(+)
 create mode 100644 src/Bundle/ChillThirdPartyBundle/Tests/Validator/ThirdPartyHasEmailValidatorTest.php
 create mode 100644 src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmail.php
 create mode 100644 src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmailValidator.php
 create mode 100644 src/Bundle/ChillThirdPartyBundle/translations/validators.fr.yml

diff --git a/src/Bundle/ChillThirdPartyBundle/Tests/Validator/ThirdPartyHasEmailValidatorTest.php b/src/Bundle/ChillThirdPartyBundle/Tests/Validator/ThirdPartyHasEmailValidatorTest.php
new file mode 100644
index 000000000..46616287c
--- /dev/null
+++ b/src/Bundle/ChillThirdPartyBundle/Tests/Validator/ThirdPartyHasEmailValidatorTest.php
@@ -0,0 +1,63 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace ChillThirdParty\Tests\Validator;
+
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Chill\ThirdPartyBundle\Templating\Entity\ThirdPartyRender;
+use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmail;
+use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmailValidator;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class ThirdPartyHasEmailValidatorTest extends \Symfony\Component\Validator\Test\ConstraintValidatorTestCase
+{
+    use ProphecyTrait;
+
+    public function testThirdPartyWithEmail(): void
+    {
+        $thirdParty = new ThirdParty();
+        $thirdParty->setEmail('third@example.com');
+
+        $this->validator->validate($thirdParty, new ThirdPartyHasEmail());
+
+        $this->assertNoViolation();
+    }
+
+    public function testThirdPartyHasNoEmail(): void
+    {
+        $thirdParty = new ThirdParty();
+
+        $constraint = new ThirdPartyHasEmail();
+        $constraint->message = 'message';
+
+        $this->validator->validate($thirdParty, $constraint);
+
+        $this->buildViolation($constraint->message)
+            ->setParameter('{{ thirdParty }}', '3party-string')
+            ->setCode($constraint->code)
+            ->assertRaised();
+    }
+
+    protected function createValidator(): ThirdPartyHasEmailValidator
+    {
+        $render = $this->prophesize(ThirdPartyRender::class);
+        $render->renderString(Argument::type(ThirdParty::class), [])
+            ->willReturn('3party-string');
+
+        return new ThirdPartyHasEmailValidator($render->reveal());
+    }
+}
diff --git a/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmail.php b/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmail.php
new file mode 100644
index 000000000..453c857c5
--- /dev/null
+++ b/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmail.php
@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\ThirdPartyBundle\Validator;
+
+use Symfony\Component\Validator\Constraint;
+
+/**
+ * Add a constraint to check that the thirdparty has an email address.
+ */
+class ThirdPartyHasEmail extends Constraint
+{
+    public string $message = 'thirdParty.thirdParty_has_no_email';
+    public string $code = 'f2da71f8-818c-11ef-9f6a-3ba3597ab60b';
+
+    /**
+     * @return array<string>|string
+     */
+    public function getTargets(): array|string
+    {
+        return [self::PROPERTY_CONSTRAINT];
+    }
+}
diff --git a/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmailValidator.php b/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmailValidator.php
new file mode 100644
index 000000000..15f523509
--- /dev/null
+++ b/src/Bundle/ChillThirdPartyBundle/Validator/ThirdPartyHasEmailValidator.php
@@ -0,0 +1,45 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\ThirdPartyBundle\Validator;
+
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Chill\ThirdPartyBundle\Templating\Entity\ThirdPartyRender;
+use Symfony\Component\Validator\Constraint;
+use Symfony\Component\Validator\ConstraintValidator;
+use Symfony\Component\Validator\Exception\UnexpectedTypeException;
+
+final class ThirdPartyHasEmailValidator extends ConstraintValidator
+{
+    public function __construct(private readonly ThirdPartyRender $thirdPartyRender) {}
+
+    public function validate($value, Constraint $constraint): void
+    {
+        if (!$constraint instanceof ThirdPartyHasEmail) {
+            throw new UnexpectedTypeException($constraint, ThirdPartyHasEmail::class);
+        }
+
+        if (null === $value) {
+            return;
+        }
+
+        if (!$value instanceof ThirdParty) {
+            throw new UnexpectedTypeException($value, ThirdParty::class);
+        }
+
+        if (null === $value->getEmail() || '' === $value->getEmail()) {
+            $this->context->buildViolation($constraint->message)
+                ->setParameter('{{ thirdParty }}', $this->thirdPartyRender->renderString($value, []))
+                ->setCode($constraint->code)
+                ->addViolation();
+        }
+    }
+}
diff --git a/src/Bundle/ChillThirdPartyBundle/config/services.yaml b/src/Bundle/ChillThirdPartyBundle/config/services.yaml
index 0024556f6..572026771 100644
--- a/src/Bundle/ChillThirdPartyBundle/config/services.yaml
+++ b/src/Bundle/ChillThirdPartyBundle/config/services.yaml
@@ -11,3 +11,8 @@ services:
         autoconfigure: true
         resource: '../Export/'
 
+    Chill\ThirdPartyBundle\Validator\:
+        autoconfigure: true
+        autowire: true
+        resource: '../Validator/'
+
diff --git a/src/Bundle/ChillThirdPartyBundle/translations/validators.fr.yml b/src/Bundle/ChillThirdPartyBundle/translations/validators.fr.yml
new file mode 100644
index 000000000..26e1562dd
--- /dev/null
+++ b/src/Bundle/ChillThirdPartyBundle/translations/validators.fr.yml
@@ -0,0 +1,2 @@
+thirdParty:
+    thirdParty_has_no_email: Le tiers {{ thirdParty }} n'a pas d'adresse email configurée.

From 071c5e3c559c882e2958ea4a0222386fc7b04efd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 3 Oct 2024 17:29:27 +0200
Subject: [PATCH 304/375] Update the form to allow sending a workflow to an
 external destinee

OP#734 Modification du formulaire pour permettre l'envoi d'un workflow

https://champs-libres.openproject.com/work_packages/734
---
 .../Entity/Workflow/EntityWorkflow.php        |  7 +++++
 .../Entity/Workflow/EntityWorkflowStep.php    |  1 +
 .../ChillMainBundle/Form/WorkflowStepType.php | 25 +++++++++++++++++
 .../public/page/workflow-show/index.js        | 27 ++++++++++++++++++-
 .../views/Workflow/_decision.html.twig        |  7 +++++
 .../Workflow/WorkflowTransitionContextDTO.php | 25 +++++++++++++++++
 .../translations/messages.fr.yml              |  9 +++++++
 7 files changed, 100 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index f68dc7b7e..d67a04b4b 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -462,6 +462,13 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
             }
         }
 
+        foreach ($transitionContextDTO->futureDestineeThirdParties as $thirdParty) {
+            new EntityWorkflowSend($newStep, $thirdParty, $transitionAt->add(new \DateInterval('P30D')));
+        }
+        foreach ($transitionContextDTO->futureDestineeEmails as $email) {
+            new EntityWorkflowSend($newStep, $email, $transitionAt->add(new \DateInterval('P30D')));
+        }
+
         // copy the freeze
         if ($this->isFreeze()) {
             $newStep->setFreezeAfter(true);
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index 4f42dee6e..b0f4d4bf5 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -115,6 +115,7 @@ class EntityWorkflowStep
     /**
      * @var Collection<int, EntityWorkflowSend>
      */
+    #[ORM\OneToMany(mappedBy: 'entityWorkflowStep', targetEntity: EntityWorkflowSend::class, cascade: ['persist'], orphanRemoval: true)]
     private Collection $sends;
 
     public function __construct()
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index e55b1896d..42613ca54 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -12,14 +12,17 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Form;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Form\Type\ChillCollectionType;
 use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Form\Type\PickUserGroupOrUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
+use Chill\ThirdPartyBundle\Form\Type\PickThirdpartyDynamicType;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
+use Symfony\Component\Form\Extension\Core\Type\EmailType;
 use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\OptionsResolver\OptionsResolver;
 use Symfony\Component\Validator\Constraints\Callback;
@@ -101,6 +104,7 @@ class WorkflowStepType extends AbstractType
                     $toFinal = true;
                     $isForward = 'neutral';
                     $isSignature = [];
+                    $isSentExternal = false;
 
                     $metadata = $workflow->getMetadataStore()->getTransitionMetadata($transition);
 
@@ -124,6 +128,8 @@ class WorkflowStepType extends AbstractType
                         if (\array_key_exists('isSignature', $meta)) {
                             $isSignature = $meta['isSignature'];
                         }
+
+                        $isSentExternal = $isSentExternal ? true : $meta['isSentExternal'] ?? false;
                     }
 
                     return [
@@ -131,6 +137,7 @@ class WorkflowStepType extends AbstractType
                         'data-to-final' => $toFinal ? '1' : '0',
                         'data-is-forward' => $isForward,
                         'data-is-signature' => json_encode($isSignature),
+                        'data-is-sent-external' => $isSentExternal ? '1' : '0',
                     ];
                 },
             ])
@@ -166,6 +173,24 @@ class WorkflowStepType extends AbstractType
                 'suggested' => $options['suggested_users'],
                 'empty_data' => '[]',
                 'attr' => ['class' => 'future-cc-users'],
+            ])
+            ->add('futureDestineeEmails', ChillCollectionType::class, [
+                'entry_type' => EmailType::class,
+                'entry_options' => [
+                    'empty_data' => '',
+                ],
+                'allow_add' => true,
+                'allow_delete' => true,
+                'delete_empty' => static fn (?string $email) => '' === $email || null === $email,
+                'button_add_label' => 'workflow.transition_destinee_add_emails',
+                'button_remove_label' => 'workflow.transition_destinee_remove_emails',
+                'help' => 'workflow.transition_destinee_emails_help',
+                'label' => 'workflow.transition_destinee_emails_label',
+            ])
+            ->add('futureDestineeThirdParties', PickThirdpartyDynamicType::class, [
+                'label' => 'workflow.transition_destinee_third_party',
+                'help' => 'workflow.transition_destinee_third_party_help',
+                'multiple' => true,
             ]);
 
         $builder
diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 0b19c316a..ce552c909 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -11,7 +11,8 @@ window.addEventListener('DOMContentLoaded', function() {
         userChoice = document.querySelector('#workflow_step_isPersonOrUserSignature_1'),
         signatureZone = document.querySelector('#signature-zone'),
         transitionFilterContainer = document.querySelector('#transitionFilter'),
-        transitionsContainer = document.querySelector('#transitions')
+        transitionsContainer = document.querySelector('#transitions'),
+        sendExternalContainer = document.querySelector('#sendExternalContainer')
     ;
 
     // ShowHide instance for future dest users
@@ -24,6 +25,10 @@ window.addEventListener('DOMContentLoaded', function() {
         for (let transition of froms) {
           for (let input of transition.querySelectorAll('input')) {
             if (input.checked) {
+              if ('1' === input.dataset.isSentExternal) {
+                return false;
+              }
+
               const inputData = JSON.parse(input.getAttribute('data-is-signature'))
               if (inputData.includes('person') || inputData.includes('user')) {
                 return false;
@@ -40,6 +45,26 @@ window.addEventListener('DOMContentLoaded', function() {
       }
     });
 
+    // ShowHide instance for send external
+    new ShowHide({
+      debug: true,
+      load_event: null,
+      froms: [divTransitions],
+      container: [sendExternalContainer],
+      test: function(froms, event) {
+        for (let transition of froms) {
+          for (let input of transition.querySelectorAll('input')) {
+            if (input.checked) {
+              if ('1' === input.dataset.isSentExternal) {
+                return true;
+              }
+            }
+          }
+        }
+        return false;
+      }
+    })
+
     // ShowHide signature zone
     new ShowHide({
       debug: false,
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
index abad0801a..aedee6587 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_decision.html.twig
@@ -84,6 +84,13 @@
         </div>
     </div>
 
+    <div id="sendExternalContainer">
+        {{ form_row(transition_form.futureDestineeThirdParties) }}
+        {{ form_errors(transition_form.futureDestineeThirdParties) }}
+        {{ form_row(transition_form.futureDestineeEmails) }}
+        {{ form_errors(transition_form.futureDestineeEmails) }}
+    </div>
+
     <p>{{ form_label(transition_form.comment) }}</p>
 
     {{ form_widget(transition_form.comment) }}
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index 370aef0cf..f00761ee4 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -15,6 +15,8 @@ use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\PersonBundle\Entity\Person;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmail;
 use Symfony\Component\Validator\Constraints as Assert;
 use Symfony\Component\Validator\Context\ExecutionContextInterface;
 use Symfony\Component\Workflow\Transition;
@@ -54,6 +56,29 @@ class WorkflowTransitionContextDTO
      */
     public ?User $futureUserSignature = null;
 
+    /**
+     * a list of future destinee third parties, when a workflow does send the document
+     * to a remote third party.
+     *
+     * @var array<ThirdParty>
+     */
+    #[Assert\All(
+        new ThirdPartyHasEmail(),
+    )]
+    public array $futureDestineeThirdParties = [];
+
+    /**
+     * a list of future destinee emails, when a workflow does send the document to a remote
+     * email.
+     *
+     * @var array<string>
+     */
+    #[Assert\All([
+        new Assert\NotBlank(),
+        new Assert\Email(),
+    ])]
+    public array $futureDestineeEmails = [];
+
     public ?Transition $transition = null;
 
     public string $comment = '';
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index bec5e1adb..3c459af16 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -558,6 +558,15 @@ workflow:
     Automated transition: Transition automatique
     waiting_for_signature: En attente de signature
     Permissions: Workflows (suivi de décision)
+    transition_destinee_third_party: Destinataire à partir des tiers externes
+    transition_destinee_third_party_help: Chaque destinataire recevra un lien sécurisé par courriel.
+    transition_destinee_emails_label: Envoi par courriel
+    transition_destinee_add_emails: Ajouter une adresse de courriel
+    transition_destinee_remove_emails: Supprimer
+    transition_destinee_emails_help: Le lien sécurisé sera envoyé à chaque adresse indiquée
+
+
+
 
 
     signature_zone:

From 7cd638c5fcde9343a3b221da2492c15af7dc9e6b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 4 Oct 2024 10:25:18 +0200
Subject: [PATCH 305/375] Add TransitionHasDestineeIfIsSentExternal validator

This commit introduces a new validator to ensure that transitions marked as 'sent' have a designated external recipient. It includes related tests for scenarios with and without recipients and covers integration with the workflow context.
---
 .../ChillMainBundle/Form/WorkflowStepType.php |   1 -
 ...sDestineeIfIsSentExternalValidatorTest.php | 181 ++++++++++++++++++
 .../TransitionHasDestineeIfIsSentExternal.php |  31 +++
 ...onHasDestineeIfIsSentExternalValidator.php |  70 +++++++
 .../Workflow/WorkflowTransitionContextDTO.php |   2 +
 .../translations/validators.fr.yml            |   2 +
 6 files changed, 286 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidatorTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternal.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidator.php

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 42613ca54..0b63adf01 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -86,7 +86,6 @@ class WorkflowStepType extends AbstractType
         $builder
             ->add('transition', ChoiceType::class, [
                 'label' => 'workflow.Next step',
-                'mapped' => false,
                 'multiple' => false,
                 'expanded' => true,
                 'choices' => $choices,
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidatorTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidatorTest.php
new file mode 100644
index 000000000..1f5fe4444
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidatorTest.php
@@ -0,0 +1,181 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Validator;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestineeIfIsSentExternal;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestineeIfIsSentExternalValidator;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Symfony\Component\Validator\Test\ConstraintValidatorTestCase;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class TransitionHasDestineeIfIsSentExternalValidatorTest extends ConstraintValidatorTestCase
+{
+    private Transition $transitionToSent;
+    private Transition $transitionToNotSent;
+
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder(
+            ['initial', 'sent', 'notSent'],
+            [
+                $this->transitionToSent = new Transition('send', 'initial', 'sent'),
+                $this->transitionToNotSent = new Transition('notSend', 'initial', 'notSent'),
+            ]
+        );
+        $builder
+            ->setInitialPlaces('initial')
+            ->setMetadataStore(new InMemoryMetadataStore(
+                placesMetadata: [
+                    'sent' => ['isSentExternal' => true],
+                ]
+            ))
+        ;
+
+        $workflow = new Workflow($builder->build(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+
+    public function testToSentPlaceWithoutDestineeAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToSent;
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation('validation_message')
+            ->setCode('d78ea142-819d-11ef-a459-b7009a3e4caf')
+            ->atPath('property.path.futureDestineeThirdParties')
+            ->assertRaised();
+    }
+
+    public function testToSentPlaceWithDestineeThirdPartyDoesNotAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToSent;
+        $dto->futureDestineeThirdParties = [new ThirdParty()];
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testToSentPlaceWithDestineeEmailDoesNotAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToSent;
+        $dto->futureDestineeEmails = ['test@example.com'];
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testToNoSentPlaceWithNoDestineesDoesNotAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToNotSent;
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testToNoSentPlaceWithDestineeThirdPartyAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToNotSent;
+        $dto->futureDestineeThirdParties = [new ThirdParty()];
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation('validation_message')
+            ->atPath('property.path.futureDestineeThirdParties')
+            ->setCode('eb8051fc-8227-11ef-8c3b-7f2de85bdc5b')
+            ->assertRaised();
+    }
+
+    public function testToNoSentPlaceWithDestineeEmailAddViolation(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->transition = $this->transitionToNotSent;
+        $dto->futureDestineeEmails = ['test@example.com'];
+
+        $constraint = new TransitionHasDestineeIfIsSentExternal();
+        $constraint->messageDestineeRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation('validation_message')
+            ->atPath('property.path.futureDestineeEmails')
+            ->setCode('eb8051fc-8227-11ef-8c3b-7f2de85bdc5b')
+            ->assertRaised();
+    }
+
+    protected function createValidator(): TransitionHasDestineeIfIsSentExternalValidator
+    {
+        return new TransitionHasDestineeIfIsSentExternalValidator($this->buildRegistry());
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternal.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternal.php
new file mode 100644
index 000000000..6178bdce3
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternal.php
@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Symfony\Component\Validator\Constraint;
+
+/**
+ * Check that a transition does have at least one external if the 'to' is 'isSentExternal'.
+ */
+#[\Attribute]
+class TransitionHasDestineeIfIsSentExternal extends Constraint
+{
+    public $messageDestineeRequired = 'workflow.transition_has_destinee_if_sent_external';
+    public $messageDestineeNotNecessary = 'workflow.transition_destinee_not_necessary';
+    public $codeNoNecessaryDestinee = 'd78ea142-819d-11ef-a459-b7009a3e4caf';
+    public $codeDestineeUnauthorized = 'eb8051fc-8227-11ef-8c3b-7f2de85bdc5b';
+
+    public function getTargets(): string
+    {
+        return self::CLASS_CONSTRAINT;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidator.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidator.php
new file mode 100644
index 000000000..869d71f0d
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestineeIfIsSentExternalValidator.php
@@ -0,0 +1,70 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Symfony\Component\Validator\Constraint;
+use Symfony\Component\Validator\ConstraintValidator;
+use Symfony\Component\Validator\Exception\UnexpectedTypeException;
+use Symfony\Component\Workflow\Registry;
+
+final class TransitionHasDestineeIfIsSentExternalValidator extends ConstraintValidator
+{
+    public function __construct(private readonly Registry $registry) {}
+
+    public function validate($value, Constraint $constraint)
+    {
+        if (!$constraint instanceof TransitionHasDestineeIfIsSentExternal) {
+            throw new UnexpectedTypeException($constraint, TransitionHasDestineeIfIsSentExternal::class);
+        }
+
+        if (!$value instanceof WorkflowTransitionContextDTO) {
+            throw new UnexpectedTypeException($value, WorkflowTransitionContextDTO::class);
+        }
+
+        if (null == $value->transition) {
+            return;
+        }
+
+        $workflow = $this->registry->get($value->entityWorkflow, $value->entityWorkflow->getWorkflowName());
+        $isSentExternal = false;
+        foreach ($value->transition->getTos() as $to) {
+            $metadata = $workflow->getMetadataStore()->getPlaceMetadata($to);
+
+            $isSentExternal = $isSentExternal ? true : $metadata['isSentExternal'] ?? false;
+        }
+
+        if (!$isSentExternal) {
+            if (0 !== count($value->futureDestineeThirdParties)) {
+                $this->context->buildViolation($constraint->messageDestineeRequired)
+                    ->atPath('futureDestineeThirdParties')
+                    ->setCode($constraint->codeDestineeUnauthorized)
+                    ->addViolation();
+            }
+            if (0 !== count($value->futureDestineeEmails)) {
+                $this->context->buildViolation($constraint->messageDestineeRequired)
+                    ->atPath('futureDestineeEmails')
+                    ->setCode($constraint->codeDestineeUnauthorized)
+                    ->addViolation();
+            }
+
+            return;
+        }
+
+        if (0 === count($value->futureDestineeEmails) && 0 === count($value->futureDestineeThirdParties)) {
+            $this->context->buildViolation($constraint->messageDestineeRequired)
+                ->atPath('futureDestineeThirdParties')
+                ->setCode($constraint->codeNoNecessaryDestinee)
+                ->addViolation();
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index f00761ee4..0a8e1ac36 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -14,6 +14,7 @@ namespace Chill\MainBundle\Workflow;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestineeIfIsSentExternal;
 use Chill\PersonBundle\Entity\Person;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmail;
@@ -24,6 +25,7 @@ use Symfony\Component\Workflow\Transition;
 /**
  * Context for a transition on an workflow entity.
  */
+#[TransitionHasDestineeIfIsSentExternal]
 class WorkflowTransitionContextDTO
 {
     /**
diff --git a/src/Bundle/ChillMainBundle/translations/validators.fr.yml b/src/Bundle/ChillMainBundle/translations/validators.fr.yml
index 4ab9bde34..7e852177a 100644
--- a/src/Bundle/ChillMainBundle/translations/validators.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/validators.fr.yml
@@ -34,6 +34,8 @@ notification:
 workflow:
     You must add at least one dest user or email: Indiquez au moins un destinataire ou une adresse email
     The user in cc cannot be a dest user in the same workflow step: L'utilisateur en copie ne peut pas être présent dans les utilisateurs qui valideront la prochaine étape
+    transition_has_destinee_if_sent_external: Indiquez un destinataire de l'envoi externe
+    transition_destinee_not_necessary: Pour cette transition, vous ne pouvez pas indiquer de destinataires externes
 
 rolling_date:
     When fixed date is selected, you must provide a date: Indiquez la date fixe choisie

From 7913a377c868f4438ac00a24643e3391e06c0f76 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 4 Oct 2024 11:35:15 +0200
Subject: [PATCH 306/375] Move the logic to check if dest users are required to
 a dedicated constraint

- Create a dedicated constraint to check if the destUsers are required by the applied transition.
- Apply on WorkflowTransitionContextDTO and, if required, use the built-in constraints
- create tests
---
 .../ChillMainBundle/Form/WorkflowStepType.php |  36 +--
 ...tionHasDestUserIfRequiredValidatorTest.php | 209 ++++++++++++++++++
 .../TransitionHasDestUserIfRequired.php       |  31 +++
 ...ansitionHasDestUserIfRequiredValidator.php |  79 +++++++
 .../Workflow/WorkflowTransitionContextDTO.php |   3 +
 5 files changed, 323 insertions(+), 35 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestUserIfRequiredValidatorTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequired.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequiredValidator.php

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 0b63adf01..b786a450d 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -25,9 +25,7 @@ use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
 use Symfony\Component\Form\Extension\Core\Type\EmailType;
 use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\OptionsResolver\OptionsResolver;
-use Symfony\Component\Validator\Constraints\Callback;
 use Symfony\Component\Validator\Constraints\NotNull;
-use Symfony\Component\Validator\Context\ExecutionContextInterface;
 use Symfony\Component\Workflow\Registry;
 use Symfony\Component\Workflow\Transition;
 
@@ -206,38 +204,6 @@ class WorkflowStepType extends AbstractType
             ->setDefault('data_class', WorkflowTransitionContextDTO::class)
             ->setRequired('entity_workflow')
             ->setAllowedTypes('entity_workflow', EntityWorkflow::class)
-            ->setDefault('suggested_users', [])
-            ->setDefault('constraints', [
-                new Callback(
-                    function (WorkflowTransitionContextDTO $step, ExecutionContextInterface $context, $payload) {
-                        $workflow = $this->registry->get($step->entityWorkflow, $step->entityWorkflow->getWorkflowName());
-                        $transition = $step->transition;
-                        $toFinal = true;
-
-                        if (null === $transition) {
-                            $context
-                                ->buildViolation('workflow.You must select a next step, pick another decision if no next steps are available');
-                        } else {
-                            foreach ($transition->getTos() as $to) {
-                                $meta = $workflow->getMetadataStore()->getPlaceMetadata($to);
-
-                                if (
-                                    !\array_key_exists('isFinal', $meta) || false === $meta['isFinal']
-                                ) {
-                                    $toFinal = false;
-                                }
-                            }
-                            $destUsers = $step->futureDestUsers;
-
-                            if (!$toFinal && [] === $destUsers) {
-                                $context
-                                    ->buildViolation('workflow.You must add at least one dest user or email')
-                                    ->atPath('future_dest_users')
-                                    ->addViolation();
-                            }
-                        }
-                    }
-                ),
-            ]);
+            ->setDefault('suggested_users', []);
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestUserIfRequiredValidatorTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestUserIfRequiredValidatorTest.php
new file mode 100644
index 000000000..4d7f027d1
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasDestUserIfRequiredValidatorTest.php
@@ -0,0 +1,209 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Validator;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestUserIfRequired;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestUserIfRequiredValidator;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Symfony\Component\Validator\Test\ConstraintValidatorTestCase;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class TransitionHasDestUserIfRequiredValidatorTest extends ConstraintValidatorTestCase
+{
+    private Transition $transitionToSent;
+    private Transition $transitionRegular;
+    private Transition $transitionSignature;
+    private Transition $transitionFinal;
+
+    protected function setUp(): void
+    {
+        $this->transitionToSent = new Transition('send', 'initial', 'sent');
+        $this->transitionSignature = new Transition('signature', 'initial', 'signature');
+        $this->transitionRegular = new Transition('regular', 'initial', 'regular');
+        $this->transitionFinal = new Transition('final', 'initial', 'final');
+
+        parent::setUp();
+    }
+
+    public function testTransitionToRegularWithDestUsersRaiseNoViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionRegular;
+        $dto->futureDestUsers = [new User()];
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testTransitionToRegularWithNoUsersRaiseViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionRegular;
+
+        $constraint = new TransitionHasDestUserIfRequired();
+        $constraint->messageDestUserRequired = 'validation_message';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageDestUserRequired)
+            ->setCode($constraint->codeDestUserRequired)
+            ->atPath('property.path.futureDestUsers')
+            ->assertRaised();
+    }
+
+    public function testTransitionToSignatureWithUserRaiseViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionSignature;
+        $dto->futureDestUsers = [new User()];
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageDestUserNotAuthorized)
+            ->setCode($constraint->codeDestUserNotAuthorized)
+            ->atPath('property.path.futureDestUsers')
+            ->assertRaised();
+    }
+
+    public function testTransitionToExternalSendWithUserRaiseViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionToSent;
+        $dto->futureDestUsers = [new User()];
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageDestUserNotAuthorized)
+            ->setCode($constraint->codeDestUserNotAuthorized)
+            ->atPath('property.path.futureDestUsers')
+            ->assertRaised();
+    }
+
+    public function testTransitionToFinalWithUserRaiseViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionFinal;
+        $dto->futureDestUsers = [new User()];
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageDestUserNotAuthorized)
+            ->setCode($constraint->codeDestUserNotAuthorized)
+            ->atPath('property.path.futureDestUsers')
+            ->assertRaised();
+    }
+
+    public function testTransitionToSignatureWithNoUserNoViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionSignature;
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testTransitionToExternalSendWithNoUserNoViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionToSent;
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testTransitionToFinalWithNoUserNoViolation(): void
+    {
+        $dto = $this->buildDto();
+        $dto->transition = $this->transitionFinal;
+
+        $constraint = new TransitionHasDestUserIfRequired();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    private function buildDto(): WorkflowTransitionContextDTO
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        return new WorkflowTransitionContextDTO($entityWorkflow);
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder(
+            ['initial', 'sent', 'signature', 'regular', 'final'],
+            [
+                $this->transitionToSent,
+                $this->transitionSignature,
+                $this->transitionRegular,
+                $this->transitionFinal,
+            ]
+        );
+        $builder
+            ->setInitialPlaces('initial')
+            ->setMetadataStore(new InMemoryMetadataStore(
+                placesMetadata: [
+                    'sent' => ['isSentExternal' => true],
+                    'signature' => ['isSignature' => ['person', 'user']],
+                    'final' => ['isFinal' => true],
+                ]
+            ))
+        ;
+
+        $workflow = new Workflow($builder->build(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+
+    protected function createValidator(): TransitionHasDestUserIfRequiredValidator
+    {
+        return new TransitionHasDestUserIfRequiredValidator($this->buildRegistry());
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequired.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequired.php
new file mode 100644
index 000000000..5bda39ea6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequired.php
@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Symfony\Component\Validator\Constraint;
+
+/**
+ * Check that the next stop has a dest user if this is required by the transition.
+ */
+#[\Attribute]
+class TransitionHasDestUserIfRequired extends Constraint
+{
+    public $messageDestUserRequired = 'workflow.You must add at least one dest user or email';
+    public $codeDestUserRequired = '637c20a6-822c-11ef-a4dd-07b4c0c0efa8';
+    public $messageDestUserNotAuthorized = 'workflow.dest_user_not_authorized';
+    public $codeDestUserNotAuthorized = '8377be2c-822e-11ef-b53a-57ad65828a8e';
+
+    public function getTargets(): string
+    {
+        return self::CLASS_CONSTRAINT;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequiredValidator.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequiredValidator.php
new file mode 100644
index 000000000..f9583320e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasDestUserIfRequiredValidator.php
@@ -0,0 +1,79 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Symfony\Component\Validator\Constraint;
+use Symfony\Component\Validator\ConstraintValidator;
+use Symfony\Component\Validator\Exception\UnexpectedTypeException;
+use Symfony\Component\Validator\Exception\UnexpectedValueException;
+use Symfony\Component\Workflow\Registry;
+
+final class TransitionHasDestUserIfRequiredValidator extends ConstraintValidator
+{
+    public function __construct(private readonly Registry $registry) {}
+
+    public function validate($value, Constraint $constraint)
+    {
+        if (!$constraint instanceof TransitionHasDestUserIfRequired) {
+            throw new UnexpectedTypeException($constraint, TransitionHasDestUserIfRequired::class);
+        }
+
+        if (!$value instanceof WorkflowTransitionContextDTO) {
+            throw new UnexpectedValueException($value, WorkflowTransitionContextDTO::class);
+        }
+
+        if (null === $value->transition) {
+            return;
+        }
+
+        $workflow = $this->registry->get($value->entityWorkflow, $value->entityWorkflow->getWorkflowName());
+        $metadataStore = $workflow->getMetadataStore();
+
+        $destUsersRequired = false;
+
+        foreach ($value->transition->getTos() as $to) {
+            $metadata = $metadataStore->getPlaceMetadata($to);
+
+            // if the place are only 'isSentExternal' or 'isSignature' or 'final', then, we skip - a destUser is not required
+            if ($metadata['isSentExternal'] ?? false) {
+                continue;
+            }
+            if ($metadata['isSignature'] ?? false) {
+                continue;
+            }
+            if ($metadata['isFinal'] ?? false) {
+                continue;
+            }
+            // if there isn't any 'isSentExternal' or 'isSignature' or final, then we must have a destUser
+            $destUsersRequired = true;
+        }
+
+        if (!$destUsersRequired) {
+            if (0 < count($value->futureDestUsers)) {
+                $this->context->buildViolation($constraint->messageDestUserNotAuthorized)
+                    ->setCode($constraint->codeDestUserNotAuthorized)
+                    ->atPath('futureDestUsers')
+                    ->addViolation();
+            }
+
+            return;
+        }
+
+        if (0 === count($value->futureDestUsers)) {
+            $this->context->buildViolation($constraint->messageDestUserRequired)
+                ->setCode($constraint->codeDestUserRequired)
+                ->atPath('futureDestUsers')
+                ->addViolation();
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index 0a8e1ac36..324bef7e8 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -15,6 +15,7 @@ use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\Validator\TransitionHasDestineeIfIsSentExternal;
+use Chill\MainBundle\Workflow\Validator\TransitionHasDestUserIfRequired;
 use Chill\PersonBundle\Entity\Person;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmail;
@@ -26,6 +27,7 @@ use Symfony\Component\Workflow\Transition;
  * Context for a transition on an workflow entity.
  */
 #[TransitionHasDestineeIfIsSentExternal]
+#[TransitionHasDestUserIfRequired]
 class WorkflowTransitionContextDTO
 {
     /**
@@ -81,6 +83,7 @@ class WorkflowTransitionContextDTO
     ])]
     public array $futureDestineeEmails = [];
 
+    #[Assert\NotNull]
     public ?Transition $transition = null;
 
     public string $comment = '';

From a0b5c208eb05bb81b8385664e61dbb19e2c977c8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 4 Oct 2024 13:40:50 +0200
Subject: [PATCH 307/375] Send an email when a workflow is send to an external

- create an event subscriber to catch the workflow which arrive to a "sentExternal" step;
- add a messenger's message to handle the generation of the email;
- add a simple message, and a simple controller for viewing the document
- add dedicated tests
---
 .../WorkflowViewSendPublicController.php      |  25 ++++
 .../Entity/Workflow/EntityWorkflowSend.php    |  10 ++
 .../Entity/Workflow/EntityWorkflowStep.php    |   8 +
 ..._send_external_email_to_destinee.html.twig |   6 +
 ...EmailOnSendExternalEventSubscriberTest.php | 140 ++++++++++++++++++
 .../PostSendExternalMessageHandlerTest.php    |  77 ++++++++++
 ...pareEmailOnSendExternalEventSubscriber.php |  68 +++++++++
 .../Messenger/PostSendExternalMessage.php     |  20 +++
 .../PostSendExternalMessageHandler.php        |  57 +++++++
 .../ChillMainBundle/config/services.yaml      |   8 +-
 .../translations/messages+intl-icu.fr.yaml    |   2 +
 11 files changed, 417 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriberTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriber.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessage.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
new file mode 100644
index 000000000..88269d5bb
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Controller;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Annotation\Route;
+
+class WorkflowViewSendPublicController
+{
+    #[Route('/public/main/workflow/send/{uuid}/view/{verificationKey}', methods: ['GET'], name: 'chill_main_workflow_send_view_public')]
+    public function __invoke(EntityWorkflowSend $workflowSend, string $verificationKey): Response
+    {
+        return new Response('ok');
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
index ef0422fe0..dd6aa9044 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -124,6 +124,16 @@ class EntityWorkflowSend implements TrackCreationInterface
         return $this->uuid;
     }
 
+    public function getExpireAt(): \DateTimeImmutable
+    {
+        return $this->expireAt;
+    }
+
+    public function getViews(): Collection
+    {
+        return $this->views;
+    }
+
     public function increaseErrorTrials(): void
     {
         $this->numberOfErrorTrials = $this->numberOfErrorTrials + 1;
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index b0f4d4bf5..cd60d78d1 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -303,6 +303,14 @@ class EntityWorkflowStep
         return $this->signatures;
     }
 
+    /**
+     * @return Collection<int, EntityWorkflowSend>
+     */
+    public function getSends(): Collection
+    {
+        return $this->sends;
+    }
+
     public function getId(): ?int
     {
         return $this->id;
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
new file mode 100644
index 000000000..3dc31f1a6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
@@ -0,0 +1,6 @@
+
+Un message vous a été envoyé. Vous pouvez le consulter à cette adresse
+
+{{ absolute_url(path('chill_main_workflow_send_view_public', {'uuid': send.uuid, 'verificationKey': send.privateToken})) }}
+
+{{ 'workflow.send_external_message.document_available_until'|trans({ 'expiration': send.expireAt}, null, lang) }}
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriberTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriberTest.php
new file mode 100644
index 000000000..a72990af6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriberTest.php
@@ -0,0 +1,140 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowPrepareEmailOnSendExternalEventSubscriber;
+use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessage;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\MessageBusInterface;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowPrepareEmailOnSendExternalEventSubscriberTest extends TestCase
+{
+    use ProphecyTrait;
+
+    private Transition $transitionSendExternal;
+    private Transition $transitionRegular;
+
+    public function testToSendExternalGenerateMessage(): void
+    {
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostSendExternalMessage::class))
+            ->will(fn ($args) => new Envelope($args[0]))
+            ->shouldBeCalled();
+
+        $registry = $this->buildRegistry($messageBus->reveal());
+
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $workflow->apply(
+            $entityWorkflow,
+            $this->transitionSendExternal->getName(),
+            ['context' => $dto, 'byUser' => new User(), 'transition' => $this->transitionSendExternal->getName(),
+                'transitionAt' => new \DateTimeImmutable()]
+        );
+
+        // at this step, prophecy should check that the dispatch method has been called
+    }
+
+    public function testToRegularDoNotGenerateMessage(): void
+    {
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostSendExternalMessage::class))
+            ->shouldNotBeCalled();
+
+        $registry = $this->buildRegistry($messageBus->reveal());
+
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $workflow->apply(
+            $entityWorkflow,
+            $this->transitionRegular->getName(),
+            ['context' => $dto, 'byUser' => new User(), 'transition' => $this->transitionRegular->getName(),
+                'transitionAt' => new \DateTimeImmutable()]
+        );
+
+        // at this step, prophecy should check that the dispatch method has been called
+    }
+
+    private function buildEntityWorkflow(): EntityWorkflow
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        // set an id
+        $reflectionClass = new \ReflectionClass($entityWorkflow);
+        $idProperty = $reflectionClass->getProperty('id');
+        $idProperty->setValue($entityWorkflow, 1);
+
+        return $entityWorkflow;
+    }
+
+    private function buildRegistry(MessageBusInterface $messageBus): Registry
+    {
+        $builder = new DefinitionBuilder(
+            ['initial', 'sendExternal', 'regular'],
+            [
+                $this->transitionSendExternal = new Transition('toSendExternal', 'initial', 'sendExternal'),
+                $this->transitionRegular = new Transition('toRegular', 'initial', 'regular'),
+            ]
+        );
+
+        $builder
+            ->setInitialPlaces('initial')
+            ->setMetadataStore(new InMemoryMetadataStore(
+                placesMetadata: [
+                    'sendExternal' => ['isSentExternal' => true],
+                ]
+            ));
+
+        $entityMarkingStore = new EntityWorkflowMarkingStore();
+        $registry = new Registry();
+
+        $eventSubscriber = new EntityWorkflowPrepareEmailOnSendExternalEventSubscriber($registry, $messageBus);
+        $eventSubscriber->setLocale('fr');
+        $eventDispatcher = new EventDispatcher();
+        $eventDispatcher->addSubscriber($eventSubscriber);
+
+        $workflow = new Workflow($builder->build(), $entityMarkingStore, $eventDispatcher, 'dummy');
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
new file mode 100644
index 000000000..a6f3172a7
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
@@ -0,0 +1,77 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Messenger;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessage;
+use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessageHandler;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Bridge\Twig\Mime\TemplatedEmail;
+use Symfony\Component\Mailer\MailerInterface;
+use Symfony\Component\Mime\Address;
+use Symfony\Component\Mime\BodyRendererInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PostSendExternalMessageHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testSendMessageHappyScenario(): void
+    {
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestineeEmails = ['external@example.com'];
+        $dto->futureDestineeThirdParties = [(new ThirdParty())->setEmail('3party@example.com')];
+        $entityWorkflow->setStep('send_external', $dto, 'to_send_external', new \DateTimeImmutable(), new User());
+
+        $repository = $this->prophesize(EntityWorkflowRepository::class);
+        $repository->find(1)->willReturn($entityWorkflow);
+
+        $mailer = $this->prophesize(MailerInterface::class);
+        $mailer->send(Argument::that($this->buildCheckAddressCallback('3party@example.com')))->shouldBeCalledOnce();
+        $mailer->send(Argument::that($this->buildCheckAddressCallback('external@example.com')))->shouldBeCalledOnce();
+
+        $bodyRenderer = $this->prophesize(BodyRendererInterface::class);
+        $bodyRenderer->render(Argument::type(TemplatedEmail::class))->shouldBeCalledTimes(2);
+
+        $handler = new PostSendExternalMessageHandler($repository->reveal(), $mailer->reveal(), $bodyRenderer->reveal());
+
+        $handler(new PostSendExternalMessage(1, 'fr'));
+
+        // prophecy should do the check at the end of this test
+    }
+
+    private function buildCheckAddressCallback(string $emailToCheck): callable
+    {
+        return fn(TemplatedEmail $email): bool => in_array($emailToCheck, array_map(fn (Address $addr) => $addr->getAddress(), $email->getTo()), true);
+    }
+
+    private function buildEntityWorkflow(): EntityWorkflow
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $reflection = new \ReflectionClass($entityWorkflow);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($entityWorkflow, 1);
+
+        return $entityWorkflow;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriber.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriber.php
new file mode 100644
index 000000000..9eeaaeaa5
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowPrepareEmailOnSendExternalEventSubscriber.php
@@ -0,0 +1,68 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessage;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Messenger\MessageBusInterface;
+use Symfony\Component\Workflow\Event\CompletedEvent;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Contracts\Translation\LocaleAwareInterface;
+
+class EntityWorkflowPrepareEmailOnSendExternalEventSubscriber implements EventSubscriberInterface, LocaleAwareInterface
+{
+    private string $locale;
+
+    public function __construct(private readonly Registry $registry, private readonly MessageBusInterface $messageBus) {}
+
+    public static function getSubscribedEvents(): array
+    {
+        return [
+            'workflow.completed' => 'onWorkflowCompleted',
+        ];
+    }
+
+    public function onWorkflowCompleted(CompletedEvent $event): void
+    {
+        $entityWorkflow = $event->getSubject();
+
+        if (!$entityWorkflow instanceof EntityWorkflow) {
+            return;
+        }
+
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $store = $workflow->getMetadataStore();
+
+        $mustSend = false;
+        foreach ($event->getTransition()->getTos() as $to) {
+            $metadata = $store->getPlaceMetadata($to);
+            if ($metadata['isSentExternal'] ?? false) {
+                $mustSend = true;
+            }
+        }
+
+        if ($mustSend) {
+            $this->messageBus->dispatch(new PostSendExternalMessage($entityWorkflow->getId(), $this->getLocale()));
+        }
+    }
+
+    public function setLocale(string $locale): void
+    {
+        $this->locale = $locale;
+    }
+
+    public function getLocale(): string
+    {
+        return $this->locale;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessage.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessage.php
new file mode 100644
index 000000000..40ee49bbc
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessage.php
@@ -0,0 +1,20 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+class PostSendExternalMessage
+{
+    public function __construct(
+        public readonly int $entityWorkflowId,
+        public readonly string $lang,
+    ) {}
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
new file mode 100644
index 000000000..afeefb2f7
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Symfony\Bridge\Twig\Mime\TemplatedEmail;
+use Symfony\Component\Mailer\MailerInterface;
+use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+use Symfony\Component\Mime\BodyRendererInterface;
+
+final readonly class PostSendExternalMessageHandler implements MessageHandlerInterface
+{
+    public function __construct(
+        private EntityWorkflowRepository $entityWorkflowRepository,
+        private MailerInterface $mailer,
+        private BodyRendererInterface $bodyRenderer,
+    ) {}
+
+    public function __invoke(PostSendExternalMessage $message): void
+    {
+        $entityWorkflow = $this->entityWorkflowRepository->find($message->entityWorkflowId);
+
+        if (null === $entityWorkflow) {
+            throw new UnrecoverableMessageHandlingException(sprintf('Entity workflow with id %d not found', $message->entityWorkflowId));
+        }
+
+        foreach ($entityWorkflow->getCurrentStep()->getSends() as $send) {
+            $this->sendEmailToDestinee($send, $message);
+        }
+    }
+
+    private function sendEmailToDestinee(EntityWorkflowSend $send, PostSendExternalMessage $message): void
+    {
+        $email = new TemplatedEmail();
+        $email
+            ->to($send->getDestineeThirdParty()?->getEmail() ?? $send->getDestineeEmail())
+            ->htmlTemplate('@ChillMain/Workflow/workflow_send_external_email_to_destinee.html.twig')
+            ->context([
+                'send' => $send,
+                'lang' => $message->lang,
+            ]);
+
+        $this->bodyRenderer->render($email);
+        $this->mailer->send($email);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/config/services.yaml b/src/Bundle/ChillMainBundle/config/services.yaml
index 8b4aaa7bf..86f15097b 100644
--- a/src/Bundle/ChillMainBundle/config/services.yaml
+++ b/src/Bundle/ChillMainBundle/config/services.yaml
@@ -33,15 +33,15 @@ services:
     # workflow related
     Chill\MainBundle\Workflow\:
         resource: '../Workflow/'
-        autowire: true
-        autoconfigure: true
 
     Chill\MainBundle\Workflow\EntityWorkflowManager:
-        autoconfigure: true
-        autowire: true
         arguments:
             $handlers: !tagged_iterator chill_main.workflow_handler
 
+    # seems to have no alias on symfony 5.4
+    Symfony\Component\Mime\BodyRendererInterface:
+        alias: 'twig.mime_body_renderer'
+
     # other stuffes
 
     chill.main.helper.translatable_string:
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 9100f8ab8..59374ca57 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -67,6 +67,8 @@ workflow:
             one {Signature demandée}
             other {Signatures demandées}
         }
+    send_external_message:
+        document_available_until: Le lien sera valable jusqu'au {expiration, date, long} à {expiration, time, short}.
 
 duration:
     minute: >-

From 5c0f3cb317307e38591f28b6ce31955969ed1a9e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 7 Oct 2024 15:35:36 +0200
Subject: [PATCH 308/375] Implement the controller action to view the
 EntityworkflowSend

---
 .../WorkflowViewSendPublicController.php      |  63 ++++-
 .../Entity/Workflow/EntityWorkflowSend.php    |   5 +
 ...orkflow_view_send_public_expired.html.twig |  12 +
 .../WorkflowViewSendPublicControllerTest.php  | 234 ++++++++++++++++++
 .../PostSendExternalMessageHandlerTest.php    |   2 +-
 .../Workflow/EntityWorkflowManager.php        |  29 +++
 .../EntityWorkflowWithPublicViewInterface.php |  24 ++
 ...HandlerWithPublicViewNotFoundException.php |  14 ++
 .../translations/messages.fr.yml              |   3 +
 9 files changed, 381 insertions(+), 5 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_expired.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Exception/HandlerWithPublicViewNotFoundException.php

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
index 88269d5bb..084fcdce0 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
@@ -12,14 +12,69 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Controller;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
+use Doctrine\ORM\EntityManagerInterface;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Clock\ClockInterface;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\Routing\Annotation\Route;
+use Twig\Environment;
 
-class WorkflowViewSendPublicController
+final readonly class WorkflowViewSendPublicController
 {
-    #[Route('/public/main/workflow/send/{uuid}/view/{verificationKey}', methods: ['GET'], name: 'chill_main_workflow_send_view_public')]
-    public function __invoke(EntityWorkflowSend $workflowSend, string $verificationKey): Response
+    public const LOG_PREFIX = '[workflow-view-send-public-controller] ';
+
+    public function __construct(
+        private EntityManagerInterface $entityManager,
+        private LoggerInterface $chillLogger,
+        private EntityWorkflowManager $entityWorkflowManager,
+        private ClockInterface $clock,
+        private Environment $environment,
+    ) {}
+
+    #[Route('/public/main/workflow/send/{uuid}/view/{verificationKey}', name: 'chill_main_workflow_send_view_public', methods: ['GET'])]
+    public function __invoke(EntityWorkflowSend $workflowSend, string $verificationKey, Request $request): Response
     {
-        return new Response('ok');
+        if (50 < $workflowSend->getNumberOfErrorTrials()) {
+            throw new AccessDeniedHttpException('number of trials exceeded, no more access allowed');
+        }
+
+        if ($verificationKey !== $workflowSend->getPrivateToken()) {
+            $this->chillLogger->info(self::LOG_PREFIX.'Invalid trial for this send', ['client_ip' => $request->getClientIp()]);
+            $workflowSend->increaseErrorTrials();
+            $this->entityManager->flush();
+
+            throw new AccessDeniedHttpException('invalid verification key');
+        }
+
+        if ($this->clock->now() > $workflowSend->getExpireAt()) {
+            return new Response(
+                $this->environment->render('@ChillMain/Workflow/workflow_view_send_public_expired.html.twig'),
+                409
+            );
+        }
+
+        if (100 < $workflowSend->getViews()->count()) {
+            $this->chillLogger->info(self::LOG_PREFIX.'100 view reached, not allowed to see it again');
+            throw new AccessDeniedHttpException('100 views reached, not allowed to see it again');
+        }
+
+        try {
+            $response = new Response(
+                $this->entityWorkflowManager->renderPublicView($workflowSend),
+            );
+
+            $view = new EntityWorkflowSendView($workflowSend, $this->clock->now(), $request->getClientIp());
+            $this->entityManager->persist($view);
+            $this->entityManager->flush();
+
+            return $response;
+        } catch (HandlerWithPublicViewNotFoundException $e) {
+            throw new \RuntimeException('Could not render the public view', previous: $e);
+        }
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
index dd6aa9044..186cf64e6 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -119,6 +119,11 @@ class EntityWorkflowSend implements TrackCreationInterface
         return $this->privateToken;
     }
 
+    public function getEntityWorkflowStep(): EntityWorkflowStep
+    {
+        return $this->entityWorkflowStep;
+    }
+
     public function getUuid(): UuidInterface
     {
         return $this->uuid;
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_expired.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_expired.html.twig
new file mode 100644
index 000000000..d026c37b1
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_expired.html.twig
@@ -0,0 +1,12 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="utf-8">
+    <title>{{ 'workflow.public_link.expired_link_title'|trans }}</title>
+</head>
+<body>
+    <h1>{{ 'workflow.public_link.expired_link_title'|trans }}</h1>
+
+    <p>{{ 'workflow.public_link.expired_link_explanation'|trans }}</p>
+</body>
+</html>
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
new file mode 100644
index 000000000..d9728b986
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
@@ -0,0 +1,234 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Controller;
+
+use Chill\MainBundle\Controller\WorkflowViewSendPublicController;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Doctrine\ORM\EntityManagerInterface;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Psr\Log\NullLogger;
+use Symfony\Component\Clock\MockClock;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Workflow\Registry;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class WorkflowViewSendPublicControllerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testTooMuchTrials(): void
+    {
+        $environment = $this->prophesize(Environment::class);
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $entityManager->flush()->shouldNotBeCalled();
+
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal());
+
+        self::expectException(AccessDeniedHttpException::class);
+
+        $send = $this->buildEntityWorkflowSend();
+
+        for ($i = 0; $i < 51; ++$i) {
+            $send->increaseErrorTrials();
+        }
+
+        $controller($send, $send->getPrivateToken(), new Request());
+    }
+
+    public function testInvalidVerificationKey(): void
+    {
+        $environment = $this->prophesize(Environment::class);
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $entityManager->flush()->shouldBeCalled();
+
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal());
+
+        self::expectException(AccessDeniedHttpException::class);
+
+        $send = $this->buildEntityWorkflowSend();
+
+        try {
+            $controller($send, 'some-token', new Request());
+        } catch (AccessDeniedHttpException $e) {
+            self::assertEquals(1, $send->getNumberOfErrorTrials());
+
+            throw $e;
+        }
+    }
+
+    public function testExpiredLink(): void
+    {
+        $environment = $this->prophesize(Environment::class);
+        $environment->render('@ChillMain/Workflow/workflow_view_send_public_expired.html.twig')->willReturn('test');
+
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $entityManager->flush()->shouldNotBeCalled();
+
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock('next year'), $environment->reveal());
+
+        $send = $this->buildEntityWorkflowSend();
+
+        $response = $controller($send, $send->getPrivateToken(), new Request());
+
+        self::assertEquals('test', $response->getContent());
+        self::assertEquals(409, $response->getStatusCode());
+    }
+
+    public function testNoHandlerFound(): void
+    {
+        $environment = $this->prophesize(Environment::class);
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $entityManager->flush()->shouldNotBeCalled();
+
+        $controller = new WorkflowViewSendPublicController(
+            $entityManager->reveal(),
+            new NullLogger(),
+            new EntityWorkflowManager([], new Registry()),
+            new MockClock(),
+            $environment->reveal(),
+        );
+
+        self::expectException(\RuntimeException::class);
+
+        $send = $this->buildEntityWorkflowSend();
+        $controller($send, $send->getPrivateToken(), new Request());
+    }
+
+    public function testHappyScenario(): void
+    {
+        $send = $this->buildEntityWorkflowSend();
+        $environment = $this->prophesize(Environment::class);
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $entityManager->persist(Argument::that(function (EntityWorkflowSendView $view) use ($send) {
+            return $send === $view->getSend();
+        }))->shouldBeCalled();
+        $entityManager->flush()->shouldBeCalled();
+
+        $controller = new WorkflowViewSendPublicController(
+            $entityManager->reveal(),
+            new NullLogger(),
+            new EntityWorkflowManager([
+                $this->buildFakeHandler(),
+            ], new Registry()),
+            new MockClock(),
+            $environment->reveal(),
+        );
+
+        $response = $controller($send, $send->getPrivateToken(), $this->buildRequest());
+
+        self::assertEquals(200, $response->getStatusCode());
+        self::assertEquals('content', $response->getContent());
+    }
+
+    private function buildFakeHandler(): EntityWorkflowHandlerInterface&EntityWorkflowWithPublicViewInterface
+    {
+        return new class () implements EntityWorkflowWithPublicViewInterface, EntityWorkflowHandlerInterface {
+            public function getDeletionRoles(): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getEntityData(EntityWorkflow $entityWorkflow, array $options = []): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getEntityTitle(EntityWorkflow $entityWorkflow, array $options = []): string
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getRelatedEntity(EntityWorkflow $entityWorkflow): ?object
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getRelatedObjects(object $object): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getRoleShow(EntityWorkflow $entityWorkflow): ?string
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function getTemplateData(EntityWorkflow $entityWorkflow, array $options = []): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function isObjectSupported(object $object): bool
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function supports(EntityWorkflow $entityWorkflow, array $options = []): bool
+            {
+                return true;
+            }
+
+            public function supportsFreeze(EntityWorkflow $entityWorkflow, array $options = []): bool
+            {
+                return false;
+            }
+
+            public function findByRelatedEntity(object $object): array
+            {
+                throw new \BadMethodCallException('not implemented');
+            }
+
+            public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string
+            {
+                return 'content';
+            }
+        };
+    }
+
+    private function buildRequest(): Request
+    {
+        return Request::create('/test', server: ['REMOTE_ADDR' => '10.0.0.10']);
+    }
+
+    private function buildEntityWorkflowSend(): EntityWorkflowSend
+    {
+        $entityWorkflow = new EntityWorkflow();
+
+        $step = $entityWorkflow->getCurrentStep();
+
+        return new EntityWorkflowSend($step, new ThirdParty(), new \DateTimeImmutable('next month'));
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
index a6f3172a7..9f3542291 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
@@ -62,7 +62,7 @@ class PostSendExternalMessageHandlerTest extends TestCase
 
     private function buildCheckAddressCallback(string $emailToCheck): callable
     {
-        return fn(TemplatedEmail $email): bool => in_array($emailToCheck, array_map(fn (Address $addr) => $addr->getAddress(), $email->getTo()), true);
+        return fn (TemplatedEmail $email): bool => in_array($emailToCheck, array_map(fn (Address $addr) => $addr->getAddress(), $email->getTo()), true);
     }
 
     private function buildEntityWorkflow(): EntityWorkflow
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 9f7b54ccd..f054826c4 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -13,9 +13,16 @@ namespace Chill\MainBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Workflow\Exception\HandlerNotFoundException;
+use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
 use Symfony\Component\Workflow\Registry;
 
+/**
+ * Manage the handler and performs some operation on handlers.
+ *
+ * Each handler must implement @{EntityWorkflowHandlerInterface::class}.
+ */
 class EntityWorkflowManager
 {
     /**
@@ -63,4 +70,26 @@ class EntityWorkflowManager
 
         return [];
     }
+
+    /**
+     * Renders the public view for the given entity workflow send.
+     *
+     * @param EntityWorkflowSend $entityWorkflowSend the entity workflow send object
+     *
+     * @return string the rendered public view
+     *
+     * @throws HandlerWithPublicViewNotFoundException if no handler with public view is found
+     */
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string
+    {
+        $entityWorkflow = $entityWorkflowSend->getEntityWorkflowStep()->getEntityWorkflow();
+
+        foreach ($this->handlers as $handler) {
+            if ($handler instanceof EntityWorkflowWithPublicViewInterface && $handler->supports($entityWorkflow)) {
+                return $handler->renderPublicView($entityWorkflowSend);
+            }
+        }
+
+        throw new HandlerWithPublicViewNotFoundException();
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
new file mode 100644
index 000000000..2d4eefb9e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
@@ -0,0 +1,24 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+
+interface EntityWorkflowWithPublicViewInterface
+{
+    /**
+     * Render the public view for EntityWorkflowSend.
+     *
+     * The public view must be a safe html string
+     */
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string;
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Exception/HandlerWithPublicViewNotFoundException.php b/src/Bundle/ChillMainBundle/Workflow/Exception/HandlerWithPublicViewNotFoundException.php
new file mode 100644
index 000000000..1e0b53b97
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Exception/HandlerWithPublicViewNotFoundException.php
@@ -0,0 +1,14 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Exception;
+
+class HandlerWithPublicViewNotFoundException extends \RuntimeException {}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 3c459af16..259561844 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -565,6 +565,9 @@ workflow:
     transition_destinee_remove_emails: Supprimer
     transition_destinee_emails_help: Le lien sécurisé sera envoyé à chaque adresse indiquée
 
+    public_link:
+        expired_link_title: Lien expiré
+        expired_link_explanation: Le lien a expiré, vous ne pouvez plus visualiser ce document.
 
 
 

From 118ae291e2721b40fd1a42950f73a5d7e68b0c51 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 8 Oct 2024 15:15:15 +0200
Subject: [PATCH 309/375] Add direct download link feature with new button
 implementation

Introduce a new feature that allows for direct download links by integrating TempUrlGeneratorInterface. Added new DOWNLOAD_LINK_ONLY group and corresponding logic to generate download links in StoredObjectNormalizer. Implement a new Twig filter and Vue component for rendering the download button. Updated tests to cover the new functionality.
---
 .../public/module/button_download/index.ts    | 27 ++++++++++
 .../Resources/public/types.ts                 |  2 +
 .../StoredObjectButton/DownloadButton.vue     | 41 +++++++++++----
 .../vuejs/StoredObjectButton/helpers.ts       |  9 +++-
 .../views/Button/button_download.html.twig    |  1 +
 .../Normalizer/StoredObjectNormalizer.php     | 26 ++++++++++
 .../Templating/WopiEditTwigExtension.php      |  4 ++
 .../WopiEditTwigExtensionRuntime.php          | 12 +++++
 .../Normalizer/StoredObjectNormalizerTest.php | 50 ++++++++++++++++++-
 .../chill.webpack.config.js                   |  3 +-
 10 files changed, 162 insertions(+), 13 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/public/module/button_download/index.ts
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/views/Button/button_download.html.twig

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/module/button_download/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/module/button_download/index.ts
new file mode 100644
index 000000000..9ffe696c7
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/module/button_download/index.ts
@@ -0,0 +1,27 @@
+import {_createI18n} from "../../../../../ChillMainBundle/Resources/public/vuejs/_js/i18n";
+import {createApp} from "vue";
+import DocumentActionButtonsGroup from "../../vuejs/DocumentActionButtonsGroup.vue";
+import {StoredObject, StoredObjectStatusChange} from "../../types";
+import {defineComponent} from "vue";
+import DownloadButton from "../../vuejs/StoredObjectButton/DownloadButton.vue";
+import ToastPlugin from "vue-toast-notification";
+
+
+
+const i18n = _createI18n({});
+
+window.addEventListener('DOMContentLoaded', function (e) {
+    document.querySelectorAll<HTMLDivElement>('div[data-download-button-single]').forEach((el) => {
+        const storedObject = JSON.parse(el.dataset.storedObject as string) as StoredObject;
+        const title = el.dataset.title as string;
+        const app = createApp({
+            components: {DownloadButton},
+            data() {
+                return {storedObject, title, classes: {btn: true, "btn-outline-primary": true}};
+            },
+            template: '<download-button :stored-object="storedObject" :at-version="storedObject.currentVersion" :classes="classes" :filename="title" :direct-download="true"></download-button>',
+        });
+
+        app.use(i18n).use(ToastPlugin).mount(el);
+    });
+});
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index f93e9c5b7..2a998fb63 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -2,6 +2,7 @@ import {
     DateTime,
     User,
 } from "../../../ChillMainBundle/Resources/public/types";
+import {SignedUrlGet} from "./vuejs/StoredObjectButton/helpers";
 
 export type StoredObjectStatus = "empty" | "ready" | "failure" | "pending";
 
@@ -30,6 +31,7 @@ export interface StoredObject {
             href: string;
             expiration: number;
         };
+        downloadLink?: SignedUrlGet;
     };
 }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
index d1efabcee..ecf9055af 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
@@ -1,5 +1,5 @@
 <template>
-    <a v-if="!state.is_ready" :class="props.classes" @click="download_and_open($event)" title="T&#233;l&#233;charger">
+    <a v-if="!state.is_ready" :class="props.classes" @click="download_and_open()" title="T&#233;l&#233;charger">
         <i class="fa fa-download"></i>
         <template v-if="displayActionStringInButton">Télécharger</template>
     </a>
@@ -20,7 +20,15 @@ interface DownloadButtonConfig {
     atVersion: StoredObjectVersion,
     classes: { [k: string]: boolean },
     filename?: string,
+    /**
+     * if true, display the action string into the button. If false, displays only
+     * the icon
+     */
     displayActionStringInButton: boolean,
+    /**
+     * if true, will download directly the file on load
+     */
+    directDownload: boolean,
 }
 
 interface DownloadButtonState {
@@ -29,13 +37,17 @@ interface DownloadButtonState {
     href_url: string,
 }
 
-const props = withDefaults(defineProps<DownloadButtonConfig>(), {displayActionStringInButton: true});
+const props = withDefaults(defineProps<DownloadButtonConfig>(), {displayActionStringInButton: true, directDownload: false});
 const state: DownloadButtonState = reactive({is_ready: false, is_running: false, href_url: "#"});
 
 const open_button = ref<HTMLAnchorElement | null>(null);
 
 function buildDocumentName(): string {
-    const document_name = props.filename ?? props.storedObject.title ?? 'document';
+    let document_name = props.filename ?? props.storedObject.title;
+
+    if ('' === document_name) {
+        document_name = 'document';
+    }
 
     const ext = mime.getExtension(props.atVersion.type);
 
@@ -46,9 +58,7 @@ function buildDocumentName(): string {
     return document_name;
 }
 
-async function download_and_open(event: Event): Promise<void> {
-    const button = event.target as HTMLAnchorElement;
-
+async function download_and_open(): Promise<void> {
     if (state.is_running) {
         console.log('state is running, aborting');
         return;
@@ -75,11 +85,13 @@ async function download_and_open(event: Event): Promise<void> {
     state.is_running = false;
     state.is_ready = true;
 
-    await nextTick();
-    open_button.value?.click();
-    console.log('open button should have been clicked');
+    if (!props.directDownload) {
+        await nextTick();
+        open_button.value?.click();
 
-    const timer = setTimeout(reset_state, 45000);
+        console.log('open button should have been clicked');
+        setTimeout(reset_state, 45000);
+    }
 }
 
 function reset_state(): void {
@@ -87,10 +99,19 @@ function reset_state(): void {
     state.is_ready = false;
     state.is_running = false;
 }
+
+onMounted(() => {
+    if (props.directDownload) {
+        download_and_open();
+    }
+});
 </script>
 
 <style scoped lang="scss">
 i.fa::before {
    color: var(--bs-dropdown-link-hover-color);
 }
+i.fa {
+    margin-right: 0.5rem;
+}
 </style>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
index a69d29605..a5a520597 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/helpers.ts
@@ -161,7 +161,14 @@ async function download_and_decrypt_doc(storedObject: StoredObject, atVersion: n
        throw new Error("no version associated to stored object");
    }
 
-   const downloadInfo= await download_info_link(storedObject, atVersionToDownload);
+   // sometimes, the downloadInfo may be embedded into the storedObject
+    console.log('storedObject', storedObject);
+    let downloadInfo;
+    if (typeof storedObject._links !== 'undefined' && typeof storedObject._links.downloadLink !== 'undefined') {
+       downloadInfo = storedObject._links.downloadLink;
+    } else {
+       downloadInfo = await download_info_link(storedObject, atVersionToDownload);
+    }
 
    const rawResponse = await window.fetch(downloadInfo.url);
 
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/Button/button_download.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/Button/button_download.html.twig
new file mode 100644
index 000000000..d2abb56a7
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/Button/button_download.html.twig
@@ -0,0 +1 @@
+<div data-download-button-single="data-download-button-single" data-stored-object="{{ document_json|json_encode|escape('html_attr') }}" data-title="{{ title|escape('html_attr') }}"></div>
diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index d87532c2f..4aebe4728 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Serializer\Normalizer;
 
+use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
@@ -30,10 +31,17 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
 {
     use NormalizerAwareTrait;
 
+    /**
+     * when added to the groups, a download link is included in the normalization,
+     * and no webdav links are generated
+     */
+    public const DOWNLOAD_LINK_ONLY = 'read:download-link-only';
+
     public function __construct(
         private readonly JWTDavTokenProviderInterface $JWTDavTokenProvider,
         private readonly UrlGeneratorInterface $urlGenerator,
         private readonly Security $security,
+        private readonly TempUrlGeneratorInterface $tempUrlGenerator,
     ) {}
 
     public function normalize($object, ?string $format = null, array $context = [])
@@ -55,6 +63,24 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
         // deprecated property
         $datas['creationDate'] = $datas['createdAt'];
 
+        if (array_key_exists(AbstractNormalizer::GROUPS, $context)) {
+            $groupsNormalized = is_array($context[AbstractNormalizer::GROUPS]) ? $context[AbstractNormalizer::GROUPS] : [$context[AbstractNormalizer::GROUPS]];
+        } else {
+            $groupsNormalized = [];
+        }
+
+        if (in_array(self::DOWNLOAD_LINK_ONLY, $groupsNormalized, true)) {
+            $datas['_permissions'] = [
+                'canSee' => true,
+                'canEdit' => false,
+            ];
+            $datas['_links'] = [
+                'downloadLink' => $this->normalizer->normalize($this->tempUrlGenerator->generate('GET', $object->getCurrentVersion()->getFilename(), 180), $format, [AbstractNormalizer::GROUPS => ['read']]),
+            ];
+
+            return $datas;
+        }
+
         $canSee = $this->security->isGranted(StoredObjectRoleEnum::SEE->value, $object);
         $canEdit = $this->security->isGranted(StoredObjectRoleEnum::EDIT->value, $object);
 
diff --git a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtension.php b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtension.php
index 754c3fb3c..7d8929930 100644
--- a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtension.php
+++ b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtension.php
@@ -28,6 +28,10 @@ class WopiEditTwigExtension extends AbstractExtension
                 'needs_environment' => true,
                 'is_safe' => ['html'],
             ]),
+            new TwigFilter('chill_document_download_only_button', [WopiEditTwigExtensionRuntime::class, 'renderDownloadButton'], [
+                'needs_environment' => true,
+                'is_safe' => ['html'],
+            ]),
         ];
     }
 
diff --git a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
index b6290049c..d5d2ed6d9 100644
--- a/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
+++ b/src/Bundle/ChillDocStoreBundle/Templating/WopiEditTwigExtensionRuntime.php
@@ -15,6 +15,7 @@ use ChampsLibres\WopiLib\Contract\Service\Discovery\DiscoveryInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
+use Chill\DocStoreBundle\Serializer\Normalizer\StoredObjectNormalizer;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\AbstractNormalizer;
@@ -177,6 +178,17 @@ final readonly class WopiEditTwigExtensionRuntime implements RuntimeExtensionInt
         ]);
     }
 
+    public function renderDownloadButton(Environment $environment, StoredObject $storedObject, string $title = ''): string
+    {
+        return $environment->render(
+            '@ChillDocStore/Button/button_download.html.twig',
+            [
+                'document_json' => $this->normalizer->normalize($storedObject, 'json', [AbstractNormalizer::GROUPS => ['read', StoredObjectNormalizer::DOWNLOAD_LINK_ONLY]]),
+                'title' => $title,
+            ]
+        );
+    }
+
     public function renderEditButton(Environment $environment, StoredObject $document, ?array $options = null): string
     {
         return $environment->render(self::TEMPLATE, [
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
index a2cc75541..7e84ccade 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
@@ -11,6 +11,8 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Tests\Serializer\Normalizer;
 
+use Chill\DocStoreBundle\AsyncUpload\SignedUrl;
+use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\StoredObjectRoleEnum;
 use Chill\DocStoreBundle\Security\Guard\JWTDavTokenProviderInterface;
@@ -70,7 +72,9 @@ class StoredObjectNormalizerTest extends TestCase
                 return ['sub' => 'sub'];
             });
 
-        $normalizer = new StoredObjectNormalizer($jwtProvider, $urlGenerator, $security);
+        $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
+
+        $normalizer = new StoredObjectNormalizer($jwtProvider, $urlGenerator, $security, $tempUrlGenerator);
         $normalizer->setNormalizer($globalNormalizer);
 
         $actual = $normalizer->normalize($storedObject, 'json');
@@ -95,4 +99,48 @@ class StoredObjectNormalizerTest extends TestCase
         self::assertArrayHasKey('dav_link', $actual['_links']);
         self::assertEqualsCanonicalizing(['href' => $davLink, 'expiration' => $d->getTimestamp()], $actual['_links']['dav_link']);
     }
+
+    public function testWithDownloadLinkOnly(): void
+    {
+        $storedObject = new StoredObject();
+        $storedObject->registerVersion();
+        $storedObject->setTitle('test');
+        $reflection = new \ReflectionClass(StoredObject::class);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($storedObject, 1);
+
+        $jwtProvider = $this->createMock(JWTDavTokenProviderInterface::class);
+        $jwtProvider->expects($this->never())->method('createToken')->withAnyParameters();
+
+        $urlGenerator = $this->createMock(UrlGeneratorInterface::class);
+        $urlGenerator->expects($this->never())->method('generate');
+
+        $security = $this->createMock(Security::class);
+        $security->expects($this->never())->method('isGranted');
+
+        $globalNormalizer = $this->createMock(NormalizerInterface::class);
+        $globalNormalizer->expects($this->exactly(4))->method('normalize')
+            ->withAnyParameters()
+            ->willReturnCallback(function (?object $object, string $format, array $context) {
+                if (null === $object) {
+                    return null;
+                }
+
+                return ['sub' => 'sub'];
+            });
+
+        $tempUrlGenerator = $this->createMock(TempUrlGeneratorInterface::class);
+        $tempUrlGenerator->expects($this->once())->method('generate')->with('GET', $storedObject->getCurrentVersion()->getFilename(), $this->isType('int'))
+            ->willReturn(new SignedUrl('GET', 'https://some-link/test', new \DateTimeImmutable('300 seconds'), $storedObject->getCurrentVersion()->getFilename()));
+
+        $normalizer = new StoredObjectNormalizer($jwtProvider, $urlGenerator, $security, $tempUrlGenerator);
+        $normalizer->setNormalizer($globalNormalizer);
+
+        $actual = $normalizer->normalize($storedObject, 'json', ['groups' => ['read', 'read:download-link-only']]);
+
+        self::assertIsArray($actual);
+        self::arrayHasKey('_links', $actual);
+        self::assertArrayHasKey('downloadLink', $actual['_links']);
+        self::assertEquals(['sub' => 'sub'], $actual['_links']['downloadLink']);
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js b/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
index 0a95f61b0..f0f0d0f1f 100644
--- a/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
+++ b/src/Bundle/ChillDocStoreBundle/chill.webpack.config.js
@@ -5,5 +5,6 @@ module.exports = function(encore)
     });
     encore.addEntry('mod_async_upload', __dirname + '/Resources/public/module/async_upload/index.ts');
     encore.addEntry('mod_document_action_buttons_group', __dirname + '/Resources/public/module/document_action_buttons_group/index');
-    encore.addEntry('vue_document_signature', __dirname + '/Resources/public/vuejs/DocumentSignature/index.ts');
+    encore.addEntry('mod_document_download_button', __dirname + '/Resources/public/module/button_download/index');
+    encore.addEntry('vue_document_signature', __dirname + '/Resources/public/vuejs/DocumentSignature/index');
 };

From 3f80d62ca2d6892ccdf37182f01739dec21c252e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 8 Oct 2024 15:15:58 +0200
Subject: [PATCH 310/375] Add public workflow view functionality

Introduced the ability to render public views for workflows, including new templates, handlers, and metadata support. Updated entity interfaces and translations to enhance the public sharing of workflow documents.
---
 ...public_view_with_document_render.html.twig | 43 ++++++++++++++
 ...ompanyingCourseDocumentWorkflowHandler.php | 11 +++-
 .../WorkflowWithPublicViewDocumentHelper.php  | 45 ++++++++++++++
 .../translations/messages+intl-icu.fr.yml     |  8 +++
 .../translations/messages.fr.yml              |  4 ++
 .../WorkflowViewSendPublicController.php      |  7 ++-
 .../Entity/Workflow/EntityWorkflowSend.php    | 11 ++++
 ...workflow_view_send_public_layout.html.twig | 58 +++++++++++++++++++
 .../Workflow/EntityWorkflowManager.php        |  5 +-
 .../EntityWorkflowWithPublicViewInterface.php |  3 +-
 .../EntityWorkflowViewMetadataDTO.php         | 27 +++++++++
 .../translations/messages+intl-icu.fr.yaml    | 11 ++++
 12 files changed, 228 insertions(+), 5 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Resources/views/Workflow/public_view_with_document_render.html.twig
 create mode 100644 src/Bundle/ChillDocStoreBundle/Workflow/WorkflowWithPublicViewDocumentHelper.php
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_layout.html.twig
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Templating/EntityWorkflowViewMetadataDTO.php

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/views/Workflow/public_view_with_document_render.html.twig b/src/Bundle/ChillDocStoreBundle/Resources/views/Workflow/public_view_with_document_render.html.twig
new file mode 100644
index 000000000..c286642d9
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Resources/views/Workflow/public_view_with_document_render.html.twig
@@ -0,0 +1,43 @@
+{% extends '@ChillMain/Workflow/workflow_view_send_public_layout.html.twig' %}
+
+{% block css %}
+    {{ parent() }}
+    {{ encore_entry_link_tags('mod_document_download_button') }}
+{% endblock %}
+
+{% block js %}
+    {{ parent() }}
+    {{ encore_entry_script_tags('mod_document_download_button') }}
+{% endblock %}
+
+{% block title %}{{ 'workflow.public_link.title'|trans }} - {{ title }}{% endblock %}
+
+{% block public_content %}
+    <h1>{{ 'workflow.public_link.shared_doc'|trans }}</h1>
+
+    {% set previous = send.entityWorkflowStepChained.previous %}
+    {% if previous is not null %}
+        {% if previous.transitionBy is not null %}
+            <p>{{ 'workflow.public_link.doc_shared_by_at_explanation'|trans({'byUser': previous.transitionBy|chill_entity_render_string( { 'at_date': previous.transitionAt } ), 'at': previous.transitionAt }) }}</p>
+        {% else %}
+            <p>{{ 'workflow.public_link.doc_shared_automatically_at_explanation'|trans({'at': previous.transitionAt}) }}</p>
+        {% endif %}
+    {% endif %}
+
+    <div class="row">
+        <div class="col-xs-12 col-sm-6 col-md-4">
+            <div class="card"">
+                <div class="card-body">
+                    <h2 class="card-title">{{ title }}</h2>
+                    <h3>{{ 'workflow.public_link.main_document'|trans }}</h3>
+
+                    <ul class="record_actions slim small">
+                        <li>
+                            {{ storedObject|chill_document_download_only_button(storedObject.title(), false) }}
+                        </li>
+                    </ul>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index bc8de6587..4f4655b94 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -16,20 +16,24 @@ use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Security\Authorization\AccompanyingCourseDocumentVoter;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
  * @implements EntityWorkflowWithStoredObjectHandlerInterface<AccompanyingCourseDocument>
  */
-readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
+final readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface, EntityWorkflowWithPublicViewInterface
 {
     public function __construct(
         private TranslatorInterface $translator,
         private EntityWorkflowRepository $workflowRepository,
         private AccompanyingCourseDocumentRepository $repository,
+        private WorkflowWithPublicViewDocumentHelper $publicViewDocumentHelper,
     ) {}
 
     public function getDeletionRoles(): array
@@ -136,4 +140,9 @@ readonly class AccompanyingCourseDocumentWorkflowHandler implements EntityWorkfl
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingCourseDocument::class, $object->getId());
     }
+
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend, EntityWorkflowViewMetadataDTO $metadata): string
+    {
+        return $this->publicViewDocumentHelper->render($entityWorkflowSend, $metadata, $this);
+    }
 }
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/WorkflowWithPublicViewDocumentHelper.php b/src/Bundle/ChillDocStoreBundle/Workflow/WorkflowWithPublicViewDocumentHelper.php
new file mode 100644
index 000000000..5d23150e0
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/WorkflowWithPublicViewDocumentHelper.php
@@ -0,0 +1,45 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Workflow;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
+use Twig\Environment;
+
+class WorkflowWithPublicViewDocumentHelper
+{
+    public function __construct(private readonly Environment $twig) {}
+
+    public function render(EntityWorkflowSend $send, EntityWorkflowViewMetadataDTO $metadata, EntityWorkflowHandlerInterface&EntityWorkflowWithStoredObjectHandlerInterface $handler): string
+    {
+        $entityWorkflow = $send->getEntityWorkflowStep()->getEntityWorkflow();
+        $storedObject = $handler->getAssociatedStoredObject($entityWorkflow);
+
+        if (null === $storedObject) {
+            return 'document removed';
+        }
+
+        $title = $handler->getEntityTitle($entityWorkflow);
+
+        return $this->twig->render(
+            '@ChillDocStore/Workflow/public_view_with_document_render.html.twig',
+            [
+                'title' => $title,
+                'storedObject' => $storedObject,
+                'send' => $send,
+                'metadata' => $metadata,
+            ]
+        );
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml b/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml
index 0132cdc4f..58a5193d1 100644
--- a/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml
+++ b/src/Bundle/ChillDocStoreBundle/translations/messages+intl-icu.fr.yml
@@ -1,3 +1,11 @@
 acc_course_document:
     duplicated_at: >-
         Dupliqué le {at, date, long} à {at, time, short}
+
+workflow:
+    public_link:
+        doc_shared_by_at_explanation: >-
+            Le document a été partagé avec vous par {byUser}, le {at, date, long} à {at, time, short}.
+        doc_shared_automatically_at_explanation: >-
+            Le document a été partagé avec vous le {at, date, long} à {at, time, short}
+
diff --git a/src/Bundle/ChillDocStoreBundle/translations/messages.fr.yml b/src/Bundle/ChillDocStoreBundle/translations/messages.fr.yml
index 4ba0307d7..08adfbe06 100644
--- a/src/Bundle/ChillDocStoreBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillDocStoreBundle/translations/messages.fr.yml
@@ -80,6 +80,10 @@ online_edit_document: Éditer en ligne
 
 workflow:
     Document deleted: Document supprimé
+    public_link:
+        shared_doc: Document partagé
+        title: Document partagé
+        main_document: Document principal
 
 # ROLES
 accompanyingCourseDocument: Documents dans les parcours d'accompagnement
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
index 084fcdce0..a3835c90e 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
@@ -15,6 +15,7 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
@@ -64,8 +65,12 @@ final readonly class WorkflowViewSendPublicController
         }
 
         try {
+            $metadata = new EntityWorkflowViewMetadataDTO(
+                $workflowSend->getViews()->count(),
+                100 - $workflowSend->getViews()->count(),
+            );
             $response = new Response(
-                $this->entityWorkflowManager->renderPublicView($workflowSend),
+                $this->entityWorkflowManager->renderPublicView($workflowSend, $metadata),
             );
 
             $view = new EntityWorkflowSendView($workflowSend, $this->clock->now(), $request->getClientIp());
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
index 186cf64e6..f3294bd55 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -124,6 +124,17 @@ class EntityWorkflowSend implements TrackCreationInterface
         return $this->entityWorkflowStep;
     }
 
+    public function getEntityWorkflowStepChained(): ?EntityWorkflowStep
+    {
+        foreach ($this->getEntityWorkflowStep()->getEntityWorkflow()->getStepsChained() as $step) {
+            if ($this->getEntityWorkflowStep() === $step) {
+                return $step;
+            }
+        }
+
+        return null;
+    }
+
     public function getUuid(): UuidInterface
     {
         return $this->uuid;
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_layout.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_layout.html.twig
new file mode 100644
index 000000000..fd2c45959
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_view_send_public_layout.html.twig
@@ -0,0 +1,58 @@
+<!DOCTYPE html>
+<html lang="fr">
+<head>
+    <meta charset="UTF-8" >
+    <meta http-equiv="x-ua-compatible" content="ie=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" >
+    <title>{% block title %}{% endblock %}</title>
+    {% block head_custom %}{% endblock %}
+    <link rel="shortcut icon" href="{{ asset('build/images/favicon.ico') }}" type="image/x-icon">
+
+    {{ encore_entry_link_tags('mod_bootstrap') }}
+    {{ encore_entry_link_tags('mod_forkawesome') }}
+    {{ encore_entry_link_tags('chill') }}
+
+    {% block css %}{% endblock %}
+</head>
+
+<body>
+
+<header>
+    <nav class="navbar navbar-dark bg-primary navbar-expand-md">
+        <div class="container-xxl">
+
+            <div class="col-4">
+                <a class="navbar-brand" href="{{ path('chill_main_homepage') }}">
+                    {{ include('@ChillMain/Layout/_header-logo.html.twig') }}
+                </a>
+            </div>
+
+            <div class="col-8"></div>
+        </div>
+    </nav>
+</header>
+
+<div class="content" id="content">
+    <div class="container-xxl">
+        <div class="row justify-content-center my-5">
+            <div>
+                {% block public_content %}{% endblock %}
+            </div>
+            <div style="margin-top: 1rem;">
+                <p>
+                    {{ 'workflow.public_link.shared_explanation_until_remaining'|trans({'expireAt': send.expireAt, 'viewsCount': metadata.viewsCount, 'viewsRemaining': metadata.viewsRemaining}) }}
+                </p>
+            </div>
+        </div>
+    </div>
+</div>
+
+{{ include('@ChillMain/Layout/_footer.html.twig', {'public_page': true}) }}
+
+{{ encore_entry_script_tags('mod_bootstrap') }}
+{{ encore_entry_script_tags('mod_forkawesome') }}
+{{ encore_entry_script_tags('chill') }}
+
+{% block js %}{% endblock %}
+</body>
+</html>
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index f054826c4..f1c87fd4e 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -16,6 +16,7 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Workflow\Exception\HandlerNotFoundException;
 use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Symfony\Component\Workflow\Registry;
 
 /**
@@ -80,13 +81,13 @@ class EntityWorkflowManager
      *
      * @throws HandlerWithPublicViewNotFoundException if no handler with public view is found
      */
-    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend, EntityWorkflowViewMetadataDTO $metadata): string
     {
         $entityWorkflow = $entityWorkflowSend->getEntityWorkflowStep()->getEntityWorkflow();
 
         foreach ($this->handlers as $handler) {
             if ($handler instanceof EntityWorkflowWithPublicViewInterface && $handler->supports($entityWorkflow)) {
-                return $handler->renderPublicView($entityWorkflowSend);
+                return $handler->renderPublicView($entityWorkflowSend, $metadata);
             }
         }
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
index 2d4eefb9e..5a51c5d00 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowWithPublicViewInterface.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Workflow;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 
 interface EntityWorkflowWithPublicViewInterface
 {
@@ -20,5 +21,5 @@ interface EntityWorkflowWithPublicViewInterface
      *
      * The public view must be a safe html string
      */
-    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string;
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend, EntityWorkflowViewMetadataDTO $metadata): string;
 }
diff --git a/src/Bundle/ChillMainBundle/Workflow/Templating/EntityWorkflowViewMetadataDTO.php b/src/Bundle/ChillMainBundle/Workflow/Templating/EntityWorkflowViewMetadataDTO.php
new file mode 100644
index 000000000..e3053b8e9
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Templating/EntityWorkflowViewMetadataDTO.php
@@ -0,0 +1,27 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Templating;
+
+/**
+ * This is a DTO to give some metadata about the vizualisation of the
+ * EntityWorkflowView.
+ *
+ * The aim is to give some information from the controller which show the public view and the
+ * handler which will render the view.
+ */
+final readonly class EntityWorkflowViewMetadataDTO
+{
+    public function __construct(
+        public int $viewsCount,
+        public int $viewsRemaining,
+    ) {}
+}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 59374ca57..19f923bdf 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -69,6 +69,17 @@ workflow:
         }
     send_external_message:
         document_available_until: Le lien sera valable jusqu'au {expiration, date, long} à {expiration, time, short}.
+    public_link:
+        shared_explanation_until_remaining: >-
+            Ce partage sera actif jusqu'au {expireAt, time, short} à {expireAt, time, short}. {viewsCount, plural,
+                =0 {Ce partage n'a pas encore été visualisé}
+                one {Ce partage a été visualisé une fois}
+                other {Ce partage a été visualisé # fois}
+            }, {viewsRemaining, plural,
+                =0 {il ne reste plus aucune visualisation possible.}
+                one {il reste encore une visualisation possible.}
+                other {il reste encore # visualisations possibles.}
+            }
 
 duration:
     minute: >-

From b99ea3b17ad0c51e2f17d6b004f98beebd4f2e84 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 8 Oct 2024 16:16:10 +0200
Subject: [PATCH 311/375] !fixup Add direct download link feature

---
 .../Serializer/Normalizer/StoredObjectNormalizer.php            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
index 4aebe4728..97067f289 100644
--- a/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
+++ b/src/Bundle/ChillDocStoreBundle/Serializer/Normalizer/StoredObjectNormalizer.php
@@ -33,7 +33,7 @@ final class StoredObjectNormalizer implements NormalizerInterface, NormalizerAwa
 
     /**
      * when added to the groups, a download link is included in the normalization,
-     * and no webdav links are generated
+     * and no webdav links are generated.
      */
     public const DOWNLOAD_LINK_ONLY = 'read:download-link-only';
 

From 40b8fae8ba9e6f4c1bb0e38fde676e68e43289d3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 8 Oct 2024 16:17:11 +0200
Subject: [PATCH 312/375] Add vizualisation of public views in the workflow
 history

---
 .../Entity/Workflow/EntityWorkflowSend.php    | 41 ++++++++++++++++++-
 .../views/Workflow/_history.html.twig         |  7 ++++
 .../views/Workflow/_send_views_list.html.twig | 35 ++++++++++++++++
 .../Resources/views/Workflow/index.html.twig  |  5 +--
 .../translations/messages+intl-icu.fr.yaml    |  8 ++++
 .../translations/messages.fr.yml              |  5 +--
 6 files changed, 93 insertions(+), 8 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/_send_views_list.html.twig

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
index f3294bd55..528107561 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -183,8 +183,45 @@ class EntityWorkflowSend implements TrackCreationInterface
         return $this->views->count() > 0;
     }
 
-    public function isExpired(\DateTimeImmutable $now): bool
+    public function isExpired(?\DateTimeImmutable $now = null): bool
     {
-        return $now >= $this->expireAt;
+        return ($now ?? new \DateTimeImmutable('now')) >= $this->expireAt;
+    }
+
+    /**
+     * Retrieves the most recent view.
+     *
+     * @return EntityWorkflowSendView|null returns the last view or null if there are no views
+     */
+    public function getLastView(): ?EntityWorkflowSendView
+    {
+        $last = null;
+        foreach ($this->views as $view) {
+            if (null === $last) {
+                $last = $view;
+            } else {
+                if ($view->getViewAt() > $last->getViewAt()) {
+                    $last = $view;
+                }
+            }
+        }
+
+        return $last;
+    }
+
+    /**
+     * Retrieves an array of views grouped by their remote IP address.
+     *
+     * @return array<string, list<EntityWorkflowSendView>> an associative array where the keys are IP addresses and the values are arrays of views associated with those IPs
+     */
+    public function getViewsByIp(): array
+    {
+        $views = [];
+
+        foreach ($this->getViews() as $view) {
+            $views[$view->getRemoteIp()][] = $view;
+        }
+
+        return $views;
     }
 }
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index d6e5e3216..5fcc60ed4 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -134,6 +134,13 @@
                     {{ include('@ChillMain/Workflow/_signature_list.html.twig', {'signatures': step.signatures, is_small: true }) }}
                 {% endif %}
             {% endif %}
+            {% if step.sends|length > 0 %}
+                <div>
+                    <p><b>{{ 'workflow.sent_through_secured_link'|trans }}</b></p>
+
+                    {{ include('@ChillMain/Workflow/_send_views_list.html.twig', {'sends': step.sends}) }}
+                </div>
+            {% endif %}
         </div>
 
     {% endfor %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_send_views_list.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_send_views_list.html.twig
new file mode 100644
index 000000000..f0caf4849
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_send_views_list.html.twig
@@ -0,0 +1,35 @@
+<div class="container">
+    {% for send in sends %}
+        <div class="row row-hover align-items-center">
+            <div class="col-sm-12 col-md-5">
+                {% if send.destineeKind == 'thirdParty' %}
+                    {% include '@ChillMain/OnTheFly/_insert_vue_onthefly.html.twig' with {
+                        action: 'show', displayBadge: true,
+                        targetEntity: { name: 'thirdParty', id: send.destineeThirdParty.id },
+                        buttonText: send.destineeThirdParty|chill_entity_render_string,
+                    } %}
+                {% else %}
+                    <a href="mailto:{{ send.destineeEmail }}">{{ send.destineeEmail }}</a>
+                {% endif %}
+                {% if not send.expired %}
+                    <p><small>{{ 'workflow.send_external_message.document_available_until'|trans({'expiration': send.expireAt}) }}</small></p>
+                {% endif %}
+            </div>
+            <div class="col-sm-12 col-md-7 text-end">
+                <p><small>{{ 'workflow.external_views.number_of_views'|trans({'numberOfViews': send.views|length}) }}</small></p>
+                 {% if send.views|length > 0 %}
+                     <p><small>{{ 'workflow.external_views.last_view_at'|trans({'at': send.lastView.viewAt }) }}</small></p>
+                     <p>
+                         <small>
+                             <b>{{ 'workflow.public_views_by_ip'|trans }}&nbsp;:</b>
+                             {%- for ip, vs in send.viewsByIp -%}
+                                 <span title="{% for v in vs %}{{ v.viewAt|format_datetime('short', 'short')|escape('html_attr') }}{% if not loop.last %}{{ ', '|escape('html_attr') }}{% endif %}{% endfor %}">{{ ip }} ({{ vs|length }}x)</span>
+                             {%- endfor -%}
+                         </small>
+                     </p>
+
+                 {% endif %}
+            </div>
+        </div>
+    {% endfor %}
+</div>
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 4decb6fec..0fe55e3f2 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -1,12 +1,11 @@
 {% extends '@ChillMain/layout.html.twig' %}
 
-{% block title %}
+{% block title -%}
     {{ 'Workflow'|trans }}
-{% endblock %}
+{%- endblock %}
 
 {% block js %}
     {{ parent() }}
-    {{ encore_entry_script_tags('mod_async_upload') }}
     {{ encore_entry_script_tags('mod_pickentity_type') }}
     {{ encore_entry_script_tags('mod_entity_workflow_subscribe') }}
     {{ encore_entry_script_tags('page_workflow_show') }}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 19f923bdf..0b0d8d65d 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -69,6 +69,14 @@ workflow:
         }
     send_external_message:
         document_available_until: Le lien sera valable jusqu'au {expiration, date, long} à {expiration, time, short}.
+    external_views:
+        last_view_at: Dernière vue le {at, date, long} à {at, time, short}
+        number_of_views: >-
+            {numberOfViews, plural,
+                =0 {Le partage n'a jamais été visualisé}
+                =1 {Le partage a été visualisé une fois}
+                other {Le partage a été visualisé # fois}
+            }
     public_link:
         shared_explanation_until_remaining: >-
             Ce partage sera actif jusqu'au {expireAt, time, short} à {expireAt, time, short}. {viewsCount, plural,
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 259561844..67992a60f 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -564,14 +564,13 @@ workflow:
     transition_destinee_add_emails: Ajouter une adresse de courriel
     transition_destinee_remove_emails: Supprimer
     transition_destinee_emails_help: Le lien sécurisé sera envoyé à chaque adresse indiquée
+    sent_through_secured_link: Envoi par lien sécurisé
+    public_views_by_ip: Visualisation par adresse IP
 
     public_link:
         expired_link_title: Lien expiré
         expired_link_explanation: Le lien a expiré, vous ne pouvez plus visualiser ce document.
 
-
-
-
     signature_zone:
         title: Signatures électroniques
         button_sign: Signer

From 82e2b9a0f629579e1fe8812d2899b258e440daa1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 9 Oct 2024 21:33:09 +0200
Subject: [PATCH 313/375] Add message handling for public view creation

Introduce `PostPublicViewMessage` and `PostPublicViewMessageHandler` to handle external user views on public links by applying workflow transitions. Integrate with `WorkflowViewSendPublicController` and add relevant tests.
---
 .../WorkflowViewSendPublicController.php      |   4 +
 .../EntityWorkflowSendViewRepository.php      |  54 +++++++
 .../WorkflowViewSendPublicControllerTest.php  |  31 +++-
 .../PostPublicViewMessageHandlerTest.php      | 145 ++++++++++++++++++
 .../Messenger/PostPublicViewMessage.php       |  23 +++
 .../PostPublicViewMessageHandler.php          |  81 ++++++++++
 6 files changed, 334 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Repository/EntityWorkflowSendViewRepository.php
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessage.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
index a3835c90e..9cd4fd6f7 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowViewSendPublicController.php
@@ -15,6 +15,7 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
+use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessage;
 use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
@@ -22,6 +23,7 @@ use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Routing\Annotation\Route;
 use Twig\Environment;
 
@@ -35,6 +37,7 @@ final readonly class WorkflowViewSendPublicController
         private EntityWorkflowManager $entityWorkflowManager,
         private ClockInterface $clock,
         private Environment $environment,
+        private MessageBusInterface $messageBus,
     ) {}
 
     #[Route('/public/main/workflow/send/{uuid}/view/{verificationKey}', name: 'chill_main_workflow_send_view_public', methods: ['GET'])]
@@ -75,6 +78,7 @@ final readonly class WorkflowViewSendPublicController
 
             $view = new EntityWorkflowSendView($workflowSend, $this->clock->now(), $request->getClientIp());
             $this->entityManager->persist($view);
+            $this->messageBus->dispatch(new PostPublicViewMessage($view->getId()));
             $this->entityManager->flush();
 
             return $response;
diff --git a/src/Bundle/ChillMainBundle/Repository/EntityWorkflowSendViewRepository.php b/src/Bundle/ChillMainBundle/Repository/EntityWorkflowSendViewRepository.php
new file mode 100644
index 000000000..adfdb7c96
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Repository/EntityWorkflowSendViewRepository.php
@@ -0,0 +1,54 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Repository;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
+use Doctrine\Persistence\ManagerRegistry;
+use Doctrine\Persistence\ObjectRepository;
+
+/**
+ * @template-implements ObjectRepository<EntityWorkflowSendView>
+ */
+class EntityWorkflowSendViewRepository implements ObjectRepository
+{
+    private readonly ObjectRepository $repository;
+
+    public function __construct(ManagerRegistry $registry)
+    {
+        $this->repository = $registry->getRepository($this->getClassName());
+    }
+
+    public function find($id): ?EntityWorkflowSendView
+    {
+        return $this->repository->find($id);
+    }
+
+    public function findAll()
+    {
+        return $this->repository->findAll();
+    }
+
+    public function findBy(array $criteria, ?array $orderBy = null, ?int $limit = null, ?int $offset = null): array
+    {
+        return $this->repository->findBy($criteria, $orderBy, $limit, $offset);
+    }
+
+    public function findOneBy(array $criteria): ?EntityWorkflowSendView
+    {
+        return $this->repository->findOneBy($criteria);
+    }
+
+    public function getClassName()
+    {
+        return EntityWorkflowSendView::class;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
index d9728b986..02bee8f4f 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
@@ -18,6 +18,8 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
 use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
+use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessage;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
@@ -27,6 +29,8 @@ use Psr\Log\NullLogger;
 use Symfony\Component\Clock\MockClock;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
+use Symfony\Component\Messenger\Envelope;
+use Symfony\Component\Messenger\MessageBusInterface;
 use Symfony\Component\Workflow\Registry;
 use Twig\Environment;
 
@@ -44,8 +48,10 @@ class WorkflowViewSendPublicControllerTest extends TestCase
         $environment = $this->prophesize(Environment::class);
         $entityManager = $this->prophesize(EntityManagerInterface::class);
         $entityManager->flush()->shouldNotBeCalled();
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostPublicViewMessage::class))->shouldNotBeCalled();
 
-        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal());
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal(), $messageBus->reveal());
 
         self::expectException(AccessDeniedHttpException::class);
 
@@ -63,8 +69,10 @@ class WorkflowViewSendPublicControllerTest extends TestCase
         $environment = $this->prophesize(Environment::class);
         $entityManager = $this->prophesize(EntityManagerInterface::class);
         $entityManager->flush()->shouldBeCalled();
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostPublicViewMessage::class))->shouldNotBeCalled();
 
-        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal());
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock(), $environment->reveal(), $messageBus->reveal());
 
         self::expectException(AccessDeniedHttpException::class);
 
@@ -86,8 +94,10 @@ class WorkflowViewSendPublicControllerTest extends TestCase
 
         $entityManager = $this->prophesize(EntityManagerInterface::class);
         $entityManager->flush()->shouldNotBeCalled();
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostPublicViewMessage::class))->shouldNotBeCalled();
 
-        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock('next year'), $environment->reveal());
+        $controller = new WorkflowViewSendPublicController($entityManager->reveal(), new NullLogger(), new EntityWorkflowManager([], new Registry()), new MockClock('next year'), $environment->reveal(), $messageBus->reveal());
 
         $send = $this->buildEntityWorkflowSend();
 
@@ -102,6 +112,8 @@ class WorkflowViewSendPublicControllerTest extends TestCase
         $environment = $this->prophesize(Environment::class);
         $entityManager = $this->prophesize(EntityManagerInterface::class);
         $entityManager->flush()->shouldNotBeCalled();
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostPublicViewMessage::class))->shouldNotBeCalled();
 
         $controller = new WorkflowViewSendPublicController(
             $entityManager->reveal(),
@@ -109,6 +121,7 @@ class WorkflowViewSendPublicControllerTest extends TestCase
             new EntityWorkflowManager([], new Registry()),
             new MockClock(),
             $environment->reveal(),
+            $messageBus->reveal(),
         );
 
         self::expectException(\RuntimeException::class);
@@ -123,9 +136,18 @@ class WorkflowViewSendPublicControllerTest extends TestCase
         $environment = $this->prophesize(Environment::class);
         $entityManager = $this->prophesize(EntityManagerInterface::class);
         $entityManager->persist(Argument::that(function (EntityWorkflowSendView $view) use ($send) {
+            $reflection = new \ReflectionClass($view);
+            $idProperty = $reflection->getProperty('id');
+            $idProperty->setAccessible(true);
+            $idProperty->setValue($view, 5);
+
             return $send === $view->getSend();
         }))->shouldBeCalled();
         $entityManager->flush()->shouldBeCalled();
+        $messageBus = $this->prophesize(MessageBusInterface::class);
+        $messageBus->dispatch(Argument::type(PostPublicViewMessage::class))->shouldBeCalled()
+            ->will(fn ($args) => new Envelope($args[0]));
+
 
         $controller = new WorkflowViewSendPublicController(
             $entityManager->reveal(),
@@ -135,6 +157,7 @@ class WorkflowViewSendPublicControllerTest extends TestCase
             ], new Registry()),
             new MockClock(),
             $environment->reveal(),
+            $messageBus->reveal(),
         );
 
         $response = $controller($send, $send->getPrivateToken(), $this->buildRequest());
@@ -211,7 +234,7 @@ class WorkflowViewSendPublicControllerTest extends TestCase
                 throw new \BadMethodCallException('not implemented');
             }
 
-            public function renderPublicView(EntityWorkflowSend $entityWorkflowSend): string
+            public function renderPublicView(EntityWorkflowSend $entityWorkflowSend, EntityWorkflowViewMetadataDTO $metadata): string
             {
                 return 'content';
             }
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
new file mode 100644
index 000000000..7253099e1
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
@@ -0,0 +1,145 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Messenger;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSendView;
+use Chill\MainBundle\Repository\EntityWorkflowSendViewRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessage;
+use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessageHandler;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Psr\Log\NullLogger;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class PostPublicViewMessageHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces(['initial'])
+            ->addPlaces(['initial', 'waiting_for_views', 'waiting_for_views_transition_unavailable', 'post_view'])
+            ->addTransitions([
+                new Transition('post_view', 'waiting_for_views', 'post_view'),
+            ])
+            ->setMetadataStore(
+                new InMemoryMetadataStore(
+                    placesMetadata: [
+                        'waiting_for_views' => [
+                            'isSentExternal' => true,
+                            'onExternalView' => 'post_view',
+                        ],
+                        'waiting_for_views_transition_unavailable' => [
+                            'isSentExternal' => true,
+                            'onExternalView' => 'post_view',
+                        ],
+                    ]
+                )
+            );
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), name: 'dummy');
+        $registry = new Registry();
+        $registry
+            ->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+                public function supports(WorkflowInterface $workflow, object $subject): bool
+                {
+                    return true;
+                }
+            });
+
+        return $registry;
+    }
+
+    public function testHandleTransitionToPostViewSuccessful(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestineeThirdParties = [new ThirdParty()];
+        $entityWorkflow->setStep('waiting_for_views', $dto, 'to_waiting_for_views', new \DateTimeImmutable(), new User());
+        $send = $entityWorkflow->getCurrentStep()->getSends()->first();
+        $view = new EntityWorkflowSendView($send, new \DateTimeImmutable(), '127.0.0.1');
+
+        $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
+        $repository->find(6)->willReturn($view);
+
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+
+        $handler(new PostPublicViewMessage(6));
+
+        self::assertEquals('post_view', $entityWorkflow->getStep());
+    }
+
+    public function testHandleTransitionToPostViewAlreadyMoved(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestineeThirdParties = [new ThirdParty()];
+        $entityWorkflow->setStep('waiting_for_views', $dto, 'to_waiting_for_views', new \DateTimeImmutable(), new User());
+        $send = $entityWorkflow->getCurrentStep()->getSends()->first();
+        $view = new EntityWorkflowSendView($send, new \DateTimeImmutable(), '127.0.0.1');
+        // move again
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $entityWorkflow->setStep('post_view', $dto, 'post_view', new \DateTimeImmutable(), new User());
+        $lastStep = $entityWorkflow->getCurrentStep();
+
+
+        $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
+        $repository->find(6)->willReturn($view);
+
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+
+        $handler(new PostPublicViewMessage(6));
+
+        self::assertEquals('post_view', $entityWorkflow->getStep());
+        self::assertSame($lastStep, $entityWorkflow->getCurrentStep());
+    }
+
+    public function testHandleTransitionToPostViewBlocked(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestineeThirdParties = [new ThirdParty()];
+        $entityWorkflow->setStep('waiting_for_views_transition_unavailable', $dto, 'to_waiting_for_views', new \DateTimeImmutable(), new User());
+        $send = $entityWorkflow->getCurrentStep()->getSends()->first();
+        $view = new EntityWorkflowSendView($send, new \DateTimeImmutable(), '127.0.0.1');
+
+        $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
+        $repository->find(6)->willReturn($view);
+
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+
+        $handler(new PostPublicViewMessage(6));
+
+        self::assertEquals('waiting_for_views_transition_unavailable', $entityWorkflow->getStep());
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessage.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessage.php
new file mode 100644
index 000000000..4982aae86
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessage.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+/**
+ * Message sent after a EntityWorkflowSendView was created, which means that
+ * an external user has seen a link for a public view.
+ */
+class PostPublicViewMessage
+{
+    public function __construct(
+        public int $entityWorkflowSendViewId,
+    ) {}
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
new file mode 100644
index 000000000..325ac9ba2
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
@@ -0,0 +1,81 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Messenger;
+
+use Chill\MainBundle\Repository\EntityWorkflowSendViewRepository;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Psr\Log\LoggerInterface;
+use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
+use Symfony\Component\Workflow\Registry;
+
+/**
+ * Handle the behaviour after a EntityWorkflowSentView was created.
+ *
+ * This handler apply a transition if the workflow's configuration defines one.
+ */
+final readonly class PostPublicViewMessageHandler implements MessageHandlerInterface
+{
+    private const LOG_PREFIX = '[PostPublicViewMessageHandler] ';
+
+    private const TRANSITION_ON_VIEW = 'onExternalView';
+
+    public function __construct(
+        private EntityWorkflowSendViewRepository $sendViewRepository,
+        private Registry $registry,
+        private LoggerInterface $logger,
+    ) {}
+
+    public function __invoke(PostPublicViewMessage $message): void
+    {
+        $view = $this->sendViewRepository->find($message->entityWorkflowSendViewId);
+
+        if (null === $view) {
+            throw new \RuntimeException("EntityworkflowSendViewId {$message->entityWorkflowSendViewId} not found");
+        }
+
+        $step = $view->getSend()->getEntityWorkflowStep();
+        $entityWorkflow = $step->getEntityWorkflow();
+
+        if ($step !== $entityWorkflow->getCurrentStep()) {
+            $this->logger->info(self::LOG_PREFIX."Do not handle view, as the current's step for the associated EntityWorkflow has already moved", [
+                'id' => $message->entityWorkflowSendViewId,
+                'entityWorkflow' => $entityWorkflow->getId(),
+            ]);
+
+            return;
+        }
+
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $metadata = $workflow->getMetadataStore();
+
+        foreach ($workflow->getMarking($entityWorkflow)->getPlaces() as $place => $key) {
+            $placeMetadata = $metadata->getPlaceMetadata($place);
+            if (array_key_exists(self::TRANSITION_ON_VIEW, $placeMetadata)) {
+                if ($workflow->can($entityWorkflow, $placeMetadata[self::TRANSITION_ON_VIEW])) {
+                    $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+                    $dto->transition = $workflow->getEnabledTransition($entityWorkflow, $placeMetadata[self::TRANSITION_ON_VIEW]);
+
+                    $workflow->apply($entityWorkflow, $placeMetadata[self::TRANSITION_ON_VIEW], [
+                        'context' => $dto,
+                        'transitionAt' => $view->getViewAt(),
+                        'transition' => $placeMetadata[self::TRANSITION_ON_VIEW],
+                    ]);
+
+                    return;
+                }
+                $this->logger->info(self::LOG_PREFIX.'Not able to apply this transition', ['transition' => $placeMetadata[self::TRANSITION_ON_VIEW],
+                    'entityWorkflowId' => $entityWorkflow->getId(), 'viewId' => $view->getId()]);
+
+            }
+        }
+    }
+}

From 9d722110a6def696442dcc90e0480b6162ac49f7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 9 Oct 2024 21:39:55 +0200
Subject: [PATCH 314/375] fixup! Add direct download link feature with new
 button implementation

---
 .../Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
index 7e84ccade..6bf1f0da6 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Serializer/Normalizer/StoredObjectNormalizerTest.php
@@ -139,7 +139,7 @@ class StoredObjectNormalizerTest extends TestCase
         $actual = $normalizer->normalize($storedObject, 'json', ['groups' => ['read', 'read:download-link-only']]);
 
         self::assertIsArray($actual);
-        self::arrayHasKey('_links', $actual);
+        self::assertArrayHasKey('_links', $actual);
         self::assertArrayHasKey('downloadLink', $actual['_links']);
         self::assertEquals(['sub' => 'sub'], $actual['_links']['downloadLink']);
     }

From c329a1f1f8c28d0eaa705b505b01c434bbe00435 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 09:39:45 +0200
Subject: [PATCH 315/375] fixup! Add message handling for public view creation

---
 .../PostPublicViewMessageHandlerTest.php      | 20 ++++++++++++++++---
 .../PostPublicViewMessageHandler.php          |  9 +++++++++
 2 files changed, 26 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
index 7253099e1..a03292f05 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostPublicViewMessageHandlerTest.php
@@ -20,6 +20,7 @@ use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessage;
 use Chill\MainBundle\Workflow\Messenger\PostPublicViewMessageHandler;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Psr\Log\NullLogger;
@@ -77,6 +78,19 @@ class PostPublicViewMessageHandlerTest extends TestCase
         return $registry;
     }
 
+    private function buildEntityManager(bool $mustBeFlushed = false): EntityManagerInterface
+    {
+        $entityManager = $this->prophesize(EntityManagerInterface::class);
+        $flush = $entityManager->flush();
+        $entityManager->clear()->shouldBeCalled();
+
+        if ($mustBeFlushed) {
+            $flush->shouldBeCalled();
+        }
+
+        return $entityManager->reveal();
+    }
+
     public function testHandleTransitionToPostViewSuccessful(): void
     {
         $entityWorkflow = new EntityWorkflow();
@@ -90,7 +104,7 @@ class PostPublicViewMessageHandlerTest extends TestCase
         $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
         $repository->find(6)->willReturn($view);
 
-        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger(), $this->buildEntityManager(true));
 
         $handler(new PostPublicViewMessage(6));
 
@@ -115,7 +129,7 @@ class PostPublicViewMessageHandlerTest extends TestCase
         $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
         $repository->find(6)->willReturn($view);
 
-        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger(), $this->buildEntityManager());
 
         $handler(new PostPublicViewMessage(6));
 
@@ -136,7 +150,7 @@ class PostPublicViewMessageHandlerTest extends TestCase
         $repository = $this->prophesize(EntityWorkflowSendViewRepository::class);
         $repository->find(6)->willReturn($view);
 
-        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger());
+        $handler = new PostPublicViewMessageHandler($repository->reveal(), $this->buildRegistry(), new NullLogger(), $this->buildEntityManager());
 
         $handler(new PostPublicViewMessage(6));
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
index 325ac9ba2..ccf566137 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Workflow\Messenger;
 
 use Chill\MainBundle\Repository\EntityWorkflowSendViewRepository;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
 use Symfony\Component\Workflow\Registry;
@@ -32,6 +33,7 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
         private EntityWorkflowSendViewRepository $sendViewRepository,
         private Registry $registry,
         private LoggerInterface $logger,
+        private EntityManagerInterface $entityManager,
     ) {}
 
     public function __invoke(PostPublicViewMessage $message): void
@@ -51,6 +53,8 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
                 'entityWorkflow' => $entityWorkflow->getId(),
             ]);
 
+            $this->entityManager->clear();
+
             return;
         }
 
@@ -70,6 +74,9 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
                         'transition' => $placeMetadata[self::TRANSITION_ON_VIEW],
                     ]);
 
+                    $this->entityManager->flush();
+                    $this->entityManager->clear();
+
                     return;
                 }
                 $this->logger->info(self::LOG_PREFIX.'Not able to apply this transition', ['transition' => $placeMetadata[self::TRANSITION_ON_VIEW],
@@ -77,5 +84,7 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
 
             }
         }
+
+        $this->entityManager->clear();
     }
 }

From 78445f0d656e4262bd3b44f13ecaa05a203b0655 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 11:39:04 +0200
Subject: [PATCH 316/375] fixup! Add message handling for public view creation

---
 .../Messenger/PostPublicViewMessageHandler.php        | 11 +++++++++++
 .../translations/messages+intl-icu.fr.yaml            |  2 +-
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
index ccf566137..b963b2910 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostPublicViewMessageHandler.php
@@ -68,6 +68,12 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
                     $dto = new WorkflowTransitionContextDTO($entityWorkflow);
                     $dto->transition = $workflow->getEnabledTransition($entityWorkflow, $placeMetadata[self::TRANSITION_ON_VIEW]);
 
+                    $this->logger->info(
+                        self::LOG_PREFIX.'Apply transition to workflow after a first view',
+                        ['transition' => $placeMetadata[self::TRANSITION_ON_VIEW], 'entityWorkflowId' => $entityWorkflow->getId(),
+                            'viewId' => $view->getId()]
+                    );
+
                     $workflow->apply($entityWorkflow, $placeMetadata[self::TRANSITION_ON_VIEW], [
                         'context' => $dto,
                         'transitionAt' => $view->getViewAt(),
@@ -85,6 +91,11 @@ final readonly class PostPublicViewMessageHandler implements MessageHandlerInter
             }
         }
 
+        $this->logger->info(
+            self::LOG_PREFIX.'No transition applyied for this entityWorkflow after a view',
+            ['entityWorkflowId' => $entityWorkflow->getId(), 'viewId' => $view->getId()]
+        );
+
         $this->entityManager->clear();
     }
 }
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 0b0d8d65d..a759d4bef 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -79,7 +79,7 @@ workflow:
             }
     public_link:
         shared_explanation_until_remaining: >-
-            Ce partage sera actif jusqu'au {expireAt, time, short} à {expireAt, time, short}. {viewsCount, plural,
+            Ce partage sera actif jusqu'au {expireAt, date, long} à {expireAt, time, short}. {viewsCount, plural,
                 =0 {Ce partage n'a pas encore été visualisé}
                 one {Ce partage a été visualisé une fois}
                 other {Ce partage a été visualisé # fois}

From 3f7c5d23dca03b57cb3d66e9b5c7831cece3d5f5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 11:41:25 +0200
Subject: [PATCH 317/375] Add return type hint to getTargets method

The getTargets method now explicitly returns an array, enhancing type safety and readability. This change ensures that the return type is clear to any developers interacting with this method.
---
 .../Workflow/Validator/EntityWorkflowCreation.php               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php b/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
index 34f024884..b2ec671ef 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
@@ -27,7 +27,7 @@ class EntityWorkflowCreation extends \Symfony\Component\Validator\Constraint
 
     public string $messageWorkflowNotAvailable = 'Workflow is not valid';
 
-    public function getTargets()
+    public function getTargets(): array
     {
         return [self::CLASS_CONSTRAINT];
     }

From 292034d64dc0b27f43587a4a5a7898d7292a2c60 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 11:42:04 +0200
Subject: [PATCH 318/375] Add public view rendering to workflow handler for
 AccompanyingPeriodWorkEvaluationDocument

Implemented the `EntityWorkflowWithPublicViewInterface` in `AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler`. Included the `renderPublicView` method using `WorkflowWithPublicViewDocumentHelper` for enhanced document handling.
---
 ...ngPeriodWorkEvaluationDocumentWorkflowHandler.php | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 861dd4cb9..e2f8e7666 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -12,10 +12,14 @@ declare(strict_types=1);
 namespace Chill\PersonBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\DocStoreBundle\Workflow\WorkflowWithPublicViewDocumentHelper;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
+use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
@@ -24,13 +28,14 @@ use Symfony\Contracts\Translation\TranslatorInterface;
 /**
  * @implements EntityWorkflowWithStoredObjectHandlerInterface<AccompanyingPeriodWorkEvaluationDocument>
  */
-class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface
+class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityWorkflowWithStoredObjectHandlerInterface, EntityWorkflowWithPublicViewInterface
 {
     public function __construct(
         private readonly AccompanyingPeriodWorkEvaluationDocumentRepository $repository,
         private readonly EntityWorkflowRepository $workflowRepository,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly TranslatorInterface $translator,
+        private readonly WorkflowWithPublicViewDocumentHelper $publicViewDocumentHelper,
     ) {}
 
     public function getDeletionRoles(): array
@@ -150,4 +155,9 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluationDocument::class, $object->getId());
     }
+
+    public function renderPublicView(EntityWorkflowSend $entityWorkflowSend, EntityWorkflowViewMetadataDTO $metadata): string
+    {
+        return $this->publicViewDocumentHelper->render($entityWorkflowSend, $metadata, $this);
+    }
 }

From 8589bada3f06554e52387907235fa4c84907f152 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 12:41:57 +0200
Subject: [PATCH 319/375] Layout for the email to external

---
 ..._send_external_email_to_destinee.html.twig | 94 +++++++++++++++++--
 .../PostSendExternalMessageHandler.php        |  5 +
 .../translations/messages+intl-icu.fr.yaml    |  5 +
 .../translations/messages.fr.yml              |  7 ++
 4 files changed, 105 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
index 3dc31f1a6..865683d1f 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_send_external_email_to_destinee.html.twig
@@ -1,6 +1,88 @@
-
-Un message vous a été envoyé. Vous pouvez le consulter à cette adresse
-
-{{ absolute_url(path('chill_main_workflow_send_view_public', {'uuid': send.uuid, 'verificationKey': send.privateToken})) }}
-
-{{ 'workflow.send_external_message.document_available_until'|trans({ 'expiration': send.expireAt}, null, lang) }}
+<!doctype html>
+<html>
+<body>
+{%- set previous = send.entityWorkflowStepChained.previous -%}
+{%- if previous.transitionBy is not null -%}
+    {%- set sender = previous.transitionBy|chill_entity_render_string -%}
+{%- else -%}
+    {%- set sender = 'workflow.send_external_message.sender_system_user'|trans -%}
+{%- endif -%}
+<script type="application/ld+json">
+    {%- set data = {
+        "@context": "http://schema.org",
+        "@type": "EmailMessage",
+        "potentialAction": {
+            "@type": "ViewAction",
+            "url": absolute_url(path('chill_main_workflow_send_view_public', {'uuid': send.uuid, 'verificationKey': send.privateToken})),
+            "name": 'workflow.send_external_message.see_docs_action_name'|trans
+        },
+        "description": 'workflow.send_external_message.see_doc_action_description'|trans({'sender': sender}),
+    } -%}
+    {{- data|json_encode|raw -}}
+</script>
+<div
+    style='background-color:#F5F5F5;color:#262626;font-family:"Helvetica Neue", "Arial Nova", "Nimbus Sans", Arial, sans-serif;font-size:16px;font-weight:400;letter-spacing:0.15008px;line-height:1.5;margin:0;padding:32px 0;min-height:100%;width:100%'
+>
+    <table
+        align="center"
+        width="100%"
+        style="margin:0 auto;max-width:600px;background-color:#FFFFFF"
+        role="presentation"
+        cellspacing="0"
+        cellpadding="0"
+        border="0"
+    >
+        <tbody>
+        <tr style="width:100%">
+            <td>
+                <div style="font-weight:normal;padding:16px 24px 16px 24px">
+                    {{ 'workflow.send_external_message.greeting'|trans }},
+                </div>
+                <div style="font-weight:normal;padding:16px 24px 16px 24px">
+                    {{ 'workflow.send_external_message.explanation'|trans({'sender': sender}) }}
+                </div>
+                <div style="font-weight:normal;padding:16px 24px 16px 24px">
+                    {{ 'workflow.send_external_message.confidentiality'|trans }}
+                </div>
+                <div style="text-align:center;padding:16px 24px 16px 24px">
+                    <a
+                        href="{{ absolute_url(path('chill_main_workflow_send_view_public', {'uuid': send.uuid, 'verificationKey': send.privateToken})) }}"
+                        style="color:#FFFFFF;font-size:16px;font-weight:bold;background-color:#334d5c;border-radius:4px;display:inline-block;padding:12px 20px;text-decoration:none"
+                        target="_blank"
+                    ><span
+                        ><!--[if mso
+                      ]><i
+                        style="letter-spacing: 20px;mso-font-width:-100%;mso-text-raise:30"
+                        hidden
+                        >&nbsp;</i
+                      ><!
+                    [endif]--></span
+                        ><span>
+                            {{ 'workflow.send_external_message.button_content'|trans({'sender': sender}) }}
+                        </span><span
+                        ><!--[if mso
+                      ]><i
+                        style="letter-spacing: 20px;mso-font-width:-100%"
+                        hidden
+                        >&nbsp;</i
+                      ><!
+                    [endif]--></span
+                        ></a
+                    >
+                </div>
+                <div style="font-weight:normal;padding:16px 24px 16px 24px">
+                    {{ 'workflow.send_external_message.document_available_until'|trans({ 'expiration': send.expireAt}, null, lang) }}
+                </div>
+                <div style="font-weight:normal;padding:16px 24px 16px 24px">
+                    {{ 'workflow.send_external_message.or_see_link'|trans }}&nbsp;:
+                </div>
+                <div style="font-size:16px;padding:16px 24px 16px 24px">
+                    <code>{{ absolute_url(path('chill_main_workflow_send_view_public', {'uuid': send.uuid, 'verificationKey': send.privateToken})) }}</code>
+                </div>
+            </td>
+        </tr>
+        </tbody>
+    </table>
+</div>
+</body>
+</html>
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
index afeefb2f7..e81626d5f 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
@@ -13,6 +13,7 @@ namespace Chill\MainBundle\Workflow\Messenger;
 
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Bridge\Twig\Mime\TemplatedEmail;
 use Symfony\Component\Mailer\MailerInterface;
 use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
@@ -25,6 +26,7 @@ final readonly class PostSendExternalMessageHandler implements MessageHandlerInt
         private EntityWorkflowRepository $entityWorkflowRepository,
         private MailerInterface $mailer,
         private BodyRendererInterface $bodyRenderer,
+        private EntityWorkflowManager $workflowManager,
     ) {}
 
     public function __invoke(PostSendExternalMessage $message): void
@@ -42,9 +44,12 @@ final readonly class PostSendExternalMessageHandler implements MessageHandlerInt
 
     private function sendEmailToDestinee(EntityWorkflowSend $send, PostSendExternalMessage $message): void
     {
+        $entityWorkflow = $send->getEntityWorkflowStep()->getEntityWorkflow();
+        $title = $this->workflowManager->getHandler($entityWorkflow)->getEntityTitle($entityWorkflow);
         $email = new TemplatedEmail();
         $email
             ->to($send->getDestineeThirdParty()?->getEmail() ?? $send->getDestineeEmail())
+            ->subject($title)
             ->htmlTemplate('@ChillMain/Workflow/workflow_send_external_email_to_destinee.html.twig')
             ->context([
                 'send' => $send,
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index a759d4bef..1bb5230d9 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -69,6 +69,11 @@ workflow:
         }
     send_external_message:
         document_available_until: Le lien sera valable jusqu'au {expiration, date, long} à {expiration, time, short}.
+        explanation: '{sender} vous fait parvenir des documents.'
+        button_content: 'Consulter les documents envoyés par {sender}'
+        confidentiality: Nous attirons votre attention sur le fait que ces documents sont confidentiels.
+        see_doc_action_description: 'Voir les documents confidentiels envoyés par {sender}'
+
     external_views:
         last_view_at: Dernière vue le {at, date, long} à {at, time, short}
         number_of_views: >-
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 67992a60f..bce38cb76 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -571,6 +571,13 @@ workflow:
         expired_link_title: Lien expiré
         expired_link_explanation: Le lien a expiré, vous ne pouvez plus visualiser ce document.
 
+    send_external_message:
+        greeting: Bonjour
+        or_see_link: 'Si le clic sur le bouton ne fonctionnait pas, vous pouvez consulter les documents en copiant le lien ci-dessous, et en l''ouvrant dans votre navigateur'
+        use_button: Pour accéder à ces documents, vous pouvez utiliser le bouton ci-dessous
+        see_docs_action_name: Voir les documents confidentiels
+        sender_system_user: le logiciel chill
+
     signature_zone:
         title: Signatures électroniques
         button_sign: Signer

From 3d53e7da65e6f52b1af1b21ccae38e23c2ee474a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 13:40:25 +0200
Subject: [PATCH 320/375] Show the list of pending views in the workflows index
 page

---
 .../Resources/views/Workflow/index.html.twig                | 5 +++++
 .../ChillMainBundle/translations/messages+intl-icu.fr.yaml  | 6 ++++++
 2 files changed, 11 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
index 0fe55e3f2..48f7ef361 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/index.html.twig
@@ -61,6 +61,11 @@
     <section class="step my-4">{% include '@ChillMain/Workflow/_follow.html.twig' %}</section>
     {% if signatures|length > 0 %}
         <section class="step my-4">{% include '@ChillMain/Workflow/_signature.html.twig' %}</section>
+    {% elseif entity_workflow.currentStep.sends|length > 0 %}
+        <section class="step my-4">
+            <h2>{{ 'workflow.external_views.title'|trans({'numberOfSends': entity_workflow.currentStep.sends|length }) }}</h2>
+            {% include '@ChillMain/Workflow/_send_views_list.html.twig' with {'sends': entity_workflow.currentStep.sends} %}
+        </section>
     {% else %}
         <section class="step my-4">{% include '@ChillMain/Workflow/_decision.html.twig' %}</section>
     {% endif %}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 1bb5230d9..430d866ab 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -75,6 +75,12 @@ workflow:
         see_doc_action_description: 'Voir les documents confidentiels envoyés par {sender}'
 
     external_views:
+        title: >-
+            {numberOfSends, plural,
+                =0 {En attente de consultation}
+                =1 {En attente de consultation}
+                other {En attente de consultations}
+            }
         last_view_at: Dernière vue le {at, date, long} à {at, time, short}
         number_of_views: >-
             {numberOfViews, plural,

From 1313b6f1385ff31d6dd1a7a9fa73380d8b3d29d9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 10 Oct 2024 14:06:00 +0200
Subject: [PATCH 321/375] Automatically execute body renderer when posting an
 email in Chill

+ adaptation of services which already uses body renderer
---
 .../ChillMainBundle/Service/Mailer/ChillMailer.php    |  8 +++++++-
 .../Messenger/PostSendExternalMessageHandlerTest.php  | 11 ++++++++---
 .../Messenger/PostSendExternalMessageHandler.php      |  2 --
 3 files changed, 15 insertions(+), 6 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Service/Mailer/ChillMailer.php b/src/Bundle/ChillMainBundle/Service/Mailer/ChillMailer.php
index 3edee4763..1d2cf836e 100644
--- a/src/Bundle/ChillMainBundle/Service/Mailer/ChillMailer.php
+++ b/src/Bundle/ChillMainBundle/Service/Mailer/ChillMailer.php
@@ -12,9 +12,11 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Service\Mailer;
 
 use Psr\Log\LoggerInterface;
+use Symfony\Bridge\Twig\Mime\TemplatedEmail;
 use Symfony\Component\Mailer\Envelope;
 use Symfony\Component\Mailer\MailerInterface;
 use Symfony\Component\Mime\Address;
+use Symfony\Component\Mime\BodyRendererInterface;
 use Symfony\Component\Mime\Email;
 use Symfony\Component\Mime\RawMessage;
 
@@ -22,7 +24,7 @@ class ChillMailer implements MailerInterface
 {
     private string $prefix = '[Chill] ';
 
-    public function __construct(private readonly MailerInterface $initial, private readonly LoggerInterface $chillLogger) {}
+    public function __construct(private readonly MailerInterface $initial, private readonly LoggerInterface $chillLogger, private readonly BodyRendererInterface $bodyRenderer) {}
 
     public function send(RawMessage $message, ?Envelope $envelope = null): void
     {
@@ -30,6 +32,10 @@ class ChillMailer implements MailerInterface
             $message->subject($this->prefix.$message->getSubject());
         }
 
+        if ($message instanceof TemplatedEmail) {
+            $this->bodyRenderer->render($message);
+        }
+
         $this->chillLogger->info('chill email sent', [
             'to' => array_map(static fn (Address $address) => $address->getAddress(), $message->getTo()),
             'subject' => $message->getSubject(),
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
index 9f3542291..a3fc47d4c 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
@@ -14,6 +14,8 @@ namespace Chill\MainBundle\Tests\Workflow\Messenger;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessage;
 use Chill\MainBundle\Workflow\Messenger\PostSendExternalMessageHandler;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
@@ -25,6 +27,7 @@ use Symfony\Bridge\Twig\Mime\TemplatedEmail;
 use Symfony\Component\Mailer\MailerInterface;
 use Symfony\Component\Mime\Address;
 use Symfony\Component\Mime\BodyRendererInterface;
+use Symfony\Component\Workflow\Registry;
 
 /**
  * @internal
@@ -50,10 +53,12 @@ class PostSendExternalMessageHandlerTest extends TestCase
         $mailer->send(Argument::that($this->buildCheckAddressCallback('3party@example.com')))->shouldBeCalledOnce();
         $mailer->send(Argument::that($this->buildCheckAddressCallback('external@example.com')))->shouldBeCalledOnce();
 
-        $bodyRenderer = $this->prophesize(BodyRendererInterface::class);
-        $bodyRenderer->render(Argument::type(TemplatedEmail::class))->shouldBeCalledTimes(2);
+        $workflowHandler = $this->prophesize(EntityWorkflowHandlerInterface::class);
+        $workflowHandler->getEntityTitle($entityWorkflow, Argument::any())->willReturn('title');
+        $workflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $workflowManager->getHandler($entityWorkflow)->willReturn($workflowHandler->reveal());
 
-        $handler = new PostSendExternalMessageHandler($repository->reveal(), $mailer->reveal(), $bodyRenderer->reveal());
+        $handler = new PostSendExternalMessageHandler($repository->reveal(), $mailer->reveal(), $workflowManager->reveal());
 
         $handler(new PostSendExternalMessage(1, 'fr'));
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
index e81626d5f..e6c496a61 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
@@ -25,7 +25,6 @@ final readonly class PostSendExternalMessageHandler implements MessageHandlerInt
     public function __construct(
         private EntityWorkflowRepository $entityWorkflowRepository,
         private MailerInterface $mailer,
-        private BodyRendererInterface $bodyRenderer,
         private EntityWorkflowManager $workflowManager,
     ) {}
 
@@ -56,7 +55,6 @@ final readonly class PostSendExternalMessageHandler implements MessageHandlerInt
                 'lang' => $message->lang,
             ]);
 
-        $this->bodyRenderer->render($email);
         $this->mailer->send($email);
     }
 }

From 13dbbb6741c0bed9c153341dd51bb48b0798be16 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 15 Oct 2024 09:08:29 +0200
Subject: [PATCH 322/375] Fix race condition in ChillCollectionType

In some dcase, the collection is not initialized when a showHide is launched before the collection is fully initialized.
---
 .../Form/Type/ChillCollectionType.php         |  1 +
 .../public/module/collection/index.ts         | 35 +++++++++++++++++--
 .../public/page/workflow-show/index.js        |  2 +-
 .../Resources/views/Form/fields.html.twig     |  3 ++
 4 files changed, 37 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Form/Type/ChillCollectionType.php b/src/Bundle/ChillMainBundle/Form/Type/ChillCollectionType.php
index 403aa40d6..84a42b96b 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/ChillCollectionType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/ChillCollectionType.php
@@ -36,6 +36,7 @@ class ChillCollectionType extends AbstractType
         $view->vars['identifier'] = $options['identifier'];
         $view->vars['empty_collection_explain'] = $options['empty_collection_explain'];
         $view->vars['js_caller'] = $options['js_caller'];
+        $view->vars['uniqid'] = uniqid();
     }
 
     public function configureOptions(OptionsResolver $resolver)
diff --git a/src/Bundle/ChillMainBundle/Resources/public/module/collection/index.ts b/src/Bundle/ChillMainBundle/Resources/public/module/collection/index.ts
index 875e99fad..edba586a4 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/module/collection/index.ts
+++ b/src/Bundle/ChillMainBundle/Resources/public/module/collection/index.ts
@@ -30,6 +30,12 @@
  */
 import './collection.scss';
 
+declare global {
+    interface GlobalEventHandlersEventMap {
+        'show-hide-show': CustomEvent<{id: number, froms: HTMLElement[], container: HTMLElement}>,
+    }
+}
+
 export class CollectionEventPayload {
     collection: HTMLUListElement;
     entry: HTMLLIElement;
@@ -107,20 +113,34 @@ export const buildRemoveButton = (collection: HTMLUListElement, entry: HTMLLIEle
     return button;
 }
 
-window.addEventListener('load', () => {
+const collectionsInit = new Set<string>;
+const buttonsInit = new Set<string>();
+
+const initialize = function (target: Document|Element): void {
     let
         addButtons: NodeListOf<HTMLButtonElement> = document.querySelectorAll("button[data-collection-add-target]"),
         collections: NodeListOf<HTMLUListElement> = document.querySelectorAll("ul[data-collection-regular]");
 
     for (let i = 0; i < addButtons.length; i++) {
-        let addButton = addButtons[i];
+        const addButton = addButtons[i];
+        const uniqid = addButton.dataset.uniqid as string;
+        if (buttonsInit.has(uniqid)) {
+            continue;
+        }
+        buttonsInit.add(uniqid);
         addButton.addEventListener('click', (e: Event) => {
             e.preventDefault();
             handleAdd(e.target);
         });
     }
     for (let i = 0; i < collections.length; i++) {
-        let entries: NodeListOf<HTMLLIElement> = collections[i].querySelectorAll(':scope > li');
+        const collection = collections[i];
+        const uniqid = collection.dataset.uniqid as string;
+        if (collectionsInit.has(uniqid)) {
+            continue;
+        }
+        collectionsInit.add(uniqid);
+        let entries: NodeListOf<HTMLLIElement> = collection.querySelectorAll(':scope > li');
         for (let j = 0; j < entries.length; j++) {
             if (entries[j].dataset.collectionEmptyExplain === "1") {
                 continue;
@@ -128,4 +148,13 @@ window.addEventListener('load', () => {
             initializeRemove(collections[i], entries[j]);
         }
     }
+};
+
+window.addEventListener('DOMContentLoaded', () => {
+    initialize(document);
 });
+
+window.addEventListener('show-hide-show', (event: CustomEvent<{id: number; container: HTMLElement; froms: HTMLElement[]}>) => {
+    const container = event.detail.container as HTMLElement;
+    initialize(container);
+})
diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index ce552c909..0f94ac374 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -47,7 +47,7 @@ window.addEventListener('DOMContentLoaded', function() {
 
     // ShowHide instance for send external
     new ShowHide({
-      debug: true,
+      debug: false,
       load_event: null,
       froms: [divTransitions],
       container: [sendExternalContainer],
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Form/fields.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Form/fields.html.twig
index ccd0195a5..15794b9f7 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Form/fields.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Form/fields.html.twig
@@ -163,6 +163,7 @@
     <div class="chill-collection">
         <ul class="list-entry"
             {{ form.vars.js_caller }}="{{ form.vars.js_caller }}"
+            data-uniqid="{{ form.vars.uniqid|escape('html_attr') }}"
             data-collection-name="{{ form.vars.name|escape('html_attr') }}"
             data-collection-identifier="{{ form.vars.identifier|escape('html_attr') }}"
             data-collection-button-remove-label="{{ form.vars.button_remove_label|trans|e }}"
@@ -184,6 +185,8 @@
 
         {% if form.vars.allow_add == 1 %}
         <button class="add-entry btn btn-misc"
+            type="button"
+            data-uniqid="{{ form.vars.uniqid|escape('html_attr') }}"
             data-collection-add-target="{{ form.vars.name|escape('html_attr') }}"
             data-form-prototype="{{ ('<div>' ~ form_widget(form.vars.prototype) ~ '</div>')|escape('html_attr') }}" >
             <i class="fa fa-plus fa-fw"></i>

From 6cd336922f03a8eb4d845f8ab2c10ee218e79d7d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 15 Oct 2024 11:06:35 +0200
Subject: [PATCH 323/375] Fix error when denormalizing empty array for pick
 third party dynampic type

---
 .../Form/Type/DataTransformer/EntityToJsonTransformer.php   | 6 +++++-
 src/Bundle/ChillMainBundle/Form/WorkflowStepType.php        | 1 +
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
index c6839efa8..21f976a0f 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/DataTransformer/EntityToJsonTransformer.php
@@ -28,10 +28,14 @@ class EntityToJsonTransformer implements DataTransformerInterface
 
     public function reverseTransform($value)
     {
-        if ('' === $value) {
+        if (false === $this->multiple && '' === $value) {
             return null;
         }
 
+        if ($this->multiple && [] === $value) {
+            return [];
+        }
+
         $denormalized = json_decode((string) $value, true, 512, JSON_THROW_ON_ERROR);
 
         if ($this->multiple) {
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index b786a450d..1984437f8 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -188,6 +188,7 @@ class WorkflowStepType extends AbstractType
                 'label' => 'workflow.transition_destinee_third_party',
                 'help' => 'workflow.transition_destinee_third_party_help',
                 'multiple' => true,
+                'empty_data' => [],
             ]);
 
         $builder

From d283d620492f106053f8a109d6056f6921141a73 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 15 Oct 2024 11:10:31 +0200
Subject: [PATCH 324/375] !fixup Automatically execute body renderer when
 posting an

---
 .../Workflow/Messenger/PostSendExternalMessageHandlerTest.php   | 2 --
 .../Workflow/Messenger/PostSendExternalMessageHandler.php       | 1 -
 2 files changed, 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
index a3fc47d4c..a22547937 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Messenger/PostSendExternalMessageHandlerTest.php
@@ -26,8 +26,6 @@ use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Bridge\Twig\Mime\TemplatedEmail;
 use Symfony\Component\Mailer\MailerInterface;
 use Symfony\Component\Mime\Address;
-use Symfony\Component\Mime\BodyRendererInterface;
-use Symfony\Component\Workflow\Registry;
 
 /**
  * @internal
diff --git a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
index e6c496a61..04576015b 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Messenger/PostSendExternalMessageHandler.php
@@ -18,7 +18,6 @@ use Symfony\Bridge\Twig\Mime\TemplatedEmail;
 use Symfony\Component\Mailer\MailerInterface;
 use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
 use Symfony\Component\Messenger\Handler\MessageHandlerInterface;
-use Symfony\Component\Mime\BodyRendererInterface;
 
 final readonly class PostSendExternalMessageHandler implements MessageHandlerInterface
 {

From d8ded80582e6184171680885922ae80b32d356d2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 15 Oct 2024 11:31:25 +0200
Subject: [PATCH 325/375] Add an option "suggest_myself" on PickUserDynamicType
 and PickUserGroupOrUserDynamicType, and use this option in WorkflowStepType

This will suggest the current user in PickUserDynamicType
---
 .../Form/Type/PickUserDynamicType.php           | 17 ++++++++++++++++-
 .../Type/PickUserGroupOrUserDynamicType.php     | 17 ++++++++++++++++-
 .../ChillMainBundle/Form/WorkflowStepType.php   |  3 +++
 3 files changed, 35 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php b/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
index 2d6c5972a..0bb5ecee3 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/PickUserDynamicType.php
@@ -18,6 +18,7 @@ use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\Form\FormInterface;
 use Symfony\Component\Form\FormView;
 use Symfony\Component\OptionsResolver\OptionsResolver;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Symfony\Component\Serializer\SerializerInterface;
@@ -29,12 +30,18 @@ use Symfony\Component\Serializer\SerializerInterface;
  *
  * - `multiple`: pick one or more users
  * - `suggested`: a list of suggested users
+ * - `suggest_myself`: append the current user to the list of suggested
  * - `as_id`: only the id will be set in the returned data
  * - `submit_on_adding_new_entity`: the browser will immediately submit the form when new users are checked
  */
 class PickUserDynamicType extends AbstractType
 {
-    public function __construct(private readonly DenormalizerInterface $denormalizer, private readonly SerializerInterface $serializer, private readonly NormalizerInterface $normalizer) {}
+    public function __construct(
+        private readonly DenormalizerInterface $denormalizer,
+        private readonly SerializerInterface $serializer,
+        private readonly NormalizerInterface $normalizer,
+        private readonly Security $security,
+    ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
     {
@@ -53,6 +60,12 @@ class PickUserDynamicType extends AbstractType
         foreach ($options['suggested'] as $user) {
             $view->vars['suggested'][] = $this->normalizer->normalize($user, 'json', ['groups' => 'read']);
         }
+        $user = $this->security->getUser();
+        if ($user instanceof User) {
+            if (true === $options['suggest_myself'] && !in_array($user, $options['suggested'], true)) {
+                $view->vars['suggested'][] = $this->normalizer->normalize($user, 'json', ['groups' => 'read']);
+            }
+        }
     }
 
     public function configureOptions(OptionsResolver $resolver)
@@ -61,6 +74,8 @@ class PickUserDynamicType extends AbstractType
             ->setDefault('multiple', false)
             ->setAllowedTypes('multiple', ['bool'])
             ->setDefault('compound', false)
+            ->setDefault('suggest_myself', false)
+            ->setAllowedTypes('suggest_myself', ['bool'])
             ->setDefault('suggested', [])
             // if set to true, only the id will be set inside the content. The denormalization will not work.
             ->setDefault('as_id', false)
diff --git a/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
index c4e91cce4..6d24e145e 100644
--- a/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
+++ b/src/Bundle/ChillMainBundle/Form/Type/PickUserGroupOrUserDynamicType.php
@@ -11,12 +11,14 @@ declare(strict_types=1);
 
 namespace Chill\MainBundle\Form\Type;
 
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Form\Type\DataTransformer\EntityToJsonTransformer;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\Form\FormInterface;
 use Symfony\Component\Form\FormView;
 use Symfony\Component\OptionsResolver\OptionsResolver;
+use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Serializer\Normalizer\DenormalizerInterface;
 use Symfony\Component\Serializer\Normalizer\NormalizerInterface;
 use Symfony\Component\Serializer\SerializerInterface;
@@ -26,7 +28,12 @@ use Symfony\Component\Serializer\SerializerInterface;
  */
 final class PickUserGroupOrUserDynamicType extends AbstractType
 {
-    public function __construct(private readonly DenormalizerInterface $denormalizer, private readonly SerializerInterface $serializer, private readonly NormalizerInterface $normalizer) {}
+    public function __construct(
+        private readonly DenormalizerInterface $denormalizer,
+        private readonly SerializerInterface $serializer,
+        private readonly NormalizerInterface $normalizer,
+        private readonly Security $security,
+    ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
     {
@@ -45,6 +52,12 @@ final class PickUserGroupOrUserDynamicType extends AbstractType
         foreach ($options['suggested'] as $userGroup) {
             $view->vars['suggested'][] = $this->normalizer->normalize($userGroup, 'json', ['groups' => 'read']);
         }
+        $user = $this->security->getUser();
+        if ($user instanceof User) {
+            if (true === $options['suggest_myself'] && !in_array($user, $options['suggested'], true)) {
+                $view->vars['suggested'][] = $this->normalizer->normalize($user, 'json', ['groups' => 'read']);
+            }
+        }
     }
 
     public function configureOptions(OptionsResolver $resolver)
@@ -54,6 +67,8 @@ final class PickUserGroupOrUserDynamicType extends AbstractType
             ->setAllowedTypes('multiple', ['bool'])
             ->setDefault('compound', false)
             ->setDefault('suggested', [])
+            ->setDefault('suggest_myself', false)
+            ->setAllowedTypes('suggest_myself', ['bool'])
             // if set to true, only the id will be set inside the content. The denormalization will not work.
             ->setDefault('as_id', false)
             ->setAllowedTypes('as_id', ['bool'])
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 1984437f8..e5769a28e 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -156,12 +156,14 @@ class WorkflowStepType extends AbstractType
             ->add('futureUserSignature', PickUserDynamicType::class, [
                 'label' => 'workflow.signature_zone.user signature',
                 'multiple' => false,
+                'suggest_myself' => true,
             ])
             ->add('futureDestUsers', PickUserGroupOrUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
                 'empty_data' => '[]',
                 'suggested' => $options['suggested_users'],
+                'suggest_myself' => true,
             ])
             ->add('futureCcUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.cc for next steps',
@@ -170,6 +172,7 @@ class WorkflowStepType extends AbstractType
                 'suggested' => $options['suggested_users'],
                 'empty_data' => '[]',
                 'attr' => ['class' => 'future-cc-users'],
+                'suggest_myself' => true,
             ])
             ->add('futureDestineeEmails', ChillCollectionType::class, [
                 'entry_type' => EmailType::class,

From 9fe20b5e81d3915b214d689daf23bbeff4c4491e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 15 Oct 2024 15:15:32 +0200
Subject: [PATCH 326/375] Show pending signatures in the person's search
 results

---
 .../Templating/WorkflowEntityRender.php       | 46 +++++++++++++++++++
 .../translations/messages+intl-icu.fr.yaml    |  6 +++
 .../ChillPersonBundle/Entity/Person.php       | 39 ++++++++++++++++
 .../views/Person/list_with_period.html.twig   | 27 +++++++++++
 4 files changed, 118 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowEntityRender.php

diff --git a/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowEntityRender.php b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowEntityRender.php
new file mode 100644
index 000000000..9f51d03ad
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Templating/WorkflowEntityRender.php
@@ -0,0 +1,46 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Templating;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Templating\Entity\ChillEntityRenderInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Twig\Environment;
+
+final readonly class WorkflowEntityRender implements ChillEntityRenderInterface
+{
+    public function __construct(private EntityWorkflowManager $entityWorkflowManager, private Environment $twig) {}
+
+    public function renderBox($entity, array $options): string
+    {
+        /** @var EntityWorkflow $entity */
+        $handler = $this->entityWorkflowManager->getHandler($entity);
+
+        return $this->twig->render(
+            $handler->getTemplate($entity),
+            $handler->getTemplateData($entity)
+        );
+    }
+
+    public function renderString($entity, array $options): string
+    {
+        /** @var EntityWorkflow $entity */
+        $handler = $this->entityWorkflowManager->getHandler($entity);
+
+        return $handler->getEntityTitle($entity, $options);
+    }
+
+    public function supports(object $entity, array $options): bool
+    {
+        return $entity instanceof EntityWorkflow;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 430d866ab..5c67b3eaa 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -67,6 +67,12 @@ workflow:
             one {Signature demandée}
             other {Signatures demandées}
         }
+    pending_signatures: >-
+        {nb_signatures, plural,
+            =0 {Aucune signature demandée}
+            one {Une signature demandée}
+            other {# signatures demandées}
+        }
     send_external_message:
         document_available_until: Le lien sera valable jusqu'au {expiration, date, long} à {expiration, time, short}.
         explanation: '{sender} vous fait parvenir des documents.'
diff --git a/src/Bundle/ChillPersonBundle/Entity/Person.php b/src/Bundle/ChillPersonBundle/Entity/Person.php
index 0b4b54681..5d24f3114 100644
--- a/src/Bundle/ChillPersonBundle/Entity/Person.php
+++ b/src/Bundle/ChillPersonBundle/Entity/Person.php
@@ -24,6 +24,8 @@ use Chill\MainBundle\Entity\Embeddable\CommentEmbeddable;
 use Chill\MainBundle\Entity\HasCenterInterface;
 use Chill\MainBundle\Entity\Language;
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Validation\Constraint\PhonenumberConstraint;
 use Chill\PersonBundle\Entity\Household\Household;
 use Chill\PersonBundle\Entity\Household\HouseholdMember;
@@ -39,6 +41,7 @@ use DateTime;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\Common\Collections\Collection;
 use Doctrine\Common\Collections\Criteria;
+use Doctrine\Common\Collections\ReadableCollection;
 use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use libphonenumber\PhoneNumber;
@@ -382,6 +385,12 @@ class Person implements HasCenterInterface, TrackCreationInterface, TrackUpdateI
     #[ORM\ManyToOne(targetEntity: User::class)]
     private ?User $updatedBy = null;
 
+    /**
+     * @var Collection<int, EntityWorkflowStepSignature>
+     */
+    #[ORM\OneToMany(targetEntity: EntityWorkflowStepSignature::class, mappedBy: 'personSigner', orphanRemoval: true)]
+    private Collection $signatures;
+
     /**
      * Person constructor.
      */
@@ -403,6 +412,7 @@ class Person implements HasCenterInterface, TrackCreationInterface, TrackUpdateI
         $this->budgetCharges = new ArrayCollection();
         $this->resources = new ArrayCollection();
         $this->centerHistory = new ArrayCollection();
+        $this->signatures = new ArrayCollection();
     }
 
     public function __toString(): string
@@ -474,6 +484,35 @@ class Person implements HasCenterInterface, TrackCreationInterface, TrackUpdateI
         return $this;
     }
 
+    public function addSignature(EntityWorkflowStepSignature $signature): self
+    {
+        if (!$this->signatures->contains($signature)) {
+            $this->signatures->add($signature);
+        }
+
+        return $this;
+    }
+
+    public function removeSignature(EntityWorkflowStepSignature $signature): self
+    {
+        $this->signatures->removeElement($signature);
+
+        return $this;
+    }
+
+    /**
+     * @return ReadableCollection<int, EntityWorkflowStepSignature>
+     */
+    public function getSignatures(): ReadableCollection
+    {
+        return $this->signatures;
+    }
+
+    public function getSignaturesPending(): ReadableCollection
+    {
+        return $this->signatures->filter(fn (EntityWorkflowStepSignature $signature) => EntityWorkflowSignatureStateEnum::PENDING === $signature->getState());
+    }
+
     /**
      * Function used for validation that check if the accompanying periods of
      * the person are not collapsing (i.e. have not shared days) or having
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
index c48771aac..fa7a1b6ea 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
@@ -224,6 +224,33 @@
                 </ul>
             </div>
         </div>
+        {% if person.signaturesPending|length > 0 %}
+            <div class="item-row separator">
+                <div class="wrap-list periods-list">
+                    <div class="wl-row">
+                        <div class="wl-col title">
+                            <h3>{{ 'workflow.pending_signatures'|trans({nb_signatures: person.signaturesPending|length}) }}</h3>
+                        </div>
+                        <div class="wl-col list">
+                            {% for signature in person.signaturesPending %}
+                                {% set entityWorkflow = signature.step.entityWorkflow %}
+                                {{ entityWorkflow|chill_entity_render_string }}
+                                <ul class="record_actions small slim">
+                                    <li>
+                                        <a href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', {signature_id: signature.id}) }}" class="btn btn-misc">
+                                            <i class="fa fa-pencil"></i>
+                                        </a>
+                                    </li>
+                                    <li>
+                                        <a href="{{ chill_path_add_return_path('chill_main_workflow_show', {id: entityWorkflow.id}) }}" class="btn btn-show"></a>
+                                    </li>
+                                </ul>
+                            {% endfor %}
+                        </div>
+                    </div>
+                </div>
+            </div>
+        {% endif %}
 {% endmacro %}
 
 <div class="list-with-period">

From 508c4cd674ba597796d2cccb0365bbdc2d4966e6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 18 Oct 2024 19:14:13 +0200
Subject: [PATCH 327/375] Add an email address ot UserGroup entity

---
 .../ChillMainBundle/Entity/UserGroup.php      | 22 +++++++++++++
 .../ChillMainBundle/Form/UserGroupType.php    |  6 ++++
 .../migrations/Version20241015142142.php      | 33 +++++++++++++++++++
 .../translations/messages.fr.yml              |  2 ++
 4 files changed, 63 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/migrations/Version20241015142142.php

diff --git a/src/Bundle/ChillMainBundle/Entity/UserGroup.php b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
index b39216b11..d720d4ffc 100644
--- a/src/Bundle/ChillMainBundle/Entity/UserGroup.php
+++ b/src/Bundle/ChillMainBundle/Entity/UserGroup.php
@@ -19,6 +19,7 @@ use Doctrine\Common\Collections\ReadableCollection;
 use Doctrine\Common\Collections\Selectable;
 use Doctrine\ORM\Mapping as ORM;
 use Symfony\Component\Serializer\Annotation\DiscriminatorMap;
+use Symfony\Component\Validator\Constraints as Assert;
 
 #[ORM\Entity]
 #[ORM\Table(name: 'chill_main_user_group')]
@@ -66,6 +67,10 @@ class UserGroup
     #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
     private string $excludeKey = '';
 
+    #[ORM\Column(type: \Doctrine\DBAL\Types\Types::TEXT, nullable: false, options: ['default' => ''])]
+    #[Assert\Email]
+    private string $email = '';
+
     public function __construct()
     {
         $this->adminUsers = new ArrayCollection();
@@ -187,6 +192,23 @@ class UserGroup
         return $this;
     }
 
+    public function getEmail(): string
+    {
+        return $this->email;
+    }
+
+    public function setEmail(string $email): self
+    {
+        $this->email = $email;
+
+        return $this;
+    }
+
+    public function hasEmail(): bool
+    {
+        return '' !== $this->email;
+    }
+
     /**
      * Checks if the current object is an instance of the UserGroup class.
      *
diff --git a/src/Bundle/ChillMainBundle/Form/UserGroupType.php b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
index 8a4685c7c..3f98907fa 100644
--- a/src/Bundle/ChillMainBundle/Form/UserGroupType.php
+++ b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
@@ -15,6 +15,7 @@ use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Form\Type\TranslatableStringFormType;
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\ColorType;
+use Symfony\Component\Form\Extension\Core\Type\EmailType;
 use Symfony\Component\Form\Extension\Core\Type\TextType;
 use Symfony\Component\Form\FormBuilderInterface;
 
@@ -34,6 +35,11 @@ class UserGroupType extends AbstractType
             ->add('foregroundColor', ColorType::class, [
                 'label' => 'user_group.ForegroundColor',
             ])
+            ->add('email', EmailType::class, [
+                'label' => 'user_group.Email',
+                'help' => 'user_group.EmailHelp',
+                'empty_data' => '',
+            ])
             ->add('excludeKey', TextType::class, [
                 'label' => 'user_group.ExcludeKey',
                 'help' => 'user_group.ExcludeKeyHelp',
diff --git a/src/Bundle/ChillMainBundle/migrations/Version20241015142142.php b/src/Bundle/ChillMainBundle/migrations/Version20241015142142.php
new file mode 100644
index 000000000..c4367a05d
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/migrations/Version20241015142142.php
@@ -0,0 +1,33 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\Migrations\Main;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+final class Version20241015142142 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return 'Add an email address to user groups';
+    }
+
+    public function up(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_user_group ADD email TEXT DEFAULT \'\' NOT NULL');
+    }
+
+    public function down(Schema $schema): void
+    {
+        $this->addSql('ALTER TABLE chill_main_user_group DROP COLUMN email');
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index bce38cb76..51b263095 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -69,6 +69,8 @@ user_group:
     me_only: Uniquement moi
     me: Moi
     append_users: Ajouter des utilisateurs
+    Email: Adresse email du groupe
+    EmailHelp: Si rempli, des notifications supplémentaires seront envoyées à l'adresse email du groupe (workflow en attente, etc.)
 
 inactive: inactif
 

From 29fa086fdefa7f6292d735d11bc4b191374c0df7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 18 Oct 2024 19:14:23 +0200
Subject: [PATCH 328/375] Set return types to MetadataExtractor

---
 .../Workflow/Helper/MetadataExtractor.php            | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php b/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
index 0774ad10a..71ebe089b 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Helper/MetadataExtractor.php
@@ -25,6 +25,9 @@ class MetadataExtractor
         private readonly DuplicateEntityWorkflowFinder $duplicateEntityWorkflowFinder,
     ) {}
 
+    /**
+     * @return list<array{name: string, text: string}>
+     */
     public function availableWorkflowFor(string $relatedEntityClass, ?int $relatedEntityId = 0): array
     {
         $blankEntityWorkflow = new EntityWorkflow();
@@ -56,6 +59,9 @@ class MetadataExtractor
         return $workflowsList;
     }
 
+    /**
+     * @return array{name: string, text: string}
+     */
     public function buildArrayPresentationForPlace(EntityWorkflow $entityWorkflow, ?EntityWorkflowStep $step = null): array
     {
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
@@ -69,6 +75,9 @@ class MetadataExtractor
         return ['name' => $step->getCurrentStep(), 'text' => $text];
     }
 
+    /**
+     * @return array{name?: string, text?: string, isForward?: bool}
+     */
     public function buildArrayPresentationForTransition(EntityWorkflow $entityWorkflow, string $transitionName): array
     {
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
@@ -90,6 +99,9 @@ class MetadataExtractor
         return [];
     }
 
+    /**
+     * @return array{name: string, text: string}
+     */
     public function buildArrayPresentationForWorkflow(WorkflowInterface $workflow): array
     {
         $metadata = $workflow->getMetadataStore()->getWorkflowMetadata();

From 91a4b45607c89c07d6f7e5aeed383bf02c488ecc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 18 Oct 2024 19:25:03 +0200
Subject: [PATCH 329/375] Add notification to user groups on workflow
 transition

Implemented NotificationToUserGroupsOnTransition to send group emails upon workflow completion. Also updated NotificationOnTransition to prevent double notifications and created a unit test for the new functionality.
---
 ...ompleted_content_to_user_group.fr.txt.twig |   9 ++
 ...tificationToUserGroupsOnTransitionTest.php | 141 ++++++++++++++++++
 .../NotificationOnTransition.php              |   9 +-
 .../NotificationToUserGroupsOnTransition.php  |  90 +++++++++++
 4 files changed, 247 insertions(+), 2 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationToUserGroupsOnTransition.php

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
new file mode 100644
index 000000000..343d450c9
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
@@ -0,0 +1,9 @@
+Chers membres du groupe {{ user_group.label|localize_translatable_string }},
+
+Un suivi "{{ workflow.text }}" a atteint une nouvelle étape: {{ place.text }}
+
+Vous pouvez visualiser le workflow sur cette page:
+
+{{ absolute_url(path('chill_main_workflow_show', {'id': entity_workflow.id, '_locale': 'fr'})) }}
+
+Cordialement,
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
new file mode 100644
index 000000000..8c5bce7a6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
@@ -0,0 +1,141 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\UserGroup;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\NotificationToUserGroupsOnTransition;
+use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Bridge\Twig\Mime\TemplatedEmail;
+use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Mailer\MailerInterface;
+use Symfony\Component\Mime\BodyRendererInterface;
+use Symfony\Component\Mime\RawMessage;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class NotificationToUserGroupsOnTransitionTest extends KernelTestCase
+{
+    use ProphecyTrait;
+    private Environment $twig;
+    private BodyRendererInterface $bodyRenderer;
+
+    protected function setUp(): void
+    {
+        self::bootKernel();
+        $this->twig = self::getContainer()->get('twig');
+        $this->bodyRenderer = self::getContainer()->get(BodyRendererInterface::class);
+    }
+
+    public function testOnCompletedSendNotificationToUserGroupWithEmailAddress(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $reflection = new \ReflectionClass($entityWorkflow);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($entityWorkflow, 1);
+
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [$ug = new UserGroup()];
+        $ug->setEmail('test@email.com')->setLabel(['fr' => 'test group']);
+
+        $mailer = $this->prophesize(MailerInterface::class);
+        $sendMethod = $mailer->send(Argument::that(function (RawMessage $message): bool {
+            if (!$message instanceof TemplatedEmail) {
+                return false;
+            }
+
+            $this->bodyRenderer->render($message);
+
+            return 'test@email.com' === $message->getTo()[0]->getAddress();
+        }));
+        $sendMethod->shouldBeCalledOnce();
+
+        $metadataExtractor = $this->prophesize(MetadataExtractor::class);
+        $metadataExtractor->buildArrayPresentationForWorkflow(Argument::type(Workflow::class))->willReturn(['name' => 'dummy', 'text' => 'Dummy Workflow']);
+        $metadataExtractor->buildArrayPresentationForPlace($entityWorkflow)->willReturn(['name' => 'to_one', 'text' => 'Dummy Place']);
+
+        $registry = $this->buildRegistryWithEventSubscriber($mailer->reveal(), $metadataExtractor->reveal());
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $workflow->apply($entityWorkflow, 'to_one', ['context' => $dto, 'transition' => 'to_one', 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User()]);
+    }
+
+    public function testOnCompletedSendNotificationToUserGroupWithoutAnyEmailAddress(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $reflection = new \ReflectionClass($entityWorkflow);
+        $idProperty = $reflection->getProperty('id');
+        $idProperty->setValue($entityWorkflow, 1);
+
+        $entityWorkflow->setWorkflowName('dummy');
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [$ug = new UserGroup()];
+
+        $mailer = $this->prophesize(MailerInterface::class);
+        $mailer->send(Argument::any())->shouldNotBeCalled();
+
+        $metadataExtractor = $this->prophesize(MetadataExtractor::class);
+        $metadataExtractor->buildArrayPresentationForWorkflow(Argument::type(Workflow::class))->willReturn(['name' => 'dummy', 'text' => 'Dummy Workflow']);
+        $metadataExtractor->buildArrayPresentationForPlace($entityWorkflow)->willReturn(['name' => 'to_one', 'text' => 'Dummy Place']);
+
+        $registry = $this->buildRegistryWithEventSubscriber($mailer->reveal(), $metadataExtractor->reveal());
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+
+        $workflow->apply($entityWorkflow, 'to_one', ['context' => $dto, 'transition' => 'to_one', 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User()]);
+    }
+
+    public function buildRegistryWithEventSubscriber(MailerInterface $mailer, MetadataExtractor $metadataExtractor): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces('initial')
+            ->addPlaces(['initial', 'to_one'])
+            ->addTransition(new Transition('to_one', 'initial', 'to_one'));
+
+        $metadata = new InMemoryMetadataStore(
+            ['label' => ['fr' => 'dummy workflow']],
+        );
+        $builder->setMetadataStore($metadata);
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), $eventDispatcher = new EventDispatcher(), 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        $notificationEventSubscriber = new NotificationToUserGroupsOnTransition($this->twig, $metadataExtractor, $registry, $mailer);
+        $eventDispatcher->addSubscriber($notificationEventSubscriber);
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
index 89ae65f4c..5e33fc3c0 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationOnTransition.php
@@ -42,8 +42,8 @@ class NotificationOnTransition implements EventSubscriberInterface
     /**
      * Send a notification to:.
      *
-     * * the dests of the new step;
-     * * the users which subscribed to workflow, on each step, or on final
+     * * the dests of the new step, or the members of a user group if the user group has no email;
+     * * the users which subscribed to workflow, on each step, or on final;
      *
      * **Warning** take care that this method must be executed **after** the dest users are added to
      * the step (@see{EntityWorkflowStep::addDestUser}). Currently, this is done during
@@ -74,6 +74,11 @@ class NotificationOnTransition implements EventSubscriberInterface
             // the users within groups
             $entityWorkflow->getCurrentStep()->getDestUserGroups()->reduce(
                 function (array $accumulator, UserGroup $userGroup) {
+                    if ($userGroup->hasEmail()) {
+                        // this prevent users to be notified twice if they will already be notiied by the group
+                        return $accumulator;
+                    }
+
                     foreach ($userGroup->getUsers() as $user) {
                         $accumulator[] = $user;
                     }
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationToUserGroupsOnTransition.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationToUserGroupsOnTransition.php
new file mode 100644
index 000000000..8ac5ab750
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/NotificationToUserGroupsOnTransition.php
@@ -0,0 +1,90 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Notification;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
+use Symfony\Bridge\Twig\Mime\TemplatedEmail;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Mailer\MailerInterface;
+use Symfony\Component\Workflow\Event\Event;
+use Symfony\Component\Workflow\Registry;
+
+final readonly class NotificationToUserGroupsOnTransition implements EventSubscriberInterface
+{
+    public function __construct(
+        private \Twig\Environment $engine,
+        private MetadataExtractor $metadataExtractor,
+        private Registry $registry,
+        private MailerInterface $mailer,
+    ) {}
+
+    public static function getSubscribedEvents(): array
+    {
+        return [
+            'workflow.completed' => ['onCompletedSendNotification', 2048],
+        ];
+    }
+
+    /**
+     * Send a notification to:.
+     *
+     * * the dests of the new step;
+     * * the users which subscribed to workflow, on each step, or on final
+     *
+     * **Warning** take care that this method must be executed **after** the dest users are added to
+     * the step (@see{EntityWorkflowStep::addDestUser}). Currently, this is done during
+     *
+     * @see{EntityWorkflowTransitionEventSubscriber::addDests}.
+     */
+    public function onCompletedSendNotification(Event $event): void
+    {
+        if (!$event->getSubject() instanceof EntityWorkflow) {
+            return;
+        }
+
+        /** @var EntityWorkflow $entityWorkflow */
+        $entityWorkflow = $event->getSubject();
+
+        $place = $this->metadataExtractor->buildArrayPresentationForPlace($entityWorkflow);
+        $workflow = $this->metadataExtractor->buildArrayPresentationForWorkflow(
+            $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName())
+        );
+
+        // send to groups
+        foreach ($entityWorkflow->getCurrentStep()->getDestUserGroups() as $userGroup) {
+            if (!$userGroup->hasEmail()) {
+                continue;
+            }
+
+            $context = [
+                'entity_workflow' => $entityWorkflow,
+                'user_group' => $userGroup,
+                'place' => $place,
+                'workflow' => $workflow,
+                'is_dest' => true,
+            ];
+
+            $email = new TemplatedEmail();
+            $email
+                ->htmlTemplate('@ChillMain/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig')
+                ->context($context)
+                ->subject(
+                    $this->engine->render('@ChillMain/Workflow/workflow_notification_on_transition_completed_title.fr.txt.twig', $context)
+                )
+                ->to($userGroup->getEmail());
+
+            $this->mailer->send($email);
+        }
+    }
+}

From daef18408a90a60c3af4cd79722e30c7f7b7d5c0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 18 Oct 2024 19:26:09 +0200
Subject: [PATCH 330/375] fix the return type of the EntityWorkflowCreation
 constraint

---
 .../Workflow/Validator/EntityWorkflowCreation.php              | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php b/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
index b2ec671ef..854139ec3 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/EntityWorkflowCreation.php
@@ -27,6 +27,9 @@ class EntityWorkflowCreation extends \Symfony\Component\Validator\Constraint
 
     public string $messageWorkflowNotAvailable = 'Workflow is not valid';
 
+    /**
+     * @return array<string>
+     */
     public function getTargets(): array
     {
         return [self::CLASS_CONSTRAINT];

From 7b322d7bab2be6d3d537da70d4e63faae02bb1a7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 13:55:01 +0200
Subject: [PATCH 331/375] Rename signature templates by removing underscores

Standardized template names in WorkflowController and WorkflowAddSignatureController for better consistency. Updated references and renamed template files accordingly.
---
 .../Controller/WorkflowAddSignatureController.php               | 2 +-
 src/Bundle/ChillMainBundle/Controller/WorkflowController.php    | 2 +-
 ...ignature_metadata.html.twig => signature_metadata.html.twig} | 0
 .../{_signature_sign.html.twig => signature_sign.html.twig}     | 0
 .../Tests/Controller/WorkflowAddSignatureControllerTest.php     | 2 +-
 5 files changed, 3 insertions(+), 3 deletions(-)
 rename src/Bundle/ChillMainBundle/Resources/views/Workflow/{_signature_metadata.html.twig => signature_metadata.html.twig} (100%)
 rename src/Bundle/ChillMainBundle/Resources/views/Workflow/{_signature_sign.html.twig => signature_sign.html.twig} (100%)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
index 2aa180b7a..2e60b50eb 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowAddSignatureController.php
@@ -71,7 +71,7 @@ final readonly class WorkflowAddSignatureController
 
         return new Response(
             $this->twig->render(
-                '@ChillMain/Workflow/_signature_sign.html.twig',
+                '@ChillMain/Workflow/signature_sign.html.twig',
                 ['signature' => $signatureClient]
             )
         );
diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index 2f8a0fd55..e10cac6a4 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -430,7 +430,7 @@ class WorkflowController extends AbstractController
         }
 
         return $this->render(
-            '@ChillMain/Workflow/_signature_metadata.html.twig',
+            '@ChillMain/Workflow/signature_metadata.html.twig',
             [
                 'metadata_form' => $metadataForm->createView(),
                 'person' => $signature->getSigner(),
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig
similarity index 100%
rename from src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_metadata.html.twig
rename to src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_sign.html.twig
similarity index 100%
rename from src/Bundle/ChillMainBundle/Resources/views/Workflow/_signature_sign.html.twig
rename to src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_sign.html.twig
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
index 9b4507936..caf2357ac 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowAddSignatureControllerTest.php
@@ -62,7 +62,7 @@ class WorkflowAddSignatureControllerTest extends TestCase
             ->willReturn([]);
 
         $twig = $this->createMock(Environment::class);
-        $twig->method('render')->with('@ChillMain/Workflow/_signature_sign.html.twig', $this->isType('array'))
+        $twig->method('render')->with('@ChillMain/Workflow/signature_sign.html.twig', $this->isType('array'))
             ->willReturn('ok');
 
         $urlGenerator = $this->createMock(UrlGeneratorInterface::class);

From d45de5405b883c4bf5572a063a5f1861f2ecc427 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 13:59:39 +0200
Subject: [PATCH 332/375] Use the twig function `chill_entity_render_string` to
 render the person's name

---
 .../Resources/views/Workflow/signature_metadata.html.twig   | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig
index 5b828832d..bb580d25a 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/signature_metadata.html.twig
@@ -1,12 +1,10 @@
 {% extends '@ChillMain/layout.html.twig' %}
 
-{% block title %}
-    {{ 'Signature'|trans }}
-{% endblock %}
+{% block title 'workflow.signature_zone.metadata.sign_by'|trans({ '%name%' : person|chill_entity_render_string}) %}
 
 {% block content %}
 <div class="col-10 workflow">
-    <h1 class="mb-5">{{ 'workflow.signature_zone.metadata.sign_by'|trans({ '%name%' : person.firstname ~ ' ' ~ person.lastname}) }}</h1>
+    <h1 class="mb-5">{{ block('title') }}</h1>
 
     {% if metadata_form is not null %}
         {{ form_start(metadata_form) }}

From ff5640e193d6c11de65b3a2c778db22482d27931 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 15:59:54 +0200
Subject: [PATCH 333/375] Allow to edit storedObject associated with workflow
 which are canceled

OP#753
---
 .../WorkflowStoredObjectPermissionHelper.php  | 31 ++++++---
 ...rkflowStoredObjectPermissionHelperTest.php | 66 ++++++++++++++++++-
 2 files changed, 85 insertions(+), 12 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
index 545325121..971371bea 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
@@ -14,28 +14,41 @@ namespace Chill\DocStoreBundle\Service;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\Registry;
 
 class WorkflowStoredObjectPermissionHelper
 {
-    public function __construct(private readonly Security $security, private readonly EntityWorkflowManager $entityWorkflowManager) {}
+    public function __construct(
+        private readonly Security $security,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
+        private readonly Registry $registry,
+    ) {}
 
     public function notBlockedByWorkflow(object $entity): bool
     {
-        $workflows = $this->entityWorkflowManager->findByRelatedEntity($entity);
+        $entityWorkflows = $this->entityWorkflowManager->findByRelatedEntity($entity);
         $currentUser = $this->security->getUser();
 
-        foreach ($workflows as $workflow) {
-            if ($workflow->isFinal()) {
-                return false;
-            }
+        foreach ($entityWorkflows as $entityWorkflow) {
+            if ($entityWorkflow->isFinal()) {
 
-            if (!$workflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
-                return false;
+                $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+                $marking = $workflow->getMarkingStore()->getMarking($entityWorkflow);
+                foreach ($marking->getPlaces() as $place => $active) {
+                    $metadata = $workflow->getMetadataStore()->getPlaceMetadata($place);
+                    if ($metadata['isFinalPositive'] ?? true) {
+                        return false;
+                    }
+                }
+            } else {
+                if (!$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
+                    return false;
+                }
             }
 
             // as soon as there is one signatured applyied, we are not able to
             // edit the document any more
-            foreach ($workflow->getSteps() as $step) {
+            foreach ($entityWorkflow->getSteps() as $step) {
                 foreach ($step->getSignatures() as $signature) {
                     if (EntityWorkflowSignatureStateEnum::SIGNED === $signature->getState()) {
                         return false;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
index e87ea4653..8f693f44e 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
@@ -17,12 +17,19 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSignatureStateEnum;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowStepSignature;
 use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Entity\Person;
 use PHPUnit\Framework\TestCase;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
 
 /**
  * @internal
@@ -38,6 +45,8 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
      */
     public function testNotBlockByWorkflow(EntityWorkflow $entityWorkflow, User $user, bool $expected, string $message): void
     {
+        // all entities must have this workflow name, so we are ok to set it here
+        $entityWorkflow->setWorkflowName('dummy');
         $object = new \stdClass();
         $helper = $this->buildHelper($object, $entityWorkflow, $user);
 
@@ -52,7 +61,7 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
         $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
         $entityWorkflowManager->findByRelatedEntity(Argument::type('object'))->willReturn([$entityWorkflow]);
 
-        return new WorkflowStoredObjectPermissionHelper($security->reveal(), $entityWorkflowManager->reveal());
+        return new WorkflowStoredObjectPermissionHelper($security->reveal(), $entityWorkflowManager->reveal(), $this->buildRegistry());
     }
 
     public static function provideDataNotBlockByWorkflow(): iterable
@@ -73,10 +82,18 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
         $entityWorkflow = new EntityWorkflow();
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
         $dto->futureDestUsers[] = $user = new User();
-        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+        $entityWorkflow->setStep('final_positive', $dto, 'to_final_positive', new \DateTimeImmutable(), $user);
         $entityWorkflow->getCurrentStep()->setIsFinal(true);
 
-        yield [$entityWorkflow, $user, false, 'blocked because the step is final'];
+        yield [$entityWorkflow, $user, false, 'blocked because the step is final, and final positive'];
+
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('final_negative', $dto, 'to_final_negative', new \DateTimeImmutable(), $user);
+        $entityWorkflow->getCurrentStep()->setIsFinal(true);
+
+        yield [$entityWorkflow, $user, true, 'allowed because the step is final, and final negative'];
 
         $entityWorkflow = new EntityWorkflow();
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
@@ -97,5 +114,48 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
 
         yield [$entityWorkflow, $user, false, 'blocked, a signature is present and signed'];
 
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('final_negative', $dto, 'to_final_negative', new \DateTimeImmutable(), $user);
+        $step = $entityWorkflow->getCurrentStep();
+        $signature = new EntityWorkflowStepSignature($step, new Person());
+        $signature->setState(EntityWorkflowSignatureStateEnum::SIGNED);
+
+        yield [$entityWorkflow, $user, false, 'blocked, a signature is present and signed, although the workflow is final negative'];
+
+    }
+
+    private static function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->setInitialPlaces(['initial'])
+            ->addPlaces(['initial', 'test', 'final_positive', 'final_negative'])
+            ->setMetadataStore(
+                new InMemoryMetadataStore(
+                    placesMetadata: [
+                        'final_positive' => [
+                            'isFinal' => true,
+                            'isFinalPositive' => true,
+                        ],
+                        'final_negative' => [
+                            'isFinal' => true,
+                            'isFinalPositive' => false,
+                        ],
+                    ]
+                )
+            );
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
     }
 }

From 1d708a481d4685d1eaccde942b4ff7eea4739f2e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 16:55:11 +0200
Subject: [PATCH 334/375] Fix the display of old documents in the
 storedobject's history list modal

OP#737

https://champs-libres.openproject.com/work_packages/737
---
 .../vuejs/StoredObjectButton/DownloadButton.vue      |  4 ++--
 .../HistoryButton/HistoryButtonList.vue              |  1 -
 .../HistoryButton/HistoryButtonListItem.vue          | 12 +++++++-----
 .../HistoryButton/HistoryButtonModal.vue             |  1 -
 4 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
index ecf9055af..0e6da5ef4 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/DownloadButton.vue
@@ -24,11 +24,11 @@ interface DownloadButtonConfig {
      * if true, display the action string into the button. If false, displays only
      * the icon
      */
-    displayActionStringInButton: boolean,
+    displayActionStringInButton?: boolean,
     /**
      * if true, will download directly the file on load
      */
-    directDownload: boolean,
+    directDownload?: boolean,
 }
 
 interface DownloadButtonState {
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
index c7be09a44..893d85a77 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonList.vue
@@ -50,7 +50,6 @@ const onRestored = ({newVersion}: {newVersion: StoredObjectVersionWithPointInTim
                     :version="v"
                     :can-edit="canEdit"
                     :is-current="higher_version === v.version"
-                    :is-restored="v.version === state.restored"
                     :stored-object="storedObject"
                     @restore-version="onRestored"
                 ></history-button-list-item>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
index ec077540e..81436ee35 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonListItem.vue
@@ -12,7 +12,6 @@ interface HistoryButtonListItemConfig {
     storedObject: StoredObject;
     canEdit: boolean;
     isCurrent: boolean;
-    isRestored: boolean;
 }
 
 const emit = defineEmits<{
@@ -31,7 +30,9 @@ const isKeptBeforeConversion = computed<boolean>(() => props.version["point-in-t
     ),
 );
 
-const isRestored = computed<boolean>(() => null !== props.version["from-restored"]);
+const isRestored = computed<boolean>(() => props.version.version > 0 && null !== props.version["from-restored"]);
+
+const isDuplicated = computed<boolean>(() => props.version.version === 0 && null !== props.version["from-restored"]);
 
 const classes = computed<{row: true, 'row-hover': true, 'blinking-1': boolean, 'blinking-2': boolean}>(() => ({row: true, 'row-hover': true, 'blinking-1': props.isRestored && 0 === props.version.version % 2, 'blinking-2': props.isRestored && 1 === props.version.version % 2}));
 
@@ -39,13 +40,14 @@ const classes = computed<{row: true, 'row-hover': true, 'blinking-1': boolean, '
 
 <template>
 <div :class="classes">
-    <div class="col-12 tags" v-if="isCurrent || isKeptBeforeConversion || isRestored">
+    <div class="col-12 tags" v-if="isCurrent || isKeptBeforeConversion || isRestored || isDuplicated">
         <span class="badge bg-success" v-if="isCurrent">Version actuelle</span>
         <span class="badge bg-info" v-if="isKeptBeforeConversion">Conservée avant conversion dans un autre format</span>
-        <span class="badge bg-info" v-if="isRestored">Restaurée depuis la version {{ version["from-restored"]?.version }}</span>
+        <span class="badge bg-info" v-if="isRestored">Restaurée depuis la version {{ version["from-restored"]?.version + 1 }}</span>
+        <span class="badge bg-info" v-if="isDuplicated">Dupliqué depuis un autre document</span>
     </div>
     <div class="col-12">
-        <file-icon :type="version.type"></file-icon> <span><strong>#{{ version.version + 1 }}</strong></span> <strong v-if="version.version == 0">Créé par</strong><strong v-else>modifié par</strong> <span class="badge-user"><UserRenderBoxBadge :user="version.createdBy"></UserRenderBoxBadge></span> <strong>à</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601), 'long') }}
+        <file-icon :type="version.type"></file-icon> <span><strong>#{{ version.version + 1 }}</strong></span> <template v-if="version.createdBy !== null && version.createdAt !== null"><strong v-if="version.version == 0">Créé par</strong><strong v-else>modifié par</strong> <span class="badge-user"><UserRenderBoxBadge :user="version.createdBy"></UserRenderBoxBadge></span> <strong>à</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601), 'long') }}</template><template v-if="version.createdBy === null && version.createdAt !== null"><strong v-if="version.version == 0">Créé le</strong><strong v-else>modifié le</strong> {{ $d(ISOToDatetime(version.createdAt.datetime8601), 'long') }}</template>
     </div>
     <div class="col-12">
         <ul class="record_actions small slim on-version-actions">
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
index 0112ec1d8..3ba108cec 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/StoredObjectButton/HistoryButton/HistoryButtonModal.vue
@@ -22,7 +22,6 @@ const props = defineProps<HistoryButtonListConfig>();
 const state = reactive<HistoryButtonModalState>({opened: false});
 
 const open = () => {
-    console.log('open');
     state.opened = true;
 }
 

From 527cf23d4fd716670c88067ef5ec739d8fbb3beb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 17:39:31 +0200
Subject: [PATCH 335/375] Fix Canceling of stale workflow cronjob

Refactor workflow cancellation logic to encapsulate transition checks in a dedicated method, and update CronJob handling to use entity workflows instead of IDs. Enhance test coverage to ensure proper handling and instantiate mocks for EntityManagerInterface.
---
 .../Workflow/EntityWorkflowRepository.php     |  8 +++---
 .../Workflow/CancelStaleWorkflowCronJob.php   | 16 ++++++++----
 .../Workflow/CancelStaleWorkflowHandler.php   | 19 +++++++++++---
 .../EntityWorkflowRepositoryTest.php          |  9 +++++--
 .../CancelStaleWorkflowCronJobTest.php        | 26 ++++++++++++++++---
 .../CancelStaleWorkflowHandlerTest.php        | 24 ++++++++++-------
 6 files changed, 73 insertions(+), 29 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
index cd39b6e28..a3f210ed2 100644
--- a/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
+++ b/src/Bundle/ChillMainBundle/Repository/Workflow/EntityWorkflowRepository.php
@@ -205,13 +205,13 @@ class EntityWorkflowRepository implements ObjectRepository
      *
      * @param \DateTimeImmutable $olderThanDate the date to compare against
      *
-     * @return list<int> the list of workflow IDs that meet the criteria
+     * @return iterable<EntityWorkflow>
      */
-    public function findWorkflowsWithoutFinalStepAndOlderThan(\DateTimeImmutable $olderThanDate): array
+    public function findWorkflowsWithoutFinalStepAndOlderThan(\DateTimeImmutable $olderThanDate): iterable
     {
         $qb = $this->repository->createQueryBuilder('sw');
 
-        $qb->select('sw.id')
+        $qb->select('sw')
             // only the workflow which are not finalized
             ->where(sprintf('NOT EXISTS (SELECT 1 FROM %s ews WHERE ews.isFinal = TRUE AND ews.entityWorkflow = sw.id)', EntityWorkflowStep::class))
             ->andWhere(
@@ -227,7 +227,7 @@ class EntityWorkflowRepository implements ObjectRepository
             ->setParameter('initial', 'initial')
         ;
 
-        return $qb->getQuery()->getResult();
+        return $qb->getQuery()->toIterable();
     }
 
     public function getClassName(): string
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index be3dd2a5e..e18f660c9 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -14,6 +14,7 @@ namespace Chill\MainBundle\Service\Workflow;
 use Chill\MainBundle\Cron\CronJobInterface;
 use Chill\MainBundle\Entity\CronJobExecution;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Doctrine\ORM\EntityManagerInterface;
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\MessageBusInterface;
@@ -31,6 +32,7 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
         private readonly ClockInterface $clock,
         private readonly MessageBusInterface $messageBus,
         private readonly LoggerInterface $logger,
+        private readonly EntityManagerInterface $entityManager,
     ) {}
 
     public function canRun(?CronJobExecution $cronJobExecution): bool
@@ -48,19 +50,23 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
         $this->logger->info('Cronjob started: Canceling stale workflows.');
 
         $olderThanDate = $this->clock->now()->sub(new \DateInterval(self::KEEP_INTERVAL));
-        $staleWorkflowIds = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
+        $staleEntityWorkflows = $this->workflowRepository->findWorkflowsWithoutFinalStepAndOlderThan($olderThanDate);
         $lastCanceled = $lastExecutionData[self::LAST_CANCELED_WORKFLOW] ?? 0;
         $processedCount = 0;
 
-        foreach ($staleWorkflowIds as $wId) {
+        foreach ($staleEntityWorkflows as $staleEntityWorkflow) {
             try {
-                $this->messageBus->dispatch(new CancelStaleWorkflowMessage($wId));
-                $lastCanceled = max($wId, $lastCanceled);
+                $this->messageBus->dispatch(new CancelStaleWorkflowMessage($staleEntityWorkflow->getId()));
+                $lastCanceled = max($staleEntityWorkflow->getId(), $lastCanceled);
                 ++$processedCount;
             } catch (\Exception $e) {
-                $this->logger->error("Failed to dispatch CancelStaleWorkflow for ID {$wId}", ['exception' => $e]);
+                $this->logger->error('Failed to dispatch CancelStaleWorkflow', ['exception' => $e, 'entityWorkflowId' => $staleEntityWorkflow->getId()]);
                 continue;
             }
+
+            if (0 === $processedCount % 10) {
+                $this->entityManager->clear();
+            }
         }
 
         $this->logger->info("Cronjob completed: {$processedCount} workflows processed.");
diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
index 54485dad5..d8f0863fc 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowHandler.php
@@ -18,7 +18,9 @@ use Psr\Log\LoggerInterface;
 use Symfony\Component\Clock\ClockInterface;
 use Symfony\Component\Messenger\Attribute\AsMessageHandler;
 use Symfony\Component\Messenger\Exception\UnrecoverableMessageHandlingException;
+use Symfony\Component\Workflow\Metadata\MetadataStoreInterface;
 use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\Transition;
 
 #[AsMessageHandler]
 final readonly class CancelStaleWorkflowHandler
@@ -57,10 +59,7 @@ final readonly class CancelStaleWorkflowHandler
         $wasInInitialPosition = 'initial' === $workflow->getStep();
 
         foreach ($transitions as $transition) {
-            $isFinal = $metadataStore->getMetadata('isFinal', $transition);
-            $isFinalPositive = $metadataStore->getMetadata('isFinalPositive', $transition);
-
-            if ($isFinal && !$isFinalPositive) {
+            if ($this->willTransitionLeadToFinalNegative($transition, $metadataStore)) {
                 $dto = new WorkflowTransitionContextDTO($workflow);
                 $workflowComponent->apply($workflow, $transition->getName(), [
                     'context' => $dto,
@@ -85,4 +84,16 @@ final readonly class CancelStaleWorkflowHandler
 
         $this->em->flush();
     }
+
+    private function willTransitionLeadToFinalNegative(Transition $transition, MetadataStoreInterface $metadataStore): bool
+    {
+        foreach ($transition->getTos() as $place) {
+            $metadata = $metadataStore->getPlaceMetadata($place);
+            if (($metadata['isFinal'] ?? true) && false === ($metadata['isFinalPositive'] ?? true)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
index a26b29709..6e11a7e9c 100644
--- a/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Repository/EntityWorkflowRepositoryTest.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace ChillMainBundle\Tests\Repository;
 
 use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Bundle\FrameworkBundle\Test\KernelTestCase;
@@ -40,9 +41,13 @@ class EntityWorkflowRepositoryTest extends KernelTestCase
     {
         $repository = new EntityWorkflowRepository($this->em);
 
-        $actual = $repository->findWorkflowsWithoutFinalStepAndOlderThan(new \DateTimeImmutable('10 years ago'));
+        $actual = $repository->findWorkflowsWithoutFinalStepAndOlderThan((new \DateTimeImmutable('now'))->add(new \DateInterval('P10Y')));
 
-        self::assertIsArray($actual, 'check that the query is successful');
+        self::assertIsIterable($actual, 'check that the query is successful');
+
+        foreach ($actual as $entityWorkflow) {
+            self::assertInstanceOf(EntityWorkflow::class, $entityWorkflow);
+        }
     }
 
     public function testCountQueryByDest(): void
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index 200b92099..e560e3871 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -9,12 +9,14 @@ declare(strict_types=1);
  * the LICENSE file that was distributed with this source code.
  */
 
-namespace Services\Workflow;
+namespace ChillMainBundle\Tests\Services\Workflow;
 
 use Chill\MainBundle\Entity\CronJobExecution;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowCronJob;
 use Chill\MainBundle\Service\Workflow\CancelStaleWorkflowMessage;
+use Doctrine\ORM\EntityManagerInterface;
 use PHPUnit\Framework\MockObject\Exception;
 use PHPUnit\Framework\TestCase;
 use Psr\Log\LoggerInterface;
@@ -39,8 +41,9 @@ class CancelStaleWorkflowCronJobTest extends TestCase
     {
         $clock = new MockClock(new \DateTimeImmutable('2024-01-01 00:00:00', new \DateTimeZone('+00:00')));
         $logger = $this->createMock(LoggerInterface::class);
+        $entityManager = $this->createMock(EntityManagerInterface::class);
 
-        $cronJob = new CancelStaleWorkflowCronJob($this->createMock(EntityWorkflowRepository::class), $clock, $this->buildMessageBus(), $logger);
+        $cronJob = new CancelStaleWorkflowCronJob($this->createMock(EntityWorkflowRepository::class), $clock, $this->buildMessageBus(), $logger, $entityManager);
 
         self::assertEquals($expected, $cronJob->canRun($cronJobExecution));
     }
@@ -54,11 +57,16 @@ class CancelStaleWorkflowCronJobTest extends TestCase
     {
         $clock = new MockClock((new \DateTimeImmutable('now', new \DateTimeZone('+00:00')))->add(new \DateInterval('P120D')));
         $workflowRepository = $this->createMock(EntityWorkflowRepository::class);
+        $entityManager = $this->createMock(EntityManagerInterface::class);
 
-        $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([1, 3, 2]);
+        $workflowRepository->method('findWorkflowsWithoutFinalStepAndOlderThan')->willReturn([
+            $this->buildEntityWorkflow(1),
+            $this->buildEntityWorkflow(3),
+            $this->buildEntityWorkflow(2),
+        ]);
         $messageBus = $this->buildMessageBus(true);
 
-        $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, new NullLogger());
+        $cronJob = new CancelStaleWorkflowCronJob($workflowRepository, $clock, $messageBus, new NullLogger(), $entityManager);
 
         $results = $cronJob->run([]);
 
@@ -67,6 +75,16 @@ class CancelStaleWorkflowCronJobTest extends TestCase
         self::assertEquals(3, $results['last-canceled-workflow-id']);
     }
 
+    private function buildEntityWorkflow(int $id): EntityWorkflow
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $reflectionClass = new \ReflectionClass($entityWorkflow);
+        $idProperty = $reflectionClass->getProperty('id');
+        $idProperty->setValue($entityWorkflow, $id);
+
+        return $entityWorkflow;
+    }
+
     /**
      * @throws \Exception
      */
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
index b6cac68de..275adfe75 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowHandlerTest.php
@@ -131,18 +131,22 @@ class CancelStaleWorkflowHandlerTest extends TestCase
             ->setInitialPlaces('initial')
             ->addPlaces(['initial', 'step1', 'canceled', 'final'])
             ->addTransition(new Transition('to_step1', 'initial', 'step1'))
-            ->addTransition($cancelInit = new Transition('cancel', 'initial', 'canceled'))
-            ->addTransition($finalizeInit = new Transition('finalize', 'initial', 'final'))
-            ->addTransition($cancelStep1 = new Transition('cancel', 'step1', 'canceled'))
-            ->addTransition($finalizeStep1 = new Transition('finalize', 'step1', 'final'));
+            ->addTransition(new Transition('cancel', 'initial', 'canceled'))
+            ->addTransition(new Transition('finalize', 'initial', 'final'))
+            ->addTransition(new Transition('cancel', 'step1', 'canceled'))
+            ->addTransition(new Transition('finalize', 'step1', 'final'));
 
-        $transitionStorage = new \SplObjectStorage();
-        $transitionStorage->attach($finalizeInit, ['isFinal' => true, 'isFinalPositive' => true]);
-        $transitionStorage->attach($cancelInit, ['isFinal' => true, 'isFinalPositive' => false]);
-        $transitionStorage->attach($finalizeStep1, ['isFinal' => true, 'isFinalPositive' => true]);
-        $transitionStorage->attach($cancelStep1, ['isFinal' => true, 'isFinalPositive' => false]);
+        $definitionBuilder->setMetadataStore(new InMemoryMetadataStore(placesMetadata: [
+            'canceled' => [
+                'isFinal' => true,
+                'isFinalPositive' => false,
+            ],
+            'final' => [
+                'isFinal' => true,
+                'isFinalPositive', true,
+            ],
+        ]));
 
-        $definitionBuilder->setMetadataStore(new InMemoryMetadataStore([], [], $transitionStorage));
         $workflow = new Workflow($definitionBuilder->build(), new EntityWorkflowMarkingStore(), null, 'dummy_workflow');
         $supports =
             new class () implements WorkflowSupportStrategyInterface {

From fde74b190dc2ef34cb26a0e87f667719a36d609a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 21 Oct 2024 17:45:12 +0200
Subject: [PATCH 336/375] Add mock for TempUrlGeneratorInterface in
 StoredObjectTypeTest

Updated the StoredObjectNormalizer initialization to include a mock for TempUrlGeneratorInterface. This ensures tests handle all dependencies of StoredObjectNormalizer correctly.
---
 .../ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php   | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
index 9bf5ff33b..4e7aa132c 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Form/StoredObjectTypeTest.php
@@ -11,6 +11,7 @@ declare(strict_types=1);
 
 namespace Chill\DocStoreBundle\Tests\Form;
 
+use Chill\DocStoreBundle\AsyncUpload\TempUrlGeneratorInterface;
 use Chill\DocStoreBundle\Entity\StoredObject;
 use Chill\DocStoreBundle\Form\DataMapper\StoredObjectDataMapper;
 use Chill\DocStoreBundle\Form\DataTransformer\StoredObjectDataTransformer;
@@ -132,7 +133,8 @@ class StoredObjectTypeTest extends TypeTestCase
                 new StoredObjectNormalizer(
                     $jwtTokenProvider->reveal(),
                     $urlGenerator->reveal(),
-                    $security->reveal()
+                    $security->reveal(),
+                    $this->createMock(TempUrlGeneratorInterface::class)
                 ),
                 new StoredObjectDenormalizer($storedObjectRepository->reveal()),
                 new StoredObjectVersionNormalizer(),

From c8770764298cac00d217da11f8439ff1c60cafe7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 22 Oct 2024 23:15:03 +0200
Subject: [PATCH 337/375] Add and update test handlers for suggested users
 retrieval

Introduced new test files for workflow handlers and adjusted existing `getSuggestedUsers` methods to handle related entity checks and duplicates removal. Also, modified repos to align with test dependencies.
---
 ...nyingCourseDocumentWorkflowHandlerTest.php | 86 +++++++++++++++++++
 ...ompanyingCourseDocumentWorkflowHandler.php | 24 +++++-
 ...PeriodWorkEvaluationDocumentRepository.php |  4 +-
 .../AccompanyingPeriodWorkRepository.php      |  6 +-
 ...kEvaluationDocumentWorkflowHandlerTest.php | 82 ++++++++++++++++++
 ...eriodWorkEvaluationWorkflowHandlerTest.php | 72 ++++++++++++++++
 ...ompanyingPeriodWorkWorkflowHandlerTest.php | 73 ++++++++++++++++
 ...dWorkEvaluationDocumentWorkflowHandler.php | 31 +++++--
 ...ingPeriodWorkEvaluationWorkflowHandler.php | 30 +++++--
 .../AccompanyingPeriodWorkWorkflowHandler.php | 31 +++++--
 10 files changed, 410 insertions(+), 29 deletions(-)
 create mode 100644 src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
new file mode 100644
index 000000000..e40b240f4
--- /dev/null
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
@@ -0,0 +1,86 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\DocStoreBundle\Tests\Workflow;
+
+use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
+use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Contracts\Translation\TranslatorInterface;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingCourseDocumentWorkflowHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testGetSuggestedUsers()
+    {
+        $accompanyingPeriod = new AccompanyingPeriod();
+        $document = new AccompanyingCourseDocument();
+        $document->setCourse($accompanyingPeriod)->setUser($user1 = new User());
+        $accompanyingPeriod->setUser($user = new User());
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setRelatedEntityId(1);
+
+        $handler = new AccompanyingCourseDocumentWorkflowHandler(
+            $this->prophesize(TranslatorInterface::class)->reveal(),
+            $this->prophesize(EntityWorkflowRepository::class)->reveal(),
+            $this->buildRepository($document, 1),
+            new WorkflowWithPublicViewDocumentHelper($this->prophesize(Environment::class)->reveal()),
+        );
+
+        $users = $handler->getSuggestedUsers($entityWorkflow);
+
+        self::assertCount(2, $users);
+        self::assertContains($user, $users);
+        self::assertContains($user1, $users);
+    }
+
+    public function testGetSuggestedUsersWithDuplicates()
+    {
+        $accompanyingPeriod = new AccompanyingPeriod();
+        $document = new AccompanyingCourseDocument();
+        $document->setCourse($accompanyingPeriod)->setUser($user1 = new User());
+        $accompanyingPeriod->setUser($user1);
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setRelatedEntityId(1);
+
+        $handler = new AccompanyingCourseDocumentWorkflowHandler(
+            $this->prophesize(TranslatorInterface::class)->reveal(),
+            $this->prophesize(EntityWorkflowRepository::class)->reveal(),
+            $this->buildRepository($document, 1),
+            new WorkflowWithPublicViewDocumentHelper($this->prophesize(Environment::class)->reveal()),
+        );
+
+        $users = $handler->getSuggestedUsers($entityWorkflow);
+
+        self::assertCount(1, $users);
+        self::assertContains($user1, $users);
+    }
+
+    private function buildRepository(AccompanyingCourseDocument $document, int $id): AccompanyingCourseDocumentRepository
+    {
+        $repository = $this->prophesize(AccompanyingCourseDocumentRepository::class);
+        $repository->find($id)->willReturn($document);
+
+        return $repository->reveal();
+    }
+}
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index 4f4655b94..b98e5d4a9 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -91,12 +91,28 @@ final readonly class AccompanyingCourseDocumentWorkflowHandler implements Entity
 
     public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array
     {
-        $suggestedUsers = $entityWorkflow->getUsersInvolved();
+        $related = $this->getRelatedEntity($entityWorkflow);
 
-        $referrer = $this->getRelatedEntity($entityWorkflow)->getCourse()->getUser();
-        $suggestedUsers[spl_object_hash($referrer)] = $referrer;
+        if (null === $related) {
+            return [];
+        }
 
-        return $suggestedUsers;
+        $users = [];
+        if (null !== $user = $related->getUser()) {
+            $users[] = $user;
+        }
+        if (null !== $user = $related->getCourse()->getUser()) {
+            $users[] = $user;
+        }
+
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $users,
+                fn ($o, $k) => array_search($o, $users, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
     }
 
     public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
index e3a484f0b..6baa0d069 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkEvaluationDocumentRepository.php
@@ -19,9 +19,9 @@ use Doctrine\ORM\EntityRepository;
 use Doctrine\ORM\NonUniqueResultException;
 use Doctrine\Persistence\ObjectRepository;
 
-readonly class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
+class AccompanyingPeriodWorkEvaluationDocumentRepository implements ObjectRepository, AssociatedEntityToStoredObjectInterface
 {
-    private EntityRepository $repository;
+    private readonly EntityRepository $repository;
 
     public function __construct(EntityManagerInterface $em)
     {
diff --git a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
index 95b995e74..0d5bf5eee 100644
--- a/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
+++ b/src/Bundle/ChillPersonBundle/Repository/AccompanyingPeriod/AccompanyingPeriodWorkRepository.php
@@ -22,11 +22,11 @@ use Doctrine\ORM\Query\ResultSetMappingBuilder;
 use Doctrine\ORM\QueryBuilder;
 use Doctrine\Persistence\ObjectRepository;
 
-final readonly class AccompanyingPeriodWorkRepository implements ObjectRepository
+class AccompanyingPeriodWorkRepository implements ObjectRepository
 {
-    private EntityRepository $repository;
+    private readonly EntityRepository $repository;
 
-    public function __construct(private EntityManagerInterface $em)
+    public function __construct(private readonly EntityManagerInterface $em)
     {
         $this->repository = $em->getRepository(AccompanyingPeriodWork::class);
     }
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
new file mode 100644
index 000000000..2e7076a4d
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
@@ -0,0 +1,82 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Workflow;
+
+use Chill\DocStoreBundle\Workflow\WorkflowWithPublicViewDocumentHelper;
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
+use Chill\PersonBundle\Workflow\AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Contracts\Translation\TranslatorInterface;
+use Twig\Environment;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testGetSuggestedUsers()
+    {
+        $accompanyingCourse = new AccompanyingPeriod();
+        $accompanyingCourse->setUser($referrer = new User());
+        $accompanyingCourse->addWork($work = new AccompanyingPeriod\AccompanyingPeriodWork());
+        $work->addReferrer($workReferrer1 = new User());
+        $work->addReferrer($workReferrer2 = new User());
+        $work->addReferrer($referrer);
+        $work->addAccompanyingPeriodWorkEvaluation($eval = new AccompanyingPeriod\AccompanyingPeriodWorkEvaluation());
+        $eval->addDocument($doc = new AccompanyingPeriodWorkEvaluationDocument());
+        $entityWorkflow = new EntityWorkflow();
+
+        // Prophesize each dependency
+        $workflowRepositoryProphecy = $this->prophesize(EntityWorkflowRepository::class);
+        $translatableStringHelperProphecy = $this->prophesize(TranslatableStringHelperInterface::class);
+        $translatorProphecy = $this->prophesize(TranslatorInterface::class);
+        $twig = $this->prophesize(Environment::class);
+
+        // Create an instance of the class under test using revealed prophecies directly
+        $handler = new AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler(
+            $this->buildRepository($doc, 1),
+            $workflowRepositoryProphecy->reveal(),
+            $translatableStringHelperProphecy->reveal(),
+            $translatorProphecy->reveal(),
+            new WorkflowWithPublicViewDocumentHelper($twig->reveal()),
+        );
+
+        $entityWorkflow->setRelatedEntityId(1);
+        $entityWorkflow->setRelatedEntityClass(AccompanyingPeriodWorkEvaluationDocument::class);
+
+        $users = $handler->getSuggestedUsers($entityWorkflow);
+
+        self::assertContains($referrer, $users);
+        self::assertContains($workReferrer1, $users);
+        self::assertContains($workReferrer2, $users);
+    }
+
+    private function buildRepository(AccompanyingPeriodWorkEvaluationDocument $document, int $id): AccompanyingPeriodWorkEvaluationDocumentRepository
+    {
+        $repository = $this->prophesize(AccompanyingPeriodWorkEvaluationDocumentRepository::class);
+
+        $repository->find($id)->willReturn($document);
+
+        return $repository->reveal();
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
new file mode 100644
index 000000000..1f62e5bb3
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
@@ -0,0 +1,72 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationRepository;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingPeriodWorkEvaluationWorkflowHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testGetSuggestedUsers()
+    {
+        $accompanyingCourse = new AccompanyingPeriod();
+        $accompanyingCourse->setUser($referrer = new User());
+        $accompanyingCourse->addWork($work = new AccompanyingPeriod\AccompanyingPeriodWork());
+        $work->addReferrer($workReferrer1 = new User());
+        $work->addReferrer($workReferrer2 = new User());
+        $work->addReferrer($referrer);
+        $work->addAccompanyingPeriodWorkEvaluation($eval = new AccompanyingPeriod\AccompanyingPeriodWorkEvaluation());
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setRelatedEntityId(1);
+
+        // Prophesize each dependency
+        $workflowRepositoryProphecy = $this->prophesize(EntityWorkflowRepository::class);
+        $translatableStringHelperProphecy = $this->prophesize(TranslatableStringHelperInterface::class);
+        $translatorProphecy = $this->prophesize(TranslatorInterface::class);
+
+        // Create an instance of the class under test using revealed prophecies directly
+        $handler = new AccompanyingPeriodWorkEvaluationWorkflowHandler(
+            $this->buildRepository($eval, 1),
+            $workflowRepositoryProphecy->reveal(),
+            $translatableStringHelperProphecy->reveal(),
+            $translatorProphecy->reveal(),
+        );
+
+        $users = $handler->getSuggestedUsers($entityWorkflow);
+
+        self::assertContains($referrer, $users);
+        self::assertContains($workReferrer1, $users);
+        self::assertContains($workReferrer2, $users);
+    }
+
+    private function buildRepository(AccompanyingPeriod\AccompanyingPeriodWorkEvaluation $evaluation, int $id): AccompanyingPeriodWorkEvaluationRepository
+    {
+        $evaluationRepositoryProphecy = $this->prophesize(AccompanyingPeriodWorkEvaluationRepository::class);
+        $evaluationRepositoryProphecy->find($id)->willReturn($evaluation);
+
+        return $evaluationRepositoryProphecy->reveal();
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php
new file mode 100644
index 000000000..1d3702871
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php
@@ -0,0 +1,73 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
+use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
+use PHPUnit\Framework\TestCase;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Contracts\Translation\TranslatorInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class AccompanyingPeriodWorkWorkflowHandlerTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testGetSuggestedUsers()
+    {
+        $accompanyingCourse = new AccompanyingPeriod();
+        $accompanyingCourse->setUser($referrer = new User());
+        $accompanyingCourse->addWork($work = new AccompanyingPeriod\AccompanyingPeriodWork());
+        $work->addReferrer($workReferrer1 = new User());
+        $work->addReferrer($workReferrer2 = new User());
+        $work->addReferrer($referrer);
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setRelatedEntityId(1);
+
+        // Prophesize each dependency
+        $workflowRepositoryProphecy = $this->prophesize(EntityWorkflowRepository::class);
+        $translatableStringHelperProphecy = $this->prophesize(TranslatableStringHelperInterface::class);
+        $translatorProphecy = $this->prophesize(TranslatorInterface::class);
+
+        // Create an instance of the class under test using revealed prophecies directly
+        $handler = new AccompanyingPeriodWorkWorkflowHandler(
+            $this->buildRepository($work, 1),
+            $workflowRepositoryProphecy->reveal(),
+            $translatableStringHelperProphecy->reveal(),
+            $translatorProphecy->reveal(),
+        );
+
+        $users = $handler->getSuggestedUsers($entityWorkflow);
+
+        self::assertContains($referrer, $users);
+        self::assertContains($workReferrer1, $users);
+        self::assertContains($workReferrer2, $users);
+    }
+
+    private function buildRepository(AccompanyingPeriod\AccompanyingPeriodWork $work, int $int): AccompanyingPeriodWorkRepository
+    {
+        $accompanyingPeriodWorkRepositoryProphecy = $this->prophesize(AccompanyingPeriodWorkRepository::class);
+        $accompanyingPeriodWorkRepositoryProphecy
+            ->find($int)
+            ->willReturn($work);
+
+        return $accompanyingPeriodWorkRepositoryProphecy->reveal();
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index e2f8e7666..1168d8f35 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -98,17 +98,36 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
 
     public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array
     {
-        $suggestedUsers = $entityWorkflow->getUsersInvolved();
+        $related = $this->getRelatedEntity($entityWorkflow);
 
-        $referrer = $this->getRelatedEntity($entityWorkflow)
-            ->getAccompanyingPeriodWorkEvaluation()
+        if (null === $related) {
+            return [];
+        }
+
+        $users = [];
+        if (null !== $referrer = $related->getAccompanyingPeriodWorkEvaluation()
             ->getAccompanyingPeriodWork()
             ->getAccompanyingPeriod()
-            ->getUser();
+            ->getUser()
+        ) {
+            $users[] = $referrer;
+        }
 
-        $suggestedUsers[spl_object_hash($referrer)] = $referrer;
+        foreach ($related->getAccompanyingPeriodWorkEvaluation()
+            ->getAccompanyingPeriodWork()
+            ->getReferrersHistoryCurrent() as $referrerHistory
+        ) {
+            $users[] = $referrerHistory->getUser();
+        }
 
-        return $suggestedUsers;
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $users,
+                fn ($o, $k) => array_search($o, $users, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
     }
 
     public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index e619532ff..302bbb0be 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -81,16 +81,34 @@ readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements Entity
 
     public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array
     {
-        $suggestedUsers = $entityWorkflow->getUsersInvolved();
+        $related = $this->getRelatedEntity($entityWorkflow);
 
-        $referrer = $this->getRelatedEntity($entityWorkflow)
-            ->getAccompanyingPeriodWork()
+        if (null === $related) {
+            return [];
+        }
+
+        $users = [];
+        if (null !== $referrer = $related->getAccompanyingPeriodWork()
             ->getAccompanyingPeriod()
-            ->getUser();
+            ->getUser()
+        ) {
+            $users[] = $referrer;
+        }
 
-        $suggestedUsers[spl_object_hash($referrer)] = $referrer;
+        foreach ($related->getAccompanyingPeriodWork()
+            ->getReferrersHistoryCurrent() as $referrerHistory
+        ) {
+            $users[] = $referrerHistory->getUser();
+        }
 
-        return $suggestedUsers;
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $users,
+                fn ($o, $k) => array_search($o, $users, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
     }
 
     public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 772523ad5..8a7b5ef48 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -87,17 +87,32 @@ readonly class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHa
 
     public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array
     {
-        $suggestedUsers = $entityWorkflow->getUsersInvolved();
+        $related = $this->getRelatedEntity($entityWorkflow);
 
-        $referrer = $this->getRelatedEntity($entityWorkflow)
-            ->getAccompanyingPeriod()
-            ->getUser();
-
-        if (null !== $referrer) {
-            $suggestedUsers[spl_object_hash($referrer)] = $referrer;
+        if (null === $related) {
+            return [];
         }
 
-        return $suggestedUsers;
+        $users = [];
+        if (null !== $referrer = $related->getAccompanyingPeriod()
+            ->getUser()
+        ) {
+            $users[] = $referrer;
+        }
+
+        foreach ($related->getReferrersHistoryCurrent() as $referrerHistory
+        ) {
+            $users[] = $referrerHistory->getUser();
+        }
+
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $users,
+                fn ($o, $k) => array_search($o, $users, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
     }
 
     public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string

From 85dc9bdb2fb6a66c5f98ba8f7423bbd2bcb8ffb0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 22 Oct 2024 23:35:13 +0200
Subject: [PATCH 338/375] Add `getSuggestedUsers` method in
 `EntityWorkflowManager`

Implemented the method to retrieve a list of suggested users for an entity workflow, filtering out duplicates. Added corresponding unit tests to verify the method's functionality and ensure its correctness in various scenarios.
---
 .../Workflow/EntityWorkflowManagerTest.php    | 49 +++++++++++++++++++
 .../Workflow/EntityWorkflowManager.php        | 27 ++++++++++
 2 files changed, 76 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowManagerTest.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowManagerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowManagerTest.php
new file mode 100644
index 000000000..4570d86b8
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EntityWorkflowManagerTest.php
@@ -0,0 +1,49 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\Workflow\Registry;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowManagerTest extends TestCase
+{
+    public function testGetSuggestedUsers()
+    {
+        $user1 = new User();
+        $user2 = new User();
+        $entityWorkflow = $this->createMock(EntityWorkflow::class);
+        $entityWorkflow->method('getUsersInvolved')->willReturn([$user1, $user2]);
+
+        $user3 = new User();
+        $handler = $this->createMock(EntityWorkflowHandlerInterface::class);
+        $handler->method('getSuggestedUsers')->willReturn([$user1, $user3]);
+        $handler->method('supports')->willReturn(true);
+
+        $manager = new EntityWorkflowManager([$handler], new Registry());
+
+        $users = $manager->getSuggestedUsers($entityWorkflow);
+
+        self::assertcount(3, $users);
+        self::assertContains($user1, $users);
+        self::assertContains($user2, $users);
+        self::assertContains($user3, $users);
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index f1c87fd4e..16cfd66b7 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -12,6 +12,7 @@ declare(strict_types=1);
 namespace Chill\MainBundle\Workflow;
 
 use Chill\DocStoreBundle\Entity\StoredObject;
+use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Workflow\Exception\HandlerNotFoundException;
@@ -93,4 +94,30 @@ class EntityWorkflowManager
 
         throw new HandlerWithPublicViewNotFoundException();
     }
+
+    /**
+     * @return list<User>
+     */
+    public function getSuggestedUsers(EntityWorkflow $entityWorkflow, bool $addUsersInvolved = true): array
+    {
+        $users = [];
+        if ($addUsersInvolved) {
+            foreach ($entityWorkflow->getUsersInvolved() as $user) {
+                $users[] = $user;
+            }
+        }
+
+        foreach ($this->getHandler($entityWorkflow)->getSuggestedUsers($entityWorkflow) as $user) {
+            $users[] = $user;
+        }
+
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $users,
+                fn ($o, $k) => array_search($o, $users, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
+    }
 }

From 968835a2626f3811179c0ec851adc64ac0566e7e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 22 Oct 2024 23:51:48 +0200
Subject: [PATCH 339/375] Refactor user suggestion logic in workflow

Removed duplicate user suggestion handling from `WorkflowController` and centralized it in `WorkflowStepType`. This change simplifies the controller and makes user suggestion logic more maintainable.
---
 .../ChillMainBundle/Controller/WorkflowController.php |  7 -------
 src/Bundle/ChillMainBundle/Form/WorkflowStepType.php  | 11 +++++++----
 2 files changed, 7 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
index e10cac6a4..1f1372cd2 100644
--- a/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
+++ b/src/Bundle/ChillMainBundle/Controller/WorkflowController.php
@@ -300,19 +300,12 @@ class WorkflowController extends AbstractController
         if (\count($workflow->getEnabledTransitions($entityWorkflow)) > 0) {
             // possible transition
             $stepDTO = new WorkflowTransitionContextDTO($entityWorkflow);
-            $usersInvolved = $entityWorkflow->getUsersInvolved();
-            $currentUserFound = array_search($this->security->getUser(), $usersInvolved, true);
-
-            if (false !== $currentUserFound) {
-                unset($usersInvolved[$currentUserFound]);
-            }
 
             $transitionForm = $this->createForm(
                 WorkflowStepType::class,
                 $stepDTO,
                 [
                     'entity_workflow' => $entityWorkflow,
-                    'suggested_users' => $usersInvolved,
                 ]
             );
 
diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index e5769a28e..18afc5c58 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -17,6 +17,7 @@ use Chill\MainBundle\Form\Type\ChillTextareaType;
 use Chill\MainBundle\Form\Type\PickUserDynamicType;
 use Chill\MainBundle\Form\Type\PickUserGroupOrUserDynamicType;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
 use Chill\PersonBundle\Form\Type\PickPersonDynamicType;
 use Chill\ThirdPartyBundle\Form\Type\PickThirdpartyDynamicType;
@@ -34,6 +35,7 @@ class WorkflowStepType extends AbstractType
     public function __construct(
         private readonly Registry $registry,
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
+        private readonly EntityWorkflowManager $entityWorkflowManager,
     ) {}
 
     public function buildForm(FormBuilderInterface $builder, array $options)
@@ -43,6 +45,7 @@ class WorkflowStepType extends AbstractType
         $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
         $place = $workflow->getMarking($entityWorkflow);
         $placeMetadata = $workflow->getMetadataStore()->getPlaceMetadata(array_keys($place->getPlaces())[0]);
+        $suggestedUsers = $this->entityWorkflowManager->getSuggestedUsers($entityWorkflow);
 
         if (null === $options['entity_workflow']) {
             throw new \LogicException('if transition is true, entity_workflow should be defined');
@@ -157,19 +160,20 @@ class WorkflowStepType extends AbstractType
                 'label' => 'workflow.signature_zone.user signature',
                 'multiple' => false,
                 'suggest_myself' => true,
+                'suggested' => $suggestedUsers,
             ])
             ->add('futureDestUsers', PickUserGroupOrUserDynamicType::class, [
                 'label' => 'workflow.dest for next steps',
                 'multiple' => true,
                 'empty_data' => '[]',
-                'suggested' => $options['suggested_users'],
+                'suggested' => $suggestedUsers,
                 'suggest_myself' => true,
             ])
             ->add('futureCcUsers', PickUserDynamicType::class, [
                 'label' => 'workflow.cc for next steps',
                 'multiple' => true,
                 'required' => false,
-                'suggested' => $options['suggested_users'],
+                'suggested' => $suggestedUsers,
                 'empty_data' => '[]',
                 'attr' => ['class' => 'future-cc-users'],
                 'suggest_myself' => true,
@@ -207,7 +211,6 @@ class WorkflowStepType extends AbstractType
         $resolver
             ->setDefault('data_class', WorkflowTransitionContextDTO::class)
             ->setRequired('entity_workflow')
-            ->setAllowedTypes('entity_workflow', EntityWorkflow::class)
-            ->setDefault('suggested_users', []);
+            ->setAllowedTypes('entity_workflow', EntityWorkflow::class);
     }
 }

From 4f18b1d2b2a968086c24a3f0b3008ea340d929a4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 00:51:09 +0200
Subject: [PATCH 340/375] Add services and tests for associated entities
 management

Implemented services to provide associated persons and third parties for accompanying periods and their works. Included comprehensive tests to ensure proper functionality and associations.
---
 .../ProvidePersonsAssociated.php              | 34 ++++++++++++
 .../ProvideThirdPartiesAssociated.php         | 50 ++++++++++++++++++
 .../ProvidePersonsAssociated.php              | 32 ++++++++++++
 .../ProvideThirdPartiesAssociated.php         | 49 +++++++++++++++++
 .../ProvideThirdPartiesAssociatedTest.php     | 45 ++++++++++++++++
 .../ProvideThirdPartiesAssociatedTest.php     | 52 +++++++++++++++++++
 6 files changed, 262 insertions(+)
 create mode 100644 src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvidePersonsAssociated.php
 create mode 100644 src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvideThirdPartiesAssociated.php
 create mode 100644 src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvidePersonsAssociated.php
 create mode 100644 src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociated.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriod/ProvideThirdPartiesAssociatedTest.php
 create mode 100644 src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociatedTest.php

diff --git a/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvidePersonsAssociated.php b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvidePersonsAssociated.php
new file mode 100644
index 000000000..af1ae6e0f
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvidePersonsAssociated.php
@@ -0,0 +1,34 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Service\AccompanyingPeriod;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
+use Chill\PersonBundle\Entity\Person;
+
+/**
+ * Provide persons associated with an accompanying period.
+ */
+class ProvidePersonsAssociated
+{
+    /**
+     * @return list<Person>
+     */
+    public function getPersonsAssociated(AccompanyingPeriod $period): array
+    {
+        return array_values(
+            $period->getCurrentParticipations()
+                ->map(fn (AccompanyingPeriodParticipation $participation) => $participation->getPerson())
+                ->toArray()
+        );
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvideThirdPartiesAssociated.php b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvideThirdPartiesAssociated.php
new file mode 100644
index 000000000..5aa24bcda
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriod/ProvideThirdPartiesAssociated.php
@@ -0,0 +1,50 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Service\AccompanyingPeriod;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\AccompanyingPeriod\Resource;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+
+/**
+ * Provide third parties participating to an AccompanyingPeriod.
+ */
+class ProvideThirdPartiesAssociated
+{
+    /**
+     * @return list<ThirdParty>
+     */
+    public function getThirdPartiesAssociated(AccompanyingPeriod $period): array
+    {
+        $thirdParties = [];
+
+        foreach (
+            $period
+                ->getResources()->filter(fn (Resource $resource) => null !== $resource->getThirdParty())
+                ->map(fn (Resource $resource) => $resource->getThirdParty()) as $thirdParty) {
+            $thirdParties[] = $thirdParty;
+        }
+
+        if (null !== $requestor = $period->getRequestorThirdParty()) {
+            $thirdParties[] = $requestor;
+        }
+
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $thirdParties,
+                fn ($o, $k) => array_search($o, $thirdParties, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvidePersonsAssociated.php b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvidePersonsAssociated.php
new file mode 100644
index 000000000..5fd885948
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvidePersonsAssociated.php
@@ -0,0 +1,32 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Service\AccompanyingPeriodWork;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\Person;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvidePersonsAssociated as ProvidePersonsAssociatedAccompanyingPeriod;
+
+/**
+ * Provide persons associated with an accompanying period work.
+ */
+class ProvidePersonsAssociated
+{
+    public function __construct(private readonly ProvidePersonsAssociatedAccompanyingPeriod $providePersonsAssociated) {}
+
+    /**
+     * @return list<Person>
+     */
+    public function getPersonsAssociated(AccompanyingPeriod\AccompanyingPeriodWork $work): array
+    {
+        return $this->providePersonsAssociated->getPersonsAssociated($work->getAccompanyingPeriod());
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociated.php b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociated.php
new file mode 100644
index 000000000..2aa73935d
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociated.php
@@ -0,0 +1,49 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Service\AccompanyingPeriodWork;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWork;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvideThirdPartiesAssociated as ProvideThirdPartiesAssociatedAccompanyingPeriod;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+
+/**
+ * Provide third parties associated with an accompanying period work.
+ */
+class ProvideThirdPartiesAssociated
+{
+    public function __construct(private readonly ProvideThirdPartiesAssociatedAccompanyingPeriod $thirdPartiesAssociated) {}
+
+    /**
+     * @return list<ThirdParty>
+     */
+    public function getThirdPartiesAssociated(AccompanyingPeriodWork $accompanyingPeriodWork): array
+    {
+        $thirdParties = $this->thirdPartiesAssociated->getThirdPartiesAssociated($accompanyingPeriodWork->getAccompanyingPeriod());
+
+        if (null !== $tp = $accompanyingPeriodWork->getHandlingThierParty()) {
+            $thirdParties[] = $tp;
+        }
+
+        foreach ($accompanyingPeriodWork->getThirdParties() as $thirdParty) {
+            $thirdParties[] = $thirdParty;
+        }
+
+        return array_values(
+            // filter objects to remove duplicates
+            array_filter(
+                $thirdParties,
+                fn ($o, $k) => array_search($o, $thirdParties, true) === $k,
+                ARRAY_FILTER_USE_BOTH
+            )
+        );
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriod/ProvideThirdPartiesAssociatedTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriod/ProvideThirdPartiesAssociatedTest.php
new file mode 100644
index 000000000..ccc2a902e
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriod/ProvideThirdPartiesAssociatedTest.php
@@ -0,0 +1,45 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Service\AccompanyingPeriod;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\Person;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvideThirdPartiesAssociated;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use PHPUnit\Framework\TestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class ProvideThirdPartiesAssociatedTest extends TestCase
+{
+    public function testGetThirdPartiesAssociated()
+    {
+        $period = new AccompanyingPeriod();
+        $period->setRequestor($tp1 = new ThirdParty());
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($tp1));
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($tp2 = new ThirdParty()));
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($p1 = new Person()));
+
+        $provider = new ProvideThirdPartiesAssociated();
+
+        $thirdParties = $provider->getThirdPartiesAssociated($period);
+
+        self::assertCount(2, $thirdParties);
+        self::assertContains($tp1, $thirdParties);
+        self::assertContains($tp2, $thirdParties);
+        self::assertNotContains($p1, $thirdParties);
+        self::assertNotContains(null, $thirdParties);
+    }
+}
diff --git a/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociatedTest.php b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociatedTest.php
new file mode 100644
index 000000000..5ce7b953e
--- /dev/null
+++ b/src/Bundle/ChillPersonBundle/Tests/Service/AccompanyingPeriodWork/ProvideThirdPartiesAssociatedTest.php
@@ -0,0 +1,52 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\PersonBundle\Tests\Service\AccompanyingPeriodWork;
+
+use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Entity\Person;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
+use PHPUnit\Framework\TestCase;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class ProvideThirdPartiesAssociatedTest extends TestCase
+{
+    public function testGetThirdPartiesAssociated()
+    {
+        $period = new AccompanyingPeriod();
+        $period->setRequestor($tp1 = new ThirdParty());
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($tp1));
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($tp2 = new ThirdParty()));
+        $period->addResource((new AccompanyingPeriod\Resource())->setResource($p1 = new Person()));
+        $period->addWork($work = new AccompanyingPeriod\AccompanyingPeriodWork());
+        $work->addThirdParty($tp3 = new ThirdParty());
+        $work->addThirdParty($tp1);
+        $work->setHandlingThierParty($tp4 = new ThirdParty());
+
+        $providerAccPeriod = new \Chill\PersonBundle\Service\AccompanyingPeriod\ProvideThirdPartiesAssociated();
+        $provider = new ProvideThirdPartiesAssociated($providerAccPeriod);
+
+
+        $thirdParties = $provider->getThirdPartiesAssociated($work);
+
+        self::assertContains($tp1, $thirdParties);
+        self::assertContains($tp2, $thirdParties);
+        self::assertContains($tp3, $thirdParties);
+        self::assertContains($tp4, $thirdParties);
+        self::assertNotContains($p1, $thirdParties);
+        self::assertCount(4, $thirdParties);
+    }
+}

From 261bc88b5ea09b0e9dab30ea11f428d625e5095b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 01:06:15 +0200
Subject: [PATCH 341/375] Add suggested persons and third parties methods

Introduced getSuggestedPersons and getSuggestedThirdParties methods across various WorkflowHandlers. These methods integrate with ProvidePersonsAssociated and ProvideThirdPartiesAssociated services to fetch related entities, enhancing the workflow handling capabilities.
---
 ...nyingCourseDocumentWorkflowHandlerTest.php |  8 ++++++
 ...ompanyingCourseDocumentWorkflowHandler.php | 26 +++++++++++++++++++
 .../WorkflowViewSendPublicControllerTest.php  | 10 +++++++
 .../EntityWorkflowHandlerInterface.php        | 12 +++++++++
 .../Workflow/EntityWorkflowManager.php        | 18 +++++++++++++
 ...kEvaluationDocumentWorkflowHandlerTest.php |  4 +++
 ...eriodWorkEvaluationWorkflowHandlerTest.php |  5 ++++
 ...ompanyingPeriodWorkWorkflowHandlerTest.php |  5 ++++
 ...dWorkEvaluationDocumentWorkflowHandler.php | 26 +++++++++++++++++++
 ...ingPeriodWorkEvaluationWorkflowHandler.php | 26 +++++++++++++++++++
 .../AccompanyingPeriodWorkWorkflowHandler.php | 26 +++++++++++++++++++
 11 files changed, 166 insertions(+)

diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
index e40b240f4..cf8bc9c7c 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Workflow/AccompanyingCourseDocumentWorkflowHandlerTest.php
@@ -13,10 +13,14 @@ namespace Chill\DocStoreBundle\Tests\Workflow;
 
 use Chill\DocStoreBundle\Entity\AccompanyingCourseDocument;
 use Chill\DocStoreBundle\Repository\AccompanyingCourseDocumentRepository;
+use Chill\DocStoreBundle\Workflow\AccompanyingCourseDocumentWorkflowHandler;
+use Chill\DocStoreBundle\Workflow\WorkflowWithPublicViewDocumentHelper;
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvideThirdPartiesAssociated;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -45,6 +49,8 @@ class AccompanyingCourseDocumentWorkflowHandlerTest extends TestCase
             $this->prophesize(EntityWorkflowRepository::class)->reveal(),
             $this->buildRepository($document, 1),
             new WorkflowWithPublicViewDocumentHelper($this->prophesize(Environment::class)->reveal()),
+            $this->prophesize(ProvideThirdPartiesAssociated::class)->reveal(),
+            $this->prophesize(ProvidePersonsAssociated::class)->reveal(),
         );
 
         $users = $handler->getSuggestedUsers($entityWorkflow);
@@ -68,6 +74,8 @@ class AccompanyingCourseDocumentWorkflowHandlerTest extends TestCase
             $this->prophesize(EntityWorkflowRepository::class)->reveal(),
             $this->buildRepository($document, 1),
             new WorkflowWithPublicViewDocumentHelper($this->prophesize(Environment::class)->reveal()),
+            $this->prophesize(ProvideThirdPartiesAssociated::class)->reveal(),
+            $this->prophesize(ProvidePersonsAssociated::class)->reveal(),
         );
 
         $users = $handler->getSuggestedUsers($entityWorkflow);
diff --git a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
index b98e5d4a9..193568286 100644
--- a/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillDocStoreBundle/Workflow/AccompanyingCourseDocumentWorkflowHandler.php
@@ -22,6 +22,8 @@ use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
 use Chill\MainBundle\Workflow\EntityWorkflowWithStoredObjectHandlerInterface;
 use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Chill\PersonBundle\Entity\AccompanyingPeriodParticipation;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvideThirdPartiesAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriod\ProvidePersonsAssociated;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
@@ -34,6 +36,8 @@ final readonly class AccompanyingCourseDocumentWorkflowHandler implements Entity
         private EntityWorkflowRepository $workflowRepository,
         private AccompanyingCourseDocumentRepository $repository,
         private WorkflowWithPublicViewDocumentHelper $publicViewDocumentHelper,
+        private ProvideThirdPartiesAssociated $thirdPartiesAssociated,
+        private ProvidePersonsAssociated $providePersonsAssociated,
     ) {}
 
     public function getDeletionRoles(): array
@@ -161,4 +165,26 @@ final readonly class AccompanyingCourseDocumentWorkflowHandler implements Entity
     {
         return $this->publicViewDocumentHelper->render($entityWorkflowSend, $metadata, $this);
     }
+
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->providePersonsAssociated->getPersonsAssociated($related->getCourse());
+    }
+
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->thirdPartiesAssociated->getThirdPartiesAssociated($related->getCourse());
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
index 02bee8f4f..d5a4d6561 100644
--- a/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Controller/WorkflowViewSendPublicControllerTest.php
@@ -238,6 +238,16 @@ class WorkflowViewSendPublicControllerTest extends TestCase
             {
                 return 'content';
             }
+
+            public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+            {
+                return [];
+            }
+
+            public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+            {
+                return [];
+            }
         };
     }
 
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
index c0d6469f6..0cc03084e 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowHandlerInterface.php
@@ -13,6 +13,8 @@ namespace Chill\MainBundle\Workflow;
 
 use Chill\MainBundle\Entity\User;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\PersonBundle\Entity\Person;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
 
 /**
  * @template T of object
@@ -48,6 +50,16 @@ interface EntityWorkflowHandlerInterface
      */
     public function getSuggestedUsers(EntityWorkflow $entityWorkflow): array;
 
+    /**
+     * @return list<Person>
+     */
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array;
+
+    /**
+     * @return list<ThirdParty>
+     */
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array;
+
     public function getTemplate(EntityWorkflow $entityWorkflow, array $options = []): string;
 
     public function getTemplateData(EntityWorkflow $entityWorkflow, array $options = []): array;
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 16cfd66b7..474370127 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -18,6 +18,8 @@ use Chill\MainBundle\Entity\Workflow\EntityWorkflowSend;
 use Chill\MainBundle\Workflow\Exception\HandlerNotFoundException;
 use Chill\MainBundle\Workflow\Exception\HandlerWithPublicViewNotFoundException;
 use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
+use Chill\PersonBundle\Entity\Person;
+use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Symfony\Component\Workflow\Registry;
 
 /**
@@ -120,4 +122,20 @@ class EntityWorkflowManager
             )
         );
     }
+
+    /**
+     * @return list<Person>
+     */
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+    {
+        return $this->getHandler($entityWorkflow)->getSuggestedPersons($entityWorkflow);
+    }
+
+    /**
+     * @return list<ThirdParty>
+     */
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+    {
+        return $this->getHandler($entityWorkflow)->getSuggestedThirdParties($entityWorkflow);
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
index 2e7076a4d..df701d906 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest.php
@@ -19,6 +19,8 @@ use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
 use Chill\PersonBundle\Workflow\AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
@@ -59,6 +61,8 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandlerTest extends TestCa
             $translatableStringHelperProphecy->reveal(),
             $translatorProphecy->reveal(),
             new WorkflowWithPublicViewDocumentHelper($twig->reveal()),
+            $this->prophesize(ProvideThirdPartiesAssociated::class)->reveal(),
+            $this->prophesize(ProvidePersonsAssociated::class)->reveal(),
         );
 
         $entityWorkflow->setRelatedEntityId(1);
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
index 1f62e5bb3..bcd1e8c8a 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandlerTest.php
@@ -17,6 +17,9 @@ use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationRepository;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
+use Chill\PersonBundle\Workflow\AccompanyingPeriodWorkEvaluationWorkflowHandler;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -53,6 +56,8 @@ class AccompanyingPeriodWorkEvaluationWorkflowHandlerTest extends TestCase
             $workflowRepositoryProphecy->reveal(),
             $translatableStringHelperProphecy->reveal(),
             $translatorProphecy->reveal(),
+            $this->prophesize(ProvideThirdPartiesAssociated::class)->reveal(),
+            $this->prophesize(ProvidePersonsAssociated::class)->reveal(),
         );
 
         $users = $handler->getSuggestedUsers($entityWorkflow);
diff --git a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php
index 1d3702871..5fcaf8eb4 100644
--- a/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php
+++ b/src/Bundle/ChillPersonBundle/Tests/Workflow/AccompanyingPeriodWorkWorkflowHandlerTest.php
@@ -17,6 +17,9 @@ use Chill\MainBundle\Repository\Workflow\EntityWorkflowRepository;
 use Chill\MainBundle\Templating\TranslatableStringHelperInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
+use Chill\PersonBundle\Workflow\AccompanyingPeriodWorkWorkflowHandler;
 use PHPUnit\Framework\TestCase;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Contracts\Translation\TranslatorInterface;
@@ -52,6 +55,8 @@ class AccompanyingPeriodWorkWorkflowHandlerTest extends TestCase
             $workflowRepositoryProphecy->reveal(),
             $translatableStringHelperProphecy->reveal(),
             $translatorProphecy->reveal(),
+            $this->prophesize(ProvideThirdPartiesAssociated::class)->reveal(),
+            $this->prophesize(ProvidePersonsAssociated::class)->reveal(),
         );
 
         $users = $handler->getSuggestedUsers($entityWorkflow);
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
index 1168d8f35..780b81c1d 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler.php
@@ -23,6 +23,8 @@ use Chill\MainBundle\Workflow\Templating\EntityWorkflowViewMetadataDTO;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocumentRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationDocumentVoter;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
@@ -36,6 +38,8 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
         private readonly TranslatableStringHelperInterface $translatableStringHelper,
         private readonly TranslatorInterface $translator,
         private readonly WorkflowWithPublicViewDocumentHelper $publicViewDocumentHelper,
+        private readonly ProvideThirdPartiesAssociated $provideThirdPartiesAssociated,
+        private readonly ProvidePersonsAssociated $providePersonsAssociated,
     ) {}
 
     public function getDeletionRoles(): array
@@ -179,4 +183,26 @@ class AccompanyingPeriodWorkEvaluationDocumentWorkflowHandler implements EntityW
     {
         return $this->publicViewDocumentHelper->render($entityWorkflowSend, $metadata, $this);
     }
+
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->providePersonsAssociated->getPersonsAssociated($related->getAccompanyingPeriodWorkEvaluation()->getAccompanyingPeriodWork());
+    }
+
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->provideThirdPartiesAssociated->getThirdPartiesAssociated($related->getAccompanyingPeriodWorkEvaluation()->getAccompanyingPeriodWork());
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
index 302bbb0be..3e72e65bd 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkEvaluationWorkflowHandler.php
@@ -19,6 +19,8 @@ use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluatio
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkEvaluationVoter;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
@@ -31,6 +33,8 @@ readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements Entity
         private EntityWorkflowRepository $workflowRepository,
         private TranslatableStringHelperInterface $translatableStringHelper,
         private TranslatorInterface $translator,
+        private ProvideThirdPartiesAssociated $provideThirdPartiesAssociated,
+        private ProvidePersonsAssociated $providePersonsAssociated,
     ) {}
 
     public function getDeletionRoles(): array
@@ -147,4 +151,26 @@ readonly class AccompanyingPeriodWorkEvaluationWorkflowHandler implements Entity
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWorkEvaluation::class, $object->getId());
     }
+
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->providePersonsAssociated->getPersonsAssociated($related->getAccompanyingPeriodWork());
+    }
+
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->provideThirdPartiesAssociated->getThirdPartiesAssociated($related->getAccompanyingPeriodWork());
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
index 8a7b5ef48..58d3c9875 100644
--- a/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
+++ b/src/Bundle/ChillPersonBundle/Workflow/AccompanyingPeriodWorkWorkflowHandler.php
@@ -20,6 +20,8 @@ use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluatio
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Repository\AccompanyingPeriod\AccompanyingPeriodWorkRepository;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvidePersonsAssociated;
+use Chill\PersonBundle\Service\AccompanyingPeriodWork\ProvideThirdPartiesAssociated;
 use Symfony\Contracts\Translation\TranslatorInterface;
 
 /**
@@ -32,6 +34,8 @@ readonly class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHa
         private EntityWorkflowRepository $workflowRepository,
         private TranslatableStringHelperInterface $translatableStringHelper,
         private TranslatorInterface $translator,
+        private ProvideThirdPartiesAssociated $thirdPartiesAssociated,
+        private ProvidePersonsAssociated $providePersonsAssociated,
     ) {}
 
     public function getDeletionRoles(): array
@@ -151,4 +155,26 @@ readonly class AccompanyingPeriodWorkWorkflowHandler implements EntityWorkflowHa
 
         return $this->workflowRepository->findByRelatedEntity(AccompanyingPeriodWork::class, $object->getId());
     }
+
+    public function getSuggestedPersons(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->providePersonsAssociated->getPersonsAssociated($related);
+    }
+
+    public function getSuggestedThirdParties(EntityWorkflow $entityWorkflow): array
+    {
+        $related = $this->getRelatedEntity($entityWorkflow);
+
+        if (null === $related) {
+            return [];
+        }
+
+        return $this->thirdPartiesAssociated->getThirdPartiesAssociated($related);
+    }
 }

From 19eb6f7ebb44091d25cd546e34796c06d89bfe1d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 01:10:39 +0200
Subject: [PATCH 342/375] Add suggested persons and third parties in form

Integrated suggested persons and third parties into the WorkflowStepType form. This enhancement auto-populates suggestion fields for better user experience. It ensures that the suggestion data for persons and third parties is readily available in the form configuration.
---
 src/Bundle/ChillMainBundle/Form/WorkflowStepType.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
index 18afc5c58..222927b42 100644
--- a/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
+++ b/src/Bundle/ChillMainBundle/Form/WorkflowStepType.php
@@ -46,6 +46,8 @@ class WorkflowStepType extends AbstractType
         $place = $workflow->getMarking($entityWorkflow);
         $placeMetadata = $workflow->getMetadataStore()->getPlaceMetadata(array_keys($place->getPlaces())[0]);
         $suggestedUsers = $this->entityWorkflowManager->getSuggestedUsers($entityWorkflow);
+        $suggestedThirdParties = $this->entityWorkflowManager->getSuggestedThirdParties($entityWorkflow);
+        $suggestedPersons = $this->entityWorkflowManager->getSuggestedPersons($entityWorkflow);
 
         if (null === $options['entity_workflow']) {
             throw new \LogicException('if transition is true, entity_workflow should be defined');
@@ -155,6 +157,7 @@ class WorkflowStepType extends AbstractType
                 'label' => 'workflow.signature_zone.person signatures',
                 'multiple' => true,
                 'empty_data' => '[]',
+                'suggested' => $suggestedPersons,
             ])
             ->add('futureUserSignature', PickUserDynamicType::class, [
                 'label' => 'workflow.signature_zone.user signature',
@@ -196,6 +199,7 @@ class WorkflowStepType extends AbstractType
                 'help' => 'workflow.transition_destinee_third_party_help',
                 'multiple' => true,
                 'empty_data' => [],
+                'suggested' => $suggestedThirdParties,
             ]);
 
         $builder

From a256307b82204fb0b081058db979c58a596dd61c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 13:44:31 +0200
Subject: [PATCH 343/375] Fix the triggering of the event goToGenerateWorkflow
 when relatedEntityId is not known

The component PickWorkflow emitted the event "goToGenerateWorkflow" when the normal behaviour is intercepted. But that event generated the link to create the workflow to pass it in the payload's event. That generation failed, causing the whole event to fail.

Now, if the link could not been generated, the link is a blank string. There is a supplementary parameter `isLinkValid`, boolean, inform if the link is valid or not.
---
 .../public/lib/entity-workflow/api.ts         | 16 +++++++++++-
 .../EntityWorkflow/PickWorkflow.vue           | 26 ++++++++++++++-----
 2 files changed, 35 insertions(+), 7 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts b/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
index 486421904..96c2901bb 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
+++ b/src/Bundle/ChillMainBundle/Resources/public/lib/entity-workflow/api.ts
@@ -1,4 +1,18 @@
-export const buildLinkCreate = (workflowName: string, relatedEntityClass: string, relatedEntityId: number): string => {
+/**
+ * Constructs a URL for creating a workflow link associated with a specific entity.
+ *
+ * @param {string} workflowName - The name of the workflow to associate.
+ * @param {string} relatedEntityClass - The class/type of the related entity.
+ * @param {number|undefined} relatedEntityId - The unique identifier of the related entity. Must be defined.
+ *
+ * @returns {string} The constructed URL containing query parameters based on the provided arguments.
+ *
+ * @throws {Error} If the related entity ID is undefined.
+ */
+export const buildLinkCreate = (workflowName: string, relatedEntityClass: string, relatedEntityId: number|undefined): string => {
+    if (typeof (relatedEntityId) === 'undefined') {
+        throw new Error("the related entity id is not set");
+    }
     let params = new URLSearchParams();
     params.set('entityClass', relatedEntityClass);
     params.set('entityId', relatedEntityId.toString(10));
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
index e429adf31..13d6c4e46 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
@@ -20,7 +20,13 @@ import {WorkflowAvailable} from "../../../types";
 
 interface PickWorkflowConfig {
     relatedEntityClass: string;
-    relatedEntityId: number;
+    /**
+     * Represents the identifier of a related entity.
+     * This variable can store either a numerical value representing the entity's ID or an undefined value
+     * if the related entity is not specified or available, for instance when the entity is created within
+     * the interface and the id will be available later
+     */
+    relatedEntityId: number|undefined;
     workflowsAvailables: WorkflowAvailable[];
     preventDefaultMoveToGenerate: boolean;
     goToGenerateWorkflowPayload: object;
@@ -29,20 +35,28 @@ interface PickWorkflowConfig {
 const props = withDefaults(defineProps<PickWorkflowConfig>(), {preventDefaultMoveToGenerate: false, goToGenerateWorkflowPayload: {}});
 
 const emit = defineEmits<{
-    (e: 'goToGenerateWorkflow', {event: MouseEvent, workflowName: string, link: string, payload: object}): void;
+    (e: 'goToGenerateWorkflow', {event: MouseEvent, workflowName: string, isLinkValid: boolean, link: string, payload: object}): void;
 }>();
 
 const makeLink = (workflowName: string): string => buildLinkCreate(workflowName, props.relatedEntityClass, props.relatedEntityId);
 
 const goToGenerateWorkflow = (event: MouseEvent, workflowName: string): void  => {
     console.log('goToGenerateWorkflow', event, workflowName);
+    let link = '';
+    let isLinkValid = false;
 
-    if (!props.preventDefaultMoveToGenerate) {
-        console.log('to go generate');
-        window.location.assign(makeLink(workflowName));
+    try {
+        link = makeLink(workflowName);
+        isLinkValid = true;
+    } catch (e) {
+        console.info("could not generate link to create workflow, maybe the relatedEntityId is not yet known", e);
     }
 
-    emit('goToGenerateWorkflow', {event, workflowName, link: makeLink(workflowName), payload: props.goToGenerateWorkflowPayload});
+    if (!props.preventDefaultMoveToGenerate) {
+        window.location.assign(link);
+    }
+
+    emit('goToGenerateWorkflow', {event, workflowName, link, isLinkValid, payload: props.goToGenerateWorkflowPayload});
 }
 
 const goToDuplicateRelatedEntity = (event: MouseEvent, workflowName: string): void => {

From fd69568842edef61acaa5e7a50c5f08080fcb0b7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 15:26:25 +0200
Subject: [PATCH 344/375] Add workflow guard to block external send without
 public view

Introduce `EntityWorkflowGuardSendExternalIfNoPublicView` class to prevent workflows from transitioning to an external send state if the entity lacks a public view. Included unit tests to verify functionality for entities both with and without public views.
---
 ...lowGuardSendExternalIfNoPublicViewTest.php | 106 ++++++++++++++++++
 ...orkflowGuardSendExternalIfNoPublicView.php |  57 ++++++++++
 2 files changed, 163 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicViewTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicView.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicViewTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicViewTest.php
new file mode 100644
index 000000000..823c47725
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicViewTest.php
@@ -0,0 +1,106 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowHandlerInterface;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
+use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowGuardSendExternalIfNoPublicView;
+use PHPUnit\Framework\TestCase;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowGuardSendExternalIfNoPublicViewTest extends TestCase
+{
+    public function testGuardSendExternalIfNoStoredObjectWithNoStoredObject()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $handler = $this->createMock(EntityWorkflowHandlerInterface::class);
+        $handler->method('supports')->willReturn(true);
+
+        $registry = $this->buildRegistry($handler);
+
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        self::assertFalse($workflow->can($entityWorkflow, 'to_send_external'));
+        self::assertTrue($workflow->can($entityWorkflow, 'to_other'));
+    }
+
+    public function testGuardSendExternalIfNoStoredObjectWithStoredObject()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+
+        $handler = $this->createMockForIntersectionOfInterfaces(
+            [EntityWorkflowHandlerInterface::class, EntityWorkflowWithPublicViewInterface::class]
+        );
+        $handler->method('supports')->willReturn(true);
+
+        $registry = $this->buildRegistry($handler);
+
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        self::assertTrue($workflow->can($entityWorkflow, 'to_send_external'));
+        self::assertTrue($workflow->can($entityWorkflow, 'to_other'));
+    }
+
+    private function buildRegistry(EntityWorkflowHandlerInterface $handler): Registry
+    {
+        $builder = new DefinitionBuilder();
+
+        $builder->addPlace('initial');
+        $builder->addPlace('send_external');
+        $builder->addPlace('other');
+        $builder->addTransition(new Transition('to_send_external', 'initial', 'send_external'));
+        $builder->addTransition(new Transition('to_other', 'initial', 'other'));
+        $builder->setMetadataStore(
+            new InMemoryMetadataStore(
+                placesMetadata: [
+                    'send_external' => [
+                        'isSentExternal' => true,
+                    ],
+                ]
+            )
+        );
+        $definition = $builder->build();
+        $workflow = new Workflow($definition, new EntityWorkflowMarkingStore(), $eventDispatcher = new EventDispatcher(), 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(\Symfony\Component\Workflow\WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        $eventSubscriber = new EntityWorkflowGuardSendExternalIfNoPublicView(
+            $registry,
+            new EntityWorkflowManager([$handler], $registry)
+        );
+        $eventDispatcher->addSubscriber($eventSubscriber);
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicView.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicView.php
new file mode 100644
index 000000000..558d7b0ab
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/EntityWorkflowGuardSendExternalIfNoPublicView.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowWithPublicViewInterface;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Workflow\Event\GuardEvent;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\TransitionBlocker;
+
+final readonly class EntityWorkflowGuardSendExternalIfNoPublicView implements EventSubscriberInterface
+{
+    public function __construct(private Registry $registry, private EntityWorkflowManager $entityWorkflowManager) {}
+
+    public static function getSubscribedEvents()
+    {
+        return ['workflow.guard' => [
+            ['guardSendExternalIfNoStoredObject', 0],
+        ]];
+    }
+
+    public function guardSendExternalIfNoStoredObject(GuardEvent $event)
+    {
+        $entityWorkflow = $event->getSubject();
+        if (!$entityWorkflow instanceof EntityWorkflow) {
+            return;
+        }
+
+        $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        foreach ($event->getTransition()->getTos() as $to) {
+            $metadata = $workflow->getMetadataStore()->getPlaceMetadata($to);
+            if (true === ($metadata['isSentExternal'] ?? false)
+                && !$this->entityWorkflowManager->getHandler($entityWorkflow) instanceof EntityWorkflowWithPublicViewInterface) {
+                $event->addTransitionBlocker(
+                    new TransitionBlocker(
+                        'No document associated with this entityWorkflow, not able to send external',
+                        'a95e57d8-9136-11ef-a208-43b111cfc66d'
+                    )
+                );
+
+                return;
+            }
+        }
+    }
+}

From 4e0a421a0385576640b64163e7893cc7e7277106 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 23 Oct 2024 22:08:25 +0200
Subject: [PATCH 345/375] Refactor PDF mounting process to use ArrayBuffer

Changed mountPdf function to accept an ArrayBuffer instead of a URL. This improves handling of documents by simplifying the data flow and eliminates the need for URL object creation.
---
 .../Resources/public/vuejs/DocumentSignature/App.vue       | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index e63997bcd..a7c222cce 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -277,8 +277,8 @@ const signature = window.signature;
 
 console.log(signature);
 
-const mountPdf = async (url: string) => {
-  const loadingTask = pdfjsLib.getDocument(url);
+const mountPdf = async (doc: ArrayBuffer) => {
+  const loadingTask = pdfjsLib.getDocument(doc);
   pdf = await loadingTask.promise;
   pageCount.value = pdf.numPages;
   await setPage(page.value);
@@ -317,7 +317,8 @@ async function downloadAndOpen(): Promise<Blob> {
     console.error("error while downloading and decrypting document", e);
     throw e;
   }
-  await mountPdf(URL.createObjectURL(raw));
+  const doc = await raw.arrayBuffer();
+  await mountPdf(doc);
   return raw;
 }
 

From 97729de66dd9e878823bd2b567305c382b7dcc89 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 24 Oct 2024 15:11:07 +0200
Subject: [PATCH 346/375] Update conditional rendering logic for displaying
 list of workflows

Ensure the workflow modal is displayed when either workflows_availables or workflows are non-empty. This improves the user interface by correctly triggering the modal in more scenarios.

- OP#762
- https://champs-libres.openproject.com/work_packages/762
- https://gitea.champs-libres.be/Vendee/accent-suivi-developpement/issues/1254
---
 .../AccompanyingCourseWorkEdit/components/FormEvaluation.vue    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
index dbc53c4e8..25ec6c5cc 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/components/FormEvaluation.vue
@@ -103,7 +103,7 @@
             <div class="item-row">
                <div class="item-col">
                  <ul class="record_actions">
-                    <li v-if="d.workflows_availables.length > 0">
+                    <li v-if="d.workflows_availables.length > 0 || d.workflows.length > 0">
                        <list-workflow-modal
                           :workflows="d.workflows"
                           :allowCreate="true"

From bf85e9bb71b9d049be592c93a9d5205b51ee221a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 24 Oct 2024 15:49:59 +0200
Subject: [PATCH 347/375] When a user applies a signature in a workflow, the
 signer is the futureDestUser of the next step

See:
- https://gitea.champs-libres.be/Vendee/accent-suivi-developpement/issues/1252
- https://champs-libres.openproject.com/wp/768
- OP#768
---
 .../SignatureStepStateChangerTest.php         | 36 ++++++++++++++++++-
 .../Workflow/SignatureStepStateChanger.php    | 10 ++++--
 2 files changed, 42 insertions(+), 4 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
index fa3cd5c2d..8a239c441 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/SignatureStepStateChangerTest.php
@@ -37,7 +37,7 @@ use Symfony\Component\Workflow\WorkflowInterface;
  */
 class SignatureStepStateChangerTest extends TestCase
 {
-    public function testMarkSignatureAsSignedScenarioWhichExpectsTransition()
+    public function testMarkSignatureAsSignedScenarioWhichExpectsTransitionSignatureWithPerson()
     {
         $entityWorkflow = new EntityWorkflow();
         $entityWorkflow->setWorkflowName('dummy');
@@ -84,6 +84,40 @@ class SignatureStepStateChangerTest extends TestCase
         self::assertNotNull($signatures[1]->getStateDate());
     }
 
+    public function testMarkSignatureAsSignedScenarioWhichExpectsTransitionSignatureWithUser()
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, 'dummy');
+        $clock = new MockClock();
+        $user = new User();
+
+        $messengerBus = new MessageBus([]);
+        $changer = new SignatureStepStateChanger($registry, $clock, new NullLogger(), $messengerBus);
+
+        // move it to signature
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureUserSignature = $signer = new User();
+        $workflow->apply($entityWorkflow, 'to_signature', ['context' => $dto, 'transitionAt' => $clock->now(),
+            'byUser' => $user, 'transition' => 'to_signature']);
+
+        // get the signature created
+        $signatures = $entityWorkflow->getCurrentStep()->getSignatures();
+
+        // we mark the first signature as signed
+        $changer->markSignatureAsSigned($signatures[0], 1);
+        // the next step should be done by handling an async message
+        $changer->onPostMark($signatures[0]);
+
+        self::assertEquals(EntityWorkflowSignatureStateEnum::SIGNED, $signatures[0]->getState());
+        self::assertEquals('post-signature', $entityWorkflow->getStep(), 'the entity workflow step should be post-signature');
+        self::assertContains($signer, $entityWorkflow->getCurrentStep()->getAllDestUser());
+        self::assertCount(1, $entityWorkflow->getCurrentStep()->getAllDestUser());
+        self::assertEquals(1, $signatures[0]->getZoneSignatureIndex());
+        self::assertNotNull($signatures[0]->getStateDate());
+    }
+
     public function testMarkSignatureAsSignedScenarioWithoutRequiredMetadata()
     {
         $entityWorkflow = new EntityWorkflow();
diff --git a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
index 58a6485c2..cccfa2ab7 100644
--- a/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
+++ b/src/Bundle/ChillMainBundle/Workflow/SignatureStepStateChanger.php
@@ -97,16 +97,20 @@ class SignatureStepStateChanger
             return;
         }
 
-        $previousUser = $this->getPreviousSender($signature->getStep());
+        if ('person' === $signature->getSignerKind()) {
+            $futureUser = $this->getPreviousSender($signature->getStep());
+        } else {
+            $futureUser = $signature->getSigner();
+        }
 
-        if (null === $previousUser) {
+        if (null === $futureUser) {
             $this->logger->info(self::LOG_PREFIX.'No previous user, will not apply a transition', ['signatureId' => $signature->getId()]);
 
             return;
         }
 
         $transitionDto = new WorkflowTransitionContextDTO($entityWorkflow);
-        $transitionDto->futureDestUsers[] = $previousUser;
+        $transitionDto->futureDestUsers[] = $futureUser;
 
         $workflow->apply($entityWorkflow, $transition, [
             'context' => $transitionDto,

From f750cfecac97906664ad554bcd6b4ef75efdb23d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 24 Oct 2024 16:15:49 +0200
Subject: [PATCH 348/375] Show userGroup in workflow breadcrumb

related:

- https://champs-libres.openproject.com/wp/774
- OP#774
- https://gitea.champs-libres.be/Vendee/accent-suivi-developpement/issues/1274
---
 .../Resources/views/Workflow/_history.html.twig             | 6 +++---
 .../Resources/views/Workflow/macro_breadcrumb.html.twig     | 6 ++++--
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index 5fcc60ed4..9149e9a94 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -42,7 +42,7 @@
                     <div class="item-col" style="width: inherit;">
                             <div>
                                 {%- if step.transitionBy is not null -%}
-                                    {{ step.transitionBy|chill_entity_render_box({'at_date': step.transitionAt}) }}
+                                    <span class="badge-user">{{ step.transitionBy|chill_entity_render_box({'at_date': step.transitionAt}) }}</span>
                                 {% else %}
                                     <span class="chill-no-data-statement">{{ 'workflow.Automated transition'|trans }}</span>
                                 {%- endif -%}
@@ -105,7 +105,7 @@
                             <p><b>{{ 'workflow.Users put in Cc'|trans }}&nbsp;: </b></p>
                             <ul>
                                 {% for u in step.ccUser %}
-                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</li>
+                                    <li><span class="badge-user">{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</span></li>
                                 {% endfor %}
                             </ul>
                         {% endif %}
@@ -123,7 +123,7 @@
                             <p><b>{{ 'workflow.Those users are also granted to apply a transition by using an access key'|trans }}&nbsp;:</b></p>
                             <ul>
                                 {% for u in step.destUserByAccessKey %}
-                                    <li>{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</li>
+                                    <li><span class="badge-user">{{ u|chill_entity_render_box({'at_date': step.previous.transitionAt}) }}</span></li>
                                 {% endfor %}
                             </ul>
                         {% endif %}
diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
index 61189100c..6a1c66ae7 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/macro_breadcrumb.html.twig
@@ -9,11 +9,13 @@
                 <span class="item-key">{{ 'Le'|trans ~ ' : ' }}</span>
                 <b>{{ step.previous.transitionAt|format_datetime('short', 'short') }}</b>
             </li>
-            {% if step.destUser|length > 0 %}
+            {% if step.destUser|length > 0 or step.destUserGroups|length > 0 %}
                 <li>
                     <span class="item-key">{{ 'workflow.For'|trans ~ ' : ' }}</span>
                     <b>
-                        {% for d in step.destUser %}{{ d|chill_entity_render_string({'at_date': step.previous.transitionAt}) }}{% if not loop.last %}, {% endif %}{% endfor %}
+                        {% for d in step.destUser %}<span class="badge-user">{{ d|chill_entity_render_string({'at_date': step.previous.transitionAt}) }}</span>{% if not loop.last %}, {% endif -%}{% endfor -%}
+                        {%- if step.destUser|length > 0 and step.destUserGroups|length > 0 %}, {% endif -%}
+                        {%- for d in step.destUserGroups %}{{ d|chill_entity_render_box }}{% if not loop.last %}, {% endif %}{% endfor -%}
                     </b>
                 </li>
             {% endif %}

From 182e2fc3af820a5fd9245726b3a0c3098fc84f27 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 25 Oct 2024 11:18:38 +0200
Subject: [PATCH 349/375] Set 'required' to false for Email field in
 UserGroupType form.

Changed the Email field's 'required' option to false, allowing it to be optional. This adjustment aims to improve the usability and flexibility of the UserGroupType form.
---
 src/Bundle/ChillMainBundle/Form/UserGroupType.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/Bundle/ChillMainBundle/Form/UserGroupType.php b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
index 3f98907fa..2e3819560 100644
--- a/src/Bundle/ChillMainBundle/Form/UserGroupType.php
+++ b/src/Bundle/ChillMainBundle/Form/UserGroupType.php
@@ -39,6 +39,7 @@ class UserGroupType extends AbstractType
                 'label' => 'user_group.Email',
                 'help' => 'user_group.EmailHelp',
                 'empty_data' => '',
+                'required' => false,
             ])
             ->add('excludeKey', TextType::class, [
                 'label' => 'user_group.ExcludeKey',

From d7174cdb9560c3ee2ca8d4a137183241f4c4ddb3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 25 Oct 2024 18:20:58 +0200
Subject: [PATCH 350/375] Reintroduce pending signatures section in person list
 view

Moved the pending signatures section within the person list view template to the correct location.

OP#771
https://champs-libres.openproject.com/work_packages/771
---
 .../views/Person/list_with_period.html.twig   | 56 +++++++++----------
 1 file changed, 27 insertions(+), 29 deletions(-)

diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
index fa7a1b6ea..7c75bc712 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
@@ -224,33 +224,6 @@
                 </ul>
             </div>
         </div>
-        {% if person.signaturesPending|length > 0 %}
-            <div class="item-row separator">
-                <div class="wrap-list periods-list">
-                    <div class="wl-row">
-                        <div class="wl-col title">
-                            <h3>{{ 'workflow.pending_signatures'|trans({nb_signatures: person.signaturesPending|length}) }}</h3>
-                        </div>
-                        <div class="wl-col list">
-                            {% for signature in person.signaturesPending %}
-                                {% set entityWorkflow = signature.step.entityWorkflow %}
-                                {{ entityWorkflow|chill_entity_render_string }}
-                                <ul class="record_actions small slim">
-                                    <li>
-                                        <a href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', {signature_id: signature.id}) }}" class="btn btn-misc">
-                                            <i class="fa fa-pencil"></i>
-                                        </a>
-                                    </li>
-                                    <li>
-                                        <a href="{{ chill_path_add_return_path('chill_main_workflow_show', {id: entityWorkflow.id}) }}" class="btn btn-show"></a>
-                                    </li>
-                                </ul>
-                            {% endfor %}
-                        </div>
-                    </div>
-                </div>
-            </div>
-        {% endif %}
 {% endmacro %}
 
 <div class="list-with-period">
@@ -355,8 +328,33 @@
                             </div>
                         </div>
                     {% endif %}
-
-
+                    {% if person.signaturesPending|length > 0 %}
+                    <div class="item-row separator">
+                        <div class="wrap-list periods-list">
+                            <div class="wl-row">
+                                <div class="wl-col title">
+                                    <h3>{{ 'workflow.pending_signatures'|trans({nb_signatures: person.signaturesPending|length}) }}</h3>
+                                </div>
+                                <div class="wl-col list">
+                                    {% for signature in person.signaturesPending %}
+                                        {% set entityWorkflow = signature.step.entityWorkflow %}
+                                        {{ entityWorkflow|chill_entity_render_string }}
+                                        <ul class="record_actions small slim">
+                                            <li>
+                                                <a href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', {signature_id: signature.id}) }}" class="btn btn-misc">
+                                                    <i class="fa fa-pencil"></i>
+                                                </a>
+                                            </li>
+                                            <li>
+                                                <a href="{{ chill_path_add_return_path('chill_main_workflow_show', {id: entityWorkflow.id}) }}" class="btn btn-show"></a>
+                                            </li>
+                                        </ul>
+                                    {% endfor %}
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                    {% endif %}
                 </div>
             {% endfor %}
         </div>

From 989fdad5610da816997f96a3a03476e974f23bbe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 25 Oct 2024 18:33:22 +0200
Subject: [PATCH 351/375] Add `chill_path_force_return_path` method to routing
 helper

Implemented a new Twig function `chill_path_force_return_path` to enforce a specific return path within the URL. Updated relevant template to utilize this new function for better control over URL routing and return path management.

OP#787
https://champs-libres.openproject.com/work_packages/787
---
 .../Templating/ChillTwigRoutingHelper.php     | 23 +++++++++++++++++++
 .../views/Person/list_with_period.html.twig   |  2 +-
 2 files changed, 24 insertions(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php b/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
index 5f67ccfe2..9e06eaee8 100644
--- a/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
+++ b/src/Bundle/ChillMainBundle/Templating/ChillTwigRoutingHelper.php
@@ -56,9 +56,32 @@ class ChillTwigRoutingHelper extends AbstractExtension
             new TwigFunction('chill_return_path_or', $this->getReturnPathOr(...), ['is_safe_callback' => $this->isUrlGenerationSafe(...)]),
             new TwigFunction('chill_path_add_return_path', $this->getPathAddReturnPath(...), ['is_safe_callback' => $this->isUrlGenerationSafe(...)]),
             new TwigFunction('chill_path_forward_return_path', $this->getPathForwardReturnPath(...), ['is_safe_callback' => $this->isUrlGenerationSafe(...)]),
+            new TwigFunction('chill_path_force_return_path', $this->getPathForceReturnPath(...), ['is_safe_callback' => $this->isUrlGenerationSafe(...)]),
         ];
     }
 
+    /**
+     * Build a URL with a forced returnPath parameter.
+     *
+     * @param string      $forcePath  the forced path to return to
+     * @param string      $name       the name of the route
+     * @param array       $parameters additional parameters for the URL
+     * @param bool        $relative   whether the URL should be relative
+     * @param string|null $label      optional label for the return path
+     *
+     * @return string the generated URL
+     */
+    public function getPathForceReturnPath(string $forcePath, string $name, array $parameters = [], $relative = false, $label = null): string
+    {
+        $params = [...$parameters, 'returnPath' => $forcePath];
+
+        if (null !== $label) {
+            $params['returnPathLabel'] = $label;
+        }
+
+        return $this->originalExtension->getPath($name, $params, $relative);
+    }
+
     public function getLabelReturnPath($default)
     {
         $request = $this->requestStack->getCurrentRequest();
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
index 7c75bc712..3c912ae58 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/Person/list_with_period.html.twig
@@ -341,7 +341,7 @@
                                         {{ entityWorkflow|chill_entity_render_string }}
                                         <ul class="record_actions small slim">
                                             <li>
-                                                <a href="{{ chill_path_add_return_path('chill_main_workflow_signature_metadata', {signature_id: signature.id}) }}" class="btn btn-misc">
+                                                <a href="{{ chill_path_force_return_path(path('chill_main_workflow_show', {id: entityWorkflow.id}), 'chill_main_workflow_signature_metadata', {signature_id: signature.id}) }}" class="btn btn-misc">
                                                     <i class="fa fa-pencil"></i>
                                                 </a>
                                             </li>

From 3bc6595f5833d15150ecfc915b93310436262c20 Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Sat, 26 Oct 2024 12:09:00 +0200
Subject: [PATCH 352/375] add a zoom button for zooming to the document

---
 .../Resources/public/types.ts                 |   9 ++
 .../public/vuejs/DocumentSignature/App.vue    | 103 +++++++++++++++---
 2 files changed, 99 insertions(+), 13 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
index 2a998fb63..ba7369661 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/types.ts
@@ -130,3 +130,12 @@ export interface CheckSignature {
 }
 
 export type CanvasEvent = "select" | "add";
+
+export interface ZoomLevel {
+    id: number;
+    zoom: number;
+    label: {
+        fr?: string,
+        nl?: string
+    };
+}
\ No newline at end of file
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index a7c222cce..3572aa323 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -29,6 +29,17 @@
   <div class="col-12 m-auto">
     <div class="row justify-content-center border-bottom pdf-tools d-md-none">
       <div v-if="pageCount > 1" class="col text-center turn-page">
+        <select
+          class="form-select form-select-sm"
+          id="zoomSelect"
+          v-model="zoomLevel"
+          @change="setZoomLevel(zoomLevel)"
+        >
+          <option value="" selected disabled>Zoom</option>
+          <option v-for="z in zoomLevels" :value="z.zoom" :key="z.id">
+            {{ z.label.fr }}
+          </option>
+        </select>
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
@@ -95,7 +106,18 @@
     <div
       class="row justify-content-center border-bottom pdf-tools d-none d-md-flex"
     >
-      <div v-if="pageCount > 1" class="col-2 text-center turn-page p-0">
+      <div v-if="pageCount > 1" class="col-3 text-center turn-page">
+        <select
+          class="form-select form-select-sm"
+          id="zoomSelect"
+          v-model="zoomLevel"
+          @change="setZoomLevel(zoomLevel)"
+        >
+          <option value="" selected disabled>Zoom</option>
+          <option v-for="z in zoomLevels" :value="z.zoom" :key="z.id">
+            {{ z.label.fr }}
+          </option>
+        </select>
         <button
           class="btn btn-light btn-sm"
           :disabled="page <= 1"
@@ -235,6 +257,7 @@ import {
   Signature,
   SignatureZone,
   SignedState,
+  ZoomLevel,
 } from "../../types";
 import { makeFetch } from "../../../../../ChillMainBundle/Resources/public/lib/api/apiMethods";
 import * as pdfjsLib from "pdfjs-dist";
@@ -262,6 +285,45 @@ const canvasEvent: Ref<CanvasEvent> = ref("select");
 const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
+const zoom: Ref<number> = ref(1);
+const zoomLevel = '';
+const zoomLevels: Ref<ZoomLevel[]> = ref([
+  {
+    id: 0,
+    zoom: 0.75,
+    label: {
+      fr: "75%",
+    },
+  },
+  {
+    id: 1,
+    zoom: zoom.value,
+    label: {
+      fr: "100%",
+    },
+  },
+  {
+    id: 2,
+    zoom: 1.25,
+    label: {
+      fr: "125%",
+    },
+  },
+  {
+    id: 3,
+    zoom: 1.5,
+    label: {
+      fr: "150%",
+    },
+  },
+  {
+    id: 4,
+    zoom: 2,
+    label: {
+      fr: "200%",
+    },
+  },
+]);
 let userSignatureZone: Ref<null | SignatureZone> = ref(null);
 let pdf = {} as PDFDocumentProxy;
 
@@ -275,7 +337,11 @@ const $toast = useToast();
 
 const signature = window.signature;
 
-console.log(signature);
+const setZoomLevel = (zoomLevel: number) => {
+  zoom.value = zoomLevel;
+  setPage(page.value);
+  setTimeout(() => drawAllZones(page.value), 200);
+};
 
 const mountPdf = async (doc: ArrayBuffer) => {
   const loadingTask = pdfjsLib.getDocument(doc);
@@ -285,7 +351,7 @@ const mountPdf = async (doc: ArrayBuffer) => {
 };
 
 const getRenderContext = (pdfPage: PDFPageProxy) => {
-  const scale = 1;
+  const scale = 1 * zoom.value;
   const viewport = pdfPage.getViewport({ scale });
   const canvas = document.querySelectorAll("canvas")[0] as HTMLCanvasElement;
   const context = canvas.getContext("2d") as CanvasRenderingContext2D;
@@ -343,12 +409,12 @@ const hitSignature = (
   scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) < xy[0] &&
   xy[0] <
     scaleXToCanvas(zone.x + zone.width, canvasWidth, zone.PDFPage.width) &&
-  zone.PDFPage.height -
+  zone.PDFPage.height * zoom.value -
     scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) <
     xy[1] &&
   xy[1] <
     scaleYToCanvas(zone.height - zone.y, canvasHeight, zone.PDFPage.height) +
-      zone.PDFPage.height;
+      zone.PDFPage.height * zoom.value;
 
 const selectZone = (z: SignatureZone, canvas: HTMLCanvasElement) => {
   userSignatureZone.value = z;
@@ -425,19 +491,19 @@ const drawZone = (
   ctx.lineJoin = "bevel";
   ctx.strokeRect(
     scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width),
-    zone.PDFPage.height -
+    zone.PDFPage.height * zoom.value -
       scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height),
     scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width),
     scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height)
   );
-  ctx.font = "bold 16px serif";
+  ctx.font = `bold ${16 * zoom.value}px serif`;
   ctx.textAlign = "center";
   ctx.fillStyle = "black";
   const xText =
     scaleXToCanvas(zone.x, canvasWidth, zone.PDFPage.width) +
     scaleXToCanvas(zone.width, canvasWidth, zone.PDFPage.width) / 2;
   const yText =
-    zone.PDFPage.height -
+    zone.PDFPage.height * zoom.value -
     scaleYToCanvas(zone.y, canvasHeight, zone.PDFPage.height) +
     scaleYToCanvas(zone.height, canvasHeight, zone.PDFPage.height) / 2;
   if (userSignatureZone.value?.index === zone.index) {
@@ -445,8 +511,8 @@ const drawZone = (
     ctx.fillText("Signer ici", xText, yText);
   } else {
     ctx.fillStyle = unselectedBlue;
-    ctx.fillText("Choisir cette", xText, yText - 12);
-    ctx.fillText("zone de signature", xText, yText + 12);
+    ctx.fillText("Choisir cette", xText, yText - 12 * zoom.value);
+    ctx.fillText("zone de signature", xText, yText + 12 * zoom.value);
   }
 };
 
@@ -616,16 +682,27 @@ div#action-buttons {
 }
 div.pdf-tools {
   background-color: #f3f3f3;
-  font-size: 0.8rem;
+  font-size: 0.6rem;
+  button {
+    font-size: 0.75rem!important;
+  }
   @media (min-width: 1400px) {
     // background: none;
     // border: none !important;
   }
 }
 div.turn-page {
+  display: flex;
   span {
-    font-size: 0.8rem;
-    margin: 0 0.4rem;
+    font-size: 0.75rem;
+    margin: auto 0.4rem;
+  }
+  select {
+    width: 3.5rem;
+    @media (min-width: 850px) {
+      width: 5rem;
+    }
+    font-size: 0.75rem;
   }
 }
 div.signature-modal-body {

From 5259ea71a1ea3092c52b80ed5ede52820b45f41e Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 30 Oct 2024 10:29:08 +0100
Subject: [PATCH 353/375] signature vue app: improve responsive design

---
 .../public/vuejs/DocumentSignature/App.vue    | 66 +++++++++----------
 1 file changed, 31 insertions(+), 35 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 3572aa323..2b2b1e31f 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -41,7 +41,7 @@
           </option>
         </select>
         <button
-          class="btn btn-light btn-sm"
+          class="btn btn-light btn-xs p-1"
           :disabled="page <= 1"
           @click="turnPage(-1)"
         >
@@ -49,14 +49,17 @@
         </button>
         <span>{{ page }}/{{ pageCount }}</span>
         <button
-          class="btn btn-light btn-sm"
+          class="btn btn-light btn-xs p-1"
           :disabled="page >= pageCount"
           @click="turnPage(1)"
         >
           ❯
         </button>
       </div>
-      <div v-if="signature.zones.length > 1" class="col-3 p-0">
+      <div
+        v-if="signature.zones.length > 1"
+        class="col-5 p-0 text-center turnSignature"
+      >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
           class="btn btn-light btn-sm"
@@ -64,8 +67,7 @@
         >
           {{ $t("last_zone") }}
         </button>
-      </div>
-      <div v-if="signature.zones.length > 1" class="col-3 p-0">
+        <span>|</span>
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
           class="btn btn-light btn-sm"
@@ -74,7 +76,7 @@
           {{ $t("next_zone") }}
         </button>
       </div>
-      <div class="col text-end p-0">
+      <div class="col text-end" v-if="signedState !== 'signed'">
         <button
           class="btn btn-misc btn-sm"
           :hidden="!userSignatureZone"
@@ -92,8 +94,6 @@
         >
           {{ $t("cancel") }}
         </button>
-      </div>
-      <div class="col-1" v-if="signedState !== 'signed'">
         <button
           class="btn btn-create btn-sm"
           :class="{ active: canvasEvent === 'add' }"
@@ -106,7 +106,7 @@
     <div
       class="row justify-content-center border-bottom pdf-tools d-none d-md-flex"
     >
-      <div v-if="pageCount > 1" class="col-3 text-center turn-page">
+      <div v-if="pageCount > 1" class="col-3 text-center turn-page ps-3">
         <select
           class="form-select form-select-sm"
           id="zoomSelect"
@@ -119,7 +119,7 @@
           </option>
         </select>
         <button
-          class="btn btn-light btn-sm"
+          class="btn btn-light btn-xs p-1"
           :disabled="page <= 1"
           @click="turnPage(-1)"
         >
@@ -127,7 +127,7 @@
         </button>
         <span>{{ page }} / {{ pageCount }}</span>
         <button
-          class="btn btn-light btn-sm"
+          class="btn btn-light btn-xs p-1"
           :disabled="page >= pageCount"
           @click="turnPage(1)"
         >
@@ -136,7 +136,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1 && signedState !== 'signed'"
-        class="col text-end d-xl-none"
+        class="col-4 d-xl-none text-center turnSignature p-0"
       >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
@@ -145,11 +145,7 @@
         >
           {{ $t("last_zone") }}
         </button>
-      </div>
-      <div
-        v-if="signature.zones.length > 1 && signedState !== 'signed'"
-        class="col text-start d-xl-none"
-      >
+        <span>|</span>
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
           class="btn btn-light btn-sm"
@@ -160,7 +156,7 @@
       </div>
       <div
         v-if="signature.zones.length > 1 && signedState !== 'signed'"
-        class="col text-end d-none d-xl-flex p-0"
+        class="col-4 d-none d-xl-flex p-0 text-center turnSignature"
       >
         <button
           :disabled="userSignatureZone === null || userSignatureZone?.index < 1"
@@ -169,11 +165,7 @@
         >
           {{ $t("last_sign_zone") }}
         </button>
-      </div>
-      <div
-        v-if="signature.zones.length > 1 && signedState !== 'signed'"
-        class="col text-start d-none d-xl-flex p-0"
-      >
+        <span>|</span>
         <button
           :disabled="userSignatureZone?.index >= signature.zones.length - 1"
           class="btn btn-light btn-sm"
@@ -182,7 +174,7 @@
           {{ $t("next_sign_zone") }}
         </button>
       </div>
-      <div class="col text-end p-0" v-if="signedState !== 'signed'">
+      <div class="col text-end" v-if="signedState !== 'signed'">
         <button
           class="btn btn-misc btn-sm"
           :hidden="!userSignatureZone"
@@ -199,11 +191,6 @@
         >
           {{ $t("cancel") }}
         </button>
-      </div>
-      <div
-        class="col text-end p-0 pe-2 pe-xxl-4"
-        v-if="signedState !== 'signed'"
-      >
         <button
           class="btn btn-create btn-sm"
           :class="{ active: canvasEvent === 'add' }"
@@ -286,7 +273,7 @@ const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 const zoom: Ref<number> = ref(1);
-const zoomLevel = '';
+const zoomLevel = "";
 const zoomLevels: Ref<ZoomLevel[]> = ref([
   {
     id: 0,
@@ -323,6 +310,13 @@ const zoomLevels: Ref<ZoomLevel[]> = ref([
       fr: "200%",
     },
   },
+  {
+    id: 5,
+    zoom: 3,
+    label: {
+      fr: "300%",
+    },
+  },
 ]);
 let userSignatureZone: Ref<null | SignatureZone> = ref(null);
 let pdf = {} as PDFDocumentProxy;
@@ -684,7 +678,12 @@ div.pdf-tools {
   background-color: #f3f3f3;
   font-size: 0.6rem;
   button {
-    font-size: 0.75rem!important;
+    font-size: 0.75rem !important;
+  }
+  div.turnSignature {
+    span {
+      font-size: 1rem;
+    }
   }
   @media (min-width: 1400px) {
     // background: none;
@@ -698,10 +697,7 @@ div.turn-page {
     margin: auto 0.4rem;
   }
   select {
-    width: 3.5rem;
-    @media (min-width: 850px) {
-      width: 5rem;
-    }
+    width: 5rem;
     font-size: 0.75rem;
   }
 }

From 76458cf375081ee7de7fead992a55fd2dcb9813e Mon Sep 17 00:00:00 2001
From: nobohan <juminet@gmail.com>
Date: Wed, 30 Oct 2024 10:38:34 +0100
Subject: [PATCH 354/375] signature: cancel button at the left + changed style

---
 .../public/vuejs/DocumentSignature/App.vue    | 26 +++++++++----------
 .../public/vuejs/DocumentSignature/index.ts   |  1 -
 2 files changed, 13 insertions(+), 14 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 2b2b1e31f..7b62f3fa7 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -208,7 +208,19 @@
 
   <div class="col-xs-12 col-md-12 col-lg-9 m-auto p-4" id="action-buttons">
     <div class="row">
-      <div class="col-4" v-if="signedState !== 'signed'">
+      <div class="col d-flex">
+        <a
+          class="btn btn-cancel"
+          v-if="signedState !== 'signed'"
+          :href="getReturnPath()"
+        >
+          {{ $t("cancel") }}
+        </a>
+        <a class="btn btn-misc" v-else :href="getReturnPath()">
+          {{ $t("return") }}
+        </a>
+      </div>
+      <div class="col text-end" v-if="signedState !== 'signed'">
         <button
           class="btn btn-action me-2"
           :disabled="!userSignatureZone"
@@ -218,18 +230,6 @@
         </button>
       </div>
       <div class="col-4" v-else></div>
-      <div class="col-8 d-flex justify-content-end">
-        <a
-          class="btn btn-delete"
-          v-if="signedState !== 'signed'"
-          :href="getReturnPath()"
-        >
-          {{ $t("cancel_signing") }}
-        </a>
-        <a class="btn btn-misc" v-else :href="getReturnPath()">
-          {{ $t("return") }}
-        </a>
-      </div>
     </div>
   </div>
 </template>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index c6ae996b2..49b0f6f79 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -12,7 +12,6 @@ const appMessages = {
         sign: 'Signer',
         choose_another_signature: 'Choisir une autre zone',
         cancel: 'Annuler',
-        cancel_signing: 'Refuser de signer',
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
         add_sign_zone: 'Ajouter une zone de signature',

From 4dc2348893012c78923c19ea295441185040034c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 4 Nov 2024 14:05:57 +0100
Subject: [PATCH 355/375] Change behaviour to allow to add a new workflow (if
 available) and open the modal to list existing workflows in the same button

Use the feature of splitted dropdown buttons, from bootstrap.

See:
- OP#776
- https://champs-libres.openproject.com/work_packages/776
---
 .../EntityWorkflow/ListWorkflowModal.vue      | 15 +++----
 .../EntityWorkflow/PickWorkflow.vue           | 42 ++++++++++++++++++-
 .../vuejs/AccompanyingCourseWorkEdit/App.vue  |  2 -
 3 files changed, 45 insertions(+), 14 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue
index 151bc06c7..ab52b7452 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue
@@ -1,20 +1,13 @@
 <template>
-
-   <button v-if="hasWorkflow"
-      class="btn btn-primary"
-      @click="openModal">
-      <b>{{ countWorkflows }}</b>
-      <template v-if="countWorkflows > 1">{{ $t('workflows') }}</template>
-      <template v-else>{{ $t('workflow') }}</template>
-   </button>
-
-   <pick-workflow v-else-if="allowCreate"
+   <pick-workflow
       :relatedEntityClass="this.relatedEntityClass"
       :relatedEntityId="this.relatedEntityId"
       :workflowsAvailables="workflowsAvailables"
       :preventDefaultMoveToGenerate="this.$props.preventDefaultMoveToGenerate"
       :goToGenerateWorkflowPayload="this.goToGenerateWorkflowPayload"
+      :countExistingWorkflows="countWorkflows"
       @go-to-generate-workflow="goToGenerateWorkflow"
+      @click-open-list="openModal"
    ></pick-workflow>
 
    <teleport to="body">
@@ -39,6 +32,8 @@
                :workflowsAvailables="workflowsAvailables"
                :preventDefaultMoveToGenerate="this.$props.preventDefaultMoveToGenerate"
                :goToGenerateWorkflowPayload="this.goToGenerateWorkflowPayload"
+               :countExistingWorkflows="countWorkflows"
+               :embedded-within-list-modal="true"
                @go-to-generate-workflow="this.goToGenerateWorkflow"
             ></pick-workflow>
          </template>
diff --git a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
index 13d6c4e46..3cd88369c 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
+++ b/src/Bundle/ChillMainBundle/Resources/public/vuejs/_components/EntityWorkflow/PickWorkflow.vue
@@ -1,6 +1,6 @@
 <template>
     <template v-if="props.workflowsAvailables.length >= 1">
-        <div class="dropdown d-grid gap-2">
+        <div v-if="countExistingWorkflows == 0 || embeddedWithinListModal" class="dropdown d-grid gap-2">
             <button class="btn btn-primary dropdown-toggle" type="button" id="createWorkflowButton" data-bs-toggle="dropdown" aria-expanded="false">
                 Créer un workflow
             </button>
@@ -10,6 +10,38 @@
                 </li>
             </ul>
         </div>
+        <div v-else>
+            <div class="btn-group">
+                <button @click="emit('clickOpenList')" class="btn btn-primary">
+                    <template v-if="countExistingWorkflows === 1">
+                        1 workflow associé
+                    </template>
+                    <template v-else>
+                        {{ countExistingWorkflows }} workflows associés
+                    </template>
+                </button>
+                <button class="btn btn-primary dropdown-toggle dropdown-toggle-split" type="button" id="createWorkflowButton" data-bs-toggle="dropdown" aria-expanded="false">
+                    <span class="visually-hidden">Liste des workflows disponibles</span>
+                </button>
+                <ul class="dropdown-menu" aria-labelledby="createWorkflowButton">
+                    <li v-for="w in props.workflowsAvailables" :key="w.name">
+                        <button class="dropdown-item" type="button" @click.prevent="goToGenerateWorkflow($event, w.name)">{{ w.text }}</button>
+                    </li>
+                </ul>
+            </div>
+        </div>
+    </template>
+    <template v-else>
+        <div v-if="countExistingWorkflows > 0" class="dropdown d-grid gap-2">
+            <button @click="emit('clickOpenList')" class="btn btn-primary" type="button" id="createWorkflowButton" data-bs-toggle="dropdown" aria-expanded="false">
+                <template v-if="countExistingWorkflows === 1">
+                    1 workflow associé
+                </template>
+                <template v-else>
+                    {{ countExistingWorkflows }} workflows associés
+                </template>
+            </button>
+        </div>
     </template>
 </template>
 
@@ -30,12 +62,18 @@ interface PickWorkflowConfig {
     workflowsAvailables: WorkflowAvailable[];
     preventDefaultMoveToGenerate: boolean;
     goToGenerateWorkflowPayload: object;
+    countExistingWorkflows: number;
+    /**
+     * if true, this button will not present a splitted button
+     */
+    embeddedWithinListModal: boolean;
 }
 
-const props = withDefaults(defineProps<PickWorkflowConfig>(), {preventDefaultMoveToGenerate: false, goToGenerateWorkflowPayload: {}});
+const props = withDefaults(defineProps<PickWorkflowConfig>(), {preventDefaultMoveToGenerate: false, goToGenerateWorkflowPayload: {}, allowCreateWorkflow: false});
 
 const emit = defineEmits<{
     (e: 'goToGenerateWorkflow', {event: MouseEvent, workflowName: string, isLinkValid: boolean, link: string, payload: object}): void;
+    (e: 'clickOpenList'): void;
 }>();
 
 const makeLink = (workflowName: string): string => buildLinkCreate(workflowName, props.relatedEntityClass, props.relatedEntityId);
diff --git a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
index d0b4affbf..a17cfbd0d 100644
--- a/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
+++ b/src/Bundle/ChillPersonBundle/Resources/public/vuejs/AccompanyingCourseWorkEdit/App.vue
@@ -340,7 +340,6 @@ import ThirdPartyRenderBox from 'ChillThirdPartyAssets/vuejs/_components/Entity/
 import PickTemplate from 'ChillDocGeneratorAssets/vuejs/_components/PickTemplate.vue';
 import OnTheFly from 'ChillMainAssets/vuejs/OnTheFly/components/OnTheFly.vue';
 import ListWorkflowModal from 'ChillMainAssets/vuejs/_components/EntityWorkflow/ListWorkflowModal.vue';
-import PickWorkflow from 'ChillMainAssets/vuejs/_components/EntityWorkflow/PickWorkflow.vue';
 import PersonText from 'ChillPersonAssets/vuejs/_components/Entity/PersonText.vue';
 import {buildLinkCreate} from 'ChillMainAssets/lib/entity-workflow/api';
 import { makeFetch } from 'ChillMainAssets/lib/api/apiMethods';
@@ -406,7 +405,6 @@ export default {
       PickTemplate,
       ListWorkflowModal,
       OnTheFly,
-      PickWorkflow,
       PersonText,
    },
    i18n,

From 5c0a383909c7edf27b4e2117b922b08d8ccf06a0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 4 Nov 2024 14:16:52 +0100
Subject: [PATCH 356/375] Add null check to canRun method in
 CancelStaleWorkflowCronJob

Ensure the canRun method in CancelStaleWorkflowCronJob returns true when the cron job execution is null. This change includes updating the corresponding test case to cover the new behavior.
---
 .../Service/Workflow/CancelStaleWorkflowCronJob.php          | 4 ++++
 .../Services/Workflow/CancelStaleWorkflowCronJobTest.php     | 5 +++++
 2 files changed, 9 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
index e18f660c9..e8b67e0ab 100644
--- a/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
+++ b/src/Bundle/ChillMainBundle/Service/Workflow/CancelStaleWorkflowCronJob.php
@@ -37,6 +37,10 @@ class CancelStaleWorkflowCronJob implements CronJobInterface
 
     public function canRun(?CronJobExecution $cronJobExecution): bool
     {
+        if (null === $cronJobExecution) {
+            return true;
+        }
+
         return $this->clock->now() >= $cronJobExecution->getLastEnd()->add(new \DateInterval('P1D'));
     }
 
diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index e560e3871..448588338 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -104,6 +104,11 @@ class CancelStaleWorkflowCronJobTest extends TestCase
             (new CronJobExecution('last-canceled-workflow-id'))->setLastEnd(new \DateTimeImmutable('2023-12-31 00:00:01', new \DateTimeZone('+00:00'))),
             false,
         ];
+
+        yield [
+            null,
+            true
+        ];
     }
 
     private function buildMessageBus(bool $expectDispatchAtLeastOnce = false): MessageBusInterface

From 43b70fd773da890dd43fc1dba0eb42f37f7a0829 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Mon, 4 Nov 2024 15:26:07 +0100
Subject: [PATCH 357/375] Rename translation key for workflow signature titles

Updated the translation key from 'workflow.signature_required_title' to 'workflow.signatures_title' in the workflow history view. This change ensures consistency and proper usage of the translation key across different parts of the application.
---
 .../Resources/views/Workflow/_history.html.twig             | 4 ++--
 .../ChillMainBundle/translations/messages+intl-icu.fr.yaml  | 6 ++++++
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
index 9149e9a94..4ce53a845 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_history.html.twig
@@ -74,7 +74,7 @@
             {% if not loop.last and step.signatures|length > 0 %}
                 <div class="separator">
                     <div>
-                        <p><b>{{ 'workflow.signature_required_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
+                        <p><b>{{ 'workflow.signatures_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
                         <div>
                             {{ include('@ChillMain/Workflow/_signature_list.html.twig', {'signatures': step.signatures, is_small: true }) }}
                         </div>
@@ -130,7 +130,7 @@
                     </div>
                 </div>
                 {% if step.signatures|length > 0 %}
-                    <p><b>{{ 'workflow.signature_required_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
+                    <p><b>{{ 'workflow.signatures_title'|trans({'nb_signatures': step.signatures|length}) }}&nbsp;:</b></p>
                     {{ include('@ChillMain/Workflow/_signature_list.html.twig', {'signatures': step.signatures, is_small: true }) }}
                 {% endif %}
             {% endif %}
diff --git a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
index 5c67b3eaa..e86484114 100644
--- a/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
+++ b/src/Bundle/ChillMainBundle/translations/messages+intl-icu.fr.yaml
@@ -67,6 +67,12 @@ workflow:
             one {Signature demandée}
             other {Signatures demandées}
         }
+    signatures_title: >-
+        {nb_signatures, plural,
+            =0 {Aucune signature}
+            one {Signature}
+            other {Signatures}
+        }
     pending_signatures: >-
         {nb_signatures, plural,
             =0 {Aucune signature demandée}

From 7aca08c89e9ce0a555368b8dc3ca9db29e9dc41b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 17:10:48 +0100
Subject: [PATCH 358/375] Allow to remove the canceled workflow to be deleted,
 if canceled

- OP#812
- https://champs-libres.openproject.com/work_packages/812
---
 .../Entity/Workflow/EntityWorkflowSend.php    |   2 +-
 .../Entity/Workflow/EntityWorkflowStep.php    |   4 +-
 .../Authorization/EntityWorkflowVoter.php     |  22 +-
 .../Authorization/EntityWorkflowVoterTest.php | 194 ++++++++++++++++++
 4 files changed, 218 insertions(+), 4 deletions(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Security/Authorization/EntityWorkflowVoterTest.php

diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
index 528107561..5030d8b87 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowSend.php
@@ -56,7 +56,7 @@ class EntityWorkflowSend implements TrackCreationInterface
     /**
      * @var Collection<int, EntityWorkflowSendView>
      */
-    #[ORM\OneToMany(targetEntity: EntityWorkflowSendView::class, mappedBy: 'send')]
+    #[ORM\OneToMany(mappedBy: 'send', targetEntity: EntityWorkflowSendView::class, cascade: ['remove'])]
     private Collection $views;
 
     public function __construct(
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
index cd60d78d1..40a7bc1a2 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflowStep.php
@@ -66,7 +66,7 @@ class EntityWorkflowStep
     /**
      * @var Collection <int, EntityWorkflowStepSignature>
      */
-    #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepSignature::class, cascade: ['persist'], orphanRemoval: true)]
+    #[ORM\OneToMany(mappedBy: 'step', targetEntity: EntityWorkflowStepSignature::class, cascade: ['persist', 'remove'], orphanRemoval: true)]
     private Collection $signatures;
 
     #[ORM\ManyToOne(targetEntity: EntityWorkflow::class, inversedBy: 'steps')]
@@ -115,7 +115,7 @@ class EntityWorkflowStep
     /**
      * @var Collection<int, EntityWorkflowSend>
      */
-    #[ORM\OneToMany(mappedBy: 'entityWorkflowStep', targetEntity: EntityWorkflowSend::class, cascade: ['persist'], orphanRemoval: true)]
+    #[ORM\OneToMany(mappedBy: 'entityWorkflowStep', targetEntity: EntityWorkflowSend::class, cascade: ['persist', 'remove'], orphanRemoval: true)]
     private Collection $sends;
 
     public function __construct()
diff --git a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
index ee45d1e56..9f3ea6845 100644
--- a/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
+++ b/src/Bundle/ChillMainBundle/Security/Authorization/EntityWorkflowVoter.php
@@ -17,6 +17,7 @@ use Chill\MainBundle\Workflow\Helper\DuplicateEntityWorkflowFinder;
 use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
 use Symfony\Component\Security\Core\Authorization\Voter\Voter;
 use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\Registry;
 
 class EntityWorkflowVoter extends Voter
 {
@@ -32,6 +33,7 @@ class EntityWorkflowVoter extends Voter
         private readonly EntityWorkflowManager $manager,
         private readonly Security $security,
         private readonly DuplicateEntityWorkflowFinder $duplicateEntityWorkflowFinder,
+        private readonly Registry $registry,
     ) {}
 
     protected function supports($attribute, $subject)
@@ -83,7 +85,25 @@ class EntityWorkflowVoter extends Voter
                 return false;
 
             case self::DELETE:
-                return 'initial' === $subject->getStep();
+                if ('initial' === $subject->getStep()) {
+                    return true;
+                }
+
+                if (!$subject->isFinal()) {
+                    return false;
+                }
+
+                // the entity workflow is finalized. We check if the final is not positive. If yes, we can
+                // delete the entity
+                $workflow = $this->registry->get($subject, $subject->getWorkflowName());
+                foreach ($workflow->getMarking($subject)->getPlaces() as $place => $key) {
+                    $metadata = $workflow->getMetadataStore()->getPlaceMetadata($place);
+                    if (false === ($metadata['isFinalPositive'] ?? true)) {
+                        return true;
+                    }
+                }
+
+                return false;
 
             case self::SHOW_ENTITY_LINK:
                 if ('initial' === $subject->getStep()) {
diff --git a/src/Bundle/ChillMainBundle/Tests/Security/Authorization/EntityWorkflowVoterTest.php b/src/Bundle/ChillMainBundle/Tests/Security/Authorization/EntityWorkflowVoterTest.php
new file mode 100644
index 000000000..2cdf67df6
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Security/Authorization/EntityWorkflowVoterTest.php
@@ -0,0 +1,194 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Security\Authorization;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Security\Authorization\EntityWorkflowVoter;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\EntityWorkflowTransitionEventSubscriber;
+use Chill\MainBundle\Workflow\Helper\DuplicateEntityWorkflowFinder;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use PHPUnit\Framework\TestCase;
+use Psr\Log\NullLogger;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
+use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
+use Symfony\Component\Security\Core\Authorization\Voter\Voter;
+use Symfony\Component\Security\Core\Security;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class EntityWorkflowVoterTest extends TestCase
+{
+    public function testVoteDeleteEntityWorkflowForInitialPlace(): void
+    {
+        $entityWorkflow = $this->buildEntityWorkflow();
+
+        $voter = $this->buildVoter();
+        $token = $this->buildToken();
+
+        $actual = $voter->vote($token, $entityWorkflow, [EntityWorkflowVoter::DELETE]);
+
+        self::assertEquals(Voter::ACCESS_GRANTED, $actual);
+    }
+
+    public function testVoteDeleteEntityWorkflowForSomeOherPlace(): void
+    {
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [new User()];
+        $workflow->apply($entityWorkflow, 'move_to_in_between', ['context' => $dto, 'transition' => 'move_to_in_between', 'transitionAt' => new \DateTimeImmutable()]);
+
+        assert('in_between' === $entityWorkflow->getStep(), 'we ensure that the workflow is well transitionned');
+
+        $voter = $this->buildVoter();
+        $token = $this->buildToken();
+
+        $actual = $voter->vote($token, $entityWorkflow, [EntityWorkflowVoter::DELETE]);
+
+        self::assertEquals(Voter::ACCESS_DENIED, $actual);
+    }
+
+    public function testVoteDeleteEntityWorkflowForFinalPositive(): void
+    {
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [new User()];
+        $workflow->apply($entityWorkflow, 'move_to_final_positive', ['context' => $dto, 'transition' => 'move_to_final_positive', 'transitionAt' => new \DateTimeImmutable()]);
+
+        assert('final_positive' === $entityWorkflow->getStep(), 'we ensure that the workflow is well transitionned');
+
+        $voter = $this->buildVoter();
+        $token = $this->buildToken();
+
+        $actual = $voter->vote($token, $entityWorkflow, [EntityWorkflowVoter::DELETE]);
+
+        self::assertEquals(Voter::ACCESS_DENIED, $actual);
+    }
+
+    public function testVoteDeleteEntityWorkflowForFinalNegative(): void
+    {
+        $entityWorkflow = $this->buildEntityWorkflow();
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers = [new User()];
+        $workflow->apply($entityWorkflow, 'move_to_final_negative', ['context' => $dto, 'transition' => 'move_to_final_negative', 'transitionAt' => new \DateTimeImmutable()]);
+
+        $voter = $this->buildVoter();
+        $token = $this->buildToken();
+
+        $actual = $voter->vote($token, $entityWorkflow, [EntityWorkflowVoter::DELETE]);
+
+        self::assertEquals(Voter::ACCESS_GRANTED, $actual);
+    }
+
+    private function buildToken(): TokenInterface
+    {
+        return new UsernamePasswordToken($user = new User(), 'main', $user->getRoles());
+    }
+
+    private function buildVoter(): EntityWorkflowVoter
+    {
+        $manager = $this->createMock(EntityWorkflowManager::class);
+        $security = $this->createMock(Security::class);
+        $duplicateEntityWorkflowFind = $this->createMock(DuplicateEntityWorkflowFinder::class);
+
+        return new EntityWorkflowVoter(
+            $manager,
+            $security,
+            $duplicateEntityWorkflowFind,
+            $this->buildRegistry()
+        );
+    }
+
+    private function buildEntityWorkflow(): EntityWorkflow
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy');
+        $entityWorkflow->setRelatedEntityId(1)->setRelatedEntityClass(\stdClass::class);
+
+        return $entityWorkflow;
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $security = $this->createMock(Security::class);
+        $security->method('getUser')->willReturn(new User());
+
+        $builder = new DefinitionBuilder();
+        $builder->addPlaces(['initial', 'in_between', 'final_positive', 'final_negative']);
+
+        $metadataStore = new InMemoryMetadataStore(
+            placesMetadata: [
+                'final_positive' => [
+                    'isFinal' => true,
+                    'isFinalPositive' => true,
+                ],
+                'final_negative' => [
+                    'isFinal' => true,
+                    'isFinalPositive' => false,
+                ],
+            ]
+        );
+
+        $builder->setMetadataStore($metadataStore);
+
+        $transitions = [
+            new Transition('move_to_in_between', 'initial', 'in_between'),
+            new Transition('move_to_final_positive', 'initial', 'final_positive'),
+            new Transition('move_to_final_negative', 'initial', 'final_negative'),
+        ];
+
+        foreach ($transitions as $transition) {
+            $builder->addTransition($transition);
+        }
+
+        $definition = $builder->build();
+
+        $eventSubscriber = new EventDispatcher();
+        $eventSubscriber->addSubscriber(
+            new EntityWorkflowTransitionEventSubscriber(
+                new NullLogger(),
+                $security
+            )
+        );
+
+        $registry = new Registry();
+        $workflow = new Workflow($definition, new EntityWorkflowMarkingStore(), $eventSubscriber, name: 'dummy');
+
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+}

From ac353ec3bc58818ec90fb07e34680a213b5d532f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 17:10:53 +0100
Subject: [PATCH 359/375] fix cs

---
 .../Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
index 448588338..7f9246a81 100644
--- a/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Services/Workflow/CancelStaleWorkflowCronJobTest.php
@@ -107,7 +107,7 @@ class CancelStaleWorkflowCronJobTest extends TestCase
 
         yield [
             null,
-            true
+            true,
         ];
     }
 

From 5447ad29614be43d4d701d82af46cd8e98fb7b05 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 19:31:01 +0100
Subject: [PATCH 360/375] Fix casting zoom level from string to floatInt

Changed the type of the zoomLevel parameter from number to string and updated the assignment to parse the zoomLevel as a float. This ensures that the zoom functionality properly handles string inputs by converting them to numerical values.
---
 .../Resources/public/vuejs/DocumentSignature/App.vue          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 7b62f3fa7..52c33b0f8 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -331,8 +331,8 @@ const $toast = useToast();
 
 const signature = window.signature;
 
-const setZoomLevel = (zoomLevel: number) => {
-  zoom.value = zoomLevel;
+const setZoomLevel = (zoomLevel: string) => {
+  zoom.value = Number.parseFloat(zoomLevel);
   setPage(page.value);
   setTimeout(() => drawAllZones(page.value), 200);
 };

From b2f6dbbe3014956207cfca4b42f0a4793a8d4229 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 19:32:12 +0100
Subject: [PATCH 361/375] Show the zoom level also if there is only one page in
 the document

---
 .../public/vuejs/DocumentSignature/App.vue    | 68 ++++++++++---------
 1 file changed, 36 insertions(+), 32 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 52c33b0f8..b223882b2 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -28,7 +28,7 @@
   </teleport>
   <div class="col-12 m-auto">
     <div class="row justify-content-center border-bottom pdf-tools d-md-none">
-      <div v-if="pageCount > 1" class="col text-center turn-page">
+      <div class="col text-center turn-page">
         <select
           class="form-select form-select-sm"
           id="zoomSelect"
@@ -40,21 +40,23 @@
             {{ z.label.fr }}
           </option>
         </select>
-        <button
-          class="btn btn-light btn-xs p-1"
-          :disabled="page <= 1"
-          @click="turnPage(-1)"
-        >
-          ❮
-        </button>
-        <span>{{ page }}/{{ pageCount }}</span>
-        <button
-          class="btn btn-light btn-xs p-1"
-          :disabled="page >= pageCount"
-          @click="turnPage(1)"
-        >
-          ❯
-        </button>
+          <template v-if="pageCount > 1">
+            <button
+                class="btn btn-light btn-xs p-1"
+                :disabled="page <= 1"
+                @click="turnPage(-1)"
+            >
+                ❮
+            </button>
+            <span>{{ page }}/{{ pageCount }}</span>
+            <button
+                class="btn btn-light btn-xs p-1"
+                :disabled="page >= pageCount"
+                @click="turnPage(1)"
+            >
+                ❯
+            </button>
+          </template>
       </div>
       <div
         v-if="signature.zones.length > 1"
@@ -106,7 +108,7 @@
     <div
       class="row justify-content-center border-bottom pdf-tools d-none d-md-flex"
     >
-      <div v-if="pageCount > 1" class="col-3 text-center turn-page ps-3">
+      <div class="col-3 text-center turn-page ps-3">
         <select
           class="form-select form-select-sm"
           id="zoomSelect"
@@ -118,21 +120,23 @@
             {{ z.label.fr }}
           </option>
         </select>
-        <button
-          class="btn btn-light btn-xs p-1"
-          :disabled="page <= 1"
-          @click="turnPage(-1)"
-        >
-          ❮
-        </button>
-        <span>{{ page }} / {{ pageCount }}</span>
-        <button
-          class="btn btn-light btn-xs p-1"
-          :disabled="page >= pageCount"
-          @click="turnPage(1)"
-        >
-          ❯
-        </button>
+          <template v-if="pageCount > 1">
+            <button
+                class="btn btn-light btn-xs p-1"
+                :disabled="page <= 1"
+                @click="turnPage(-1)"
+            >
+                ❮
+            </button>
+            <span>{{ page }} / {{ pageCount }}</span>
+            <button
+                class="btn btn-light btn-xs p-1"
+                :disabled="page >= pageCount"
+                @click="turnPage(1)"
+            >
+                ❯
+            </button>
+          </template>
       </div>
       <div
         v-if="signature.zones.length > 1 && signedState !== 'signed'"

From db4d7669f1e2998f7d3c9041e609d76281119bf6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 19:04:12 +0100
Subject: [PATCH 362/375] Add duplication feature for evaluation documents
 within generic doc

Introduced a new method to duplicate evaluation documents and forward return path URLs. Updated templates to include duplication buttons and adjusted routing for handling the duplication process.
---
 .../Routing/ChillUrlGenerator.php             | 11 ++++++++
 .../Routing/ChillUrlGeneratorInterface.php    |  5 ++++
 ...kEvaluationDocumentDuplicateController.php | 28 ++++++++++++++++++-
 .../GenericDoc/evaluation_document.html.twig  | 11 ++++++--
 4 files changed, 52 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
index f88ac0c8a..df291b5bd 100644
--- a/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
+++ b/src/Bundle/ChillMainBundle/Routing/ChillUrlGenerator.php
@@ -40,4 +40,15 @@ final readonly class ChillUrlGenerator implements ChillUrlGeneratorInterface
 
         return $this->urlGenerator->generate($name, $parameters, $referenceType);
     }
+
+    public function forwardReturnPath(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string
+    {
+        $request = $this->requestStack->getCurrentRequest();
+
+        if ($request->query->has('returnPath')) {
+            return $this->urlGenerator->generate($name, [...$parameters, 'returnPath' => $request->query->get('returnPath')], $referenceType);
+        }
+
+        return $this->urlGenerator->generate($name, $parameters, $referenceType);
+    }
 }
diff --git a/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php b/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php
index 5c00fa665..26b7fe7a7 100644
--- a/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php
+++ b/src/Bundle/ChillMainBundle/Routing/ChillUrlGeneratorInterface.php
@@ -32,4 +32,9 @@ interface ChillUrlGeneratorInterface
      * Get the return path or, if any, generate an url.
      */
     public function returnPathOr(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string;
+
+    /**
+     * Return a new URL, with the same return path as the existing one. If any, no return path is forwarded.
+     */
+    public function forwardReturnPath(string $name, array $parameters = [], int $referenceType = UrlGeneratorInterface::ABSOLUTE_PATH): string;
 }
diff --git a/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
index ec48b5b24..033533b05 100644
--- a/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
+++ b/src/Bundle/ChillPersonBundle/Controller/AccompanyingPeriodWorkEvaluationDocumentDuplicateController.php
@@ -11,11 +11,13 @@ declare(strict_types=1);
 
 namespace Chill\PersonBundle\Controller;
 
+use Chill\MainBundle\Routing\ChillUrlGeneratorInterface;
 use Chill\PersonBundle\Entity\AccompanyingPeriod\AccompanyingPeriodWorkEvaluationDocument;
 use Chill\PersonBundle\Security\Authorization\AccompanyingPeriodWorkVoter;
 use Chill\PersonBundle\Service\AccompanyingPeriodWorkEvaluationDocument\AccompanyingPeriodWorkEvaluationDocumentDuplicator;
 use Doctrine\ORM\EntityManagerInterface;
 use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 use Symfony\Component\Routing\Annotation\Route;
@@ -30,10 +32,11 @@ class AccompanyingPeriodWorkEvaluationDocumentDuplicateController
         private readonly Security $security,
         private readonly SerializerInterface $serializer,
         private readonly EntityManagerInterface $entityManager,
+        private readonly ChillUrlGeneratorInterface $urlGenerator,
     ) {}
 
     #[Route('/api/1.0/person/accompanying-course-work-evaluation-document/{id}/duplicate', methods: ['POST'])]
-    public function __invoke(AccompanyingPeriodWorkEvaluationDocument $document): Response
+    public function duplicateApi(AccompanyingPeriodWorkEvaluationDocument $document): Response
     {
         $work = $document->getAccompanyingPeriodWorkEvaluation()->getAccompanyingPeriodWork();
 
@@ -52,4 +55,27 @@ class AccompanyingPeriodWorkEvaluationDocumentDuplicateController
             json: true
         );
     }
+
+    #[Route('/{_locale}/person/accompanying-course-work-evaluation-document/{id}/duplicate', name: 'chill_person_accompanying_period_work_evaluation_document_duplicate', methods: ['POST'])]
+    public function duplicate(AccompanyingPeriodWorkEvaluationDocument $document): Response
+    {
+        $work = $document->getAccompanyingPeriodWorkEvaluation()->getAccompanyingPeriodWork();
+
+        if (!$this->security->isGranted(AccompanyingPeriodWorkVoter::UPDATE, $work)) {
+            throw new AccessDeniedHttpException('not allowed to edit this accompanying period work');
+        }
+
+        $duplicatedDocument = $this->duplicator->duplicate($document);
+
+        $this->entityManager->persist($duplicatedDocument);
+        $this->entityManager->persist($duplicatedDocument->getStoredObject());
+        $this->entityManager->flush();
+
+        return new RedirectResponse(
+            $this->urlGenerator->forwardReturnPath(
+                'chill_person_accompanying_period_work_edit',
+                ['id' => $work->getId(), 'doc_id' => $duplicatedDocument->getId()]
+            )
+        );
+    }
 }
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/GenericDoc/evaluation_document.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/GenericDoc/evaluation_document.html.twig
index ae54d077b..70ff82b88 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/GenericDoc/evaluation_document.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/GenericDoc/evaluation_document.html.twig
@@ -60,9 +60,11 @@
                     {{ document.storedObject|chill_document_button_group(document.title, is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_UPDATE', document.accompanyingPeriodWorkEvaluation.accompanyingPeriodWork)) }}
                 </li>
             {% endif %}
-            {% if is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_SEE', w)%}
+            {% if is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_UPDATE', w) %}
                 <li>
-                    <a href="{{ chill_path_add_return_path('chill_person_accompanying_period_work_show', {'id': w.id, 'docId': document.id}) }}" class="btn btn-show"></a>
+                    <form method="post" action="{{ chill_path_add_return_path('chill_person_accompanying_period_work_evaluation_document_duplicate', {id: document.id}) }}">
+                        <button type="submit" class="btn btn-duplicate" title="{{ 'crud.view.link_duplicate'|trans }}"></button>
+                    </form>
                 </li>
             {% endif %}
             {% if is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_UPDATE', w) %}
@@ -70,6 +72,11 @@
                     <a href="{{ chill_path_add_return_path('chill_person_accompanying_period_work_edit', {'id': w.id, 'docId': document.id}) }}" class="btn btn-edit"></a>
                 </li>
             {% endif %}
+            {% if is_granted('CHILL_MAIN_ACCOMPANYING_PERIOD_WORK_SEE', w)%}
+                <li>
+                    <a href="{{ chill_path_add_return_path('chill_person_accompanying_period_work_show', {'id': w.id, 'docId': document.id}) }}" class="btn btn-show"></a>
+                </li>
+            {% endif %}
         </ul>
 
     </div>

From b6c141a7850059ac8fd41f8d11e9ea6ad95fb4c7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Wed, 6 Nov 2024 19:51:56 +0100
Subject: [PATCH 363/375] Change `zoomLevel` from `const` to `let`.

Replaced `const` with `let` for `zoomLevel` in `App.vue` to allow reassignment. This change ensures proper handling of dynamic zoom levels during document signature operations.
---
 .../Resources/public/vuejs/DocumentSignature/App.vue            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index b223882b2..5fcdb8545 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -277,7 +277,7 @@ const signedState: Ref<SignedState> = ref("pending");
 const page: Ref<number> = ref(1);
 const pageCount: Ref<number> = ref(0);
 const zoom: Ref<number> = ref(1);
-const zoomLevel = "";
+let zoomLevel = "";
 const zoomLevels: Ref<ZoomLevel[]> = ref([
   {
     id: 0,

From e5148f603b145d8c191ed83f66691e629492ca21 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 7 Nov 2024 19:55:09 +0100
Subject: [PATCH 364/375] Add TransitionHasSignerIfSignature validator

Introduced a new validator `TransitionHasSignerIfSignature` to enforce that a signature transition must have a designated signer. Included related tests, updated DTO annotations, and added translations for new validation messages.
---
 ...itionHasSignerIfSignatureValidatorTest.php | 175 ++++++++++++++++++
 .../TransitionHasSignerIfSignature.php        |  27 +++
 ...ransitionHasSignerIfSignatureValidator.php |  68 +++++++
 .../Workflow/WorkflowTransitionContextDTO.php |   2 +
 .../translations/validators.fr.yml            |   1 +
 5 files changed, 273 insertions(+)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasSignerIfSignatureValidatorTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignature.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignatureValidator.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasSignerIfSignatureValidatorTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasSignerIfSignatureValidatorTest.php
new file mode 100644
index 000000000..9b385d4cb
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/Validator/TransitionHasSignerIfSignatureValidatorTest.php
@@ -0,0 +1,175 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\Validator;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\Validator\TransitionHasSignerIfSignature;
+use Chill\MainBundle\Workflow\Validator\TransitionHasSignerIfSignatureValidator;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Chill\PersonBundle\Entity\Person;
+use Symfony\Component\Validator\Test\ConstraintValidatorTestCase;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class TransitionHasSignerIfSignatureValidatorTest extends ConstraintValidatorTestCase
+{
+    public function testMovingToNotSignatureDoesNotGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_not_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testMovingToNotSignatureWithAPersonGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $dto->futurePersonSignatures = [new Person()];
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_not_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageShouldBeEmpty)
+            ->setCode('81d9e284-9d31-11ef-a078-6767f100370b')
+            ->atPath('property.path.futurePersonSignatures')
+            ->assertRaised();
+    }
+
+    public function testMovingToNotSignatureWithAUserGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $dto->futureUserSignature = new User();
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_not_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation($constraint->messageShouldBeEmpty)
+            ->setCode('81d9e284-9d31-11ef-a078-6767f100370b')
+            ->atPath('property.path.futureUserSignature')
+            ->assertRaised();
+    }
+
+    public function testStepMovingToSignatureWithoutDestineeDoesGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+        $constraint->message = 'test';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::buildViolation('test')
+            ->setCode('81d9e284-9d31-11ef-a078-6767f100370b')
+            ->assertRaised();
+    }
+
+    public function testStepMovingToSignatureWithPersonDoesGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $dto->futurePersonSignatures = [new Person()];
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+        $constraint->message = 'test';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    public function testStepMovingToSignatureWithUserDoesGenerateViolation(): void
+    {
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow = new EntityWorkflow());
+        $dto->futureUserSignature = new User();
+        $entityWorkflow->setWorkflowName('dummy');
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+        $dto->transition = $workflow->getEnabledTransition($entityWorkflow, 'to_signature');
+
+        $constraint = new TransitionHasSignerIfSignature();
+        $constraint->message = 'test';
+
+        $this->validator->validate($dto, $constraint);
+
+        self::assertNoViolation();
+    }
+
+    protected function createValidator()
+    {
+        return new TransitionHasSignerIfSignatureValidator($this->buildRegistry());
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $builder = new DefinitionBuilder();
+        $builder
+            ->addPlaces(['initial', 'signature', 'not_signature'])
+            ->addTransition(new Transition('to_signature', 'initial', 'signature'))
+            ->addTransition(new Transition('to_not_signature', 'initial', 'not_signature'))
+            ->setMetadataStore(
+                new InMemoryMetadataStore(
+                    placesMetadata: [
+                        'signature' => [
+                            'isSignature' => ['person', 'user'],
+                        ],
+                    ]
+                )
+            );
+
+        $workflow = new Workflow($builder->build(), new EntityWorkflowMarkingStore(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignature.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignature.php
new file mode 100644
index 000000000..87e98fd4e
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignature.php
@@ -0,0 +1,27 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Symfony\Component\Validator\Constraint;
+
+#[\Attribute]
+class TransitionHasSignerIfSignature extends Constraint
+{
+    public $message = 'workflow.You must add a destinee for signing';
+    public $messageShouldBeEmpty = 'workflow.You must not add a destinee for signing';
+    public $code = '81d9e284-9d31-11ef-a078-6767f100370b';
+
+    public function getTargets(): string
+    {
+        return self::CLASS_CONSTRAINT;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignatureValidator.php b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignatureValidator.php
new file mode 100644
index 000000000..834784579
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/Validator/TransitionHasSignerIfSignatureValidator.php
@@ -0,0 +1,68 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\Validator;
+
+use Chill\MainBundle\Entity\User;
+use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Symfony\Component\Validator\Constraint;
+use Symfony\Component\Validator\ConstraintValidator;
+use Symfony\Component\Validator\Exception\UnexpectedTypeException;
+use Symfony\Component\Workflow\Registry;
+
+final class TransitionHasSignerIfSignatureValidator extends ConstraintValidator
+{
+    public function __construct(
+        private readonly Registry $registry,
+    ) {}
+
+    public function validate($value, Constraint $constraint): void
+    {
+        if (!$constraint instanceof TransitionHasSignerIfSignature) {
+            throw new UnexpectedTypeException($constraint, TransitionHasSignerIfSignature::class);
+        }
+
+        if (!$value instanceof WorkflowTransitionContextDTO) {
+            throw new UnexpectedTypeException($value, WorkflowTransitionContextDTO::class);
+        }
+
+        if (null === $value->transition) {
+            return;
+        }
+
+        $workflow = $this->registry->get($value->entityWorkflow, $value->entityWorkflow->getWorkflowName());
+
+        foreach ($value->transition->getTos() as $to) {
+            $metadata = $workflow->getMetadataStore()->getPlaceMetadata($to);
+
+            if ([] !== ($metadata['isSignature'] ?? [])) {
+                if (null === $value->futureUserSignature && [] === $value->futurePersonSignatures) {
+                    $this->context->buildViolation($constraint->message)
+                        ->setCode($constraint->code)
+                        ->addViolation();
+
+                    return;
+                }
+
+                return;
+
+            }
+        }
+
+        // at this step, there is no signature in the To, we must check there is not users or persons
+        if ($value->futureUserSignature instanceof User || [] !== $value->futurePersonSignatures) {
+            $this->context->buildViolation($constraint->messageShouldBeEmpty)
+                ->setCode($constraint->code)
+                ->atPath($value->futureUserSignature instanceof User ? 'futureUserSignature' : 'futurePersonSignatures')
+                ->addViolation();
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
index 324bef7e8..dcc4dbb69 100644
--- a/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
+++ b/src/Bundle/ChillMainBundle/Workflow/WorkflowTransitionContextDTO.php
@@ -16,6 +16,7 @@ use Chill\MainBundle\Entity\UserGroup;
 use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
 use Chill\MainBundle\Workflow\Validator\TransitionHasDestineeIfIsSentExternal;
 use Chill\MainBundle\Workflow\Validator\TransitionHasDestUserIfRequired;
+use Chill\MainBundle\Workflow\Validator\TransitionHasSignerIfSignature;
 use Chill\PersonBundle\Entity\Person;
 use Chill\ThirdPartyBundle\Entity\ThirdParty;
 use Chill\ThirdPartyBundle\Validator\ThirdPartyHasEmail;
@@ -28,6 +29,7 @@ use Symfony\Component\Workflow\Transition;
  */
 #[TransitionHasDestineeIfIsSentExternal]
 #[TransitionHasDestUserIfRequired]
+#[TransitionHasSignerIfSignature]
 class WorkflowTransitionContextDTO
 {
     /**
diff --git a/src/Bundle/ChillMainBundle/translations/validators.fr.yml b/src/Bundle/ChillMainBundle/translations/validators.fr.yml
index 7e852177a..d5be5f7d3 100644
--- a/src/Bundle/ChillMainBundle/translations/validators.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/validators.fr.yml
@@ -36,6 +36,7 @@ workflow:
     The user in cc cannot be a dest user in the same workflow step: L'utilisateur en copie ne peut pas être présent dans les utilisateurs qui valideront la prochaine étape
     transition_has_destinee_if_sent_external: Indiquez un destinataire de l'envoi externe
     transition_destinee_not_necessary: Pour cette transition, vous ne pouvez pas indiquer de destinataires externes
+    You must add a destinee for signing: Indiquez un usager ou un utilisateur pour signature
 
 rolling_date:
     When fixed date is selected, you must provide a date: Indiquez la date fixe choisie

From 8e34f6962ae747a115672ed30c086490c64a9b8a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 7 Nov 2024 20:10:37 +0100
Subject: [PATCH 365/375] Add conditional cursor style for canvas when a zone
 is added within the canvas

Modified the canvas element to conditionally apply a CSS class when adding a zone. This change ensures the cursor changes to 'copy' for visual feedback during the add operation.
---
 .../public/vuejs/DocumentSignature/App.vue          | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 5fcdb8545..924e30c30 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -206,8 +206,8 @@
       </div>
     </div>
   </div>
-  <div class="col-xs-12 col-md-12 col-lg-9 m-auto my-5 text-center">
-    <canvas class="m-auto" id="canvas"></canvas>
+  <div class="col-xs-12 col-md-12 col-lg-9 m-auto my-5 text-center" :class="{onAddZone: canvasEvent === 'add'}">
+    <canvas class="m-auto" id="canvas" ></canvas>
   </div>
 
   <div class="col-xs-12 col-md-12 col-lg-9 m-auto p-4" id="action-buttons">
@@ -672,6 +672,15 @@ init();
 #canvas {
   box-shadow: 0 20px 20px rgba(0, 0, 0, 0.2);
 }
+
+.onAddZone {
+    cursor: not-allowed;
+
+    #canvas {
+        cursor: copy;
+    }
+}
+
 div#action-buttons {
   position: sticky;
   bottom: 0px;

From 0439c293056487ae069e1bf3b41cf3173245003b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Thu, 7 Nov 2024 21:52:44 +0100
Subject: [PATCH 366/375] Prevent workflow execution for finalized transitions

Added a check in the workflow-show page script to stop the execution if a transition is marked as finalized (`toFinal`). This ensures that transitions leading to final states are not processed further.
---
 .../Resources/public/page/workflow-show/index.js             | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
index 0f94ac374..7ae5ca621 100644
--- a/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
+++ b/src/Bundle/ChillMainBundle/Resources/public/page/workflow-show/index.js
@@ -25,6 +25,10 @@ window.addEventListener('DOMContentLoaded', function() {
         for (let transition of froms) {
           for (let input of transition.querySelectorAll('input')) {
             if (input.checked) {
+              if ('1' === input.dataset.toFinal) {
+                return false;
+              }
+
               if ('1' === input.dataset.isSentExternal) {
                 return false;
               }
@@ -151,6 +155,7 @@ window.addEventListener('DOMContentLoaded', function() {
                             }
                         }
                     }
+                    return true;
                 },
                 toggle_callback: function (c, dir) {
                     for (let div of c) {

From 5339d4f5d92bfcf09638ad090c2d139f3db401d6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 8 Nov 2024 19:35:03 +0100
Subject: [PATCH 367/375] Refactor button to add a manual zone

- do not show the button if a zone is selected (to avoid to create two selected zones on the document);
- change the button while waiting for the user to create a new zone: this make visible the fact that the app is waiting for a user action
---
 .../public/vuejs/DocumentSignature/App.vue    | 28 +++++++++++++------
 .../public/vuejs/DocumentSignature/index.ts   |  1 +
 2 files changed, 21 insertions(+), 8 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
index 924e30c30..d10f13a97 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/App.vue
@@ -96,12 +96,17 @@
         >
           {{ $t("cancel") }}
         </button>
-        <button
-          class="btn btn-create btn-sm"
-          :class="{ active: canvasEvent === 'add' }"
+        <button v-if="userSignatureZone === null"
+          :class="{ btn: true, 'btn-sm': true, 'btn-create': canvasEvent !== 'add', 'btn-chill-green': canvasEvent === 'add', active: canvasEvent === 'add' }"
           @click="toggleAddZone()"
           :title="$t('add_sign_zone')"
-        ></button>
+        >
+            <template v-if="canvasEvent === 'add'">
+                <div class="spinner-border spinner-border-sm" role="status">
+                    <span class="visually-hidden">Loading...</span>
+                </div>
+            </template>
+        </button>
       </div>
     </div>
 
@@ -195,13 +200,20 @@
         >
           {{ $t("cancel") }}
         </button>
-        <button
-          class="btn btn-create btn-sm"
-          :class="{ active: canvasEvent === 'add' }"
+        <button v-if="userSignatureZone === null"
+          :class="{ btn: true, 'btn-sm': true, 'btn-create': canvasEvent !== 'add', 'btn-chill-green': canvasEvent === 'add', active: canvasEvent === 'add' }"
           @click="toggleAddZone()"
           :title="$t('add_sign_zone')"
         >
-          {{ $t("add_zone") }}
+            <template v-if="canvasEvent !== 'add'">
+                {{ $t("add_zone") }}
+            </template>
+            <template v-else>
+              {{ $t("click_on_document")}}
+              <div class="spinner-border spinner-border-sm" role="status">
+                <span class="visually-hidden">Loading...</span>
+              </div>
+            </template>
         </button>
       </div>
     </div>
diff --git a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
index 49b0f6f79..835b5598b 100644
--- a/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
+++ b/src/Bundle/ChillDocStoreBundle/Resources/public/vuejs/DocumentSignature/index.ts
@@ -15,6 +15,7 @@ const appMessages = {
         last_sign_zone: 'Zone de signature précédente',
         next_sign_zone: 'Zone de signature suivante',
         add_sign_zone: 'Ajouter une zone de signature',
+        click_on_document: 'Cliquer sur le document',
         last_zone: 'Zone précédente',
         next_zone: 'Zone suivante',
         add_zone: 'Ajouter une zone',

From 64d91e2afe5161bb9bf734d01982401e043665e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Fri, 8 Nov 2024 20:34:45 +0100
Subject: [PATCH 368/375] Allow users to edit a document if they were added to
 the previous step of a workflow.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

OP#826 Workflow - les utilisateurs des étapes précédentes sur un workflow doivent aussi avoir la main sur les étapes en cours du workflow (Vendee/accent-suivi-developpement/1289)

https://champs-libres.openproject.com/work_packages/826
---
 .../WorkflowStoredObjectPermissionHelper.php  | 53 +++++++++++++------
 ...rkflowStoredObjectPermissionHelperTest.php | 25 ++++++++-
 .../Entity/Workflow/EntityWorkflow.php        |  3 ++
 3 files changed, 63 insertions(+), 18 deletions(-)

diff --git a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
index 971371bea..95cc77194 100644
--- a/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
+++ b/src/Bundle/ChillDocStoreBundle/Service/WorkflowStoredObjectPermissionHelper.php
@@ -16,6 +16,9 @@ use Chill\MainBundle\Workflow\EntityWorkflowManager;
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Workflow\Registry;
 
+/**
+ * Check if an object, associated with a workflow, is blocked, or not, by this workflow.
+ */
 class WorkflowStoredObjectPermissionHelper
 {
     public function __construct(
@@ -24,28 +27,19 @@ class WorkflowStoredObjectPermissionHelper
         private readonly Registry $registry,
     ) {}
 
+    /**
+     * Return true if the user is allowed to update the given object.
+     *
+     * Return false if some workflow block the edition of the object.
+     */
     public function notBlockedByWorkflow(object $entity): bool
     {
         $entityWorkflows = $this->entityWorkflowManager->findByRelatedEntity($entity);
         $currentUser = $this->security->getUser();
 
+        $usersInvolved = [];
+        $entityWorkflowsNotFinalizedPositive = [];
         foreach ($entityWorkflows as $entityWorkflow) {
-            if ($entityWorkflow->isFinal()) {
-
-                $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
-                $marking = $workflow->getMarkingStore()->getMarking($entityWorkflow);
-                foreach ($marking->getPlaces() as $place => $active) {
-                    $metadata = $workflow->getMetadataStore()->getPlaceMetadata($place);
-                    if ($metadata['isFinalPositive'] ?? true) {
-                        return false;
-                    }
-                }
-            } else {
-                if (!$entityWorkflow->getCurrentStep()->getAllDestUser()->contains($currentUser)) {
-                    return false;
-                }
-            }
-
             // as soon as there is one signatured applyied, we are not able to
             // edit the document any more
             foreach ($entityWorkflow->getSteps() as $step) {
@@ -55,6 +49,33 @@ class WorkflowStoredObjectPermissionHelper
                     }
                 }
             }
+
+            if ($entityWorkflow->isFinal()) {
+                $workflow = $this->registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+                $marking = $workflow->getMarkingStore()->getMarking($entityWorkflow);
+                foreach ($marking->getPlaces() as $place => $active) {
+                    $metadata = $workflow->getMetadataStore()->getPlaceMetadata($place);
+                    if ($metadata['isFinalPositive'] ?? true) {
+                        return false;
+                    }
+                }
+            } else {
+                $entityWorkflowsNotFinalizedPositive[] = $entityWorkflow;
+                foreach ($entityWorkflow->getSteps() as $step) {
+                    foreach ($step->getAllDestUser()->toArray() as $user) {
+                        $usersInvolved[] = $user;
+                    }
+                }
+            }
+        }
+
+        // if there isn't any user, but a workflow, blocked
+        if ([] !== $entityWorkflowsNotFinalizedPositive) {
+            if ([] === $usersInvolved) {
+                return false;
+            }
+
+            return in_array($currentUser, $usersInvolved, true);
         }
 
         return true;
diff --git a/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
index 8f693f44e..9cfd55c57 100644
--- a/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
+++ b/src/Bundle/ChillDocStoreBundle/Tests/Service/WorkflowStoredObjectPermissionHelperTest.php
@@ -53,13 +53,24 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
         self::assertEquals($expected, $helper->notBlockedByWorkflow($entityWorkflow), $message);
     }
 
-    private function buildHelper(object $relatedEntity, EntityWorkflow $entityWorkflow, User $user): WorkflowStoredObjectPermissionHelper
+    public function testNoWorkflow(): void
+    {
+        $object = new \stdClass();
+        $helper = $this->buildHelper($object, null, $user = new User());
+        self::assertTrue($helper->notBlockedByWorkflow($object), "the user is not blocked by the user, as there aren't any user inside");
+    }
+
+    private function buildHelper(object $relatedEntity, ?EntityWorkflow $entityWorkflow, User $user): WorkflowStoredObjectPermissionHelper
     {
         $security = $this->prophesize(Security::class);
         $security->getUser()->willReturn($user);
 
         $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
-        $entityWorkflowManager->findByRelatedEntity(Argument::type('object'))->willReturn([$entityWorkflow]);
+        if (null !== $entityWorkflow) {
+            $entityWorkflowManager->findByRelatedEntity(Argument::type('object'))->willReturn([$entityWorkflow]);
+        } else {
+            $entityWorkflowManager->findByRelatedEntity(Argument::type('object'))->willReturn([]);
+        }
 
         return new WorkflowStoredObjectPermissionHelper($security->reveal(), $entityWorkflowManager->reveal(), $this->buildRegistry());
     }
@@ -79,6 +90,16 @@ class WorkflowStoredObjectPermissionHelperTest extends TestCase
 
         yield [$entityWorkflow, $user, true, 'allowed because the user is present as a dest user'];
 
+        $entityWorkflow = new EntityWorkflow();
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = $user = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+        $dto = new WorkflowTransitionContextDTO($entityWorkflow);
+        $dto->futureDestUsers[] = new User();
+        $entityWorkflow->setStep('test', $dto, 'to_test', new \DateTimeImmutable(), $user);
+
+        yield [$entityWorkflow, $user, true, 'allowed because the user is present as a **previous** dest user'];
+
         $entityWorkflow = new EntityWorkflow();
         $dto = new WorkflowTransitionContextDTO($entityWorkflow);
         $dto->futureDestUsers[] = $user = new User();
diff --git a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
index d67a04b4b..99d5cdb7d 100644
--- a/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
+++ b/src/Bundle/ChillMainBundle/Entity/Workflow/EntityWorkflow.php
@@ -243,6 +243,9 @@ class EntityWorkflow implements TrackCreationInterface, TrackUpdateInterface
         throw new \RuntimeException();
     }
 
+    /**
+     * @return Selectable<int, EntityWorkflowStep>&Collection<int, EntityWorkflowStep>
+     */
     public function getSteps(): Collection&Selectable
     {
         return $this->steps;

From 3ec0d26001ea1a81d4fe353072fff0b5c1a6a66c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 10:13:20 +0100
Subject: [PATCH 369/375] Fix type error for displaying comment in accompanying
 period work detail view page

---
 .../Resources/views/AccompanyingCourseWork/_item.html.twig     | 2 +-
 .../_objectifs_results_evaluations.html.twig                   | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_item.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_item.html.twig
index 737a8af24..e041df14c 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_item.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_item.html.twig
@@ -211,7 +211,7 @@
         <h3 class="chill-beige">Public</h3>
         {% if w.note is not empty %}
             <blockquote class="chill-user-quote">
-                {{ w.note|chill_entity_render_box({'metadata': true }) }}
+                {{ w.note }}
             </blockquote>
         {% else %}
             <span class="chill-no-data-statement">{{ 'No comment associated'|trans }}</span>
diff --git a/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_objectifs_results_evaluations.html.twig b/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_objectifs_results_evaluations.html.twig
index da6ec6e32..f35310503 100644
--- a/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_objectifs_results_evaluations.html.twig
+++ b/src/Bundle/ChillPersonBundle/Resources/views/AccompanyingCourseWork/_objectifs_results_evaluations.html.twig
@@ -237,8 +237,7 @@
                         {% if displayContent is defined and displayContent == 'long' %}
 
                             {% if e.comment is not empty %}
-                                <blockquote
-                                    class="chill-user-quote">{{ e.comment|chill_entity_render_box }}</blockquote>
+                                <blockquote class="chill-user-quote">{{ e.comment }}</blockquote>
                             {% endif %}
 
                             {% import "@ChillDocStore/Macro/macro.html.twig" as m %}

From c3cc6c8353a305b22e7c8c873580963d2e9f9fa9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 13:57:20 +0100
Subject: [PATCH 370/375] Do not fail displaying notification when workflow has
 been deleted

---
 .../Workflow/_notification_include.html.twig  | 24 +++++++++++--------
 .../WorkflowNotificationHandler.php           |  6 ++++-
 .../translations/messages.fr.yml              |  1 +
 3 files changed, 20 insertions(+), 11 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_notification_include.html.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_notification_include.html.twig
index efc7ddfb1..9cd348333 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/_notification_include.html.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/_notification_include.html.twig
@@ -1,11 +1,15 @@
-<h2>
-    {{ 'workflow_'|trans }}
-</h2>
+{% if handler is not null %}
+    <h2>
+        {{ 'workflow_'|trans }}
+    </h2>
 
-<div class="item-row col" style="display: block;">
-    {% include handler.template(entity_workflow) with handler.templateData(entity_workflow)|merge({
-        'description': true,
-        'breadcrumb': true,
-        'add_classes': ''
-    }) %}
-</div>
+    <div class="item-row col" style="display: block;">
+        {% include handler.template(entity_workflow) with handler.templateData(entity_workflow)|merge({
+            'description': true,
+            'breadcrumb': true,
+            'add_classes': ''
+        }) %}
+    </div>
+{% else %}
+    <h2>{{ 'workflow.deleted_title'|trans }}</h2>
+{% endif %}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php b/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
index c9ba7cf79..3d4dd9c8c 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
@@ -33,7 +33,7 @@ class WorkflowNotificationHandler implements NotificationHandlerInterface
 
         return [
             'entity_workflow' => $entityWorkflow,
-            'handler' => $this->entityWorkflowManager->getHandler($entityWorkflow),
+            'handler' => null !== $entityWorkflow ? $this->entityWorkflowManager->getHandler($entityWorkflow): null,
             'notificationCc' => $this->isNotificationCc($notification),
         ];
     }
@@ -45,6 +45,10 @@ class WorkflowNotificationHandler implements NotificationHandlerInterface
         if (EntityWorkflow::class === $notification->getRelatedEntityClass()) {
             $relatedEntity = $this->entityWorkflowRepository->findOneBy(['id' => $notification->getRelatedEntityId()]);
 
+            if (null === $relatedEntity) {
+                return false;
+            }
+
             if ($relatedEntity->getCurrentStepCreatedBy() !== $this->security->getUser()) {
                 $notificationCc = true;
             }
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 51b263095..07a2bebc3 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -568,6 +568,7 @@ workflow:
     transition_destinee_emails_help: Le lien sécurisé sera envoyé à chaque adresse indiquée
     sent_through_secured_link: Envoi par lien sécurisé
     public_views_by_ip: Visualisation par adresse IP
+    deleted_title: Workflow supprimé
 
     public_link:
         expired_link_title: Lien expiré

From ddf73e1a4815b729ce320ac2674c1502abd50ce8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 14:52:13 +0100
Subject: [PATCH 371/375] Updated URL in French workflow notification template

The absolute url in the French version of the workflow notification content to user group has been updated. It now points to 'chill_main_workflow_grant_access_by_key' instead of 'chill_main_workflow_show'. This update improves the user experience by taking the user directly to the desired page.
---
 ...on_on_transition_completed_content_to_user_group.fr.txt.twig | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
index 343d450c9..6920bc008 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
@@ -4,6 +4,6 @@ Un suivi "{{ workflow.text }}" a atteint une nouvelle étape: {{ place.text }}
 
 Vous pouvez visualiser le workflow sur cette page:
 
-{{ absolute_url(path('chill_main_workflow_show', {'id': entity_workflow.id, '_locale': 'fr'})) }}
+{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.id, '_locale': 'fr', 'accessKey': entity_workflow.currentStep.accessKey})) }}
 
 Cordialement,

From bfa58177e020c0e14a91d0171f41d6838a29630a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 17:37:53 +0100
Subject: [PATCH 372/375] fix url for granting access to workflow by key

---
 ...sition_completed_content_to_user_group.fr.txt.twig |  2 +-
 .../NotificationToUserGroupsOnTransitionTest.php      | 11 +++++++++--
 2 files changed, 10 insertions(+), 3 deletions(-)

diff --git a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
index 6920bc008..b97fbf359 100644
--- a/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
+++ b/src/Bundle/ChillMainBundle/Resources/views/Workflow/workflow_notification_on_transition_completed_content_to_user_group.fr.txt.twig
@@ -4,6 +4,6 @@ Un suivi "{{ workflow.text }}" a atteint une nouvelle étape: {{ place.text }}
 
 Vous pouvez visualiser le workflow sur cette page:
 
-{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.id, '_locale': 'fr', 'accessKey': entity_workflow.currentStep.accessKey})) }}
+{{ absolute_url(path('chill_main_workflow_grant_access_by_key', {'id': entity_workflow.currentStep.id, '_locale': 'fr', 'accessKey': entity_workflow.currentStep.accessKey})) }}
 
 Cordialement,
diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
index 8c5bce7a6..329294ecc 100644
--- a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/NotificationToUserGroupsOnTransitionTest.php
@@ -18,6 +18,7 @@ use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
 use Chill\MainBundle\Workflow\EventSubscriber\NotificationToUserGroupsOnTransition;
 use Chill\MainBundle\Workflow\Helper\MetadataExtractor;
 use Chill\MainBundle\Workflow\WorkflowTransitionContextDTO;
+use Doctrine\ORM\EntityManagerInterface;
 use Prophecy\Argument;
 use Prophecy\PhpUnit\ProphecyTrait;
 use Symfony\Bridge\Twig\Mime\TemplatedEmail;
@@ -45,12 +46,14 @@ class NotificationToUserGroupsOnTransitionTest extends KernelTestCase
     use ProphecyTrait;
     private Environment $twig;
     private BodyRendererInterface $bodyRenderer;
+    private EntityManagerInterface $em;
 
     protected function setUp(): void
     {
         self::bootKernel();
         $this->twig = self::getContainer()->get('twig');
         $this->bodyRenderer = self::getContainer()->get(BodyRendererInterface::class);
+        $this->em = self::getContainer()->get('doctrine.orm.entity_manager');
     }
 
     public function testOnCompletedSendNotificationToUserGroupWithEmailAddress(): void
@@ -66,7 +69,11 @@ class NotificationToUserGroupsOnTransitionTest extends KernelTestCase
         $ug->setEmail('test@email.com')->setLabel(['fr' => 'test group']);
 
         $mailer = $this->prophesize(MailerInterface::class);
-        $sendMethod = $mailer->send(Argument::that(function (RawMessage $message): bool {
+        $sendMethod = $mailer->send(Argument::that(function (RawMessage $message) use ($entityWorkflow): bool {
+            // we need to set an id to the current step of the entity workflow
+            $this->em->persist($entityWorkflow);
+            $this->em->persist($entityWorkflow->getCurrentStep());
+
             if (!$message instanceof TemplatedEmail) {
                 return false;
             }
@@ -111,7 +118,7 @@ class NotificationToUserGroupsOnTransitionTest extends KernelTestCase
         $workflow->apply($entityWorkflow, 'to_one', ['context' => $dto, 'transition' => 'to_one', 'transitionAt' => new \DateTimeImmutable(), 'byUser' => new User()]);
     }
 
-    public function buildRegistryWithEventSubscriber(MailerInterface $mailer, MetadataExtractor $metadataExtractor): Registry
+    private function buildRegistryWithEventSubscriber(MailerInterface $mailer, MetadataExtractor $metadataExtractor): Registry
     {
         $builder = new DefinitionBuilder();
         $builder

From 79621e8ab720c539c00fa17da0c9fe27ff795619 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 18:14:30 +0100
Subject: [PATCH 373/375] Add guard to block signatures on related entities
 without objects

Implemented a guard to prevent signatures on related entities that lack a stored object. It also includes corresponding tests and added translation for the error message in French.
---
 ...dEntityWithoutAnyStoredObjectGuardTest.php | 135 ++++++++++++++++++
 .../Workflow/EntityWorkflowManager.php        |  19 +++
 ...latedEntityWithoutAnyStoredObjectGuard.php |  57 ++++++++
 .../WorkflowNotificationHandler.php           |   2 +-
 .../translations/messages.fr.yml              |   1 +
 5 files changed, 213 insertions(+), 1 deletion(-)
 create mode 100644 src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuardTest.php
 create mode 100644 src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php

diff --git a/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuardTest.php b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuardTest.php
new file mode 100644
index 000000000..8f11dfd0b
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Tests/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuardTest.php
@@ -0,0 +1,135 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Tests\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Chill\MainBundle\Workflow\EntityWorkflowMarkingStore;
+use Chill\MainBundle\Workflow\EventSubscriber\BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard;
+use PHPUnit\Framework\TestCase;
+use Prophecy\Argument;
+use Prophecy\PhpUnit\ProphecyTrait;
+use Symfony\Component\EventDispatcher\EventDispatcher;
+use Symfony\Component\Workflow\DefinitionBuilder;
+use Symfony\Component\Workflow\Metadata\InMemoryMetadataStore;
+use Symfony\Component\Workflow\Registry;
+use Symfony\Component\Workflow\SupportStrategy\WorkflowSupportStrategyInterface;
+use Symfony\Component\Workflow\Transition;
+use Symfony\Component\Workflow\Workflow;
+use Symfony\Component\Workflow\WorkflowInterface;
+
+/**
+ * @internal
+ *
+ * @coversNothing
+ */
+class BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuardTest extends TestCase
+{
+    use ProphecyTrait;
+
+    public function testAllowedForSignatureOnRelatedEntityWithStoredObject(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy')->setRelatedEntityClass('with_stored_object');
+
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        $list = $workflow->buildTransitionBlockerList($entityWorkflow, 'to_signature');
+
+        self::assertCount(0, $list);
+    }
+
+    public function testBlockForSignatureOnRelatedEntityWithoutStoredObject(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy')->setRelatedEntityClass('no_stored_object');
+
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        $list = $workflow->buildTransitionBlockerList($entityWorkflow, 'to_signature');
+
+        self::assertCount(1, $list);
+        self::assertTrue($list->has('e8e28caa-a106-11ef-97e8-f3919e8b5c8a'));
+    }
+
+    public function testAllowedForNoSignatureOnRelatedEntityWithoutStoredObject(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy')->setRelatedEntityClass('no_stored_object');
+
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        $list = $workflow->buildTransitionBlockerList($entityWorkflow, 'to_no_signature');
+
+        self::assertTrue($list->isEmpty());
+    }
+
+    public function testAllowedForNoSignatureOnRelatedEntityWithStoredObject(): void
+    {
+        $entityWorkflow = new EntityWorkflow();
+        $entityWorkflow->setWorkflowName('dummy')->setRelatedEntityClass('no_stored_object');
+
+        $registry = $this->buildRegistry();
+        $workflow = $registry->get($entityWorkflow, $entityWorkflow->getWorkflowName());
+
+        $list = $workflow->buildTransitionBlockerList($entityWorkflow, 'to_no_signature');
+
+        self::assertTrue($list->isEmpty());
+    }
+
+    private function buildRegistry(): Registry
+    {
+        $definitionBuilder = new DefinitionBuilder();
+        $definitionBuilder
+            ->addPlaces(['initial', 'signature', 'no_signature'])
+            ->addTransition(
+                new Transition('to_signature', 'initial', 'signature')
+            )
+            ->addTransition(
+                new Transition('to_no_signature', 'initial', 'no_signature')
+            )
+            ->setMetadataStore(
+                new InMemoryMetadataStore(
+                    placesMetadata: ['signature' => ['isSignature' => ['person']]]
+                )
+            );
+
+        $workflow = new Workflow($definitionBuilder->build(), new EntityWorkflowMarkingStore(), $eventDispatcher = new EventDispatcher(), name: 'dummy');
+        $registry = new Registry();
+        $registry->addWorkflow($workflow, new class () implements WorkflowSupportStrategyInterface {
+            public function supports(WorkflowInterface $workflow, object $subject): bool
+            {
+                return true;
+            }
+        });
+
+        $entityWorkflowManager = $this->prophesize(EntityWorkflowManager::class);
+        $entityWorkflowManager->canAssociateStoredObject(Argument::type(EntityWorkflow::class))->will(
+            function ($args): bool {
+                /** @var EntityWorkflow $entityWorkflow */
+                $entityWorkflow = $args[0];
+
+                return 'with_stored_object' === $entityWorkflow->getRelatedEntityClass();
+            }
+        );
+        $eventSubscriber = new BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard(
+            $entityWorkflowManager->reveal()
+        );
+
+        $eventDispatcher->addSubscriber($eventSubscriber);
+
+        return $registry;
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
index 474370127..bfe41f559 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EntityWorkflowManager.php
@@ -61,6 +61,25 @@ class EntityWorkflowManager
         return null;
     }
 
+    /**
+     * Return true if the entityWorkflow may associate a stored object.
+     *
+     * Take care that, for various reasons, the method @see{getAssociatedStoredObject} may return null if, for
+     * various reasons, the associated stored object may not be retrieved.
+     *
+     * @return bool return true if the entityWorkflow may associate a stored object
+     */
+    public function canAssociateStoredObject(EntityWorkflow $entityWorkflow): bool
+    {
+        foreach ($this->handlers as $handler) {
+            if ($handler instanceof EntityWorkflowWithStoredObjectHandlerInterface && $handler->supports($entityWorkflow)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
     /**
      * @return list<EntityWorkflow>
      */
diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php
new file mode 100644
index 000000000..c94046c0a
--- /dev/null
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php
@@ -0,0 +1,57 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * Chill is a software for social workers
+ *
+ * For the full copyright and license information, please view
+ * the LICENSE file that was distributed with this source code.
+ */
+
+namespace Chill\MainBundle\Workflow\EventSubscriber;
+
+use Chill\MainBundle\Entity\Workflow\EntityWorkflow;
+use Chill\MainBundle\Workflow\EntityWorkflowManager;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\Workflow\Event\GuardEvent;
+use Symfony\Component\Workflow\TransitionBlocker;
+
+class BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard implements EventSubscriberInterface
+{
+    public function __construct(private EntityWorkflowManager $entityWorkflowManager) {}
+
+    public static function getSubscribedEvents()
+    {
+        return [
+            'workflow.guard' => [
+                ['blockSignatureIfNoStoredObject', 0],
+            ],
+        ];
+    }
+
+    public function blockSignatureIfNoStoredObject(GuardEvent $event): void
+    {
+        $entityWorkflow = $event->getSubject();
+
+        if (!$entityWorkflow instanceof EntityWorkflow) {
+            return;
+        }
+
+        $metadataStore = $event->getWorkflow()->getMetadataStore();
+
+        foreach ($event->getTransition()->getTos() as $to) {
+            $placeMetadata = $metadataStore->getPlaceMetadata($to);
+            if ([] !== ($placeMetadata['isSignature'] ?? [])) {
+                if (!$this->entityWorkflowManager->canAssociateStoredObject($entityWorkflow)) {
+                    $event->addTransitionBlocker(
+                        new TransitionBlocker(
+                            'workflow.May not associate a document',
+                            'e8e28caa-a106-11ef-97e8-f3919e8b5c8a'
+                        )
+                    );
+                }
+            }
+        }
+    }
+}
diff --git a/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php b/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
index 3d4dd9c8c..99cc163ed 100644
--- a/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
+++ b/src/Bundle/ChillMainBundle/Workflow/Notification/WorkflowNotificationHandler.php
@@ -33,7 +33,7 @@ class WorkflowNotificationHandler implements NotificationHandlerInterface
 
         return [
             'entity_workflow' => $entityWorkflow,
-            'handler' => null !== $entityWorkflow ? $this->entityWorkflowManager->getHandler($entityWorkflow): null,
+            'handler' => null !== $entityWorkflow ? $this->entityWorkflowManager->getHandler($entityWorkflow) : null,
             'notificationCc' => $this->isNotificationCc($notification),
         ];
     }
diff --git a/src/Bundle/ChillMainBundle/translations/messages.fr.yml b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
index 07a2bebc3..5344147d6 100644
--- a/src/Bundle/ChillMainBundle/translations/messages.fr.yml
+++ b/src/Bundle/ChillMainBundle/translations/messages.fr.yml
@@ -569,6 +569,7 @@ workflow:
     sent_through_secured_link: Envoi par lien sécurisé
     public_views_by_ip: Visualisation par adresse IP
     deleted_title: Workflow supprimé
+    May not associate a document: Le workflow ne concerne pas un document
 
     public_link:
         expired_link_title: Lien expiré

From 6453237340f9f1893ed5a294e93d3a1acdec319e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 21:22:51 +0100
Subject: [PATCH 374/375] Mark class as final and readonly

---
 ...BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php
index c94046c0a..44f9b6173 100644
--- a/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php
+++ b/src/Bundle/ChillMainBundle/Workflow/EventSubscriber/BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard.php
@@ -17,7 +17,7 @@ use Symfony\Component\EventDispatcher\EventSubscriberInterface;
 use Symfony\Component\Workflow\Event\GuardEvent;
 use Symfony\Component\Workflow\TransitionBlocker;
 
-class BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard implements EventSubscriberInterface
+final readonly class BlockSignatureOnRelatedEntityWithoutAnyStoredObjectGuard implements EventSubscriberInterface
 {
     public function __construct(private EntityWorkflowManager $entityWorkflowManager) {}
 

From 261d47a8a4238be88a792d802b936cb83aef657a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julien=20Fastr=C3=A9?= <julien.fastre@champs-libres.coop>
Date: Tue, 12 Nov 2024 21:25:23 +0100
Subject: [PATCH 375/375] Add changies

[ci-skip]
---
 .changes/unreleased/Feature-20241112-212340.yaml | 5 +++++
 .changes/unreleased/Feature-20241112-212417.yaml | 5 +++++
 .changes/unreleased/Feature-20241112-212503.yaml | 5 +++++
 3 files changed, 15 insertions(+)
 create mode 100644 .changes/unreleased/Feature-20241112-212340.yaml
 create mode 100644 .changes/unreleased/Feature-20241112-212417.yaml
 create mode 100644 .changes/unreleased/Feature-20241112-212503.yaml

diff --git a/.changes/unreleased/Feature-20241112-212340.yaml b/.changes/unreleased/Feature-20241112-212340.yaml
new file mode 100644
index 000000000..cd4da511c
--- /dev/null
+++ b/.changes/unreleased/Feature-20241112-212340.yaml
@@ -0,0 +1,5 @@
+kind: Feature
+body: Add a signature step in workflow, which allow to apply an electronic signature on documents
+time: 2024-11-12T21:23:40.271035497+01:00
+custom:
+    Issue: ""
diff --git a/.changes/unreleased/Feature-20241112-212417.yaml b/.changes/unreleased/Feature-20241112-212417.yaml
new file mode 100644
index 000000000..de0ca49c8
--- /dev/null
+++ b/.changes/unreleased/Feature-20241112-212417.yaml
@@ -0,0 +1,5 @@
+kind: Feature
+body: Keep an history of each version of a stored object.
+time: 2024-11-12T21:24:17.491708762+01:00
+custom:
+    Issue: ""
diff --git a/.changes/unreleased/Feature-20241112-212503.yaml b/.changes/unreleased/Feature-20241112-212503.yaml
new file mode 100644
index 000000000..935d452bb
--- /dev/null
+++ b/.changes/unreleased/Feature-20241112-212503.yaml
@@ -0,0 +1,5 @@
+kind: Feature
+body: Add a "send external" step in workflow, which allow to send stored objects and other elements to remote people, by sending them a public url
+time: 2024-11-12T21:25:03.599543577+01:00
+custom:
+    Issue: ""