Changement système de branches: passage à main et unification des versions via CMake

style(logging): reformat hashed IP computation for improved readability
style(app): reformat middleware configuration for improved readability
2026-01-20 10:39:53 +01:00 · 2026-01-20 10:01:40 +01:00 · 2026-01-20 09:58:10 +01:00 · 2026-01-20 09:57:59 +01:00 · 2026-01-20 09:57:38 +01:00 · 2026-01-20 09:57:27 +01:00
16 changed files with 467 additions and 26 deletions
--- a/.gitea/workflows/deploy.yml
+++ b/.gitea/workflows/deploy.yml
@@ -3,7 +3,7 @@ name: Deploy to Production
 on:
  push:
    branches:
-      - prod
+      - main

 jobs:
  validate:
@@ -40,17 +40,6 @@ jobs:
          restore-keys: |
            ${{ runner.os }}-pnpm-store-

-      - name: Cache Next.js build
-        if: matrix.component != 'backend'
-        uses: actions/cache@v4
-        with:
-          path: ${{ matrix.component }}/.next/cache
-          # Clé basée sur le lockfile et les fichiers source du composant
-          key: ${{ runner.os }}-nextjs-${{ matrix.component }}-${{ hashFiles('**/pnpm-lock.yaml') }}-${{ hashFiles(concat(matrix.component, '/**/*.[jt]s'), concat(matrix.component, '/**/*.[jt]sx')) }}
-          restore-keys: |
-            ${{ runner.os }}-nextjs-${{ matrix.component }}-${{ hashFiles('**/pnpm-lock.yaml') }}-
-            ${{ runner.os }}-nextjs-${{ matrix.component }}-
-
      - name: Install dependencies
        run: pnpm install --frozen-lockfile --prefer-offline

--- a/.output.txt
+++ b/.output.txt
@@ -0,0 +1,225 @@
+{
+  "name": "@memegoat/source",
+  "version": "0.0.1",
+  "description": "",
+  "scripts": {
+    "build": "pnpm run build:back && pnpm run build:front && pnpm run build:docs",
+    "build:front": "pnpm run -F @memegoat/frontend build",
+    "build:back": "pnpm run -F @memegoat/backend build",
+    "build:docs": "pnpm run -F @memegoat/documentation build",
+    "lint": "pnpm run lint:back && pnpm run lint:front && pnpm run lint:docs",
+    "lint:back": "pnpm run -F @memegoat/backend lint",
+    "lint:front": "pnpm run -F @memegoat/frontend lint",
+    "lint:docs": "pnpm run -F @memegoat/documentation lint",
+    "test": "pnpm run test:back && pnpm run test:front",
+    "test:back": "pnpm run -F @memegoat/backend test",
+    "test:front": "pnpm run -F @memegoat/frontend test",
+    "format": "pnpm run format:back && pnpm run format:front && pnpm run format:docs",
+    "format:back": "pnpm run -F @memegoat/backend format",
+    "format:front": "pnpm run -F @memegoat/frontend format",
+    "format:docs": "pnpm run -F @memegoat/documentation format",
+    "upgrade": "pnpm dlx taze minor"
+  },
+  "keywords": [],
+  "author": {
+    "name": "Mathis HERRIOT",
+    "email": "mherriot.pro@proton.me",
+    "role": "Author"
+  },
+  "license": "AGPL-3.0-only",
+  "devDependencies": {
+    "@biomejs/biome": "2.3.11"
+  }
+}
+{
+        "name": "@memegoat/backend",
+        "version": "0.0.1",
+        "description": "",
+        "author": "",
+        "private": true,
+        "license": "UNLICENSED",
+        "files": [
+                "dist",
+                ".migrations",
+                "drizzle.config.ts"
+        ],
+        "scripts": {
+                "build": "nest build",
+                "lint": "biome check",
+                "lint:write": "biome check --write",
+                "format": "biome format --write",
+                "start": "nest start",
+                "start:dev": "nest start --watch",
+                "start:debug": "nest start --debug --watch",
+                "start:prod": "node dist/main",
+                "test": "jest",
+                "test:watch": "jest --watch",
+                "test:cov": "jest --coverage",
+                "test:debug": "node --inspect-brk -r tsconfig-paths/register -r ts-node/register node_modules/.bin/jest --runInBand",
+                "test:e2e": "jest --config ./test/jest-e2e.json",
+                "db:generate": "drizzle-kit generate",
+                "db:migrate": "drizzle-kit migrate",
+                "db:studio": "drizzle-kit studio"
+        },
+        "dependencies": {
+                "@nestjs-modules/mailer": "^2.0.2",
+                "@nestjs/cache-manager": "^3.1.0",
+                "@nestjs/common": "^11.0.1",
+                "@nestjs/config": "^4.0.2",
+                "@nestjs/core": "^11.0.1",
+                "@nestjs/mapped-types": "^2.1.0",
+                "@nestjs/platform-express": "^11.0.1",
+                "@nestjs/schedule": "^6.1.0",
+                "@nestjs/throttler": "^6.5.0",
+                "@noble/post-quantum": "^0.5.4",
+                "@node-rs/argon2": "^2.0.2",
+                "@sentry/nestjs": "^10.32.1",
+                "@sentry/profiling-node": "^10.32.1",
+                "cache-manager": "^7.2.7",
+                "cache-manager-redis-yet": "^5.1.5",
+                "clamscan": "^2.4.0",
+                "class-transformer": "^0.5.1",
+                "class-validator": "^0.14.3",
+                "dotenv": "^17.2.3",
+                "drizzle-orm": "^0.45.1",
+                "fluent-ffmpeg": "^2.1.3",
+                "helmet": "^8.1.0",
+                "iron-session": "^8.0.4",
+                "jose": "^6.1.3",
+                "minio": "^8.0.6",
+                "nodemailer": "^7.0.12",
+                "otplib": "^12.0.1",
+                "pg": "^8.16.3",
+                "qrcode": "^1.5.4",
+                "reflect-metadata": "^0.2.2",
+                "rxjs": "^7.8.1",
+                "sharp": "^0.34.5",
+                "uuid": "^13.0.0",
+                "zod": "^4.3.5",
+                "drizzle-kit": "^0.31.8"
+        },
+        "devDependencies": {
+                "@nestjs/cli": "^11.0.0",
+                "globals": "^16.0.0",
+                "jest": "^30.0.0",
+                "source-map-support": "^0.5.21",
+                "supertest": "^7.0.0",
+                "ts-jest": "^29.2.5",
+                "ts-loader": "^9.5.2",
+                "ts-node": "^10.9.2",
+                "tsconfig-paths": "^4.2.0",
+                "tsx": "^4.21.0",
+                "typescript": "^5.7.3",
+                "typescript-eslint": "^8.20.0",
+                "@nestjs/schematics": "^11.0.0",
+                "@nestjs/testing": "^11.0.1",
+                "@types/express": "^5.0.0",
+                "@types/fluent-ffmpeg": "^2.1.28",
+                "@types/jest": "^30.0.0",
+                "@types/multer": "^2.0.0",
+                "@types/node": "^22.10.7",
+                "@types/nodemailer": "^7.0.4",
+                "@types/pg": "^8.16.0",
+                "@types/qrcode": "^1.5.6",
+                "@types/sharp": "^0.32.0",
+                "@types/supertest": "^6.0.2",
+                "@types/uuid": "^11.0.0",
+                "drizzle-kit": "^0.31.8"
+        },
+        "jest": {
+                "moduleFileExtensions": [
+                        "js",
+                        "json",
+                        "ts"
+                ],
+                "rootDir": "src",
+                "testRegex": ".*\\.spec\\.ts$",
+                "collectCoverageFrom": [
+                        "**/*.(t|j)s"
+                ],
+                "coverageDirectory": "../coverage",
+                "testEnvironment": "node",
+                "transformIgnorePatterns": [
+                        "node_modules/(?!(.pnpm/)?(jose|@noble|uuid)/)"
+                ],
+                "transform": {
+                        "^.+\\.(t|j)sx?$": "ts-jest"
+                },
+                "moduleNameMapper": {
+                        "^@noble/post-quantum/(.*)$": "<rootDir>/../node_modules/@noble/post-quantum/$1",
+                        "^@noble/hashes/(.*)$": "<rootDir>/../node_modules/@noble/hashes/$1"
+                }
+        }
+}
+{
+        "name": "@memegoat/frontend",
+        "version": "0.0.1",
+        "private": true,
+        "scripts": {
+                "dev": "next dev",
+                "build": "next build",
+                "start": "next start",
+                "lint": "biome check",
+                "format": "biome format --write"
+        },
+        "dependencies": {
+                "@hookform/resolvers": "^5.2.2",
+                "@radix-ui/react-accordion": "^1.2.12",
+                "@radix-ui/react-alert-dialog": "^1.1.15",
+                "@radix-ui/react-aspect-ratio": "^1.1.8",
+                "@radix-ui/react-avatar": "^1.1.11",
+                "@radix-ui/react-checkbox": "^1.3.3",
+                "@radix-ui/react-collapsible": "^1.1.12",
+                "@radix-ui/react-context-menu": "^2.2.16",
+                "@radix-ui/react-dialog": "^1.1.15",
+                "@radix-ui/react-dropdown-menu": "^2.1.16",
+                "@radix-ui/react-hover-card": "^1.1.15",
+                "@radix-ui/react-label": "^2.1.8",
+                "@radix-ui/react-menubar": "^1.1.16",
+                "@radix-ui/react-navigation-menu": "^1.2.14",
+                "@radix-ui/react-popover": "^1.1.15",
+                "@radix-ui/react-progress": "^1.1.8",
+                "@radix-ui/react-radio-group": "^1.3.8",
+                "@radix-ui/react-scroll-area": "^1.2.10",
+                "@radix-ui/react-select": "^2.2.6",
+                "@radix-ui/react-separator": "^1.1.8",
+                "@radix-ui/react-slider": "^1.3.6",
+                "@radix-ui/react-slot": "^1.2.4",
+                "@radix-ui/react-switch": "^1.2.6",
+                "@radix-ui/react-tabs": "^1.1.13",
+                "@radix-ui/react-toggle": "^1.1.10",
+                "@radix-ui/react-toggle-group": "^1.1.11",
+                "@radix-ui/react-tooltip": "^1.2.8",
+                "axios": "^1.13.2",
+                "class-variance-authority": "^0.7.1",
+                "clsx": "^2.1.1",
+                "cmdk": "^1.1.1",
+                "date-fns": "^4.1.0",
+                "embla-carousel-react": "^8.6.0",
+                "input-otp": "^1.4.2",
+                "lucide-react": "^0.562.0",
+                "next": "16.1.1",
+                "next-themes": "^0.4.6",
+                "react": "19.2.3",
+                "react-day-picker": "^9.13.0",
+                "react-dom": "19.2.3",
+                "react-hook-form": "^7.71.1",
+                "react-resizable-panels": "^4.4.1",
+                "recharts": "2.15.4",
+                "sonner": "^2.0.7",
+                "tailwind-merge": "^3.4.0",
+                "vaul": "^1.1.2",
+                "zod": "^4.3.5"
+        },
+        "devDependencies": {
+                "@biomejs/biome": "2.3.11",
+                "@tailwindcss/postcss": "^4",
+                "@types/node": "^20",
+                "@types/react": "^19",
+                "@types/react-dom": "^19",
+                "babel-plugin-react-compiler": "1.0.0",
+                "tailwindcss": "^4",
+                "tw-animate-css": "^1.4.0",
+                "typescript": "^5"
+        }
+}
--- a/ROADMAP.md
+++ b/ROADMAP.md
@@ -0,0 +1,50 @@
+# 🐐 Memegoat - Roadmap & Critères de Production
+
+Ce document définit les objectifs, les critères techniques et les fonctionnalités à atteindre pour que le projet Memegoat soit considéré comme prêt pour la production et conforme aux normes européennes (RGPD) et françaises.
+
+## 1. 🏗️ Architecture & Infrastructure
+- [x] Backend NestJS (TypeScript)
+- [x] Base de données PostgreSQL avec Drizzle ORM
+- [x] Stockage d'objets compatible S3 (MinIO)
+- [x] Service d'Emailing (Nodemailer / SMTPS)
+- [x] Documentation Technique & Référence API (`docs.memegoat.fr`)
+- [x] Health Checks (`/health`)
+- [x] Gestion des variables d'environnement (Validation avec Zod)
+- [ ] CI/CD (Build, Lint, Test, Deploy)
+
+## 2. 🔐 Sécurité & Authentification
+- [x] Hachage des mots de passe (Argon2id)
+- [x] Gestion des sessions robuste (JWT avec Refresh Token et Rotation)
+- [x] RBAC (Role Based Access Control) fonctionnel
+- [x] Système de Clés API (Hachées en base)
+- [x] Double Authentification (2FA / TOTP)
+- [x] Limitation de débit (Rate Limiting / Throttler)
+- [x] Validation stricte des entrées (DTOs + ValidationPipe)
+- [x] Protection contre les vulnérabilités OWASP (Helmet, CORS)
+
+## 3. ⚖️ Conformité RGPD (EU & France)
+- [x] Chiffrement natif des données personnelles (PII) via PGP (pgcrypto)
+- [x] Hachage aveugle (Blind Indexing) pour l'email (recherche/unicité)
+- [x] Journalisation d'audit complète (Audit Logs) pour les actions sensibles
+- [x] Gestion du consentement (Versionnage CGU/Politique de Confidentialité)
+- [x] Droit à l'effacement : Flux de suppression (Soft Delete -> Purge définitive)
+- [x] Droit à la portabilité : Export des données utilisateur (JSON)
+- [x] Purge automatique des données obsolètes (Signalements, Sessions expirées)
+- [x] Anonymisation des adresses IP (Hachage) dans les logs
+
+## 4. 🖼️ Fonctionnalités Coeur (Media & Galerie)
+- [x] Exploration (Trends, Recent, Favoris)
+- [x] Recherche par Tags, Catégories, Auteur, Texte
+- [x] Gestion des Favoris
+- [x] Upload sécurisé via S3 (URLs présignées)
+- [x] Scan Antivirus (ClamAV) et traitement des médias (WebP, WebM, AVIF, AV1)
+- [x] Limitation de la taille et des formats de fichiers entrants (Configurable)
+- [x] Système de Signalement (Reports) et workflow de modération
+- [ ] SEO : Metatags dynamiques et slugs sémantiques
+
+## 5. ✅ Qualité & Robustesse
+- [ ] Couverture de tests unitaires (Jest) > 80%
+- [ ] Tests d'intégration et E2E
+- [x] Gestion centralisée des erreurs (Filters NestJS)
+- [ ] Monitoring et centralisation des logs (ex: Sentry, ELK/Loki)
+- [ ] Performance : Cache (Redis) pour les tendances et recherches fréquentes
--- a/backend/package.json
+++ b/backend/package.json
@@ -1,6 +1,6 @@
 {
 	"name": "@memegoat/backend",
-	"version": "0.0.1",
+	"version": "0.0.0",
 	"description": "",
 	"author": "",
 	"private": true,
--- a/backend/src/app.module.ts
+++ b/backend/src/app.module.ts
@@ -12,6 +12,7 @@ import { AuthModule } from "./auth/auth.module";
 import { CategoriesModule } from "./categories/categories.module";
 import { CommonModule } from "./common/common.module";
 import { CrawlerDetectionMiddleware } from "./common/middlewares/crawler-detection.middleware";
+import { HTTPLoggerMiddleware } from "./common/middlewares/http-logger.middleware";
 import { validateEnv } from "./config/env.schema";
 import { ContentsModule } from "./contents/contents.module";
 import { CryptoModule } from "./crypto/crypto.module";
@@ -76,6 +77,8 @@ import { UsersModule } from "./users/users.module";
 })
 export class AppModule implements NestModule {
 	configure(consumer: MiddlewareConsumer) {
-		consumer.apply(CrawlerDetectionMiddleware).forRoutes("*");
+		consumer
+			.apply(HTTPLoggerMiddleware, CrawlerDetectionMiddleware)
+			.forRoutes("*");
 	}
 }
--- a/backend/src/auth/auth.service.ts
+++ b/backend/src/auth/auth.service.ts
@@ -110,6 +110,7 @@ export class AuthService {
 		const user = await this.usersService.findByEmailHash(emailHash);

 		if (!user) {
+			this.logger.warn(`Login failed: user not found for email hash`);
 			throw new UnauthorizedException("Invalid credentials");
 		}

@@ -119,10 +120,12 @@ export class AuthService {
 		);

 		if (!isPasswordValid) {
+			this.logger.warn(`Login failed: invalid password for user ${user.uuid}`);
 			throw new UnauthorizedException("Invalid credentials");
 		}

 		if (user.isTwoFactorEnabled) {
+			this.logger.log(`2FA required for user ${user.uuid}`);
 			return {
 				message: "2FA required",
 				requires2FA: true,
@@ -141,6 +144,7 @@ export class AuthService {
 			ip,
 		);

+		this.logger.log(`User ${user.uuid} logged in successfully`);
 		return {
 			message: "User logged in successfully",
 			access_token: accessToken,
@@ -165,6 +169,9 @@ export class AuthService {

 		const isValid = authenticator.verify({ token, secret });
 		if (!isValid) {
+			this.logger.warn(
+				`2FA verification failed for user ${userId}: invalid token`,
+			);
 			throw new UnauthorizedException("Invalid 2FA token");
 		}

@@ -179,6 +186,7 @@ export class AuthService {
 			ip,
 		);

+		this.logger.log(`User ${userId} logged in successfully via 2FA`);
 		return {
 			message: "User logged in successfully (2FA)",
 			access_token: accessToken,
--- a/backend/src/common/filters/http-exception.filter.ts
+++ b/backend/src/common/filters/http-exception.filter.ts
@@ -9,6 +9,14 @@ import {
 import * as Sentry from "@sentry/nestjs";
 import { Request, Response } from "express";

+interface RequestWithUser extends Request {
+	user?: {
+		sub?: string;
+		username?: string;
+		id?: string;
+	};
+}
+
@Catch()
 export class AllExceptionsFilter implements ExceptionFilter {
 	private readonly logger = new Logger("ExceptionFilter");
@@ -16,7 +24,7 @@ export class AllExceptionsFilter implements ExceptionFilter {
 	catch(exception: unknown, host: ArgumentsHost) {
 		const ctx = host.switchToHttp();
 		const response = ctx.getResponse<Response>();
-		const request = ctx.getRequest<Request>();
+		const request = ctx.getRequest<RequestWithUser>();

 		const status =
 			exception instanceof HttpException
@@ -28,6 +36,9 @@ export class AllExceptionsFilter implements ExceptionFilter {
 				? exception.getResponse()
 				: "Internal server error";

+		const userId = request.user?.sub || request.user?.id;
+		const userPart = userId ? `[User: ${userId}] ` : "";
+
 		const errorResponse = {
 			statusCode: status,
 			timestamp: new Date().toISOString(),
@@ -42,12 +53,12 @@ export class AllExceptionsFilter implements ExceptionFilter {
 		if (status === HttpStatus.INTERNAL_SERVER_ERROR) {
 			Sentry.captureException(exception);
 			this.logger.error(
-				`${request.method} ${request.url} - Error: ${exception instanceof Error ? exception.message : "Unknown error"}`,
+				`${userPart}${request.method} ${request.url} - Error: ${exception instanceof Error ? exception.message : "Unknown error"}`,
 				exception instanceof Error ? exception.stack : "",
 			);
 		} else {
 			this.logger.warn(
-				`${request.method} ${request.url} - Status: ${status} - Message: ${JSON.stringify(message)}`,
+				`${userPart}${request.method} ${request.url} - Status: ${status} - Message: ${JSON.stringify(message)}`,
 			);
 		}

--- a/backend/src/common/middlewares/http-logger.middleware.ts
+++ b/backend/src/common/middlewares/http-logger.middleware.ts
@@ -0,0 +1,37 @@
+import { createHash } from "node:crypto";
+import { Injectable, Logger, NestMiddleware } from "@nestjs/common";
+import { NextFunction, Request, Response } from "express";
+
+@Injectable()
+export class HTTPLoggerMiddleware implements NestMiddleware {
+	private readonly logger = new Logger("HTTP");
+
+	use(request: Request, response: Response, next: NextFunction): void {
+		const { method, originalUrl, ip } = request;
+		const userAgent = request.get("user-agent") || "";
+		const startTime = Date.now();
+
+		response.on("finish", () => {
+			const { statusCode } = response;
+			const contentLength = response.get("content-length");
+			const duration = Date.now() - startTime;
+
+			const hashedIp = createHash("sha256")
+				.update(ip as string)
+				.digest("hex");
+			const message = `${method} ${originalUrl} ${statusCode} ${contentLength || 0} - ${userAgent} ${hashedIp} +${duration}ms`;
+
+			if (statusCode >= 500) {
+				return this.logger.error(message);
+			}
+
+			if (statusCode >= 400) {
+				return this.logger.warn(message);
+			}
+
+			return this.logger.log(message);
+		});
+
+		next();
+	}
+}
--- a/backend/src/media/media.controller.spec.ts
+++ b/backend/src/media/media.controller.spec.ts
@@ -1,12 +1,12 @@
 import { Readable } from "node:stream";
 import { NotFoundException } from "@nestjs/common";
 import { Test, TestingModule } from "@nestjs/testing";
+import type { Response } from "express";
 import { S3Service } from "../s3/s3.service";
 import { MediaController } from "./media.controller";

 describe("MediaController", () => {
 	let controller: MediaController;
-	let s3Service: S3Service;

 	const mockS3Service = {
 		getFileInfo: jest.fn(),
@@ -20,7 +20,6 @@ describe("MediaController", () => {
 		}).compile();

 		controller = module.get<MediaController>(MediaController);
-		s3Service = module.get<S3Service>(S3Service);
 	});

 	it("should be defined", () => {
@@ -31,7 +30,7 @@ describe("MediaController", () => {
 		it("should stream the file and set headers with path containing slashes", async () => {
 			const res = {
 				setHeader: jest.fn(),
-			} as any;
+			} as unknown as Response;
 			const stream = new Readable();
 			stream.pipe = jest.fn();
 			const key = "contents/user-id/test.webp";
@@ -52,7 +51,7 @@ describe("MediaController", () => {

 		it("should throw NotFoundException if file is not found", async () => {
 			mockS3Service.getFileInfo.mockRejectedValue(new Error("Not found"));
-			const res = {} as any;
+			const res = {} as unknown as Response;

 			await expect(controller.getFile("invalid", res)).rejects.toThrow(
 				NotFoundException,
--- a/backend/src/media/media.controller.ts
+++ b/backend/src/media/media.controller.ts
@@ -1,5 +1,6 @@
 import { Controller, Get, NotFoundException, Param, Res } from "@nestjs/common";
 import type { Response } from "express";
+import type { BucketItemStat } from "minio";
 import { S3Service } from "../s3/s3.service";

@Controller("media")
@@ -9,7 +10,7 @@ export class MediaController {
 	@Get("*key")
 	async getFile(@Param("key") key: string, @Res() res: Response) {
 		try {
-			const stats = (await this.s3Service.getFileInfo(key)) as any;
+			const stats = (await this.s3Service.getFileInfo(key)) as BucketItemStat;
 			const stream = await this.s3Service.getFile(key);

 			const contentType =
--- a/backend/src/s3/s3.service.spec.ts
+++ b/backend/src/s3/s3.service.spec.ts
@@ -197,7 +197,7 @@ describe("S3Service", () => {

 		it("should use DOMAIN_NAME and PORT for localhost", () => {
 			(configService.get as jest.Mock).mockImplementation(
-				(key: string, def: any) => {
+				(key: string, def: unknown) => {
 					if (key === "API_URL") return null;
 					if (key === "DOMAIN_NAME") return "localhost";
 					if (key === "PORT") return 3000;
@@ -210,7 +210,7 @@ describe("S3Service", () => {

 		it("should use api.DOMAIN_NAME for production", () => {
 			(configService.get as jest.Mock).mockImplementation(
-				(key: string, def: any) => {
+				(key: string, def: unknown) => {
 					if (key === "API_URL") return null;
 					if (key === "DOMAIN_NAME") return "memegoat.fr";
 					return def;
--- a/backend/src/s3/s3.service.ts
+++ b/backend/src/s3/s3.service.ts
@@ -54,6 +54,7 @@ export class S3Service implements OnModuleInit, IStorageService {
 				...metaData,
 				"Content-Type": mimeType,
 			});
+			this.logger.log(`File uploaded successfully: ${fileName} to ${bucketName}`);
 			return fileName;
 		} catch (error) {
 			this.logger.error(`Error uploading file to ${bucketName}: ${error.message}`);
@@ -113,6 +114,7 @@ export class S3Service implements OnModuleInit, IStorageService {
 	async deleteFile(fileName: string, bucketName: string = this.bucketName) {
 		try {
 			await this.minioClient.removeObject(bucketName, fileName);
+			this.logger.log(`File deleted successfully: ${fileName} from ${bucketName}`);
 		} catch (error) {
 			this.logger.error(
 				`Error deleting file from ${bucketName}: ${error.message}`,
--- a/frontend/package.json
+++ b/frontend/package.json
@@ -1,6 +1,6 @@
 {
 	"name": "@memegoat/frontend",
-	"version": "0.0.1",
+	"version": "0.0.0",
 	"private": true,
 	"scripts": {
 		"dev": "next dev",
--- a/frontend/todo.md
+++ b/frontend/todo.md
@@ -0,0 +1,30 @@
+Réalisation du frontend :
+
+# Exigences
+
+-   Responsive dans tout les formats tailwindcss
+-   Accessibilité A11Y
+-   Implémentation réel uniquement
+-   Site en français
+-   SEO parfaitement réalisé, robot.txt, sitemap.xml...
+-   Utilisation des composants shadcn/ui
+-   Réalisation d'une page d'erreur customisé
+-   Utilisation des fonctionalités de NextJS suivantes :
+    -   Nested routes
+    -   Dynamic routes
+    -   Route groups
+    -   Private folders
+    -   Parralel and intercepted routes
+    -   Prefetching pages
+    -   Streaming pages
+    -   Server and Client Components
+    -   Cache Components
+    -   Image optimization
+    -   Incremental Static Regeneration
+    -   Custom hooks
+-   Axios
+
+Toute l'application est basé sur un système dashboard/sidebar intégrant le routing.  
+La page principale est la page de navigation du contennu.  
+En mode desktop nous retrouvons la sidebar à gauche, le contennu en scroll infini au milieu et les paramètres de recherche sur la droite.  
+En mode mobile la sidebar est replié, les paramètres de recherche sont représenté comme une icône de filtrage flotante en haut à droite
--- a/package.json
+++ b/package.json
@@ -1,8 +1,10 @@
 {
  "name": "@memegoat/source",
-  "version": "0.0.1",
+  "version": "0.0.0",
  "description": "",
  "scripts": {
+    "version:get": "cmake -P version.cmake GET",
+    "version:set": "cmake -P version.cmake SET",
    "build": "pnpm run build:back && pnpm run build:front && pnpm run build:docs",
    "build:front": "pnpm run -F @memegoat/frontend build",
    "build:back": "pnpm run -F @memegoat/backend build",
--- a/version.cmake
+++ b/version.cmake
@@ -0,0 +1,84 @@
+# version.cmake - Script pour gérer la version SemVer de manière centralisée
+
+# Usage: cmake -P version.cmake [GET|SET] [new_version]
+
+set(PACKAGE_JSON_FILES 
+    "${CMAKE_CURRENT_LIST_DIR}/package.json"
+    "${CMAKE_CURRENT_LIST_DIR}/backend/package.json"
+    "${CMAKE_CURRENT_LIST_DIR}/frontend/package.json"
+)
+
+# Fonction pour lire la version depuis le package.json racine
+function(get_current_version OUT_VAR)
+    file(READ "${CMAKE_CURRENT_LIST_DIR}/package.json" ROOT_JSON)
+    string(JSON CURRENT_VERSION GET "${ROOT_JSON}" "version")
+    set(${OUT_VAR} ${CURRENT_VERSION} PARENT_SCOPE)
+endfunction()
+
+# Fonction pour créer un tag git
+function(create_git_tag VERSION)
+    find_package(Git QUIET)
+    if(GIT_FOUND)
+        execute_process(
+            COMMAND ${GIT_EXECUTABLE} tag -a "v${VERSION}" -m "Release v${VERSION}"
+            WORKING_DIRECTORY "${CMAKE_CURRENT_LIST_DIR}"
+            RESULT_VARIABLE TAG_RESULT
+        )
+        if(TAG_RESULT EQUAL 0)
+            message(STATUS "Tag v${VERSION} créé avec succès")
+        else()
+            message(WARNING "Échec de la création du tag v${VERSION}. Il existe peut-être déjà.")
+        endif()
+    else()
+        message(WARNING "Git non trouvé, impossible de créer le tag.")
+    endif()
+endfunction()
+
+# Fonction pour mettre à jour la version dans tous les fichiers package.json
+function(set_new_version NEW_VERSION)
+    foreach(JSON_FILE ${PACKAGE_JSON_FILES})
+        if(EXISTS "${JSON_FILE}")
+            message(STATUS "Mise à jour de ${JSON_FILE} vers la version ${NEW_VERSION}")
+            file(READ "${JSON_FILE}" CONTENT)
+            # Utilisation de string(JSON ...) pour modifier la version si disponible (CMake >= 3.19)
+            # Sinon on peut utiliser une regex simple pour package.json
+            string(REGEX REPLACE "\"version\": \"[^\"]+\"" "\"version\": \"${NEW_VERSION}\"" NEW_CONTENT "${CONTENT}")
+            file(WRITE "${JSON_FILE}" "${NEW_CONTENT}")
+        else()
+            message(WARNING "Fichier non trouvé: ${JSON_FILE}")
+        endif()
+    endforeach()
+    
+    # Demander à l'utilisateur s'il veut tagger (ou le faire par défaut si spécifié)
+    create_git_tag(${NEW_VERSION})
+endfunction()
+
+# Logique principale
+set(ARG_OFFSET 0)
+while(ARG_OFFSET LESS CMAKE_ARGC)
+    if("${CMAKE_ARGV${ARG_OFFSET}}" STREQUAL "-P")
+        math(EXPR COMMAND_INDEX "${ARG_OFFSET} + 2")
+        math(EXPR VERSION_INDEX "${ARG_OFFSET} + 3")
+        break()
+    endif()
+    math(EXPR ARG_OFFSET "${ARG_OFFSET} + 1")
+endwhile()
+
+if(NOT DEFINED COMMAND_INDEX OR COMMAND_INDEX GREATER_EQUAL CMAKE_ARGC)
+    message(FATAL_ERROR "Usage: cmake -P version.cmake [GET|SET] [new_version]")
+endif()
+
+set(COMMAND "${CMAKE_ARGV${COMMAND_INDEX}}")
+
+if("${COMMAND}" STREQUAL "GET")
+    get_current_version(VERSION)
+    message("${VERSION}")
+elseif("${COMMAND}" STREQUAL "SET")
+    if(VERSION_INDEX GREATER_EQUAL CMAKE_ARGC)
+        message(FATAL_ERROR "Veuillez spécifier la nouvelle version: cmake -P version.cmake SET 0.0.0")
+    endif()
+    set(NEW_VERSION "${CMAKE_ARGV${VERSION_INDEX}}")
+    set_new_version("${NEW_VERSION}")
+else()
+    message(FATAL_ERROR "Commande inconnue: ${COMMAND}. Utilisez GET ou SET.")
+endif()
Author	SHA1	Message	Date
Mathis HERRIOT	597a4d615e	Changement système de branches: passage à main et unification des versions via CMake All checks were successful Lint / lint (backend) (push) Successful in 1m18s Details Backend Tests / test (push) Successful in 1m18s Details Lint / lint (documentation) (push) Successful in 1m18s Details Lint / lint (frontend) (push) Successful in 1m15s Details	2026-01-20 10:39:53 +01:00
Mathis HERRIOT	2df45af305	style(logging): reformat hashed IP computation for improved readability All checks were successful Lint / lint (documentation) (push) Successful in 1m18s Details Lint / lint (backend) (push) Successful in 1m21s Details Backend Tests / test (push) Successful in 1m23s Details Lint / lint (frontend) (push) Successful in 1m10s Details Lint / lint (backend) (pull_request) Successful in 1m20s Details Lint / lint (documentation) (pull_request) Successful in 1m22s Details Backend Tests / test (pull_request) Successful in 1m24s Details Lint / lint (frontend) (pull_request) Successful in 1m10s Details	2026-01-20 10:01:40 +01:00
Mathis HERRIOT	863a4bf528	style(app): reformat middleware configuration for improved readability Some checks failed Lint / lint (backend) (push) Failing after 52s Details Backend Tests / test (push) Successful in 1m15s Details Lint / lint (frontend) (push) Successful in 1m10s Details Lint / lint (documentation) (push) Successful in 2m39s Details	2026-01-20 09:58:10 +01:00
Mathis HERRIOT	9a1cdb05a4	fix(auth): adjust 2FA verification log formatting for consistency	2026-01-20 09:57:59 +01:00
Mathis HERRIOT	28caf92f9a	fix(media): update S3 file info type casting for stricter type safety Replace `any` with `BucketItemStat` for `getFileInfo` response in MediaController to ensure accurate type definition.	2026-01-20 09:57:38 +01:00
Mathis HERRIOT	8b2728dc5a	test(s3): update mock implementation types for stricter type safety Refactor mock implementations in S3 service tests to replace `any` with `unknown` for improved type safety and consistency.	2026-01-20 09:57:27 +01:00
Mathis HERRIOT	3bbbbc307f	test(media): fix type casting in MediaController unit tests Update type casting for `Response` object in MediaController tests to use `unknown as Response` for stricter type safety. Remove unused `s3Service` variable for cleanup.	2026-01-20 09:57:11 +01:00
Mathis HERRIOT	f080919563	fix(logging): resolve type issue in hashed IP logging Ensure `ip` parameter is explicitly cast to string before creating a SHA-256 hash to prevent runtime errors.	2026-01-20 09:56:44 +01:00
Mathis HERRIOT	edc1ab2438	feat(logging): introduce HTTP logging middleware Some checks failed Lint / lint (backend) (push) Failing after 2m22s Details Backend Tests / test (push) Successful in 2m47s Details Lint / lint (documentation) (push) Successful in 1m11s Details Lint / lint (frontend) (push) Successful in 1m9s Details Add middleware to log HTTP request and response details, including method, URL, status, duration, user agent, and hashed IP address. Logs categorized by severity based on response status code.	2026-01-20 09:45:06 +01:00
Mathis HERRIOT	01b66d6f2f	feat(logging): enhance exception filter with user context in logs Integrate user context (`userId`) into exception filter logging for improved traceability. Adjust log messages to include `[User: <ID>]` when user data is available.	2026-01-20 09:44:57 +01:00
Mathis HERRIOT	9a70dd02bb	feat(s3): add detailed logging for upload and delete operations	2026-01-20 09:44:45 +01:00
Mathis HERRIOT	e285a4e634	feat(auth): add detailed logging for login and 2FA operations Introduce warnings for failed login attempts and invalid 2FA tokens. Add logs for successful logins and 2FA requirements to improve authentication traceability.	2026-01-20 09:44:12 +01:00
Mathis HERRIOT	f247a01ac7	feat(middleware): add HTTP logging middleware to application configuration	2026-01-20 09:43:52 +01:00
Mathis HERRIOT	bb640cd8f9	ci(workflows): remove Next.js build caching from deployment workflow	2026-01-20 09:31:30 +01:00