structure du projet + docker, back: mise en place BD et apps, front: début de dev pour le header et mise en place du thème et css global (override des variables bootstrap)

backend/api/users/admin.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

backend/api/users/apps.py

@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class UsersConfig(AppConfig):
+    name = 'api.users'

backend/api/users/migrations/0001_initial.py

@@ -0,0 +1,146 @@
+# Generated by Django 6.0.5 on 2026-05-28 15:03
+
+import django.contrib.auth.models
+import django.contrib.auth.validators
+import django.db.models.deletion
+import django.utils.timezone
+from django.conf import settings
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    initial = True
+
+    dependencies = [
+        ('auth', '0012_alter_user_first_name_max_length'),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name='User',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('password', models.CharField(max_length=128, verbose_name='password')),
+                ('last_login', models.DateTimeField(blank=True, null=True, verbose_name='last login')),
+                ('is_superuser', models.BooleanField(default=False, help_text='Designates that this user has all permissions without explicitly assigning them.', verbose_name='superuser status')),
+                ('username', models.CharField(error_messages={'unique': 'A user with that username already exists.'}, help_text='Required. 150 characters or fewer. Letters, digits and @/./+/-/_ only.', max_length=150, unique=True, validators=[django.contrib.auth.validators.UnicodeUsernameValidator()], verbose_name='username')),
+                ('first_name', models.CharField(blank=True, max_length=150, verbose_name='first name')),
+                ('last_name', models.CharField(blank=True, max_length=150, verbose_name='last name')),
+                ('is_staff', models.BooleanField(default=False, help_text='Designates whether the user can log into this admin site.', verbose_name='staff status')),
+                ('is_active', models.BooleanField(default=True, help_text='Designates whether this user should be treated as active. Unselect this instead of deleting accounts.', verbose_name='active')),
+                ('date_joined', models.DateTimeField(default=django.utils.timezone.now, verbose_name='date joined')),
+                ('email', models.EmailField(max_length=254, unique=True, verbose_name='email')),
+                ('initials', models.CharField(blank=True, max_length=5, verbose_name='initiales')),
+                ('color', models.CharField(blank=True, max_length=7, verbose_name='couleur')),
+                ('image', models.ImageField(blank=True, null=True, upload_to='user_images/', verbose_name='image')),
+                ('phone_number', models.CharField(blank=True, max_length=20, verbose_name='numéro de téléphone')),
+                ('c2c_extension', models.CharField(blank=True, max_length=10, verbose_name='extension click to call')),
+                ('groups', models.ManyToManyField(blank=True, help_text='The groups this user belongs to. A user will get all permissions granted to each of their groups.', related_name='user_set', related_query_name='user', to='auth.group', verbose_name='groups')),
+                ('user_permissions', models.ManyToManyField(blank=True, help_text='Specific permissions for this user.', related_name='user_set', related_query_name='user', to='auth.permission', verbose_name='user permissions')),
+            ],
+            options={
+                'verbose_name': 'user',
+                'verbose_name_plural': 'users',
+            },
+            managers=[
+                ('objects', django.contrib.auth.models.UserManager()),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Authorization',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='créé le')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='modifié le')),
+                ('obsolete', models.BooleanField(default=False, verbose_name='obsolète')),
+                ('obsolete_at', models.DateTimeField(blank=True, null=True, verbose_name='obsolète le')),
+                ('name', models.CharField(max_length=100, unique=True, verbose_name='nom')),
+                ('code', models.CharField(max_length=100, unique=True, verbose_name='code')),
+                ('description', models.TextField(blank=True, default='', verbose_name='description')),
+                ('created_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='créé par')),
+                ('updated_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='modifié par')),
+            ],
+            options={
+                'verbose_name': 'Authorization',
+                'verbose_name_plural': 'Authorizations',
+            },
+        ),
+        migrations.CreateModel(
+            name='M2M_RoleAuthorizations',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='créé le')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='modifié le')),
+                ('obsolete', models.BooleanField(default=False, verbose_name='obsolète')),
+                ('obsolete_at', models.DateTimeField(blank=True, null=True, verbose_name='obsolète le')),
+                ('authorization', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='users.authorization')),
+                ('created_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='créé par')),
+                ('updated_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='modifié par')),
+            ],
+        ),
+        migrations.CreateModel(
+            name='Role',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='créé le')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='modifié le')),
+                ('obsolete', models.BooleanField(default=False, verbose_name='obsolète')),
+                ('obsolete_at', models.DateTimeField(blank=True, null=True, verbose_name='obsolète le')),
+                ('name', models.CharField(max_length=100, unique=True, verbose_name='nom')),
+                ('description', models.TextField(blank=True, default='', verbose_name='description')),
+                ('authorizations', models.ManyToManyField(blank=True, related_name='roles', through='users.M2M_RoleAuthorizations', to='users.authorization', verbose_name='authorisations')),
+                ('created_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='créé par')),
+                ('updated_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='modifié par')),
+            ],
+            options={
+                'verbose_name': 'role',
+                'verbose_name_plural': 'roles',
+            },
+        ),
+        migrations.AddField(
+            model_name='m2m_roleauthorizations',
+            name='role',
+            field=models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='users.role'),
+        ),
+        migrations.CreateModel(
+            name='Team',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='créé le')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='modifié le')),
+                ('obsolete', models.BooleanField(default=False, verbose_name='obsolète')),
+                ('obsolete_at', models.DateTimeField(blank=True, null=True, verbose_name='obsolète le')),
+                ('name', models.CharField(max_length=255, unique=True, verbose_name='nom')),
+                ('description', models.TextField(blank=True, default='', verbose_name='description')),
+                ('created_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='créé par')),
+                ('updated_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='modifié par')),
+            ],
+            options={
+                'verbose_name': 'Team',
+                'verbose_name_plural': 'Teams',
+            },
+        ),
+        migrations.CreateModel(
+            name='UserTeamRole',
+            fields=[
+                ('id', models.BigAutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_at', models.DateTimeField(auto_now_add=True, verbose_name='créé le')),
+                ('updated_at', models.DateTimeField(auto_now=True, verbose_name='modifié le')),
+                ('obsolete', models.BooleanField(default=False, verbose_name='obsolète')),
+                ('obsolete_at', models.DateTimeField(blank=True, null=True, verbose_name='obsolète le')),
+                ('created_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='créé par')),
+                ('role', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='user_teams', to='users.role', verbose_name='rôle')),
+                ('team', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='user_roles', to='users.team', verbose_name='équipe')),
+                ('updated_by', models.ForeignKey(blank=True, null=True, on_delete=django.db.models.deletion.PROTECT, related_name='+', to=settings.AUTH_USER_MODEL, verbose_name='modifié par')),
+                ('user', models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, related_name='team_roles', to=settings.AUTH_USER_MODEL, verbose_name='utilisateur')),
+            ],
+            options={
+                'abstract': False,
+            },
+        ),
+        migrations.AddConstraint(
+            model_name='m2m_roleauthorizations',
+            constraint=models.UniqueConstraint(fields=('role', 'authorization'), name='unique_role_authorization'),
+        ),
+    ]

backend/api/users/models/__init__.py

@@ -0,0 +1,15 @@
+from .user import User
+from .role import Role
+from .team import Team
+from .authorization import Authorization
+from .user_team_role import UserTeamRole
+from .m2m_role_authorization import M2M_RoleAuthorizations
+
+__all__ = [
+    "User",
+    "Role",
+    "Team",
+    "Authorization",
+    "UserTeamRole",
+    "M2M_RoleAuthorizations",
+]

backend/api/users/models/authorization.py

@@ -0,0 +1,21 @@
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+from api.core.models.trackable_model import TrackableModel
+
+
+class Authorization(TrackableModel):
+    """
+    Model representing authorizations within the user account system.
+    These authorizations can be assigned to roles to control access permissions.
+    """
+
+    name = models.CharField(verbose_name=_("nom"), max_length=100, unique=True)
+    code = models.CharField(verbose_name=_("code"), max_length=100, unique=True)
+    description = models.TextField(
+        verbose_name=_("description"), blank=True, default=""
+    )
+
+    class Meta:
+        verbose_name = _("Authorization")
+        verbose_name_plural = _("Authorizations")

backend/api/users/models/m2m_role_authorization.py

@@ -0,0 +1,22 @@
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+from api.core.models.trackable_model import TrackableModel
+from api.users.models.authorization import Authorization
+from api.users.models.role import Role
+
+
+class M2M_RoleAuthorizations(TrackableModel):
+    """
+    Many to Many table for roles and authorizations.
+    """
+
+    role = models.ForeignKey(Role, on_delete=models.CASCADE)
+    authorization = models.ForeignKey(Authorization, on_delete=models.CASCADE)
+
+    class Meta:
+        constraints = [
+            models.UniqueConstraint(
+                fields=["role", "authorization"], name="unique_role_authorization"
+            )
+        ]

backend/api/users/models/role.py

@@ -0,0 +1,30 @@
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+from api.core.models.trackable_model import TrackableModel
+
+
+class Role(TrackableModel):
+    """
+    Model representing a role that can be assigned to users within teams.
+    A user can have a different role in each team they are part of.
+    """
+
+    name = models.CharField(verbose_name=_("nom"), max_length=100, unique=True)
+    description = models.TextField(
+        verbose_name=_("description"), blank=True, default=""
+    )
+    authorizations = models.ManyToManyField(
+        "users.Authorization",
+        verbose_name=_("authorisations"),
+        blank=True,
+        related_name="roles",
+        through="M2M_RoleAuthorizations",
+    )
+
+    class Meta:
+        verbose_name = _("role")
+        verbose_name_plural = _("roles")
+
+    def __str__(self):
+        return self.name

backend/api/users/models/team.py

@@ -0,0 +1,23 @@
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+from api.core.models.trackable_model import TrackableModel
+
+
+class Team(TrackableModel):
+    """
+    Model representing a team within the user account system.
+    A team can contain multiple users that are linked together for collaboration.
+    """
+
+    name = models.CharField(max_length=255, unique=True, verbose_name=_("nom"))
+    description = models.TextField(
+        blank=True, verbose_name=_("description"), default=""
+    )
+
+    class Meta:
+        verbose_name = _("Team")
+        verbose_name_plural = _("Teams")
+
+    def __str__(self):
+        return self.name

backend/api/users/models/user.py

@@ -0,0 +1,34 @@
+from django.contrib.auth.models import AbstractUser
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+
+class User(AbstractUser):
+    """
+    Custom user model for the project.
+    Inherits from Django's AbstractUser to leverage built-in authentication features.
+    Additional fields can be added here as needed.
+    """
+
+    email = models.EmailField(verbose_name=_("email"), unique=True)
+    initials = models.CharField(verbose_name=_("initiales"), max_length=5, blank=True)
+    color = models.CharField(verbose_name=_("couleur"), max_length=7, blank=True)  # hex
+    image = models.ImageField(
+        verbose_name=_("image"), upload_to="user_images/", blank=True, null=True
+    )
+    phone_number = models.CharField(
+        verbose_name=_("numéro de téléphone"), max_length=20, blank=True
+    )
+    c2c_extension = models.CharField(
+        verbose_name=_("extension click to call"), max_length=10, blank=True
+    )
+
+    USERNAME_FIELD = "email"
+    REQUIRED_FIELDS = ["username"]
+
+    class Meta:
+        verbose_name = _("user")
+        verbose_name_plural = _("users")
+
+    def __str__(self):
+        return f"{self.first_name} {self.last_name}"

backend/api/users/models/user_team_role.py

@@ -0,0 +1,30 @@
+from django.db import models
+from django.utils.translation import gettext_lazy as _
+
+from api.core.models.trackable_model import TrackableModel
+
+
+class UserTeamRole(TrackableModel):
+    """
+    Model representing the association of users, teams, and roles within the user account system.
+    This model links a user to a specific team with a designated role.
+    """
+
+    user = models.ForeignKey(
+        "users.User",
+        on_delete=models.CASCADE,
+        related_name="team_roles",
+        verbose_name=_("utilisateur"),
+    )
+    team = models.ForeignKey(
+        "users.Team",
+        on_delete=models.CASCADE,
+        related_name="user_roles",
+        verbose_name=_("équipe"),
+    )
+    role = models.ForeignKey(
+        "users.Role",
+        on_delete=models.CASCADE,
+        related_name="user_teams",
+        verbose_name=_("rôle"),
+    )

backend/api/users/services/authorizations_control.py

@@ -0,0 +1,22 @@
+from api.users.models import *
+
+def has_authorization(*, user, code: str, team=None) -> bool:
+    if not user.is_authenticated:
+        return False
+
+    qs = Authorization.objects.filter(code=code)
+
+    memberships = UserTeamRole.objects.filter(user=user)
+
+    if team is not None:
+        memberships = memberships.filter(team=team)
+
+    return qs.filter(roleauthorization__role__teammembership__in=memberships).exists()
+
+
+class NotAuthorized(Exception):
+    pass
+
+def require_authorization(*, user, code: str, team=None):
+    if not has_authorization(user=user, code=code, team=team):
+        raise NotAuthorized(f"Missing authorization: {code}")

backend/api/users/signals.py

@@ -0,0 +1,65 @@
+# users/signals.py
+import io
+import random
+from PIL import Image, ImageDraw, ImageFont
+
+from django.conf import settings
+from django.core.files.base import ContentFile
+from django.db.models.signals import post_save
+from django.dispatch import receiver
+
+from .models import User
+
+PALETTE = ["#34344A", "#845A6D", "#D47386", "#C89B7B", "#32746D"]
+
+def initials_for(user: User) -> str:
+    if getattr(user, "initials", None):
+        return user.initials[:2].upper()
+
+    first = (user.first_name or "").strip()
+    last = (user.last_name or "").strip()
+
+    if first and last:
+        return (first[0] + last[0]).upper()
+    if first:
+        return first[:2].upper()
+    # fallback: email
+    return (user.email or "U")[:2].upper()
+
+def generate_avatar_png(text: str, bg_hex: str, size: int = 256) -> bytes:
+    img = Image.new("RGBA", (size, size), bg_hex)
+    draw = ImageDraw.Draw(img)
+
+    font_path = getattr(settings, "AVATAR_FONT_PATH", None)
+    if font_path:
+        font = ImageFont.truetype(font_path, int(size * 0.42))
+    else:
+        font = ImageFont.load_default()
+
+    bbox = draw.textbbox((0, 0), text, font=font)
+    tw, th = bbox[2] - bbox[0], bbox[3] - bbox[1]
+    x = (size - tw) / 2
+    y = (size - th) / 2 - (size * 0.05)
+
+    draw.text((x, y), text, font=font, fill="white")
+
+    out = io.BytesIO()
+    img.save(out, format="PNG", optimize=True)
+    return out.getvalue()
+
+@receiver(post_save, sender=User)
+def set_default_avatar(sender, instance: User, created: bool, **kwargs):
+    if not created:
+        return
+    if instance.image:
+        return
+
+    text = initials_for(instance)
+    bg = random.choice(PALETTE)
+
+    png_bytes = generate_avatar_png(text=text, bg_hex=bg, size=256)
+    filename = f"user_{instance.pk}_avatar.png"
+    instance.image.save(filename, ContentFile(png_bytes), save=False)
+    User.objects.filter(pk=instance.pk).update(
+        image=instance.image.name,
+    )

backend/api/users/urls.py

@@ -0,0 +1,5 @@
+from django.urls import path, include
+
+urlpatterns = [
+    
+]

backend/api/users/views.py

@@ -0,0 +1,3 @@
+from django.shortcuts import render
+
+# Create your views here.