Roukmoute/Classeo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Permettre l'activation des comptes élèves de moins de 15 ans créés par l'admin

Browse Source 
Lorsqu'un admin créait un élève de moins de 15 ans avec une date de
naissance, le compte ne pouvait pas être activé car le consentement
parental RGPD n'avait jamais été enregistré — aucun mécanisme ne le
permettait dans le parcours admin.

Ajout d'une case « Consentement parental obtenu » dans le formulaire
de création d'élève, affichée conditionnellement quand la date de
naissance indique un âge < 15 ans. L'admin confirme que l'établissement
a recueilli le consentement, qui est alors enregistré côté backend
lors de la création du compte.
This commit is contained in:
Mathias STRASSER
2026-03-06 11:06:28 +01:00
parent 36ceefb625
commit ba80e8cb57
7 changed files with 101 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/src/Administration/Application/Command/CreateStudent/CreateStudentCommand.php
View File

@@ -16,6 +16,8 @@ final readonly class CreateStudentCommand
public ?string $email = null,
public ?string $dateNaissance = null,
public ?string $studentNumber = null,
public bool $parentalConsent = false,
public ?string $consentRecordedBy = null,
) {
}
}

21
backend/src/Administration/Application/Command/CreateStudent/CreateStudentHandler.php
View File

@@ -7,11 +7,13 @@ namespace App\Administration\Application\Command\CreateStudent;
use App\Administration\Domain\Exception\ClasseNotFoundException;
use App\Administration\Domain\Exception\EmailDejaUtiliseeException;
use App\Administration\Domain\Model\ClassAssignment\ClassAssignment;
use App\Administration\Domain\Model\ConsentementParental\ConsentementParental;
use App\Administration\Domain\Model\SchoolClass\AcademicYearId;
use App\Administration\Domain\Model\SchoolClass\ClassId;
use App\Administration\Domain\Model\User\Email;
use App\Administration\Domain\Model\User\Role;
use App\Administration\Domain\Model\User\User;
use App\Administration\Domain\Policy\ConsentementParentalPolicy;
use App\Administration\Domain\Repository\ClassAssignmentRepository;
use App\Administration\Domain\Repository\ClassRepository;
use App\Administration\Domain\Repository\UserRepository;
@@ -31,6 +33,7 @@ final readonly class CreateStudentHandler
private ClassRepository $classRepository,
private Connection $connection,
private Clock $clock,
private ConsentementParentalPolicy $consentementPolicy,
) {
}
@@ -94,6 +97,24 @@ final readonly class CreateStudentHandler
studentNumber: $command->studentNumber,
);
// Enregistrer le consentement parental si fourni par l'admin
if ($command->parentalConsent && $command->consentRecordedBy !== null) {
$dateNaissance = $command->dateNaissance !== null
? new DateTimeImmutable($command->dateNaissance)
: null;
if ($this->consentementPolicy->estRequis($dateNaissance)) {
$user->enregistrerConsentementParental(
ConsentementParental::accorder(
parentId: $command->consentRecordedBy,
eleveId: (string) $user->id,
at: $now,
ipAddress: 'admin-creation',
),
);
}
}
$this->userRepository->save($user);
// Affecter à la classe

12
backend/src/Administration/Infrastructure/Api/Processor/CreateStudentProcessor.php
View File

@@ -13,10 +13,12 @@ use App\Administration\Domain\Exception\EmailDejaUtiliseeException;
use App\Administration\Domain\Model\SchoolClass\ClassId;
use App\Administration\Domain\Repository\ClassRepository;
use App\Administration\Infrastructure\Api\Resource\StudentResource;
use App\Administration\Infrastructure\Security\SecurityUser;
use App\Administration\Infrastructure\Security\StudentVoter;
use App\Administration\Infrastructure\Service\CurrentAcademicYearResolver;
use App\Shared\Infrastructure\Tenant\TenantContext;
use Override;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
use Symfony\Component\HttpKernel\Exception\ConflictHttpException;
@@ -37,6 +39,7 @@ final readonly class CreateStudentProcessor implements ProcessorInterface
private MessageBusInterface $eventBus,
private AuthorizationCheckerInterface $authorizationChecker,
private CurrentAcademicYearResolver $academicYearResolver,
private Security $security,
) {
}
@@ -60,6 +63,13 @@ final readonly class CreateStudentProcessor implements ProcessorInterface
?? throw new BadRequestHttpException('Impossible de résoudre l\'année scolaire courante.');
try {
$adminUserId = null;
$securityUser = $this->security->getUser();
if ($securityUser instanceof SecurityUser) {
$adminUserId = $securityUser->userId();
}
$command = new CreateStudentCommand(
tenantId: $tenantId,
schoolName: $tenantConfig->subdomain,
@@ -70,6 +80,8 @@ final readonly class CreateStudentProcessor implements ProcessorInterface
email: $data->email,
dateNaissance: $data->dateNaissance,
studentNumber: $data->studentNumber,
parentalConsent: $data->parentalConsent,
consentRecordedBy: $adminUserId,
);
$user = ($this->handler)($command);

2
backend/src/Administration/Infrastructure/Api/Resource/StudentResource.php
View File

@@ -72,6 +72,8 @@ final class StudentResource
#[Assert\Regex(pattern: '/^[A-Za-z0-9]{11}$/', message: 'L\'INE doit contenir exactement 11 caractères alphanumériques.')]
public ?string $studentNumber = null;
public bool $parentalConsent = false;
public static function fromDto(StudentWithClassDto $dto): self
{
$resource = new self();

2
backend/tests/Unit/Administration/Application/Command/CreateStudent/CreateStudentHandlerTest.php
View File

@@ -189,6 +189,7 @@ final class CreateStudentHandlerTest extends TestCase
$this->classRepository,
$connection,
$this->clock,
new \App\Administration\Domain\Policy\ConsentementParentalPolicy($this->clock),
);
$command = $this->createCommand();
@@ -278,6 +279,7 @@ final class CreateStudentHandlerTest extends TestCase
$this->classRepository,
$this->connection,
$this->clock,
new \App\Administration\Domain\Policy\ConsentementParentalPolicy($this->clock),
);
}