From 873b3dd9f3d4de28dc87719713bae98bb1b8712f Mon Sep 17 00:00:00 2001
From: Julien Froidefond <julien.froidefond@cdbdx.biz>
Date: Thu, 27 Nov 2025 13:37:18 +0100
Subject: [PATCH] feat: add profile link to header and implement user profile
 update functionality with email and password management

---
 dev.db                           | Bin 122880 -> 122880 bytes
 src/actions/profile.ts           |  58 ++++++++++++++++
 src/app/profile/PasswordForm.tsx | 115 +++++++++++++++++++++++++++++++
 src/app/profile/ProfileForm.tsx  |  84 ++++++++++++++++++++++
 src/app/profile/page.tsx         |  75 ++++++++++++++++++++
 src/components/layout/Header.tsx |   7 ++
 src/services/auth.ts             |  78 +++++++++++++++++++++
 7 files changed, 417 insertions(+)
 create mode 100644 src/actions/profile.ts
 create mode 100644 src/app/profile/PasswordForm.tsx
 create mode 100644 src/app/profile/ProfileForm.tsx
 create mode 100644 src/app/profile/page.tsx

diff --git a/dev.db b/dev.db
index 562912858b29057c08aba7d14d74a1581479a929..26e613cec59eca4d3a448fec59f9dcf121977aec 100644
GIT binary patch
delta 1072
zcmZoTz}|3xeS$Qj_e2?IM(>RYOZvGO`Rf_@>-oa?!Zr&Ec<^lwo2SXBRnN#}FV4Uz
z%3$yAo}8PRk!EOUk!E0EU{+{UkY8A6Y*?C{S(=iVl2|;sVV<^?v5A$TrJk9Ixwe6U
zm4Shgfsv`Mp`oskd5EDAx+E6^0|O)fV+Q`m{LA^5Zx&RT$v=7ddKX2kR`3E9GxPH@
z@UQ2O+sw0pn_my4EFI_)OOQ*-(@nE03(SjfI&m`NK1mCICKh{pdzc!KW($yJGlTS!
zv>d}qm;{FZCfC;iH8Y}XHV0`gO-(PzGfPUst@&Y<<fH>E9L)U7L0&z&ndiV_{y?m*
zXO?BQXM`Dq;XEc8W_wO#Srq#>U0^W)Mj>i&&ip4k{Rls!1KjfMJOYf1`Qxz$F^cUN
zVSr*ghAb#9!5%ycjLXN{`4oV*OlIFF%nCLX6n?B=113WPgNvCzl7W9Be<c6O?R*A|
zA^f6PT?C3Wd1iB9xWhvQ!)B1#@=RtxHSn;(R0Fhin*$?@10O5*e+GUxz8>DIymH+C
zf$97$w@Q-?D+e%HXf}DmQ+OsYX(WPTx5y+jE6bwDbh=|NqfvyTbBL$EU%YdWt7C|(
zOSMvBa!F=>o@a`Zl@csoFzi;+Q7XwS$w>vO0cR5+KPNLUJ2l0#BsJGFrC7--S_u>?
z%s>f{U%)ib-wH~xwOF%{sR1N!ZI|n1e8$Ab%AXBRR={xY<j)4?qDX!@<Ya{571r&Y
q^BJoR_*nU_GVmV-YVze5<hu&gc$jax;C)72en=LES;Gnvd=CI&r91xs

delta 801
zcmZoTz}|3xeS$Qj=R_H2M$e52OZvGO1Q;0jGx);z!Zr&Ec<^lwo2SXBY+#UFoKcWp
zYHpTRn3HGhmY7+Ts!)=eqfk_uoKlsT2*i`Q=9{t_o9kIvP7bV-kTNmRGqW_*HZZU<
zFyLYU0+6wf`IqxA-z=ywlYjE^^)8C3Nd>6}K!9R4FHA8nKksIq4cz>CAZ3O?WoaNM
zB$`x|RU~CwB<E&kVAVf8P@hq9a`rxMU8uHHkT!#=tfcY`vkIKrCMQ%$S^%vMw6}+;
z0oj=X(p*?xR%lRYSqhWDaP#DcRg#kquyBAq3GyP(fyMlRSl!JGw8I)^5Xc4;=P?0g
zWszl3?B8^O1sIlS0Xg%Z?DQl2j1F+ixAO=vF6NKN8aODnV|W9_b_`i~EH39i%71h_
zp90X9$(H@XtYAYy;l~O#02&w&heq;G<e#{m&ww$6Ulgm0z|kcSG9sT5=5Y+GL59nN
z3^(V*tp*qe+Z-5K9C%oG<rw(g_<DG+^2!0zFdy%Bxn9O+Ogt?7ouDLm6qpD*fr+q^
le|zVA#%cqgxF7>iw3FYLUl1tH$Upt+Jx1N>cJ~<%0RTnT@reKc

diff --git a/src/actions/profile.ts b/src/actions/profile.ts
new file mode 100644
index 0000000..f4dc3c7
--- /dev/null
+++ b/src/actions/profile.ts
@@ -0,0 +1,58 @@
+'use server';
+
+import { auth } from '@/lib/auth';
+import { updateUserProfile, updateUserPassword, getUserById } from '@/services/auth';
+
+export async function getProfileAction() {
+  const session = await auth();
+  if (!session?.user?.id) {
+    return { success: false, error: 'Non authentifié', data: null };
+  }
+
+  const user = await getUserById(session.user.id);
+  if (!user) {
+    return { success: false, error: 'Utilisateur non trouvé', data: null };
+  }
+
+  return {
+    success: true,
+    data: {
+      id: user.id,
+      name: user.name,
+      email: user.email,
+      createdAt: user.createdAt,
+    },
+  };
+}
+
+export async function updateProfileAction(data: { name?: string; email?: string }) {
+  const session = await auth();
+  if (!session?.user?.id) {
+    return { success: false, error: 'Non authentifié' };
+  }
+
+  const result = await updateUserProfile(session.user.id, data);
+  return result;
+}
+
+export async function updatePasswordAction(data: {
+  currentPassword: string;
+  newPassword: string;
+}) {
+  const session = await auth();
+  if (!session?.user?.id) {
+    return { success: false, error: 'Non authentifié' };
+  }
+
+  if (data.newPassword.length < 6) {
+    return { success: false, error: 'Le nouveau mot de passe doit faire au moins 6 caractères' };
+  }
+
+  const result = await updateUserPassword(
+    session.user.id,
+    data.currentPassword,
+    data.newPassword
+  );
+  return result;
+}
+
diff --git a/src/app/profile/PasswordForm.tsx b/src/app/profile/PasswordForm.tsx
new file mode 100644
index 0000000..37b0a69
--- /dev/null
+++ b/src/app/profile/PasswordForm.tsx
@@ -0,0 +1,115 @@
+'use client';
+
+import { useState, useTransition } from 'react';
+import { Input, Button } from '@/components/ui';
+import { updatePasswordAction } from '@/actions/profile';
+
+export function PasswordForm() {
+  const [isPending, startTransition] = useTransition();
+  const [currentPassword, setCurrentPassword] = useState('');
+  const [newPassword, setNewPassword] = useState('');
+  const [confirmPassword, setConfirmPassword] = useState('');
+  const [message, setMessage] = useState<{ type: 'success' | 'error'; text: string } | null>(null);
+
+  const canSubmit =
+    currentPassword.length > 0 &&
+    newPassword.length >= 6 &&
+    newPassword === confirmPassword;
+
+  async function handleSubmit(e: React.FormEvent) {
+    e.preventDefault();
+    setMessage(null);
+
+    if (newPassword !== confirmPassword) {
+      setMessage({ type: 'error', text: 'Les mots de passe ne correspondent pas' });
+      return;
+    }
+
+    startTransition(async () => {
+      const result = await updatePasswordAction({ currentPassword, newPassword });
+
+      if (result.success) {
+        setMessage({ type: 'success', text: 'Mot de passe modifié avec succès' });
+        setCurrentPassword('');
+        setNewPassword('');
+        setConfirmPassword('');
+      } else {
+        setMessage({ type: 'error', text: result.error || 'Erreur lors de la modification' });
+      }
+    });
+  }
+
+  return (
+    <form onSubmit={handleSubmit} className="space-y-4">
+      <div>
+        <label
+          htmlFor="currentPassword"
+          className="mb-1.5 block text-sm font-medium text-foreground"
+        >
+          Mot de passe actuel
+        </label>
+        <Input
+          id="currentPassword"
+          type="password"
+          value={currentPassword}
+          onChange={(e) => setCurrentPassword(e.target.value)}
+          required
+        />
+      </div>
+
+      <div>
+        <label
+          htmlFor="newPassword"
+          className="mb-1.5 block text-sm font-medium text-foreground"
+        >
+          Nouveau mot de passe
+        </label>
+        <Input
+          id="newPassword"
+          type="password"
+          value={newPassword}
+          onChange={(e) => setNewPassword(e.target.value)}
+          required
+          minLength={6}
+        />
+        <p className="mt-1 text-xs text-muted">Minimum 6 caractères</p>
+      </div>
+
+      <div>
+        <label
+          htmlFor="confirmPassword"
+          className="mb-1.5 block text-sm font-medium text-foreground"
+        >
+          Confirmer le nouveau mot de passe
+        </label>
+        <Input
+          id="confirmPassword"
+          type="password"
+          value={confirmPassword}
+          onChange={(e) => setConfirmPassword(e.target.value)}
+          required
+        />
+        {confirmPassword && newPassword !== confirmPassword && (
+          <p className="mt-1 text-xs text-destructive">
+            Les mots de passe ne correspondent pas
+          </p>
+        )}
+      </div>
+
+      {message && (
+        <p
+          className={`text-sm ${
+            message.type === 'success' ? 'text-success' : 'text-destructive'
+          }`}
+        >
+          {message.text}
+        </p>
+      )}
+
+      <Button type="submit" disabled={isPending || !canSubmit}>
+        {isPending ? 'Modification...' : 'Modifier le mot de passe'}
+      </Button>
+    </form>
+  );
+}
+
diff --git a/src/app/profile/ProfileForm.tsx b/src/app/profile/ProfileForm.tsx
new file mode 100644
index 0000000..60b0879
--- /dev/null
+++ b/src/app/profile/ProfileForm.tsx
@@ -0,0 +1,84 @@
+'use client';
+
+import { useState, useTransition } from 'react';
+import { useRouter } from 'next/navigation';
+import { Input, Button } from '@/components/ui';
+import { updateProfileAction } from '@/actions/profile';
+
+interface ProfileFormProps {
+  initialData: {
+    name: string;
+    email: string;
+  };
+}
+
+export function ProfileForm({ initialData }: ProfileFormProps) {
+  const router = useRouter();
+  const [isPending, startTransition] = useTransition();
+  const [name, setName] = useState(initialData.name);
+  const [email, setEmail] = useState(initialData.email);
+  const [message, setMessage] = useState<{ type: 'success' | 'error'; text: string } | null>(null);
+
+  const hasChanges = name !== initialData.name || email !== initialData.email;
+
+  async function handleSubmit(e: React.FormEvent) {
+    e.preventDefault();
+    setMessage(null);
+
+    startTransition(async () => {
+      const result = await updateProfileAction({ name, email });
+
+      if (result.success) {
+        setMessage({ type: 'success', text: 'Profil mis à jour avec succès' });
+        router.refresh();
+      } else {
+        setMessage({ type: 'error', text: result.error || 'Erreur lors de la mise à jour' });
+      }
+    });
+  }
+
+  return (
+    <form onSubmit={handleSubmit} className="space-y-4">
+      <div>
+        <label htmlFor="name" className="mb-1.5 block text-sm font-medium text-foreground">
+          Nom
+        </label>
+        <Input
+          id="name"
+          type="text"
+          value={name}
+          onChange={(e) => setName(e.target.value)}
+          placeholder="Votre nom"
+        />
+      </div>
+
+      <div>
+        <label htmlFor="email" className="mb-1.5 block text-sm font-medium text-foreground">
+          Email
+        </label>
+        <Input
+          id="email"
+          type="email"
+          value={email}
+          onChange={(e) => setEmail(e.target.value)}
+          required
+        />
+      </div>
+
+      {message && (
+        <p
+          className={`text-sm ${
+            message.type === 'success' ? 'text-success' : 'text-destructive'
+          }`}
+        >
+          {message.text}
+        </p>
+      )}
+
+      <Button type="submit" disabled={isPending || !hasChanges}>
+        {isPending ? 'Enregistrement...' : 'Enregistrer les modifications'}
+      </Button>
+    </form>
+  );
+}
+
diff --git a/src/app/profile/page.tsx b/src/app/profile/page.tsx
new file mode 100644
index 0000000..2c18ce2
--- /dev/null
+++ b/src/app/profile/page.tsx
@@ -0,0 +1,75 @@
+import { auth } from '@/lib/auth';
+import { redirect } from 'next/navigation';
+import { getUserById } from '@/services/auth';
+import { ProfileForm } from './ProfileForm';
+import { PasswordForm } from './PasswordForm';
+
+export default async function ProfilePage() {
+  const session = await auth();
+
+  if (!session?.user?.id) {
+    redirect('/login');
+  }
+
+  const user = await getUserById(session.user.id);
+
+  if (!user) {
+    redirect('/login');
+  }
+
+  return (
+    <main className="mx-auto max-w-2xl px-4 py-8">
+      <div className="mb-8">
+        <h1 className="text-3xl font-bold text-foreground">Mon Profil</h1>
+        <p className="mt-1 text-muted">Gérez vos informations personnelles</p>
+      </div>
+
+      <div className="space-y-8">
+        {/* Profile Info */}
+        <section className="rounded-xl border border-border bg-card p-6">
+          <h2 className="mb-6 text-xl font-semibold text-foreground">
+            Informations personnelles
+          </h2>
+          <ProfileForm
+            initialData={{
+              name: user.name || '',
+              email: user.email,
+            }}
+          />
+        </section>
+
+        {/* Password */}
+        <section className="rounded-xl border border-border bg-card p-6">
+          <h2 className="mb-6 text-xl font-semibold text-foreground">
+            Changer le mot de passe
+          </h2>
+          <PasswordForm />
+        </section>
+
+        {/* Account Info */}
+        <section className="rounded-xl border border-border bg-card p-6">
+          <h2 className="mb-4 text-xl font-semibold text-foreground">
+            Informations du compte
+          </h2>
+          <div className="space-y-3 text-sm">
+            <div className="flex justify-between">
+              <span className="text-muted">ID du compte</span>
+              <span className="font-mono text-foreground">{user.id}</span>
+            </div>
+            <div className="flex justify-between">
+              <span className="text-muted">Membre depuis</span>
+              <span className="text-foreground">
+                {new Date(user.createdAt).toLocaleDateString('fr-FR', {
+                  day: 'numeric',
+                  month: 'long',
+                  year: 'numeric',
+                })}
+              </span>
+            </div>
+          </div>
+        </section>
+      </div>
+    </main>
+  );
+}
+
diff --git a/src/components/layout/Header.tsx b/src/components/layout/Header.tsx
index 78a060d..5c0021c 100644
--- a/src/components/layout/Header.tsx
+++ b/src/components/layout/Header.tsx
@@ -75,6 +75,13 @@ export function Header() {
                         {session.user.email}
                       </p>
                     </div>
+                    <Link
+                      href="/profile"
+                      onClick={() => setMenuOpen(false)}
+                      className="block w-full px-4 py-2 text-left text-sm text-foreground hover:bg-card-hover"
+                    >
+                      👤 Mon Profil
+                    </Link>
                     <button
                       onClick={() => signOut({ callbackUrl: '/' })}
                       className="w-full px-4 py-2 text-left text-sm text-destructive hover:bg-card-hover"
diff --git a/src/services/auth.ts b/src/services/auth.ts
index 1f0a2cc..8156455 100644
--- a/src/services/auth.ts
+++ b/src/services/auth.ts
@@ -66,3 +66,81 @@ export async function getUserById(id: string) {
   });
 }
 
+export interface UpdateProfileInput {
+  name?: string;
+  email?: string;
+}
+
+export async function updateUserProfile(
+  userId: string,
+  input: UpdateProfileInput
+): Promise<AuthResult> {
+  const { name, email } = input;
+
+  // If changing email, check it's not already taken
+  if (email) {
+    const existingUser = await prisma.user.findFirst({
+      where: {
+        email,
+        NOT: { id: userId },
+      },
+    });
+
+    if (existingUser) {
+      return {
+        success: false,
+        error: 'Cet email est déjà utilisé par un autre compte',
+      };
+    }
+  }
+
+  const user = await prisma.user.update({
+    where: { id: userId },
+    data: {
+      ...(name !== undefined && { name: name || null }),
+      ...(email && { email }),
+    },
+  });
+
+  return {
+    success: true,
+    user: {
+      id: user.id,
+      email: user.email,
+      name: user.name,
+    },
+  };
+}
+
+export async function updateUserPassword(
+  userId: string,
+  currentPassword: string,
+  newPassword: string
+): Promise<{ success: boolean; error?: string }> {
+  const { compare } = await import('bcryptjs');
+
+  const user = await prisma.user.findUnique({
+    where: { id: userId },
+  });
+
+  if (!user) {
+    return { success: false, error: 'Utilisateur non trouvé' };
+  }
+
+  // Verify current password
+  const isValid = await compare(currentPassword, user.password);
+  if (!isValid) {
+    return { success: false, error: 'Mot de passe actuel incorrect' };
+  }
+
+  // Hash new password
+  const hashedPassword = await hash(newPassword, 12);
+
+  await prisma.user.update({
+    where: { id: userId },
+    data: { password: hashedPassword },
+  });
+
+  return { success: true };
+}
+