From 87971f9c2318e1b0ee7dcb16d1ca07c3fe14fa50 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Th=C3=A9ophile=20Gervreau-Mercier?=
 <theophile.gm@happyngreen.fr>
Date: Thu, 12 Feb 2026 12:15:41 +0100
Subject: [PATCH] refactor: extract templates from public/
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Created /templates for main site (header.php, footer.php)
- Created /templates/admin for admin section (head.php, footer.php)
- Removed /public/includes and /public/admin/inc
- Updated all references in code and docs
- Tests passing ✅

Cleaner separation: /public only contains web-accessible files (PHP entry points + assets)
---
 config/bootstrap.php                                      | 2 +-
 docs/SECURITY_ANALYSIS.md                                 | 2 +-
 public/admin/add.php                                      | 4 ++--
 public/admin/edit.php                                     | 4 ++--
 public/admin/import.php                                   | 4 ++--
 public/admin/index.php                                    | 4 ++--
 public/admin/thanks.php                                   | 4 ++--
 public/index.php                                          | 4 ++--
 public/memoire.php                                        | 4 ++--
 public/search.php                                         | 8 ++++----
 .../rate_limit/ad921d60486366258809553a3db49a4a.json      | 2 +-
 {public/admin/inc => templates/admin}/footer.php          | 0
 {public/admin/inc => templates/admin}/head.php            | 0
 {public/includes => templates}/footer.php                 | 0
 {public/includes => templates}/header.php                 | 0
 15 files changed, 21 insertions(+), 21 deletions(-)
 rename {public/admin/inc => templates/admin}/footer.php (100%)
 rename {public/admin/inc => templates/admin}/head.php (100%)
 rename {public/includes => templates}/footer.php (100%)
 rename {public/includes => templates}/header.php (100%)

diff --git a/config/bootstrap.php b/config/bootstrap.php
index 4327e68..82de8a5 100644
--- a/config/bootstrap.php
+++ b/config/bootstrap.php
@@ -25,7 +25,7 @@ if (php_sapi_name() === 'cli-server') {
 
 // Simple helper function for including templates
 function include_template($name) {
-    $path = APP_ROOT . '/public/includes/' . $name;
+    $path = APP_ROOT . '/templates/' . $name;
     if (file_exists($path)) {
         include $path;
     }
diff --git a/docs/SECURITY_ANALYSIS.md b/docs/SECURITY_ANALYSIS.md
index 5e63902..cb5a80b 100644
--- a/docs/SECURITY_ANALYSIS.md
+++ b/docs/SECURITY_ANALYSIS.md
@@ -254,7 +254,7 @@ ini_set('error_log', '/var/log/posterg/error.log');
 
 ### 10. External CDN Stylesheet Without Subresource Integrity (SRI)
 
-**File:** `public/admin/inc/head.php`
+**File:** `templates/admin/head.php`
 
 ```html
 <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/water.css@2/out/water.css">
diff --git a/public/admin/add.php b/public/admin/add.php
index 4586bc9..790e6ca 100644
--- a/public/admin/add.php
+++ b/public/admin/add.php
@@ -57,7 +57,7 @@ function wasSelected($key, $value)
     return $formData[$key] == $value;
 }
 ?>
-<?php require_once __DIR__ . "/inc/head.php"; ?>
+<?php require_once APP_ROOT . '/templates/admin/head.php'; ?>
 <main>
     <?php if ($error): ?>
         <div class="error-message">
@@ -260,4 +260,4 @@ function wasSelected($key, $value)
     </form>
 </main>
 
-<?php require_once __DIR__ . "/inc/footer.php"; ?>
\ No newline at end of file
+<?php require_once APP_ROOT . '/templates/admin/footer.php'; ?>
\ No newline at end of file
diff --git a/public/admin/edit.php b/public/admin/edit.php
index 2118e6d..3f502f2 100644
--- a/public/admin/edit.php
+++ b/public/admin/edit.php
@@ -173,7 +173,7 @@ try {
     die("Erreur lors du chargement: " . $e->getMessage());
 }
 ?>
-<?php require_once __DIR__ . '/inc/head.php'; ?>
+<?php require_once APP_ROOT . '/templates/admin/head.php'; ?>
 
     <main>
         <?php if ($error): ?>
@@ -318,4 +318,4 @@ try {
         </form>
     </main>
 
-<?php require_once __DIR__ . '/inc/footer.php'; ?>
+<?php require_once APP_ROOT . '/templates/admin/footer.php'; ?>
diff --git a/public/admin/import.php b/public/admin/import.php
index fd8ab78..3fbd4ea 100644
--- a/public/admin/import.php
+++ b/public/admin/import.php
@@ -277,7 +277,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['csv_file'])) {
     $_SESSION['csrf_token'] = bin2hex(random_bytes(32));
 }
 ?>
-<?php require_once __DIR__ . '/inc/head.php'; ?>
+<?php require_once APP_ROOT . '/templates/admin/head.php'; ?>
 
     <main>
     <h2>Importer des TFE depuis un fichier CSV</h2>
@@ -347,4 +347,4 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['csv_file'])) {
     <p>Voir: <code>../db/Database_TFE_test.csv</code></p>
 </main>
 
-<?php require_once __DIR__ . "/inc/footer.php"; ?>
\ No newline at end of file
+<?php require_once APP_ROOT . '/templates/admin/footer.php'; ?>
\ No newline at end of file
diff --git a/public/admin/index.php b/public/admin/index.php
index 3d30dcb..d9b619e 100644
--- a/public/admin/index.php
+++ b/public/admin/index.php
@@ -77,7 +77,7 @@ try {
 }
 ?>
 
-<?php require_once __DIR__ . "/inc/head.php"; ?>
+<?php require_once APP_ROOT . '/templates/admin/head.php'; ?>
 <script>
     function toggleAll(source) {
         const checkboxes = document.querySelectorAll('input[name="selected_theses[]"]');
@@ -285,4 +285,4 @@ try {
     <?php endif; ?>
 </main>
 
-<?php require_once __DIR__ . "/inc/footer.php"; ?>
+<?php require_once APP_ROOT . '/templates/admin/footer.php'; ?>
diff --git a/public/admin/thanks.php b/public/admin/thanks.php
index 3bd1773..fa44d1a 100644
--- a/public/admin/thanks.php
+++ b/public/admin/thanks.php
@@ -71,7 +71,7 @@ function formatFileSize($bytes) {
 // Set page title for header
 $pageTitle = "Merci";
 ?>
-<?php require_once __DIR__ . '/inc/head.php'; ?>
+<?php require_once APP_ROOT . '/templates/admin/head.php'; ?>
 
     <main>
         <?php if ($error): ?>
@@ -198,4 +198,4 @@ $pageTitle = "Merci";
         <?php endif; ?>
     </main>
 
-<?php require_once __DIR__ . '/inc/footer.php'; ?>
+<?php require_once APP_ROOT . '/templates/admin/footer.php'; ?>
diff --git a/public/index.php b/public/index.php
index 2adce6a..179b844 100644
--- a/public/index.php
+++ b/public/index.php
@@ -19,7 +19,7 @@ try {
     $totalPages = 0;
 }
 
-include APP_ROOT . '/public/includes/header.php';
+include APP_ROOT . '/templates/header.php';
 ?>
 
 <main>
@@ -54,4 +54,4 @@ include APP_ROOT . '/public/includes/header.php';
 </nav>
 <?php endif; ?>
 
-<?php include APP_ROOT . '/public/includes/footer.php'; ?>
+<?php include APP_ROOT . '/templates/footer.php'; ?>
diff --git a/public/memoire.php b/public/memoire.php
index 3cf9d85..e30ad8e 100644
--- a/public/memoire.php
+++ b/public/memoire.php
@@ -29,7 +29,7 @@ if (isset($_GET['id'])) {
 }
 
 // Include the header template
-include APP_ROOT . '/public/includes/header.php'; ?>
+include APP_ROOT . '/templates/header.php'; ?>
 <main>
     <div class="item">
         <div class="card-content">
@@ -151,4 +151,4 @@ include APP_ROOT . '/public/includes/header.php'; ?>
 </main>
 
 <!-- Include the footer template -->
-<?php include APP_ROOT . '/public/includes/footer.php'; ?>
\ No newline at end of file
+<?php include APP_ROOT . '/templates/footer.php'; ?>
\ No newline at end of file
diff --git a/public/search.php b/public/search.php
index b609b34..8deecba 100644
--- a/public/search.php
+++ b/public/search.php
@@ -16,7 +16,7 @@ if (!$rateLimit->check()) {
     $rateLimit->sendHeaders();
 
     // Display error page
-    include APP_ROOT . '/public/includes/header.php';
+    include APP_ROOT . '/templates/header.php';
     echo '<section class="section">';
     echo '  <div class="container">';
     echo '    <div class="notification is-danger">';
@@ -26,7 +26,7 @@ if (!$rateLimit->check()) {
     echo '    </div>';
     echo '  </div>';
     echo '</section>';
-    include APP_ROOT . '/public/includes/footer.php';
+    include APP_ROOT . '/templates/footer.php';
     exit;
 }
 
@@ -122,7 +122,7 @@ try {
     $languages = [];
 }
 
-include APP_ROOT . '/public/includes/header.php'; ?>
+include APP_ROOT . '/templates/header.php'; ?>
 
 <section class="section">
   <div class="container">
@@ -415,4 +415,4 @@ include APP_ROOT . '/public/includes/header.php'; ?>
   </div>
 </section>
 
-<?php include APP_ROOT . '/public/includes/footer.php'; ?>
+<?php include APP_ROOT . '/templates/footer.php'; ?>
diff --git a/src/cache/rate_limit/ad921d60486366258809553a3db49a4a.json b/src/cache/rate_limit/ad921d60486366258809553a3db49a4a.json
index 27f9126..433efbe 100644
--- a/src/cache/rate_limit/ad921d60486366258809553a3db49a4a.json
+++ b/src/cache/rate_limit/ad921d60486366258809553a3db49a4a.json
@@ -1 +1 @@
-[1770894771]
\ No newline at end of file
+[1770894924]
\ No newline at end of file
diff --git a/public/admin/inc/footer.php b/templates/admin/footer.php
similarity index 100%
rename from public/admin/inc/footer.php
rename to templates/admin/footer.php
diff --git a/public/admin/inc/head.php b/templates/admin/head.php
similarity index 100%
rename from public/admin/inc/head.php
rename to templates/admin/head.php
diff --git a/public/includes/footer.php b/templates/footer.php
similarity index 100%
rename from public/includes/footer.php
rename to templates/footer.php
diff --git a/public/includes/header.php b/templates/header.php
similarity index 100%
rename from public/includes/header.php
rename to templates/header.php