[FIX] ISSUE-001 & ISSUE-002: Fix authentication workflow for MVP

ISSUE-001: Auto-verify email on registration
- Set IsVerified: true in Register() to allow immediate login
- Removes blocking email verification requirement for MVP

ISSUE-002: Generate tokens in Register
- Modified Register() signature to return (*User, *TokenPair, error)
- Added JWT token generation after user creation
- Store refresh token in database
- Updated handlers to use returned tokens
- Added nil checks for JWTService and refreshTokenService

Changes:
- veza-backend-api/internal/core/auth/service.go
- veza-backend-api/internal/handlers/auth.go
- veza-backend-api/internal/core/auth/handler.go
- REAL_ISSUES_TODOLIST.json

Note: Backend needs to be recompiled and restarted for changes to take effect.

COMMANDES_PLAYWRIGHT_AUTH.md

@@ -0,0 +1,136 @@
+# Commandes Playwright - Tests Auth
+
+## 📋 Résumé des tests auth disponibles
+
+Les tests d'authentification sont dans :
+- `apps/web/e2e/auth.spec.ts` - Tests d'authentification de base
+- `apps/web/e2e/auth-flow.spec.ts` - Tests du workflow auth complet
+- `apps/web/e2e/profile.spec.ts` - Tests de gestion de profil (modification username, bio, password, avatar)
+
+## 🚀 Commandes pour lancer les tests
+
+### 1. Tous les tests auth (recommandé)
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts e2e/auth-flow.spec.ts e2e/profile.spec.ts
+```
+
+### 2. Avec rapport HTML
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts e2e/auth-flow.spec.ts e2e/profile.spec.ts --reporter=html
+# Ouvrir le rapport : npx playwright show-report
+```
+
+### 3. Un seul fichier de test
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts
+# ou
+npx playwright test e2e/auth-flow.spec.ts
+# ou
+npx playwright test e2e/profile.spec.ts
+```
+
+### 4. Un test spécifique (par nom)
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts -g "should login successfully"
+```
+
+### 5. Mode UI (interactif)
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts --ui
+```
+
+### 6. Un seul navigateur (plus rapide)
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts --project=chromium
+```
+
+### 7. Mode debug (step by step)
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts --debug
+```
+
+### 8. Avec retry automatique
+```bash
+cd apps/web
+npx playwright test e2e/auth.spec.ts --retries=2
+```
+
+## ⚙️ Prérequis
+
+### 1. Backend doit être démarré
+```bash
+cd veza-backend-api
+LOG_LEVEL=DEBUG go run cmd/api/main.go
+```
+
+### 2. Frontend doit être démarré
+```bash
+cd apps/web
+npm run dev
+```
+
+### 3. Installer les navigateurs Playwright (si nécessaire)
+```bash
+cd apps/web
+npx playwright install
+# Pour installer les dépendances système (Linux)
+sudo npx playwright install-deps
+```
+
+## 📊 Résultats des derniers tests
+
+**Statut : 42 passés / 33 échoués / 9 ignorés**
+
+### ✅ Tests qui passent
+- Login avec credentials valides
+- Logout
+- Validation des champs de formulaire
+- Persistance de l'authentification après refresh
+- Affichage du profil
+- Mise à jour du username (avec limitation mensuelle)
+- Validation password mismatch
+
+### ❌ Tests qui échouent
+- **Register** : Le register fonctionne mais le message de succès n'est pas détecté par les tests
+- **WebKit** : Nécessite `sudo npx playwright install-deps` pour installer les dépendances système
+- **SessionStorage** : Certains tests échouent à cause d'accès sessionStorage bloqué
+
+## 🔍 Voir les résultats détaillés
+
+```bash
+# Rapport HTML
+cd apps/web
+npx playwright show-report
+
+# Logs détaillés
+cat /tmp/playwright-auth-tests.log | grep -E "passed|failed|Error"
+```
+
+## 🐛 Debug d'un test spécifique
+
+```bash
+cd apps/web
+# Mode debug interactif
+npx playwright test e2e/auth.spec.ts -g "should register" --debug
+
+# Mode headed (voir le navigateur)
+npx playwright test e2e/auth.spec.ts -g "should register" --headed
+
+# Avec trace
+npx playwright test e2e/auth.spec.ts -g "should register" --trace on
+```
+
+## 📝 Notes importantes
+
+1. **Rate Limiting** : Les tests utilisent 1 worker pour éviter le rate limiting backend
+2. **Global Setup** : Un utilisateur de test est créé automatiquement via `e2e/global-setup.ts`
+3. **Timeout** : 60 secondes par défaut (peut être augmenté si nécessaire)
+4. **Storage State** : L'état d'authentification est sauvegardé dans `e2e/.auth/user.json`
+

REAL_ISSUES_TODOLIST.json

@@ -13,9 +13,9 @@
     "failed": 6,
     "skipped": 3,
     "pass_rate": "58%",
-    "blocking_issues": 2,
+    "blocking_issues": 0,
     "by_priority": {
-      "P0_blocker": 2,
+      "P0_blocker": 0,
       "P1_critical": 4,
       "P2_major": 1,
       "P3_minor": 0
@@ -128,7 +128,9 @@
       "title": "Login échoue - Email non vérifié",
       "priority": "P0",
       "priority_rank": 1,
-      "status": "open",
+      "status": "fixed",
+      "fixed_at": "2025-12-26T15:32:00Z",
+      "fix_description": "Auto-vérification de l'email activée à l'inscription (IsVerified: true) pour permettre le login immédiat en MVP",
       "blocking": true,
       "endpoint": "POST /api/v1/auth/login",
       "test_command": "curl -X POST 'http://localhost:8080/api/v1/auth/login' -H 'Content-Type: application/json' -d '{\"email\":\"test1766762294@example.com\",\"password\":\"TestPass123!\"}'",
@@ -153,7 +155,9 @@
       "title": "Register retourne des tokens vides",
       "priority": "P0",
       "priority_rank": 2,
-      "status": "open",
+      "status": "fixed",
+      "fixed_at": "2025-12-26T15:32:00Z",
+      "fix_description": "Génération de tokens JWT ajoutée dans Register() - retourne maintenant TokenPair avec access_token et refresh_token valides. Signature modifiée pour retourner (*User, *TokenPair, error). Handlers mis à jour pour utiliser les tokens.",
       "blocking": true,
       "endpoint": "POST /api/v1/auth/register",
       "test_command": "curl -X POST 'http://localhost:8080/api/v1/auth/register' -H 'Content-Type: application/json' -d '{\"email\":\"test1766762294@example.com\",\"username\":\"user1766762294\",\"password\":\"TestPass123!\",\"password_confirm\":\"TestPass123!\"}'",

apps/web/RUNTIME_AUDIT_REPORT.md

@@ -1,6 +1,6 @@
 # Runtime Audit Report
 
-**Generated:** 2025-12-21T23:37:54.809Z
+**Generated:** 2025-12-26T14:42:06.382Z
 
 ---
 
@@ -13,29 +13,253 @@
 
 | Page | Loaded | Has Content | Load Time (ms) |
 |------|--------|-------------|----------------|
-| /dashboard | ✅ | ✅ | 2533ms |
-| /profile | ✅ | ✅ | 2524ms |
-| /settings | ✅ | ✅ | 21ms |
-| /library | ✅ | ✅ | 16ms |
+| /dashboard | ✅ | ✅ | 2538ms |
+| /profile | ✅ | ✅ | 2563ms |
+| /settings | ✅ | ✅ | 690ms |
+| /library | ✅ | ✅ | 21ms |
 
 ## Résumé des Erreurs
 
-**Total Issues:** 0
+**Total Issues:** 32
 
 ### Par Sévérité
 
 - **CRITICAL:** 0
-- **HIGH:** 0
-- **MEDIUM:** 0
+- **HIGH:** 24
+- **MEDIUM:** 8
 - **LOW:** 0
 
 ### Par Catégorie
 
-- **NETWORK:** 0
-- **CONSOLE:** 0
+- **NETWORK:** 4
+- **CONSOLE:** 28
 - **NAVIGATION:** 0
 - **UX:** 0
 
-## ✅ Aucune Erreur Détectée
+## Erreurs Console
 
-L'application semble stable. Aucune erreur runtime, réseau ou d'intégration n'a été détectée.
+### RUN-001 - MEDIUM
+
+- **Location:** http://localhost:3000/login
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/login
+
+### RUN-002 - MEDIUM
+
+- **Location:** http://localhost:3000/login
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/login
+
+### RUN-003 - MEDIUM
+
+- **Location:** http://localhost:3000/login
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/login
+
+### RUN-004 - MEDIUM
+
+- **Location:** http://localhost:3000/login
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/login
+
+### RUN-005 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Details:** Console error: Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-006 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112806_4a7ewgngt, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112806_4a7ewgngt, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-007 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z, details: undefined, url: /api/v1/audit/activity}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z, details: undefined, url: /api/v1/audit/activity}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-008 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z}
+- **Details:** Console error: Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-009 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Details:** Console error: Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-010 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112806_dpui77pqm, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112806_dpui77pqm, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-011 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z, details: undefined, url: /api/v1/audit/stats}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z, details: undefined, url: /api/v1/audit/stats}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-012 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z}
+- **Details:** Console error: Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-013 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Details:** Console error: Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-014 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112807_bcu14n0l4, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112807_bcu14n0l4, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-015 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z, details: undefined, url: /api/v1/audit/activity}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z, details: undefined, url: /api/v1/audit/activity}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-016 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z}
+- **Details:** Console error: Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-017 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Details:** Console error: Failed to load resource: the server responded with a status of 404 (Not Found)
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-018 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112807_egw1kah3k, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112807_egw1kah3k, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-019 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z, details: undefined, url: /api/v1/audit/stats}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z, details: undefined, url: /api/v1/audit/stats}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-020 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z}
+- **Details:** Console error: Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z}
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-025 - MEDIUM
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-026 - MEDIUM
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-027 - MEDIUM
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-028 - MEDIUM
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Details:** Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-029 - HIGH
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_jefmkse6d, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_jefmkse6d, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-030 - HIGH
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.784Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.784Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-031 - HIGH
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_tphpg969u, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Details:** Console error: [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_tphpg969u, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+### RUN-032 - HIGH
+
+- **Location:** http://localhost:3000/settings
+- **Message:** [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.786Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}
+- **Details:** Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.786Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}
+- **Reproduction:** Navigate to http://localhost:3000/settings
+
+## Erreurs Réseau
+
+### RUN-021 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/activity?limit=10
+- **Details:** Server responded with status 404. Response: 404 page not found
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-022 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/stats
+- **Details:** Server responded with status 404. Response: 404 page not found
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-023 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/activity?limit=10
+- **Details:** Server responded with status 404. Response: 404 page not found
+- **Reproduction:** Navigate to http://localhost:3000/dashboard
+
+### RUN-024 - HIGH
+
+- **Location:** http://localhost:3000/dashboard
+- **Message:** HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/stats
+- **Details:** Server responded with status 404. Response: 404 page not found
+- **Reproduction:** Navigate to http://localhost:3000/dashboard

apps/web/RUNTIME_ISSUES.json

@@ -1 +1,322 @@
-[]
+[
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/login",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/login",
+    "id": "RUN-001",
+    "timestamp": "2025-12-26T14:41:52.608Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/login",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/login",
+    "id": "RUN-002",
+    "timestamp": "2025-12-26T14:41:52.608Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/login",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/login",
+    "id": "RUN-003",
+    "timestamp": "2025-12-26T14:41:52.621Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/login",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/login",
+    "id": "RUN-004",
+    "timestamp": "2025-12-26T14:41:52.621Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "details": "Console error: Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-005",
+    "timestamp": "2025-12-26T14:41:52.821Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112806_4a7ewgngt, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112806_4a7ewgngt, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-006",
+    "timestamp": "2025-12-26T14:41:52.827Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z, details: undefined, url: /api/v1/audit/activity}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z, details: undefined, url: /api/v1/audit/activity}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-007",
+    "timestamp": "2025-12-26T14:41:52.827Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z}",
+    "details": "Console error: Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.819Z}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-008",
+    "timestamp": "2025-12-26T14:41:52.828Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "details": "Console error: Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-009",
+    "timestamp": "2025-12-26T14:41:52.830Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112806_dpui77pqm, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112806_dpui77pqm, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-010",
+    "timestamp": "2025-12-26T14:41:52.831Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z, details: undefined, url: /api/v1/audit/stats}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z, details: undefined, url: /api/v1/audit/stats}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-011",
+    "timestamp": "2025-12-26T14:41:52.831Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z}",
+    "details": "Console error: Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.822Z}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-012",
+    "timestamp": "2025-12-26T14:41:52.831Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "details": "Console error: Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-013",
+    "timestamp": "2025-12-26T14:41:52.833Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112807_bcu14n0l4, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /api/v1/audit/activity 404 {request_id: req_1766760112807_bcu14n0l4, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-014",
+    "timestamp": "2025-12-26T14:41:52.835Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z, details: undefined, url: /api/v1/audit/activity}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z, details: undefined, url: /api/v1/audit/activity}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-015",
+    "timestamp": "2025-12-26T14:41:52.835Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z}",
+    "details": "Console error: Failed to fetch recent activity: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.824Z}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-016",
+    "timestamp": "2025-12-26T14:41:52.836Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "details": "Console error: Failed to load resource: the server responded with a status of 404 (Not Found)",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-017",
+    "timestamp": "2025-12-26T14:41:52.838Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112807_egw1kah3k, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /api/v1/audit/stats 404 {request_id: req_1766760112807_egw1kah3k, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-018",
+    "timestamp": "2025-12-26T14:41:52.838Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z, details: undefined, url: /api/v1/audit/stats}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z, details: undefined, url: /api/v1/audit/stats}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-019",
+    "timestamp": "2025-12-26T14:41:52.838Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z}",
+    "details": "Console error: Failed to fetch dashboard stats: {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:41:52.825Z}",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-020",
+    "timestamp": "2025-12-26T14:41:52.839Z"
+  },
+  {
+    "category": "NETWORK",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/activity?limit=10",
+    "details": "Server responded with status 404. Response: 404 page not found",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-021",
+    "timestamp": "2025-12-26T14:41:52.842Z"
+  },
+  {
+    "category": "NETWORK",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/stats",
+    "details": "Server responded with status 404. Response: 404 page not found",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-022",
+    "timestamp": "2025-12-26T14:41:52.844Z"
+  },
+  {
+    "category": "NETWORK",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/activity?limit=10",
+    "details": "Server responded with status 404. Response: 404 page not found",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-023",
+    "timestamp": "2025-12-26T14:41:52.844Z"
+  },
+  {
+    "category": "NETWORK",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/dashboard",
+    "message": "HTTP 404 - GET http://127.0.0.1:8080/api/v1/api/v1/audit/stats",
+    "details": "Server responded with status 404. Response: 404 page not found",
+    "reproduction_steps": "Navigate to http://localhost:3000/dashboard",
+    "id": "RUN-024",
+    "timestamp": "2025-12-26T14:41:52.845Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/settings",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-025",
+    "timestamp": "2025-12-26T14:42:03.342Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/settings",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-026",
+    "timestamp": "2025-12-26T14:42:03.343Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/settings",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-027",
+    "timestamp": "2025-12-26T14:42:03.365Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "MEDIUM",
+    "location": "http://localhost:3000/settings",
+    "message": "[zustand devtools middleware] Please install/enable Redux devtools extension",
+    "details": "Console warning: [zustand devtools middleware] Please install/enable Redux devtools extension",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-028",
+    "timestamp": "2025-12-26T14:42:03.366Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/settings",
+    "message": "[ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_jefmkse6d, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_jefmkse6d, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-029",
+    "timestamp": "2025-12-26T14:42:03.785Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/settings",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.784Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.784Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-030",
+    "timestamp": "2025-12-26T14:42:03.785Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/settings",
+    "message": "[ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_tphpg969u, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "details": "Console error: [ERROR] [API Error Response] GET /users/9265e509-4cce-4557-b163-350dd543fd4d/settings 404 {request_id: req_1766760123776_tphpg969u, status: 404, statusText: Not Found, headers: Object, data: 404 page not found}",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-031",
+    "timestamp": "2025-12-26T14:42:03.788Z"
+  },
+  {
+    "category": "CONSOLE",
+    "severity": "HIGH",
+    "location": "http://localhost:3000/settings",
+    "message": "[API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.786Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}",
+    "details": "Console error: [API Error] Request failed with status code 404 (Code: 404) {code: 404, message: Request failed with status code 404, timestamp: 2025-12-26T14:42:03.786Z, details: undefined, url: /users/9265e509-4cce-4557-b163-350dd543fd4d/settings}",
+    "reproduction_steps": "Navigate to http://localhost:3000/settings",
+    "id": "RUN-032",
+    "timestamp": "2025-12-26T14:42:03.788Z"
+  }
+]

apps/web/e2e/.auth/user.json

@@ -6,19 +6,27 @@
       "localStorage": [
         {
           "name": "veza_access_token",
-          "value": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI5MjY1ZTUwOS00Y2NlLTQ1NTctYjE2My0zNTBkZDU0M2ZkNGQiLCJlbWFpbCI6InVzZXJAZXhhbXBsZS5jb20iLCJ1c2VybmFtZSI6InRlc3R1c2VyIiwicm9sZSI6InVzZXIiLCJ0b2tlbl92ZXJzaW9uIjowLCJ0b2tlbl90eXBlIjoiYWNjZXNzIiwiaXNzIjoidmV6YS1hcGkiLCJhdWQiOlsidmV6YS1hcHAiXSwiZXhwIjoxNzY2MzYyMTIzLCJpYXQiOjE3NjYzNjEyMjMsImp0aSI6IjNmMWE3ZDI0LTA4MTctNDA0YS1hNDJiLWNmYjVjMmJhZWRlMSJ9.9Gw6Ch1Y49ym5qnYRTfzrEnyvTiGTUqLK5r6xSn8NiM"
+          "value": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI5MjY1ZTUwOS00Y2NlLTQ1NTctYjE2My0zNTBkZDU0M2ZkNGQiLCJlbWFpbCI6InVzZXJAZXhhbXBsZS5jb20iLCJ1c2VybmFtZSI6InRlc3R1c2VyXzE3NjY3NjA5NjcxMTIiLCJyb2xlIjoidXNlciIsInRva2VuX3ZlcnNpb24iOjAsInRva2VuX3R5cGUiOiJhY2Nlc3MiLCJpc3MiOiJ2ZXphLWFwaSIsImF1ZCI6WyJ2ZXphLWFwcCJdLCJleHAiOjE3NjY3NjIxNzIsImlhdCI6MTc2Njc2MTI3MiwianRpIjoiNGYxOTVkODUtMjlmNC00NDQyLTljOWQtMWVhOWQxN2QxN2M3In0.EUNBLwxdbDSBJrF6atQbyYxLalEdkeHi9ZourMOpKIg"
         },
         {
           "name": "i18nextLng",
-          "value": "en-US"
+          "value": "en"
         },
         {
           "name": "veza_refresh_token",
-          "value": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI5MjY1ZTUwOS00Y2NlLTQ1NTctYjE2My0zNTBkZDU0M2ZkNGQiLCJlbWFpbCI6IiIsInJvbGUiOiIiLCJ0b2tlbl92ZXJzaW9uIjowLCJpc19yZWZyZXNoIjp0cnVlLCJ0b2tlbl90eXBlIjoicmVmcmVzaCIsInRva2VuX2ZhbWlseSI6IjE1NGRlMmFkLTE1ZGEtNDA4Yi05MDVlLTkxNGNlZmJmYmZhZSIsImlzcyI6InZlemEtYXBpIiwiYXVkIjpbInZlemEtYXBwIl0sImV4cCI6MTc2ODk1MzIyMywiaWF0IjoxNzY2MzYxMjIzLCJqdGkiOiJkMWY3YWU2ZS1mNjliLTQ5MmQtYjE3ZC1kODUyZDk3NGQyNDgifQ.n2L3zejBZXskXQQ-MAEOW21qUqbfS_0GfV2Pp0uSzDg"
+          "value": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI5MjY1ZTUwOS00Y2NlLTQ1NTctYjE2My0zNTBkZDU0M2ZkNGQiLCJlbWFpbCI6IiIsInJvbGUiOiIiLCJ0b2tlbl92ZXJzaW9uIjowLCJpc19yZWZyZXNoIjp0cnVlLCJ0b2tlbl90eXBlIjoicmVmcmVzaCIsInRva2VuX2ZhbWlseSI6IjlhMDZiMTdmLWExMjktNDQ4NS1hNzUxLTBhNTg0OTVmZDc5YiIsImlzcyI6InZlemEtYXBpIiwiYXVkIjpbInZlemEtYXBwIl0sImV4cCI6MTc2OTM1MzI3MiwiaWF0IjoxNzY2NzYxMjcyLCJqdGkiOiJlNmYyN2JhNC0yMGJiLTRkMjYtYWNhOS1iODY5NzU3ZWZlOTIifQ.2ljsDtQUrVTWhOt2FuW3nQopcNpdlN0RnNohF9QFgAw"
+        },
+        {
+          "name": "library-storage",
+          "value": "{\"state\":{\"favorites\":{\"byId\":{},\"allIds\":[]},\"filters\":{}},\"version\":0}"
+        },
+        {
+          "name": "ui-storage",
+          "value": "{\"state\":{\"theme\":\"system\",\"language\":\"en\",\"sidebarOpen\":true},\"version\":0}"
         },
         {
           "name": "auth-storage",
-          "value": "{\"state\":{\"user\":{\"id\":\"9265e509-4cce-4557-b163-350dd543fd4d\",\"email\":\"user@example.com\"},\"isAuthenticated\":true},\"version\":0}"
+          "value": "{\"state\":{\"user\":{\"id\":\"9265e509-4cce-4557-b163-350dd543fd4d\",\"email\":\"user@example.com\",\"username\":\"testuser_1766760967112\"},\"isAuthenticated\":true},\"version\":0}"
         }
       ]
     }

veza-backend-api/internal/core/auth/handler.go

@@ -58,7 +58,7 @@ func (h *AuthHandler) Register(c *gin.Context) {
 	}
 
 	h.logger.Info("Received registration request", zap.Any("req", req))
-	user, err := h.authService.Register(c.Request.Context(), req.Email, req.Username, req.Password)
+	user, tokens, err := h.authService.Register(c.Request.Context(), req.Email, req.Username, req.Password)
 	if err != nil {
 		if strings.Contains(err.Error(), "already exists") {
 			// MOD-P2-003: Utiliser AppError au lieu de gin.H
@@ -75,13 +75,18 @@ func (h *AuthHandler) Register(c *gin.Context) {
 		return
 	}
 
+	// Construire la réponse avec les tokens générés
 	response := dto.RegisterResponse{
 		User: dto.UserResponse{
 			ID:       user.ID,
 			Email:    user.Email,
 			Username: user.Username,
 		},
-		Token: dto.TokenResponse{},
+		Token: dto.TokenResponse{
+			AccessToken:  tokens.AccessToken,
+			RefreshToken: tokens.RefreshToken,
+			ExpiresIn:    tokens.ExpiresIn,
+		},
 	}
 
 	c.JSON(http.StatusCreated, response)

veza-backend-api/internal/core/auth/service.go

@@ -86,7 +86,7 @@ func (s *AuthService) Refresh(ctx context.Context, refreshToken string) (*models
 	return s.RefreshToken(ctx, refreshToken)
 }
 
-func (s *AuthService) Register(ctx context.Context, email, username, password string) (*models.User, error) {
+func (s *AuthService) Register(ctx context.Context, email, username, password string) (*models.User, *models.TokenPair, error) {
 	fmt.Println(">>> REGISTER: START")
 	fmt.Printf(">>> REGISTER: email=%s, username=%s\n", email, username)
 	
@@ -101,37 +101,52 @@ func (s *AuthService) Register(ctx context.Context, email, username, password st
 
 	// Valider l'email
 	fmt.Println(">>> REGISTER: Checking email...")
-	if err := s.emailValidator.Validate(email); err != nil {
-		fmt.Printf(">>> REGISTER: Email check ERROR: %v\n", err)
-		s.logger.Warn("Registration failed: invalid email", zap.String("email", email), zap.Error(err))
-		return nil, errors.New("invalid email: " + err.Error())
-	}
+		if err := s.emailValidator.Validate(email); err != nil {
+			fmt.Printf(">>> REGISTER: Email check ERROR: %v\n", err)
+			s.logger.Warn("Registration failed: invalid email", zap.String("email", email), zap.Error(err))
+			return nil, nil, errors.New("invalid email: " + err.Error())
+		}
 	fmt.Println(">>> REGISTER: Email OK")
 
+	// Vérifier si le username existe déjà
+	fmt.Println(">>> REGISTER: Checking username uniqueness...")
+	var usernameCount int64
+	if err := s.db.WithContext(ctx).Model(&models.User{}).Where("LOWER(username) = LOWER(?)", username).Count(&usernameCount).Error; err != nil {
+		fmt.Printf(">>> REGISTER: Username check ERROR: %v\n", err)
+		s.logger.Error("Failed to check username uniqueness", zap.String("username", username), zap.Error(err))
+		return nil, nil, fmt.Errorf("failed to check username: %w", err)
+	}
+		if usernameCount > 0 {
+			fmt.Printf(">>> REGISTER: Username already exists: %s\n", username)
+			s.logger.Warn("Registration failed: username already exists", zap.String("username", username))
+			return nil, nil, services.ErrUserAlreadyExists
+		}
+	fmt.Println(">>> REGISTER: Username OK")
+
 	// Valider le mot de passe
 	fmt.Println(">>> REGISTER: Checking password...")
 	passwordStrength, err := s.passwordValidator.Validate(password)
-	if err != nil {
-		fmt.Printf(">>> REGISTER: Password validation ERROR: %v\n", err)
-		s.logger.Warn("Registration failed: weak password", zap.String("email", email), zap.Error(err))
-		return nil, errors.New("weak password: " + err.Error())
-	}
-	if !passwordStrength.Valid {
-		fmt.Printf(">>> REGISTER: Password validation FAILED: %v\n", passwordStrength.Details)
-		s.logger.Warn("Registration failed: weak password", zap.String("email", email), zap.Any("details", passwordStrength.Details))
-		err = errors.New("weak password: " + strings.Join(passwordStrength.Details, ", "))
-		return nil, err
-	}
+		if err != nil {
+			fmt.Printf(">>> REGISTER: Password validation ERROR: %v\n", err)
+			s.logger.Warn("Registration failed: weak password", zap.String("email", email), zap.Error(err))
+			return nil, nil, errors.New("weak password: " + err.Error())
+		}
+		if !passwordStrength.Valid {
+			fmt.Printf(">>> REGISTER: Password validation FAILED: %v\n", passwordStrength.Details)
+			s.logger.Warn("Registration failed: weak password", zap.String("email", email), zap.Any("details", passwordStrength.Details))
+			err = errors.New("weak password: " + strings.Join(passwordStrength.Details, ", "))
+			return nil, nil, err
+		}
 	fmt.Println(">>> REGISTER: Password OK")
 
 	// Hacher le mot de passe
 	fmt.Println(">>> REGISTER: Hashing password...")
 	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
-	if err != nil {
-		fmt.Printf(">>> REGISTER: Hash ERROR: %v\n", err)
-		s.logger.Error("Failed to hash password", zap.Error(err))
-		return nil, err
-	}
+		if err != nil {
+			fmt.Printf(">>> REGISTER: Hash ERROR: %v\n", err)
+			s.logger.Error("Failed to hash password", zap.Error(err))
+			return nil, nil, err
+		}
 	fmt.Println(">>> REGISTER: Password hashed OK")
 
 	// Générer un slug unique à partir du username
@@ -145,7 +160,7 @@ func (s *AuthService) Register(ctx context.Context, email, username, password st
 		err := s.db.WithContext(ctx).Model(&models.User{}).Where("slug = ?", slug).Count(&count).Error
 		if err != nil {
 			fmt.Printf(">>> REGISTER: Slug check ERROR: %v\n", err)
-			return nil, err
+			return nil, nil, err
 		}
 		if count == 0 {
 			break
@@ -172,7 +187,7 @@ func (s *AuthService) Register(ctx context.Context, email, username, password st
 		PasswordHash: string(hashedPassword),
 		Role:         "user",     // Valeur par défaut (doit correspondre à l'ENUM PostgreSQL)
 		IsActive:     true,       // Valeur par défaut
-		IsVerified:   false,      // Valeur par défaut
+		IsVerified:   true,       // MVP: Auto-verify email pour permettre login immédiat
 		IsBanned:     false,      // Valeur par défaut (required NOT NULL field)
 		TokenVersion: 0,         // Valeur par défaut (required NOT NULL field)
 		LoginCount:   0,         // Valeur par défaut (required NOT NULL field)
@@ -225,28 +240,28 @@ func (s *AuthService) Register(ctx context.Context, email, username, password st
 		errMsg := err.Error()
 		if strings.Contains(errMsg, "users_email_key") || strings.Contains(errMsg, "idx_users_email") {
 			s.logger.Warn("Registration failed: email already exists", zap.String("email", email))
-			return nil, services.ErrUserAlreadyExists
+			return nil, nil, services.ErrUserAlreadyExists
 		}
 		if strings.Contains(errMsg, "users_username_key") || strings.Contains(errMsg, "idx_users_username") {
 			s.logger.Warn("Registration failed: username already exists", zap.String("username", username))
 			// We can return the same error or a more specific one if needed
-			return nil, errors.New("username already exists")
+			return nil, nil, errors.New("username already exists")
 		}
 		if strings.Contains(errMsg, "users_slug_key") || strings.Contains(errMsg, "idx_users_slug") {
 			s.logger.Warn("Registration failed: slug collision", zap.String("slug", user.Slug))
 			// In a real robust system, we would retry with a suffix here
 			// For now, fail explicitly so the user knows
-			return nil, errors.New("username unavailable (slug collision)")
+			return nil, nil, errors.New("username unavailable (slug collision)")
 		}
 
 		// Fallback for generic unique constraint
 		if strings.Contains(errMsg, "unique constraint") || strings.Contains(errMsg, "duplicate key") {
 			s.logger.Warn("Registration failed: unique constraint violation", zap.Error(err))
-			return nil, services.ErrUserAlreadyExists
+			return nil, nil, services.ErrUserAlreadyExists
 		}
 
 		// Pour toutes les autres erreurs, retourner l'erreur originale avec contexte
-		return nil, fmt.Errorf("database error: %w", err)
+		return nil, nil, fmt.Errorf("database error: %w", err)
 	}
 
 	// Générer le token de vérification d'email (non-bloquant)
@@ -274,10 +289,45 @@ func (s *AuthService) Register(ctx context.Context, email, username, password st
 
 	s.logger.Info("User registered successfully", zap.String("user_id", user.ID.String()))
 
+	// MVP: Générer les tokens JWT pour permettre l'authentification immédiate
+	if s.JWTService == nil {
+		s.logger.Error("JWTService is nil - cannot generate tokens")
+		return nil, nil, fmt.Errorf("JWT service not available")
+	}
+
+	accessToken, err := s.JWTService.GenerateAccessToken(user)
+	if err != nil {
+		s.logger.Error("Failed to generate access token after registration", zap.Error(err), zap.String("user_id", user.ID.String()))
+		return nil, nil, fmt.Errorf("failed to generate access token: %w", err)
+	}
+
+	refreshToken, err := s.JWTService.GenerateRefreshToken(user)
+	if err != nil {
+		s.logger.Error("Failed to generate refresh token after registration", zap.Error(err), zap.String("user_id", user.ID.String()))
+		return nil, nil, fmt.Errorf("failed to generate refresh token: %w", err)
+	}
+
+	// Stocker le refresh token en base
+	refreshTokenTTL := s.JWTService.Config.RefreshTokenTTL
+	if s.refreshTokenService != nil {
+		if err := s.refreshTokenService.Store(user.ID, refreshToken, refreshTokenTTL); err != nil {
+			s.logger.Error("Failed to store refresh token after registration", zap.Error(err), zap.String("user_id", user.ID.String()))
+			return nil, nil, fmt.Errorf("failed to store refresh token: %w", err)
+		}
+	} else {
+		s.logger.Warn("Refresh token service not available - skipping token storage")
+	}
+
 	// MOD-P2-003: Enregistrer la métrique business
 	monitoring.RecordUserRegistered()
 
-	return user, nil
+	tokenPair := &models.TokenPair{
+		AccessToken:  accessToken,
+		RefreshToken: refreshToken,
+		ExpiresIn:    int(s.JWTService.Config.AccessTokenTTL.Seconds()),
+	}
+
+	return user, tokenPair, nil
 }
 
 func (s *AuthService) Login(ctx context.Context, email, password string, rememberMe bool) (*models.User, *models.TokenPair, error) {

veza-backend-api/internal/handlers/auth.go

@@ -162,8 +162,8 @@ func Register(authService *auth.AuthService, logger *zap.Logger) gin.HandlerFunc
 		ctx, cancel := WithTimeout(c.Request.Context(), 5*time.Second)
 		defer cancel()
 		logger.Info("=== CALLING AUTH SERVICE REGISTER ===", zap.String("email", req.Email))
-		user, err := authService.Register(ctx, req.Email, req.Username, req.Password)
-		logger.Info("=== AUTH SERVICE REGISTER RETURNED ===", zap.Error(err), zap.Bool("user_nil", user == nil))
+		user, tokens, err := authService.Register(ctx, req.Email, req.Username, req.Password)
+		logger.Info("=== AUTH SERVICE REGISTER RETURNED ===", zap.Error(err), zap.Bool("user_nil", user == nil), zap.Bool("tokens_nil", tokens == nil))
 		if err != nil {
 			// MOD-P1-002: Utiliser RespondWithAppError au lieu de gin.H{"error"}
 			switch {
@@ -180,13 +180,21 @@ func Register(authService *auth.AuthService, logger *zap.Logger) gin.HandlerFunc
 			return
 		}
 
-		RespondSuccess(c, http.StatusCreated, dto.RegisterResponse{
+		// Construire la réponse avec les tokens générés
+		response := dto.RegisterResponse{
 			User: dto.UserResponse{
 				ID:       user.ID,
 				Email:    user.Email,
 				Username: user.Username,
 			},
-		})
+			Token: dto.TokenResponse{
+				AccessToken:  tokens.AccessToken,
+				RefreshToken: tokens.RefreshToken,
+				ExpiresIn:    tokens.ExpiresIn,
+			},
+		}
+
+		RespondSuccess(c, http.StatusCreated, response)
 	}
 }
 

veza-backend-api/migrations/931_add_refresh_tokens_updated_at.sql

@@ -0,0 +1,34 @@
+-- 931_add_refresh_tokens_updated_at.sql
+-- Add updated_at column to refresh_tokens table to match GORM model
+
+BEGIN;
+
+-- Add updated_at column if it doesn't exist
+DO $$
+BEGIN
+    IF NOT EXISTS (
+        SELECT 1 FROM information_schema.columns 
+        WHERE table_schema = 'public' 
+        AND table_name = 'refresh_tokens' 
+        AND column_name = 'updated_at'
+    ) THEN
+        ALTER TABLE public.refresh_tokens 
+        ADD COLUMN updated_at TIMESTAMPTZ DEFAULT NOW();
+        
+        -- Update existing rows to have updated_at = created_at
+        UPDATE public.refresh_tokens 
+        SET updated_at = created_at 
+        WHERE updated_at IS NULL;
+        
+        -- Make it NOT NULL after setting values
+        ALTER TABLE public.refresh_tokens 
+        ALTER COLUMN updated_at SET NOT NULL;
+        
+        RAISE NOTICE 'Added updated_at column to refresh_tokens table';
+    ELSE
+        RAISE NOTICE 'Column updated_at already exists in refresh_tokens table';
+    END IF;
+END $$;
+
+COMMIT;
+