From 2f880da2756409e943642c68b2e5c346c53208fe Mon Sep 17 00:00:00 2001
From: Admin MPCZ <admin@mpcz.fr>
Date: Wed, 15 Apr 2026 12:00:41 +0200
Subject: [PATCH] Top bar: affiche display_name (Prenom NOM) + (AD) si LDAP +
 login en gris

---
 app/routers/auth.py     | 15 ++++++++++++---
 app/templates/base.html |  5 ++++-
 2 files changed, 16 insertions(+), 4 deletions(-)

diff --git a/app/routers/auth.py b/app/routers/auth.py
index ccf3eaf..acb06f9 100644
--- a/app/routers/auth.py
+++ b/app/routers/auth.py
@@ -88,9 +88,18 @@ async def login(request: Request, username: str = Form(...), password: str = For
                     log_login_failed(db, request, username)
                     db.commit()
                     return err_template("Mot de passe incorrect")
-        # Include mode in JWT token
-        token = create_access_token({"sub": row.username, "role": row.role, "uid": row.id, "mode": mode})
-        user = {"sub": row.username, "role": row.role, "uid": row.id, "mode": mode}
+        # Include display_name + auth_type dans le JWT pour affichage propre
+        display_row = db.execute(text(
+            "SELECT display_name, auth_type FROM users WHERE id=:uid"
+        ), {"uid": row.id}).fetchone()
+        display_name = display_row.display_name if display_row else row.username
+        auth_type = display_row.auth_type if display_row else "local"
+        token = create_access_token({
+            "sub": row.username, "role": row.role, "uid": row.id, "mode": mode,
+            "display": display_name, "auth": auth_type,
+        })
+        user = {"sub": row.username, "role": row.role, "uid": row.id, "mode": mode,
+                "display": display_name, "auth": auth_type}
         log_login(db, request, user)
         db.commit()
         # Redirect
diff --git a/app/templates/base.html b/app/templates/base.html
index 420789a..aa7ec11 100644
--- a/app/templates/base.html
+++ b/app/templates/base.html
@@ -164,7 +164,10 @@
             <!-- Top bar -->
             <header class="flex items-center justify-end px-6 py-2 border-b border-cyber-border bg-cyber-card">
                 <div class="flex items-center gap-3">
-                    <span class="text-sm text-gray-400">{{ user.sub }}</span>
+                    <span class="text-sm text-cyber-accent font-medium">{{ user.display or user.sub }}</span>
+                    {% if user.auth == 'ldap' %}<span class="text-xs text-gray-500">(AD)</span>{% endif %}
+                    <span class="text-xs text-gray-500">·</span>
+                    <span class="text-xs text-gray-400">{{ user.sub }}</span>
                     <span class="badge badge-blue">{{ user.role }}</span>
                     <a href="/logout" class="btn-sm bg-cyber-border text-gray-300 hover:bg-red-900/40 hover:text-cyber-red transition-colors">Deconnexion</a>
                 </div>