Ajout de la sécurité

app/config/security.yml

@@ -61,7 +61,7 @@ security:
         - { path: ^/admin/members/general_meeting_vote, roles: ROLE_ADMIN }
         - { path: ^/admin/site, roles: ROLE_ADMIN }
         - { path: ^/admin/planete, roles: ROLE_ADMIN }
-        - { path: ^/admin/(members/reporting|association/relances|talk|slackmembers/check), roles: ROLE_ADMIN}
+        - { path: ^/admin/(members/reporting|association/relances|talk|slackmembers/check|healthcheck), roles: ROLE_ADMIN}
         - { path: ^/member, roles: [ROLE_USER, ROLE_MEMBER_EXPIRED]}
         - { path: ^/admin/, roles: ROLE_MEMBER_EXPIRED }
         - { path: ^/blog, allow_if: "request.getClientIp() in ['217.70.189.71', '127.0.0.1', '192.168.42.1'] or request.server.get('ALLOW_BLOG_FROM_ALL') == 1 or request.headers.get('x-afup-blog-api-key') == '%blog_api_key%'" }

tests/behat/features/Admin/Divers/Healthcheck.feature

@@ -1,7 +1,13 @@
 Feature: Administration - Healthcheck
 
   @reloadDbWithTestData
-  Scenario: Vérification des dates
+  Scenario: Un membre ne peut pas accéder aux vérifications du site
+    Given I am logged-in with the user "paul" and the password "paul"
+    And I am on "/admin/healthcheck"
+    Then the response status code should be 403
+
+  @reloadDbWithTestData
+  Scenario: Vérifications du site
     Given I am logged in as admin and on the Administration
     And I follow "Healthcheck"
     Then I should see "Healthcheck"