From 4b2e3b5be7d671f1e13f282ace8e6a742827ef32 Mon Sep 17 00:00:00 2001
From: kara Diaby <kdiaby.pro@gmail.com>
Date: Mon, 2 Nov 2020 11:37:21 +0100
Subject: [PATCH 1/5] Revert "Merge pull request #5710 from
 betagouv/revert-5705-feat/5701"

This reverts commit aae77c77b052180c01ff4153d99b678140e62a82, reversing
changes made to 4c2c5c630c860868b2cf3d2656baa272f6166e7b.
---
 app/assets/images/logo-france-connect.png        | Bin 0 -> 7451 bytes
 app/views/dossiers/show.pdf.prawn                |   3 +++
 app/views/shared/dossiers/_demande.html.haml     |   2 ++
 app/views/shared/dossiers/_edit.html.haml        |   3 ++-
 .../_france_connect_informations.html.haml       |   4 ++++
 .../france_connect_particulier_spec.rb           |   4 ++++
 .../instructeur/dossiers/show.html.haml_spec.rb  |  15 +++++++++++++++
 .../users/dossiers/demande.html.haml_spec.rb     |  15 +++++++++++++++
 8 files changed, 45 insertions(+), 1 deletion(-)
 create mode 100644 app/assets/images/logo-france-connect.png
 create mode 100644 app/views/shared/dossiers/_france_connect_informations.html.haml

diff --git a/app/assets/images/logo-france-connect.png b/app/assets/images/logo-france-connect.png
new file mode 100644
index 0000000000000000000000000000000000000000..c33a3472389d5eecbfed09a1beb14ce074a61f68
GIT binary patch
literal 7451
zcmX|mbySn@|2|5%5mKXj0;3y2N;XE<7$Kd~4U-lT7%9>vwb6n|ODIwTA_yZT1d$vK
zQUapiy?>u`e&;;rbzXJ9?(4el=RVILPa?uVlZu>`oQQ~sN?Qw#BqF+nBlv3oVuHQR
z+KMLF8-$*TIw9O==Os2MB|HRYPg(tc&K9R2NWX}X+2!EZ)r$LH^8Z^}{UTBWETKwf
zfF(2}tGMs6^X_m!DD*M^ZwcT3s$V4F1gFg=m|$gHYr|myZBqJf8sV*y`XyQI7CJG$
zdXY&`ul|gx`+8{zt=MF!XSuw^@21w*^<(W?j=2w=!H9yvi1a01sg&Y@cLl90$vMf6
zF9;I~6zvtYU!0YcO*Qwo2BkmK4z7?hAJem4bPLkaiYGBB)znHD7F0p02le&O&-URu
z+i}&}?uSwF5s`2F+>7!;i%R9KCivw=bTcaD%zH)Q_&2SKMKuhF;(P?k*gSJxLMbSt
zr^fNQbyS;?M}?qnrk{F9x2VQF-5ea`fs*!%T3Hi?NBQd}w$_?aq3S5YsB$^;6jk?k
zlDfk}Dt_w0+aEp=LSEhM-m(rA?PQm{uin<FtK1@ZPRPH1|Nf^Wk?|;z`{)h_KS7_~
zDLkER1D#&M3YSRF6rM2T==5@=vYi00UdCu;=TuJT<v2v4Q$nX-RBf8?{t}M_mtL-g
z=5q@D5(({8q*hEMJRk|`$*lK^upQ=sb&Hh#2A2@AQKhg>CR)w+=GV!@@&TQBb)J%A
z@4_z+jW9mlY`Au!oyId~jfm8TZkfu?AH_6$H9`n<3Ki|<d8N~v=AdC6QogMycrf_!
zTPj5V@%c5j>-+Pn$qBIZ58QX^fboFBky|#MA+k<~Tl<)yJ!D+BxgzSd6mn(%^7Qn#
z1bX(iS-pY=_V?*|RLf?==T+6zd9H{_hx9>V?Yd?GwbZU{6=?LKs4S7|@Y&|hpY;vD
z+EpUwK{mY(ZmkSF{&;+HZTIW6vRWo??Yv>)aCvF_;`0bJdZ0;2-yZwpdgj~nO5CG|
zDLLZC5brKedC#NyABeo~#E!k%dc{HVA&w4}=PxskH1&J=RM4_sCr<8?zRmGcR`15Q
zfsblgpSv;=E<gkdX<$s$quLYoGfI_)=9v4hJ?_{Z$Gx(Gk)UZvm%tzpe!tQ#{LZ-d
z!+B3metkGOu`pA;xw<+%Aw<6p4|_sYuYaGO?Cxy$G`xbVUR|9ZAMNk&d>i=q@x%Gq
z8KHwv+FmRuh>3b?f3&-@vhpe?%0=P~Z-29Ly}N>$X8%G(M8smG4TqY9EbPt4`=%H%
z4;_D-&3la?kzJUqsjHZ-u?auyx>(+NYE>bZYu4H}67(8Vqoe)F0~ZV6gTgD!J|&p*
z(9wMgMHudO`i{R2?|4)^-hK47t2=P4cFx8xlfRdf{PJOYDCz#@I~nWhw129Z^98{%
zqE_!l1C0|ht>*krHo2f31N)%W(eM1;Wbg01J>0*pbK6<1B=@(pg=%747bypwNmX&v
z({U(;0Az1-D*I1pj6xHa)DRRmttL}3_W9n?Z(0Cr+5lou01#H~OplglYSSJ{Rl_~c
z7wJ9|HKz8DanmVE${lwAux9m&JidhCy29OciZuOJe)cQ5;gIK6zJpL)m+0a|mI7&N
z&rLj!Ta1W{{-IHL$0>A*VHN-V!}(!6##=g{^GA-7Ti6xi74puvkl9GU&Qt*d_j`I0
z{U0j1e}g&9{Z@KoK2#YJ(I5G-lPoRg+Y)nR50%H<;lcOl>gf%A++OT}qJ*Dl*)9vx
zfR-=e&X+!SXw`OwKlREKXJ_=qT%9@~n+U`b0I!fkO%f6+=o4W3r^m{B6wrHaIvfdB
zslP)23P&o!FJ2biQ+4g^lLv?&h5$OjF$~C@ha_Dg>6O#8EhVkMu&@h<XWZ}alBB#S
zG&H_S4Mi=s0Hg2Iuo&J5qA}^kr>wulJ5J|FR_}awedYs)^J1ty{~0(PHsPkOZ#5_K
z{?lr3lG5LPIPuYHzDcP%IM7AfcSjY+Q7lvOtVDPm2z5~Mb~8%;%)zd|ZMP{^w<kx;
zDb1$K`V**L7C-Utz-~HZ{yDMI7T$LBZqp5q8|rj@lDtuveVq6Xw;M74-oiriU%k10
z1sa)!z>l!K@rt2$-ZU-UzfGO{h0m-@U987rsV-tm-HVkO99^eay<;%Myl;gJzt&v7
zyFyNtN`I<qp(4@OEfZ{|W*_&qM{)7*)mWI$1Y$kfp;MGkqz0;5gh}+1v4X87J8Gq+
z7+25Z+Akklg@PZ*n3&pm7HYfbyjR6BUyzbR-?5KZ3jl<qiw$Rd1GuZhG>9eXj1~Hn
zMdR4?jFY_Ni;e7CK84uI)e=QwXijs^ZIbm81ygQmyh2)eK9r;lxSzp1?qoN8INHV|
z5Nt#&QK4rZ#02n=F{lu1<@v^wm`H<q^C{#bGO&o^hW4~LXJmaORx}_ULl{utpWh@*
z8*PxrV%Yp@gq_^P&-PldQjUIha0%e1<L#tfW<!ID`xGK3SBn=VL)TKI6;Hm^Xz&kU
zLH{`pIasA*lXdMgs57N~Nb7(&i_VG1($k+;Qjjd+4UDf`t%V^FHQe9TwM%^VE5o~F
z8$KSP`HyXhmr~d|9>{`_zmHFK<1qA`(nb(}rDJ$3^yf~7Vfm;hMiC@S^|mw(W+5dh
zmR~TD3{*^caQr12+L5~;&TC72h(crdr-ZJ4h)yfoS+i5`K#s>QScd4IVVFVV>X*!a
z@*5yF+|{pVOwgbGU$fuI7}9;ps}=(O!Ud`q(>my91u2K2?%Ft%>m4tWD?>g%<!#P#
zq6HPBL|fDHk(^m<dXJbLWQDz#zQkN<TbsUw8WeE}kPHN-^Tmv2jm2Ub8)w{f(Cv(i
z<g1qTPDrj{n&JeJ=+zn0;chY&7GkKAm8ppq)Y>CHUTyrCEpJa#Y8L{gOfu}uaa53U
z;IJGBi2GFmDy=>E><6&)r6O)Ri~w-?OI9y;X#JIK;3AP_u9?i*5wH|wf1xy(cd99+
z>sv=UP)m{Vui-p`pG0;~#K71C?RgPPf`1Uik$Iz483^vf;G<o#-394qy(meRIx;Fj
zJh>S_AWcj0Xvizm-2jp3ouXuf9vS^?eYOMSQEcTj>?=92=a7{?h%s=dC_$q7V5Xvh
zYc?o)28F&<?`V)H4t(s%FVb_WtseG>kuu5FW7hjaz^XF+c{vG*jg2i&XuDYyW^G_d
z`kv)f3w7e{hX~4=a4{Gy1O|io$k_KOy!Z)y#PkSI!_LTP=1WbVJ^kqVptUCv5R+tW
z<M;y|5nRDU-`)3S6aP2bdb**3d^H|x@cX2bMJ#~8Cd{yNWqv8m8nXP*rPSpYrWKS?
zD?qJ~1GMy*{3T&cbM+jCcphk^qh%X>M*<ogf&-Hev!PN}LNq+Oe}mpWBa9%mu~GT{
z`J1te&JY3zBh_cEu((Py#}NSRC~rq9(K>D~5%ZUlkY-aQt+{Wvj@=U@n|a7IU^{F_
zSB2srZ8gN5X;ATuG*4JP$AmoT9Z6yczBWcEl6+0Tp_s++|7n&DS(;<w3G<Pu!rZ_6
z%47($-QR5VlJMoE7Z)ZCxyXx-bUxIxEs86ZXJ<=vp@kuDTfUj@^slAxhrG3JKjP|y
zBs{_B7_s~P)M(rptjMW(qWV-w$lwW46?)B>-B06D<;RvP?~H=*{Vv(r>*q%y^<Dbc
zXSs!etZeD9NBc*D_TI4!Mx6*Rn~w;+Rjdh+fgd#zRFX(N*VF(+2hY7J{}qx*Cj`eQ
z*Qp2x7u&1m$EwW7e$`Rfm({`JVfXGBhIyl&aHJxB(|DWV<B@zQIJW-axAop8ednQM
zE^bJ1Oc;9)sLT!$Q!2C^f`HEbfXeIQNSG$w0?A4eeyjRRL4CcQd_=o}!nAO9S>0>?
z(}_)>TZ8e#8%@|5TxWqKLj*<ar;ZByym7Xbt4%q>=E_FXl&gkMUEz86Cmo>$|He;K
zgOJ~lo`UB;;^gF)@zCtYH07!f1q)%pv9_lcmlLg*#|O?C2F~QS?@L{X+C}i0L?O--
ze6D0N^;_~a>dH<9168vTw_p#zVZ05Yn?I%d)GBV_T&Sw)gj5B>;fAC?Klnu-O-A3m
zxMd1c2RNtVTMOccOAx-cP88Kd*a!RFQT$o5r5Cw&{Li$W9Q)@)31L@bZS`g@_lYh8
zYwRp;U$w<D20W1d`J@24)=zb?+VtvD|B8{Uf!sL>Kb~M<P<A*)te}F;ndl{tloA!^
z3YXJu!%`0kH@)5Jq3m?73=zM080X`D9BajFU;j?e1$&wx##h!PqKsLiuZf>Q`afA+
zqGTStkDP5@YLX5~1?yMciTNb%JEz9xAO)<@JpIciC3O~LsX8PE`b9(uqa7-*XByDC
z+e$?V(}#4@l4@X?D%R=e)tRnlxw;V;@(qa^;(8;BC}_328t8qRSQh7mFPvy5EB)Zz
zGpImT2zsHCQIj?=)=}jNM=&HbQ%pv*^hYAVU{bTw_huCMM1iY|B@VkA)&2(d+V|F!
z3!Mjw%F;5*;@xo$iU3}P8!WHEwe5553FBA-_-&i|i*s&do$bwN;Os$N#f=eO6*0rj
z<V%B}^l>j0ucDVylnZdl$e?ypIz&ly)O`YPCXaA+V<)2I%$e!4hBkkWQB;7cw{96?
zuuA5XEm>c{E2-9x`h`%-6B^jL@ogcUYFEltB#FFICd&uiCIprLttY%@aP^cp`cSRr
zYu?we?SI>0qCjR-!B}fuV0G-zh?ij1Z*#+C(ytJobeD<hxA<6ETt9uFCv^TuKFR=K
zmZN^`DHPM-_9$jT(K!>ElLcixEykbSwSX=d@(T6SzesSbhuf(;OcjD~6SEK)wf6*6
z1PE=>q#6on$S8p6oKS0Pb5SnHYR}WKhnnBKjbO*(VKq1b5ttw?#}b59c`?d`xOk9E
zCI&{K0H+a|Uh~MgL~GpZ%mP#x-D|^g(Bmk{TfNf6rqhIFSSL#0fV_znJH6ds^O}Q;
z@jETik72Qn@J3<=Z9N;AA}IDUk#>P;A{(xhjkoCh_Gb?$dRKol`f8FT+-TjXnD#y5
z1^y|xI8(B21Vx4pveVVoSw!|oic_g25GqJ;VHwWhX}AQ21(Z|<6?`h-JgQrwcSJFe
z5D8gLWZO1yH4^xkg^b-iHjG$vio`Nc<ieGx*tZ>3rA1nJwX5SxA_JBA{>zuZZ$o&b
zCX2?(5mpCcZCZ*Iq!ua5p#)}EQJ*nDX{CYxMB%)YUt~aRfP==}+B;mva6A+5z0c~c
z&I{Q~a1drhZwnEbX6MvA$U`;Z;yPADN!lz8K^(UJq@TidFv~~YPAVzKA*;_SfE*oc
zzM51)7DL;$>1td}K^sdhdqP9J`yt5=pLq?ZqXM`)sm5EVmA(i^nq+`Mf(@cJbi5!&
zTJ1s(dA5rEp~ieTOB-S;9Smxm%Q+_j+CX`YV*VB#U`NSk^f<^q=d#nn(qWuw>%B(v
zaRLU<AGsxK-M;AP)w*aDM^tknam)ge5kFJV_3ch1wU$@DZoAvWgMB|N5~){C1%HXi
zZHJi?Z$7Cnbn>xE69gxl*}<uSG(wrt&Lrj!^cj67@Q6{#C6RUxoh{G;cT=@mYFp$W
z+J(gct6J_))A`*PHUw#bJ@%&zvqr*(_)o>s)ocH~M`hzAfn8VWpI6Dax3UQSQ&jTj
z(%YX0jdiN6u^}v}BXHi<*?lq@U#>dRhiY6**@zC<ai0rQf`o@A8%=<pmcVx-SOxjO
zNQe?|S@e&>@UrEJuwTrof#!HlK9d^6hlY6uaG|OjU*RVBFbnbezr}EgnZ@UZB1uOP
zOnfGl|Ft-Pv%=_!d`=BE;3@)GDfBA(>!+8D2CyEZXjnP{3NO~27Wgp10NSHnICc?e
z2+W3n#J%{N=<ABncV+*;QBk@&)gUb4xbI9{NwWWTGL2Otzyb^;X@!`Y)XE?P@}qgi
z5<v>Vy?dd}u+4GXYJGt>FfJ@^7tT9`a69AXmY-w*qsEk;(RjnOX_IcLM>YoE7d0Su
zATp52$g`(pg*kc9-jI@)uJmSxoQet9o<Z<l2&Qc1({g-oO!WKHJMA+SR@>m+I~22Z
z=A=v?OtMTtAMj8T>4kkyDd{5Z%;U242Y8?0`}CXh`N5k-+KbRjqo?<c?X-N_iKqkV
zJm3mLCe@sdEg+bK28oRc<9LQf$rgB8x*sM0;8RKNK=VS!Q1#Aq<SG<cNvz!XU}(%^
zBR<ZLpT(yA)KpU%hP115%mjG-pY!pi@E-%5T(G^Wl}=Q=yI=CsYz0OWqQo*ZinO*}
zKpyCBiIFezQqc(WCZc35y7h$(TMaDqM^)8P<Cg_Pl-kdg2kq>rP_nqU4yeeYmqYI<
zE8jpoO^ktP7FvYou&jb%IjR}BKb}BxRpk^<?4@~YwXTZAV3?h9jWe*+G34(`bft^m
zE=suY`t}oqA$t)7lq1rk;|u)vO|3~QXhJhTHs?AT#97QS*q|JTkbCj7A@<er$ixfF
zV+EVkSw;VfP(V>(VZ?%$*z^zezm9M29|_lyW!z>_w{xYdfi_oJFXnOT3nUuQ>o^)m
zy!s<Vr8p{-Rc>TuZ9!JHKd5thD3t*xP<<%^V)u(FVxen~OG7-;5~wEH`{<#6Vq=ya
zlvje=9`<0k)dhW|UVYv%u&6PjA{?FNLx%N9kUY)>dlvLeoF#oh62ZRZH0McKRkLMF
zTdWrSaQ(p$mOX}n?L%tHh?ZA&-d@rB=Hce&w;yYI|J3t&zo<qR8s-|k;y{MI*<5*o
z`<=FR+AUiRv$0E6S1sY0ervuW)K~Vm&eXB7mv6-0gxTSfYexjD@528543dahh2g;0
zuwMK8gb#bOG5(g$0MprOL`)qMm!gQJmq7o172Q>;gmUi++6!Ajv&J9p)#Ki!sw!Zu
zU#9;}helLz_U7Y;KfS`SQ7OVr@1eW-MoTe2ze!^z3`?F8>L2pe>=(_|jd)1hZ|!o_
z202=cq(*`T-DCq*HTxzZh!&`K9tJI0*hIYe%bQ6ra^On8Lk^tzSB)^X_ov?!20{E4
zYh~e3<j&#UDSVevY@foImY_+lxD1HVa!eD?ow&%e-^y3Pu$c$5d#o#x_0JV+paSDb
zEHJU$Ewq73ndjM`C>igF)6ni{aRm(XxnPDG*Qq)hZF0t`rnmgt?rq~>XT6_jY*WFY
zru(x3nPB5$L`ZtKDQF#hIyKMC!LAeDdXSOjq|Tl7^~N0z{_xZc8HbH#VHsh}?(%9R
zJs8=@IU<b}E7r$Z`e-k&yd9&Yx6}lw3drdSBR=bt-;T(K3Ex(W9|xAEEv`_gkGKNM
zfoSG0aSPCaR7@-%&h*?SCC5>ij}@6KI8AR3&SlYd2G6nGhJ|~TacIK|yo#hx638?K
zKKIU9R=jbq87aiZK0gi@?nu(ZK3=t{Cs9$h&ok&&eGPwP+b8E^UO4^3G5O#`I-_4E
z{Ig9S%%mOWkj!kK`V4C^+0uK9Ub6-<$J$(`bDa;)#z!?cY)z6gd&<3h_SQePRHI<w
zp=Ux0sN_t@QQ{ZWGo?G&2FXj#w_9#EvdI8|5yeV{{>cXk3BHyX`1Rld)OZW)B~l=s
zwKr75V^!^Ng0|#ui%LUa-eoDdh&oYyVN^J|MHM3sD&u=KK!q}3p?_r;jo4H(`3M8V
zMCz5iQLM~EVA!ZDYU$|C_XH=J1!dSjB3>97-RT_+7BR?2)G?EjLj1oF-jusPRj+~9
z7evZ_cdASy2Is9^^%d8~>M&eM#6Q&>g#%E(E-ZI)Y3|T`8JK*sw3f{?={qS&Qgd1g
z9y}@ue|^85>z`#`OD7dC6%zklY1K$6gE|3-j#au_(s+;`EK;OTX1MHT1>k@R;Cw`f
zBE;U&#_OeCt5kzI(TGl5s0{fMrR&yZ^LO9eH0~{OY<DvsT_;6KkH>+cn?86P($}k1
zT@Rw13;X-$a!o)qWrOna^7SPe?GhN-^d$*Hqtx+1?jF|Z<kW}LD=F4?Nj3#(<k{+Y
zb24*1@y=w2`c?B(H~V;csESJ4%e;Yvf^|RM)14W5aMA6Y3SBChmEqjnpS_faC@JIm
zn6HT)x>|WlLq6Z-gU3#@qJPYVFjI7ep%{V2yI@Q(cSOha%;Ll>f9!Wq@Nr~+N<trG
zxbo{99^IAcMzY*;5GPLk(eR%GXQ2{Ts#Uz$a!+An*6m+02Mst1rXW)z1&>-I<dM(s
zGqX4jDNHdqgKIvRmZCNJlBP&>_a2sZ2%8MpB0fyIE{u+uZqb)=Smu1s?C(@k25K;G
zW1#4YL~-8w<Hfz%Q-?YX9-Zf1JK34u7%{JQ5g=8Y3zeY@ySWm>BFNc1bqx{cz=>uV
z-RzOvMjVn>Db(vbEigsiNWU?9Tc+uuD4^hR#NC7UDd=Lc=qkYCtP}Rp`9TTnQkt~(
zYgWPIo<*uQUrpFW%KkOe*4TMnI!^eJ!NKLk*ix4a!;nAwLlk6BC&5TgZF<9{Abqzt
zo>PxrnxbwLE;!1m9sUv!8AAWbt=~JNx}VC0*XL_KBhZEt3j1)Ru&2>=v|QV{f8EHf
z)qgWKw)x=K(;Et3d9Ja;V0l>5pQtY-Ck{&2DquV(ry)>|y6gE%XCA{y)oz^^uAz2Z
z(YC9{S()$Ipk+phQ>q=evb%X>gmY9#_LuYj*^j=l`3hiFMww`(ap8ic)-2XejK=S^
zfhq@^ca7*e!p*eO*l{e0$4dJrJOZgz9uMSbW$3oe87zPE9!vhw*kI(cRw$D=3n(a~
zmGXOHTTY?bjycHKOB~p*EL=(j<rJ@dqeb=jBg%K1uL3`|vdSG>_#97}5s$N{-wFt}
zD0k*h(UrRB%y~*a<)TB|($?mrU44N(<Flw8pi(M+Wgtk(r)g@qof|A9K5QoPoM@xv
zD8xg#qH9GSGM%4(&CF@v$WNn+;56J{3c}$1-q#2!r`PXfyomr4DHXG%8^>e%`%``y
zU)@-JOww%<{tG18-#i}8>iP;$V9zX`EK$Ck+=>vErRVKg%QqU^+EriNs65piKg39_
zg)SUw;@Fgm^RojNp-`vBO4IbP!bbq1U~MzJCXVs%_xmRSyEHN`9)(P=b#l(vb!{@T
zudr!D(uyy?fvbm2c#-FptLuJz;_Mn@@#G_nRe~<yeOL76GUwfR+EcRbn#a_Y(=Bh^
zwcTo4B`8JjfO2d)S^*03<}%_fC*{+-6@}<vP>y#Vl7yp$1H@`EauP;+inVZ9?DJrY
zWf}o{GaDXujwlr`LaOdUudmsrN+!+5*#m6XkH6cJwt}+CA5;i$DF=eGhK%nNUR?DC
z8C1W^+dAgPKjk#EX;=`zUtj2JW54u8QjZ>o?8J4vjLx8FhAj_!P@9~D><q8zkfbb*
ztXG28Sjc&{B+=W+C!C}yL;F;)K1Wl5Sd3D!!sB-ftB>C}nwFESZIj<htukOhf$?*5
z=*#KBlRwj-jSuFf5?wX*FH&j4^XDcPS_SE9R0a*LYyuYq@$uB>>x_nrH4{c8U3M6W
zr_xq}0<ZHJ{<Zy(O~T|}nhpTSg=kS>oo-OCw^&h09qWiOSJ0UaK;h|5`P`?yR`_jb
zs8Y%&k19-NCc|(_z0ewvM0E35hA|LA%J;93>|;>MJpsE6794>G2dmJvV#V+~{|vw5
z2PKl(C>}gbCCH^V8cOoCXU*Mw)>sWOq55Ei5N{mI$OJ;7U%q(Jl0x!Ru;hfr=BXqp
w={iAFpibvsLj60>DBr;PtyG9p&7a%4T2YF}=|WJ#PaYy|bp!ZYn0@sB0ba7|umAu6

literal 0
HcmV?d00001

diff --git a/app/views/dossiers/show.pdf.prawn b/app/views/dossiers/show.pdf.prawn
index 36c1c6329..da7d7f360 100644
--- a/app/views/dossiers/show.pdf.prawn
+++ b/app/views/dossiers/show.pdf.prawn
@@ -188,6 +188,9 @@ prawn_document(page_size: "A4") do |pdf|
 
   add_title(pdf, "Identité du demandeur")
 
+  if @dossier.user.france_connect_information.present?
+    format_in_2_columns(pdf, 'Informations France Connect', "Le dossier a été déposé par le compte de #{@dossier.individual.prenom} #{@dossier.individual.nom}, authentifié par France Connect le #{@dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+  end
   format_in_2_columns(pdf, "Email", @dossier.user.email)
   add_identite_individual(pdf, @dossier) if @dossier.individual.present?
   render_identite_etablissement(pdf, @dossier.etablissement) if @dossier.etablissement.present?
diff --git a/app/views/shared/dossiers/_demande.html.haml b/app/views/shared/dossiers/_demande.html.haml
index 55870541c..4328a907a 100644
--- a/app/views/shared/dossiers/_demande.html.haml
+++ b/app/views/shared/dossiers/_demande.html.haml
@@ -5,6 +5,8 @@
 
   .tab-title Identité du demandeur
   .card
+    - if dossier.user.france_connect_information.present?
+      = render partial: "shared/dossiers/france_connect_informations", locals: { individual: dossier.individual }
     = render partial: "shared/dossiers/user_infos", locals: { user: dossier.user }
 
     - if dossier.etablissement.present?
diff --git a/app/views/shared/dossiers/_edit.html.haml b/app/views/shared/dossiers/_edit.html.haml
index a8a420e3f..a3db1492a 100644
--- a/app/views/shared/dossiers/_edit.html.haml
+++ b/app/views/shared/dossiers/_edit.html.haml
@@ -21,7 +21,8 @@
             Votre dossier est enregistré automatiquement après chaque modification. Vous pouvez à tout moment fermer la fenêtre et reprendre plus tard là où vous en étiez.
           - else
             Pour enregistrer votre dossier et le reprendre plus tard, cliquez sur le bouton « Enregistrer le brouillon » en bas à gauche du formulaire.
-
+      - if !apercu && dossier.user.france_connect_information.present?
+        = render partial: "shared/dossiers/france_connect_informations", locals: { individual: dossier.individual }
       - if notice_url(dossier.procedure).present?
         = link_to notice_url(dossier.procedure), target: '_blank', rel: 'noopener', class: 'button notice', title: "Pour vous aider à remplir votre dossier, vous pouvez consulter le guide de cette démarche." do
           %span.icon.info>
diff --git a/app/views/shared/dossiers/_france_connect_informations.html.haml b/app/views/shared/dossiers/_france_connect_informations.html.haml
new file mode 100644
index 000000000..125bbbb96
--- /dev/null
+++ b/app/views/shared/dossiers/_france_connect_informations.html.haml
@@ -0,0 +1,4 @@
+.card.featured
+  .flex.justify-center
+    = image_tag "logo-france-connect.png", alt: "France Connect logo", width: 200, class: "mb-2"
+  .card-title Le dossier a été déposé par le compte de #{individual.prenom} #{individual.nom}, authentifié par France Connect le #{individual.updated_at.strftime('%d/%m/%Y')}.
diff --git a/spec/features/france_connect/france_connect_particulier_spec.rb b/spec/features/france_connect/france_connect_particulier_spec.rb
index 123a10d7d..37a5171c3 100644
--- a/spec/features/france_connect/france_connect_particulier_spec.rb
+++ b/spec/features/france_connect/france_connect_particulier_spec.rb
@@ -68,6 +68,10 @@ feature 'France Connect Particulier Connexion' do
           scenario 'he is redirected to user dossiers page' do
             expect(page).to have_content('Dossiers')
           end
+
+          scenario 'the updated_at date is well updated' do
+            expect(france_connect_information.updated_at).not_to eq(france_connect_information.created_at)
+          end
         end
       end
 
diff --git a/spec/views/instructeur/dossiers/show.html.haml_spec.rb b/spec/views/instructeur/dossiers/show.html.haml_spec.rb
index 25072b3e5..48863d240 100644
--- a/spec/views/instructeur/dossiers/show.html.haml_spec.rb
+++ b/spec/views/instructeur/dossiers/show.html.haml_spec.rb
@@ -18,4 +18,19 @@ describe 'instructeurs/dossiers/show.html.haml', type: :view do
     expect(rendered).to have_text('Identité')
     expect(rendered).to have_text('Demande')
   end
+
+  context 'when the user is logged in with france connect' do
+    let(:france_connect_information) { build(:france_connect_information) }
+    let(:user) { build(:user, france_connect_information: france_connect_information) }
+    let(:procedure1) { create(:procedure, :with_type_de_champ, for_individual: true) }
+    let(:dossier) { create(:dossier, procedure: procedure1, user: user) }
+
+    before do
+      render
+    end
+
+    it 'fills the individual with the informations from France Connect' do
+      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{dossier.individual.prenom} #{dossier.individual.nom}, authentifié par France Connect le #{dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+    end
+  end
 end
diff --git a/spec/views/users/dossiers/demande.html.haml_spec.rb b/spec/views/users/dossiers/demande.html.haml_spec.rb
index 0a46903d4..a203fc83b 100644
--- a/spec/views/users/dossiers/demande.html.haml_spec.rb
+++ b/spec/views/users/dossiers/demande.html.haml_spec.rb
@@ -33,4 +33,19 @@ describe 'users/dossiers/demande.html.haml', type: :view do
 
     it { expect(rendered).not_to have_text('Déposé le') }
   end
+
+  context 'when the user is logged in with france connect' do
+    let(:france_connect_information) { build(:france_connect_information) }
+    let(:user) { build(:user, france_connect_information: france_connect_information) }
+    let(:procedure1) { create(:procedure, :with_type_de_champ, for_individual: true) }
+    let(:dossier) { create(:dossier, procedure: procedure1, user: user) }
+
+    before do
+      render
+    end
+
+    it 'fills the individual with the informations from France Connect' do
+      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{dossier.individual.prenom} #{dossier.individual.nom}, authentifié par France Connect le #{dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+    end
+  end
 end

From c033ef0910d05e0c90cbfca87996d974e1f654cd Mon Sep 17 00:00:00 2001
From: kara Diaby <kdiaby.pro@gmail.com>
Date: Mon, 2 Nov 2020 14:58:35 +0100
Subject: [PATCH 2/5] Ajoute a l'information de connexion France Connect dans
 les informations du dossier ainsi que sur la demande usager

---
 app/models/dossier.rb                                         | 1 +
 app/views/dossiers/show.pdf.prawn                             | 4 ++--
 app/views/shared/dossiers/_demande.html.haml                  | 4 ++--
 app/views/shared/dossiers/_edit.html.haml                     | 4 ++--
 .../shared/dossiers/_france_connect_informations.html.haml    | 2 +-
 spec/views/instructeur/dossiers/show.html.haml_spec.rb        | 2 +-
 spec/views/users/dossiers/demande.html.haml_spec.rb           | 2 +-
 7 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/app/models/dossier.rb b/app/models/dossier.rb
index d4a99ce22..7c4ddc06e 100644
--- a/app/models/dossier.rb
+++ b/app/models/dossier.rb
@@ -59,6 +59,7 @@ class Dossier < ApplicationRecord
   has_one :etablissement, dependent: :destroy
   has_one :individual, validate: false, dependent: :destroy
   has_one :attestation, dependent: :destroy
+  has_one :france_connect_information, through: :user
 
   has_one_attached :justificatif_motivation
 
diff --git a/app/views/dossiers/show.pdf.prawn b/app/views/dossiers/show.pdf.prawn
index da7d7f360..5d85579cb 100644
--- a/app/views/dossiers/show.pdf.prawn
+++ b/app/views/dossiers/show.pdf.prawn
@@ -188,8 +188,8 @@ prawn_document(page_size: "A4") do |pdf|
 
   add_title(pdf, "Identité du demandeur")
 
-  if @dossier.user.france_connect_information.present?
-    format_in_2_columns(pdf, 'Informations France Connect', "Le dossier a été déposé par le compte de #{@dossier.individual.prenom} #{@dossier.individual.nom}, authentifié par France Connect le #{@dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+  if @dossier.france_connect_information.present?
+    format_in_2_columns(pdf, 'Informations France Connect', "Le dossier a été déposé par le compte de #{@dossier.france_connect_information.given_name} #{@dossier.france_connect_information.family_name}, authentifié par France Connect le #{@dossier.france_connect_information.updated_at.strftime('%d/%m/%Y')}")
   end
   format_in_2_columns(pdf, "Email", @dossier.user.email)
   add_identite_individual(pdf, @dossier) if @dossier.individual.present?
diff --git a/app/views/shared/dossiers/_demande.html.haml b/app/views/shared/dossiers/_demande.html.haml
index 4328a907a..a4c45ec87 100644
--- a/app/views/shared/dossiers/_demande.html.haml
+++ b/app/views/shared/dossiers/_demande.html.haml
@@ -5,8 +5,8 @@
 
   .tab-title Identité du demandeur
   .card
-    - if dossier.user.france_connect_information.present?
-      = render partial: "shared/dossiers/france_connect_informations", locals: { individual: dossier.individual }
+    - if dossier.france_connect_information.present?
+      = render partial: "shared/dossiers/france_connect_informations", locals: { user_information: dossier.france_connect_information }
     = render partial: "shared/dossiers/user_infos", locals: { user: dossier.user }
 
     - if dossier.etablissement.present?
diff --git a/app/views/shared/dossiers/_edit.html.haml b/app/views/shared/dossiers/_edit.html.haml
index a3db1492a..67e21b38a 100644
--- a/app/views/shared/dossiers/_edit.html.haml
+++ b/app/views/shared/dossiers/_edit.html.haml
@@ -21,8 +21,8 @@
             Votre dossier est enregistré automatiquement après chaque modification. Vous pouvez à tout moment fermer la fenêtre et reprendre plus tard là où vous en étiez.
           - else
             Pour enregistrer votre dossier et le reprendre plus tard, cliquez sur le bouton « Enregistrer le brouillon » en bas à gauche du formulaire.
-      - if !apercu && dossier.user.france_connect_information.present?
-        = render partial: "shared/dossiers/france_connect_informations", locals: { individual: dossier.individual }
+      - if !apercu && dossier.france_connect_information.present?
+        = render partial: "shared/dossiers/france_connect_informations", locals: { user_information: dossier.france_connect_information }
       - if notice_url(dossier.procedure).present?
         = link_to notice_url(dossier.procedure), target: '_blank', rel: 'noopener', class: 'button notice', title: "Pour vous aider à remplir votre dossier, vous pouvez consulter le guide de cette démarche." do
           %span.icon.info>
diff --git a/app/views/shared/dossiers/_france_connect_informations.html.haml b/app/views/shared/dossiers/_france_connect_informations.html.haml
index 125bbbb96..ba7256521 100644
--- a/app/views/shared/dossiers/_france_connect_informations.html.haml
+++ b/app/views/shared/dossiers/_france_connect_informations.html.haml
@@ -1,4 +1,4 @@
 .card.featured
   .flex.justify-center
     = image_tag "logo-france-connect.png", alt: "France Connect logo", width: 200, class: "mb-2"
-  .card-title Le dossier a été déposé par le compte de #{individual.prenom} #{individual.nom}, authentifié par France Connect le #{individual.updated_at.strftime('%d/%m/%Y')}.
+  .card-title Le dossier a été déposé par le compte de #{user_information.given_name} #{user_information.family_name}, authentifié par France Connect le #{user_information.updated_at.strftime('%d/%m/%Y')}.
diff --git a/spec/views/instructeur/dossiers/show.html.haml_spec.rb b/spec/views/instructeur/dossiers/show.html.haml_spec.rb
index 48863d240..7eb30ba0a 100644
--- a/spec/views/instructeur/dossiers/show.html.haml_spec.rb
+++ b/spec/views/instructeur/dossiers/show.html.haml_spec.rb
@@ -30,7 +30,7 @@ describe 'instructeurs/dossiers/show.html.haml', type: :view do
     end
 
     it 'fills the individual with the informations from France Connect' do
-      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{dossier.individual.prenom} #{dossier.individual.nom}, authentifié par France Connect le #{dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{france_connect_information.given_name} #{france_connect_information.family_name}, authentifié par France Connect le #{france_connect_information.updated_at.strftime('%d/%m/%Y')}")
     end
   end
 end
diff --git a/spec/views/users/dossiers/demande.html.haml_spec.rb b/spec/views/users/dossiers/demande.html.haml_spec.rb
index a203fc83b..4b0859420 100644
--- a/spec/views/users/dossiers/demande.html.haml_spec.rb
+++ b/spec/views/users/dossiers/demande.html.haml_spec.rb
@@ -45,7 +45,7 @@ describe 'users/dossiers/demande.html.haml', type: :view do
     end
 
     it 'fills the individual with the informations from France Connect' do
-      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{dossier.individual.prenom} #{dossier.individual.nom}, authentifié par France Connect le #{dossier.individual.updated_at.strftime('%d/%m/%Y')}")
+      expect(rendered).to have_text("Le dossier a été déposé par le compte de #{france_connect_information.given_name} #{france_connect_information.family_name}, authentifié par France Connect le #{france_connect_information.updated_at.strftime('%d/%m/%Y')}")
     end
   end
 end

From 20cdefad631afc22ff67977d778bfa88f5b6daa7 Mon Sep 17 00:00:00 2001
From: Paul Chavard <github@paul.chavard.net>
Date: Thu, 5 Nov 2020 17:06:44 +0100
Subject: [PATCH 3/5] GraphQL: bump timeout to 10 sec

---
 app/graphql/api/v2/schema.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/graphql/api/v2/schema.rb b/app/graphql/api/v2/schema.rb
index 777f08014..470be61df 100644
--- a/app/graphql/api/v2/schema.rb
+++ b/app/graphql/api/v2/schema.rb
@@ -63,7 +63,7 @@ class Api::V2::Schema < GraphQL::Schema
 
   use GraphQL::Execution::Interpreter
   use GraphQL::Analysis::AST
-  use GraphQL::Schema::Timeout, max_seconds: 5
+  use GraphQL::Schema::Timeout, max_seconds: 10
   use GraphQL::Batch
   use GraphQL::Backtrace
 

From fc690df55454f8cd42eea16251e8b232da981ded Mon Sep 17 00:00:00 2001
From: clemkeirua <clement@keiruaprod.fr>
Date: Fri, 6 Nov 2020 17:23:54 +0100
Subject: [PATCH 4/5] add access to super admins to delayed_job and flipper

---
 config/routes.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/routes.rb b/config/routes.rb
index d6bdfafd5..82914057e 100644
--- a/config/routes.rb
+++ b/config/routes.rb
@@ -49,7 +49,7 @@ Rails.application.routes.draw do
     post 'demandes/create_administrateur'
     post 'demandes/refuse_administrateur'
 
-    authenticate :administration do
+    authenticate :super_admin do
       mount Flipper::UI.app(-> { Flipper.instance }) => "/features", as: :flipper
       match "/delayed_job" => DelayedJobWeb, :anchor => false, :via => [:get, :post]
     end

From bc0f77978ff6dbf3e4f1918d29be9e92d7ba8efb Mon Sep 17 00:00:00 2001
From: kara Diaby <kdiaby.pro@gmail.com>
Date: Mon, 19 Oct 2020 11:33:36 +0200
Subject: [PATCH 5/5] add an api token verification for api entreprise

---
 .../procedures_controller.rb                  | 16 ++++++--
 app/lib/api_entreprise/api.rb                 | 37 ++++++++++++++-----
 app/lib/api_entreprise/privileges_adapter.rb  | 20 ++++++++++
 .../procedures_controller_spec.rb             | 35 ++++++++++++++++--
 4 files changed, 90 insertions(+), 18 deletions(-)
 create mode 100644 app/lib/api_entreprise/privileges_adapter.rb

diff --git a/app/controllers/new_administrateur/procedures_controller.rb b/app/controllers/new_administrateur/procedures_controller.rb
index 11116b8db..29cf33abc 100644
--- a/app/controllers/new_administrateur/procedures_controller.rb
+++ b/app/controllers/new_administrateur/procedures_controller.rb
@@ -125,12 +125,20 @@ module NewAdministrateur
     end
 
     def update_jeton
-      if !@procedure.update(procedure_params)
-        flash.now.alert = @procedure.errors.full_messages
+      token = params[:procedure][:api_entreprise_token]
+      @procedure.api_entreprise_token = token
+
+      if @procedure.valid? &&
+          ApiEntreprise::PrivilegesAdapter.new(token).valid? &&
+          @procedure.save
+
+        redirect_to jeton_admin_procedure_path(procedure_id: params[:procedure_id]),
+          notice: 'Le jeton a bien été mis à jour'
       else
-        flash.notice = 'Le jeton a bien été mis à jour'
+
+        flash.now.alert = "Mise à jour impossible : le jeton n'est pas valide"
+        render 'jeton'
       end
-      render 'jeton'
     end
 
     def publication
diff --git a/app/lib/api_entreprise/api.rb b/app/lib/api_entreprise/api.rb
index 716c28f30..62699fa63 100644
--- a/app/lib/api_entreprise/api.rb
+++ b/app/lib/api_entreprise/api.rb
@@ -8,6 +8,7 @@ class ApiEntreprise::API
   ATTESTATION_SOCIALE_RESOURCE_NAME = "attestations_sociales_acoss"
   ATTESTATION_FISCALE_RESOURCE_NAME = "attestations_fiscales_dgfip"
   BILANS_BDF_RESOURCE_NAME = "bilans_entreprises_bdf"
+  PRIVILEGES_RESOURCE_NAME = "privileges"
 
   TIMEOUT = 15
 
@@ -24,48 +25,64 @@ class ApiEntreprise::API
   end
 
   def self.entreprise(siren, procedure_id)
-    call(ENTREPRISE_RESOURCE_NAME, siren, procedure_id)
+    call_with_siret(ENTREPRISE_RESOURCE_NAME, siren, procedure_id)
   end
 
   def self.etablissement(siret, procedure_id)
-    call(ETABLISSEMENT_RESOURCE_NAME, siret, procedure_id)
+    call_with_siret(ETABLISSEMENT_RESOURCE_NAME, siret, procedure_id)
   end
 
   def self.exercices(siret, procedure_id)
-    call(EXERCICES_RESOURCE_NAME, siret, procedure_id)
+    call_with_siret(EXERCICES_RESOURCE_NAME, siret, procedure_id)
   end
 
   def self.rna(siret, procedure_id)
-    call(RNA_RESOURCE_NAME, siret, procedure_id)
+    call_with_siret(RNA_RESOURCE_NAME, siret, procedure_id)
   end
 
   def self.effectifs(siren, procedure_id, annee, mois)
     endpoint = [EFFECTIFS_RESOURCE_NAME, annee, mois, "entreprise"].join('/')
-    call(endpoint, siren, procedure_id)
+    call_with_siret(endpoint, siren, procedure_id)
   end
 
   def self.effectifs_annuels(siren, procedure_id)
-    call(EFFECTIFS_ANNUELS_RESOURCE_NAME, siren, procedure_id)
+    call_with_siret(EFFECTIFS_ANNUELS_RESOURCE_NAME, siren, procedure_id)
   end
 
   def self.attestation_sociale(siren, procedure_id)
     procedure = Procedure.find(procedure_id)
-    call(ATTESTATION_SOCIALE_RESOURCE_NAME, siren, procedure_id) if procedure.api_entreprise_role?("attestations_sociales")
+    call_with_siret(ATTESTATION_SOCIALE_RESOURCE_NAME, siren, procedure_id) if procedure.api_entreprise_role?("attestations_sociales")
   end
 
   def self.attestation_fiscale(siren, procedure_id, user_id)
     procedure = Procedure.find(procedure_id)
-    call(ATTESTATION_FISCALE_RESOURCE_NAME, siren, procedure_id, user_id) if procedure.api_entreprise_role?("attestations_fiscales")
+    call_with_siret(ATTESTATION_FISCALE_RESOURCE_NAME, siren, procedure_id, user_id) if procedure.api_entreprise_role?("attestations_fiscales")
   end
 
   def self.bilans_bdf(siren, procedure_id)
     procedure = Procedure.find(procedure_id)
-    call(BILANS_BDF_RESOURCE_NAME, siren, procedure_id) if procedure.api_entreprise_role?("bilans_entreprise_bdf")
+    call_with_siret(BILANS_BDF_RESOURCE_NAME, siren, procedure_id) if procedure.api_entreprise_role?("bilans_entreprise_bdf")
+  end
+
+  def self.privileges(token)
+    call_with_token(PRIVILEGES_RESOURCE_NAME, token)
   end
 
   private
 
-  def self.call(resource_name, siret_or_siren, procedure_id, user_id = nil)
+  def self.call_with_token(resource_name, token)
+    url = "#{API_ENTREPRISE_URL}/privileges?token=#{token}"
+    response = Typhoeus.get(url,
+      timeout: TIMEOUT)
+
+    if response.success?
+      JSON.parse(response.body, symbolize_names: true)
+    else
+      raise RequestFailed, "HTTP Error Code: #{response.code} for #{url}\nheaders: #{response.headers}\nbody: #{response.body}"
+    end
+  end
+
+  def self.call_with_siret(resource_name, siret_or_siren, procedure_id, user_id = nil)
     return if ApiEntrepriseToken.new(token_for_procedure(procedure_id)).expired?
     url = url(resource_name, siret_or_siren)
     params = params(siret_or_siren, procedure_id, user_id)
diff --git a/app/lib/api_entreprise/privileges_adapter.rb b/app/lib/api_entreprise/privileges_adapter.rb
new file mode 100644
index 000000000..8064d5962
--- /dev/null
+++ b/app/lib/api_entreprise/privileges_adapter.rb
@@ -0,0 +1,20 @@
+class ApiEntreprise::PrivilegesAdapter < ApiEntreprise::Adapter
+  def initialize(token)
+    @token = token
+  end
+
+  def valid?
+    begin
+      get_resource
+      true
+    rescue
+      false
+    end
+  end
+
+  private
+
+  def get_resource
+    ApiEntreprise::API.privileges(@token)
+  end
+end
diff --git a/spec/controllers/new_administrateur/procedures_controller_spec.rb b/spec/controllers/new_administrateur/procedures_controller_spec.rb
index ecc2c4095..de1efc074 100644
--- a/spec/controllers/new_administrateur/procedures_controller_spec.rb
+++ b/spec/controllers/new_administrateur/procedures_controller_spec.rb
@@ -333,11 +333,38 @@ describe NewAdministrateur::ProceduresController, type: :controller do
 
   describe 'PATCH #jeton' do
     let(:procedure) { create(:procedure, administrateur: admin) }
-    let(:valid_token) { "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c" }
+    let(:token) { "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c" }
 
-    it "update api_entreprise_token" do
-      patch :update_jeton, params: { id: procedure.id, procedure: { api_entreprise_token: valid_token } }
-      expect(procedure.reload.api_entreprise_token).to eq(valid_token)
+    subject { patch :update_jeton, params: { id: procedure.id, procedure: { api_entreprise_token: token } } }
+
+    before do
+      allow_any_instance_of(ApiEntreprise::PrivilegesAdapter).to receive(:valid?).and_return(token_is_valid)
+      subject
+    end
+
+    context 'when jeton is valid' do
+      let(:token_is_valid) { true }
+
+      it { expect(flash.alert).to be_nil }
+      it { expect(flash.notice).to eq('Le jeton a bien été mis à jour') }
+      it { expect(procedure.reload.api_entreprise_token).to eq(token) }
+    end
+
+    context 'when jeton is invalid' do
+      let(:token_is_valid) { false }
+
+      it { expect(flash.alert).to eq("Mise à jour impossible : le jeton n'est pas valide") }
+      it { expect(flash.notice).to be_nil }
+      it { expect(procedure.reload.api_entreprise_token).not_to eq(token) }
+    end
+
+    context 'when jeton is not a jwt' do
+      let(:token) { "invalid" }
+      let(:token_is_valid) { true } # just to check jwt format by procedure model
+
+      it { expect(flash.alert).to eq("Mise à jour impossible : le jeton n'est pas valide") }
+      it { expect(flash.notice).to be_nil }
+      it { expect(procedure.reload.api_entreprise_token).not_to eq(token) }
     end
   end