- Auth JWT (login, refresh, me)
- CRUD Users (ADMIN only), CRUD Nodes (3 niveaux max)
- CRUD Articles (statuts DRAFT/PUBLISHED/ARCHIVED, slugs, pagination)
- CRUD Tags, upload Media
- Recherche full-text PostgreSQL
- Traçabilité audit logs
- Spring Security (RBAC ADMIN/AUTHOR), CORS configuré
- Flyway migrations V1+V2, seed admin admin@iavia.ai
- GlobalExceptionHandler, ApiResponse standard
- Logback structuré (dev/prod)
- 32/32 tests endpoint passés ✅