diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 9ade835..215f023 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -41,6 +41,13 @@ jobs:
             type=semver,pattern={{version}}
             type=sha,enable=false
 
+      - name: Create env file
+        run: |
+          echo "NEXT_PUBLIC_OIDC_CLIENT_ID=${{ vars.NEXT_PUBLIC_OIDC_CLIENT_ID }}" >> .env.production
+          echo "NEXT_PUBLIC_OIDC_PROVIDER_URL=${{ vars.NEXT_PUBLIC_OIDC_PROVIDER_URL }}" >> .env.production
+          echo "NEXT_PUBLIC_OIDC_REDIRECT_URI=${{ vars.NEXT_PUBLIC_OIDC_REDIRECT_URI }}" >> .env.production
+          echo "SHARING_API=${{ vars.SHARING_API }}" >> .env.production
+          
       - name: Build and push Docker image
         id: push
         uses: docker/build-push-action@v5
@@ -82,4 +89,4 @@ jobs:
           git config --global user.email "github-actions[bot]@users.noreply.github.com"
           git config --global user.name "github-actions[bot]"
           git commit -m "Update app version to ${{ github.event.release.tag_name }}"
-          git push origin main
\ No newline at end of file
+          git push origin main
diff --git a/app/actions/sharing.tsx b/app/actions/sharing.tsx
index ab5cd15..0abc0cb 100644
--- a/app/actions/sharing.tsx
+++ b/app/actions/sharing.tsx
@@ -1,5 +1,7 @@
 'use server'
 
+import { apiClient } from '@/lib/api-client'
+
 // Types pour l'API
 export interface PostSecretRequest {
   content: Record<string, string>
@@ -41,7 +43,7 @@ export async function createSecret(request: PostSecretRequest): Promise<PostSecr
   console.log('Données envoyées:', JSON.stringify(request, null, 2))
 
   try {
-    const response = await fetch(apiUrl, {
+    const response = await apiClient.fetch(apiUrl, {
       method: 'POST',
       headers: {
         'Content-Type': 'application/json',
@@ -75,7 +77,7 @@ export async function getSecret(id: string): Promise<GetSecretResponse> {
   console.log(`Récupération du secret ${id} depuis ${apiUrl}/${id}`)
 
   try {
-    const response = await fetch(`${apiUrl}/${id}`, {
+    const response = await apiClient.fetch(`${apiUrl}/${id}`, {
       method: 'GET',
       headers: {
         'Content-Type': 'application/json',
@@ -114,7 +116,7 @@ export async function decryptSecret(id: string, passphrase: string): Promise<Get
   console.log(`Déchiffrement du secret ${id}`)
 
   try {
-    const response = await fetch(`${apiUrl}/${id}`, {
+    const response = await apiClient.fetch(`${apiUrl}/${id}`, {
       method: 'POST',
       headers: {
         'Content-Type': 'application/json',
@@ -154,7 +156,7 @@ export async function getHistory(): Promise<HistorySecret[]> {
   console.log(`Récupération de l'historique depuis ${apiUrl}/history`)
 
   try {
-    const response = await fetch(`${apiUrl}/history`, {
+    const response = await apiClient.fetch(`${apiUrl}/history`, {
       method: 'GET',
       headers: {
         'Content-Type': 'application/json',
diff --git a/app/auth/callback/loading.tsx b/app/auth/callback/loading.tsx
new file mode 100644
index 0000000..f15322a
--- /dev/null
+++ b/app/auth/callback/loading.tsx
@@ -0,0 +1,3 @@
+export default function Loading() {
+  return null
+}
diff --git a/app/auth/callback/page.tsx b/app/auth/callback/page.tsx
new file mode 100644
index 0000000..14ca62a
--- /dev/null
+++ b/app/auth/callback/page.tsx
@@ -0,0 +1,94 @@
+'use client'
+
+import { useEffect, useState } from 'react'
+import { useRouter, useSearchParams } from 'next/navigation'
+import { exchangeCodeForTokens } from '@/lib/auth'
+import { Card, CardContent, CardDescription, CardHeader, CardTitle } from '@/components/ui/card'
+import { Alert, AlertDescription, AlertTitle } from '@/components/ui/alert'
+import { AlertCircle, CheckCircle2 } from 'lucide-react'
+
+export default function AuthCallbackPage() {
+  const router = useRouter()
+  const searchParams = useSearchParams()
+  const [status, setStatus] = useState<'loading' | 'success' | 'error'>('loading')
+  const [error, setError] = useState<string | null>(null)
+
+  useEffect(() => {
+    const handleCallback = async () => {
+      try {
+        const code = searchParams.get('code')
+        const state = searchParams.get('state')
+        const errorParam = searchParams.get('error')
+
+        if (errorParam) {
+          setError(`Erreur d'authentification: ${errorParam}`)
+          setStatus('error')
+          return
+        }
+
+        if (!code || !state) {
+          setError('Paramètres de callback manquants')
+          setStatus('error')
+          return
+        }
+
+        const success = await exchangeCodeForTokens(code, state)
+
+        if (success) {
+          setStatus('success')
+          // Rediriger vers la page d'accueil après un court délai
+          setTimeout(() => {
+            router.push('/')
+          }, 2000)
+        } else {
+          setError("Échec de l'échange du code d'autorisation")
+          setStatus('error')
+        }
+      } catch (error) {
+        console.error('Erreur dans le callback:', error)
+        setError("Une erreur inattendue s'est produite")
+        setStatus('error')
+      }
+    }
+
+    handleCallback()
+  }, [searchParams, router])
+
+  return (
+    <div className="flex min-h-screen flex-col items-center justify-center p-6">
+      <Card className="w-full max-w-md">
+        <CardHeader>
+          <CardTitle className="text-center">
+            {status === 'loading' && 'Authentification en cours...'}
+            {status === 'success' && 'Connexion réussie'}
+            {status === 'error' && "Erreur d'authentification"}
+          </CardTitle>
+          <CardDescription className="text-center">
+            {status === 'loading' && 'Veuillez patienter pendant que nous finalisons votre connexion.'}
+            {status === 'success' && "Vous allez être redirigé vers l'application."}
+            {status === 'error' && "Une erreur s'est produite lors de l'authentification."}
+          </CardDescription>
+        </CardHeader>
+        <CardContent className="flex flex-col items-center space-y-4">
+          {status === 'loading' && <div className="animate-spin rounded-full h-12 w-12 border-b-2 border-primary"></div>}
+
+          {status === 'success' && (
+            <Alert>
+              <CheckCircle2 className="h-4 w-4" />
+              <AlertTitle>Succès</AlertTitle>
+              <AlertDescription>Vous êtes maintenant connecté. Redirection en cours...</AlertDescription>
+            </Alert>
+          )}
+
+          {status === 'error' && (
+            <Alert variant="destructive">
+              <AlertCircle className="h-4 w-4" />
+              <AlertTitle>Erreur</AlertTitle>
+              <AlertDescription>{error || "Une erreur inconnue s'est produite."}</AlertDescription>
+            </Alert>
+          )}
+        </CardContent>
+      </Card>
+    </div>
+  )
+}
diff --git a/app/layout.tsx b/app/layout.tsx
index 17b2ce8..76ff3c3 100644
--- a/app/layout.tsx
+++ b/app/layout.tsx
@@ -1,5 +1,8 @@
-import type { Metadata } from 'next'
+import type React from 'react'
+import { Toaster } from '@/components/ui/toaster'
 import './globals.css'
+import { Metadata } from 'next'
+import { AuthGuard } from '@/components/auth-guard'
 
 export const metadata: Metadata = {
   title: 'v0 App',
@@ -7,14 +10,13 @@ export const metadata: Metadata = {
   generator: 'v0.dev',
 }
 
-export default function RootLayout({
-  children,
-}: Readonly<{
-  children: React.ReactNode
-}>) {
+export default function RootLayout({ children }: { children: React.ReactNode }) {
   return (
-    <html lang="en">
-      <body>{children}</body>
+    <html lang="fr">
+      <body>
+        <AuthGuard>{children}</AuthGuard>
+        <Toaster />
+      </body>
     </html>
   )
 }
diff --git a/components/auth-guard.tsx b/components/auth-guard.tsx
new file mode 100644
index 0000000..75b1c88
--- /dev/null
+++ b/components/auth-guard.tsx
@@ -0,0 +1,49 @@
+'use client'
+
+import type React from 'react'
+
+import { useEffect } from 'react'
+import { useAuthStore } from '@/lib/auth'
+import { initiateOIDCLogin } from '@/lib/auth'
+import { usePathname } from 'next/navigation'
+
+interface AuthGuardProps {
+  children: React.ReactNode
+}
+
+export function AuthGuard({ children }: AuthGuardProps) {
+  const { isAuthenticated, accessToken } = useAuthStore()
+
+  const pathname = usePathname() // Get current path
+
+  useEffect(() => {
+    // Skip guard for /auth/callback
+    if (pathname === '/auth/callback') {
+      return
+    }
+    // Si pas d'access token, rediriger vers l'identity provider
+    if (!accessToken) {
+      initiateOIDCLogin()
+    }
+  }, [accessToken, pathname])
+
+  // Skip guard for /auth/callback
+  if (pathname === '/auth/callback') {
+    return <>{children}</>
+  }
+
+  // Afficher un loader pendant la redirection
+  if (!isAuthenticated || !accessToken) {
+    return (
+      <div className="flex min-h-screen flex-col items-center justify-center p-6">
+        <div className="text-center">
+          <div className="animate-spin rounded-full h-12 w-12 border-b-2 border-primary mx-auto mb-4"></div>
+          <h2 className="text-xl font-semibold mb-2">Connexion en cours...</h2>
+          <p className="text-muted-foreground">Redirection vers le fournisseur d'identité...</p>
+        </div>
+      </div>
+    )
+  }
+
+  return <>{children}</>
+}
diff --git a/components/password-list.tsx b/components/password-list.tsx
index c81d4bc..2dee489 100644
--- a/components/password-list.tsx
+++ b/components/password-list.tsx
@@ -1,7 +1,7 @@
 "use client"
 
-import { useState } from "react"
-import { Copy, Eye, EyeOff, MoreHorizontal, FileText, AlertTriangle, RefreshCw, Link2 } from "lucide-react"
+import { useState, useEffect } from "react"
+import { Copy, Eye, EyeOff, MoreHorizontal, FileText, AlertTriangle, RefreshCw, Link2, User } from "lucide-react"
 import { Button } from "@/components/ui/button"
 import { Card, CardContent, CardDescription, CardHeader, CardTitle } from "@/components/ui/card"
 import {
@@ -27,7 +27,7 @@ import { Label } from "@/components/ui/label"
 import { Input } from "@/components/ui/input"
 import { Tabs, TabsContent, TabsList, TabsTrigger } from "@/components/ui/tabs"
 import { Textarea } from "@/components/ui/textarea"
-
+import { getPasswordUsage, usePassword } from "@/lib/api/security"
 interface PasswordListProps {
   passwords: PasswordEntry[]
   folders: FolderItem[]
@@ -37,16 +37,40 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
   const [revealedPasswords, setRevealedPasswords] = useState<Record<string, boolean>>({})
   const [selectedPassword, setSelectedPassword] = useState<PasswordEntry | null>(null)
   const [showShareDialog, setShowShareDialog] = useState(false)
+  const [passwordUsages, setPasswordUsages] = useState<Record<string, number>>({})
+  const [isLoadingUsages, setIsLoadingUsages] = useState(false)
+  const [isMounted, setIsMounted] = useState(false)
+  
 
-  const togglePasswordVisibility = (id: string) => {
+ const togglePasswordVisibility = async (id: string) => {
     setRevealedPasswords((prev) => ({
       ...prev,
       [id]: !prev[id],
     }))
+    try {
+      await usePassword(id)
+      // Mettre à jour le compteur local
+      setPasswordUsages(prev => ({
+        ...prev,
+        [id]: (prev[id] || 0) + 1
+      }))
+    } catch (error) {
+      console.error('Erreur lors de la mise à jour du compteur:', error)
+    }
   }
 
-  const copyToClipboard = (text: string) => {
-    navigator.clipboard.writeText(text)
+  const copyToClipboard = async (text: string, idPassword: string) => {
+    try {
+      await navigator.clipboard.writeText(text)
+      await usePassword(idPassword)
+      // Mettre à jour le compteur local
+      setPasswordUsages(prev => ({
+        ...prev,
+        [idPassword]: (prev[idPassword] || 0) + 1
+      }))
+    } catch (error) {
+      console.error('Erreur lors de la copie:', error)
+    }
   }
 
   const getStrengthColor = (strength: string) => {
@@ -81,6 +105,37 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
     return folder.name
   }
 
+  useEffect(() => {
+    setIsMounted(true)
+  }, [])
+
+  useEffect(() => {
+    if (!isMounted) return
+
+    const fetchPasswordUsages = async () => {
+      setIsLoadingUsages(true)
+      try {
+        const usages: Record<string, number> = {}
+        for (const password of passwords) {
+          try {
+            const usage = await getPasswordUsage(password.id)
+            usages[password.id] = usage
+          } catch (error) {
+            console.error(`Erreur lors de la récupération de l'utilisation pour ${password.id}:`, error)
+            usages[password.id] = 0
+          }
+        }
+        setPasswordUsages(usages)
+      } catch (error) {
+        console.error('Erreur lors de la récupération des utilisations:', error)
+      } finally {
+        setIsLoadingUsages(false)
+      }
+    }
+
+    fetchPasswordUsages()
+  }, [passwords, isMounted])
+
   if (passwords.length === 0) {
     return (
       <div className="text-center py-10">
@@ -143,10 +198,10 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                   </DropdownMenuTrigger>
                   <DropdownMenuContent align="end">
                     <DropdownMenuLabel>Actions</DropdownMenuLabel>
-                    <DropdownMenuItem onClick={() => copyToClipboard(password.username)}>
+                    <DropdownMenuItem onClick={() => copyToClipboard(password.username, password.id)}>
                       Copier l'identifiant
                     </DropdownMenuItem>
-                    <DropdownMenuItem onClick={() => copyToClipboard(password.password)}>
+                    <DropdownMenuItem onClick={() => copyToClipboard(password.password,password.id)}>
                       Copier le mot de passe
                     </DropdownMenuItem>
                     <DropdownMenuSeparator />
@@ -212,7 +267,7 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                       variant="ghost"
                       size="icon"
                       className="h-8 w-8"
-                      onClick={() => copyToClipboard("ExamplePass123")}
+                      onClick={() => copyToClipboard("ExamplePass123", password.id)}
                     >
                       <Copy className="h-4 w-4" />
                       <span className="sr-only">Copier le mot de passe</span>
@@ -225,6 +280,12 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                     {password.strength === "strong" ? "Fort" : password.strength === "medium" ? "Moyen" : "Faible"}
                   </Badge>
                 </div>
+                <div className="flex items-center justify-between">
+                  <span className="text-xs text-muted-foreground">Nombre de vues :</span>
+                  <span className="text-xs font-semibold">
+                    {!isMounted || isLoadingUsages ? '...' : passwordUsages[password.id] ?? 0}
+                  </span>
+                </div>
                 {password.notes && (
                   <div className="pt-2 flex items-center text-xs text-muted-foreground">
                     <FileText className="h-3 w-3 mr-1" />
@@ -268,7 +329,7 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                       variant="ghost"
                       size="icon"
                       className="ml-2"
-                      onClick={() => selectedPassword && copyToClipboard(selectedPassword.username)}
+                      onClick={() => selectedPassword && copyToClipboard(selectedPassword.username, selectedPassword.id)}
                     >
                       <Copy className="h-4 w-4" />
                     </Button>
@@ -302,7 +363,7 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                       variant="ghost"
                       size="icon"
                       className="ml-2"
-                      onClick={() => copyToClipboard("ExamplePass123")}
+                      onClick={() => selectedPassword && copyToClipboard("ExamplePass123", selectedPassword.id)}
                     >
                       <Copy className="h-4 w-4" />
                     </Button>
@@ -322,7 +383,7 @@ export function PasswordList({ passwords, folders }: PasswordListProps) {
                         readOnly
                         className="flex-1"
                       />
-                      <Button variant="ghost" size="icon" className="ml-2" onClick={() => copyToClipboard(field.value)}>
+                      <Button variant="ghost" size="icon" className="ml-2" onClick={() => copyToClipboard(field.value, selectedPassword.id)}>
                         <Copy className="h-4 w-4" />
                       </Button>
                     </div>
diff --git a/components/security-dashboard.tsx b/components/security-dashboard.tsx
index 89d613a..9650f80 100644
--- a/components/security-dashboard.tsx
+++ b/components/security-dashboard.tsx
@@ -1,50 +1,151 @@
 "use client"
 
-import { useState } from "react"
+import { useState, useEffect } from "react"
 import { AlertTriangle, Shield, RefreshCw, Clock, CheckCircle2 } from "lucide-react"
 import { Card, CardContent, CardDescription, CardFooter, CardHeader, CardTitle } from "@/components/ui/card"
 import { Button } from "@/components/ui/button"
 import { Progress } from "@/components/ui/progress"
 import { Tabs, TabsContent, TabsList, TabsTrigger } from "@/components/ui/tabs"
 import { Badge } from "@/components/ui/badge"
+import { analyzePasswords, SecurityMetrics } from "@/lib/api/security"
+import { useCredentials } from "@/hooks/use-credentials"
+import { toast } from "sonner"
 
 export function SecurityDashboard() {
-  const [securityScore, setSecurityScore] = useState(68)
-  const [lastScan, setLastScan] = useState("2023-12-15")
+  const [securityScore, setSecurityScore] = useState(0)
+  const [lastScan, setLastScan] = useState<string | null>(null)
+  const [isAnalyzing, setIsAnalyzing] = useState(false)
+  const [metrics, setMetrics] = useState<SecurityMetrics>(() => {
+    // Récupérer les métriques du localStorage au chargement initial
+    if (typeof window !== 'undefined') {
+      const savedMetrics = localStorage.getItem('securityMetrics')
+      const savedLastScan = localStorage.getItem('lastSecurityScan')
+      if (savedMetrics && savedLastScan) {
+        setLastScan(savedLastScan)
+        return JSON.parse(savedMetrics)
+      }
+    }
+    return {
+      weakPasswords: {},
+      strongPasswords: {},
+      reusedPasswords: {},
+      oldPasswords: {},
+      breachedPasswords: {},
+    }
+  })
 
-  const weakPasswords = [
-    { id: "1", title: "Netflix", username: "moviefan", website: "netflix.com", lastUpdated: "2023-10-20" },
-    { id: "2", title: "Twitter", username: "socialuser", website: "twitter.com", lastUpdated: "2023-08-12" },
-  ]
+  const { credentials, isLoading: isLoadingCredentials } = useCredentials()
 
-  const reusedPasswords = [
-    { id: "3", title: "GitHub", username: "devuser", website: "github.com", lastUpdated: "2023-11-15" },
-    { id: "4", title: "GitLab", username: "devuser", website: "gitlab.com", lastUpdated: "2023-09-22" },
-  ]
+  const analyzeSecurity = async () => {
+    if (credentials.length === 0) {
+      toast.error("Aucun credential à analyser")
+      return
+    }
 
-  const oldPasswords = [
-    { id: "5", title: "Amazon", username: "shopper123", website: "amazon.com", lastUpdated: "2023-09-05" },
-    { id: "6", title: "eBay", username: "bidder42", website: "ebay.com", lastUpdated: "2023-07-18" },
-  ]
+    try {
+      setIsAnalyzing(true)
+      const result = await analyzePasswords(credentials)
+      setMetrics(result)
+      const scanTime = new Date().toISOString()
+      setLastScan(scanTime)
+      
+      // Sauvegarder les métriques et le timestamp dans le localStorage
+      localStorage.setItem('securityMetrics', JSON.stringify(result))
+      localStorage.setItem('lastSecurityScan', scanTime)
+      
+      toast.success("Analyse de sécurité terminée")
+    } catch (error) {
+      console.error("Erreur lors de l'analyse:", error)
+      toast.error("Erreur lors de l'analyse de sécurité")
+    } finally {
+      setIsAnalyzing(false)
+    }
+  }
 
-  const breachedAccounts = [
-    {
-      id: "7",
-      title: "LinkedIn",
-      username: "professional",
-      website: "linkedin.com",
-      breachDate: "2023-11-30",
-      severity: "high",
-    },
-    {
-      id: "8",
-      title: "Dropbox",
-      username: "fileuser",
-      website: "dropbox.com",
-      breachDate: "2023-10-05",
-      severity: "medium",
-    },
-  ]
+  // Calculer le score de sécurité
+  useEffect(() => {
+    if (credentials.length === 0) return
+
+    const totalPasswords = credentials.length
+    const weakCount = Object.keys(metrics.weakPasswords).length
+    const reusedCount = Object.keys(metrics.reusedPasswords).length
+    const oldCount = Object.keys(metrics.oldPasswords).length
+    const breachedCount = Object.keys(metrics.breachedPasswords).length
+
+    // Calcul basé sur la proportion de chaque type de problème
+    const weakPenalty = (weakCount / totalPasswords) * 30 // 30% de pénalité max pour les mots de passe faibles
+    const reusedPenalty = (reusedCount / totalPasswords) * 25 // 25% de pénalité max pour les réutilisations
+    const oldPenalty = (oldCount / totalPasswords) * 20 // 20% de pénalité max pour les mots de passe anciens
+    const breachedPenalty = (breachedCount / totalPasswords) * 25 // 25% de pénalité max pour les compromissions
+
+    // Score final en soustrayant les pénalités de 100
+    const score = Math.max(
+      0,
+      Math.min(
+        100,
+        Math.round(100 - (weakPenalty + reusedPenalty + oldPenalty + breachedPenalty))
+      )
+    )
+
+    setSecurityScore(score)
+  }, [metrics, credentials])
+
+  // Transformer les données pour l'affichage
+  const weakPasswordsList = Object.entries(metrics.weakPasswords).flatMap(([password, ids]) =>
+    ids.map(id => {
+      const credential = credentials.find(c => c.id === id)
+      return {
+        id,
+        title: credential?.title || "Inconnu",
+        username: credential?.username || "Inconnu",
+        website: credential?.website || "Inconnu",
+        lastUpdated: credential?.lastUpdated || "Inconnu",
+      }
+    })
+  )
+
+  const reusedPasswordsList = Object.entries(metrics.reusedPasswords).flatMap(([password, ids]) =>
+    ids.map(id => {
+      const credential = credentials.find(c => c.id === id)
+      return {
+        id,
+        title: credential?.title || "Inconnu",
+        username: credential?.username || "Inconnu",
+        website: credential?.website || "Inconnu",
+        lastUpdated: credential?.lastUpdated || "Inconnu",
+      }
+    })
+  )
+
+  const oldPasswordsList = Object.entries(metrics.oldPasswords).flatMap(([password, ids]) =>
+    ids.map(id => {
+      const credential = credentials.find(c => c.id === id)
+      return {
+        id,
+        title: credential?.title || "Inconnu",
+        username: credential?.username || "Inconnu",
+        website: credential?.website || "Inconnu",
+        lastUpdated: credential?.lastUpdated || "Inconnu",
+      }
+    })
+  )
+
+  const breachedPasswordsList = Object.entries(metrics.breachedPasswords).flatMap(([password, ids]) =>
+    ids.map(id => {
+      const credential = credentials.find(c => c.id === id)
+      return {
+        id,
+        title: credential?.title || "Inconnu",
+        username: credential?.username || "Inconnu",
+        website: credential?.website || "Inconnu",
+        lastUpdated: credential?.lastUpdated || "Inconnu",
+      }
+    })
+  )
+
+  if (isLoadingCredentials) {
+    return <div>Chargement...</div>
+  }
 
   return (
     <div className="space-y-6 p-6">
@@ -77,9 +178,9 @@ export function SecurityDashboard() {
             <AlertTriangle className="h-4 w-4 text-amber-500 self-start" />
           </CardHeader>
           <CardContent>
-            <div className="text-2xl font-bold">{weakPasswords.length}</div>
+            <div className="text-2xl font-bold">{weakPasswordsList.length}</div>
             <p className="text-xs text-muted-foreground mt-2">
-              {weakPasswords.length === 0
+              {weakPasswordsList.length === 0
                 ? "Tous vos mots de passe sont forts"
                 : "Mots de passe nécessitant une amélioration"}
             </p>
@@ -91,9 +192,9 @@ export function SecurityDashboard() {
             <RefreshCw className="h-4 w-4 text-blue-500 self-start" />
           </CardHeader>
           <CardContent>
-            <div className="text-2xl font-bold">{reusedPasswords.length}</div>
+            <div className="text-2xl font-bold">{reusedPasswordsList.length}</div>
             <p className="text-xs text-muted-foreground mt-2">
-              {reusedPasswords.length === 0
+              {reusedPasswordsList.length === 0
                 ? "Aucun mot de passe n'est réutilisé"
                 : "Mots de passe utilisés sur plusieurs sites"}
             </p>
@@ -101,15 +202,15 @@ export function SecurityDashboard() {
         </Card>
         <Card>
           <CardHeader className="flex flex-row items-center justify-between space-y-0 pb-2">
-            <CardTitle className="text-sm font-medium">Comptes compromis</CardTitle>
+            <CardTitle className="text-sm font-medium">Mots de passe compromis</CardTitle>
             <AlertTriangle className="h-4 w-4 text-red-500 self-start" />
           </CardHeader>
           <CardContent>
-            <div className="text-2xl font-bold">{breachedAccounts.length}</div>
+            <div className="text-2xl font-bold">{breachedPasswordsList.length}</div>
             <p className="text-xs text-muted-foreground mt-2">
-              {breachedAccounts.length === 0
-                ? "Aucun compte compromis détecté"
-                : "Comptes détectés dans des fuites de données"}
+              {breachedPasswordsList.length === 0
+                ? "Aucun mot de passe compromis"
+                : "Mots de passe trouvés dans des fuites de données"}
             </p>
           </CardContent>
         </Card>
@@ -119,7 +220,11 @@ export function SecurityDashboard() {
         <Card className="md:col-span-4">
           <CardHeader>
             <CardTitle>Analyse de sécurité</CardTitle>
-            <CardDescription>Dernière analyse: {lastScan}</CardDescription>
+            <CardDescription>
+              {lastScan 
+                ? `Dernière analyse: ${new Date(lastScan).toLocaleString('fr-FR')}`
+                : "Aucune analyse effectuée"}
+            </CardDescription>
           </CardHeader>
           <CardContent className="pl-2">
             <Tabs defaultValue="weak">
@@ -130,7 +235,7 @@ export function SecurityDashboard() {
                 <TabsTrigger value="breached">Compromis</TabsTrigger>
               </TabsList>
               <TabsContent value="weak" className="space-y-4 pt-4">
-                {weakPasswords.length === 0 ? (
+                {weakPasswordsList.length === 0 ? (
                   <div className="flex items-center justify-center py-8">
                     <div className="text-center">
                       <CheckCircle2 className="mx-auto h-8 w-8 text-green-500" />
@@ -139,7 +244,7 @@ export function SecurityDashboard() {
                     </div>
                   </div>
                 ) : (
-                  weakPasswords.map((password) => (
+                  weakPasswordsList.map((password) => (
                     <div key={password.id} className="flex items-center justify-between p-3 border rounded-lg">
                       <div>
                         <div className="font-medium">{password.title}</div>
@@ -151,7 +256,7 @@ export function SecurityDashboard() {
                 )}
               </TabsContent>
               <TabsContent value="reused" className="space-y-4 pt-4">
-                {reusedPasswords.length === 0 ? (
+                {reusedPasswordsList.length === 0 ? (
                   <div className="flex items-center justify-center py-8">
                     <div className="text-center">
                       <CheckCircle2 className="mx-auto h-8 w-8 text-green-500" />
@@ -160,7 +265,7 @@ export function SecurityDashboard() {
                     </div>
                   </div>
                 ) : (
-                  reusedPasswords.map((password) => (
+                  reusedPasswordsList.map((password) => (
                     <div key={password.id} className="flex items-center justify-between p-3 border rounded-lg">
                       <div>
                         <div className="font-medium">{password.title}</div>
@@ -172,22 +277,25 @@ export function SecurityDashboard() {
                 )}
               </TabsContent>
               <TabsContent value="old" className="space-y-4 pt-4">
-                {oldPasswords.length === 0 ? (
+                {oldPasswordsList.length === 0 ? (
                   <div className="flex items-center justify-center py-8">
                     <div className="text-center">
                       <CheckCircle2 className="mx-auto h-8 w-8 text-green-500" />
-                      <h3 className="mt-2 text-sm font-medium">Tous vos mots de passe sont récents</h3>
+                      <h3 className="mt-2 text-sm font-medium">Aucun mot de passe ancien</h3>
                       <p className="mt-1 text-sm text-muted-foreground">
-                        Vous mettez régulièrement à jour vos mots de passe.
+                        Tous vos mots de passe ont été mis à jour récemment.
                       </p>
                     </div>
                   </div>
                 ) : (
-                  oldPasswords.map((password) => (
+                  oldPasswordsList.map((password) => (
                     <div key={password.id} className="flex items-center justify-between p-3 border rounded-lg">
                       <div>
                         <div className="font-medium">{password.title}</div>
-                        <div className="text-sm text-muted-foreground">Mis à jour: {password.lastUpdated}</div>
+                        <div className="text-sm text-muted-foreground">{password.username}</div>
+                        <div className="text-xs text-muted-foreground">
+                          Dernière mise à jour: {password.lastUpdated}
+                        </div>
                       </div>
                       <Button size="sm">Mettre à jour</Button>
                     </div>
@@ -195,29 +303,27 @@ export function SecurityDashboard() {
                 )}
               </TabsContent>
               <TabsContent value="breached" className="space-y-4 pt-4">
-                {breachedAccounts.length === 0 ? (
+                {breachedPasswordsList.length === 0 ? (
                   <div className="flex items-center justify-center py-8">
                     <div className="text-center">
                       <CheckCircle2 className="mx-auto h-8 w-8 text-green-500" />
-                      <h3 className="mt-2 text-sm font-medium">Aucun compte compromis</h3>
+                      <h3 className="mt-2 text-sm font-medium">Aucun mot de passe compromis</h3>
                       <p className="mt-1 text-sm text-muted-foreground">
-                        Vos comptes n'ont pas été détectés dans des fuites de données.
+                        Aucun de vos mots de passe n'a été trouvé dans les fuites de données connues.
                       </p>
                     </div>
                   </div>
                 ) : (
-                  breachedAccounts.map((account) => (
-                    <div key={account.id} className="flex items-center justify-between p-3 border rounded-lg">
+                  breachedPasswordsList.map((password) => (
+                    <div key={password.id} className="flex items-center justify-between p-3 border rounded-lg">
                       <div>
-                        <div className="font-medium">{account.title}</div>
-                        <div className="text-sm text-muted-foreground">Fuite détectée: {account.breachDate}</div>
-                      </div>
-                      <div className="flex items-center gap-2">
-                        <Badge variant={account.severity === "high" ? "destructive" : "outline"}>
-                          {account.severity === "high" ? "Critique" : "Moyen"}
-                        </Badge>
-                        <Button size="sm">Sécuriser</Button>
+                        <div className="font-medium">{password.title}</div>
+                        <div className="text-sm text-muted-foreground">{password.username}</div>
+                        <div className="text-xs text-red-500">
+                          Ce mot de passe a été compromis dans une fuite de données
+                        </div>
                       </div>
+                      <Button size="sm" variant="destructive">Changer immédiatement</Button>
                     </div>
                   ))
                 )}
@@ -225,9 +331,14 @@ export function SecurityDashboard() {
             </Tabs>
           </CardContent>
           <CardFooter>
-            <Button variant="outline" className="w-full">
-              <RefreshCw className="mr-2 h-4 w-4" />
-              Lancer une analyse complète
+            <Button 
+              variant="outline" 
+              className="w-full"
+              onClick={analyzeSecurity}
+              disabled={isAnalyzing}
+            >
+              <RefreshCw className={`mr-2 h-4 w-4 ${isAnalyzing ? 'animate-spin' : ''}`} />
+              {isAnalyzing ? 'Analyse en cours...' : 'Lancer une analyse complète'}
             </Button>
           </CardFooter>
         </Card>
diff --git a/components/user-nav.tsx b/components/user-nav.tsx
index 93b8c78..5aaf575 100644
--- a/components/user-nav.tsx
+++ b/components/user-nav.tsx
@@ -1,19 +1,16 @@
-"use client"
+'use client'
 
-import { Avatar, AvatarFallback, AvatarImage } from "@/components/ui/avatar"
-import { Button } from "@/components/ui/button"
-import {
-  DropdownMenu,
-  DropdownMenuContent,
-  DropdownMenuGroup,
-  DropdownMenuItem,
-  DropdownMenuLabel,
-  DropdownMenuSeparator,
-  DropdownMenuTrigger,
-} from "@/components/ui/dropdown-menu"
-import { Bell, Settings, LogOut, User } from "lucide-react"
+import { Avatar, AvatarFallback, AvatarImage } from '@/components/ui/avatar'
+import { Button } from '@/components/ui/button'
+import { DropdownMenu, DropdownMenuContent, DropdownMenuGroup, DropdownMenuItem, DropdownMenuLabel, DropdownMenuSeparator, DropdownMenuTrigger } from '@/components/ui/dropdown-menu'
+import { Bell, Settings, LogOut, User } from 'lucide-react'
+import { logout } from '@/lib/auth'
 
 export function UserNav() {
+  const handleLogout = () => {
+    logout()
+  }
+
   return (
     <div className="flex items-center gap-4">
       <Button variant="ghost" size="icon" className="relative">
@@ -49,7 +46,7 @@ export function UserNav() {
             </DropdownMenuItem>
           </DropdownMenuGroup>
           <DropdownMenuSeparator />
-          <DropdownMenuItem>
+          <DropdownMenuItem onClick={handleLogout}>
             <LogOut className="mr-2 h-4 w-4" />
             <span>Déconnexion</span>
           </DropdownMenuItem>
diff --git a/docker-compose.yaml b/docker-compose.yaml
new file mode 100644
index 0000000..81af52a
--- /dev/null
+++ b/docker-compose.yaml
@@ -0,0 +1,29 @@
+services:
+  keycloak:
+    image: quay.io/keycloak/keycloak:24.0.3
+    container_name: keycloak
+    environment:
+      - KEYCLOAK_ADMIN=admin
+      - KEYCLOAK_ADMIN_PASSWORD=admin
+      - KC_DB=postgres
+      - KC_DB_URL=jdbc:postgresql://keycloak-db:5432/keycloak
+      - KC_DB_USERNAME=keycloak
+      - KC_DB_PASSWORD=keycloak
+    ports:
+      - "8080:8080"
+    command: start-dev
+    depends_on:
+      - keycloak-db
+
+  keycloak-db:
+    image: postgres:15
+    container_name: keycloak-db
+    environment:
+      - POSTGRES_DB=keycloak
+      - POSTGRES_USER=keycloak
+      - POSTGRES_PASSWORD=keycloak
+    volumes:
+      - keycloak-db-data:/var/lib/postgresql/data
+
+volumes:
+  keycloak-db-data:
\ No newline at end of file
diff --git a/helm/Chart.yaml b/helm/Chart.yaml
index 1218771..ee3ec8c 100644
--- a/helm/Chart.yaml
+++ b/helm/Chart.yaml
@@ -21,4 +21,4 @@ version: 0.1.0
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
 # It is recommended to use it with quotes.
-appVersion: "0.0.2"
+appVersion: "0.0.8"
diff --git a/helm/values.yaml b/helm/values.yaml
index 0d16867..16f72f9 100644
--- a/helm/values.yaml
+++ b/helm/values.yaml
@@ -7,7 +7,7 @@ replicaCount: 1
 
 # This sets the container image more information can be found here: https://kubernetes.io/docs/concepts/containers/images/
 image:
-  repository: ghcr.io/latte-corporation/polypass-front
+  repository: ghcr.io/do-2k23-26/polypass-front
   # This sets the pull policy for images.
   pullPolicy: IfNotPresent
   # Overrides the image tag whose default is the chart appVersion.
@@ -57,13 +57,13 @@ service:
 
 # This block is for setting up the ingress for more information can be found here: https://kubernetes.io/docs/concepts/services-networking/ingress/
 ingress:
-  enabled: false
-  className: ""
+  enabled: true
+  className: "traefik" # This is the ingress class name, you can change it to nginx or any other ingress controller you are using.
   annotations: {}
     # kubernetes.io/ingress.class: nginx
     # kubernetes.io/tls-acme: "true"
   hosts:
-  - host: chart-example.local
+  - host: polypass.umontpelier.fr
     paths:
     - path: /
       pathType: ImplementationSpecific
@@ -72,15 +72,17 @@ ingress:
   #    hosts:
   #      - chart-example.local
 
-resources:
-  limits:
-    cpu: 100m
-    memory: 128Mi
-  requests:
-    cpu: 100m
-    memory: 128Mi
-
-extraEnv: []
+resources: {}
+  
+extraEnv:
+  - name: SHARING_API
+    value: "http://sharing.polypass.umontpelier.fr"
+  - name: NEXT_PUBLIC_OIDC_PROVIDER_URL
+    value: "https://auth.polypass.umontpelier.fr"
+  - name: NEXT_PUBLIC_OIDC_CLIENT_ID
+    value: "polypass"
+  - name: NEXT_PUBLIC_OIDC_REDIRECT_URI
+    value: "https://polypass.umontpelier.fr/auth/callback"
 
 # This is to setup the liveness and readiness probes more information can be found here: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
 livenessProbe:
diff --git a/hooks/use-credentials.ts b/hooks/use-credentials.ts
new file mode 100644
index 0000000..e0b1378
--- /dev/null
+++ b/hooks/use-credentials.ts
@@ -0,0 +1,37 @@
+import { useState, useEffect } from 'react'
+import { Credential } from '@/types/credential'
+import { mockCredentials } from '@/lib/mocks/credentials'
+
+export function useCredentials() {
+  const [credentials, setCredentials] = useState<Credential[]>([])
+  const [isLoading, setIsLoading] = useState(true)
+
+  useEffect(() => {
+    const fetchCredentials = async () => {
+      try {
+        // En développement, utiliser les données mockées
+        if (process.env.NODE_ENV === 'development') {
+          setCredentials(mockCredentials)
+          setIsLoading(false)
+          return
+        }
+
+        // En production, faire l'appel API
+        const response = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/credentials`)
+        if (!response.ok) {
+          throw new Error('Erreur lors de la récupération des credentials')
+        }
+        const data = await response.json()
+        setCredentials(data)
+      } catch (error) {
+        console.error('Erreur:', error)
+      } finally {
+        setIsLoading(false)
+      }
+    }
+
+    fetchCredentials()
+  }, [])
+
+  return { credentials, isLoading }
+} 
\ No newline at end of file
diff --git a/lib/api-client.ts b/lib/api-client.ts
new file mode 100644
index 0000000..fddec4d
--- /dev/null
+++ b/lib/api-client.ts
@@ -0,0 +1,62 @@
+'use client'
+
+import { useAuthStore } from './auth'
+
+// Client API avec gestion automatique des tokens
+export class ApiClient {
+  private static instance: ApiClient
+
+  private constructor() {}
+
+  static getInstance(): ApiClient {
+    if (!ApiClient.instance) {
+      ApiClient.instance = new ApiClient()
+    }
+    return ApiClient.instance
+  }
+
+  async fetch(url: string, options: RequestInit = {}): Promise<Response> {
+    const { accessToken, refreshAccessToken, clearTokens } = useAuthStore.getState()
+
+    // Ajouter l'access token comme Bearer token
+    const headers = {
+      ...options.headers,
+      ...(accessToken && { Authorization: `Bearer ${accessToken}` }),
+    }
+
+    const response = await fetch(url, {
+      ...options,
+      headers,
+    })
+
+    // Si 403, essayer de refresh le token
+    if (response.status === 403 && accessToken) {
+      console.log('Token expiré, tentative de refresh...')
+      const refreshSuccess = await refreshAccessToken()
+
+      if (refreshSuccess) {
+        // Retry la requête avec le nouveau token
+        const newAccessToken = useAuthStore.getState().accessToken
+        const retryHeaders = {
+          ...options.headers,
+          Authorization: `Bearer ${newAccessToken}`,
+        }
+
+        return fetch(url, {
+          ...options,
+          headers: retryHeaders,
+        })
+      } else {
+        // Refresh failed, redirect to login
+        clearTokens()
+        window.location.href = '/'
+        throw new Error('Session expirée, redirection vers la connexion')
+      }
+    }
+
+    return response
+  }
+}
+
+// Instance singleton
+export const apiClient = ApiClient.getInstance()
diff --git a/lib/api/security.ts b/lib/api/security.ts
new file mode 100644
index 0000000..3f9efac
--- /dev/null
+++ b/lib/api/security.ts
@@ -0,0 +1,90 @@
+import { Credential } from '@/types/credential'
+
+export interface SecurityMetrics {
+  weakPasswords: {
+    [password: string]: string[]
+  }
+  strongPasswords: {
+    [password: string]: string[]
+  }
+  reusedPasswords: {
+    [password: string]: string[]
+  }
+  oldPasswords: {
+    [password: string]: string[]
+  }
+  breachedPasswords: {
+    [password: string]: string[]
+  }
+}
+
+export async function analyzePasswords(credentials: Credential[]): Promise<SecurityMetrics> {
+  try {
+    const response = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/statistics/analyze`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify(credentials),
+    })
+
+    if (!response.ok) {
+      throw new Error('Erreur lors de l\'analyse des mots de passe')
+    }
+
+    return await response.json()
+  } catch (error) {
+    console.error('Erreur lors de l\'analyse des mots de passe:', error)
+    throw error
+  }
+}
+
+export async function getPasswordUsage(passwordId: string): Promise<number> {
+  // Récupérer les métriques d'analyse
+  const response = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/statistics/analyze`, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    body: JSON.stringify([{
+      id: passwordId,
+      password: 'dummy-password', // Le mot de passe n'est pas utilisé pour le comptage
+      lastUpdated: new Date().toISOString().split('T')[0]
+    }])
+  })
+
+  if (!response.ok) {
+    throw new Error('Erreur lors de la récupération de l\'utilisation du mot de passe')
+  }
+
+  const data = await response.json()
+  // Le nombre d'utilisations est stocké dans les métriques de réutilisation
+  const reusedCount = Object.values(data.reusedPasswords || {}).flat().length
+  return reusedCount
+}
+
+export async function usePassword(passwordId: string): Promise<void> {
+  try {
+    const response = await fetch(`${process.env.NEXT_PUBLIC_API_URL}/statistics/analyze`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify([{
+        id: passwordId,
+        password: 'dummy-password', // Le mot de passe n'est pas utilisé pour le comptage
+        lastUpdated: new Date().toISOString().split('T')[0]
+      }])
+    })
+
+    if (!response.ok) {
+      throw new Error('Erreur lors de l\'utilisation des mots de passe')
+    }
+
+    await response.json()
+  } catch (error) {
+    console.error('Erreur lors de l\'utilisation des mots de passe:', error)
+    throw error
+  }
+}
+
diff --git a/lib/auth.ts b/lib/auth.ts
new file mode 100644
index 0000000..64b5045
--- /dev/null
+++ b/lib/auth.ts
@@ -0,0 +1,219 @@
+'use client'
+
+import { create } from 'zustand'
+import { persist } from 'zustand/middleware'
+
+// Types pour OIDC
+interface OIDCTokens {
+  access_token: string
+  refresh_token: string
+  expires_in: number
+  token_type: string
+}
+
+interface AuthState {
+  accessToken: string | null
+  isAuthenticated: boolean
+  setTokens: (tokens: OIDCTokens) => void
+  clearTokens: () => void
+  refreshAccessToken: () => Promise<boolean>
+}
+
+// Store Zustand pour l'état d'authentification
+export const useAuthStore = create<AuthState>()(
+  persist(
+    (set, get) => ({
+      accessToken: null,
+      isAuthenticated: false,
+
+      setTokens: (tokens: OIDCTokens) => {
+        // Stocker l'access token dans le state
+        set({
+          accessToken: tokens.access_token,
+          isAuthenticated: true,
+        })
+
+        // Stocker le refresh token dans le localStorage
+        if (typeof window !== 'undefined') {
+          localStorage.setItem('refresh_token', tokens.refresh_token)
+        }
+      },
+
+      clearTokens: () => {
+        set({ accessToken: null, isAuthenticated: false })
+        if (typeof window !== 'undefined') {
+          localStorage.removeItem('refresh_token')
+        }
+      },
+
+      refreshAccessToken: async (): Promise<boolean> => {
+        try {
+          const refreshToken = typeof window !== 'undefined' ? localStorage.getItem('refresh_token') : null
+
+          if (!refreshToken) {
+            get().clearTokens()
+            return false
+          }
+
+          const oidcUrl = process.env.NEXT_PUBLIC_OIDC_PROVIDER_URL
+          const clientId = process.env.NEXT_PUBLIC_OIDC_CLIENT_ID
+
+          if (!oidcUrl || !clientId) {
+            console.error('Configuration OIDC manquante')
+            return false
+          }
+
+          const tokenEndpoint = `${oidcUrl}/realms/master/protocol/openid-connect/token`
+
+          const response = await fetch(tokenEndpoint, {
+            method: 'POST',
+            headers: {
+              'Content-Type': 'application/x-www-form-urlencoded',
+            },
+            body: new URLSearchParams({
+              grant_type: 'refresh_token',
+              refresh_token: refreshToken,
+              client_id: clientId,
+            }),
+          })
+
+          if (!response.ok) {
+            console.error('Erreur lors du refresh token:', response.status)
+            get().clearTokens()
+            return false
+          }
+
+          const tokens: OIDCTokens = await response.json()
+          get().setTokens(tokens)
+          return true
+        } catch (error) {
+          console.error('Erreur lors du refresh token:', error)
+          get().clearTokens()
+          return false
+        }
+      },
+    }),
+    {
+      name: 'auth-storage',
+      partialize: (state) => ({
+        // Ne persister que l'état d'authentification, pas l'access token
+        isAuthenticated: state.isAuthenticated,
+      }),
+    }
+  )
+)
+
+// Fonction pour initier la connexion OIDC
+export const initiateOIDCLogin = () => {
+  const oidcUrl = process.env.NEXT_PUBLIC_OIDC_PROVIDER_URL
+  const clientId = process.env.NEXT_PUBLIC_OIDC_CLIENT_ID
+  const redirectUri = process.env.NEXT_PUBLIC_OIDC_REDIRECT_URI
+
+  if (!oidcUrl || !clientId || !redirectUri) {
+    console.error('Configuration OIDC manquante')
+    return
+  }
+
+  // Générer un state pour la sécurité
+  const state = crypto.randomUUID()
+  sessionStorage.setItem('oidc_state', state)
+
+  // Générer un code verifier pour PKCE (optionnel mais recommandé)
+  const codeVerifier = crypto.randomUUID() + crypto.randomUUID()
+  sessionStorage.setItem('oidc_code_verifier', codeVerifier)
+
+  // Créer le code challenge
+  const encoder = new TextEncoder()
+  const data = encoder.encode(codeVerifier)
+  crypto.subtle.digest('SHA-256', data).then((hash) => {
+    const codeChallenge = btoa(String.fromCharCode(...new Uint8Array(hash)))
+      .replace(/\+/g, '-')
+      .replace(/\//g, '_')
+      .replace(/=/g, '')
+
+    const authUrl = new URL(`${oidcUrl}/realms/master/protocol/openid-connect/auth`)
+    authUrl.searchParams.set('client_id', clientId)
+    authUrl.searchParams.set('redirect_uri', redirectUri)
+    authUrl.searchParams.set('response_type', 'code')
+    authUrl.searchParams.set('scope', 'openid profile email')
+    authUrl.searchParams.set('state', state)
+    authUrl.searchParams.set('code_challenge', codeChallenge)
+    authUrl.searchParams.set('code_challenge_method', 'S256')
+
+    window.location.href = authUrl.toString()
+  })
+}
+
+// Fonction pour échanger le code d'autorisation contre des tokens
+export const exchangeCodeForTokens = async (code: string, state: string): Promise<boolean> => {
+  try {
+    // Vérifier le state
+    const storedState = sessionStorage.getItem('oidc_state')
+    if (state !== storedState) {
+      console.error('State OIDC invalide')
+      return false
+    }
+
+    const oidcUrl = process.env.NEXT_PUBLIC_OIDC_PROVIDER_URL
+    const clientId = process.env.NEXT_PUBLIC_OIDC_CLIENT_ID
+    const redirectUri = process.env.NEXT_PUBLIC_OIDC_REDIRECT_URI
+    const codeVerifier = sessionStorage.getItem('oidc_code_verifier')
+
+    if (!oidcUrl || !clientId || !redirectUri || !codeVerifier) {
+      console.error('Configuration OIDC manquante')
+      return false
+    }
+
+    const tokenEndpoint = `${oidcUrl}/realms/master/protocol/openid-connect/token`
+
+    const response = await fetch(tokenEndpoint, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/x-www-form-urlencoded',
+      },
+      body: new URLSearchParams({
+        grant_type: 'authorization_code',
+        code,
+        redirect_uri: redirectUri,
+        client_id: clientId,
+        code_verifier: codeVerifier,
+      }),
+    })
+
+    if (!response.ok) {
+      console.error("Erreur lors de l'échange du code:", response.status)
+      return false
+    }
+
+    const tokens: OIDCTokens = await response.json()
+    useAuthStore.getState().setTokens(tokens)
+
+    // Nettoyer le sessionStorage
+    sessionStorage.removeItem('oidc_state')
+    sessionStorage.removeItem('oidc_code_verifier')
+
+    return true
+  } catch (error) {
+    console.error("Erreur lors de l'échange du code:", error)
+    return false
+  }
+}
+
+// Fonction pour déconnecter l'utilisateur
+export const logout = () => {
+  const oidcUrl = process.env.NEXT_PUBLIC_OIDC_PROVIDER_URL
+  const clientId = process.env.NEXT_PUBLIC_OIDC_CLIENT_ID
+  const redirectUri = process.env.NEXT_PUBLIC_OIDC_REDIRECT_URI
+
+  useAuthStore.getState().clearTokens()
+
+  if (oidcUrl && clientId && redirectUri) {
+    const logoutUrl = new URL(`${oidcUrl}/realms/master/protocol/openid-connect/logout`)
+    logoutUrl.searchParams.set('client_id', clientId)
+    logoutUrl.searchParams.set('post_logout_redirect_uri', redirectUri)
+
+    window.location.href = logoutUrl.toString()
+  } else {
+    window.location.href = '/'
+  }
+}
diff --git a/lib/mocks/credentials.ts b/lib/mocks/credentials.ts
new file mode 100644
index 0000000..ce7af29
--- /dev/null
+++ b/lib/mocks/credentials.ts
@@ -0,0 +1,89 @@
+import { Credential } from '@/types/credential'
+
+export const mockCredentials: Credential[] = [
+  // Mots de passe faibles (3)
+  {
+    id: '1',
+    title: 'Compte Gmail',
+    username: 'john.doe@gmail.com',
+    website: 'gmail.com',
+    password: 'password123',
+    lastUpdated: '2025-01-15'
+  },
+  {
+    id: '2',
+    title: 'Compte Facebook',
+    username: 'john.doe',
+    website: 'facebook.com',
+    password: '12345678',
+    lastUpdated: '2025-01-20'
+  },
+  {
+    id: '3',
+    title: 'Compte Twitter',
+    username: '@johndoe',
+    website: 'twitter.com',
+    password: 'qwerty123',
+    lastUpdated: '2025-01-25'
+  },
+
+  // Mots de passe identiques (2)
+  {
+    id: '4',
+    title: 'Compte GitHub',
+    username: 'johndoe',
+    website: 'github.com',
+    password: 'SecurePass123!',
+    lastUpdated: '2025-01-10'
+  },
+  {
+    id: '5',
+    title: 'Compte GitLab',
+    username: 'john.doe',
+    website: 'gitlab.com',
+    password: 'SecurePass123!',
+    lastUpdated: '2025-01-12'
+  },
+
+  // Mots de passe forts (5)
+  {
+    id: '6',
+    title: 'Compte AWS',
+    username: 'john.doe@company.com',
+    website: 'aws.amazon.com',
+    password: 'Kj#9mP$2vL@5nX',
+    lastUpdated: '2025-01-05'
+  },
+  {
+    id: '7',
+    title: 'Compte Azure',
+    username: 'john.doe@company.com',
+    website: 'portal.azure.com',
+    password: 'P@ssw0rd!2024#Secure',
+    lastUpdated: '2025-01-08'
+  },
+  {
+    id: '8',
+    title: 'Compte Google Cloud',
+    username: 'john.doe@company.com',
+    website: 'cloud.google.com',
+    password: 'Str0ng!P@ssw0rd2024',
+    lastUpdated: '2020-12-15' // Ancien mot de passe
+  },
+  {
+    id: '9',
+    title: 'Compte Digital Ocean',
+    username: 'john.doe@company.com',
+    website: 'digitalocean.com',
+    password: 'C0mpl3x!P@ssw0rd#2024',
+    lastUpdated: '2025-01-18'
+  },
+  {
+    id: '10',
+    title: 'Compte Heroku',
+    username: 'john.doe@company.com',
+    website: 'heroku.com',
+    password: 'S3cur3!P@ssw0rd@2024',
+    lastUpdated: '2025-01-22'
+  }
+] 
\ No newline at end of file
diff --git a/package.json b/package.json
index de8a23c..6d6c7b4 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,8 @@
     "tailwind-merge": "^2.5.5",
     "tailwindcss-animate": "^1.0.7",
     "vaul": "^0.9.6",
-    "zod": "^3.24.1"
+    "zod": "^3.24.1",
+    "zustand": "^4.4.7"
   },
   "devDependencies": {
     "@types/node": "^22",
@@ -67,4 +68,4 @@
     "tailwindcss": "^3.4.17",
     "typescript": "^5"
   }
-}
\ No newline at end of file
+}
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 211432b..677f815 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -155,6 +155,9 @@ importers:
       zod:
         specifier: ^3.24.1
         version: 3.24.3
+      zustand:
+        specifier: ^4.4.7
+        version: 4.5.7(@types/react@19.1.2)(react@19.1.0)
     devDependencies:
       '@types/node':
         specifier: ^22
@@ -1877,6 +1880,21 @@ packages:
   zod@3.24.3:
     resolution: {integrity: sha512-HhY1oqzWCQWuUqvBFnsyrtZRhyPeR7SUGv+C4+MsisMuVfSPx8HpwWqH8tRahSlt6M3PiFAcoeFhZAqIXTxoSg==}
 
+  zustand@4.5.7:
+    resolution: {integrity: sha512-CHOUy7mu3lbD6o6LJLfllpjkzhHXSBlX8B9+qPddUsIfeF5S/UZ5q0kmCsnRqT1UHFQZchNFDDzMbQsuesHWlw==}
+    engines: {node: '>=12.7.0'}
+    peerDependencies:
+      '@types/react': '>=16.8'
+      immer: '>=9.0.6'
+      react: '>=16.8'
+    peerDependenciesMeta:
+      '@types/react':
+        optional: true
+      immer:
+        optional: true
+      react:
+        optional: true
+
 snapshots:
 
   '@alloc/quick-lru@5.2.0': {}
@@ -3551,3 +3569,10 @@ snapshots:
   yaml@2.7.1: {}
 
   zod@3.24.3: {}
+
+  zustand@4.5.7(@types/react@19.1.2)(react@19.1.0):
+    dependencies:
+      use-sync-external-store: 1.5.0(react@19.1.0)
+    optionalDependencies:
+      '@types/react': 19.1.2
+      react: 19.1.0
diff --git a/types/credential.ts b/types/credential.ts
new file mode 100644
index 0000000..4d220c6
--- /dev/null
+++ b/types/credential.ts
@@ -0,0 +1,8 @@
+export interface Credential {
+  id: string
+  title: string
+  username: string
+  website: string
+  password: string
+  lastUpdated: string
+} 
\ No newline at end of file