🔖(patch) release 4.8.4

Added - 🚸(frontend) hint min char search users #2064 Changed - 💄(frontend) improve comments highlights #1961 - ♿️(frontend) improve BoxButton a11y and native button semantics #2103 - ♿️(frontend) improve language picker accessibility #2069 - ♿️(frontend) add aria-hidden to decorative icons in dropdown menu #2093 Fixed - 🐛(y-provider) destroy Y.Doc instances after each convert request #2129 - 🐛(backend) remove deleted sub documents in favorite_list endpoint #2083
🌐(i18n) update translated strings
2026-05-08 08:02:15 +02:00 · 2026-03-25 23:19:28 +01:00 · 2026-03-25 23:19:28 +01:00 · 2026-03-25 17:22:32 +01:00 · 2026-03-25 17:22:32 +01:00 · 2026-03-25 15:43:49 +01:00
193 changed files with 12638 additions and 5048 deletions
--- a/.dockerignore
+++ b/.dockerignore
@@ -34,4 +34,4 @@ db.sqlite3

 # Frontend
 node_modules
-.next
+**/.next
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -6,6 +6,81 @@ and this project adheres to

 ## [Unreleased]

+## [v4.8.4] - 2026-03-25
+
+### Added
+
+- 🚸(frontend) hint min char search users #2064
+
+### Changed
+
+- 💄(frontend) improve comments highlights #1961
+- ♿️(frontend) improve BoxButton a11y and native button semantics #2103
+- ♿️(frontend) improve language picker accessibility #2069
+- ♿️(frontend) add aria-hidden to decorative icons in dropdown menu #2093
+- 🐛(backend) move lock table closer to the insert operation targeted
+
+### Fixed
+
+- 🐛(y-provider) destroy Y.Doc instances after each convert request #2129
+- 🐛(backend) remove deleted sub documents in favorite_list endpoint #2083
+
+## [v4.8.3] - 2026-03-23
+
+### Changed
+
+- ♿️(frontend) improve version history list accessibility #2033
+- ♿(frontend) focus skip link on headings and skip grid dropzone #1983
+- ♿️(frontend) add sr-only format to export download button #2088
+- ♿️(frontend) announce formatting shortcuts for screen readers #2070
+- ✨(frontend) add markdown copy icon for Copy as Markdown option #2096
+- ♻️(backend) skip saving in database a document when payload is empty #2062
+- ♻️(frontend) refacto Version modal to fit with the design system #2091
+- ⚡️(frontend) add debounce WebSocket reconnect #2104
+
+### Fixed
+
+- ♿️(frontend) fix more options menu feedback for screen readers #2071
+- ♿️(frontend) fix more options menu feedback for screen readers #2071
+- 💫(frontend) fix the help button to the bottom in tree #2073
+- ♿️(frontend) fix aria-labels for table of contents #2065
+- 🐛(backend) allow using search endpoint without refresh token enabled #2097
+- 🐛(frontend) fix close panel when click on subdoc #2094
+- 🐛(frontend) fix leftpanel button in doc version #9238
+- 🐛(y-provider) fix loop when no cookies #2101
+
+## [v4.8.2] - 2026-03-19
+
+### Added
+
+- ✨(backend) add resource server api #1923
+- ✨(frontend) activate Find search #1834
+- ✨ handle searching on subdocuments #1834
+- ✨(backend) add search feature flags #1897
+
+### Changed
+
+- ♿️(frontend) ensure doc title is h1 for accessibility #2006
+- ♿️(frontend) add nb accesses in share button aria-label #2017
+- ✨(backend) improve fallback logic on search endpoint #1834
+
+### Fixed
+
+- 🐛(frontend) fix image resizing when caption #2045
+- 🙈(docker) add \*\*/.next to .dockerignore #2034
+- ♿️(frontend) fix share modal heading hierarchy #2007
+- ♿️(frontend) fix Copy link toast accessibility for screen readers #2029
+- ♿️(frontend) fix modal aria-label and name #2014
+- ♿️(frontend) fix language dropdown ARIA for screen readers #2020
+- ♿️(frontend) fix waffle aria-label spacing for new-window links #2030
+- 🐛(backend) stop using add_sibling method to create sandbox document #2084
+- 🐛(backend) duplicate a document as last-sibling #2084
+
+### Removed
+
+- 🔥(api) remove `documents/<document_id>/descendants/` endpoint #1834
+- 🔥(api) remove pagination on `documents/search/` endpoint #1834
+
 ## [v4.8.1] - 2026-03-17

 ### Added
@@ -126,6 +201,8 @@ and this project adheres to
 ### Removed

 - 🔥(project) remove all code related to template #1780
+- 🔥(api) remove `documents/<document_id>/descendants/` endpoint #1834
+- 🔥(api) remove pagination on `documents/search/` endpoint #1834

 ### Security

@@ -1115,7 +1192,10 @@ and this project adheres to
 - ✨(frontend) Coming Soon page (#67)
 - 🚀 Impress, project to manage your documents easily and collaboratively.

-[unreleased]: https://github.com/suitenumerique/docs/compare/v4.8.1...main
+[unreleased]: https://github.com/suitenumerique/docs/compare/v4.8.4...main
+[v4.8.4]: https://github.com/suitenumerique/docs/releases/v4.8.4
+[v4.8.3]: https://github.com/suitenumerique/docs/releases/v4.8.3
+[v4.8.2]: https://github.com/suitenumerique/docs/releases/v4.8.2
 [v4.8.1]: https://github.com/suitenumerique/docs/releases/v4.8.1
 [v4.8.0]: https://github.com/suitenumerique/docs/releases/v4.8.0
 [v4.7.0]: https://github.com/suitenumerique/docs/releases/v4.7.0
--- a/13
+++ b/13
@@ -79,10 +79,16 @@ create-env-local-files:
 	@touch env.d/development/kc_postgresql.local
 .PHONY: create-env-local-files

+generate-secret-keys:
+generate-secret-keys: ## generate secret keys to be stored in common.local
+	@bin/generate-oidc-store-refresh-token-key.sh
+.PHONY: generate-secret-keys
+
 pre-bootstrap: \
 	data/media \
 	data/static \
-	create-env-local-files
+	create-env-local-files \
+	generate-secret-keys
 .PHONY: pre-bootstrap

 post-bootstrap: \
@@ -156,6 +162,10 @@ endif
 	@echo ""
 .PHONY: post-beautiful-bootstrap

+create-docker-network: ## create the docker network if it doesn't exist
+	@docker network create lasuite-network || true
+.PHONY: create-docker-network
+
 bootstrap: ## Prepare the project for local development
 bootstrap: \
 	pre-beautiful-bootstrap \
@@ -213,6 +223,7 @@ logs: ## display app-dev logs (follow mode)
 .PHONY: logs

 run-backend: ## Start only the backend application and all needed services
+	@$(MAKE) create-docker-network
 	@$(COMPOSE) up --force-recreate -d docspec
 	@$(COMPOSE) up --force-recreate -d celery-dev
 	@$(COMPOSE) up --force-recreate -d y-provider-development
--- a/README.md
+++ b/README.md
@@ -173,6 +173,11 @@ make frontend-test
 make frontend-lint
 ```

+Backend tests can be run without docker. This is useful to configure PyCharm or VSCode to do it. 
+Removing docker for testing requires to overwrite some URL and port values that are different in and out of 
+Docker. `env.d/development/common` contains all variables, some of them having to be overwritten by those in
+`env.d/development/common.test`.
+
 ### Demo content

 Create a basic demo site:
--- a/bin/fernetkey
+++ b/bin/fernetkey
@@ -1,6 +0,0 @@
-#!/usr/bin/env bash
-
-# shellcheck source=bin/_config.sh
-source "$(dirname "${BASH_SOURCE[0]}")/_config.sh"
-
-_dc_run app-dev python -c 'from cryptography.fernet import Fernet;import sys; sys.stdout.write("\n" + Fernet.generate_key().decode() + "\n");'
--- a/bin/generate-oidc-store-refresh-token-key.sh
+++ b/bin/generate-oidc-store-refresh-token-key.sh
@@ -0,0 +1,13 @@
+#!/usr/bin/env bash
+
+# Generate the secret OIDC_STORE_REFRESH_TOKEN_KEY and store it to common.local
+
+set -eo pipefail
+
+COMMON_LOCAL="env.d/development/common.local"
+
+OIDC_STORE_REFRESH_TOKEN_KEY=$(openssl rand -base64 32)
+
+echo "" >> "${COMMON_LOCAL}"
+echo "OIDC_STORE_REFRESH_TOKEN_KEY=${OIDC_STORE_REFRESH_TOKEN_KEY}" >> "${COMMON_LOCAL}"
+echo "✓ OIDC_STORE_REFRESH_TOKEN_KEY generated and stored in ${COMMON_LOCAL}"
--- a/docker/files/production/etc/nginx/conf.d/default.conf.template
+++ b/docker/files/production/etc/nginx/conf.d/default.conf.template
@@ -47,6 +47,10 @@ server {
        try_files $uri @proxy_to_docs_backend;
    }

+    location /external_api {
+        try_files $uri @proxy_to_docs_backend;
+    }
+
    location /static {
        try_files $uri @proxy_to_docs_backend;
    }
--- a/docs/env.md
+++ b/docs/env.md
@@ -108,6 +108,9 @@ These are the environment variables you can set for the `impress-backend` contai
 | OIDC_RP_SCOPES                                  | Scopes requested for OIDC                                                                                                                                                  | openid email                                                            |
 | OIDC_RP_SIGN_ALGO                               | verification algorithm used OIDC tokens                                                                                                                                    | RS256                                                                   |
 | OIDC_STORE_ID_TOKEN                             | Store OIDC token                                                                                                                                                           | true                                                                    |
+| OIDC_STORE_ACCESS_TOKEN                         | If True stores OIDC access token in session.                                                                                                                               | false                                                                   |
+| OIDC_STORE_REFRESH_TOKEN                        | If True stores OIDC refresh token in session.                                                                                                                              | false                                                                   |
+| OIDC_STORE_REFRESH_TOKEN_KEY                    | Key to encrypt refresh token stored in session, must be a valid Fernet key                                                                                                 |                                                                         |    
 | OIDC_USERINFO_FULLNAME_FIELDS                   | OIDC token claims to create full name                                                                                                                                      | ["first_name", "last_name"]                                             |
 | OIDC_USERINFO_SHORTNAME_FIELD                   | OIDC token claims to create shortname                                                                                                                                      | first_name                                                              |
 | OIDC_USE_NONCE                                  | Use nonce for OIDC                                                                                                                                                         | true                                                                    |
@@ -117,8 +120,9 @@ These are the environment variables you can set for the `impress-backend` contai
 | SEARCH_INDEXER_CLASS                            | Class of the backend for document indexation & search                                                                                                                      |                                                                         |
 | SEARCH_INDEXER_COUNTDOWN                        | Minimum debounce delay of indexation jobs (in seconds)                                                                                                                     | 1                                                                       |
 | SEARCH_INDEXER_QUERY_LIMIT                      | Maximum number of results expected from search endpoint                                                                                                                    | 50                                                                      |
-| SEARCH_INDEXER_SECRET                           | Token for indexation queries                                                                                                                                               |                                                                         |
-| SEARCH_INDEXER_URL                              | Find application endpoint for indexation                                                                                                                                   |                                                                         |
+| SEARCH_URL                        | Find application endpoint for search queries                                                                                                                               |                                                                         |
+| SEARCH_INDEXER_SECRET                           | Token required for indexation queries                                                                                                                                      |                                                                         |
+| INDEXING_URL                                    | Find application endpoint for indexation                                                                                                                                   |                                                                         |
 | SENTRY_DSN                                      | Sentry host                                                                                                                                                                |                                                                         |
 | SESSION_COOKIE_AGE                              | duration of the cookie session                                                                                                                                             | 60*60*12                                                                |
 | SIGNUP_NEW_USER_TO_MARKETING_EMAIL              | Register new user to the marketing onboarding. If True, see env LASUITE_MARKETING_* system                                                                                 | False                                                                   |
--- a/docs/resource_server.md
+++ b/docs/resource_server.md
@@ -0,0 +1,106 @@
+# Use Docs as a Resource Server
+
+Docs implements resource server, so it means it can be used from an external app to perform some operation using the dedicated API.
+
+> **Note:** This feature might be subject to future evolutions. The API endpoints, configuration options, and behavior may change in future versions.
+
+## Prerequisites
+
+In order to activate the resource server on Docs you need to setup the following environment variables
+
+```python
+OIDC_RESOURCE_SERVER_ENABLED=True
+OIDC_OP_URL=
+OIDC_OP_INTROSPECTION_ENDPOINT=
+OIDC_RS_CLIENT_ID=
+OIDC_RS_CLIENT_SECRET=
+OIDC_RS_AUDIENCE_CLAIM=
+OIDC_RS_ALLOWED_AUDIENCES=
+```
+
+It implements the resource server using `django-lasuite`, see the [documentation](https://github.com/suitenumerique/django-lasuite/blob/main/documentation/how-to-use-oidc-resource-server-backend.md)
+
+## Customise allowed routes
+
+Configure the `EXTERNAL_API` setting to control which routes and actions are available in the external API. Set it via the `EXTERNAL_API` environment variable (as JSON) or in Django settings.
+
+Default configuration:
+
+```python
+EXTERNAL_API = {
+    "documents": {
+        "enabled": True,
+        "actions": ["list", "retrieve", "create", "children"],
+    },
+    "document_access": {
+        "enabled": False,
+        "actions": [],
+    },
+    "document_invitation": {
+        "enabled": False,
+        "actions": [],
+    },
+    "users": {
+        "enabled": True,
+        "actions": ["get_me"],
+    },
+}
+```
+
+**Endpoints:**
+
+- `documents`: Controls `/external_api/v1.0/documents/`. Available actions: `list`, `retrieve`, `create`, `update`, `destroy`, `trashbin`, `children`,  `restore`, `move`,`versions_list`, `versions_detail`, `favorite_detail`,`link_configuration`, `attachment_upload`, `media_auth`, `ai_transform`, `ai_translate`, `ai_proxy`. Always allowed actions: `favorite_list`, `duplicate`.
+- `document_access`: `/external_api/v1.0/documents/{id}/accesses/`. Available actions: `list`, `retrieve`, `create`, `update`, `partial_update`, `destroy`
+- `document_invitation`: Controls `/external_api/v1.0/documents/{id}/invitations/`. Available actions: `list`, `retrieve`, `create`, `partial_update`, `destroy`
+- `users`: Controls `/external_api/v1.0/documents/`. Available actions: `get_me`.
+
+Each endpoint has `enabled` (boolean) and `actions` (list of allowed actions). Only actions explicitly listed are accessible.
+
+## Request Docs
+
+In order to request Docs from an external resource provider, you need to implement the basic setup of `django-lasuite` [Using the OIDC Authentication Backend to request a resource server](https://github.com/suitenumerique/django-lasuite/blob/main/documentation/how-to-use-oidc-call-to-resource-server.md)
+
+Then you can requests some routes that are available at `/external_api/v1.0/*`, here are some examples of what you can do.
+
+### Create a document
+
+Here is an example of a view that creates a document from a markdown file at the root level in Docs.
+
+```python
+    @method_decorator(refresh_oidc_access_token)
+    def create_document_from_markdown(self, request):
+        """
+        Create a new document from a Markdown file at root level.
+        """
+
+        # Get the access token from the session
+        access_token = request.session.get('oidc_access_token')
+
+        # Create a new document from a file
+        file_content = b"# Test Document\n\nThis is a test."
+        file = BytesIO(file_content)
+        file.name = "readme.md"
+
+        response = requests.post(
+            f"{settings.DOCS_API}/documents/",
+            {
+                "file": file,
+            },
+            format="multipart",
+        )
+
+        response.raise_for_status()
+        data = response.json()
+        return {"id": data["id"]}
+```
+
+### Get user information
+
+The same way, you can use the /me endpoint to get user information.
+
+```python
+response = requests.get(
+    "{settings.DOCS_API}/users/me/",
+    headers={"Authorization": f"Bearer {access_token}", "Content-Type": "application/json"},
+)
+```
--- a/docs/search.md
+++ b/docs/search.md
@@ -1,8 +1,8 @@
-# Setup the Find search for Impress
+# Setup Find search for Docs

-This configuration will enable the fulltext search feature for Docs :
- Each save on **core.Document** or **core.DocumentAccess** will trigger the indexer
- The `api/v1.0/documents/search/` will work as a proxy with the Find API for fulltext search.
+This configuration will enable Find searches:
+- Each save on **core.Document** or **core.DocumentAccess** will trigger the indexing of the document into Find.
+- The `api/v1.0/documents/search/` will be used as proxy for searching documents from Find indexes.

 ## Create an index service for Docs

@@ -15,27 +15,38 @@ See [how-to-use-indexer.md](how-to-use-indexer.md) for details.

 ## Configure settings of Docs

-Add those Django settings the Docs application to enable the feature.
+Find uses a service provider authentication for indexing and a OIDC authentication for searching.
+
+Add those Django settings to the Docs application to enable the feature.

 ```shell
 SEARCH_INDEXER_CLASS="core.services.search_indexers.FindDocumentIndexer"
+
 SEARCH_INDEXER_COUNTDOWN=10  # Debounce delay in seconds for the indexer calls.
+SEARCH_INDEXER_QUERY_LIMIT=50 # Maximum number of results expected from the search endpoint

-# The token from service "docs" of Find application (development).
+INDEXING_URL="http://find:8000/api/v1.0/documents/index/"
+SEARCH_URL="http://find:8000/api/v1.0/documents/search/"
+
+# Service provider authentication
 SEARCH_INDEXER_SECRET="find-api-key-for-docs-with-exactly-50-chars-length"
-SEARCH_INDEXER_URL="http://find:8000/api/v1.0/documents/index/"

-# Search endpoint. Uses the OIDC token for authentication
-SEARCH_INDEXER_QUERY_URL="http://find:8000/api/v1.0/documents/search/"
-# Maximum number of results expected from the search endpoint
-SEARCH_INDEXER_QUERY_LIMIT=50
+# OIDC authentication
+OIDC_STORE_ACCESS_TOKEN=True  # Store the access token in the session
+OIDC_STORE_REFRESH_TOKEN=True  # Store the encrypted refresh token in the session
+OIDC_STORE_REFRESH_TOKEN_KEY="<your-32-byte-encryption-key==>"
 ```

-We also need to enable the **OIDC Token** refresh or the authentication will fail quickly.
+`OIDC_STORE_REFRESH_TOKEN_KEY` must be a valid Fernet key (32 url-safe base64-encoded bytes).
+To create one, use the `bin/generate-oidc-store-refresh-token-key.sh` command.

-```shell
-# Store OIDC tokens in the session
-OIDC_STORE_ACCESS_TOKEN = True  # Store the access token in the session
-OIDC_STORE_REFRESH_TOKEN = True  # Store the encrypted refresh token in the session
-OIDC_STORE_REFRESH_TOKEN_KEY = "your-32-byte-encryption-key=="  # Must be a valid Fernet key (32 url-safe base64-encoded bytes)
-```
+## Feature flags
+
+The Find search integration is controlled by two feature flags:
+- `flag_find_hybrid_search`
+- `flag_find_full_text_search`
+
+If a user has both flags activated the most advanced search is used (hybrid > full text > title).
+A user with no flag will default to the basic title search.
+
+Feature flags can be activated through the admin interface. 
--- a/env.d/development/common
+++ b/env.d/development/common
@@ -51,9 +51,18 @@ LOGOUT_REDIRECT_URL=http://localhost:3000
 OIDC_REDIRECT_ALLOWED_HOSTS="localhost:8083,localhost:3000"
 OIDC_AUTH_REQUEST_EXTRA_PARAMS={"acr_values": "eidas1"}

+# Resource Server Backend
+OIDC_OP_URL=http://localhost:8083/realms/docs
+OIDC_OP_INTROSPECTION_ENDPOINT = http://nginx:8083/realms/docs/protocol/openid-connect/token/introspect
+OIDC_RESOURCE_SERVER_ENABLED=False
+OIDC_RS_CLIENT_ID=docs
+OIDC_RS_CLIENT_SECRET=ThisIsAnExampleKeyForDevPurposeOnly
+OIDC_RS_AUDIENCE_CLAIM="client_id"  # The claim used to identify the audience
+OIDC_RS_ALLOWED_AUDIENCES=""
+
 # Store OIDC tokens in the session. Needed by search/ endpoint.
-# OIDC_STORE_ACCESS_TOKEN = True
-# OIDC_STORE_REFRESH_TOKEN = True # Store the encrypted refresh token in the session.
+# OIDC_STORE_ACCESS_TOKEN=True
+# OIDC_STORE_REFRESH_TOKEN=True # Store the encrypted refresh token in the session.

 # Must be a valid Fernet key (32 url-safe base64-encoded bytes)
 # To create one, use the bin/fernetkey command.
@@ -87,8 +96,9 @@ DOCSPEC_API_URL=http://docspec:4000/conversion
 # Theme customization
 THEME_CUSTOMIZATION_CACHE_TIMEOUT=15

-# Indexer (disabled)
-# SEARCH_INDEXER_CLASS="core.services.search_indexers.SearchIndexer"
+# Indexer (disabled by default)
+# SEARCH_INDEXER_CLASS=core.services.search_indexers.FindDocumentIndexer
 SEARCH_INDEXER_SECRET=find-api-key-for-docs-with-exactly-50-chars-length  # Key generated by create_demo in Find app.
-SEARCH_INDEXER_URL="http://find:8000/api/v1.0/documents/index/"
-SEARCH_INDEXER_QUERY_URL="http://find:8000/api/v1.0/documents/search/"
+INDEXING_URL=http://find:8000/api/v1.0/documents/index/
+SEARCH_URL=http://find:8000/api/v1.0/documents/search/
+SEARCH_INDEXER_QUERY_LIMIT=50
--- a/env.d/development/common.test
+++ b/env.d/development/common.test
@@ -0,0 +1,7 @@
+# Test environment configuration for running tests without docker
+# Base configuration is loaded from 'common' file
+
+DJANGO_SETTINGS_MODULE=impress.settings
+DJANGO_CONFIGURATION=Test
+DB_PORT=15432
+AWS_S3_ENDPOINT_URL=http://localhost:9000
--- a/renovate.json
+++ b/renovate.json
@@ -60,10 +60,13 @@
      "groupName": "ignored js dependencies",
      "matchManagers": ["npm"],
      "matchPackageNames": [
+        "@react-pdf/renderer",
        "fetch-mock",
        "node",
        "node-fetch",
        "react-resizable-panels",
+        "stylelint",
+        "stylelint-config-standard",
        "workbox-webpack-plugin"
      ]
    }
--- a/src/backend/core/api/filters.py
+++ b/src/backend/core/api/filters.py
@@ -47,10 +47,13 @@ class DocumentFilter(django_filters.FilterSet):
    title = AccentInsensitiveCharFilter(
        field_name="title", lookup_expr="unaccent__icontains", label=_("Title")
    )
+    q = AccentInsensitiveCharFilter(
+        field_name="title", lookup_expr="unaccent__icontains", label=_("Search")
+    )

    class Meta:
        model = models.Document
-        fields = ["title"]
+        fields = ["title", "q"]


 class ListDocumentFilter(DocumentFilter):
@@ -70,7 +73,7 @@ class ListDocumentFilter(DocumentFilter):

    class Meta:
        model = models.Document
-        fields = ["is_creator_me", "is_favorite", "title"]
+        fields = ["is_creator_me", "is_favorite", "title", "q"]

    # pylint: disable=unused-argument
    def filter_is_creator_me(self, queryset, name, value):
--- a/src/backend/core/api/serializers.py
+++ b/src/backend/core/api/serializers.py
@@ -300,6 +300,15 @@ class DocumentSerializer(ListDocumentSerializer):

        return file

+    def update(self, instance, validated_data):
+        """
+        When no data is sent on the update, skip making the update in the database and return
+        directly the instance unchanged.
+        """
+        if not validated_data:
+            return instance  # No data provided, skip the update
+        return super().update(instance, validated_data)
+
    def save(self, **kwargs):
        """
        Process the content field to extract attachment keys and update the document's
@@ -1004,8 +1013,5 @@ class ThreadSerializer(serializers.ModelSerializer):
 class SearchDocumentSerializer(serializers.Serializer):
    """Serializer for fulltext search requests through Find application"""

-    q = serializers.CharField(required=True, allow_blank=False, trim_whitespace=True)
-    page_size = serializers.IntegerField(
-        required=False, min_value=1, max_value=50, default=20
-    )
-    page = serializers.IntegerField(required=False, min_value=1, default=1)
+    q = serializers.CharField(required=True, allow_blank=True, trim_whitespace=True)
+    path = serializers.CharField(required=False, allow_blank=False)
--- a/src/backend/core/api/utils.py
+++ b/src/backend/core/api/utils.py
@@ -6,8 +6,10 @@ from abc import ABC, abstractmethod
 from django.conf import settings
 from django.core.cache import cache
 from django.core.files.storage import default_storage
+from django.utils.decorators import method_decorator

 import botocore
+from lasuite.oidc_login.decorators import refresh_oidc_access_token
 from rest_framework.throttling import BaseThrottle


@@ -91,6 +93,19 @@ def generate_s3_authorization_headers(key):
    return request


+def conditional_refresh_oidc_token(func):
+    """
+    Conditionally apply refresh_oidc_access_token decorator.
+
+    The decorator is only applied if OIDC_STORE_REFRESH_TOKEN is True, meaning
+    we can actually refresh something. Broader settings checks are done in settings.py.
+    """
+    if settings.OIDC_STORE_REFRESH_TOKEN:
+        return method_decorator(refresh_oidc_access_token)(func)
+
+    return func
+
+
 class AIBaseRateThrottle(BaseThrottle, ABC):
    """Base throttle class for AI-related rate limiting with backoff."""

--- a/src/backend/core/api/viewsets.py
+++ b/src/backend/core/api/viewsets.py
@@ -25,7 +25,6 @@ from django.db.models.functions import Greatest, Left, Length
 from django.http import Http404, StreamingHttpResponse
 from django.urls import reverse
 from django.utils import timezone
-from django.utils.decorators import method_decorator
 from django.utils.functional import cached_property
 from django.utils.http import content_disposition_header
 from django.utils.text import capfirst, slugify
@@ -33,11 +32,11 @@ from django.utils.translation import gettext_lazy as _

 import requests
 import rest_framework as drf
+import waffle
 from botocore.exceptions import ClientError
 from csp.constants import NONE
 from csp.decorators import csp_update
 from lasuite.malware_detection import malware_detection
-from lasuite.oidc_login.decorators import refresh_oidc_access_token
 from lasuite.tools.email import get_domain_from_email
 from pydantic import ValidationError as PydanticValidationError
 from rest_framework import filters, status, viewsets
@@ -71,8 +70,13 @@ from core.utils import (
    users_sharing_documents_with,
 )

+from ..enums import FeatureFlag, SearchType
 from . import permissions, serializers, utils
-from .filters import DocumentFilter, ListDocumentFilter, UserSearchFilter
+from .filters import (
+    DocumentFilter,
+    ListDocumentFilter,
+    UserSearchFilter,
+)
 from .throttling import (
    DocumentThrottle,
    UserListThrottleBurst,
@@ -451,36 +455,45 @@ class DocumentViewSet(

    ### Additional Actions:
    1. **Trashbin**: List soft deleted documents for a document owner
-        Example: GET /documents/{id}/trashbin/
+        Example: GET /documents/trashbin/

-    2. **Children**: List or create child documents.
+    2. **Restore**: Restore a soft deleted document.
+        Example: POST /documents/{id}/restore/
+
+    3. **Move**: Move a document to another parent document.
+        Example: POST /documents/{id}/move/
+
+    4. **Duplicate**: Duplicate a document.
+        Example: POST /documents/{id}/duplicate/
+
+    5. **Children**: List or create child documents.
        Example: GET, POST /documents/{id}/children/

-    3. **Versions List**: Retrieve version history of a document.
+    6. **Versions List**: Retrieve version history of a document.
        Example: GET /documents/{id}/versions/

-    4. **Version Detail**: Get or delete a specific document version.
+    7. **Version Detail**: Get or delete a specific document version.
        Example: GET, DELETE /documents/{id}/versions/{version_id}/

-    5. **Favorite**: Get list of favorite documents for a user. Mark or unmark
+    8. **Favorite**: Get list of favorite documents for a user. Mark or unmark
        a document as favorite.
        Examples:
-        - GET /documents/favorite/
+        - GET /documents/favorite_list/
        - POST, DELETE /documents/{id}/favorite/

-    6. **Create for Owner**: Create a document via server-to-server on behalf of a user.
+    9. **Create for Owner**: Create a document via server-to-server on behalf of a user.
        Example: POST /documents/create-for-owner/

-    7. **Link Configuration**: Update document link configuration.
+    10. **Link Configuration**: Update document link configuration.
        Example: PUT /documents/{id}/link-configuration/

-    8. **Attachment Upload**: Upload a file attachment for the document.
+    11. **Attachment Upload**: Upload a file attachment for the document.
        Example: POST /documents/{id}/attachment-upload/

-    9. **Media Auth**: Authorize access to document media.
+    12. **Media Auth**: Authorize access to document media.
        Example: GET /documents/media-auth/

-    10. **AI Transform**: Apply a transformation action on a piece of text with AI.
+    13. **AI Transform**: Apply a transformation action on a piece of text with AI.
        Example: POST /documents/{id}/ai-transform/
        Expected data:
        - text (str): The input text.
@@ -488,7 +501,7 @@ class DocumentViewSet(
        Returns: JSON response with the processed text.
        Throttled by: AIDocumentRateThrottle, AIUserRateThrottle.

-    11. **AI Translate**: Translate a piece of text with AI.
+    14. **AI Translate**: Translate a piece of text with AI.
        Example: POST /documents/{id}/ai-translate/
        Expected data:
        - text (str): The input text.
@@ -496,7 +509,7 @@ class DocumentViewSet(
        Returns: JSON response with the translated text.
        Throttled by: AIDocumentRateThrottle, AIUserRateThrottle.

-    12. **AI Proxy**: Proxy an AI request to an external AI service.
+    15. **AI Proxy**: Proxy an AI request to an external AI service.
        Example: POST /api/v1.0/documents/<resource_id>/ai-proxy

    ### Ordering: created_at, updated_at, is_favorite, title
@@ -604,20 +617,18 @@ class DocumentViewSet(
        It performs early filtering on model fields, annotates user roles, and removes
        descendant documents to keep only the highest ancestors readable by the current user.
        """
-        user = self.request.user
+        user = request.user

        # Not calling filter_queryset. We do our own cooking.
        queryset = self.get_queryset()

-        filterset = ListDocumentFilter(
-            self.request.GET, queryset=queryset, request=self.request
-        )
+        filterset = ListDocumentFilter(request.GET, queryset=queryset, request=request)
        if not filterset.is_valid():
            raise drf.exceptions.ValidationError(filterset.errors)
        filter_data = filterset.form.cleaned_data

        # Filter as early as possible on fields that are available on the model
-        for field in ["is_creator_me", "title"]:
+        for field in ["is_creator_me", "title", "q"]:
            queryset = filterset.filters[field].filter(queryset, filter_data[field])

        queryset = queryset.annotate_user_roles(user)
@@ -663,17 +674,8 @@ class DocumentViewSet(

        return drf.response.Response(serializer.data)

-    @transaction.atomic
    def perform_create(self, serializer):
        """Set the current user as creator and owner of the newly created object."""
-
-        # locks the table to ensure safe concurrent access
-        with connection.cursor() as cursor:
-            cursor.execute(
-                f'LOCK TABLE "{models.Document._meta.db_table}" '  # noqa: SLF001
-                "IN SHARE ROW EXCLUSIVE MODE;"
-            )
-
        # Remove file from validated_data as it's not a model field
        # Process it if present
        uploaded_file = serializer.validated_data.pop("file", None)
@@ -691,15 +693,25 @@ class DocumentViewSet(
                )
                serializer.validated_data["content"] = converted_content
                serializer.validated_data["title"] = uploaded_file.name
+                logger.info("conversion ended successfully")
            except ConversionError as err:
+                logger.error("could not convert file content with error: %s", err)
                raise drf.exceptions.ValidationError(
                    {"file": ["Could not convert file content"]}
                ) from err

-        obj = models.Document.add_root(
-            creator=self.request.user,
-            **serializer.validated_data,
-        )
+        with transaction.atomic():
+            # locks the table to ensure safe concurrent access
+            with connection.cursor() as cursor:
+                cursor.execute(
+                    f'LOCK TABLE "{models.Document._meta.db_table}" '  # noqa: SLF001
+                    "IN SHARE ROW EXCLUSIVE MODE;"
+                )
+
+            obj = models.Document.add_root(
+                creator=self.request.user,
+                **serializer.validated_data,
+            )
        serializer.instance = obj
        models.DocumentAccess.objects.create(
            document=obj,
@@ -816,6 +828,7 @@ class DocumentViewSet(

        queryset = self.queryset.filter(path_list)
        queryset = queryset.filter(id__in=favorite_documents_ids)
+        queryset = queryset.filter(ancestors_deleted_at__isnull=True)
        queryset = queryset.annotate_user_roles(user)
        queryset = queryset.annotate(
            is_favorite=db.Value(True, output_field=db.BooleanField())
@@ -1084,7 +1097,7 @@ class DocumentViewSet(
        filter_data = filterset.form.cleaned_data

        # Filter as early as possible on fields that are available on the model
-        for field in ["is_creator_me", "title"]:
+        for field in ["is_creator_me", "title", "q"]:
            queryset = filterset.filters[field].filter(queryset, filter_data[field])

        queryset = queryset.annotate_user_roles(user)
@@ -1107,7 +1120,11 @@ class DocumentViewSet(
        ordering=["path"],
    )
    def descendants(self, request, *args, **kwargs):
-        """Handle listing descendants of a document"""
+        """Deprecated endpoint to list descendants of a document."""
+        logger.warning(
+            "The 'descendants' endpoint is deprecated and will be removed in a future release. "
+            "The search endpoint should be used for all document retrieval use cases."
+        )
        document = self.get_object()

        queryset = document.get_descendants().filter(ancestors_deleted_at__isnull=True)
@@ -1344,7 +1361,7 @@ class DocumentViewSet(
            )
        else:
            duplicated_document = document_to_duplicate.add_sibling(
-                "right",
+                "last-sibling",
                title=title,
                content=base64_yjs_content,
                attachments=attachments,
@@ -1397,82 +1414,122 @@ class DocumentViewSet(

        return duplicated_document

-    def _search_simple(self, request, text):
-        """
-        Returns a queryset filtered by the content of the document title
-        """
-        # As the 'list' view we get a prefiltered queryset (deleted docs are excluded)
-        queryset = self.get_queryset()
-        filterset = DocumentFilter({"title": text}, queryset=queryset)
-
-        if not filterset.is_valid():
-            raise drf.exceptions.ValidationError(filterset.errors)
-
-        queryset = filterset.filter_queryset(queryset)
-
-        return self.get_response_for_queryset(
-            queryset.order_by("-updated_at"),
-            context={
-                "request": request,
-            },
-        )
-
-    def _search_fulltext(self, indexer, request, params):
-        """
-        Returns a queryset from the results the fulltext search of Find
-        """
-        access_token = request.session.get("oidc_access_token")
-        user = request.user
-        text = params.validated_data["q"]
-        queryset = models.Document.objects.all()
-
-        # Retrieve the documents ids from Find.
-        results = indexer.search(
-            text=text,
-            token=access_token,
-            visited=get_visited_document_ids_of(queryset, user),
-        )
-
-        docs_by_uuid = {str(d.pk): d for d in queryset.filter(pk__in=results)}
-        ordered_docs = [docs_by_uuid[id] for id in results]
-
-        page = self.paginate_queryset(ordered_docs)
-
-        serializer = self.get_serializer(
-            page if page else ordered_docs,
-            many=True,
-            context={
-                "request": request,
-            },
-        )
-
-        return self.get_paginated_response(serializer.data)
-
    @drf.decorators.action(detail=False, methods=["get"], url_path="search")
-    @method_decorator(refresh_oidc_access_token)
+    @utils.conditional_refresh_oidc_token
    def search(self, request, *args, **kwargs):
        """
-        Returns a DRF response containing the filtered, annotated and ordered document list.
+        Returns an ordered list of documents best matching the search query parameter 'q'.

-        Applies filtering based on request parameter 'q' from `SearchDocumentSerializer`.
-        Depending of the configuration it can be:
-         - A fulltext search through the opensearch indexation app "find" if the backend is
-           enabled (see SEARCH_INDEXER_CLASS)
-         - A filtering by the model field 'title'.
-
-        The ordering is always by the most recent first.
+        It depends on a search configurable Search Indexer. If no Search Indexer is configured
+        or if it is not reachable, the function falls back to a basic title search.
        """
        params = serializers.SearchDocumentSerializer(data=request.query_params)
        params.is_valid(raise_exception=True)
+        search_type = self._get_search_type()
+        if search_type == SearchType.TITLE:
+            return self._title_search(request, params.validated_data, *args, **kwargs)

        indexer = get_document_indexer()
+        if indexer is None:
+            # fallback on title search if the indexer is not configured
+            return self._title_search(request, params.validated_data, *args, **kwargs)

-        if indexer:
-            return self._search_fulltext(indexer, request, params=params)
+        try:
+            return self._search_with_indexer(
+                indexer, request, params=params, search_type=search_type
+            )
+        except requests.exceptions.RequestException as e:
+            logger.error("Error while searching documents with indexer: %s", e)
+            # fallback on title search if the indexer is not reached
+            return self._title_search(request, params.validated_data, *args, **kwargs)

-        # The indexer is not configured, we fallback on a simple icontains filter by the
-        # model field 'title'.
-        return self._search_simple(request, text=params.validated_data["q"])
+    def _get_search_type(self) -> SearchType:
+        """
+        Returns the search type to use for the search endpoint based on feature flags.
+        If a user has both flags activated the most advanced search is used
+        (HYBRID > FULL_TEXT > TITLE).
+        A user with no flag will default to the basic title search.
+        """
+        if waffle.flag_is_active(self.request, FeatureFlag.FLAG_FIND_HYBRID_SEARCH):
+            return SearchType.HYBRID
+        if waffle.flag_is_active(self.request, FeatureFlag.FLAG_FIND_FULL_TEXT_SEARCH):
+            return SearchType.FULL_TEXT
+        return SearchType.TITLE
+
+    @staticmethod
+    def _search_with_indexer(indexer, request, params, search_type):
+        """
+        Returns a list of documents matching the query (q) according to the configured indexer.
+        """
+        queryset = models.Document.objects.all()
+
+        results = indexer.search(
+            q=params.validated_data["q"],
+            search_type=search_type,
+            token=request.session.get("oidc_access_token"),
+            path=(
+                params.validated_data["path"]
+                if "path" in params.validated_data
+                else None
+            ),
+            visited=get_visited_document_ids_of(queryset, request.user),
+        )
+
+        return drf_response.Response(
+            {
+                "count": len(results),
+                "next": None,
+                "previous": None,
+                "results": results,
+            }
+        )
+
+    def _title_search(self, request, validated_data, *args, **kwargs):
+        """
+        Fallback search method when no indexer is configured.
+        Only searches in the title field of documents.
+        """
+        if not validated_data.get("path"):
+            return self.list(request, *args, **kwargs)
+
+        return self._list_descendants(request, validated_data)
+
+    def _list_descendants(self, request, validated_data):
+        """
+        List all documents whose path starts with the provided path parameter.
+        Includes the parent document itself.
+        Used internally by the search endpoint when path filtering is requested.
+        """
+        # Get parent document without access filtering
+        parent_path = validated_data["path"]
+        try:
+            parent = models.Document.objects.annotate_user_roles(request.user).get(
+                path=parent_path
+            )
+        except models.Document.DoesNotExist as exc:
+            raise drf.exceptions.NotFound("Document not found from path.") from exc
+
+        abilities = parent.get_abilities(request.user)
+        if not abilities.get("search"):
+            raise drf.exceptions.PermissionDenied(
+                "You do not have permission to search within this document."
+            )
+
+        # Get descendants and include the parent, ordered by path
+        queryset = (
+            parent.get_descendants(include_self=True)
+            .filter(ancestors_deleted_at__isnull=True)
+            .order_by("path")
+        )
+        queryset = self.filter_queryset(queryset)
+
+        # filter by title
+        filterset = DocumentFilter(request.GET, queryset=queryset)
+        if not filterset.is_valid():
+            raise drf.exceptions.ValidationError(filterset.errors)
+
+        queryset = filterset.qs
+        return self.get_response_for_queryset(queryset)

    @drf.decorators.action(detail=True, methods=["get"], url_path="versions")
    def versions_list(self, request, *args, **kwargs):
--- a/src/backend/core/enums.py
+++ b/src/backend/core/enums.py
@@ -3,7 +3,7 @@ Core application enums declaration
 """

 import re
-from enum import StrEnum
+from enum import Enum, StrEnum

 from django.conf import global_settings, settings
 from django.db import models
@@ -46,3 +46,24 @@ class DocumentAttachmentStatus(StrEnum):

    PROCESSING = "processing"
    READY = "ready"
+
+
+class SearchType(str, Enum):
+    """
+    Defines the possible search types for a document search query.
+        - TITLE: DRF based search in the title of the documents only.
+        - HYBRID and FULL_TEXT: more advanced search based on Find indexer.
+    """
+
+    TITLE = "title"
+    HYBRID = "hybrid"
+    FULL_TEXT = "full-text"
+
+
+class FeatureFlag(str, Enum):
+    """
+    Defines the possible feature flags for the application.
+    """
+
+    FLAG_FIND_HYBRID_SEARCH = "flag_find_hybrid_search"
+    FLAG_FIND_FULL_TEXT_SEARCH = "flag_find_full_text_search"
--- a/src/backend/core/external_api/permissions.py
+++ b/src/backend/core/external_api/permissions.py
@@ -0,0 +1,41 @@
+"""Resource Server Permissions for the Docs app."""
+
+from django.conf import settings
+
+from lasuite.oidc_resource_server.authentication import ResourceServerAuthentication
+from rest_framework import permissions
+
+
+class ResourceServerClientPermission(permissions.BasePermission):
+    """
+    Permission class for resource server views.
+    This provides a way to open the resource server views to a limited set of
+    Service Providers.
+    Note: we might add a more complex permission system in the future, based on
+    the Service Provider ID and the requested scopes.
+    """
+
+    def has_permission(self, request, view):
+        """
+        Check if the user is authenticated and the token introspection
+        provides an authorized Service Provider.
+        """
+        if not isinstance(
+            request.successful_authenticator, ResourceServerAuthentication
+        ):
+            # Not a resource server request
+            return False
+
+        # Check if the user is authenticated
+        if not request.user.is_authenticated:
+            return False
+        if (
+            hasattr(view, "resource_server_actions")
+            and view.action not in view.resource_server_actions
+        ):
+            return False
+
+        # When used as a resource server, the request has a token audience
+        return (
+            request.resource_server_token_audience in settings.OIDC_RS_ALLOWED_AUDIENCES
+        )
--- a/src/backend/core/external_api/viewsets.py
+++ b/src/backend/core/external_api/viewsets.py
@@ -0,0 +1,91 @@
+"""Resource Server Viewsets for the Docs app."""
+
+from django.conf import settings
+
+from lasuite.oidc_resource_server.authentication import ResourceServerAuthentication
+
+from core.api.permissions import (
+    CanCreateInvitationPermission,
+    DocumentPermission,
+    IsSelf,
+    ResourceAccessPermission,
+)
+from core.api.viewsets import (
+    DocumentAccessViewSet,
+    DocumentViewSet,
+    InvitationViewset,
+    UserViewSet,
+)
+from core.external_api.permissions import ResourceServerClientPermission
+
+# pylint: disable=too-many-ancestors
+
+
+class ResourceServerRestrictionMixin:
+    """
+    Mixin for Resource Server Viewsets to provide shortcut to get
+    configured actions for a given resource.
+    """
+
+    def _get_resource_server_actions(self, resource_name):
+        """Get resource_server_actions from settings."""
+        external_api_config = settings.EXTERNAL_API.get(resource_name, {})
+        return list(external_api_config.get("actions", []))
+
+
+class ResourceServerDocumentViewSet(ResourceServerRestrictionMixin, DocumentViewSet):
+    """Resource Server Viewset for Documents."""
+
+    authentication_classes = [ResourceServerAuthentication]
+
+    permission_classes = [ResourceServerClientPermission & DocumentPermission]  # type: ignore
+
+    @property
+    def resource_server_actions(self):
+        """Build resource_server_actions from settings."""
+        return self._get_resource_server_actions("documents")
+
+
+class ResourceServerDocumentAccessViewSet(
+    ResourceServerRestrictionMixin, DocumentAccessViewSet
+):
+    """Resource Server Viewset for DocumentAccess."""
+
+    authentication_classes = [ResourceServerAuthentication]
+
+    permission_classes = [ResourceServerClientPermission & ResourceAccessPermission]  # type: ignore
+
+    @property
+    def resource_server_actions(self):
+        """Get resource_server_actions from settings."""
+        return self._get_resource_server_actions("document_access")
+
+
+class ResourceServerInvitationViewSet(
+    ResourceServerRestrictionMixin, InvitationViewset
+):
+    """Resource Server Viewset for Invitations."""
+
+    authentication_classes = [ResourceServerAuthentication]
+
+    permission_classes = [
+        ResourceServerClientPermission & CanCreateInvitationPermission
+    ]
+
+    @property
+    def resource_server_actions(self):
+        """Get resource_server_actions from settings."""
+        return self._get_resource_server_actions("document_invitation")
+
+
+class ResourceServerUserViewSet(ResourceServerRestrictionMixin, UserViewSet):
+    """Resource Server Viewset for User."""
+
+    authentication_classes = [ResourceServerAuthentication]
+
+    permission_classes = [ResourceServerClientPermission & IsSelf]  # type: ignore
+
+    @property
+    def resource_server_actions(self):
+        """Get resource_server_actions from settings."""
+        return self._get_resource_server_actions("users")
--- a/src/backend/core/models.py
+++ b/src/backend/core/models.py
@@ -267,6 +267,16 @@ class User(AbstractBaseUser, BaseModel, auth_models.PermissionsMixin):
        if settings.USER_ONBOARDING_SANDBOX_DOCUMENT:
            # transaction.atomic is used in a context manager to avoid a transaction if
            # the settings USER_ONBOARDING_SANDBOX_DOCUMENT is unused
+            sandbox_id = settings.USER_ONBOARDING_SANDBOX_DOCUMENT
+            try:
+                template_document = Document.objects.get(id=sandbox_id)
+            except Document.DoesNotExist:
+                logger.warning(
+                    "Onboarding sandbox document with id %s does not exist. Skipping.",
+                    sandbox_id,
+                )
+                return
+
            with transaction.atomic():
                # locks the table to ensure safe concurrent access
                with connection.cursor() as cursor:
@@ -274,19 +284,7 @@ class User(AbstractBaseUser, BaseModel, auth_models.PermissionsMixin):
                        f'LOCK TABLE "{Document._meta.db_table}" '  # noqa: SLF001
                        "IN SHARE ROW EXCLUSIVE MODE;"
                    )
-
-                sandbox_id = settings.USER_ONBOARDING_SANDBOX_DOCUMENT
-                try:
-                    template_document = Document.objects.get(id=sandbox_id)
-                except Document.DoesNotExist:
-                    logger.warning(
-                        "Onboarding sandbox document with id %s does not exist. Skipping.",
-                        sandbox_id,
-                    )
-                    return
-
-                sandbox_document = template_document.add_sibling(
-                    "right",
+                sandbox_document = Document.add_root(
                    title=template_document.title,
                    content=template_document.content,
                    attachments=template_document.attachments,
@@ -1330,6 +1328,7 @@ class Document(MP_Node, BaseModel):
            "versions_destroy": is_owner_or_admin,
            "versions_list": has_access_role,
            "versions_retrieve": has_access_role,
+            "search": can_get,
        }

    def send_email(self, subject, emails, context=None, language=None):
--- a/src/backend/core/services/converter_services.py
+++ b/src/backend/core/services/converter_services.py
@@ -45,6 +45,8 @@ class Converter:
    def convert(self, data, content_type, accept):
        """Convert input into other formats using external microservices."""

+        logger.info("converting content from %s to %s", content_type, accept)
+
        if content_type == mime_types.DOCX and accept == mime_types.YJS:
            blocknote_data = self.docspec.convert(
                data, mime_types.DOCX, mime_types.BLOCKNOTE
--- a/src/backend/core/services/search_indexers.py
+++ b/src/backend/core/services/search_indexers.py
@@ -8,12 +8,12 @@ from functools import cache
 from django.conf import settings
 from django.contrib.auth.models import AnonymousUser
 from django.core.exceptions import ImproperlyConfigured
-from django.db.models import Subquery
 from django.utils.module_loading import import_string

 import requests

 from core import models, utils
+from core.enums import SearchType

 logger = logging.getLogger(__name__)

@@ -69,7 +69,7 @@ def get_batch_accesses_by_users_and_teams(paths):
    return dict(access_by_document_path)


-def get_visited_document_ids_of(queryset, user):
+def get_visited_document_ids_of(queryset, user) -> tuple[str, ...]:
    """
    Returns the ids of the documents that have a linktrace to the user and NOT owned.
    It will be use to limit the opensearch responses to the public documents already
@@ -78,7 +78,9 @@ def get_visited_document_ids_of(queryset, user):
    if isinstance(user, AnonymousUser):
        return []

-    qs = models.LinkTrace.objects.filter(user=user)
+    visited_ids = models.LinkTrace.objects.filter(user=user).values_list(
+        "document_id", flat=True
+    )

    docs = (
        queryset.exclude(accesses__user=user)
@@ -86,12 +88,12 @@ def get_visited_document_ids_of(queryset, user):
            deleted_at__isnull=True,
            ancestors_deleted_at__isnull=True,
        )
-        .filter(pk__in=Subquery(qs.values("document_id")))
+        .filter(pk__in=visited_ids)
        .order_by("pk")
        .distinct("pk")
    )

-    return [str(id) for id in docs.values_list("pk", flat=True)]
+    return tuple(str(id) for id in docs.values_list("pk", flat=True))


 class BaseDocumentIndexer(ABC):
@@ -107,15 +109,13 @@ class BaseDocumentIndexer(ABC):
        Initialize the indexer.
        """
        self.batch_size = settings.SEARCH_INDEXER_BATCH_SIZE
-        self.indexer_url = settings.SEARCH_INDEXER_URL
+        self.indexer_url = settings.INDEXING_URL
        self.indexer_secret = settings.SEARCH_INDEXER_SECRET
-        self.search_url = settings.SEARCH_INDEXER_QUERY_URL
+        self.search_url = settings.SEARCH_URL
        self.search_limit = settings.SEARCH_INDEXER_QUERY_LIMIT

        if not self.indexer_url:
-            raise ImproperlyConfigured(
-                "SEARCH_INDEXER_URL must be set in Django settings."
-            )
+            raise ImproperlyConfigured("INDEXING_URL must be set in Django settings.")

        if not self.indexer_secret:
            raise ImproperlyConfigured(
@@ -123,9 +123,7 @@ class BaseDocumentIndexer(ABC):
            )

        if not self.search_url:
-            raise ImproperlyConfigured(
-                "SEARCH_INDEXER_QUERY_URL must be set in Django settings."
-            )
+            raise ImproperlyConfigured("SEARCH_URL must be set in Django settings.")

    def index(self, queryset=None, batch_size=None):
        """
@@ -184,8 +182,16 @@ class BaseDocumentIndexer(ABC):
        Must be implemented by subclasses.
        """

-    # pylint: disable-next=too-many-arguments,too-many-positional-arguments
-    def search(self, text, token, visited=(), nb_results=None):
+    # pylint: disable=too-many-arguments, too-many-positional-arguments
+    def search(  # noqa : PLR0913
+        self,
+        q: str,
+        token: str,
+        visited: tuple[str, ...] = (),
+        nb_results: int = None,
+        path: str = None,
+        search_type: SearchType = None,
+    ):
        """
        Search for documents in Find app.
        Ensure the same default ordering as "Docs" list : -updated_at
@@ -193,7 +199,7 @@ class BaseDocumentIndexer(ABC):
        Returns ids of the documents

        Args:
-            text (str): Text search content.
+            q (str): user query.
            token (str): OIDC Authentication token.
            visited (list, optional):
                List of ids of active public documents with LinkTrace
@@ -201,21 +207,28 @@ class BaseDocumentIndexer(ABC):
            nb_results (int, optional):
                The number of results to return.
                Defaults to 50 if not specified.
+            path (str, optional):
+                The parent path to search descendants of.
+            search_type (SearchType, optional):
+                Type of search to perform. Can be SearchType.HYBRID or SearchType.FULL_TEXT.
+                If None, the backend search service will use its default search behavior.
        """
        nb_results = nb_results or self.search_limit
-        response = self.search_query(
+        results = self.search_query(
            data={
-                "q": text,
+                "q": q,
                "visited": visited,
                "services": ["docs"],
                "nb_results": nb_results,
                "order_by": "updated_at",
                "order_direction": "desc",
+                "path": path,
+                "search_type": search_type,
            },
            token=token,
        )

-        return [d["_id"] for d in response]
+        return results

    @abstractmethod
    def search_query(self, data, token) -> dict:
@@ -226,11 +239,72 @@ class BaseDocumentIndexer(ABC):
        """


-class SearchIndexer(BaseDocumentIndexer):
+class FindDocumentIndexer(BaseDocumentIndexer):
    """
-    Document indexer that pushes documents to La Suite Find app.
+    Document indexer that indexes and searches documents with La Suite Find app.
    """

+    # pylint: disable=too-many-arguments, too-many-positional-arguments
+    def search(  # noqa : PLR0913
+        self,
+        q: str,
+        token: str,
+        visited: tuple[()] = (),
+        nb_results: int = None,
+        path: str = None,
+        search_type: SearchType = None,
+    ):
+        """format Find search results"""
+        search_results = super().search(
+            q=q,
+            token=token,
+            visited=visited,
+            nb_results=nb_results,
+            path=path,
+            search_type=search_type,
+        )
+        return [
+            {
+                **hit["_source"],
+                "id": hit["_id"],
+                "title": self.get_title(hit["_source"]),
+            }
+            for hit in search_results
+        ]
+
+    @staticmethod
+    def get_title(source):
+        """
+        Find returns the titles with an extension depending on the language.
+        This function extracts the title in a generic way.
+
+        Handles multiple cases:
+        - Localized title fields like "title.<some_extension>"
+        - Fallback to plain "title" field if localized version not found
+        - Returns empty string if no title field exists
+
+        Args:
+            source (dict): The _source dictionary from a search hit
+
+        Returns:
+            str: The extracted title or empty string if not found
+
+        Example:
+            >>> get_title({"title.fr": "Bonjour", "id": 1})
+            "Bonjour"
+            >>> get_title({"title": "Hello", "id": 1})
+            "Hello"
+            >>> get_title({"id": 1})
+            ""
+        """
+        titles = utils.get_value_by_pattern(source, r"^title\.")
+        for title in titles:
+            if title:
+                return title
+        if "title" in source:
+            return source["title"]
+        return ""
+
    def serialize_document(self, document, accesses):
        """
        Convert a Document to the JSON format expected by La Suite Find.
--- a/src/backend/core/tasks/search.py
+++ b/src/backend/core/tasks/search.py
@@ -63,7 +63,7 @@ def batch_document_indexer_task(timestamp):
        logger.info("Indexed %d documents", count)


-def trigger_batch_document_indexer(item):
+def trigger_batch_document_indexer(document):
    """
    Trigger indexation task with debounce a delay set by the SEARCH_INDEXER_COUNTDOWN setting.

@@ -82,14 +82,14 @@ def trigger_batch_document_indexer(item):
        if batch_indexer_throttle_acquire(timeout=countdown):
            logger.info(
                "Add task for batch document indexation from updated_at=%s in %d seconds",
-                item.updated_at.isoformat(),
+                document.updated_at.isoformat(),
                countdown,
            )

            batch_document_indexer_task.apply_async(
-                args=[item.updated_at], countdown=countdown
+                args=[document.updated_at], countdown=countdown
            )
        else:
-            logger.info("Skip task for batch document %s indexation", item.pk)
+            logger.info("Skip task for batch document %s indexation", document.pk)
    else:
-        document_indexer_task.apply(args=[item.pk])
+        document_indexer_task.apply(args=[document.pk])
--- a/src/backend/core/tests/commands/test_index.py
+++ b/src/backend/core/tests/commands/test_index.py
@@ -11,7 +11,7 @@ from django.db import transaction
 import pytest

 from core import factories
-from core.services.search_indexers import SearchIndexer
+from core.services.search_indexers import FindDocumentIndexer


@pytest.mark.django_db
@@ -19,7 +19,7 @@ from core.services.search_indexers import SearchIndexer
 def test_index():
    """Test the command `index` that run the Find app indexer for all the available documents."""
    user = factories.UserFactory()
-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    with transaction.atomic():
        doc = factories.DocumentFactory()
@@ -36,7 +36,7 @@ def test_index():
        str(no_title_doc.path): {"users": [user.sub]},
    }

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        call_command("index")

        push_call_args = [call.args[0] for call in mock_push.call_args_list]
--- a/src/backend/core/tests/conftest.py
+++ b/src/backend/core/tests/conftest.py
@@ -1,10 +1,15 @@
 """Fixtures for tests in the impress core application"""

+import base64
 from unittest import mock

 from django.core.cache import cache

 import pytest
+import responses
+
+from core import factories
+from core.tests.utils.urls import reload_urls

 USER = "user"
 TEAM = "team"
@@ -39,15 +44,102 @@ def indexer_settings_fixture(settings):

    get_document_indexer.cache_clear()

-    settings.SEARCH_INDEXER_CLASS = "core.services.search_indexers.SearchIndexer"
+    settings.SEARCH_INDEXER_CLASS = "core.services.search_indexers.FindDocumentIndexer"
    settings.SEARCH_INDEXER_SECRET = "ThisIsAKeyForTest"
-    settings.SEARCH_INDEXER_URL = "http://localhost:8081/api/v1.0/documents/index/"
-    settings.SEARCH_INDEXER_QUERY_URL = (
-        "http://localhost:8081/api/v1.0/documents/search/"
-    )
+    settings.INDEXING_URL = "http://localhost:8081/api/v1.0/documents/index/"
+    settings.SEARCH_URL = "http://localhost:8081/api/v1.0/documents/search/"
    settings.SEARCH_INDEXER_COUNTDOWN = 1

    yield settings

    # clear cache to prevent issues with other tests
    get_document_indexer.cache_clear()
+
+
+def resource_server_backend_setup(settings):
+    """
+    A fixture to create a user token for testing.
+    """
+    assert (
+        settings.OIDC_RS_BACKEND_CLASS
+        == "lasuite.oidc_resource_server.backend.ResourceServerBackend"
+    )
+
+    settings.OIDC_RESOURCE_SERVER_ENABLED = True
+    settings.OIDC_RS_CLIENT_ID = "some_client_id"
+    settings.OIDC_RS_CLIENT_SECRET = "some_client_secret"
+
+    settings.OIDC_OP_URL = "https://oidc.example.com"
+    settings.OIDC_VERIFY_SSL = False
+    settings.OIDC_TIMEOUT = 5
+    settings.OIDC_PROXY = None
+    settings.OIDC_OP_JWKS_ENDPOINT = "https://oidc.example.com/jwks"
+    settings.OIDC_OP_INTROSPECTION_ENDPOINT = "https://oidc.example.com/introspect"
+    settings.OIDC_RS_SCOPES = ["openid", "groups"]
+    settings.OIDC_RS_ALLOWED_AUDIENCES = ["some_service_provider"]
+
+
+@pytest.fixture
+def resource_server_backend_conf(settings):
+    """
+    A fixture to create a user token for testing.
+    """
+    resource_server_backend_setup(settings)
+    reload_urls()
+
+
+@pytest.fixture
+def resource_server_backend(settings):
+    """
+    A fixture to create a user token for testing.
+    Including a mocked introspection endpoint.
+    """
+    resource_server_backend_setup(settings)
+    reload_urls()
+
+    with responses.RequestsMock() as rsps:
+        rsps.add(
+            responses.POST,
+            "https://oidc.example.com/introspect",
+            json={
+                "iss": "https://oidc.example.com",
+                "aud": "some_client_id",  # settings.OIDC_RS_CLIENT_ID
+                "sub": "very-specific-sub",
+                "client_id": "some_service_provider",
+                "scope": "openid groups",
+                "active": True,
+            },
+        )
+
+        yield rsps
+
+
+@pytest.fixture
+def user_specific_sub():
+    """
+    A fixture to create a user token for testing.
+    """
+    user = factories.UserFactory(sub="very-specific-sub", full_name="External User")
+
+    yield user
+
+
+def build_authorization_bearer(token):
+    """
+    Build an Authorization Bearer header value from a token.
+
+    This can be used like this:
+    client.post(
+        ...
+        HTTP_AUTHORIZATION=f"Bearer {build_authorization_bearer('some_token')}",
+    )
+    """
+    return base64.b64encode(token.encode("utf-8")).decode("utf-8")
+
+
+@pytest.fixture
+def user_token():
+    """
+    A fixture to create a user token for testing.
+    """
+    return build_authorization_bearer("some_token")
--- a/src/backend/core/tests/documents/test_api_documents_duplicate.py
+++ b/src/backend/core/tests/documents/test_api_documents_duplicate.py
@@ -123,7 +123,7 @@ def test_api_documents_duplicate_success(index):
        image_refs[0][0]
    ]  # Only the first image key
    assert duplicated_document.get_parent() == document.get_parent()
-    assert duplicated_document.path == document.get_next_sibling().path
+    assert duplicated_document.path == document.get_last_sibling().path

    # Check that accesses were not duplicated.
    # The user who did the duplicate is forced as owner
@@ -180,6 +180,7 @@ def test_api_documents_duplicate_with_accesses_admin(role):
    client = APIClient()
    client.force_login(user)

+    documents_before = factories.DocumentFactory.create_batch(20)
    document = factories.DocumentFactory(
        users=[(user, role)],
        title="document with accesses",
@@ -187,6 +188,12 @@ def test_api_documents_duplicate_with_accesses_admin(role):
    user_access = factories.UserDocumentAccessFactory(document=document)
    team_access = factories.TeamDocumentAccessFactory(document=document)

+    documents_after = factories.DocumentFactory.create_batch(20)
+
+    all_documents = documents_before + [document] + documents_after
+
+    paths = {document.pk: document.path for document in all_documents}
+
    # Duplicate the document via the API endpoint requesting to duplicate accesses
    response = client.post(
        f"/api/v1.0/documents/{document.id!s}/duplicate/",
@@ -212,6 +219,10 @@ def test_api_documents_duplicate_with_accesses_admin(role):
    assert duplicated_accesses.get(user=user_access.user).role == user_access.role
    assert duplicated_accesses.get(team=team_access.team).role == team_access.role

+    for document in all_documents:
+        document.refresh_from_db()
+        assert document.path == paths[document.id]
+

@pytest.mark.parametrize("role", ["editor", "reader"])
 def test_api_documents_duplicate_with_accesses_non_admin(role):
--- a/src/backend/core/tests/documents/test_api_documents_favorite_list.py
+++ b/src/backend/core/tests/documents/test_api_documents_favorite_list.py
@@ -114,3 +114,29 @@ def test_api_document_favorite_list_with_favorite_children():
    assert content[0]["id"] == str(children[0].id)
    assert content[1]["id"] == str(children[1].id)
    assert content[2]["id"] == str(access.document.id)
+
+
+def test_api_document_favorite_list_with_deleted_child():
+    """
+    Authenticated users should not see deleted documents in their favorite list.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    root = factories.DocumentFactory(creator=user, users=[user], favorited_by=[user])
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=root, favorited_by=[user]
+    )
+
+    child1.delete()
+
+    response = client.get("/api/v1.0/documents/favorite_list/")
+
+    assert response.status_code == 200
+    assert response.json()["count"] == 2
+
+    content = response.json()["results"]
+
+    assert content[0]["id"] == str(root.id)
+    assert content[1]["id"] == str(child2.id)
--- a/src/backend/core/tests/documents/test_api_documents_list_filters.py
+++ b/src/backend/core/tests/documents/test_api_documents_list_filters.py
@@ -16,7 +16,16 @@ fake = Faker()
 pytestmark = pytest.mark.django_db


-def test_api_documents_list_filter_and_access_rights():
+@pytest.mark.parametrize(
+    "title_search_field",
+    # for integration with indexer search we must have
+    # the same filtering behaviour with "q" and "title" parameters
+    [
+        ("title"),
+        ("q"),
+    ],
+)
+def test_api_documents_list_filter_and_access_rights(title_search_field):
    """Filtering on querystring parameters should respect access rights."""
    user = factories.UserFactory()
    client = APIClient()
@@ -76,7 +85,7 @@ def test_api_documents_list_filter_and_access_rights():

    filters = {
        "link_reach": random.choice([None, *models.LinkReachChoices.values]),
-        "title": random.choice([None, *word_list]),
+        title_search_field: random.choice([None, *word_list]),
        "favorite": random.choice([None, True, False]),
        "creator": random.choice([None, user, other_user]),
        "ordering": random.choice(
--- a/src/backend/core/tests/documents/test_api_documents_retrieve.py
+++ b/src/backend/core/tests/documents/test_api_documents_retrieve.py
@@ -59,6 +59,7 @@ def test_api_documents_retrieve_anonymous_public_standalone():
            "partial_update": document.link_role == "editor",
            "restore": False,
            "retrieve": True,
+            "search": True,
            "tree": True,
            "update": document.link_role == "editor",
            "versions_destroy": False,
@@ -136,6 +137,7 @@ def test_api_documents_retrieve_anonymous_public_parent():
            "partial_update": grand_parent.link_role == "editor",
            "restore": False,
            "retrieve": True,
+            "search": True,
            "tree": True,
            "update": grand_parent.link_role == "editor",
            "versions_destroy": False,
@@ -246,6 +248,7 @@ def test_api_documents_retrieve_authenticated_unrelated_public_or_authenticated(
            "partial_update": document.link_role == "editor",
            "restore": False,
            "retrieve": True,
+            "search": True,
            "tree": True,
            "update": document.link_role == "editor",
            "versions_destroy": False,
@@ -330,6 +333,7 @@ def test_api_documents_retrieve_authenticated_public_or_authenticated_parent(rea
            "partial_update": grand_parent.link_role == "editor",
            "restore": False,
            "retrieve": True,
+            "search": True,
            "tree": True,
            "update": grand_parent.link_role == "editor",
            "versions_destroy": False,
@@ -529,6 +533,7 @@ def test_api_documents_retrieve_authenticated_related_parent():
            "partial_update": access.role not in ["reader", "commenter"],
            "restore": access.role == "owner",
            "retrieve": True,
+            "search": True,
            "tree": True,
            "update": access.role not in ["reader", "commenter"],
            "versions_destroy": access.role in ["administrator", "owner"],
--- a/src/backend/core/tests/documents/test_api_documents_search.py
+++ b/src/backend/core/tests/documents/test_api_documents_search.py
@@ -1,46 +1,40 @@
 """
-Tests for Documents API endpoint in impress's core app: list
+Tests for Documents API endpoint in impress's core app: search
 """

-import random
-from json import loads as json_loads
-
-from django.test import RequestFactory
+from unittest import mock

 import pytest
 import responses
 from faker import Faker
+from rest_framework import response as drf_response
 from rest_framework.test import APIClient
+from waffle.testutils import override_flag

-from core import factories, models
+from core import factories
+from core.enums import FeatureFlag, SearchType
 from core.services.search_indexers import get_document_indexer

 fake = Faker()
 pytestmark = pytest.mark.django_db


-def build_search_url(**kwargs):
-    """Build absolute uri for search endpoint with ORDERED query arguments"""
-    return (
-        RequestFactory()
-        .get("/api/v1.0/documents/search/", dict(sorted(kwargs.items())))
-        .build_absolute_uri()
-    )
+@pytest.fixture(autouse=True)
+def enable_flag_find_hybrid_search():
+    """Enable flag_find_hybrid_search for all tests in this module."""
+    with override_flag(FeatureFlag.FLAG_FIND_HYBRID_SEARCH, active=True):
+        yield


-@pytest.mark.parametrize("role", models.LinkRoleChoices.values)
-@pytest.mark.parametrize("reach", models.LinkReachChoices.values)
+@mock.patch("core.services.search_indexers.FindDocumentIndexer.search_query")
@responses.activate
-def test_api_documents_search_anonymous(reach, role, indexer_settings):
+def test_api_documents_search_anonymous(search_query, indexer_settings):
    """
-    Anonymous users should not be allowed to search documents whatever the
-    link reach and link role
+    Anonymous users should be allowed to search documents with Find.
    """
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = "http://find/api/v1.0/search"
+    indexer_settings.SEARCH_URL = "http://find/api/v1.0/search"

-    factories.DocumentFactory(link_reach=reach, link_role=role)
-
-    # Find response
+    # mock Find response
    responses.add(
        responses.POST,
        "http://find/api/v1.0/search",
@@ -48,7 +42,23 @@ def test_api_documents_search_anonymous(reach, role, indexer_settings):
        status=200,
    )

-    response = APIClient().get("/api/v1.0/documents/search/", data={"q": "alpha"})
+    q = "alpha"
+    response = APIClient().get("/api/v1.0/documents/search/", data={"q": q})
+
+    assert search_query.call_count == 1
+    assert search_query.call_args[1] == {
+        "data": {
+            "q": q,
+            "visited": [],
+            "services": ["docs"],
+            "nb_results": 50,
+            "order_by": "updated_at",
+            "order_direction": "desc",
+            "path": None,
+            "search_type": SearchType.HYBRID,
+        },
+        "token": None,
+    }

    assert response.status_code == 200
    assert response.json() == {
@@ -59,115 +69,163 @@ def test_api_documents_search_anonymous(reach, role, indexer_settings):
    }


-def test_api_documents_search_endpoint_is_none(indexer_settings):
+@mock.patch("core.api.viewsets.DocumentViewSet.list")
+def test_api_documents_search_fall_back_on_search_list(mock_list, settings):
    """
-    Missing SEARCH_INDEXER_QUERY_URL, so the indexer is not properly configured.
-    Should fallback on title filter
+    When indexer is not configured and no path is provided,
+    should fall back on list method
    """
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = None
-
    assert get_document_indexer() is None
+    assert settings.OIDC_STORE_REFRESH_TOKEN is False
+    assert settings.OIDC_STORE_ACCESS_TOKEN is False

    user = factories.UserFactory()
-    document = factories.DocumentFactory(title="alpha")
-    access = factories.UserDocumentAccessFactory(document=document, user=user)
-
    client = APIClient()
-    client.force_login(user)
+    client.force_login(
+        user, backend="core.authentication.backends.OIDCAuthenticationBackend"
+    )

-    response = client.get("/api/v1.0/documents/search/", data={"q": "alpha"})
-
-    assert response.status_code == 200
-    content = response.json()
-    results = content.pop("results")
-    assert content == {
-        "count": 1,
+    mocked_response = {
+        "count": 0,
        "next": None,
        "previous": None,
+        "results": [{"title": "mocked list result"}],
    }
-    assert len(results) == 1
-    assert results[0] == {
-        "id": str(document.id),
-        "abilities": document.get_abilities(user),
-        "ancestors_link_reach": None,
-        "ancestors_link_role": None,
-        "computed_link_reach": document.computed_link_reach,
-        "computed_link_role": document.computed_link_role,
-        "created_at": document.created_at.isoformat().replace("+00:00", "Z"),
-        "creator": str(document.creator.id),
-        "depth": 1,
-        "excerpt": document.excerpt,
-        "link_reach": document.link_reach,
-        "link_role": document.link_role,
-        "nb_accesses_ancestors": 1,
-        "nb_accesses_direct": 1,
-        "numchild": 0,
-        "path": document.path,
-        "title": document.title,
-        "updated_at": document.updated_at.isoformat().replace("+00:00", "Z"),
-        "deleted_at": None,
-        "user_role": access.role,
+    mock_list.return_value = drf_response.Response(mocked_response)
+
+    q = "alpha"
+    response = client.get("/api/v1.0/documents/search/", data={"q": q})
+
+    assert response.status_code == 200
+
+    assert mock_list.call_count == 1
+    assert mock_list.call_args[0][0].GET.get("q") == q
+    assert response.json() == mocked_response
+
+
+@mock.patch("core.api.viewsets.DocumentViewSet._list_descendants")
+def test_api_documents_search_fallback_on_search_list_sub_docs(
+    mock_list_descendants, settings
+):
+    """
+    When indexer is not configured and path parameter is provided,
+    should call _list_descendants() method
+    """
+    assert get_document_indexer() is None
+    assert settings.OIDC_STORE_REFRESH_TOKEN is False
+    assert settings.OIDC_STORE_ACCESS_TOKEN is False
+
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(
+        user, backend="core.authentication.backends.OIDCAuthenticationBackend"
+    )
+
+    parent = factories.DocumentFactory(title="parent", users=[user])
+
+    mocked_response = {
+        "count": 0,
+        "next": None,
+        "previous": None,
+        "results": [{"title": "mocked _list_descendants result"}],
    }
+    mock_list_descendants.return_value = drf_response.Response(mocked_response)
+
+    q = "alpha"
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": q, "path": parent.path}
+    )
+
+    mock_list_descendants.assert_called_with(
+        mock.ANY, {"q": "alpha", "path": parent.path}
+    )
+    assert response.json() == mocked_response
+
+
+@mock.patch("core.api.viewsets.DocumentViewSet._title_search")
+def test_api_documents_search_indexer_crashes(mock_title_search, indexer_settings):
+    """
+    When indexer is configured but crashes -> falls back on title_search
+    """
+    # indexer is properly configured
+    indexer_settings.SEARCH_URL = None
+    assert get_document_indexer() is None
+    # but returns an error when the query is sent
+    responses.add(
+        responses.POST,
+        "http://find/api/v1.0/search",
+        json=[{"error": "Some indexer error"}],
+        status=404,
+    )
+
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(
+        user, backend="core.authentication.backends.OIDCAuthenticationBackend"
+    )
+
+    mocked_response = {
+        "count": 0,
+        "next": None,
+        "previous": None,
+        "results": [{"title": "mocked title_search result"}],
+    }
+    mock_title_search.return_value = drf_response.Response(mocked_response)
+
+    parent = factories.DocumentFactory(title="parent", users=[user])
+    q = "alpha"
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "alpha", "path": parent.path}
+    )
+
+    # the search endpoint did not crash
+    assert response.status_code == 200
+    # fallback on title_search
+    assert mock_title_search.call_count == 1
+    assert mock_title_search.call_args[0][0].GET.get("q") == q
+    assert mock_title_search.call_args[0][0].GET.get("path") == parent.path
+    assert response.json() == mocked_response


@responses.activate
 def test_api_documents_search_invalid_params(indexer_settings):
    """Validate the format of documents as returned by the search view."""
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = "http://find/api/v1.0/search"
+    indexer_settings.SEARCH_URL = "http://find/api/v1.0/search"
+    assert get_document_indexer() is not None

    user = factories.UserFactory()
-
    client = APIClient()
-    client.force_login(user)
+    client.force_login(
+        user, backend="core.authentication.backends.OIDCAuthenticationBackend"
+    )

    response = client.get("/api/v1.0/documents/search/")

    assert response.status_code == 400
    assert response.json() == {"q": ["This field is required."]}

-    response = client.get("/api/v1.0/documents/search/", data={"q": "    "})
-
-    assert response.status_code == 400
-    assert response.json() == {"q": ["This field may not be blank."]}
-
-    response = client.get(
-        "/api/v1.0/documents/search/", data={"q": "any", "page": "NaN"}
-    )
-
-    assert response.status_code == 400
-    assert response.json() == {"page": ["A valid integer is required."]}
-

@responses.activate
-def test_api_documents_search_format(indexer_settings):
+def test_api_documents_search_success(indexer_settings):
    """Validate the format of documents as returned by the search view."""
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = "http://find/api/v1.0/search"
-
+    indexer_settings.SEARCH_URL = "http://find/api/v1.0/search"
    assert get_document_indexer() is not None

-    user = factories.UserFactory()
-
-    client = APIClient()
-    client.force_login(user)
-
-    user_a, user_b, user_c = factories.UserFactory.create_batch(3)
-    document = factories.DocumentFactory(
-        title="alpha",
-        users=(user_a, user_c),
-        link_traces=(user, user_b),
-    )
-    access = factories.UserDocumentAccessFactory(document=document, user=user)
+    document = {"id": "doc-123", "title": "alpha", "path": "path/to/alpha.pdf"}

    # Find response
    responses.add(
        responses.POST,
        "http://find/api/v1.0/search",
        json=[
-            {"_id": str(document.pk)},
+            {
+                "_id": str(document["id"]),
+                "_source": {"title": document["title"], "path": document["path"]},
+            },
        ],
        status=200,
    )
-    response = client.get("/api/v1.0/documents/search/", data={"q": "alpha"})
+    response = APIClient().get("/api/v1.0/documents/search/", data={"q": "alpha"})

    assert response.status_code == 200
    content = response.json()
@@ -177,249 +235,6 @@ def test_api_documents_search_format(indexer_settings):
        "next": None,
        "previous": None,
    }
-    assert len(results) == 1
-    assert results[0] == {
-        "id": str(document.id),
-        "abilities": document.get_abilities(user),
-        "ancestors_link_reach": None,
-        "ancestors_link_role": None,
-        "computed_link_reach": document.computed_link_reach,
-        "computed_link_role": document.computed_link_role,
-        "created_at": document.created_at.isoformat().replace("+00:00", "Z"),
-        "creator": str(document.creator.id),
-        "depth": 1,
-        "excerpt": document.excerpt,
-        "link_reach": document.link_reach,
-        "link_role": document.link_role,
-        "nb_accesses_ancestors": 3,
-        "nb_accesses_direct": 3,
-        "numchild": 0,
-        "path": document.path,
-        "title": document.title,
-        "updated_at": document.updated_at.isoformat().replace("+00:00", "Z"),
-        "deleted_at": None,
-        "user_role": access.role,
-    }
-
-
-@responses.activate
-@pytest.mark.parametrize(
-    "pagination, status, expected",
-    (
-        (
-            {"page": 1, "page_size": 10},
-            200,
-            {
-                "count": 10,
-                "previous": None,
-                "next": None,
-                "range": (0, None),
-            },
-        ),
-        (
-            {},
-            200,
-            {
-                "count": 10,
-                "previous": None,
-                "next": None,
-                "range": (0, None),
-                "api_page_size": 21,  # default page_size is 20
-            },
-        ),
-        (
-            {"page": 2, "page_size": 10},
-            404,
-            {},
-        ),
-        (
-            {"page": 1, "page_size": 5},
-            200,
-            {
-                "count": 10,
-                "previous": None,
-                "next": {"page": 2, "page_size": 5},
-                "range": (0, 5),
-            },
-        ),
-        (
-            {"page": 2, "page_size": 5},
-            200,
-            {
-                "count": 10,
-                "previous": {"page_size": 5},
-                "next": None,
-                "range": (5, None),
-            },
-        ),
-        ({"page": 3, "page_size": 5}, 404, {}),
-    ),
-)
-def test_api_documents_search_pagination(
-    indexer_settings, pagination, status, expected
-):
-    """Documents should be ordered by descending "score" by default"""
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = "http://find/api/v1.0/search"
-
-    assert get_document_indexer() is not None
-
-    user = factories.UserFactory()
-
-    client = APIClient()
-    client.force_login(user)
-
-    docs = factories.DocumentFactory.create_batch(10, title="alpha", users=[user])
-
-    docs_by_uuid = {str(doc.pk): doc for doc in docs}
-    api_results = [{"_id": id} for id in docs_by_uuid.keys()]
-
-    # reorder randomly to simulate score ordering
-    random.shuffle(api_results)
-
-    # Find response
-    # pylint: disable-next=assignment-from-none
-    api_search = responses.add(
-        responses.POST,
-        "http://find/api/v1.0/search",
-        json=api_results,
-        status=200,
-    )
-
-    response = client.get(
-        "/api/v1.0/documents/search/",
-        data={
-            "q": "alpha",
-            **pagination,
-        },
-    )
-
-    assert response.status_code == status
-
-    if response.status_code < 300:
-        previous_url = (
-            build_search_url(q="alpha", **expected["previous"])
-            if expected["previous"]
-            else None
-        )
-        next_url = (
-            build_search_url(q="alpha", **expected["next"])
-            if expected["next"]
-            else None
-        )
-        start, end = expected["range"]
-
-        content = response.json()
-
-        assert content["count"] == expected["count"]
-        assert content["previous"] == previous_url
-        assert content["next"] == next_url
-
-        results = content.pop("results")
-
-        # The find api results ordering by score is kept
-        assert [r["id"] for r in results] == [r["_id"] for r in api_results[start:end]]
-
-        # Check the query parameters.
-        assert api_search.call_count == 1
-        assert api_search.calls[0].response.status_code == 200
-        assert json_loads(api_search.calls[0].request.body) == {
-            "q": "alpha",
-            "visited": [],
-            "services": ["docs"],
-            "nb_results": 50,
-            "order_by": "updated_at",
-            "order_direction": "desc",
-        }
-
-
-@responses.activate
-@pytest.mark.parametrize(
-    "pagination, status, expected",
-    (
-        (
-            {"page": 1, "page_size": 10},
-            200,
-            {"count": 10, "previous": None, "next": None, "range": (0, None)},
-        ),
-        (
-            {},
-            200,
-            {"count": 10, "previous": None, "next": None, "range": (0, None)},
-        ),
-        (
-            {"page": 2, "page_size": 10},
-            404,
-            {},
-        ),
-        (
-            {"page": 1, "page_size": 5},
-            200,
-            {
-                "count": 10,
-                "previous": None,
-                "next": {"page": 2, "page_size": 5},
-                "range": (0, 5),
-            },
-        ),
-        (
-            {"page": 2, "page_size": 5},
-            200,
-            {
-                "count": 10,
-                "previous": {"page_size": 5},
-                "next": None,
-                "range": (5, None),
-            },
-        ),
-        ({"page": 3, "page_size": 5}, 404, {}),
-    ),
-)
-def test_api_documents_search_pagination_endpoint_is_none(
-    indexer_settings, pagination, status, expected
-):
-    """Documents should be ordered by descending "-updated_at" by default"""
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = None
-
-    assert get_document_indexer() is None
-
-    user = factories.UserFactory()
-
-    client = APIClient()
-    client.force_login(user)
-
-    factories.DocumentFactory.create_batch(10, title="alpha", users=[user])
-
-    response = client.get(
-        "/api/v1.0/documents/search/",
-        data={
-            "q": "alpha",
-            **pagination,
-        },
-    )
-
-    assert response.status_code == status
-
-    if response.status_code < 300:
-        previous_url = (
-            build_search_url(q="alpha", **expected["previous"])
-            if expected["previous"]
-            else None
-        )
-        next_url = (
-            build_search_url(q="alpha", **expected["next"])
-            if expected["next"]
-            else None
-        )
-        queryset = models.Document.objects.order_by("-updated_at")
-        start, end = expected["range"]
-        expected_results = [str(d.pk) for d in queryset[start:end]]
-
-        content = response.json()
-
-        assert content["count"] == expected["count"]
-        assert content["previous"] == previous_url
-        assert content["next"] == next_url
-
-        results = content.pop("results")
-
-        assert [r["id"] for r in results] == expected_results
+    assert results == [
+        {"id": document["id"], "title": document["title"], "path": document["path"]}
+    ]
--- a/src/backend/core/tests/documents/test_api_documents_search_descendants.py
+++ b/src/backend/core/tests/documents/test_api_documents_search_descendants.py
@@ -0,0 +1,956 @@
+"""
+Tests for search API endpoint in impress's core app when indexer is not
+available and a path param is given.
+"""
+
+import random
+
+from django.contrib.auth.models import AnonymousUser
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories
+from core.api.filters import remove_accents
+
+pytestmark = pytest.mark.django_db
+
+
+@pytest.fixture(autouse=True)
+def disable_indexer(indexer_settings):
+    """Disable search indexer for all tests in this file."""
+    indexer_settings.SEARCH_INDEXER_CLASS = None
+
+
+def test_api_documents_search_descendants_list_anonymous_public_standalone():
+    """Anonymous users should be allowed to retrieve the descendants of a public document."""
+    document = factories.DocumentFactory(link_reach="public", title="doc parent")
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="doc child"
+    )
+    grand_child = factories.DocumentFactory(parent=child1, title="doc grand child")
+
+    factories.UserDocumentAccessFactory(document=child1)
+
+    response = APIClient().get(
+        "/api/v1.0/documents/search/", data={"q": "doc", "path": document.path}
+    )
+
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 4,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                # the search should include the parent document itself
+                "abilities": document.get_abilities(AnonymousUser()),
+                "ancestors_link_role": None,
+                "ancestors_link_reach": None,
+                "computed_link_reach": document.computed_link_reach,
+                "computed_link_role": document.computed_link_role,
+                "created_at": document.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(document.creator.id),
+                "deleted_at": None,
+                "depth": 1,
+                "excerpt": document.excerpt,
+                "id": str(document.id),
+                "is_favorite": False,
+                "link_reach": document.link_reach,
+                "link_role": document.link_role,
+                "numchild": 2,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": document.path,
+                "title": document.title,
+                "updated_at": document.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child1.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": document.link_reach,
+                "ancestors_link_role": document.link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": grand_child.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": document.link_reach,
+                "ancestors_link_role": document.link_role
+                if (child1.link_reach == "public" and child1.link_role == "editor")
+                else document.link_role,
+                "computed_link_reach": "public",
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 3,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child2.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": document.link_reach,
+                "ancestors_link_role": document.link_role,
+                "computed_link_reach": "public",
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+        ],
+    }
+
+
+def test_api_documents_search_descendants_list_anonymous_public_parent():
+    """
+    Anonymous users should be allowed to retrieve the descendants of a document who
+    has a public ancestor.
+    """
+    grand_parent = factories.DocumentFactory(
+        link_reach="public", title="grand parent doc"
+    )
+    parent = factories.DocumentFactory(
+        parent=grand_parent,
+        link_reach=random.choice(["authenticated", "restricted"]),
+        title="parent doc",
+    )
+    document = factories.DocumentFactory(
+        link_reach=random.choice(["authenticated", "restricted"]),
+        parent=parent,
+        title="document",
+    )
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="child doc"
+    )
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child doc")
+
+    factories.UserDocumentAccessFactory(document=child1)
+
+    response = APIClient().get(
+        "/api/v1.0/documents/search/", data={"q": "doc", "path": document.path}
+    )
+
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 4,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                # the search should include the parent document itself
+                "abilities": document.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": "public",
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": document.computed_link_reach,
+                "computed_link_role": document.computed_link_role,
+                "created_at": document.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(document.creator.id),
+                "deleted_at": None,
+                "depth": 3,
+                "excerpt": document.excerpt,
+                "id": str(document.id),
+                "is_favorite": False,
+                "link_reach": document.link_reach,
+                "link_role": document.link_role,
+                "numchild": 2,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": document.path,
+                "title": document.title,
+                "updated_at": document.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child1.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": "public",
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": grand_child.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": "public",
+                "ancestors_link_role": grand_child.ancestors_link_role,
+                "computed_link_reach": "public",
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 5,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child2.get_abilities(AnonymousUser()),
+                "ancestors_link_reach": "public",
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": "public",
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+        ],
+    }
+
+
+@pytest.mark.parametrize("reach", ["restricted", "authenticated"])
+def test_api_documents_search_descendants_list_anonymous_restricted_or_authenticated(
+    reach,
+):
+    """
+    Anonymous users should not be able to retrieve descendants of a document that is not public.
+    """
+    document = factories.DocumentFactory(title="parent", link_reach=reach)
+    child = factories.DocumentFactory(title="child", parent=document)
+    _grand_child = factories.DocumentFactory(title="grand child", parent=child)
+
+    response = APIClient().get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to search within this document."
+    }
+
+
+@pytest.mark.parametrize("reach", ["public", "authenticated"])
+def test_api_documents_search_descendants_list_authenticated_unrelated_public_or_authenticated(
+    reach,
+):
+    """
+    Authenticated users should be able to retrieve the descendants of a public/authenticated
+    document to which they are not related.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach=reach, title="parent")
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, link_reach="restricted", title="child"
+    )
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    factories.UserDocumentAccessFactory(document=child1)
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 3,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                "abilities": child1.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": document.link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": grand_child.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": document.link_role,
+                "computed_link_reach": grand_child.computed_link_reach,
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 3,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child2.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": document.link_role,
+                "computed_link_reach": child2.computed_link_reach,
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+        ],
+    }
+
+
+@pytest.mark.parametrize("reach", ["public", "authenticated"])
+def test_api_documents_search_descendants_list_authenticated_public_or_authenticated_parent(
+    reach,
+):
+    """
+    Authenticated users should be allowed to retrieve the descendants of a document who
+    has a public or authenticated ancestor.
+    """
+    user = factories.UserFactory()
+
+    client = APIClient()
+    client.force_login(user)
+
+    grand_parent = factories.DocumentFactory(link_reach=reach, title="grand parent")
+    parent = factories.DocumentFactory(
+        parent=grand_parent, link_reach="restricted", title="parent"
+    )
+    document = factories.DocumentFactory(
+        link_reach="restricted", parent=parent, title="document"
+    )
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, link_reach="restricted", title="child"
+    )
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    factories.UserDocumentAccessFactory(document=child1)
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 3,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                "abilities": child1.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": grand_child.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": grand_child.computed_link_reach,
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 5,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+            {
+                "abilities": child2.get_abilities(user),
+                "ancestors_link_reach": reach,
+                "ancestors_link_role": grand_parent.link_role,
+                "computed_link_reach": child2.computed_link_reach,
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 0,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": None,
+            },
+        ],
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_unrelated_restricted():
+    """
+    Authenticated users should not be allowed to retrieve the descendants of a document that is
+    restricted and to which they are not related.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach="restricted", title="parent")
+    child1, _child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="child"
+    )
+    _grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    factories.UserDocumentAccessFactory(document=child1)
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to search within this document."
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_related_direct():
+    """
+    Authenticated users should be allowed to retrieve the descendants of a document
+    to which they are directly related whatever the role.
+    """
+    user = factories.UserFactory()
+
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(title="parent")
+    access = factories.UserDocumentAccessFactory(document=document, user=user)
+    factories.UserDocumentAccessFactory(document=document)
+
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="child"
+    )
+    factories.UserDocumentAccessFactory(document=child1)
+
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 3,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                "abilities": child1.get_abilities(user),
+                "ancestors_link_reach": child1.ancestors_link_reach,
+                "ancestors_link_role": child1.ancestors_link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 3,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+            {
+                "abilities": grand_child.get_abilities(user),
+                "ancestors_link_reach": grand_child.ancestors_link_reach,
+                "ancestors_link_role": grand_child.ancestors_link_role,
+                "computed_link_reach": grand_child.computed_link_reach,
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 3,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 3,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+            {
+                "abilities": child2.get_abilities(user),
+                "ancestors_link_reach": child2.ancestors_link_reach,
+                "ancestors_link_role": child2.ancestors_link_role,
+                "computed_link_reach": child2.computed_link_reach,
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 2,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+        ],
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_related_parent():
+    """
+    Authenticated users should be allowed to retrieve the descendants of a document if they
+    are related to one of its ancestors whatever the role.
+    """
+    user = factories.UserFactory()
+
+    client = APIClient()
+    client.force_login(user)
+
+    grand_parent = factories.DocumentFactory(link_reach="restricted", title="parent")
+    grand_parent_access = factories.UserDocumentAccessFactory(
+        document=grand_parent, user=user
+    )
+
+    parent = factories.DocumentFactory(
+        parent=grand_parent, link_reach="restricted", title="parent"
+    )
+    document = factories.DocumentFactory(
+        parent=parent, link_reach="restricted", title="document"
+    )
+
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="child"
+    )
+    factories.UserDocumentAccessFactory(document=child1)
+
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 3,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                "abilities": child1.get_abilities(user),
+                "ancestors_link_reach": child1.ancestors_link_reach,
+                "ancestors_link_role": child1.ancestors_link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 2,
+                "nb_accesses_direct": 1,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": grand_parent_access.role,
+            },
+            {
+                "abilities": grand_child.get_abilities(user),
+                "ancestors_link_reach": grand_child.ancestors_link_reach,
+                "ancestors_link_role": grand_child.ancestors_link_role,
+                "computed_link_reach": grand_child.computed_link_reach,
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 5,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 2,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": grand_parent_access.role,
+            },
+            {
+                "abilities": child2.get_abilities(user),
+                "ancestors_link_reach": child2.ancestors_link_reach,
+                "ancestors_link_role": child2.ancestors_link_role,
+                "computed_link_reach": child2.computed_link_reach,
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 4,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": grand_parent_access.role,
+            },
+        ],
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_related_child():
+    """
+    Authenticated users should not be allowed to retrieve all the descendants of a document
+    as a result of being related to one of its children.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach="restricted")
+    child1, _child2 = factories.DocumentFactory.create_batch(2, parent=document)
+    _grand_child = factories.DocumentFactory(parent=child1)
+
+    factories.UserDocumentAccessFactory(document=child1, user=user)
+    factories.UserDocumentAccessFactory(document=document)
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "doc", "path": document.path}
+    )
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to search within this document."
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_related_team_none(
+    mock_user_teams,
+):
+    """
+    Authenticated users should not be able to retrieve the descendants of a restricted document
+    related to teams in which the user is not.
+    """
+    mock_user_teams.return_value = []
+
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach="restricted", title="document")
+    factories.DocumentFactory.create_batch(2, parent=document, title="child")
+
+    factories.TeamDocumentAccessFactory(document=document, team="myteam")
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "doc", "path": document.path}
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to search within this document."
+    }
+
+
+def test_api_documents_search_descendants_list_authenticated_related_team_members(
+    mock_user_teams,
+):
+    """
+    Authenticated users should be allowed to retrieve the descendants of a document to which they
+    are related via a team whatever the role.
+    """
+    mock_user_teams.return_value = ["myteam"]
+
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach="restricted", title="parent")
+    child1, child2 = factories.DocumentFactory.create_batch(
+        2, parent=document, title="child"
+    )
+    grand_child = factories.DocumentFactory(parent=child1, title="grand child")
+
+    access = factories.TeamDocumentAccessFactory(document=document, team="myteam")
+
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": "child", "path": document.path}
+    )
+
+    # pylint: disable=R0801
+    assert response.status_code == 200
+    assert response.json() == {
+        "count": 3,
+        "next": None,
+        "previous": None,
+        "results": [
+            {
+                "abilities": child1.get_abilities(user),
+                "ancestors_link_reach": child1.ancestors_link_reach,
+                "ancestors_link_role": child1.ancestors_link_role,
+                "computed_link_reach": child1.computed_link_reach,
+                "computed_link_role": child1.computed_link_role,
+                "created_at": child1.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child1.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child1.excerpt,
+                "id": str(child1.id),
+                "is_favorite": False,
+                "link_reach": child1.link_reach,
+                "link_role": child1.link_role,
+                "numchild": 1,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": child1.path,
+                "title": child1.title,
+                "updated_at": child1.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+            {
+                "abilities": grand_child.get_abilities(user),
+                "ancestors_link_reach": grand_child.ancestors_link_reach,
+                "ancestors_link_role": grand_child.ancestors_link_role,
+                "computed_link_reach": grand_child.computed_link_reach,
+                "computed_link_role": grand_child.computed_link_role,
+                "created_at": grand_child.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(grand_child.creator.id),
+                "deleted_at": None,
+                "depth": 3,
+                "excerpt": grand_child.excerpt,
+                "id": str(grand_child.id),
+                "is_favorite": False,
+                "link_reach": grand_child.link_reach,
+                "link_role": grand_child.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": grand_child.path,
+                "title": grand_child.title,
+                "updated_at": grand_child.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+            {
+                "abilities": child2.get_abilities(user),
+                "ancestors_link_reach": child2.ancestors_link_reach,
+                "ancestors_link_role": child2.ancestors_link_role,
+                "computed_link_reach": child2.computed_link_reach,
+                "computed_link_role": child2.computed_link_role,
+                "created_at": child2.created_at.isoformat().replace("+00:00", "Z"),
+                "creator": str(child2.creator.id),
+                "deleted_at": None,
+                "depth": 2,
+                "excerpt": child2.excerpt,
+                "id": str(child2.id),
+                "is_favorite": False,
+                "link_reach": child2.link_reach,
+                "link_role": child2.link_role,
+                "numchild": 0,
+                "nb_accesses_ancestors": 1,
+                "nb_accesses_direct": 0,
+                "path": child2.path,
+                "title": child2.title,
+                "updated_at": child2.updated_at.isoformat().replace("+00:00", "Z"),
+                "user_role": access.role,
+            },
+        ],
+    }
+
+
+@pytest.mark.parametrize(
+    "query,nb_results",
+    [
+        ("", 7),  # Empty string
+        ("Project Alpha", 1),  # Exact match
+        ("project", 2),  # Partial match (case-insensitive)
+        ("Guide", 2),  # Word match within a title
+        ("Special", 0),  # No match (nonexistent keyword)
+        ("2024", 2),  # Match by numeric keyword
+        ("velo", 1),  # Accent-insensitive match (velo vs vélo)
+        ("bêta", 1),  # Accent-insensitive match (bêta vs beta)
+    ],
+)
+def test_api_documents_search_descendants_search_on_title(query, nb_results):
+    """Authenticated users should be able to search documents by their unaccented title."""
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    parent = factories.DocumentFactory(users=[user])
+
+    # Create documents with predefined titles
+    titles = [
+        "Project Alpha Documentation",
+        "Project Beta Overview",
+        "User Guide",
+        "Financial Report 2024",
+        "Annual Review 2024",
+        "Guide du vélo urbain",  # <-- Title with accent for accent-insensitive test
+    ]
+    for title in titles:
+        factories.DocumentFactory(title=title, parent=parent)
+
+    # Perform the search query
+    response = client.get(
+        "/api/v1.0/documents/search/", data={"q": query, "path": parent.path}
+    )
+
+    assert response.status_code == 200
+    results = response.json()["results"]
+    assert len(results) == nb_results
+
+    # Ensure all results contain the query in their title
+    for result in results:
+        assert (
+            remove_accents(query).lower().strip()
+            in remove_accents(result["title"]).lower()
+        )
--- a/src/backend/core/tests/documents/test_api_documents_search_feature_flag.py
+++ b/src/backend/core/tests/documents/test_api_documents_search_feature_flag.py
@@ -0,0 +1,90 @@
+"""
+Tests for Find search feature flags
+"""
+
+from unittest import mock
+
+from django.http import HttpResponse
+
+import pytest
+import responses
+from rest_framework.test import APIClient
+from waffle.testutils import override_flag
+
+from core.enums import FeatureFlag, SearchType
+from core.services.search_indexers import get_document_indexer
+
+pytestmark = pytest.mark.django_db
+
+
+@responses.activate
+@mock.patch("core.api.viewsets.DocumentViewSet._title_search")
+@mock.patch("core.api.viewsets.DocumentViewSet._search_with_indexer")
+@pytest.mark.parametrize(
+    "activated_flags,"
+    "expected_search_type,"
+    "expected_search_with_indexer_called,"
+    "expected_title_search_called",
+    [
+        ([], SearchType.TITLE, False, True),
+        ([FeatureFlag.FLAG_FIND_HYBRID_SEARCH], SearchType.HYBRID, True, False),
+        (
+            [
+                FeatureFlag.FLAG_FIND_HYBRID_SEARCH,
+                FeatureFlag.FLAG_FIND_FULL_TEXT_SEARCH,
+            ],
+            SearchType.HYBRID,
+            True,
+            False,
+        ),
+        ([FeatureFlag.FLAG_FIND_FULL_TEXT_SEARCH], SearchType.FULL_TEXT, True, False),
+    ],
+)
+# pylint: disable=too-many-arguments, too-many-positional-arguments
+def test_api_documents_search_success(  # noqa : PLR0913
+    mock_search_with_indexer,
+    mock_title_search,
+    activated_flags,
+    expected_search_type,
+    expected_search_with_indexer_called,
+    expected_title_search_called,
+    indexer_settings,
+):
+    """
+    Test that the API endpoint for searching documents returns a successful response
+    with the expected search type according to the activated feature flags,
+    and that the appropriate search method is called.
+    """
+    assert get_document_indexer() is not None
+
+    mock_search_with_indexer.return_value = HttpResponse()
+    mock_title_search.return_value = HttpResponse()
+
+    with override_flag(
+        FeatureFlag.FLAG_FIND_HYBRID_SEARCH,
+        active=FeatureFlag.FLAG_FIND_HYBRID_SEARCH in activated_flags,
+    ):
+        with override_flag(
+            FeatureFlag.FLAG_FIND_FULL_TEXT_SEARCH,
+            active=FeatureFlag.FLAG_FIND_FULL_TEXT_SEARCH in activated_flags,
+        ):
+            response = APIClient().get(
+                "/api/v1.0/documents/search/", data={"q": "alpha"}
+            )
+
+    assert response.status_code == 200
+
+    if expected_search_with_indexer_called:
+        mock_search_with_indexer.assert_called_once()
+        assert (
+            mock_search_with_indexer.call_args.kwargs["search_type"]
+            == expected_search_type
+        )
+    else:
+        assert not mock_search_with_indexer.called
+
+    if expected_title_search_called:
+        assert SearchType.TITLE == expected_search_type
+        mock_title_search.assert_called_once()
+    else:
+        assert not mock_title_search.called
--- a/src/backend/core/tests/documents/test_api_documents_trashbin.py
+++ b/src/backend/core/tests/documents/test_api_documents_trashbin.py
@@ -101,6 +101,7 @@ def test_api_documents_trashbin_format():
            "partial_update": False,
            "restore": True,
            "retrieve": True,
+            "search": False,
            "tree": True,
            "update": False,
            "versions_destroy": False,
--- a/src/backend/core/tests/documents/test_api_documents_update.py
+++ b/src/backend/core/tests/documents/test_api_documents_update.py
@@ -1,8 +1,10 @@
 """
 Tests for Documents API endpoint in impress's core app: update
 """
+# pylint: disable=too-many-lines

 import random
+from unittest.mock import patch

 from django.contrib.auth.models import AnonymousUser
 from django.core.cache import cache
@@ -17,6 +19,25 @@ from core.tests.conftest import TEAM, USER, VIA

 pytestmark = pytest.mark.django_db

+# A valid Yjs document derived from YDOC_HELLO_WORLD_BASE64 with "Hello" replaced by "World",
+# used in PATCH tests to guarantee a real content change distinct from what DocumentFactory
+# produces.
+YDOC_UPDATED_CONTENT_BASE64 = (
+    "AR717vLVDgAHAQ5kb2N1bWVudC1zdG9yZQMKYmxvY2tHcm91cAcA9e7y1Q4AAw5ibG9ja0NvbnRh"
+    "aW5lcgcA9e7y1Q4BAwdoZWFkaW5nBwD17vLVDgIGBgD17vLVDgMGaXRhbGljAnt9hPXu8tUOBAVX"
+    "b3JsZIb17vLVDgkGaXRhbGljBG51bGwoAPXu8tUOAg10ZXh0QWxpZ25tZW50AXcEbGVmdCgA9e7y"
+    "1Q4CBWxldmVsAX0BKAD17vLVDgECaWQBdyQwNGQ2MjM0MS04MzI2LTQyMzYtYTA4My00ODdlMjZm"
+    "YWQyMzAoAPXu8tUOAQl0ZXh0Q29sb3IBdwdkZWZhdWx0KAD17vLVDgEPYmFja2dyb3VuZENvbG9y"
+    "AXcHZGVmYXVsdIf17vLVDgEDDmJsb2NrQ29udGFpbmVyBwD17vLVDhADDmJ1bGxldExpc3RJdGVt"
+    "BwD17vLVDhEGBAD17vLVDhIBd4b17vLVDhMEYm9sZAJ7fYT17vLVDhQCb3KG9e7y1Q4WBGJvbGQE"
+    "bnVsbIT17vLVDhcCbGQoAPXu8tUOEQ10ZXh0QWxpZ25tZW50AXcEbGVmdCgA9e7y1Q4QAmlkAXck"
+    "ZDM1MWUwNjgtM2U1NS00MjI2LThlYTUtYWJiMjYzMTk4ZTJhKAD17vLVDhAJdGV4dENvbG9yAXcH"
+    "ZGVmYXVsdCgA9e7y1Q4QD2JhY2tncm91bmRDb2xvcgF3B2RlZmF1bHSH9e7y1Q4QAw5ibG9ja0Nv"
+    "bnRhaW5lcgcA9e7y1Q4eAwlwYXJhZ3JhcGgoAPXu8tUOHw10ZXh0QWxpZ25tZW50AXcEbGVmdCgA"
+    "9e7y1Q4eAmlkAXckODk3MDBjMDctZTBlMS00ZmUwLWFjYTItODQ5MzIwOWE3ZTQyKAD17vLVDh4J"
+    "dGV4dENvbG9yAXcHZGVmYXVsdCgA9e7y1Q4eD2JhY2tncm91bmRDb2xvcgF3B2RlZmF1bHQA"
+)
+

@pytest.mark.parametrize("via_parent", [True, False])
@pytest.mark.parametrize(
@@ -330,6 +351,7 @@ def test_api_documents_update_authenticated_no_websocket(settings):
    ws_resp = responses.get(endpoint_url, json={"count": 0, "exists": False})

    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path

    response = client.put(
        f"/api/v1.0/documents/{document.id!s}/",
@@ -338,6 +360,8 @@ def test_api_documents_update_authenticated_no_websocket(settings):
    )
    assert response.status_code == 200

+    document.refresh_from_db()
+    assert document.path == old_path
    assert cache.get(f"docs:no-websocket:{document.id}") == session_key
    assert ws_resp.call_count == 1

@@ -446,6 +470,7 @@ def test_api_documents_update_user_connected_to_websocket(settings):
    ws_resp = responses.get(endpoint_url, json={"count": 3, "exists": True})

    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path

    response = client.put(
        f"/api/v1.0/documents/{document.id!s}/",
@@ -453,6 +478,9 @@ def test_api_documents_update_user_connected_to_websocket(settings):
        format="json",
    )
    assert response.status_code == 200
+
+    document.refresh_from_db()
+    assert document.path == old_path
    assert cache.get(f"docs:no-websocket:{document.id}") is None
    assert ws_resp.call_count == 1

@@ -486,6 +514,7 @@ def test_api_documents_update_websocket_server_unreachable_fallback_to_no_websoc
    ws_resp = responses.get(endpoint_url, status=500)

    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path

    response = client.put(
        f"/api/v1.0/documents/{document.id!s}/",
@@ -494,6 +523,8 @@ def test_api_documents_update_websocket_server_unreachable_fallback_to_no_websoc
    )
    assert response.status_code == 200

+    document.refresh_from_db()
+    assert document.path == old_path
    assert cache.get(f"docs:no-websocket:{document.id}") == session_key
    assert ws_resp.call_count == 1

@@ -605,6 +636,7 @@ def test_api_documents_update_force_websocket_param_to_true(settings):
    ws_resp = responses.get(endpoint_url, status=500)

    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path

    response = client.put(
        f"/api/v1.0/documents/{document.id!s}/",
@@ -613,6 +645,8 @@ def test_api_documents_update_force_websocket_param_to_true(settings):
    )
    assert response.status_code == 200

+    document.refresh_from_db()
+    assert document.path == old_path
    assert cache.get(f"docs:no-websocket:{document.id}") is None
    assert ws_resp.call_count == 0

@@ -643,6 +677,7 @@ def test_api_documents_update_feature_flag_disabled(settings):
    ws_resp = responses.get(endpoint_url, status=500)

    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path

    response = client.put(
        f"/api/v1.0/documents/{document.id!s}/",
@@ -651,6 +686,8 @@ def test_api_documents_update_feature_flag_disabled(settings):
    )
    assert response.status_code == 200

+    document.refresh_from_db()
+    assert document.path == old_path
    assert cache.get(f"docs:no-websocket:{document.id}") is None
    assert ws_resp.call_count == 0

@@ -716,3 +753,724 @@ def test_api_documents_update_invalid_content():
    )
    assert response.status_code == 400
    assert response.json() == {"content": ["Invalid base64 content."]}
+
+
+# =============================================================================
+# PATCH tests
+# =============================================================================
+
+
+@pytest.mark.parametrize("via_parent", [True, False])
+@pytest.mark.parametrize(
+    "reach, role",
+    [
+        ("restricted", "reader"),
+        ("restricted", "editor"),
+        ("authenticated", "reader"),
+        ("authenticated", "editor"),
+        ("public", "reader"),
+    ],
+)
+def test_api_documents_patch_anonymous_forbidden(reach, role, via_parent):
+    """
+    Anonymous users should not be allowed to patch a document when link
+    configuration does not allow it.
+    """
+    if via_parent:
+        grand_parent = factories.DocumentFactory(link_reach=reach, link_role=role)
+        parent = factories.DocumentFactory(parent=grand_parent, link_reach="restricted")
+        document = factories.DocumentFactory(parent=parent, link_reach="restricted")
+    else:
+        document = factories.DocumentFactory(link_reach=reach, link_role=role)
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = APIClient().patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 401
+    assert response.json() == {
+        "detail": "Authentication credentials were not provided."
+    }
+
+    document.refresh_from_db()
+    assert serializers.DocumentSerializer(instance=document).data == old_document_values
+
+
+@pytest.mark.parametrize("via_parent", [True, False])
+@pytest.mark.parametrize(
+    "reach,role",
+    [
+        ("public", "reader"),
+        ("authenticated", "reader"),
+        ("restricted", "reader"),
+        ("restricted", "editor"),
+    ],
+)
+def test_api_documents_patch_authenticated_unrelated_forbidden(reach, role, via_parent):
+    """
+    Authenticated users should not be allowed to patch a document to which
+    they are not related if the link configuration does not allow it.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+
+    client = APIClient()
+    client.force_login(user)
+
+    if via_parent:
+        grand_parent = factories.DocumentFactory(link_reach=reach, link_role=role)
+        parent = factories.DocumentFactory(parent=grand_parent, link_reach="restricted")
+        document = factories.DocumentFactory(parent=parent, link_reach="restricted")
+    else:
+        document = factories.DocumentFactory(link_reach=reach, link_role=role)
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+    document.refresh_from_db()
+    assert serializers.DocumentSerializer(instance=document).data == old_document_values
+
+
+@pytest.mark.parametrize("via_parent", [True, False])
+@pytest.mark.parametrize(
+    "is_authenticated,reach,role",
+    [
+        (False, "public", "editor"),
+        (True, "public", "editor"),
+        (True, "authenticated", "editor"),
+    ],
+)
+def test_api_documents_patch_anonymous_or_authenticated_unrelated(
+    is_authenticated, reach, role, via_parent
+):
+    """
+    Anonymous and authenticated users should be able to patch a document to which
+    they are not related if the link configuration allows it.
+    """
+    client = APIClient()
+
+    if is_authenticated:
+        user = factories.UserFactory(with_owned_document=True)
+        client.force_login(user)
+
+    if via_parent:
+        grand_parent = factories.DocumentFactory(link_reach=reach, link_role=role)
+        parent = factories.DocumentFactory(parent=grand_parent, link_reach="restricted")
+        document = factories.DocumentFactory(parent=parent, link_reach="restricted")
+    else:
+        document = factories.DocumentFactory(link_reach=reach, link_role=role)
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+    old_path = document.path
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content, "websocket": True},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not wirk because the content is in cache.
+    # Force reloading it by fetching the document in the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    document_values = serializers.DocumentSerializer(instance=document).data
+    for key in [
+        "id",
+        "title",
+        "link_reach",
+        "link_role",
+        "creator",
+        "depth",
+        "numchild",
+        "path",
+    ]:
+        assert document_values[key] == old_document_values[key]
+
+
+@pytest.mark.parametrize("via_parent", [True, False])
+@pytest.mark.parametrize("via", VIA)
+def test_api_documents_patch_authenticated_reader(via, via_parent, mock_user_teams):
+    """Users who are reader of a document should not be allowed to patch it."""
+    user = factories.UserFactory(with_owned_document=True)
+
+    client = APIClient()
+    client.force_login(user)
+
+    if via_parent:
+        grand_parent = factories.DocumentFactory(link_reach="restricted")
+        parent = factories.DocumentFactory(parent=grand_parent, link_reach="restricted")
+        document = factories.DocumentFactory(parent=parent, link_reach="restricted")
+        access_document = grand_parent
+    else:
+        document = factories.DocumentFactory(link_reach="restricted")
+        access_document = document
+
+    if via == USER:
+        factories.UserDocumentAccessFactory(
+            document=access_document, user=user, role="reader"
+        )
+    elif via == TEAM:
+        mock_user_teams.return_value = ["lasuite", "unknown"]
+        factories.TeamDocumentAccessFactory(
+            document=access_document, team="lasuite", role="reader"
+        )
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+    document.refresh_from_db()
+    assert serializers.DocumentSerializer(instance=document).data == old_document_values
+
+
+@pytest.mark.parametrize("via_parent", [True, False])
+@pytest.mark.parametrize("role", ["editor", "administrator", "owner"])
+@pytest.mark.parametrize("via", VIA)
+def test_api_documents_patch_authenticated_editor_administrator_or_owner(
+    via, role, via_parent, mock_user_teams
+):
+    """A user who is editor, administrator or owner of a document should be allowed to patch it."""
+    user = factories.UserFactory(with_owned_document=True)
+
+    client = APIClient()
+    client.force_login(user)
+
+    if via_parent:
+        grand_parent = factories.DocumentFactory(link_reach="restricted")
+        parent = factories.DocumentFactory(parent=grand_parent, link_reach="restricted")
+        document = factories.DocumentFactory(parent=parent, link_reach="restricted")
+        access_document = grand_parent
+    else:
+        document = factories.DocumentFactory(link_reach="restricted")
+        access_document = document
+
+    if via == USER:
+        factories.UserDocumentAccessFactory(
+            document=access_document, user=user, role=role
+        )
+    elif via == TEAM:
+        mock_user_teams.return_value = ["lasuite", "unknown"]
+        factories.TeamDocumentAccessFactory(
+            document=access_document, team="lasuite", role=role
+        )
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+    old_path = document.path
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content, "websocket": True},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not wirk because the content is in cache.
+    # Force reloading it by fetching the document in the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    document_values = serializers.DocumentSerializer(instance=document).data
+    for key in [
+        "id",
+        "title",
+        "link_reach",
+        "link_role",
+        "creator",
+        "depth",
+        "numchild",
+        "path",
+        "nb_accesses_ancestors",
+        "nb_accesses_direct",
+    ]:
+        assert document_values[key] == old_document_values[key]
+
+
+@responses.activate
+def test_api_documents_patch_authenticated_no_websocket(settings):
+    """
+    When a user patches the document, not connected to the websocket and is the first to update,
+    the document should be updated.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, json={"count": 0, "exists": False})
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not work because the content is cached.
+    # Force reloading it by fetching the document from the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    assert cache.get(f"docs:no-websocket:{document.id}") == session_key
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_authenticated_no_websocket_user_already_editing(settings):
+    """
+    When a user patches the document, not connected to the websocket and is not the first to
+    update, the document should not be updated.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, json={"count": 0, "exists": False})
+
+    cache.set(f"docs:no-websocket:{document.id}", "other_session_key")
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 403
+    assert response.json() == {"detail": "You are not allowed to edit this document."}
+
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_no_websocket_other_user_connected_to_websocket(settings):
+    """
+    When a user patches the document, not connected to the websocket and another user is connected
+    to the websocket, the document should not be updated.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, json={"count": 3, "exists": False})
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 403
+    assert response.json() == {"detail": "You are not allowed to edit this document."}
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_user_connected_to_websocket(settings):
+    """
+    When a user patches the document while connected to the websocket, the document should be
+    updated.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, json={"count": 3, "exists": True})
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not wirk because the content is in cache.
+    # Force reloading it by fetching the document in the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_websocket_server_unreachable_fallback_to_no_websocket(
+    settings,
+):
+    """
+    When the websocket server is unreachable, the patch should be applied like if the user was
+    not connected to the websocket.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, status=500)
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not work because the content is cached.
+    # Force reloading it by fetching the document from the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    assert cache.get(f"docs:no-websocket:{document.id}") == session_key
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_websocket_server_unreachable_fallback_to_no_websocket_other_users(
+    settings,
+):
+    """
+    When the websocket server is unreachable, the behavior falls back to no-websocket.
+    If another user is already editing, the patch must be denied.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, status=500)
+
+    cache.set(f"docs:no-websocket:{document.id}", "other_session_key")
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 403
+
+    assert cache.get(f"docs:no-websocket:{document.id}") == "other_session_key"
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_websocket_server_room_not_found_fallback_to_no_websocket_other_users(
+    settings,
+):
+    """
+    When the WebSocket server does not have the room created, the logic should fallback to
+    no-WebSocket. If another user is already editing, the patch must be denied.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, status=404)
+
+    cache.set(f"docs:no-websocket:{document.id}", "other_session_key")
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 403
+
+    assert cache.get(f"docs:no-websocket:{document.id}") == "other_session_key"
+    assert ws_resp.call_count == 1
+
+
+@responses.activate
+def test_api_documents_patch_force_websocket_param_to_true(settings):
+    """
+    When the websocket parameter is set to true, the patch should be applied without any check.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, status=500)
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content, "websocket": True},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not work because the content is cached.
+    # Force reloading it by fetching the document from the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    assert ws_resp.call_count == 0
+
+
+@responses.activate
+def test_api_documents_patch_feature_flag_disabled(settings):
+    """
+    When the feature flag is disabled, the patch should be applied without any check.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "editor")])
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = False
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, status=500)
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    old_path = document.path
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+    assert response.status_code == 200
+
+    # Using document.refresh_from_db does not work because the content is cached.
+    # Force reloading it by fetching the document from the database.
+    document = models.Document.objects.get(id=document.id)
+    assert document.path == old_path
+    assert document.content == new_content
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    assert ws_resp.call_count == 0
+
+
+@pytest.mark.parametrize("via", VIA)
+def test_api_documents_patch_administrator_or_owner_of_another(via, mock_user_teams):
+    """
+    Being administrator or owner of a document should not grant authorization to patch
+    another document.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory()
+    if via == USER:
+        factories.UserDocumentAccessFactory(
+            document=document, user=user, role=random.choice(["administrator", "owner"])
+        )
+    elif via == TEAM:
+        mock_user_teams.return_value = ["lasuite", "unknown"]
+        factories.TeamDocumentAccessFactory(
+            document=document,
+            team="lasuite",
+            role=random.choice(["administrator", "owner"]),
+        )
+
+    other_document = factories.DocumentFactory(title="Old title", link_role="reader")
+    old_document_values = serializers.DocumentSerializer(instance=other_document).data
+    new_content = YDOC_UPDATED_CONTENT_BASE64
+
+    response = client.patch(
+        f"/api/v1.0/documents/{other_document.id!s}/",
+        {"content": new_content},
+        format="json",
+    )
+
+    assert response.status_code == 403
+
+    other_document.refresh_from_db()
+    assert (
+        serializers.DocumentSerializer(instance=other_document).data
+        == old_document_values
+    )
+
+
+def test_api_documents_patch_invalid_content():
+    """
+    Patching a document with a non base64 encoded content should raise a validation error.
+    """
+    user = factories.UserFactory(with_owned_document=True)
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(users=[[user, "owner"]])
+
+    response = client.patch(
+        f"/api/v1.0/documents/{document.id!s}/",
+        {"content": "invalid content"},
+        format="json",
+    )
+    assert response.status_code == 400
+    assert response.json() == {"content": ["Invalid base64 content."]}
+
+
+@responses.activate
+def test_api_documents_patch_empty_body(settings):
+    """
+    Test when data is empty the document should not be updated.
+    The `updated_at` property should not change asserting that no update in the database is made.
+    """
+    user = factories.UserFactory()
+
+    client = APIClient()
+    client.force_login(user)
+    session_key = client.session.session_key
+
+    document = factories.DocumentFactory(users=[(user, "owner")], creator=user)
+    document_updated_at = document.updated_at
+
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    settings.COLLABORATION_WS_NOT_CONNECTED_READY_ONLY = True
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}get-connections/"
+        f"?room={document.id}&sessionKey={session_key}"
+    )
+    ws_resp = responses.get(endpoint_url, json={"count": 3, "exists": True})
+
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+
+    old_document_values = serializers.DocumentSerializer(instance=document).data
+
+    with patch("core.models.Document.save") as mock_document_save:
+        response = client.patch(
+            f"/api/v1.0/documents/{document.id!s}/",
+            content_type="application/json",
+        )
+    mock_document_save.assert_not_called()
+    assert response.status_code == 200
+
+    document = models.Document.objects.get(id=document.id)
+    new_document_values = serializers.DocumentSerializer(instance=document).data
+    assert new_document_values == old_document_values
+    assert document_updated_at == document.updated_at
+    assert cache.get(f"docs:no-websocket:{document.id}") is None
+    assert ws_resp.call_count == 1
--- a/src/backend/core/tests/external_api/init.py
+++ b/src/backend/core/tests/external_api/init.py
--- a/src/backend/core/tests/external_api/test_external_api_documents.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents.py
@@ -0,0 +1,772 @@
+"""
+Tests for the Resource Server API for documents.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from datetime import timedelta
+from io import BytesIO
+from unittest.mock import patch
+
+from django.test import override_settings
+from django.utils import timezone
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+from core.services import mime_types
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_retrieve_anonymous_public_standalone():
+    """
+    Anonymous users SHOULD NOT be allowed to retrieve a document from external
+    API if resource server is not enabled.
+    """
+    document = factories.DocumentFactory(link_reach="public")
+
+    response = APIClient().get(f"/external_api/v1.0/documents/{document.id!s}/")
+
+    assert response.status_code == 404
+
+
+def test_external_api_documents_list_connected_not_resource_server():
+    """
+    Connected users SHOULD NOT be allowed to list documents if resource server is not enabled.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(document=document, user=user, role="reader")
+
+    response = client.get("/external_api/v1.0/documents/")
+
+    assert response.status_code == 404
+
+
+def test_external_api_documents_list_connected_resource_server(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """Connected users should be allowed to list documents from a resource server."""
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role="reader"
+    )
+
+    response = client.get("/external_api/v1.0/documents/")
+
+    assert response.status_code == 200
+
+
+def test_external_api_documents_list_connected_resource_server_with_invalid_token(
+    user_token, resource_server_backend
+):
+    """A user with an invalid sub SHOULD NOT be allowed to retrieve documents
+    from a resource server."""
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.get("/external_api/v1.0/documents/")
+
+    assert response.status_code == 401
+
+
+def test_external_api_documents_retrieve_connected_resource_server_with_wrong_abilities(
+    user_token, user_specific_sub, resource_server_backend
+):
+    """
+    A user with wrong abilities SHOULD NOT be allowed to retrieve a document from
+    a resource server.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_documents_retrieve_connected_resource_server_using_access_token(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    A user with an access token SHOULD be allowed to retrieve a document from
+    a resource server.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.LinkRoleChoices.READER
+    )
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/")
+
+    assert response.status_code == 200
+
+
+def test_external_api_documents_create_root_success(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users with an access token should be able to create a root document through the resource
+    server and should automatically be declared as the owner of the newly created document.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.post(
+        "/external_api/v1.0/documents/",
+        {
+            "title": "Test Root Document",
+        },
+    )
+
+    assert response.status_code == 201
+
+    data = response.json()
+    document = models.Document.objects.get(id=data["id"])
+
+    assert document.title == "Test Root Document"
+    assert document.creator == user_specific_sub
+    assert document.accesses.filter(role="owner", user=user_specific_sub).exists()
+
+
+def test_external_api_documents_create_subdocument_owner_success(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users with an access token SHOULD BE able to create a sub-document through the resource
+    server when they have OWNER permissions on the parent document.
+    The creator is set to the authenticated user, and permissions are inherited
+    from the parent document.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    # Create a parent document first
+    parent_document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=parent_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{parent_document.id}/children/",
+        {
+            "title": "Test Sub Document",
+        },
+    )
+
+    assert response.status_code == 201
+
+    data = response.json()
+    document = models.Document.objects.get(id=data["id"])
+
+    assert document.title == "Test Sub Document"
+    assert document.creator == user_specific_sub
+    assert document.get_parent() == parent_document
+    # Child documents inherit permissions from parent, no direct access needed
+    assert not document.accesses.exists()
+
+
+def test_external_api_documents_create_subdocument_editor_success(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users with an access token SHOULD BE able to create a sub-document through the resource
+    server when they have EDITOR permissions on the parent document.
+    Permissions are inherited from the parent document.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    # Create a parent document first
+    parent_document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+    factories.UserDocumentAccessFactory(
+        document=parent_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.EDITOR,
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{parent_document.id}/children/",
+        {
+            "title": "Test Sub Document",
+        },
+    )
+
+    assert response.status_code == 201
+
+    data = response.json()
+    document = models.Document.objects.get(id=data["id"])
+
+    assert document.title == "Test Sub Document"
+    assert document.creator == user_specific_sub
+    assert document.get_parent() == parent_document
+    # Child documents inherit permissions from parent, no direct access needed
+    assert not document.accesses.exists()
+
+
+def test_external_api_documents_create_subdocument_reader_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users with an access token SHOULD NOT be able to create a sub-document through the resource
+    server when they have READER permissions on the parent document.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    # Create a parent document first
+    parent_document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+    factories.UserDocumentAccessFactory(
+        document=parent_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.READER,
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{parent_document.id}/children/",
+        {
+            "title": "Test Sub Document",
+        },
+    )
+
+    assert response.status_code == 403
+
+
+@patch("core.services.converter_services.Converter.convert")
+def test_external_api_documents_create_with_markdown_file_success(
+    mock_convert, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users with an access token should be able to create documents through the resource
+    server by uploading a Markdown file and should automatically be declared as the owner
+    of the newly created document.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    # Mock the conversion
+    converted_yjs = "base64encodedyjscontent"
+    mock_convert.return_value = converted_yjs
+
+    # Create a fake Markdown file
+    file_content = b"# Test Document\n\nThis is a test."
+    file = BytesIO(file_content)
+    file.name = "readme.md"
+
+    response = client.post(
+        "/external_api/v1.0/documents/",
+        {
+            "file": file,
+        },
+        format="multipart",
+    )
+
+    assert response.status_code == 201
+
+    data = response.json()
+    document = models.Document.objects.get(id=data["id"])
+
+    assert document.title == "readme.md"
+    assert document.content == converted_yjs
+    assert document.accesses.filter(role="owner", user=user_specific_sub).exists()
+
+    # Verify the converter was called correctly
+    mock_convert.assert_called_once_with(
+        file_content,
+        content_type=mime_types.MARKDOWN,
+        accept=mime_types.YJS,
+    )
+
+
+def test_external_api_documents_list_with_multiple_roles(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    List all documents accessible to a user with different roles and verify
+    that associated permissions are correctly returned in the response.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    # Create documents with different roles for the user
+    owner_document = factories.DocumentFactory(
+        title="Owner Document",
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=owner_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    editor_document = factories.DocumentFactory(
+        title="Editor Document",
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+    factories.UserDocumentAccessFactory(
+        document=editor_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.EDITOR,
+    )
+
+    reader_document = factories.DocumentFactory(
+        title="Reader Document",
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+    factories.UserDocumentAccessFactory(
+        document=reader_document,
+        user=user_specific_sub,
+        role=models.RoleChoices.READER,
+    )
+
+    # Create a document the user should NOT have access to
+    other_document = factories.DocumentFactory(
+        title="Other Document",
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+    other_user = factories.UserFactory()
+    factories.UserDocumentAccessFactory(
+        document=other_document,
+        user=other_user,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.get("/external_api/v1.0/documents/")
+
+    assert response.status_code == 200
+    data = response.json()
+
+    # Verify the response contains results
+    assert "results" in data
+    results = data["results"]
+
+    # Verify user can see exactly 3 documents (owner, editor, reader)
+    result_ids = {result["id"] for result in results}
+    assert len(results) == 3
+    assert str(owner_document.id) in result_ids
+    assert str(editor_document.id) in result_ids
+    assert str(reader_document.id) in result_ids
+    assert str(other_document.id) not in result_ids
+
+    # Verify each document has correct user_role field indicating permission level
+    for result in results:
+        if result["id"] == str(owner_document.id):
+            assert result["title"] == "Owner Document"
+            assert result["user_role"] == models.RoleChoices.OWNER
+        elif result["id"] == str(editor_document.id):
+            assert result["title"] == "Editor Document"
+            assert result["user_role"] == models.RoleChoices.EDITOR
+        elif result["id"] == str(reader_document.id):
+            assert result["title"] == "Reader Document"
+            assert result["user_role"] == models.RoleChoices.READER
+
+
+def test_external_api_documents_duplicate_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users CAN DUPLICATE a document from a resource server
+    when they have the required permissions on the document,
+    as this action bypasses the permission checks.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/duplicate/",
+    )
+
+    assert response.status_code == 201
+
+
+# NOT allowed actions on resource server.
+
+
+def test_external_api_documents_put_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to PUT a document from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/", {"title": "new title"}
+    )
+
+    assert response.status_code == 403
+
+
+def test_external_api_document_delete_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to delete a document from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.delete(f"/external_api/v1.0/documents/{document.id!s}/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_documents_move_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to MOVE a document from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    new_parent = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=new_parent,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/move/",
+        {"target_document_id": new_parent.id},
+    )
+
+    assert response.status_code == 403
+
+
+def test_external_api_documents_restore_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to restore a document from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.post(f"/external_api/v1.0/documents/{document.id!s}/restore/")
+
+    assert response.status_code == 403
+
+
+@pytest.mark.parametrize("role", models.LinkRoleChoices.values)
+@pytest.mark.parametrize("reach", models.LinkReachChoices.values)
+def test_external_api_documents_trashbin_not_allowed(
+    role, reach, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to list documents from the trashbin,
+    regardless of the document link reach and user role, from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=reach,
+        creator=user_specific_sub,
+        deleted_at=timezone.now(),
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=role,
+    )
+
+    response = client.get("/external_api/v1.0/documents/trashbin/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_documents_create_for_owner_not_allowed():
+    """
+    Authenticated users SHOULD NOT be allowed to call create documents
+    on behalf of other users.
+    This API endpoint is reserved for server-to-server calls.
+    """
+    user = factories.UserFactory()
+
+    client = APIClient()
+    client.force_login(user)
+
+    data = {
+        "title": "My Document",
+        "content": "Document content",
+        "sub": "123",
+        "email": "john.doe@example.com",
+    }
+
+    response = client.post(
+        "/external_api/v1.0/documents/create-for-owner/",
+        data,
+        format="json",
+    )
+
+    assert response.status_code == 401
+    assert not models.Document.objects.exists()
+
+
+# Test overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "children", "trashbin"],
+        },
+    }
+)
+def test_external_api_documents_trashbin_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to list soft deleted documents from a resource server
+    when the trashbin action is enabled in EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    document.soft_delete()
+
+    response = client.get("/external_api/v1.0/documents/trashbin/")
+
+    assert response.status_code == 200
+
+    content = response.json()
+    results = content.pop("results")
+    assert content == {
+        "count": 1,
+        "next": None,
+        "previous": None,
+    }
+    assert len(results) == 1
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "children", "destroy"],
+        },
+    }
+)
+def test_external_api_documents_delete_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to delete a document from a resource server
+    when the delete action is enabled in EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.delete(f"/external_api/v1.0/documents/{document.id!s}/")
+
+    assert response.status_code == 204
+    # Verify the document is soft deleted
+    document.refresh_from_db()
+    assert document.deleted_at is not None
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "update",
+            ],
+        },
+    }
+)
+def test_external_api_documents_update_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to update a document from a resource server
+    when the update action is enabled in EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    original_title = document.title
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/", {"title": "new title"}
+    )
+
+    assert response.status_code == 200
+    # Verify the document is updated
+    document.refresh_from_db()
+    assert document.title == "new title"
+    assert document.title != original_title
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "children", "move"],
+        },
+    }
+)
+def test_external_api_documents_move_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to move a document from a resource server
+    when the move action is enabled in EXTERNAL_API settings and they
+    have the required permissions on the document and the target location.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    parent = factories.DocumentFactory(
+        users=[(user_specific_sub, "owner")], teams=[("lasuite", "owner")]
+    )
+    # A document with no owner
+    document = factories.DocumentFactory(
+        parent=parent, users=[(user_specific_sub, "reader")]
+    )
+    target = factories.DocumentFactory()
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/move/",
+        data={"target_document_id": str(target.id), "position": "first-sibling"},
+    )
+
+    assert response.status_code == 200
+    assert response.json() == {"message": "Document moved successfully."}
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "children", "restore"],
+        },
+    }
+)
+def test_external_api_documents_restore_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to restore a recently soft-deleted document
+    from a resource server when the restore action is enabled in EXTERNAL_API
+    settings and they have the required permissions on the document.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    now = timezone.now() - timedelta(days=15)
+    document = factories.DocumentFactory(deleted_at=now)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role="owner"
+    )
+
+    response = client.post(f"/external_api/v1.0/documents/{document.id!s}/restore/")
+
+    assert response.status_code == 200
+    assert response.json() == {"detail": "Document has been successfully restored."}
+
+    document.refresh_from_db()
+    assert document.deleted_at is None
+    assert document.ancestors_deleted_at is None
--- a/src/backend/core/tests/external_api/test_external_api_documents_accesses.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_accesses.py
@@ -0,0 +1,681 @@
+"""
+Tests for the Resource Server API for documents accesses.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from django.test import override_settings
+
+import pytest
+import responses
+from rest_framework.test import APIClient
+
+from core import factories, models
+from core.api import serializers
+from core.tests.utils.urls import reload_urls
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_document_accesses_anonymous_public_standalone():
+    """
+    Anonymous users SHOULD NOT be allowed to list document accesses
+    from external API if resource server is not enabled.
+    """
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+    )
+
+    response = APIClient().get(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/"
+    )
+
+    assert response.status_code == 404
+
+
+def test_external_api_document_accesses_list_connected_not_resource_server():
+    """
+    Connected users SHOULD NOT be allowed to list document accesses
+    if resource server is not enabled.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+
+    response = APIClient().get(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/"
+    )
+
+    assert response.status_code == 404
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_document_accesses_list_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to list the accesses of
+    a document from a resource server.
+    """
+    reload_urls()
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/accesses/")
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_document_accesses_retrieve_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to retrieve a specific access of
+    a document from a resource server.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    access = factories.UserDocumentAccessFactory(document=document)
+
+    response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/"
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_documents_accesses_create_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to create an access for a document
+    from a resource server.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    other_user = factories.UserFactory()
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/",
+        {"user_id": other_user.id, "role": models.RoleChoices.READER},
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_document_accesses_update_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to update an access for a
+    document from a resource server through PUT.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    other_user = factories.UserFactory()
+    access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+        {"role": models.RoleChoices.EDITOR},
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_document_accesses_partial_update_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to update an access
+    for a document from a resource server through PATCH.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    other_user = factories.UserFactory()
+    access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    response = client.patch(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+        {"role": models.RoleChoices.EDITOR},
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": [],
+        },
+    }
+)
+def test_external_api_documents_accesses_delete_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to delete an access for
+    a document from a resource server.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    access = factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.delete(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+    )
+
+    assert response.status_code == 403
+
+
+# Overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    }
+)
+def test_external_api_document_accesses_list_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to list the accesses of a document from a resource server
+    when the list action is enabled in EXTERNAL_API document_access settings.
+    """
+
+    reload_urls()
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED, creator=user_specific_sub
+    )
+    user_access = factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    # Create additional accesses
+    other_user = factories.UserFactory()
+    other_access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/accesses/")
+
+    assert response.status_code == 200
+    data = response.json()
+
+    access_ids = [entry["id"] for entry in data]
+    assert str(user_access.id) in access_ids
+    assert str(other_access.id) in access_ids
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    }
+)
+def test_external_api_document_accesses_retrieve_can_be_allowed(
+    user_token,
+    resource_server_backend,
+    user_specific_sub,
+):
+    """
+    A user who is related to a document SHOULD be allowed to retrieve the
+    associated document user accesses.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    access = factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+    )
+    data = response.json()
+
+    assert response.status_code == 200
+    assert data["id"] == str(access.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "create"],
+        },
+    }
+)
+def test_external_api_document_accesses_create_can_be_allowed(
+    user_token,
+    resource_server_backend,
+    user_specific_sub,
+):
+    """
+    A user who is related to a document SHOULD be allowed to create
+    a user access for the document.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    other_user = factories.UserFactory()
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/",
+        data={"user_id": other_user.id, "role": models.RoleChoices.READER},
+    )
+    data = response.json()
+
+    assert response.status_code == 201
+    assert data["role"] == models.RoleChoices.READER
+    assert str(data["user"]["id"]) == str(other_user.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "update"],
+        },
+    }
+)
+def test_external_api_document_accesses_update_can_be_allowed(
+    user_token,
+    resource_server_backend,
+    user_specific_sub,
+    settings,
+):
+    """
+    A user who is related to a document SHOULD be allowed to update
+    a user access for the document through PUT.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    other_user = factories.UserFactory()
+    access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    # Add the reset-connections endpoint to the existing mock
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}reset-connections/?room={document.id}"
+    )
+    resource_server_backend.add(
+        responses.POST,
+        endpoint_url,
+        json={},
+        status=200,
+    )
+
+    old_values = serializers.DocumentAccessSerializer(instance=access).data
+
+    # Update only the role field
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+        {**old_values, "role": models.RoleChoices.EDITOR},  #  type: ignore
+        format="json",
+    )
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["role"] == models.RoleChoices.EDITOR
+    assert str(data["user"]["id"]) == str(other_user.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "partial_update"],
+        },
+    }
+)
+def test_external_api_document_accesses_partial_update_can_be_allowed(
+    user_token,
+    resource_server_backend,
+    user_specific_sub,
+    settings,
+):
+    """
+    A user who is related to a document SHOULD be allowed to update
+    a user access for the document through PATCH.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    other_user = factories.UserFactory()
+    access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    # Add the reset-connections endpoint to the existing mock
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}reset-connections/?room={document.id}"
+    )
+    resource_server_backend.add(
+        responses.POST,
+        endpoint_url,
+        json={},
+        status=200,
+    )
+
+    response = client.patch(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{access.id!s}/",
+        data={"role": models.RoleChoices.EDITOR},
+    )
+    data = response.json()
+
+    assert response.status_code == 200
+    assert data["role"] == models.RoleChoices.EDITOR
+    assert str(data["user"]["id"]) == str(other_user.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_access": {
+            "enabled": True,
+            "actions": ["list", "destroy"],
+        },
+    }
+)
+def test_external_api_documents_accesses_delete_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub, settings
+):
+    """
+    Connected users SHOULD be allowed to delete an access for
+    a document from a resource server when the destroy action is
+    enabled in settings.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+    other_user = factories.UserFactory()
+    other_access = factories.UserDocumentAccessFactory(
+        document=document, user=other_user, role=models.RoleChoices.READER
+    )
+
+    # Add the reset-connections endpoint to the existing mock
+    settings.COLLABORATION_API_URL = "http://example.com/"
+    settings.COLLABORATION_SERVER_SECRET = "secret-token"
+    endpoint_url = (
+        f"{settings.COLLABORATION_API_URL}reset-connections/?room={document.id}"
+    )
+    resource_server_backend.add(
+        responses.POST,
+        endpoint_url,
+        json={},
+        status=200,
+    )
+
+    response = client.delete(
+        f"/external_api/v1.0/documents/{document.id!s}/accesses/{other_access.id!s}/",
+    )
+
+    assert response.status_code == 204
--- a/src/backend/core/tests/external_api/test_external_api_documents_ai.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_ai.py
@@ -0,0 +1,273 @@
+"""
+Tests for the Resource Server API for document AI features.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from unittest.mock import MagicMock, patch
+
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+from core.tests.documents.test_api_documents_ai_proxy import (  # pylint: disable=unused-import
+    ai_settings,
+)
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_ai_transform_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to access AI transform endpoints
+    from a resource server by default.
+    """
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/ai-transform/",
+        {"text": "hello", "action": "prompt"},
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+
+def test_external_api_documents_ai_translate_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to access AI translate endpoints
+    from a resource server by default.
+    """
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/ai-translate/",
+        {"text": "hello", "language": "es"},
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+
+def test_external_api_documents_ai_proxy_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to access AI proxy endpoints
+    from a resource server by default.
+    """
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/ai-proxy/",
+        b"{}",
+        content_type="application/json",
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+
+# Overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "ai_transform",
+            ],
+        },
+    }
+)
+@pytest.mark.usefixtures("ai_settings")
+@patch("openai.resources.chat.completions.Completions.create")
+def test_external_api_documents_ai_transform_can_be_allowed(
+    mock_create, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users SHOULD be allowed to transform a document using AI when the
+    corresponding action is enabled via EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED, favorited_by=[user_specific_sub]
+    )
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    mock_create.return_value = MagicMock(
+        choices=[MagicMock(message=MagicMock(content="Salut"))]
+    )
+
+    url = f"/external_api/v1.0/documents/{document.id!s}/ai-transform/"
+    response = client.post(url, {"text": "Hello", "action": "prompt"})
+
+    assert response.status_code == 200
+    assert response.json() == {"answer": "Salut"}
+    # pylint: disable=line-too-long
+    mock_create.assert_called_once_with(
+        model="llama",
+        messages=[
+            {
+                "role": "system",
+                "content": (
+                    "Answer the prompt using markdown formatting for structure and emphasis. "
+                    "Return the content directly without wrapping it in code blocks or markdown delimiters. "
+                    "Preserve the language and markdown formatting. "
+                    "Do not provide any other information. "
+                    "Preserve the language."
+                ),
+            },
+            {"role": "user", "content": "Hello"},
+        ],
+    )
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "ai_translate",
+            ],
+        },
+    }
+)
+@pytest.mark.usefixtures("ai_settings")
+@patch("openai.resources.chat.completions.Completions.create")
+def test_external_api_documents_ai_translate_can_be_allowed(
+    mock_create, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users SHOULD be allowed to translate a document using AI when the
+    corresponding action is enabled via EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED, favorited_by=[user_specific_sub]
+    )
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    mock_create.return_value = MagicMock(
+        choices=[MagicMock(message=MagicMock(content="Salut"))]
+    )
+
+    url = f"/external_api/v1.0/documents/{document.id!s}/ai-translate/"
+    response = client.post(url, {"text": "Hello", "language": "es-co"})
+
+    assert response.status_code == 200
+    assert response.json() == {"answer": "Salut"}
+    mock_create.assert_called_once_with(
+        model="llama",
+        messages=[
+            {
+                "role": "system",
+                "content": (
+                    "Keep the same html structure and formatting. "
+                    "Translate the content in the html to the "
+                    "specified language Colombian Spanish. "
+                    "Check the translation for accuracy and make any necessary corrections. "
+                    "Do not provide any other information."
+                ),
+            },
+            {"role": "user", "content": "Hello"},
+        ],
+    )
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "ai_proxy",
+            ],
+        },
+    }
+)
+@pytest.mark.usefixtures("ai_settings")
+@patch("core.services.ai_services.AIService.stream")
+def test_external_api_documents_ai_proxy_can_be_allowed(
+    mock_stream, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users SHOULD be allowed to use the AI proxy endpoint when the
+    corresponding action is enabled via EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED, creator=user_specific_sub
+    )
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    mock_stream.return_value = iter(["data: response\n"])
+
+    url = f"/external_api/v1.0/documents/{document.id!s}/ai-proxy/"
+    response = client.post(
+        url,
+        b"{}",
+        content_type="application/json",
+    )
+
+    assert response.status_code == 200
+    assert response["Content-Type"] == "text/event-stream"  # type: ignore
+    mock_stream.assert_called_once()
--- a/src/backend/core/tests/external_api/test_external_api_documents_attachment_upload.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_attachment_upload.py
@@ -0,0 +1,121 @@
+"""
+Tests for the Resource Server API for document attachments.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+import re
+import uuid
+from urllib.parse import parse_qs, urlparse
+
+from django.core.files.uploadedfile import SimpleUploadedFile
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_attachment_upload_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to upload attachments to a document
+    from a resource server.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    pixel = (
+        b"\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x01\x00\x00\x00\x01\x08\x06\x00"
+        b"\x00\x00\x1f\x15\xc4\x89\x00\x00\x00\nIDATx\x9cc\xf8\xff\xff?\x00\x05\xfe\x02\xfe"
+        b"\xa7V\xbd\xfa\x00\x00\x00\x00IEND\xaeB`\x82"
+    )
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    file = SimpleUploadedFile(name="test.png", content=pixel, content_type="image/png")
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/attachment-upload/",
+        {"file": file},
+        format="multipart",
+    )
+
+    assert response.status_code == 403
+    assert response.json() == {
+        "detail": "You do not have permission to perform this action."
+    }
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "attachment_upload",
+            ],
+        },
+    }
+)
+def test_external_api_documents_attachment_upload_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to upload attachments to a document
+    from a resource server when the attachment-upload action is enabled in EXTERNAL_API settings.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    pixel = (
+        b"\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x01\x00\x00\x00\x01\x08\x06\x00"
+        b"\x00\x00\x1f\x15\xc4\x89\x00\x00\x00\nIDATx\x9cc\xf8\xff\xff?\x00\x05\xfe\x02\xfe"
+        b"\xa7V\xbd\xfa\x00\x00\x00\x00IEND\xaeB`\x82"
+    )
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    file = SimpleUploadedFile(name="test.png", content=pixel, content_type="image/png")
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/attachment-upload/",
+        {"file": file},
+        format="multipart",
+    )
+
+    assert response.status_code == 201
+
+    pattern = re.compile(rf"^{document.id!s}/attachments/(.*)\.png")
+    url_parsed = urlparse(response.json()["file"])
+    assert url_parsed.path == f"/api/v1.0/documents/{document.id!s}/media-check/"
+    query = parse_qs(url_parsed.query)
+    assert query["key"][0] is not None
+    file_path = query["key"][0]
+    match = pattern.search(file_path)
+    file_id = match.group(1)  # type: ignore
+
+    # Validate that file_id is a valid UUID
+    uuid.UUID(file_id)
--- a/src/backend/core/tests/external_api/test_external_api_documents_favorite.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_favorite.py
@@ -0,0 +1,157 @@
+"""
+Tests for the Resource Server API for document favorites.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_favorites_list_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to list their favorites
+    from a resource server, as favorite_list() bypasses permissions.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.UserDocumentAccessFactory(
+        user=user_specific_sub,
+        role=models.RoleChoices.READER,
+        document__favorited_by=[user_specific_sub],
+    ).document
+
+    response = client.get("/external_api/v1.0/documents/favorite_list/")
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["count"] == 1
+    assert data["results"][0]["id"] == str(document.id)
+
+
+def test_external_api_documents_favorite_add_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    By default the "favorite" action is not permitted on the external API.
+    POST to the endpoint must return 403.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.post(f"/external_api/v1.0/documents/{document.id!s}/favorite/")
+    assert response.status_code == 403
+
+
+def test_external_api_documents_favorite_delete_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    By default the "favorite" action is not permitted on the external API.
+    DELETE to the endpoint must return 403.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.delete(f"/external_api/v1.0/documents/{document.id!s}/favorite/")
+    assert response.status_code == 403
+
+
+# Overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "favorite",
+            ],
+        },
+    }
+)
+def test_external_api_documents_favorite_add_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users SHOULD be allowed to POST to the favorite endpoint when the
+    corresponding action is enabled via EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.post(f"/external_api/v1.0/documents/{document.id!s}/favorite/")
+    assert response.status_code == 201
+    assert models.DocumentFavorite.objects.filter(
+        document=document, user=user_specific_sub
+    ).exists()
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "favorite",
+            ],
+        },
+    }
+)
+def test_external_api_documents_favorite_delete_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Users SHOULD be allowed to DELETE from the favorite endpoint when the
+    corresponding action is enabled via EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED, favorited_by=[user_specific_sub]
+    )
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.delete(f"/external_api/v1.0/documents/{document.id!s}/favorite/")
+    assert response.status_code == 204
+    assert not models.DocumentFavorite.objects.filter(
+        document=document, user=user_specific_sub
+    ).exists()
--- a/src/backend/core/tests/external_api/test_external_api_documents_invitation.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_invitation.py
@@ -0,0 +1,474 @@
+"""
+Tests for the Resource Server API for invitations.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+from core.tests.utils.urls import reload_urls
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_document_invitations_anonymous_public_standalone():
+    """
+    Anonymous users SHOULD NOT be allowed to list invitations from external
+    API if resource server is not enabled.
+    """
+    invitation = factories.InvitationFactory()
+    response = APIClient().get(
+        f"/external_api/v1.0/documents/{invitation.document.id!s}/invitations/"
+    )
+
+    assert response.status_code == 404
+
+
+def test_external_api_document_invitations_list_connected_not_resource_server():
+    """
+    Connected users SHOULD NOT be allowed to list document invitations
+    if resource server is not enabled.
+    """
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    invitation = factories.InvitationFactory()
+    response = APIClient().get(
+        f"/external_api/v1.0/documents/{invitation.document.id!s}/invitations/"
+    )
+
+    assert response.status_code == 404
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": [],
+        },
+    },
+)
+def test_external_api_document_invitations_list_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to list document invitations
+    by default.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    invitation = factories.InvitationFactory()
+    response = client.get(
+        f"/external_api/v1.0/documents/{invitation.document.id!s}/invitations/"
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": [],
+        },
+    },
+)
+def test_external_api_document_invitations_retrieve_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to retrieve a document invitation
+    by default.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    invitation = factories.InvitationFactory()
+    document = invitation.document
+
+    response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/"
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": [],
+        },
+    },
+)
+def test_external_api_document_invitations_create_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to create a document invitation
+    by default.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/",
+        {"email": "invited@example.com", "role": models.RoleChoices.READER},
+        format="json",
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    },
+)
+def test_external_api_document_invitations_partial_update_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to partially update a document invitation
+    by default.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(
+        document=document, role=models.RoleChoices.READER
+    )
+
+    response = client.patch(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/",
+        {"role": models.RoleChoices.EDITOR},
+        format="json",
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    },
+)
+def test_external_api_document_invitations_delete_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to delete a document invitation
+    by default.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(document=document)
+
+    response = client.delete(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/",
+    )
+
+    assert response.status_code == 403
+
+
+# Overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    },
+)
+def test_external_api_document_invitations_list_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to list document invitations
+    when the action is explicitly enabled.
+
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(document=document)
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/invitations/")
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["count"] == 1
+    assert data["results"][0]["id"] == str(invitation.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve"],
+        },
+    },
+)
+def test_external_api_document_invitations_retrieve_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to retrieve a document invitation
+    when the action is explicitly enabled.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(document=document)
+
+    response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/"
+    )
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["id"] == str(invitation.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "create"],
+        },
+    },
+)
+def test_external_api_document_invitations_create_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to create a document invitation
+    when the create action is explicitly enabled.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.post(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/",
+        {"email": "invited@example.com", "role": models.RoleChoices.READER},
+        format="json",
+    )
+
+    assert response.status_code == 201
+    data = response.json()
+    assert data["email"] == "invited@example.com"
+    assert data["role"] == models.RoleChoices.READER
+    assert str(data["document"]) == str(document.id)
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "partial_update"],
+        },
+    },
+)
+def test_external_api_document_invitations_partial_update_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to partially update a document invitation
+    when the partial_update action is explicitly enabled.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(
+        document=document, role=models.RoleChoices.READER
+    )
+
+    response = client.patch(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/",
+        {"role": models.RoleChoices.EDITOR},
+        format="json",
+    )
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["role"] == models.RoleChoices.EDITOR
+    assert data["email"] == invitation.email
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+            ],
+        },
+        "document_invitation": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "destroy"],
+        },
+    },
+)
+def test_external_api_document_invitations_delete_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to delete a document invitation
+    when the destroy action is explicitly enabled.
+    """
+    reload_urls()
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory()
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+    invitation = factories.InvitationFactory(document=document)
+
+    response = client.delete(
+        f"/external_api/v1.0/documents/{document.id!s}/invitations/{invitation.id!s}/",
+    )
+
+    assert response.status_code == 204
--- a/src/backend/core/tests/external_api/test_external_api_documents_link_configuration.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_link_configuration.py
@@ -0,0 +1,105 @@
+"""
+Tests for the Resource Server API for document link configurations.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from unittest.mock import patch
+
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_link_configuration_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to update the link configuration of a document
+    from a resource server.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/link-configuration/"
+    )
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "link_configuration",
+            ],
+        },
+    },
+    COLLABORATION_API_URL="http://example.com/",
+    COLLABORATION_SERVER_SECRET="secret-token",
+)
+@patch("core.services.collaboration_services.CollaborationService.reset_connections")
+def test_external_api_documents_link_configuration_can_be_allowed(
+    mock_reset, user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to update the link configuration of a document
+    from a resource server when the corresponding action is enabled in EXTERNAL_API settings.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    # attempt to change reach/role to a valid combination
+    new_data = {
+        "link_reach": models.LinkReachChoices.PUBLIC,
+        "link_role": models.LinkRoleChoices.EDITOR,
+    }
+
+    response = client.put(
+        f"/external_api/v1.0/documents/{document.id!s}/link-configuration/",
+        new_data,
+        format="json",
+    )
+
+    assert response.status_code == 200
+
+    # verify the document was updated in the database
+    document.refresh_from_db()
+    assert document.link_reach == models.LinkReachChoices.PUBLIC
+    assert document.link_role == models.LinkRoleChoices.EDITOR
--- a/src/backend/core/tests/external_api/test_external_api_documents_media_auth.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_media_auth.py
@@ -0,0 +1,94 @@
+"""
+Tests for the Resource Server API for document media authentication.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+from io import BytesIO
+from uuid import uuid4
+
+from django.core.files.storage import default_storage
+from django.test import override_settings
+from django.utils import timezone
+
+import pytest
+from freezegun import freeze_time
+from rest_framework.test import APIClient
+
+from core import factories, models
+from core.enums import DocumentAttachmentStatus
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_media_auth_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to access media auth endpoints
+    from a resource server by default.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.get("/external_api/v1.0/documents/media-auth/")
+
+    assert response.status_code == 403
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "media_auth",
+            ],
+        },
+    }
+)
+def test_external_api_documents_media_auth_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to access media auth endpoints
+    from a resource server when the media-auth action is enabled in EXTERNAL_API settings.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document_id = uuid4()
+    filename = f"{uuid4()!s}.jpg"
+    key = f"{document_id!s}/attachments/{filename:s}"
+    media_url = f"http://localhost/media/{key:s}"
+
+    default_storage.connection.meta.client.put_object(
+        Bucket=default_storage.bucket_name,
+        Key=key,
+        Body=BytesIO(b"my prose"),
+        ContentType="text/plain",
+        Metadata={"status": DocumentAttachmentStatus.READY},
+    )
+
+    document = factories.DocumentFactory(
+        id=document_id, link_reach=models.LinkReachChoices.RESTRICTED, attachments=[key]
+    )
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.READER
+    )
+
+    now = timezone.now()
+    with freeze_time(now):
+        response = client.get(
+            "/external_api/v1.0/documents/media-auth/", HTTP_X_ORIGINAL_URL=media_url
+        )
+
+    assert response.status_code == 200
--- a/src/backend/core/tests/external_api/test_external_api_documents_versions.py
+++ b/src/backend/core/tests/external_api/test_external_api_documents_versions.py
@@ -0,0 +1,163 @@
+"""
+Tests for the Resource Server API for document versions.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+import time
+
+from django.test import override_settings
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories, models
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_documents_versions_list_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to list the versions of a document
+    from a resource server by default.
+    """
+
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(
+        link_reach=models.LinkReachChoices.RESTRICTED,
+        creator=user_specific_sub,
+    )
+    factories.UserDocumentAccessFactory(
+        document=document,
+        user=user_specific_sub,
+        role=models.RoleChoices.OWNER,
+    )
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/versions/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_documents_versions_detail_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to retrieve a specific version of a document
+    from a resource server by default.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/versions/1234/"
+    )
+
+    assert response.status_code == 403
+
+
+# Overrides
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": ["list", "retrieve", "children", "versions_list"],
+        },
+    }
+)
+def test_external_api_documents_versions_list_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to list version of a document from a resource server
+    when the versions action is enabled in EXTERNAL_API settings.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    # Add new versions to the document
+    for i in range(3):
+        document.content = f"new content {i:d}"
+        document.save()
+
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/versions/")
+
+    assert response.status_code == 200
+
+    content = response.json()
+    assert content["count"] == 2
+
+
+@override_settings(
+    EXTERNAL_API={
+        "documents": {
+            "enabled": True,
+            "actions": [
+                "list",
+                "retrieve",
+                "children",
+                "versions_list",
+                "versions_detail",
+            ],
+        },
+    }
+)
+def test_external_api_documents_versions_detail_can_be_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to retrieve a specific version of a document
+    from a resource server when the versions_detail action is enabled.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    document = factories.DocumentFactory(link_reach=models.LinkReachChoices.RESTRICTED)
+    factories.UserDocumentAccessFactory(
+        document=document, user=user_specific_sub, role=models.RoleChoices.OWNER
+    )
+
+    # ensure access datetime is earlier than versions (minio precision is one second)
+    time.sleep(1)
+
+    # create several versions, spacing them out to get distinct LastModified values
+    for i in range(3):
+        document.content = f"new content {i:d}"
+        document.save()
+        time.sleep(1)
+
+    # call the list endpoint and verify basic structure
+    response = client.get(f"/external_api/v1.0/documents/{document.id!s}/versions/")
+    assert response.status_code == 200
+
+    content = response.json()
+    # count should reflect two saved versions beyond the original
+    assert content.get("count") == 2
+
+    # pick the first version returned by the list (should be accessible)
+    version_id = content.get("versions")[0]["version_id"]
+
+    detailed_response = client.get(
+        f"/external_api/v1.0/documents/{document.id!s}/versions/{version_id}/"
+    )
+    assert detailed_response.status_code == 200
+    assert detailed_response.json()["content"] == "new content 1"
--- a/src/backend/core/tests/external_api/test_external_api_users.py
+++ b/src/backend/core/tests/external_api/test_external_api_users.py
@@ -0,0 +1,158 @@
+"""
+Tests for the Resource Server API for users.
+
+Not testing external API endpoints that are already tested in the /api
+because the resource server viewsets inherit from the api viewsets.
+
+"""
+
+import pytest
+from rest_framework.test import APIClient
+
+from core import factories
+from core.api import serializers
+from core.tests.utils.urls import reload_urls
+
+pytestmark = pytest.mark.django_db
+
+# pylint: disable=unused-argument
+
+
+def test_external_api_users_me_anonymous_public_standalone():
+    """
+    Anonymous users SHOULD NOT be allowed to retrieve their own user information from external
+    API if resource server is not enabled.
+    """
+    reload_urls()
+    response = APIClient().get("/external_api/v1.0/users/me/")
+
+    assert response.status_code == 404
+
+
+def test_external_api_users_me_connected_not_allowed():
+    """
+    Connected users SHOULD NOT be allowed to retrieve their own user information from external
+    API if resource server is not enabled.
+    """
+    reload_urls()
+    user = factories.UserFactory()
+    client = APIClient()
+    client.force_login(user)
+
+    response = client.get("/external_api/v1.0/users/me/")
+
+    assert response.status_code == 404
+
+
+def test_external_api_users_me_connected_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD be allowed to retrieve their own user information from external API
+    if resource server is enabled.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.get("/external_api/v1.0/users/me/")
+
+    assert response.status_code == 200
+    data = response.json()
+    assert data["id"] == str(user_specific_sub.id)
+    assert data["email"] == user_specific_sub.email
+
+
+def test_external_api_users_me_connected_with_invalid_token_not_allowed(
+    user_token, resource_server_backend
+):
+    """
+    Connected users SHOULD NOT be allowed to retrieve their own user information from external API
+    if resource server is enabled with an invalid token.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.get("/external_api/v1.0/users/me/")
+
+    assert response.status_code == 401
+
+
+# Non allowed actions on resource server.
+
+
+def test_external_api_users_list_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to list users from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    response = client.get("/external_api/v1.0/users/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_users_retrieve_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to retrieve a specific user from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    other_user = factories.UserFactory()
+
+    response = client.get(f"/external_api/v1.0/users/{other_user.id!s}/")
+
+    assert response.status_code == 403
+
+
+def test_external_api_users_put_patch_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to update or patch a user from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    other_user = factories.UserFactory()
+
+    new_user_values = {
+        k: v
+        for k, v in serializers.UserSerializer(
+            instance=factories.UserFactory()
+        ).data.items()
+        if v is not None
+    }
+    response = client.put(
+        f"/external_api/v1.0/users/{other_user.id!s}/", new_user_values
+    )
+
+    assert response.status_code == 403
+
+    response = client.patch(
+        f"/external_api/v1.0/users/{other_user.id!s}/",
+        {"email": "new_email@example.com"},
+    )
+
+    assert response.status_code == 403
+
+
+def test_external_api_users_delete_not_allowed(
+    user_token, resource_server_backend, user_specific_sub
+):
+    """
+    Connected users SHOULD NOT be allowed to delete a user from a resource server.
+    """
+    client = APIClient()
+    client.credentials(HTTP_AUTHORIZATION=f"Bearer {user_token}")
+
+    other_user = factories.UserFactory()
+
+    response = client.delete(f"/external_api/v1.0/users/{other_user.id!s}/")
+
+    assert response.status_code == 403
--- a/src/backend/core/tests/test_api_users.py
+++ b/src/backend/core/tests/test_api_users.py
@@ -48,7 +48,7 @@ def test_api_users_list_query_email():
    Only results with a Levenstein distance less than 3 with the query should be returned.
    We want to match by Levenstein distance because we want to prevent typing errors.
    """
-    user = factories.UserFactory()
+    user = factories.UserFactory(email="user@example.com", full_name="Example User")

    client = APIClient()
    client.force_login(user)
@@ -83,7 +83,7 @@ def test_api_users_list_query_email_with_internationalized_domain_names():
    Authenticated users should be able to list users and filter by email.
    It should work even if the email address contains an internationalized domain name.
    """
-    user = factories.UserFactory()
+    user = factories.UserFactory(email="user@example.com", full_name="Example User")

    client = APIClient()
    client.force_login(user)
@@ -123,7 +123,7 @@ def test_api_users_list_query_full_name():
    Authenticated users should be able to list users and filter by full name.
    Only results with a Trigram similarity greater than 0.2 with the query should be returned.
    """
-    user = factories.UserFactory(email="user@example.com")
+    user = factories.UserFactory(email="user@example.com", full_name="Example User")

    client = APIClient()
    client.force_login(user)
@@ -168,7 +168,7 @@ def test_api_users_list_query_accented_full_name():
    Authenticated users should be able to list users and filter by full name with accents.
    Only results with a Trigram similarity greater than 0.2 with the query should be returned.
    """
-    user = factories.UserFactory(email="user@example.com")
+    user = factories.UserFactory(email="user@example.com", full_name="Example User")

    client = APIClient()
    client.force_login(user)
@@ -416,7 +416,7 @@ def test_api_users_list_query_long_queries():

 def test_api_users_list_query_inactive():
    """Inactive users should not be listed."""
-    user = factories.UserFactory(email="user@example.com")
+    user = factories.UserFactory(email="user@example.com", full_name="Example User")
    client = APIClient()
    client.force_login(user)

--- a/src/backend/core/tests/test_api_utils_conditional_refresh_oidc_token.py
+++ b/src/backend/core/tests/test_api_utils_conditional_refresh_oidc_token.py
@@ -0,0 +1,32 @@
+"""module testing the conditional_refresh_oidc_token utils."""
+
+from unittest import mock
+
+from core.api import utils
+
+
+def test_refresh_oidc_access_token_storing_refresh_token_disabled(settings):
+    """The method_decorator must not be called when OIDC_STORE_REFRESH_TOKEN is False."""
+
+    settings.OIDC_STORE_REFRESH_TOKEN = False
+
+    callback = mock.MagicMock()
+
+    with mock.patch.object(utils, "method_decorator") as mock_method_decorator:
+        result = utils.conditional_refresh_oidc_token(callback)
+
+    mock_method_decorator.assert_not_called()
+    assert result == callback
+
+
+def test_refresh_oidc_access_token_storing_refresh_token_enabled(settings):
+    """The method_decorator must not be called when OIDC_STORE_REFRESH_TOKEN is False."""
+
+    settings.OIDC_STORE_REFRESH_TOKEN = True
+
+    callback = mock.MagicMock()
+
+    with mock.patch.object(utils, "method_decorator") as mock_method_decorator:
+        utils.conditional_refresh_oidc_token(callback)
+
+    mock_method_decorator.assert_called_with(utils.refresh_oidc_access_token)
--- a/src/backend/core/tests/test_models_documents.py
+++ b/src/backend/core/tests/test_models_documents.py
@@ -189,6 +189,7 @@ def test_models_documents_get_abilities_forbidden(
        "versions_destroy": False,
        "versions_list": False,
        "versions_retrieve": False,
+        "search": False,
    }
    nb_queries = 1 if is_authenticated else 0
    with django_assert_num_queries(nb_queries):
@@ -255,6 +256,7 @@ def test_models_documents_get_abilities_reader(
        "versions_destroy": False,
        "versions_list": False,
        "versions_retrieve": False,
+        "search": True,
    }
    nb_queries = 1 if is_authenticated else 0
    with django_assert_num_queries(nb_queries):
@@ -326,6 +328,7 @@ def test_models_documents_get_abilities_commenter(
        "versions_destroy": False,
        "versions_list": False,
        "versions_retrieve": False,
+        "search": True,
    }
    nb_queries = 1 if is_authenticated else 0
    with django_assert_num_queries(nb_queries):
@@ -394,6 +397,7 @@ def test_models_documents_get_abilities_editor(
        "versions_destroy": False,
        "versions_list": False,
        "versions_retrieve": False,
+        "search": True,
    }
    nb_queries = 1 if is_authenticated else 0
    with django_assert_num_queries(nb_queries):
@@ -451,6 +455,7 @@ def test_models_documents_get_abilities_owner(django_assert_num_queries):
        "versions_destroy": True,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }
    with django_assert_num_queries(1):
        assert document.get_abilities(user) == expected_abilities
@@ -494,6 +499,7 @@ def test_models_documents_get_abilities_owner(django_assert_num_queries):
        "versions_destroy": False,
        "versions_list": False,
        "versions_retrieve": False,
+        "search": False,
    }


@@ -541,6 +547,7 @@ def test_models_documents_get_abilities_administrator(django_assert_num_queries)
        "versions_destroy": True,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }
    with django_assert_num_queries(1):
        assert document.get_abilities(user) == expected_abilities
@@ -598,6 +605,7 @@ def test_models_documents_get_abilities_editor_user(django_assert_num_queries):
        "versions_destroy": False,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }
    with django_assert_num_queries(1):
        assert document.get_abilities(user) == expected_abilities
@@ -663,6 +671,7 @@ def test_models_documents_get_abilities_reader_user(
        "versions_destroy": False,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }

    with override_settings(AI_ALLOW_REACH_FROM=ai_access_setting):
@@ -729,6 +738,7 @@ def test_models_documents_get_abilities_commenter_user(
        "versions_destroy": False,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }

    with override_settings(AI_ALLOW_REACH_FROM=ai_access_setting):
@@ -791,6 +801,7 @@ def test_models_documents_get_abilities_preset_role(django_assert_num_queries):
        "versions_destroy": False,
        "versions_list": True,
        "versions_retrieve": True,
+        "search": True,
    }


--- a/src/backend/core/tests/test_models_users.py
+++ b/src/backend/core/tests/test_models_users.py
@@ -216,7 +216,13 @@ def test_models_users_duplicate_onboarding_sandbox_document_creates_sandbox():
    When USER_ONBOARDING_SANDBOX_DOCUMENT is set with a valid template document,
    a new sandbox document should be created for the user with OWNER access.
    """
+    documents_before = factories.DocumentFactory.create_batch(20)
    template_document = factories.DocumentFactory(title="Getting started with Docs")
+    documents_after = factories.DocumentFactory.create_batch(20)
+
+    all_documents = documents_before + [template_document] + documents_after
+
+    paths = {document.pk: document.path for document in all_documents}

    with override_settings(USER_ONBOARDING_SANDBOX_DOCUMENT=str(template_document.id)):
        user = factories.UserFactory()
@@ -233,6 +239,10 @@ def test_models_users_duplicate_onboarding_sandbox_document_creates_sandbox():
    access = models.DocumentAccess.objects.get(user=user, document=sandbox_doc)
    assert access.role == models.RoleChoices.OWNER

+    for document in all_documents:
+        document.refresh_from_db()
+        assert document.path == paths[document.id]
+

 def test_models_users_duplicate_onboarding_sandbox_document_with_invalid_template_id():
    """
--- a/src/backend/core/tests/test_services_find_document_indexer.py
+++ b/src/backend/core/tests/test_services_find_document_indexer.py
@@ -1,5 +1,5 @@
 """
-Unit tests for the Document model
+Unit tests for FindDocumentIndexer
 """
 # pylint: disable=too-many-lines

@@ -12,7 +12,8 @@ from django.db import transaction
 import pytest

 from core import factories, models
-from core.services.search_indexers import SearchIndexer
+from core.enums import SearchType
+from core.services.search_indexers import FindDocumentIndexer

 pytestmark = pytest.mark.django_db

@@ -30,7 +31,7 @@ def reset_throttle():
    reset_batch_indexer_throttle()


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer(mock_push):
@@ -41,7 +42,7 @@ def test_models_documents_post_save_indexer(mock_push):
    accesses = {}
    data = [call.args[0] for call in mock_push.call_args_list]

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    assert len(data) == 1

@@ -64,14 +65,14 @@ def test_models_documents_post_save_indexer_no_batches(indexer_settings):
    """Test indexation task on doculment creation, no throttle"""
    indexer_settings.SEARCH_INDEXER_COUNTDOWN = 0

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        with transaction.atomic():
            doc1, doc2, doc3 = factories.DocumentFactory.create_batch(3)

    accesses = {}
    data = [call.args[0] for call in mock_push.call_args_list]

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    # 3 calls
    assert len(data) == 3
@@ -91,7 +92,7 @@ def test_models_documents_post_save_indexer_no_batches(indexer_settings):
    assert cache.get("file-batch-indexer-throttle") is None


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer_not_configured(mock_push, indexer_settings):
    """Task should not start an indexation when disabled"""
@@ -106,13 +107,13 @@ def test_models_documents_post_save_indexer_not_configured(mock_push, indexer_se
    assert mock_push.assert_not_called


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer_wrongly_configured(
    mock_push, indexer_settings
 ):
    """Task should not start an indexation when disabled"""
-    indexer_settings.SEARCH_INDEXER_URL = None
+    indexer_settings.INDEXING_URL = None

    user = factories.UserFactory()

@@ -123,7 +124,7 @@ def test_models_documents_post_save_indexer_wrongly_configured(
    assert mock_push.assert_not_called


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer_with_accesses(mock_push):
@@ -145,7 +146,7 @@ def test_models_documents_post_save_indexer_with_accesses(mock_push):

    data = [call.args[0] for call in mock_push.call_args_list]

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    assert len(data) == 1
    assert sorted(data[0], key=itemgetter("id")) == sorted(
@@ -158,7 +159,7 @@ def test_models_documents_post_save_indexer_with_accesses(mock_push):
    )


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer_deleted(mock_push):
@@ -207,7 +208,7 @@ def test_models_documents_post_save_indexer_deleted(mock_push):

    data = [call.args[0] for call in mock_push.call_args_list]

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    assert len(data) == 2

@@ -244,14 +245,14 @@ def test_models_documents_indexer_hard_deleted():
        factories.UserDocumentAccessFactory(document=doc, user=user)

    # Call task on deleted document.
-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        doc.delete()

    # Hard delete document are not re-indexed.
    assert mock_push.assert_not_called


-@mock.patch.object(SearchIndexer, "push")
+@mock.patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
@pytest.mark.django_db(transaction=True)
 def test_models_documents_post_save_indexer_restored(mock_push):
@@ -308,7 +309,7 @@ def test_models_documents_post_save_indexer_restored(mock_push):

    data = [call.args[0] for call in mock_push.call_args_list]

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    # All docs are re-indexed
    assert len(data) == 2
@@ -337,16 +338,16 @@ def test_models_documents_post_save_indexer_restored(mock_push):
@pytest.mark.usefixtures("indexer_settings")
 def test_models_documents_post_save_indexer_throttle():
    """Test indexation task skipping on document update"""
-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()
    user = factories.UserFactory()

-    with mock.patch.object(SearchIndexer, "push"):
+    with mock.patch.object(FindDocumentIndexer, "push"):
        with transaction.atomic():
            docs = factories.DocumentFactory.create_batch(5, users=(user,))

    accesses = {str(item.path): {"users": [user.sub]} for item in docs}

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        # Simulate 1 running task
        cache.set("document-batch-indexer-throttle", 1)

@@ -359,7 +360,7 @@ def test_models_documents_post_save_indexer_throttle():

        assert [call.args[0] for call in mock_push.call_args_list] == []

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        # No waiting task
        cache.delete("document-batch-indexer-throttle")

@@ -389,7 +390,7 @@ def test_models_documents_access_post_save_indexer():
    """Test indexation task on DocumentAccess update"""
    users = factories.UserFactory.create_batch(3)

-    with mock.patch.object(SearchIndexer, "push"):
+    with mock.patch.object(FindDocumentIndexer, "push"):
        with transaction.atomic():
            doc = factories.DocumentFactory(users=users)
            doc_accesses = models.DocumentAccess.objects.filter(document=doc).order_by(
@@ -398,7 +399,7 @@ def test_models_documents_access_post_save_indexer():

    reset_batch_indexer_throttle()

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        with transaction.atomic():
            for doc_access in doc_accesses:
                doc_access.save()
@@ -426,7 +427,7 @@ def test_models_items_access_post_save_indexer_no_throttle(indexer_settings):

    reset_batch_indexer_throttle()

-    with mock.patch.object(SearchIndexer, "push") as mock_push:
+    with mock.patch.object(FindDocumentIndexer, "push") as mock_push:
        with transaction.atomic():
            for doc_access in doc_accesses:
                doc_access.save()
@@ -439,3 +440,77 @@ def test_models_items_access_post_save_indexer_no_throttle(indexer_settings):
        assert [len(d) for d in data] == [1] * 3
        # the same document is indexed 3 times
        assert [d[0]["id"] for d in data] == [str(doc.pk)] * 3
+
+
+@mock.patch.object(FindDocumentIndexer, "search_query")
+@pytest.mark.usefixtures("indexer_settings")
+def test_find_document_indexer_search(mock_search_query):
+    """Test search function of FindDocumentIndexer returns formatted results"""
+
+    # Mock API response from Find
+    hits = [
+        {
+            "_id": "doc-123",
+            "_source": {
+                "title": "Test Document",
+                "content": "This is test content",
+                "updated_at": "2024-01-01T00:00:00Z",
+                "path": "/some/path/doc-123",
+            },
+        },
+        {
+            "_id": "doc-456",
+            "_source": {
+                "title.fr": "Document de test",
+                "content": "Contenu de test",
+                "updated_at": "2024-01-02T00:00:00Z",
+            },
+        },
+    ]
+    mock_search_query.return_value = hits
+
+    q = "test"
+    token = "fake-token"
+    nb_results = 10
+    path = "/some/path/"
+    visited = ["doc-123"]
+    search_type = SearchType.HYBRID
+    results = FindDocumentIndexer().search(
+        q=q,
+        token=token,
+        nb_results=nb_results,
+        path=path,
+        visited=visited,
+        search_type=search_type,
+    )
+
+    mock_search_query.assert_called_once()
+    call_args = mock_search_query.call_args
+    assert call_args[1]["data"] == {
+        "q": q,
+        "visited": visited,
+        "services": ["docs"],
+        "nb_results": nb_results,
+        "order_by": "updated_at",
+        "order_direction": "desc",
+        "path": path,
+        "search_type": search_type,
+    }
+
+    assert len(results) == 2
+    assert results == [
+        {
+            "id": hits[0]["_id"],
+            "title": hits[0]["_source"]["title"],
+            "content": hits[0]["_source"]["content"],
+            "updated_at": hits[0]["_source"]["updated_at"],
+            "path": hits[0]["_source"]["path"],
+        },
+        {
+            "id": hits[1]["_id"],
+            "title": hits[1]["_source"]["title.fr"],
+            "title.fr": hits[1]["_source"]["title.fr"],  # <- Find response artefact
+            "content": hits[1]["_source"]["content"],
+            "updated_at": hits[1]["_source"]["updated_at"],
+        },
+    ]
--- a/src/backend/core/tests/test_services_search_indexers.py
+++ b/src/backend/core/tests/test_services_search_indexers.py
@@ -15,7 +15,7 @@ from requests import HTTPError
 from core import factories, models, utils
 from core.services.search_indexers import (
    BaseDocumentIndexer,
-    SearchIndexer,
+    FindDocumentIndexer,
    get_document_indexer,
    get_visited_document_ids_of,
 )
@@ -78,41 +78,41 @@ def test_services_search_indexer_is_configured(indexer_settings):

    # Valid class
    indexer_settings.SEARCH_INDEXER_CLASS = (
-        "core.services.search_indexers.SearchIndexer"
+        "core.services.search_indexers.FindDocumentIndexer"
    )

    get_document_indexer.cache_clear()
    assert get_document_indexer() is not None

-    indexer_settings.SEARCH_INDEXER_URL = ""
+    indexer_settings.INDEXING_URL = ""

    # Invalid url
    get_document_indexer.cache_clear()
    assert not get_document_indexer()


-def test_services_search_indexer_url_is_none(indexer_settings):
+def test_services_indexing_url_is_none(indexer_settings):
    """
-    Indexer should raise RuntimeError if SEARCH_INDEXER_URL is None or empty.
+    Indexer should raise RuntimeError if INDEXING_URL is None or empty.
    """
-    indexer_settings.SEARCH_INDEXER_URL = None
+    indexer_settings.INDEXING_URL = None

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

-    assert "SEARCH_INDEXER_URL must be set in Django settings." in str(exc_info.value)
+    assert "INDEXING_URL must be set in Django settings." in str(exc_info.value)


-def test_services_search_indexer_url_is_empty(indexer_settings):
+def test_services_indexing_url_is_empty(indexer_settings):
    """
-    Indexer should raise RuntimeError if SEARCH_INDEXER_URL is empty string.
+    Indexer should raise RuntimeError if INDEXING_URL is empty string.
    """
-    indexer_settings.SEARCH_INDEXER_URL = ""
+    indexer_settings.INDEXING_URL = ""

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

-    assert "SEARCH_INDEXER_URL must be set in Django settings." in str(exc_info.value)
+    assert "INDEXING_URL must be set in Django settings." in str(exc_info.value)


 def test_services_search_indexer_secret_is_none(indexer_settings):
@@ -122,7 +122,7 @@ def test_services_search_indexer_secret_is_none(indexer_settings):
    indexer_settings.SEARCH_INDEXER_SECRET = None

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

    assert "SEARCH_INDEXER_SECRET must be set in Django settings." in str(
        exc_info.value
@@ -136,39 +136,35 @@ def test_services_search_indexer_secret_is_empty(indexer_settings):
    indexer_settings.SEARCH_INDEXER_SECRET = ""

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

    assert "SEARCH_INDEXER_SECRET must be set in Django settings." in str(
        exc_info.value
    )


-def test_services_search_endpoint_is_none(indexer_settings):
+def test_services_search_url_is_none(indexer_settings):
    """
-    Indexer should raise RuntimeError if SEARCH_INDEXER_QUERY_URL is None.
+    Indexer should raise RuntimeError if SEARCH_URL is None.
    """
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = None
+    indexer_settings.SEARCH_URL = None

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

-    assert "SEARCH_INDEXER_QUERY_URL must be set in Django settings." in str(
-        exc_info.value
-    )
+    assert "SEARCH_URL must be set in Django settings." in str(exc_info.value)


-def test_services_search_endpoint_is_empty(indexer_settings):
+def test_services_search_url_is_empty(indexer_settings):
    """
-    Indexer should raise RuntimeError if SEARCH_INDEXER_QUERY_URL is empty.
+    Indexer should raise RuntimeError if SEARCH_URL is empty.
    """
-    indexer_settings.SEARCH_INDEXER_QUERY_URL = ""
+    indexer_settings.SEARCH_URL = ""

    with pytest.raises(ImproperlyConfigured) as exc_info:
-        SearchIndexer()
+        FindDocumentIndexer()

-    assert "SEARCH_INDEXER_QUERY_URL must be set in Django settings." in str(
-        exc_info.value
-    )
+    assert "SEARCH_URL must be set in Django settings." in str(exc_info.value)


@pytest.mark.usefixtures("indexer_settings")
@@ -192,7 +188,7 @@ def test_services_search_indexers_serialize_document_returns_expected_json():
        }
    }

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()
    result = indexer.serialize_document(document, accesses)

    assert set(result.pop("users")) == {str(user_a.sub), str(user_b.sub)}
@@ -221,7 +217,7 @@ def test_services_search_indexers_serialize_document_deleted():
    parent.soft_delete()
    document.refresh_from_db()

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()
    result = indexer.serialize_document(document, {})

    assert result["is_active"] is False
@@ -232,7 +228,7 @@ def test_services_search_indexers_serialize_document_empty():
    """Empty documents returns empty content in the serialized json."""
    document = factories.DocumentFactory(content="", title=None)

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()
    result = indexer.serialize_document(document, {})

    assert result["content"] == ""
@@ -246,7 +242,7 @@ def test_services_search_indexers_index_errors(indexer_settings):
    """
    factories.DocumentFactory()

-    indexer_settings.SEARCH_INDEXER_URL = "http://app-find/api/v1.0/documents/index/"
+    indexer_settings.INDEXING_URL = "http://app-find/api/v1.0/documents/index/"

    responses.add(
        responses.POST,
@@ -256,10 +252,10 @@ def test_services_search_indexers_index_errors(indexer_settings):
    )

    with pytest.raises(HTTPError):
-        SearchIndexer().index()
+        FindDocumentIndexer().index()


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
 def test_services_search_indexers_batches_pass_only_batch_accesses(
    mock_push, indexer_settings
 ):
@@ -276,7 +272,7 @@ def test_services_search_indexers_batches_pass_only_batch_accesses(
        access = factories.UserDocumentAccessFactory(document=document)
        expected_user_subs[str(document.id)] = str(access.user.sub)

-    assert SearchIndexer().index() == 5
+    assert FindDocumentIndexer().index() == 5

    # Should be 3 batches: 2 + 2 + 1
    assert mock_push.call_count == 3
@@ -299,7 +295,7 @@ def test_services_search_indexers_batches_pass_only_batch_accesses(
    assert seen_doc_ids == {str(d.id) for d in documents}


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
 def test_services_search_indexers_batch_size_argument(mock_push):
    """
@@ -314,7 +310,7 @@ def test_services_search_indexers_batch_size_argument(mock_push):
        access = factories.UserDocumentAccessFactory(document=document)
        expected_user_subs[str(document.id)] = str(access.user.sub)

-    assert SearchIndexer().index(batch_size=2) == 5
+    assert FindDocumentIndexer().index(batch_size=2) == 5

    # Should be 3 batches: 2 + 2 + 1
    assert mock_push.call_count == 3
@@ -337,7 +333,7 @@ def test_services_search_indexers_batch_size_argument(mock_push):
    assert seen_doc_ids == {str(d.id) for d in documents}


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
 def test_services_search_indexers_ignore_empty_documents(mock_push):
    """
@@ -349,7 +345,7 @@ def test_services_search_indexers_ignore_empty_documents(mock_push):
    empty_title = factories.DocumentFactory(title="")
    empty_content = factories.DocumentFactory(content="")

-    assert SearchIndexer().index() == 3
+    assert FindDocumentIndexer().index() == 3

    assert mock_push.call_count == 1

@@ -365,7 +361,7 @@ def test_services_search_indexers_ignore_empty_documents(mock_push):
    }


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
 def test_services_search_indexers_skip_empty_batches(mock_push, indexer_settings):
    """
    Documents indexing batch can be empty if all the docs are empty.
@@ -377,14 +373,14 @@ def test_services_search_indexers_skip_empty_batches(mock_push, indexer_settings
    # Only empty docs
    factories.DocumentFactory.create_batch(5, content="", title="")

-    assert SearchIndexer().index() == 1
+    assert FindDocumentIndexer().index() == 1
    assert mock_push.call_count == 1

    results = [doc["id"] for doc in mock_push.call_args[0][0]]
    assert results == [str(document.id)]


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
 def test_services_search_indexers_ancestors_link_reach(mock_push):
    """Document accesses and reach should take into account ancestors link reaches."""
@@ -395,7 +391,7 @@ def test_services_search_indexers_ancestors_link_reach(mock_push):
    parent = factories.DocumentFactory(parent=grand_parent, link_reach="public")
    document = factories.DocumentFactory(parent=parent, link_reach="restricted")

-    assert SearchIndexer().index() == 4
+    assert FindDocumentIndexer().index() == 4

    results = {doc["id"]: doc for doc in mock_push.call_args[0][0]}
    assert len(results) == 4
@@ -405,7 +401,7 @@ def test_services_search_indexers_ancestors_link_reach(mock_push):
    assert results[str(document.id)]["reach"] == "public"


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
 def test_services_search_indexers_ancestors_users(mock_push):
    """Document accesses and reach should include users from ancestors."""
@@ -415,7 +411,7 @@ def test_services_search_indexers_ancestors_users(mock_push):
    parent = factories.DocumentFactory(parent=grand_parent, users=[user_p])
    document = factories.DocumentFactory(parent=parent, users=[user_d])

-    assert SearchIndexer().index() == 3
+    assert FindDocumentIndexer().index() == 3

    results = {doc["id"]: doc for doc in mock_push.call_args[0][0]}
    assert len(results) == 3
@@ -428,7 +424,7 @@ def test_services_search_indexers_ancestors_users(mock_push):
    }


-@patch.object(SearchIndexer, "push")
+@patch.object(FindDocumentIndexer, "push")
@pytest.mark.usefixtures("indexer_settings")
 def test_services_search_indexers_ancestors_teams(mock_push):
    """Document accesses and reach should include teams from ancestors."""
@@ -436,7 +432,7 @@ def test_services_search_indexers_ancestors_teams(mock_push):
    parent = factories.DocumentFactory(parent=grand_parent, teams=["team_p"])
    document = factories.DocumentFactory(parent=parent, teams=["team_d"])

-    assert SearchIndexer().index() == 3
+    assert FindDocumentIndexer().index() == 3

    results = {doc["id"]: doc for doc in mock_push.call_args[0][0]}
    assert len(results) == 3
@@ -451,9 +447,9 @@ def test_push_uses_correct_url_and_data(mock_post, indexer_settings):
    push() should call requests.post with the correct URL from settings
    the timeout set to 10 seconds and the data as JSON.
    """
-    indexer_settings.SEARCH_INDEXER_URL = "http://example.com/index"
+    indexer_settings.INDEXING_URL = "http://example.com/index"

-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()
    sample_data = [{"id": "123", "title": "Test"}]

    mock_response = mock_post.return_value
@@ -464,7 +460,7 @@ def test_push_uses_correct_url_and_data(mock_post, indexer_settings):
    mock_post.assert_called_once()
    args, kwargs = mock_post.call_args

-    assert args[0] == indexer_settings.SEARCH_INDEXER_URL
+    assert args[0] == indexer_settings.INDEXING_URL
    assert kwargs.get("json") == sample_data
    assert kwargs.get("timeout") == 10

@@ -498,7 +494,7 @@ def test_get_visited_document_ids_of():
    factories.UserDocumentAccessFactory(user=user, document=doc2)

    # The second document have an access for the user
-    assert get_visited_document_ids_of(queryset, user) == [str(doc1.pk)]
+    assert get_visited_document_ids_of(queryset, user) == (str(doc1.pk),)


@pytest.mark.usefixtures("indexer_settings")
@@ -532,7 +528,7 @@ def test_get_visited_document_ids_of_deleted():
    doc_deleted.soft_delete()

    # Only the first document is not deleted
-    assert get_visited_document_ids_of(queryset, user) == [str(doc.pk)]
+    assert get_visited_document_ids_of(queryset, user) == (str(doc.pk),)


@responses.activate
@@ -542,9 +538,7 @@ def test_services_search_indexers_search_errors(indexer_settings):
    """
    factories.DocumentFactory()

-    indexer_settings.SEARCH_INDEXER_QUERY_URL = (
-        "http://app-find/api/v1.0/documents/search/"
-    )
+    indexer_settings.SEARCH_URL = "http://app-find/api/v1.0/documents/search/"

    responses.add(
        responses.POST,
@@ -554,17 +548,17 @@ def test_services_search_indexers_search_errors(indexer_settings):
    )

    with pytest.raises(HTTPError):
-        SearchIndexer().search("alpha", token="mytoken")
+        FindDocumentIndexer().search(q="alpha", token="mytoken")


@patch("requests.post")
 def test_services_search_indexers_search(mock_post, indexer_settings):
    """
-    search() should call requests.post to SEARCH_INDEXER_QUERY_URL with the
+    search() should call requests.post to SEARCH_URL with the
    document ids from linktraces.
    """
    user = factories.UserFactory()
-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    mock_response = mock_post.return_value
    mock_response.raise_for_status.return_value = None  # No error
@@ -578,11 +572,11 @@ def test_services_search_indexers_search(mock_post, indexer_settings):

    visited = get_visited_document_ids_of(models.Document.objects.all(), user)

-    indexer.search("alpha", visited=visited, token="mytoken")
+    indexer.search(q="alpha", visited=visited, token="mytoken")

    args, kwargs = mock_post.call_args

-    assert args[0] == indexer_settings.SEARCH_INDEXER_QUERY_URL
+    assert args[0] == indexer_settings.SEARCH_URL

    query_data = kwargs.get("json")
    assert query_data["q"] == "alpha"
@@ -605,7 +599,7 @@ def test_services_search_indexers_search_nb_results(mock_post, indexer_settings)
    indexer_settings.SEARCH_INDEXER_QUERY_LIMIT = 25

    user = factories.UserFactory()
-    indexer = SearchIndexer()
+    indexer = FindDocumentIndexer()

    mock_response = mock_post.return_value
    mock_response.raise_for_status.return_value = None  # No error
@@ -619,17 +613,65 @@ def test_services_search_indexers_search_nb_results(mock_post, indexer_settings)

    visited = get_visited_document_ids_of(models.Document.objects.all(), user)

-    indexer.search("alpha", visited=visited, token="mytoken")
+    indexer.search(q="alpha", visited=visited, token="mytoken")

    args, kwargs = mock_post.call_args

-    assert args[0] == indexer_settings.SEARCH_INDEXER_QUERY_URL
+    assert args[0] == indexer_settings.SEARCH_URL
    assert kwargs.get("json")["nb_results"] == 25

    # The argument overrides the setting value
-    indexer.search("alpha", visited=visited, token="mytoken", nb_results=109)
+    indexer.search(q="alpha", visited=visited, token="mytoken", nb_results=109)

    args, kwargs = mock_post.call_args

-    assert args[0] == indexer_settings.SEARCH_INDEXER_QUERY_URL
+    assert args[0] == indexer_settings.SEARCH_URL
    assert kwargs.get("json")["nb_results"] == 109
+
+
+def test_search_indexer_get_title_with_localized_field():
+    """Test extracting title from localized title field."""
+    source = {"title.extension": "Bonjour", "id": 1, "content": "test"}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result == "Bonjour"
+
+
+def test_search_indexer_get_title_with_multiple_localized_fields():
+    """Test that first matching localized title is returned."""
+    source = {"title.extension": "Bonjour", "title.en": "Hello", "id": 1}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result in ["Bonjour", "Hello"]
+
+
+def test_search_indexer_get_title_fallback_to_plain_title():
+    """Test fallback to plain 'title' field when no localized field exists."""
+    source = {"title": "Hello World", "id": 1}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result == "Hello World"
+
+
+def test_search_indexer_get_title_no_title_field():
+    """Test that empty string is returned when no title field exists."""
+    source = {"id": 1, "content": "test"}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result == ""
+
+
+def test_search_indexer_get_title_with_empty_localized_title():
+    """Test that fallback works when localized title is empty."""
+    source = {"title.extension": "", "title": "Fallback Title", "id": 1}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result == "Fallback Title"
+
+
+def test_search_indexer_get_title_with_multiple_extension():
+    """Test extracting title from title field with multiple extensions."""
+    source = {"title.extension_1.extension_2": "Bonjour", "id": 1, "content": "test"}
+    result = FindDocumentIndexer.get_title(source)
+
+    assert result == "Bonjour"
--- a/src/backend/core/tests/test_utils.py
+++ b/src/backend/core/tests/test_utils.py
@@ -205,3 +205,38 @@ def test_utils_users_sharing_documents_with_empty_result():

    cached_data = cache.get(cache_key)
    assert cached_data == {}
+
+
+def test_utils_get_value_by_pattern_matching_key():
+    """Test extracting value from a dictionary with a matching key pattern."""
+    data = {"title.extension": "Bonjour", "id": 1, "content": "test"}
+    result = utils.get_value_by_pattern(data, r"^title\.")
+
+    assert set(result) == {"Bonjour"}
+
+
+def test_utils_get_value_by_pattern_multiple_matches():
+    """Test that all matching keys are returned."""
+    data = {"title.extension_1": "Bonjour", "title.extension_2": "Hello", "id": 1}
+    result = utils.get_value_by_pattern(data, r"^title\.")
+
+    assert set(result) == {
+        "Bonjour",
+        "Hello",
+    }
+
+
+def test_utils_get_value_by_pattern_multiple_extensions():
+    """Test that all matching keys are returned."""
+    data = {"title.extension_1.extension_2": "Bonjour", "id": 1}
+    result = utils.get_value_by_pattern(data, r"^title\.")
+
+    assert set(result) == {"Bonjour"}
+
+
+def test_utils_get_value_by_pattern_no_match():
+    """Test that empty list is returned when no key matches the pattern."""
+    data = {"name": "Test", "id": 1}
+    result = utils.get_value_by_pattern(data, r"^title\.")
+
+    assert result == []
--- a/src/backend/core/tests/utils/urls.py
+++ b/src/backend/core/tests/utils/urls.py
@@ -0,0 +1,20 @@
+"""Utils for testing URLs."""
+
+import importlib
+
+from django.urls import clear_url_caches
+
+
+def reload_urls():
+    """
+    Reload the URLs. Since the URLs are loaded based on a
+    settings value, we need to reload them to make the
+    URL settings based condition effective.
+    """
+    import core.urls  # pylint:disable=import-outside-toplevel # noqa: PLC0415
+
+    import impress.urls  # pylint:disable=import-outside-toplevel # noqa: PLC0415
+
+    importlib.reload(core.urls)
+    importlib.reload(impress.urls)
+    clear_url_caches()
--- a/src/backend/core/urls.py
+++ b/src/backend/core/urls.py
@@ -7,6 +7,7 @@ from lasuite.oidc_login.urls import urlpatterns as oidc_urls
 from rest_framework.routers import DefaultRouter

 from core.api import viewsets
+from core.external_api import viewsets as external_api_viewsets

 # - Main endpoints
 router = DefaultRouter()
@@ -43,6 +44,19 @@ thread_related_router.register(
    basename="comments",
 )

+# - Resource server routes
+external_api_router = DefaultRouter()
+external_api_router.register(
+    "documents",
+    external_api_viewsets.ResourceServerDocumentViewSet,
+    basename="resource_server_documents",
+)
+external_api_router.register(
+    "users",
+    external_api_viewsets.ResourceServerUserViewSet,
+    basename="resource_server_users",
+)
+

 urlpatterns = [
    path(
@@ -68,3 +82,38 @@ urlpatterns = [
    ),
    path(f"api/{settings.API_VERSION}/config/", viewsets.ConfigView.as_view()),
 ]
+
+if settings.OIDC_RESOURCE_SERVER_ENABLED:
+    # - Routes nested under a document in external API
+    external_api_document_related_router = DefaultRouter()
+
+    document_access_config = settings.EXTERNAL_API.get("document_access", {})
+    if document_access_config.get("enabled", False):
+        external_api_document_related_router.register(
+            "accesses",
+            external_api_viewsets.ResourceServerDocumentAccessViewSet,
+            basename="resource_server_document_accesses",
+        )
+
+    document_invitation_config = settings.EXTERNAL_API.get("document_invitation", {})
+    if document_invitation_config.get("enabled", False):
+        external_api_document_related_router.register(
+            "invitations",
+            external_api_viewsets.ResourceServerInvitationViewSet,
+            basename="resource_server_document_invitations",
+        )
+
+    urlpatterns.append(
+        path(
+            f"external_api/{settings.API_VERSION}/",
+            include(
+                [
+                    *external_api_router.urls,
+                    re_path(
+                        r"^documents/(?P<resource_id>[0-9a-z-]*)/",
+                        include(external_api_document_related_router.urls),
+                    ),
+                ]
+            ),
+        )
+    )
--- a/src/backend/core/utils.py
+++ b/src/backend/core/utils.py
@@ -18,6 +18,27 @@ from core import enums, models
 logger = logging.getLogger(__name__)


+def get_value_by_pattern(data, pattern):
+    """
+    Get all values from keys matching a regex pattern in a dictionary.
+
+    Args:
+        data (dict): Source dictionary to search
+        pattern (str): Regex pattern to match against keys
+
+    Returns:
+        list: List of values for all matching keys, empty list if no matches
+
+    Example:
+        >>> get_value_by_pattern({"title.fr": "Bonjour", "id": 1}, r"^title\\.")
+        ["Bonjour"]
+        >>> get_value_by_pattern({"title.fr": "Bonjour", "title.en": "Hello"}, r"^title\\.")
+        ["Bonjour", "Hello"]
+    """
+    regex = re.compile(pattern)
+    return [value for key, value in data.items() if regex.match(key)]
+
+
 def get_ancestor_to_descendants_map(paths, steplen):
    """
    Given a list of document paths, return a mapping of ancestor_path -> set of descendant_paths.
--- a/src/backend/impress/settings.py
+++ b/src/backend/impress/settings.py
@@ -113,8 +113,8 @@ class Base(Configuration):
    SEARCH_INDEXER_BATCH_SIZE = values.IntegerValue(
        default=100_000, environ_name="SEARCH_INDEXER_BATCH_SIZE", environ_prefix=None
    )
-    SEARCH_INDEXER_URL = values.Value(
-        default=None, environ_name="SEARCH_INDEXER_URL", environ_prefix=None
+    INDEXING_URL = values.Value(
+        default=None, environ_name="INDEXING_URL", environ_prefix=None
    )
    SEARCH_INDEXER_COUNTDOWN = values.IntegerValue(
        default=1, environ_name="SEARCH_INDEXER_COUNTDOWN", environ_prefix=None
@@ -122,8 +122,8 @@ class Base(Configuration):
    SEARCH_INDEXER_SECRET = values.Value(
        default=None, environ_name="SEARCH_INDEXER_SECRET", environ_prefix=None
    )
-    SEARCH_INDEXER_QUERY_URL = values.Value(
-        default=None, environ_name="SEARCH_INDEXER_QUERY_URL", environ_prefix=None
+    SEARCH_URL = values.Value(
+        default=None, environ_name="SEARCH_URL", environ_prefix=None
    )
    SEARCH_INDEXER_QUERY_LIMIT = values.PositiveIntegerValue(
        default=50, environ_name="SEARCH_INDEXER_QUERY_LIMIT", environ_prefix=None
@@ -331,6 +331,7 @@ class Base(Configuration):
        "django.contrib.messages.middleware.MessageMiddleware",
        "dockerflow.django.middleware.DockerflowMiddleware",
        "csp.middleware.CSPMiddleware",
+        "waffle.middleware.WaffleMiddleware",
    ]

    AUTHENTICATION_BACKENDS = [
@@ -352,6 +353,7 @@ class Base(Configuration):
        "parler",
        "treebeard",
        "easy_thumbnails",
+        "waffle",
        # Django
        "django.contrib.admin",
        "django.contrib.auth",
@@ -685,6 +687,109 @@ class Base(Configuration):
        environ_prefix=None,
    )

+    # OIDC Resource Server
+
+    OIDC_RESOURCE_SERVER_ENABLED = values.BooleanValue(
+        default=False, environ_name="OIDC_RESOURCE_SERVER_ENABLED", environ_prefix=None
+    )
+
+    OIDC_RS_BACKEND_CLASS = values.Value(
+        "lasuite.oidc_resource_server.backend.ResourceServerBackend",
+        environ_name="OIDC_RS_BACKEND_CLASS",
+        environ_prefix=None,
+    )
+
+    OIDC_OP_URL = values.Value(None, environ_name="OIDC_OP_URL", environ_prefix=None)
+
+    OIDC_VERIFY_SSL = values.BooleanValue(
+        default=True, environ_name="OIDC_VERIFY_SSL", environ_prefix=None
+    )
+
+    OIDC_TIMEOUT = values.PositiveIntegerValue(
+        3, environ_name="OIDC_TIMEOUT", environ_prefix=None
+    )
+
+    OIDC_PROXY = values.Value(None, environ_name="OIDC_PROXY", environ_prefix=None)
+
+    OIDC_OP_INTROSPECTION_ENDPOINT = values.Value(
+        None, environ_name="OIDC_OP_INTROSPECTION_ENDPOINT", environ_prefix=None
+    )
+
+    OIDC_RS_CLIENT_ID = values.Value(
+        None, environ_name="OIDC_RS_CLIENT_ID", environ_prefix=None
+    )
+
+    OIDC_RS_CLIENT_SECRET = values.Value(
+        None, environ_name="OIDC_RS_CLIENT_SECRET", environ_prefix=None
+    )
+
+    OIDC_RS_AUDIENCE_CLAIM = values.Value(
+        "client_id", environ_name="OIDC_RS_AUDIENCE_CLAIM", environ_prefix=None
+    )
+
+    OIDC_RS_ENCRYPTION_ENCODING = values.Value(
+        "A256GCM", environ_name="OIDC_RS_ENCRYPTION_ENCODING", environ_prefix=None
+    )
+
+    OIDC_RS_ENCRYPTION_ALGO = values.Value(
+        "RSA-OAEP", environ_name="OIDC_RS_ENCRYPTION_ALGO", environ_prefix=None
+    )
+
+    OIDC_RS_SIGNING_ALGO = values.Value(
+        "ES256", environ_name="OIDC_RS_SIGNING_ALGO", environ_prefix=None
+    )
+
+    OIDC_RS_SCOPES = values.ListValue(
+        ["openid"], environ_name="OIDC_RS_SCOPES", environ_prefix=None
+    )
+
+    OIDC_RS_ALLOWED_AUDIENCES = values.ListValue(
+        default=[],
+        environ_name="OIDC_RS_ALLOWED_AUDIENCES",
+        environ_prefix=None,
+    )
+
+    OIDC_RS_PRIVATE_KEY_STR = values.Value(
+        default=None,
+        environ_name="OIDC_RS_PRIVATE_KEY_STR",
+        environ_prefix=None,
+    )
+    OIDC_RS_ENCRYPTION_KEY_TYPE = values.Value(
+        default="RSA",
+        environ_name="OIDC_RS_ENCRYPTION_KEY_TYPE",
+        environ_prefix=None,
+    )
+
+    # External API Configuration
+    # Configure available routes and actions for external_api endpoints
+    EXTERNAL_API = values.DictValue(
+        default={
+            "documents": {
+                "enabled": True,
+                "actions": [
+                    "list",
+                    "retrieve",
+                    "create",
+                    "children",
+                ],
+            },
+            "document_access": {
+                "enabled": False,
+                "actions": [],
+            },
+            "document_invitation": {
+                "enabled": False,
+                "actions": [],
+            },
+            "users": {
+                "enabled": True,
+                "actions": ["get_me"],
+            },
+        },
+        environ_name="EXTERNAL_API",
+        environ_prefix=None,
+    )
+
    ALLOW_LOGOUT_GET_METHOD = values.BooleanValue(
        default=True, environ_name="ALLOW_LOGOUT_GET_METHOD", environ_prefix=None
    )
--- a/src/backend/locale/br_FR/LC_MESSAGES/django.po
+++ b/src/backend/locale/br_FR/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Breton\n"
 "Language: br_FR\n"
@@ -46,36 +46,40 @@ msgstr "Gwezennadur"
 msgid "Title"
 msgstr "Titl"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Me eo an aozer"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "Kuzhet"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Sinedoù"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Ur restr nevez a zo bet krouet ganeoc'h!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "C'hwi zo bet disklaeriet perc'henn ur restr nevez:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "Ar vaezienn-mañ a zo rekis."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "eilenn {title}"
@@ -247,98 +251,98 @@ msgstr "implijer"
 msgid "users"
 msgstr "implijerien"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "titl"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "bomm"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Restr"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Restroù"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Restr hep titl"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Digeriñ"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} en deus rannet ur restr ganeoc'h!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} en deus pedet ac'hanoc'h gant ar rol \"{role}\" war ar restr da-heul:"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} en deus rannet ur restr ganeoc'h: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Roud liamm ar restr/an implijer"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Roudoù liamm ar restr/an implijer"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Ur roud liamm a zo dija evit an restr/an implijer."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Restr muiañ-karet"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Restroù muiañ-karet"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Ar restr-mañ a zo ur restr muiañ karet gant an implijer-mañ."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Liamm restr/implijer"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Liammoù restr/implijer"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "An implijer-mañ a zo dija er restr-mañ."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Ar skipailh-mañ a zo dija en restr-mañ."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "An implijer pe ar skipailh a rank bezañ termenet, ket an daou avat."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Goulenn tizhout ar restr"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Goulennoù tizhout ar restr"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "An implijer en deus goulennet tizhout ar restr-mañ."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} en defe c'hoant da dizhout ar restr-mañ!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} en defe c'hoant da dizhout ar restr da-heul:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} en defe c'hoant da dizhout ar restr: {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "postel"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Pedadenn d'ur restr"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Pedadennoù d'ur restr"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Ar postel-mañ a zo liammet ouzh un implijer enskrivet."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/de_DE/LC_MESSAGES/django.po
+++ b/src/backend/locale/de_DE/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: German\n"
 "Language: de_DE\n"
@@ -28,11 +28,11 @@ msgstr "Berechtigungen"

 #: build/lib/core/admin.py:55 core/admin.py:55
 msgid "Important dates"
-msgstr "Wichtige Daten"
+msgstr "Wichtige Termine"

 #: build/lib/core/admin.py:112 core/admin.py:112
 msgid "Import job created and queued."
-msgstr ""
+msgstr "Import-Job erstellt und in der Warteschlange."

 #: build/lib/core/admin.py:116 core/admin.py:116
 msgid "Process selected user reconciliations"
@@ -46,36 +46,40 @@ msgstr "Baumstruktur"
 msgid "Title"
 msgstr "Titel"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Suchen"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Ersteller bin ich"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
-msgid "Masked"
-msgstr ""
-
 #: build/lib/core/api/filters.py:68 core/api/filters.py:68
+msgid "Masked"
+msgstr "Maskiert"
+
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favorit"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Ein neues Dokument wurde in Ihrem Namen erstellt!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Sie sind Besitzer eines neuen Dokuments:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
-msgstr ""
+msgstr "Dies ist ein Pflichtfeld."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
-msgstr ""
+msgstr "Der Zugriff auf den Link '%(link_reach)s' ist aufgrund der Konfiguration übergeordneter Dokumente nicht erlaubt."

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "Kopie von {title}"
@@ -92,7 +96,7 @@ msgstr "Lesen"
 #: build/lib/core/choices.py:36 build/lib/core/choices.py:44 core/choices.py:36
 #: core/choices.py:44
 msgid "Commenter"
-msgstr ""
+msgstr "Kommentieren"

 #: build/lib/core/choices.py:37 build/lib/core/choices.py:45 core/choices.py:37
 #: core/choices.py:45
@@ -173,11 +177,11 @@ msgstr "Wir konnten keinen Benutzer mit diesem Abo finden, aber die E-Mail-Adres

 #: build/lib/core/models.py:141 core/models.py:141
 msgid "sub"
-msgstr "unter"
+msgstr "sub"

 #: build/lib/core/models.py:142 core/models.py:142
 msgid "Required. 255 characters or fewer. ASCII characters only."
-msgstr ""
+msgstr "Pflichtfeld. 255 Zeichen oder weniger. Buchstaben (nur ASCII), Ziffern und die Zeichen @/-/_/."

 #: build/lib/core/models.py:150 core/models.py:150
 msgid "full name"
@@ -233,11 +237,11 @@ msgstr "Ob dieser Benutzer als aktiviert behandelt werden soll. Deaktivieren Sie

 #: build/lib/core/models.py:197 core/models.py:197
 msgid "first connection status"
-msgstr ""
+msgstr "Status der ersten Verbindung"

 #: build/lib/core/models.py:199 core/models.py:199
 msgid "Whether the user has completed the first connection process."
-msgstr ""
+msgstr "Gibt an, ob der Benutzer die Prozedur der ersten Verbindung abgeschlossen hat."

 #: build/lib/core/models.py:209 core/models.py:209
 msgid "user"
@@ -247,98 +251,98 @@ msgstr "Benutzer"
 msgid "users"
 msgstr "Benutzer"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
-msgstr ""
+msgstr "Aktive E-Mail-Adresse"

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
-msgstr ""
+msgstr "Zu deaktivierende E-Mail-Adresse"

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr "Ausstehend"
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr "Bereit"
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
-msgstr ""
+msgstr "Fertig"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
-msgstr ""
+msgstr "Fehler"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
-msgstr ""
+msgstr "Klicken Sie hier"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
-msgstr ""
+msgstr "Bestätigen Sie"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
-msgstr ""
+msgstr "Ihre Konten wurden zusammengelegt"

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
-msgstr ""
+msgstr "Klicken Sie hier um zu sehen"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
-msgstr ""
+msgstr "Meine Dokumente einsehen"

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
-msgstr ""
+msgstr "CSV-Datei"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
-msgstr ""
+msgstr "Wird ausgeführt"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,177 +351,177 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
-msgstr ""
+msgstr "Neue Anfrage erstellen"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "Titel"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "Auszug"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Dokument"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Dokumente"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Unbenanntes Dokument"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Öffnen"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} hat ein Dokument mit Ihnen geteilt!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} hat Sie mit der Rolle \"{role}\" zu folgendem Dokument eingeladen:"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} hat ein Dokument mit Ihnen geteilt: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Dokument/Benutzer Linkverfolgung"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Dokument/Benutzer Linkverfolgung"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Für dieses Dokument/ diesen Benutzer ist bereits eine Linkverfolgung vorhanden."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Dokumentenfavorit"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Dokumentfavoriten"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Dieses Dokument ist bereits durch den gleichen Benutzer favorisiert worden."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Dokument/Benutzerbeziehung"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Dokument/Benutzerbeziehungen"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Dieser Benutzer befindet sich bereits in diesem Dokument."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Dieses Team befindet sich bereits in diesem Dokument."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Benutzer oder Team müssen gesetzt werden, nicht beides."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
-msgstr ""
+msgstr "Dokument um Zugriff bitten"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
-msgstr ""
+msgstr "Dokumentenabfragen"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
-msgstr ""
+msgstr "Dieser Benutzer hat bereits um Zugang zu diesem Dokument gebeten."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
-msgstr ""
+msgstr "{name} möchte Zugriff auf ein Dokument erhalten!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
-msgstr ""
+msgstr "{name} möchte auf das folgende Dokument zugreifen:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
-msgstr ""
+msgstr "{name} bittet um Zugang zum Dokument: {title}"
+
+#: build/lib/core/models.py:1837 core/models.py:1837
+msgid "Thread"
+msgstr "Thread"

 #: build/lib/core/models.py:1838 core/models.py:1838
-msgid "Thread"
-msgstr ""
-
-#: build/lib/core/models.py:1839 core/models.py:1839
 msgid "Threads"
-msgstr ""
+msgstr "Threads"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
-msgstr ""
+msgstr "Gast"
+
+#: build/lib/core/models.py:1888 core/models.py:1888
+msgid "Comment"
+msgstr "Kommentar"

 #: build/lib/core/models.py:1889 core/models.py:1889
-msgid "Comment"
-msgstr ""
-
-#: build/lib/core/models.py:1890 core/models.py:1890
 msgid "Comments"
-msgstr ""
+msgstr "Kommentare"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
-msgstr ""
+msgstr "Reaktion"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
-msgstr ""
+msgstr "Reaktionen"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "E-Mail-Adresse"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Einladung zum Dokument"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Dokumenteinladungen"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Diese E-Mail ist bereits einem registrierten Benutzer zugeordnet."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
-msgstr ""
+msgstr "Docs AI"

 #: core/templates/mail/html/template.html:153
 #: core/templates/mail/text/template.txt:3
--- a/src/backend/locale/el_GR/LC_MESSAGES/django.po
+++ b/src/backend/locale/el_GR/LC_MESSAGES/django.po
@@ -0,0 +1,548 @@
+msgid ""
+msgstr ""
+"Project-Id-Version: lasuite-docs\n"
+"Report-Msgid-Bugs-To: \n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
+"Last-Translator: \n"
+"Language-Team: Greek\n"
+"Language: el_GR\n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+"Plural-Forms: nplurals=2; plural=(n != 1);\n"
+"X-Crowdin-Project: lasuite-docs\n"
+"X-Crowdin-Project-ID: 754523\n"
+"X-Crowdin-Language: el\n"
+"X-Crowdin-File: backend-impress.pot\n"
+"X-Crowdin-File-ID: 18\n"
+
+#: build/lib/core/admin.py:30 core/admin.py:30
+msgid "Personal info"
+msgstr "Προσωπικές πληροφορίες"
+
+#: build/lib/core/admin.py:43 build/lib/core/admin.py:161 core/admin.py:43
+#: core/admin.py:161
+msgid "Permissions"
+msgstr "Δικαιώματα"
+
+#: build/lib/core/admin.py:55 core/admin.py:55
+msgid "Important dates"
+msgstr "Σημαντικές ημερομηνίες"
+
+#: build/lib/core/admin.py:112 core/admin.py:112
+msgid "Import job created and queued."
+msgstr "Η εργασία εισαγωγής δημιουργήθηκε και μπήκε στην ουρά."
+
+#: build/lib/core/admin.py:116 core/admin.py:116
+msgid "Process selected user reconciliations"
+msgstr "Επεξεργασία επιλεγμένων συμφωνιών χρηστών"
+
+#: build/lib/core/admin.py:171 core/admin.py:171
+msgid "Tree structure"
+msgstr "Δομή δέντρου"
+
+#: build/lib/core/api/filters.py:48 core/api/filters.py:48
+msgid "Title"
+msgstr "Τίτλος"
+
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Αναζήτηση"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+msgid "Creator is me"
+msgstr "Δημιουργός είμαι εγώ"
+
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+msgid "Masked"
+msgstr "Με κάλυψη"
+
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
+msgid "Favorite"
+msgstr "Αγαπημένο"
+
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
+msgid "A new document was created on your behalf!"
+msgstr "Ένα νέο έγγραφο δημιουργήθηκε εκ μέρους σας!"
+
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
+msgid "You have been granted ownership of a new document:"
+msgstr "Σας παραχωρήθηκε η ιδιοκτησία ενός νέου εγγράφου:"
+
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
+msgid "This field is required."
+msgstr "Αυτό το πεδίο είναι υποχρεωτικό."
+
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
+#, python-format
+msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
+msgstr "Η εμβέλεια συνδέσμου '%(link_reach)s' δεν επιτρέπεται βάσει της διαμόρφωσης του γονικού εγγράφου."
+
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
+#, python-brace-format
+msgid "copy of {title}"
+msgstr "αντίγραφο του {title}"
+
+#: build/lib/core/apps.py:12 core/apps.py:12
+msgid "Impress core application"
+msgstr "Κεντρική εφαρμογή Impress"
+
+#: build/lib/core/choices.py:35 build/lib/core/choices.py:43 core/choices.py:35
+#: core/choices.py:43
+msgid "Reader"
+msgstr "Αναγνώστης"
+
+#: build/lib/core/choices.py:36 build/lib/core/choices.py:44 core/choices.py:36
+#: core/choices.py:44
+msgid "Commenter"
+msgstr "Σχολιαστής"
+
+#: build/lib/core/choices.py:37 build/lib/core/choices.py:45 core/choices.py:37
+#: core/choices.py:45
+msgid "Editor"
+msgstr "Συντάκτης"
+
+#: build/lib/core/choices.py:46 core/choices.py:46
+msgid "Administrator"
+msgstr "Διαχειριστής"
+
+#: build/lib/core/choices.py:47 core/choices.py:47
+msgid "Owner"
+msgstr "Ιδιοκτήτης"
+
+#: build/lib/core/choices.py:58 core/choices.py:58
+msgid "Restricted"
+msgstr "Περιορισμένο"
+
+#: build/lib/core/choices.py:62 core/choices.py:62
+msgid "Authenticated"
+msgstr "Πιστοποιημένο"
+
+#: build/lib/core/choices.py:64 core/choices.py:64
+msgid "Public"
+msgstr "Δημόσιο"
+
+#: build/lib/core/enums.py:36 core/enums.py:36
+msgid "First child"
+msgstr "Πρώτο θυγατρικό"
+
+#: build/lib/core/enums.py:37 core/enums.py:37
+msgid "Last child"
+msgstr "Τελευταίο θυγατρικό"
+
+#: build/lib/core/enums.py:38 core/enums.py:38
+msgid "First sibling"
+msgstr "Πρώτο αδελφό"
+
+#: build/lib/core/enums.py:39 core/enums.py:39
+msgid "Last sibling"
+msgstr "Τελευταίο αδελφό"
+
+#: build/lib/core/enums.py:40 core/enums.py:40
+msgid "Left"
+msgstr "Αριστερά"
+
+#: build/lib/core/enums.py:41 core/enums.py:41
+msgid "Right"
+msgstr "Δεξιά"
+
+#: build/lib/core/models.py:80 core/models.py:80
+msgid "id"
+msgstr "αναγνωριστικό"
+
+#: build/lib/core/models.py:81 core/models.py:81
+msgid "primary key for the record as UUID"
+msgstr "πρωτεύον κλειδί για την εγγραφή ως UUID"
+
+#: build/lib/core/models.py:87 core/models.py:87
+msgid "created on"
+msgstr "δημιουργήθηκε στις"
+
+#: build/lib/core/models.py:88 core/models.py:88
+msgid "date and time at which a record was created"
+msgstr "ημερομηνία και ώρα δημιουργίας μιας εγγραφής"
+
+#: build/lib/core/models.py:93 core/models.py:93
+msgid "updated on"
+msgstr "ενημερώθηκε στις"
+
+#: build/lib/core/models.py:94 core/models.py:94
+msgid "date and time at which a record was last updated"
+msgstr "ημερομηνία και ώρα τελευταίας ενημέρωσης μιας εγγραφής"
+
+#: build/lib/core/models.py:130 core/models.py:130
+msgid "We couldn't find a user with this sub but the email is already associated with a registered user."
+msgstr "Δεν μπορέσαμε να βρούμε χρήστη με αυτό το sub, αλλά το email σχετίζεται ήδη με έναν εγγεγραμμένο χρήστη."
+
+#: build/lib/core/models.py:141 core/models.py:141
+msgid "sub"
+msgstr "sub (αναγνωριστικό υποκειμένου)"
+
+#: build/lib/core/models.py:142 core/models.py:142
+msgid "Required. 255 characters or fewer. ASCII characters only."
+msgstr "Υποχρεωτικό. 255 χαρακτήρες ή λιγότεροι. Μόνο χαρακτήρες ASCII."
+
+#: build/lib/core/models.py:150 core/models.py:150
+msgid "full name"
+msgstr "πλήρες όνομα"
+
+#: build/lib/core/models.py:152 core/models.py:152
+msgid "short name"
+msgstr "σύντομο όνομα"
+
+#: build/lib/core/models.py:155 core/models.py:155
+msgid "identity email address"
+msgstr "διεύθυνση email ταυτότητας"
+
+#: build/lib/core/models.py:160 core/models.py:160
+msgid "admin email address"
+msgstr "διεύθυνση email διαχειριστή"
+
+#: build/lib/core/models.py:167 core/models.py:167
+msgid "language"
+msgstr "γλώσσα"
+
+#: build/lib/core/models.py:168 core/models.py:168
+msgid "The language in which the user wants to see the interface."
+msgstr "Η γλώσσα στην οποία ο χρήστης θέλει να δει τη διεπαφή."
+
+#: build/lib/core/models.py:176 core/models.py:176
+msgid "The timezone in which the user wants to see times."
+msgstr "Η ζώνη ώρας στην οποία ο χρήστης θέλει να βλέπει την ώρα."
+
+#: build/lib/core/models.py:179 core/models.py:179
+msgid "device"
+msgstr "συσκευή"
+
+#: build/lib/core/models.py:181 core/models.py:181
+msgid "Whether the user is a device or a real user."
+msgstr "Εάν ο χρήστης είναι μια συσκευή ή πραγματικός χρήστης."
+
+#: build/lib/core/models.py:184 core/models.py:184
+msgid "staff status"
+msgstr "κατάσταση προσωπικού"
+
+#: build/lib/core/models.py:186 core/models.py:186
+msgid "Whether the user can log into this admin site."
+msgstr "Εάν ο χρήστης μπορεί να συνδεθεί σε αυτόν τον ιστότοπο διαχείρισης."
+
+#: build/lib/core/models.py:189 core/models.py:189
+msgid "active"
+msgstr "ενεργός"
+
+#: build/lib/core/models.py:192 core/models.py:192
+msgid "Whether this user should be treated as active. Unselect this instead of deleting accounts."
+msgstr "Εάν αυτός ο χρήστης πρέπει να θεωρείται ενεργός. Αποεπιλέξτε το αντί να διαγράψετε λογαριασμούς."
+
+#: build/lib/core/models.py:197 core/models.py:197
+msgid "first connection status"
+msgstr "πρώτη κατάσταση σύνδεσης"
+
+#: build/lib/core/models.py:199 core/models.py:199
+msgid "Whether the user has completed the first connection process."
+msgstr "Εάν ο χρήστης έχει ολοκληρώσει τη διαδικασία της πρώτης σύνδεσης."
+
+#: build/lib/core/models.py:209 core/models.py:209
+msgid "user"
+msgstr "χρήστης"
+
+#: build/lib/core/models.py:210 core/models.py:210
+msgid "users"
+msgstr "χρήστες"
+
+#: build/lib/core/models.py:376 core/models.py:376
+msgid "Active email address"
+msgstr "Ενεργή διεύθυνση email"
+
+#: build/lib/core/models.py:377 core/models.py:377
+msgid "Email address to deactivate"
+msgstr "Διεύθυνση email για απενεργοποίηση"
+
+#: build/lib/core/models.py:404 core/models.py:404
+msgid "Unique ID in the source file"
+msgstr "Μοναδικό αναγνωριστικό στο πηγαίο αρχείο"
+
+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr "Σε εκκρεμότητα"
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr "Έτοιμο"
+
+#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
+#: core/models.py:710
+msgid "Done"
+msgstr "Ολοκληρώθηκε"
+
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
+msgid "Error"
+msgstr "Σφάλμα"
+
+#: build/lib/core/models.py:421 core/models.py:421
+msgid "user reconciliation"
+msgstr "συμφωνία χρήστη"
+
+#: build/lib/core/models.py:422 core/models.py:422
+msgid "user reconciliations"
+msgstr "συμφωνία χρηστών"
+
+#: build/lib/core/models.py:660 core/models.py:660
+msgid "You have requested a reconciliation of your user accounts on Docs.\n"
+"            To confirm that you are the one who initiated the request\n"
+"            and that this email belongs to you:"
+msgstr "Έχετε ζητήσει έναν συνδυασμό των λογαριασμών χρήστη σας στα Έγγραφα.\n"
+"            Για να επιβεβαιώσετε ότι είστε εκείνος που ξεκίνησε το αίτημα\n"
+"            και ότι αυτό το email ανήκει σε σας:"
+
+#: build/lib/core/models.py:666 core/models.py:666
+msgid "Confirm by clicking the link to start the reconciliation"
+msgstr "Επιβεβαιώστε κάνοντας κλικ στο σύνδεσμο για να ξεκινήσει η συμφωνία"
+
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
+msgid "Click here"
+msgstr "Κάντε κλικ εδώ"
+
+#: build/lib/core/models.py:672 core/models.py:672
+msgid "Confirm"
+msgstr "Επιβεβαίωση"
+
+#: build/lib/core/models.py:683 core/models.py:683
+msgid "Your reconciliation request has been processed.\n"
+"            New documents are likely associated with your account:"
+msgstr "Το αίτημά σας για συμφωνία έχει επεξεργαστεί.\n"
+"            Νέα έγγραφα είναι πιθανό να σχετίζονται με τον λογαριασμό σας:"
+
+#: build/lib/core/models.py:688 core/models.py:688
+msgid "Your accounts have been merged"
+msgstr "Οι λογαριασμοί σας έχουν συγχωνευθεί"
+
+#: build/lib/core/models.py:693 core/models.py:693
+msgid "Click here to see"
+msgstr "Κάντε κλικ εδώ για να δείτε"
+
+#: build/lib/core/models.py:694 core/models.py:694
+msgid "See my documents"
+msgstr "Δείτε τα έγγραφά μου"
+
+#: build/lib/core/models.py:704 core/models.py:704
+msgid "CSV file"
+msgstr "Αρχείο CSV"
+
+#: build/lib/core/models.py:709 core/models.py:709
+msgid "Running"
+msgstr "Εκτελείται"
+
+#: build/lib/core/models.py:719 core/models.py:719
+msgid "user reconciliation CSV import"
+msgstr "εισαγωγή CSV συμφωνίας χρηστών"
+
+#: build/lib/core/models.py:720 core/models.py:720
+msgid "user reconciliation CSV imports"
+msgstr "εισαγωγές CSV συμφωνίας χρηστών"
+
+#: build/lib/core/models.py:764 core/models.py:764
+#, python-brace-format
+msgid "Your request for reconciliation was unsuccessful.\n"
+"            Reconciliation failed for the following email addresses:\n"
+"            {recipient_email}, {other_email}.\n"
+"            Please check for typos.\n"
+"            You can submit another request with the valid email addresses."
+msgstr "Το αίτημά σας για επαλήθευση δεν ολοκληρώθηκε με επιτυχία.\n"
+"            Η επαλήθευση απέτυχε για τις ακόλουθες διευθύνσεις email:\n"
+"            {recipient_email}, {other_email}.\n"
+"            Παρακαλούμε ελέγξτε αν υπάρχουν τυπογραφικά λάθη.\n"
+"            Μπορείτε να υποβάλετε ένα νέο αίτημα με τις σωστές διευθύνσεις email."
+
+#: build/lib/core/models.py:772 core/models.py:772
+msgid "Reconciliation of your Docs accounts not completed"
+msgstr "Η συμφωνία των λογαριασμών σας Docs δεν ολοκληρώθηκε"
+
+#: build/lib/core/models.py:778 core/models.py:778
+msgid "Make a new request"
+msgstr "Κάντε ένα νέο αίτημα"
+
+#: build/lib/core/models.py:877 core/models.py:877
+msgid "title"
+msgstr "τίτλος"
+
+#: build/lib/core/models.py:878 core/models.py:878
+msgid "excerpt"
+msgstr "απόσπασμα"
+
+#: build/lib/core/models.py:927 core/models.py:927
+msgid "Document"
+msgstr "Έγγραφο"
+
+#: build/lib/core/models.py:928 core/models.py:928
+msgid "Documents"
+msgstr "Έγγραφα"
+
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
+msgid "Untitled Document"
+msgstr "Έγγραφο χωρίς τίτλο"
+
+#: build/lib/core/models.py:1346 core/models.py:1346
+msgid "Open"
+msgstr "Άνοιγμα"
+
+#: build/lib/core/models.py:1381 core/models.py:1381
+#, python-brace-format
+msgid "{name} shared a document with you!"
+msgstr "Ο/Η {name} μοιράστηκε ένα έγγραφο μαζί σας!"
+
+#: build/lib/core/models.py:1385 core/models.py:1385
+#, python-brace-format
+msgid "{name} invited you with the role \"{role}\" on the following document:"
+msgstr "Ο/Η {name} σας προσκάλεσε με τον ρόλο \"{role}\" στο ακόλουθο έγγραφο:"
+
+#: build/lib/core/models.py:1391 core/models.py:1391
+#, python-brace-format
+msgid "{name} shared a document with you: {title}"
+msgstr "Ο/Η {name} μοιράστηκε ένα έγγραφο μαζί σας: {title}"
+
+#: build/lib/core/models.py:1492 core/models.py:1492
+msgid "Document/user link trace"
+msgstr "Ίχνος συνδέσμου εγγράφου/χρήστη"
+
+#: build/lib/core/models.py:1493 core/models.py:1493
+msgid "Document/user link traces"
+msgstr "Ίχνη συνδέσμου εγγράφου/χρήστη"
+
+#: build/lib/core/models.py:1499 core/models.py:1499
+msgid "A link trace already exists for this document/user."
+msgstr "Ένα ίχνος συνδέσμου υπάρχει ήδη για αυτό το έγγραφο/χρήστη."
+
+#: build/lib/core/models.py:1522 core/models.py:1522
+msgid "Document favorite"
+msgstr "Αγαπημένο έγγραφο"
+
+#: build/lib/core/models.py:1523 core/models.py:1523
+msgid "Document favorites"
+msgstr "Αγαπημένα έγγραφα"
+
+#: build/lib/core/models.py:1529 core/models.py:1529
+msgid "This document is already targeted by a favorite relation instance for the same user."
+msgstr "Αυτό το έγγραφο στοχεύεται ήδη από μια σχέση αγαπημένου για τον ίδιο χρήστη."
+
+#: build/lib/core/models.py:1551 core/models.py:1551
+msgid "Document/user relation"
+msgstr "Σχέση εγγράφου/χρήστη"
+
+#: build/lib/core/models.py:1552 core/models.py:1552
+msgid "Document/user relations"
+msgstr "Σχέσεις εγγράφου/χρήστη"
+
+#: build/lib/core/models.py:1558 core/models.py:1558
+msgid "This user is already in this document."
+msgstr "Αυτός ο χρήστης συμμετέχει ήδη σε αυτό το έγγραφο."
+
+#: build/lib/core/models.py:1564 core/models.py:1564
+msgid "This team is already in this document."
+msgstr "Αυτή η ομάδα συμμετέχει ήδη σε αυτό το έγγραφο."
+
+#: build/lib/core/models.py:1570 core/models.py:1570
+msgid "Either user or team must be set, not both."
+msgstr "Πρέπει να οριστεί είτε χρήστης είτε ομάδα, όχι και τα δύο."
+
+#: build/lib/core/models.py:1721 core/models.py:1721
+msgid "Document ask for access"
+msgstr "Αίτημα πρόσβασης σε έγγραφο"
+
+#: build/lib/core/models.py:1722 core/models.py:1722
+msgid "Document ask for accesses"
+msgstr "Αιτήματα πρόσβασης σε έγγραφα"
+
+#: build/lib/core/models.py:1728 core/models.py:1728
+msgid "This user has already asked for access to this document."
+msgstr "Αυτός ο χρήστης έχει ήδη ζητήσει πρόσβαση σε αυτό το έγγραφο."
+
+#: build/lib/core/models.py:1785 core/models.py:1785
+#, python-brace-format
+msgid "{name} would like access to a document!"
+msgstr "Ο/Η {name} θα ήθελε πρόσβαση σε ένα έγγραφο!"
+
+#: build/lib/core/models.py:1789 core/models.py:1789
+#, python-brace-format
+msgid "{name} would like access to the following document:"
+msgstr "Ο/Η {name} θα ήθελε πρόσβαση στο ακόλουθο έγγραφο:"
+
+#: build/lib/core/models.py:1795 core/models.py:1795
+#, python-brace-format
+msgid "{name} is asking for access to the document: {title}"
+msgstr "Ο/Η {name} ζητά πρόσβαση στο έγγραφο: {title}"
+
+#: build/lib/core/models.py:1837 core/models.py:1837
+msgid "Thread"
+msgstr "Νήμα"
+
+#: build/lib/core/models.py:1838 core/models.py:1838
+msgid "Threads"
+msgstr "Νήματα"
+
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
+msgid "Anonymous"
+msgstr "Ανώνυμος"
+
+#: build/lib/core/models.py:1888 core/models.py:1888
+msgid "Comment"
+msgstr "Σχόλιο"
+
+#: build/lib/core/models.py:1889 core/models.py:1889
+msgid "Comments"
+msgstr "Σχόλια"
+
+#: build/lib/core/models.py:1938 core/models.py:1938
+msgid "This emoji has already been reacted to this comment."
+msgstr "Αυτό το emoji έχει χρησιμοποιηθεί ήδη ως αντίδραση σε αυτό το σχόλιο."
+
+#: build/lib/core/models.py:1942 core/models.py:1942
+msgid "Reaction"
+msgstr "Αντίδραση"
+
+#: build/lib/core/models.py:1943 core/models.py:1943
+msgid "Reactions"
+msgstr "Αντιδράσεις"
+
+#: build/lib/core/models.py:1953 core/models.py:1953
+msgid "email address"
+msgstr "διεύθυνση email"
+
+#: build/lib/core/models.py:1972 core/models.py:1972
+msgid "Document invitation"
+msgstr "Πρόσκληση σε έγγραφο"
+
+#: build/lib/core/models.py:1973 core/models.py:1973
+msgid "Document invitations"
+msgstr "Προσκλήσεις εγγράφου"
+
+#: build/lib/core/models.py:1993 core/models.py:1993
+msgid "This email is already associated to a registered user."
+msgstr "Αυτό το email σχετίζεται ήδη με έναν εγγεγραμμένο χρήστη."
+
+#: build/lib/impress/settings.py:808 impress/settings.py:808
+msgid "Docs AI"
+msgstr "Τεχνητή Νοημοσύνη (AI) Docs"
+
+#: core/templates/mail/html/template.html:153
+#: core/templates/mail/text/template.txt:3
+msgid "Logo email"
+msgstr "Λογότυπο email"
+
+#: core/templates/mail/html/template.html:219
+#: core/templates/mail/text/template.txt:14
+msgid " Docs, your new essential tool for organizing, sharing and collaborating on your documents as a team. "
+msgstr " Docs, το νέο απαραίτητο εργαλείο σας για την οργάνωση, τον διαμοιρασμό και τη συνεργασία στα έγγραφά σας ως ομάδα. "
+
+#: core/templates/mail/html/template.html:226
+#: core/templates/mail/text/template.txt:16
+#, python-format
+msgid " Brought to you by %(brandname)s "
+msgstr " Σας προσφέρεται από την %(brandname)s "
+
--- a/src/backend/locale/en_US/LC_MESSAGES/django.po
+++ b/src/backend/locale/en_US/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: English\n"
 "Language: en_US\n"
@@ -46,36 +46,40 @@ msgstr ""
 msgid "Title"
 msgstr ""

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
-msgid "Creator is me"
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
 msgstr ""

 #: build/lib/core/api/filters.py:65 core/api/filters.py:65
-msgid "Masked"
+msgid "Creator is me"
 msgstr ""

 #: build/lib/core/api/filters.py:68 core/api/filters.py:68
+msgid "Masked"
+msgstr ""
+
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr ""

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr ""

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr ""

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr ""
@@ -247,98 +251,98 @@ msgstr ""
 msgid "users"
 msgstr ""

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr ""

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr ""

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr ""

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr ""

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr ""

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr ""

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr ""

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr ""

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr ""

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr ""

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr ""

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr ""

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr ""

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr ""

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr ""

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr ""

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr ""

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr ""

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr ""

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr ""

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr ""

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr ""

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/es_ES/LC_MESSAGES/django.po
+++ b/src/backend/locale/es_ES/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Spanish\n"
 "Language: es_ES\n"
@@ -46,36 +46,40 @@ msgstr "Estructura en árbol"
 msgid "Title"
 msgstr "Título"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Buscar"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Yo soy el creador"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
-msgid "Masked"
-msgstr ""
-
 #: build/lib/core/api/filters.py:68 core/api/filters.py:68
+msgid "Masked"
+msgstr "Enmascarado"
+
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favorito"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "¡Un nuevo documento se ha creado por ti!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Se le ha concedido la propiedad de un nuevo documento :"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "copia de {title}"
@@ -247,98 +251,98 @@ msgstr "usuario"
 msgid "users"
 msgstr "usuarios"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr "Pending"
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr "Listo"
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
-msgstr ""
+msgstr "Terminado"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
-msgstr ""
+msgstr "Error"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
-msgstr ""
+msgstr "Haga click aquí"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
-msgstr ""
+msgstr "Confirmar"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
-msgstr ""
+msgstr "Haz clic aquí para ver"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
-msgstr ""
+msgstr "Archivo CSV"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
-msgstr ""
+msgstr "En ejecución"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,177 +351,177 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
-msgstr ""
+msgstr "Hacer un nuevo pedido"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "título"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "resumen"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Documento"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Documentos"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Documento sin título"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Abrir"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "¡{name} ha compartido un documento contigo!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "Te ha invitado {name} al siguiente documento con el rol \"{role}\" :"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} ha compartido un documento contigo: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Traza del enlace de documento/usuario"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Trazas del enlace de documento/usuario"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Ya existe una traza de enlace para este documento/usuario."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Documento favorito"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Documentos favoritos"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Este documento ya ha sido marcado como favorito por el usuario."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Relación documento/usuario"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Relaciones documento/usuario"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Este usuario ya forma parte del documento."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Este equipo ya forma parte del documento."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Debe establecerse un usuario o un equipo, no ambos."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Solicitud de acceso"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Solicitud de accesos"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "Este usuario ya ha solicitado acceso a este documento."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "¡{name} desea acceder a un documento!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} desea acceso al siguiente documento:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} está pidiendo acceso al documento: {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
-msgstr ""
+msgstr "Thread"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
-msgstr ""
+msgstr "Threads"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
-msgstr ""
+msgstr "Anónimo"
+
+#: build/lib/core/models.py:1888 core/models.py:1888
+msgid "Comment"
+msgstr "Comentario"

 #: build/lib/core/models.py:1889 core/models.py:1889
-msgid "Comment"
-msgstr ""
-
-#: build/lib/core/models.py:1890 core/models.py:1890
 msgid "Comments"
-msgstr ""
+msgstr "Comentarios"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
-msgstr ""
+msgstr "Reacción"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
-msgstr ""
+msgstr "Reacciones"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "dirección de correo electrónico"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Invitación al documento"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Invitaciones a documentos"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Este correo electrónico está asociado a un usuario registrado."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
-msgstr ""
+msgstr "Docs AI"

 #: core/templates/mail/html/template.html:153
 #: core/templates/mail/text/template.txt:3
--- a/src/backend/locale/fr_FR/LC_MESSAGES/django.po
+++ b/src/backend/locale/fr_FR/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: French\n"
 "Language: fr_FR\n"
@@ -46,36 +46,40 @@ msgstr "Arborescence"
 msgid "Title"
 msgstr "Titre"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Recherche"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Je suis l'auteur"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "Masqué"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favoris"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Un nouveau document a été créé pour vous !"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Vous avez été déclaré propriétaire d'un nouveau document :"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "Ce champ est obligatoire."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr "La portée du lien '%(link_reach)s' n'est pas autorisée en fonction de la configuration du document parent."

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "copie de {title}"
@@ -247,46 +251,46 @@ msgstr "utilisateur"
 msgid "users"
 msgstr "utilisateurs"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr "Adresse email active"

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr "Adresse email à désactiver"

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr "Identifiant unique dans le fichier source"

-#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
-#: core/models.py:710
+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
 msgid "Pending"
 msgstr "En attente"

-#: build/lib/core/models.py:413 core/models.py:413
+#: build/lib/core/models.py:411 core/models.py:411
 msgid "Ready"
 msgstr "Prêt"

-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
+#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
+#: core/models.py:710
 msgid "Done"
 msgstr "Terminé"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr "Erreur"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr "rapprochement de l'utilisateur"

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr "rapprochements de l'utilisateur"

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
@@ -294,54 +298,54 @@ msgstr "Vous avez demandé un rapprochement de vos comptes utilisateur sur Docs.
 "            Pour confirmer que vous êtes bien à l'origine de cette demande\n"
 "            et que cet e-mail vous appartient :"

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr "Confirmez en cliquant sur le lien pour commencer le rapprochement"

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr "Cliquez ici"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr "Confirmer"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr "Votre demande de rapprochement a été traitée.\n"
 "            De nouveaux documents sont probablement associés à votre compte :"

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr "Vos comptes ont été fusionnés"

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr "Cliquez ici pour voir"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr "Voir mes documents"

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr "Fichier CSV"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr "En cours"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr "importation CSV de rapprochement utilisateur"

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr "importations CSV de rapprochement utilisateur"

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -354,175 +358,175 @@ msgstr "Votre demande de rapprochement n'a pas abouti.\n"
 "            Veuillez vérifier qu'il n'y a pas de fautes de frappe.\n"
 "            Vous pouvez envoyer une nouvelle demande avec des adresses e-mail valides."

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr "Le rapprochement de vos comptes Docs n'est pas terminé"

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr "Faire une nouvelle demande"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "titre"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "extrait"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Document"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Documents"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Document sans titre"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Ouvrir"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} a partagé un document avec vous!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} vous a invité avec le rôle \"{role}\" sur le document suivant :"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} a partagé un document avec vous : {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Trace du lien document/utilisateur"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Traces du lien document/utilisateur"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Une trace de lien existe déjà pour ce document/utilisateur."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Document favori"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Documents favoris"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Ce document est déjà un favori de cet utilisateur."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Relation document/utilisateur"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Relations document/utilisateur"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Cet utilisateur est déjà dans ce document."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Cette équipe est déjà dans ce document."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "L'utilisateur ou l'équipe doivent être définis, pas les deux."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Demande d'accès au document"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Demande d'accès au document"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "Cet utilisateur a déjà demandé l'accès à ce document."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} souhaiterait accéder au document suivant !"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} souhaiterait accéder au document suivant :"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} demande l'accès au document : {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr "Conversation"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr "Conversations"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr "Anonyme"

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr "Commentaire"

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr "Commentaires"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr "Cet émoji a déjà été réagi à ce commentaire."

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr "Réaction"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr "Réactions"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "adresse e-mail"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Invitation à un document"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Invitations à un document"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Cette adresse email est déjà associée à un utilisateur inscrit."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr "Docs IA"

--- a/src/backend/locale/it_IT/LC_MESSAGES/django.po
+++ b/src/backend/locale/it_IT/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Italian\n"
 "Language: it_IT\n"
@@ -46,36 +46,40 @@ msgstr "Struttura ad albero"
 msgid "Title"
 msgstr "Titolo"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Il creatore sono io"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr ""

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Preferiti"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Un nuovo documento è stato creato a tuo nome!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Sei ora proprietario di un nuovo documento:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "copia di {title}"
@@ -247,98 +251,98 @@ msgstr "utente"
 msgid "users"
 msgstr "utenti"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "titolo"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr ""

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Documento"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Documenti"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Documento senza titolo"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Apri"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} ha condiviso un documento con te!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} ti ha invitato con il ruolo \"{role}\" nel seguente documento:"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} ha condiviso un documento con te: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr ""

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr ""

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr ""

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Documento preferito"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Documenti preferiti"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr ""

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr ""

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr ""

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Questo utente è già presente in questo documento."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Questo team è già presente in questo documento."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr ""

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "indirizzo e-mail"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Invito al documento"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Inviti al documento"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Questa email è già associata a un utente registrato."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/nl_NL/LC_MESSAGES/django.po
+++ b/src/backend/locale/nl_NL/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Dutch\n"
 "Language: nl_NL\n"
@@ -46,36 +46,40 @@ msgstr "Boomstructuur"
 msgid "Title"
 msgstr "Titel"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Ik ben eigenaar"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "Gemaskeerd"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favoriet"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Een nieuw document is namens u gemaakt!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "U heeft eigenaarschap van een nieuw document gekregen:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "Dit veld is verplicht."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr "Link bereik '%(link_reach)s' is niet toegestaan op basis van bovenliggende documentconfiguratie."

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "kopie van {title}"
@@ -247,46 +251,46 @@ msgstr "gebruiker"
 msgid "users"
 msgstr "gebruikers"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr "Actieve e-mail adres"

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr "E-mailadres om te deactiveren"

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr "Unieke ID in het bronbestand"

-#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
-#: core/models.py:710
+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
 msgid "Pending"
 msgstr "In behandeling"

-#: build/lib/core/models.py:413 core/models.py:413
+#: build/lib/core/models.py:411 core/models.py:411
 msgid "Ready"
 msgstr "Klaar"

-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
+#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
+#: core/models.py:710
 msgid "Done"
 msgstr "Klaar"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr "Fout"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr "gebruiker samenvoegen"

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr "gebruikers samenvoegen"

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
@@ -294,54 +298,54 @@ msgstr "Je hebt gevraagd om een samenvoeging van je gebruikersaccounts op Docs.\
 "            Om te bevestigen dat u degene bent die het verzoek\n"
 "            heeft geïnitieerd en dat deze e-mail van u is:"

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr "Bevestig door te klikken op de link om de samenvoeging te starten"

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr "Klik hier"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr "Bevestig"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr "Uw samenvoegingsverzoek is verwerkt.\n"
 "            Nieuwe documenten worden waarschijnlijk geassocieerd met uw account:"

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr "Je accounts zijn samengevoegd"

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr "Klik hier om te bekijken"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr "Mijn documenten bekijken"

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr "CSV bestand"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr "Bezig"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr "gebruiker samenvoeging CSV import"

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr "gebruiker reconciliation CSV imports"

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -354,175 +358,175 @@ msgstr "Uw verzoek tot verzoening is mislukt.\n"
 "            Controleer op typefouten.\n"
 "            U kunt een ander verzoek indienen met de geldige e-mailadressen."

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr "Samenvoeging van je Docs accounts is niet voltooid"

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr "Maak een nieuw verzoek"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "titel"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "uittreksel"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Document"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Documenten"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Naamloos Document"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Open"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} heeft een document met u gedeeld!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} heeft u uitgenodigd met de rol \"{role}\" op het volgende document:"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} heeft een document met u gedeeld: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Document/gebruiker link"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Document/gebruiker link"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Een link bestaat al voor dit document/deze gebruiker."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Document favoriet"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Document favorieten"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Dit document is al in gebruik als favoriet door dezelfde gebruiker."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Document/gebruiker relatie"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Document/gebruiker relaties"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "De gebruiker bestaat al in dit document."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Dit team bestaat al in dit document."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Een gebruiker of team moet gekozen worden, maar niet beide."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Document verzoekt om toegang"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Document verzoekt om toegangen"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "Deze gebruiker heeft al om toegang tot dit document gevraagd."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} verzoekt toegang tot een document!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} verzoekt toegang tot het volgende document:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} verzoekt toegang tot het document: {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr "Kanaal"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr "Kanalen"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr "Anoniem"

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr "Reactie"

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr "Reacties"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr "Deze emoji is al op deze opmerking gereageerd."

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr "Reactie"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr "Reacties"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "e-mailadres"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Document uitnodiging"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Document uitnodigingen"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Deze email is al geassocieerd met een geregistreerde gebruiker."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr "Docs AI"

--- a/src/backend/locale/pt_PT/LC_MESSAGES/django.po
+++ b/src/backend/locale/pt_PT/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Portuguese\n"
 "Language: pt_PT\n"
@@ -46,36 +46,40 @@ msgstr "Estrutura de árvore"
 msgid "Title"
 msgstr "Título"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Eu sou o criador"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr ""

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favorito"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Um novo documento foi criado em seu nome!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "A propriedade de um novo documento foi concedida a você:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "cópia de {title}"
@@ -137,7 +141,7 @@ msgstr ""

 #: build/lib/core/enums.py:40 core/enums.py:40
 msgid "Left"
-msgstr ""
+msgstr "Esquerda"

 #: build/lib/core/enums.py:41 core/enums.py:41
 msgid "Right"
@@ -145,7 +149,7 @@ msgstr ""

 #: build/lib/core/models.py:80 core/models.py:80
 msgid "id"
-msgstr ""
+msgstr "id"

 #: build/lib/core/models.py:81 core/models.py:81
 msgid "primary key for the record as UUID"
@@ -173,7 +177,7 @@ msgstr ""

 #: build/lib/core/models.py:141 core/models.py:141
 msgid "sub"
-msgstr ""
+msgstr "sub"

 #: build/lib/core/models.py:142 core/models.py:142
 msgid "Required. 255 characters or fewer. ASCII characters only."
@@ -241,104 +245,104 @@ msgstr ""

 #: build/lib/core/models.py:209 core/models.py:209
 msgid "user"
-msgstr ""
+msgstr "utilizador"

 #: build/lib/core/models.py:210 core/models.py:210
 msgid "users"
 msgstr ""

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
-msgstr ""
+msgstr "Concluído"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr ""

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr ""

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr ""

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr ""

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr ""

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
-msgstr ""
+msgstr "Abrir"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr ""

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr ""

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr ""

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr ""

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr ""

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr ""

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr ""

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr ""

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr ""

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr ""

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr ""

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr ""

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr ""

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr ""

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr ""

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr ""

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/ru_RU/LC_MESSAGES/django.po
+++ b/src/backend/locale/ru_RU/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Russian\n"
 "Language: ru_RU\n"
@@ -46,36 +46,40 @@ msgstr "Древовидная структура"
 msgid "Title"
 msgstr "Заголовок"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Поиск"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Создатель - я"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "Скрытый"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Избранное"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Новый документ был создан от вашего имени!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Вы назначены владельцем для нового документа:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "Это поле обязательное."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr "Доступ по ссылке '%(link_reach)s' запрещён в соответствии с настройками родительского документа."

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "копия {title}"
@@ -247,46 +251,46 @@ msgstr "пользователь"
 msgid "users"
 msgstr "пользователи"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr "Активный адрес электронной почты"

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr "Адрес электронной почты для деактивации"

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr "Уникальный идентификатор в исходном файле"

-#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
-#: core/models.py:710
+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
 msgid "Pending"
 msgstr "В обработке"

-#: build/lib/core/models.py:413 core/models.py:413
+#: build/lib/core/models.py:411 core/models.py:411
 msgid "Ready"
 msgstr "Готово"

-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
+#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
+#: core/models.py:710
 msgid "Done"
 msgstr "Выполнено"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr "Ошибка"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr "сверка данных пользователя"

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr "сверки данных пользователя"

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
@@ -294,54 +298,54 @@ msgstr "Вы запросили сверку учётных записей по
 "            Чтобы подтвердить факт того, что вы являетесь инициатором запроса\n"
 "            и что этот адрес принадлежит вам:"

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr "Чтобы начать сверку, подтвердите это, нажав на ссылку"

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr "Нажмите здесь"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr "Подтверждение"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr "Ваш запрос на сверку был обработан.\n"
 "            Новые документы, вероятно, связаны с вашей учётной записью:"

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr "Ваши учётные записи были объединены"

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr "Нажмите здесь, чтобы просмотреть"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr "Просмотреть мои документы"

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr "CSV-файл"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr "Выполнение"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr "импорт из CSV сверки пользователей"

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr "импорты из CSV сверки пользователями"

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -354,175 +358,175 @@ msgstr "Ваш запрос на сверку не удался.\n"
 "            Пожалуйста, проверьте, нет ли в них опечаток.\n"
 "            Вы можете отправить ещё один запрос с действительными адресами электронной почты."

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr "Сверка ваших учётных записей Docs не завершена"

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr "Создать новый запрос"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "заголовок"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "отрывок"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Документ"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Документы"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Безымянный документ"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Открыть"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} делится с вами документом!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} приглашает вас присоединиться к следующему документу с ролью \"{role}\":"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} делится с вами документом: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Трассировка связи документ/пользователь"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Трассировка связей документ/пользователь"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Для этого документа/пользователя уже существует трассировка ссылки."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Избранный документ"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Избранные документы"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Этот документ уже помечен как избранный для этого пользователя."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Отношение документ/пользователь"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Отношения документ/пользователь"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Этот пользователь уже имеет доступ к этому документу."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Эта команда уже имеет доступ к этому документу."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Может быть выбран либо пользователь, либо команда, но не оба варианта сразу."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Документ запрашивает доступ"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Документ запрашивает доступы"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "Этот пользователь уже запросил доступ к этому документу."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} хочет получить доступ к документу!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} хочет получить доступ к следующему документу:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} запрашивает доступ к документу: {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr "Обсуждение"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr "Обсуждения"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr "Аноним"

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr "Комментарий"

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr "Комментарии"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr "Этот эмодзи уже использован в этом комментарии."

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr "Реакция"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr "Реакции"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "адрес электронной почты"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Приглашение для документа"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Приглашения для документов"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Этот адрес уже связан с зарегистрированным пользователем."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr "Docs ИИ"

--- a/src/backend/locale/sl_SI/LC_MESSAGES/django.po
+++ b/src/backend/locale/sl_SI/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Slovenian\n"
 "Language: sl_SI\n"
@@ -46,36 +46,40 @@ msgstr "Drevesna struktura"
 msgid "Title"
 msgstr "Naslov"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Ustvaril sem jaz"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr ""

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Priljubljena"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Nov dokument je bil ustvarjen v vašem imenu!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Dodeljeno vam je bilo lastništvo nad novim dokumentom:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr ""
@@ -247,98 +251,98 @@ msgstr "uporabnik"
 msgid "users"
 msgstr "uporabniki"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "naslov"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "odlomek"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Dokument"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Dokumenti"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Dokument brez naslova"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Odpri"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} je delil dokument z vami!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} vas je povabil z vlogo \"{role}\" na naslednjem dokumentu:"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} je delil dokument z vami: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Dokument/sled povezave uporabnika"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Sledi povezav dokumenta/uporabnika"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Za ta dokument/uporabnika že obstaja sled povezave."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Priljubljeni dokument"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Priljubljeni dokumenti"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Ta dokument je že ciljno usmerjen s priljubljenim primerkom relacije za istega uporabnika."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Odnos dokument/uporabnik"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Odnosi dokument/uporabnik"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Ta uporabnik je že v tem dokumentu."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Ta ekipa je že v tem dokumentu."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Nastaviti je treba bodisi uporabnika ali ekipo, a ne obojega."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "elektronski naslov"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Vabilo na dokument"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Vabila na dokument"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Ta e-poštni naslov je že povezan z registriranim uporabnikom."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/sv_SE/LC_MESSAGES/django.po
+++ b/src/backend/locale/sv_SE/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Swedish\n"
 "Language: sv_SE\n"
@@ -46,36 +46,40 @@ msgstr ""
 msgid "Title"
 msgstr "Titel"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Skaparen är jag"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr ""

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Favoriter"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Ett nytt dokument skapades åt dig!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Du har beviljats äganderätt till ett nytt dokument:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr ""
@@ -247,98 +251,98 @@ msgstr ""
 msgid "users"
 msgstr ""

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr ""

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr ""

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr ""

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr ""

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr ""

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Öppna"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr ""

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr ""

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr ""

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr ""

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr ""

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr ""

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr ""

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr ""

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr ""

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr ""

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr ""

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr ""

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "e-postadress"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Bjud in dokument"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Inbjudningar dokument"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Denna e-postadress är redan associerad med en registrerad användare."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/tr_TR/LC_MESSAGES/django.po
+++ b/src/backend/locale/tr_TR/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Turkish\n"
 "Language: tr_TR\n"
@@ -46,36 +46,40 @@ msgstr ""
 msgid "Title"
 msgstr ""

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
-msgid "Creator is me"
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
 msgstr ""

 #: build/lib/core/api/filters.py:65 core/api/filters.py:65
-msgid "Masked"
+msgid "Creator is me"
 msgstr ""

 #: build/lib/core/api/filters.py:68 core/api/filters.py:68
+msgid "Masked"
+msgstr ""
+
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr ""

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr ""

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr ""

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr ""

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr ""

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr ""
@@ -247,98 +251,98 @@ msgstr ""
 msgid "users"
 msgstr ""

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr ""

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr ""

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr ""

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr ""

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr ""

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr ""

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr ""

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr ""

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr ""

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr ""

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr ""

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr ""

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr ""

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr ""

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr ""

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr ""

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr ""

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr ""

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr ""

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr ""

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr ""

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr ""

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr ""

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr ""

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr ""

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr ""

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr ""

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr ""

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr ""

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr ""

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr ""

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr ""

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr ""

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr ""

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr ""

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr ""

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr ""

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/locale/uk_UA/LC_MESSAGES/django.po
+++ b/src/backend/locale/uk_UA/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Ukrainian\n"
 "Language: uk_UA\n"
@@ -46,36 +46,40 @@ msgstr "Ієрархічна структура"
 msgid "Title"
 msgstr "Заголовок"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr "Пошук"
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "Творець — я"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "Приховано"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "Обране"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "Новий документ був створений від вашого імені!"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "Ви тепер є власником нового документа:"

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "Це поле є обов’язковим."

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr "Доступ до посилання '%(link_reach)s' заборонено на основі конфігурації батьківського документа."

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "копія {title}"
@@ -247,46 +251,46 @@ msgstr "користувач"
 msgid "users"
 msgstr "користувачі"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr "Активна електронна адреса"

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr "Електронна адреса, що буде деактивована"

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr "Унікальний ідентифікатор у вихідному файлі"

-#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
-#: core/models.py:710
+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
 msgid "Pending"
 msgstr "В очікуванні"

-#: build/lib/core/models.py:413 core/models.py:413
+#: build/lib/core/models.py:411 core/models.py:411
 msgid "Ready"
 msgstr "Готово"

-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
+#: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
+#: core/models.py:710
 msgid "Done"
 msgstr "Виконано"

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr "Помилка"

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr "узгодження користувачів"

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr "узгодження користувачів"

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
@@ -294,54 +298,54 @@ msgstr "Ви запросили узгодження своїх облікови
 "            Щоб підтвердити, що саме ви ініціювали запит\n"
 "            і що ця електронна адреса належить вам:"

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr "Підтвердіть, натиснувши на посилання, щоб почати узгодження"

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr "Натисніть тут"

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr "Підтвердження"

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr "Ваш запит на узгодження оброблено.\n"
 "            Нові документи, ймовірно, пов'язані з вашим обліковим записом:"

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr "Ваші облікові записи були об'єднані"

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr "Натисніть тут, щоб переглянути"

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr "Переглянути мої документи"

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr "CSV-файл"

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr "Виконується"

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr "імпорт CSV для узгодження користувачів"

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr "імпорт CSV для узгодження користувачів"

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -354,175 +358,175 @@ msgstr "Ваш запит на узгодження не був виконани
 "            Перевірте, чи немає помилок.\n"
 "            Ви можете надіслати інший запит із дійсними адресами електронної пошти."

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr "Узгодження ваших облікових записів не завершено"

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr "Зробити новий запит"

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "заголовок"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "уривок"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "Документ"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "Документи"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "Документ без назви"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "Відкрити"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} ділиться з вами документом!"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} запрошує вас для роботи з документом із роллю \"{role}\":"

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} ділиться з вами документом: {title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "Трасування посилання Документ/користувач"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "Трасування посилань Документ/користувач"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "Відстеження вже існуючих посилань для цього документа/користувача."

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "Обраний документ"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "Обрані документи"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "Цей документ вже вказаний як обраний для одного користувача."

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "Відносини документ/користувач"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "Відносини документ/користувач"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "Цей користувач вже має доступ до цього документу."

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "Ця команда вже має доступ до цього документа."

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "Вкажіть користувача або команду, а не обох."

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "Запит доступу до документа"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "Запит доступу для документа"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "Цей користувач вже попросив доступ до цього документа."

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} хоче отримати доступ до документа!"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} бажає отримати доступ до наступного документа:"

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} запитує доступ до документа: {title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr "Обговорення"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr "Обговорення"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr "Анонім"

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr "Коментар"

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr "Коментарі"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr "Цим емодзі вже відреагували на цей коментар."

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr "Реакція"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr "Реакції"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "електронна адреса"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "Запрошення до редагування документа"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "Запрошення до редагування документів"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "Ця електронна пошта вже пов'язана з зареєстрованим користувачем."

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr "Docs ШІ"

--- a/src/backend/locale/zh_CN/LC_MESSAGES/django.po
+++ b/src/backend/locale/zh_CN/LC_MESSAGES/django.po
@@ -2,8 +2,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: lasuite-docs\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2026-03-12 13:31+0000\n"
-"PO-Revision-Date: 2026-03-13 16:53\n"
+"POT-Creation-Date: 2026-03-25 16:42+0000\n"
+"PO-Revision-Date: 2026-03-25 16:55\n"
 "Last-Translator: \n"
 "Language-Team: Chinese Simplified\n"
 "Language: zh_CN\n"
@@ -46,36 +46,40 @@ msgstr "樹狀結構"
 msgid "Title"
 msgstr "標題"

-#: build/lib/core/api/filters.py:62 core/api/filters.py:62
+#: build/lib/core/api/filters.py:51 core/api/filters.py:51
+msgid "Search"
+msgstr ""
+
+#: build/lib/core/api/filters.py:65 core/api/filters.py:65
 msgid "Creator is me"
 msgstr "建立者是我"

-#: build/lib/core/api/filters.py:65 core/api/filters.py:65
+#: build/lib/core/api/filters.py:68 core/api/filters.py:68
 msgid "Masked"
 msgstr "已隱藏"

-#: build/lib/core/api/filters.py:68 core/api/filters.py:68
+#: build/lib/core/api/filters.py:71 core/api/filters.py:71
 msgid "Favorite"
 msgstr "我的最愛"

-#: build/lib/core/api/serializers.py:526 core/api/serializers.py:526
+#: build/lib/core/api/serializers.py:535 core/api/serializers.py:535
 msgid "A new document was created on your behalf!"
 msgstr "已代表您建立新文件！"

-#: build/lib/core/api/serializers.py:530 core/api/serializers.py:530
+#: build/lib/core/api/serializers.py:539 core/api/serializers.py:539
 msgid "You have been granted ownership of a new document:"
 msgstr "您已獲得新文件的所有權："

-#: build/lib/core/api/serializers.py:566 core/api/serializers.py:566
+#: build/lib/core/api/serializers.py:575 core/api/serializers.py:575
 msgid "This field is required."
 msgstr "此欄位為必填。"

-#: build/lib/core/api/serializers.py:577 core/api/serializers.py:577
+#: build/lib/core/api/serializers.py:586 core/api/serializers.py:586
 #, python-format
 msgid "Link reach '%(link_reach)s' is not allowed based on parent document configuration."
 msgstr "根據父文件設定，不允許連結範圍「%(link_reach)s」。"

-#: build/lib/core/api/viewsets.py:1298 core/api/viewsets.py:1298
+#: build/lib/core/api/viewsets.py:1315 core/api/viewsets.py:1315
 #, python-brace-format
 msgid "copy of {title}"
 msgstr "{title} 的副本"
@@ -247,98 +251,98 @@ msgstr "使用者"
 msgid "users"
 msgstr "使用者"

-#: build/lib/core/models.py:378 core/models.py:378
+#: build/lib/core/models.py:376 core/models.py:376
 msgid "Active email address"
 msgstr ""

-#: build/lib/core/models.py:379 core/models.py:379
+#: build/lib/core/models.py:377 core/models.py:377
 msgid "Email address to deactivate"
 msgstr ""

-#: build/lib/core/models.py:406 core/models.py:406
+#: build/lib/core/models.py:404 core/models.py:404
 msgid "Unique ID in the source file"
 msgstr ""

+#: build/lib/core/models.py:410 build/lib/core/models.py:708 core/models.py:410
+#: core/models.py:708
+msgid "Pending"
+msgstr ""
+
+#: build/lib/core/models.py:411 core/models.py:411
+msgid "Ready"
+msgstr ""
+
 #: build/lib/core/models.py:412 build/lib/core/models.py:710 core/models.py:412
 #: core/models.py:710
-msgid "Pending"
-msgstr ""
-
-#: build/lib/core/models.py:413 core/models.py:413
-msgid "Ready"
-msgstr ""
-
-#: build/lib/core/models.py:414 build/lib/core/models.py:712 core/models.py:414
-#: core/models.py:712
 msgid "Done"
 msgstr ""

-#: build/lib/core/models.py:415 build/lib/core/models.py:713 core/models.py:415
-#: core/models.py:713
+#: build/lib/core/models.py:413 build/lib/core/models.py:711 core/models.py:413
+#: core/models.py:711
 msgid "Error"
 msgstr ""

-#: build/lib/core/models.py:423 core/models.py:423
+#: build/lib/core/models.py:421 core/models.py:421
 msgid "user reconciliation"
 msgstr ""

-#: build/lib/core/models.py:424 core/models.py:424
+#: build/lib/core/models.py:422 core/models.py:422
 msgid "user reconciliations"
 msgstr ""

-#: build/lib/core/models.py:662 core/models.py:662
+#: build/lib/core/models.py:660 core/models.py:660
 msgid "You have requested a reconciliation of your user accounts on Docs.\n"
 "            To confirm that you are the one who initiated the request\n"
 "            and that this email belongs to you:"
 msgstr ""

-#: build/lib/core/models.py:668 core/models.py:668
+#: build/lib/core/models.py:666 core/models.py:666
 msgid "Confirm by clicking the link to start the reconciliation"
 msgstr ""

-#: build/lib/core/models.py:673 build/lib/core/models.py:779 core/models.py:673
-#: core/models.py:779
+#: build/lib/core/models.py:671 build/lib/core/models.py:777 core/models.py:671
+#: core/models.py:777
 msgid "Click here"
 msgstr ""

-#: build/lib/core/models.py:674 core/models.py:674
+#: build/lib/core/models.py:672 core/models.py:672
 msgid "Confirm"
 msgstr ""

-#: build/lib/core/models.py:685 core/models.py:685
+#: build/lib/core/models.py:683 core/models.py:683
 msgid "Your reconciliation request has been processed.\n"
 "            New documents are likely associated with your account:"
 msgstr ""

-#: build/lib/core/models.py:690 core/models.py:690
+#: build/lib/core/models.py:688 core/models.py:688
 msgid "Your accounts have been merged"
 msgstr ""

-#: build/lib/core/models.py:695 core/models.py:695
+#: build/lib/core/models.py:693 core/models.py:693
 msgid "Click here to see"
 msgstr ""

-#: build/lib/core/models.py:696 core/models.py:696
+#: build/lib/core/models.py:694 core/models.py:694
 msgid "See my documents"
 msgstr ""

-#: build/lib/core/models.py:706 core/models.py:706
+#: build/lib/core/models.py:704 core/models.py:704
 msgid "CSV file"
 msgstr ""

-#: build/lib/core/models.py:711 core/models.py:711
+#: build/lib/core/models.py:709 core/models.py:709
 msgid "Running"
 msgstr ""

-#: build/lib/core/models.py:721 core/models.py:721
+#: build/lib/core/models.py:719 core/models.py:719
 msgid "user reconciliation CSV import"
 msgstr ""

-#: build/lib/core/models.py:722 core/models.py:722
+#: build/lib/core/models.py:720 core/models.py:720
 msgid "user reconciliation CSV imports"
 msgstr ""

-#: build/lib/core/models.py:766 core/models.py:766
+#: build/lib/core/models.py:764 core/models.py:764
 #, python-brace-format
 msgid "Your request for reconciliation was unsuccessful.\n"
 "            Reconciliation failed for the following email addresses:\n"
@@ -347,175 +351,175 @@ msgid "Your request for reconciliation was unsuccessful.\n"
 "            You can submit another request with the valid email addresses."
 msgstr ""

-#: build/lib/core/models.py:774 core/models.py:774
+#: build/lib/core/models.py:772 core/models.py:772
 msgid "Reconciliation of your Docs accounts not completed"
 msgstr ""

-#: build/lib/core/models.py:780 core/models.py:780
+#: build/lib/core/models.py:778 core/models.py:778
 msgid "Make a new request"
 msgstr ""

-#: build/lib/core/models.py:879 core/models.py:879
+#: build/lib/core/models.py:877 core/models.py:877
 msgid "title"
 msgstr "標題"

-#: build/lib/core/models.py:880 core/models.py:880
+#: build/lib/core/models.py:878 core/models.py:878
 msgid "excerpt"
 msgstr "摘要"

-#: build/lib/core/models.py:929 core/models.py:929
+#: build/lib/core/models.py:927 core/models.py:927
 msgid "Document"
 msgstr "文件"

-#: build/lib/core/models.py:930 core/models.py:930
+#: build/lib/core/models.py:928 core/models.py:928
 msgid "Documents"
 msgstr "文件"

-#: build/lib/core/models.py:942 build/lib/core/models.py:1346
-#: core/models.py:942 core/models.py:1346
+#: build/lib/core/models.py:940 build/lib/core/models.py:1345
+#: core/models.py:940 core/models.py:1345
 msgid "Untitled Document"
 msgstr "未命名文件"

-#: build/lib/core/models.py:1347 core/models.py:1347
+#: build/lib/core/models.py:1346 core/models.py:1346
 msgid "Open"
 msgstr "開啟"

-#: build/lib/core/models.py:1382 core/models.py:1382
+#: build/lib/core/models.py:1381 core/models.py:1381
 #, python-brace-format
 msgid "{name} shared a document with you!"
 msgstr "{name} 與您分享了一份文件！"

-#: build/lib/core/models.py:1386 core/models.py:1386
+#: build/lib/core/models.py:1385 core/models.py:1385
 #, python-brace-format
 msgid "{name} invited you with the role \"{role}\" on the following document:"
 msgstr "{name} 邀請您以「{role}」角色參與以下文件："

-#: build/lib/core/models.py:1392 core/models.py:1392
+#: build/lib/core/models.py:1391 core/models.py:1391
 #, python-brace-format
 msgid "{name} shared a document with you: {title}"
 msgstr "{name} 與您分享了一份文件：{title}"

-#: build/lib/core/models.py:1493 core/models.py:1493
+#: build/lib/core/models.py:1492 core/models.py:1492
 msgid "Document/user link trace"
 msgstr "文件/使用者連結追蹤"

-#: build/lib/core/models.py:1494 core/models.py:1494
+#: build/lib/core/models.py:1493 core/models.py:1493
 msgid "Document/user link traces"
 msgstr "文件/使用者連結追蹤"

-#: build/lib/core/models.py:1500 core/models.py:1500
+#: build/lib/core/models.py:1499 core/models.py:1499
 msgid "A link trace already exists for this document/user."
 msgstr "此文件/使用者已存在連結追蹤。"

-#: build/lib/core/models.py:1523 core/models.py:1523
+#: build/lib/core/models.py:1522 core/models.py:1522
 msgid "Document favorite"
 msgstr "文件收藏"

-#: build/lib/core/models.py:1524 core/models.py:1524
+#: build/lib/core/models.py:1523 core/models.py:1523
 msgid "Document favorites"
 msgstr "文件收藏"

-#: build/lib/core/models.py:1530 core/models.py:1530
+#: build/lib/core/models.py:1529 core/models.py:1529
 msgid "This document is already targeted by a favorite relation instance for the same user."
 msgstr "此使用者已將此文件加入收藏。"

-#: build/lib/core/models.py:1552 core/models.py:1552
+#: build/lib/core/models.py:1551 core/models.py:1551
 msgid "Document/user relation"
 msgstr "文件/使用者關聯"

-#: build/lib/core/models.py:1553 core/models.py:1553
+#: build/lib/core/models.py:1552 core/models.py:1552
 msgid "Document/user relations"
 msgstr "文件/使用者關聯"

-#: build/lib/core/models.py:1559 core/models.py:1559
+#: build/lib/core/models.py:1558 core/models.py:1558
 msgid "This user is already in this document."
 msgstr "此使用者已在此文件中。"

-#: build/lib/core/models.py:1565 core/models.py:1565
+#: build/lib/core/models.py:1564 core/models.py:1564
 msgid "This team is already in this document."
 msgstr "此團隊已在此文件中。"

-#: build/lib/core/models.py:1571 core/models.py:1571
+#: build/lib/core/models.py:1570 core/models.py:1570
 msgid "Either user or team must be set, not both."
 msgstr "必須設定使用者或團隊其中之一，不能同時設定兩者。"

-#: build/lib/core/models.py:1722 core/models.py:1722
+#: build/lib/core/models.py:1721 core/models.py:1721
 msgid "Document ask for access"
 msgstr "要求文件存取權"

-#: build/lib/core/models.py:1723 core/models.py:1723
+#: build/lib/core/models.py:1722 core/models.py:1722
 msgid "Document ask for accesses"
 msgstr "要求文件存取權"

-#: build/lib/core/models.py:1729 core/models.py:1729
+#: build/lib/core/models.py:1728 core/models.py:1728
 msgid "This user has already asked for access to this document."
 msgstr "此使用者已要求過存取此文件的權限。"

-#: build/lib/core/models.py:1786 core/models.py:1786
+#: build/lib/core/models.py:1785 core/models.py:1785
 #, python-brace-format
 msgid "{name} would like access to a document!"
 msgstr "{name} 想要存取文件！"

-#: build/lib/core/models.py:1790 core/models.py:1790
+#: build/lib/core/models.py:1789 core/models.py:1789
 #, python-brace-format
 msgid "{name} would like access to the following document:"
 msgstr "{name} 想要存取以下文件："

-#: build/lib/core/models.py:1796 core/models.py:1796
+#: build/lib/core/models.py:1795 core/models.py:1795
 #, python-brace-format
 msgid "{name} is asking for access to the document: {title}"
 msgstr "{name} 正要求存取文件：{title}"

-#: build/lib/core/models.py:1838 core/models.py:1838
+#: build/lib/core/models.py:1837 core/models.py:1837
 msgid "Thread"
 msgstr "對話串"

-#: build/lib/core/models.py:1839 core/models.py:1839
+#: build/lib/core/models.py:1838 core/models.py:1838
 msgid "Threads"
 msgstr "對話串"

-#: build/lib/core/models.py:1842 build/lib/core/models.py:1894
-#: core/models.py:1842 core/models.py:1894
+#: build/lib/core/models.py:1841 build/lib/core/models.py:1893
+#: core/models.py:1841 core/models.py:1893
 msgid "Anonymous"
 msgstr "匿名"

-#: build/lib/core/models.py:1889 core/models.py:1889
+#: build/lib/core/models.py:1888 core/models.py:1888
 msgid "Comment"
 msgstr "評論"

-#: build/lib/core/models.py:1890 core/models.py:1890
+#: build/lib/core/models.py:1889 core/models.py:1889
 msgid "Comments"
 msgstr "評論"

-#: build/lib/core/models.py:1939 core/models.py:1939
+#: build/lib/core/models.py:1938 core/models.py:1938
 msgid "This emoji has already been reacted to this comment."
 msgstr "此評論已標記過此表情符號。"

-#: build/lib/core/models.py:1943 core/models.py:1943
+#: build/lib/core/models.py:1942 core/models.py:1942
 msgid "Reaction"
 msgstr "回應"

-#: build/lib/core/models.py:1944 core/models.py:1944
+#: build/lib/core/models.py:1943 core/models.py:1943
 msgid "Reactions"
 msgstr "回應"

-#: build/lib/core/models.py:1954 core/models.py:1954
+#: build/lib/core/models.py:1953 core/models.py:1953
 msgid "email address"
 msgstr "電子郵件地址"

-#: build/lib/core/models.py:1973 core/models.py:1973
+#: build/lib/core/models.py:1972 core/models.py:1972
 msgid "Document invitation"
 msgstr "文件邀請"

-#: build/lib/core/models.py:1974 core/models.py:1974
+#: build/lib/core/models.py:1973 core/models.py:1973
 msgid "Document invitations"
 msgstr "文件邀請"

-#: build/lib/core/models.py:1994 core/models.py:1994
+#: build/lib/core/models.py:1993 core/models.py:1993
 msgid "This email is already associated to a registered user."
 msgstr "此電子郵件地址已與已註冊使用者關聯。"

-#: build/lib/impress/settings.py:702 impress/settings.py:702
+#: build/lib/impress/settings.py:808 impress/settings.py:808
 msgid "Docs AI"
 msgstr ""

--- a/src/backend/pyproject.toml
+++ b/src/backend/pyproject.toml
@@ -7,7 +7,7 @@ build-backend = "setuptools.build_meta"

 [project]
 name = "impress"
-version = "4.8.1"
+version = "4.8.4"
 authors = [{ "name" = "DINUM", "email" = "dev@mail.numerique.gouv.fr" }]
 classifiers = [
    "Development Status :: 5 - Production/Stable",
@@ -42,6 +42,7 @@ dependencies = [
    "django<6.0.0",
    "django-treebeard<5.0.0",
    "djangorestframework==3.16.1",
+    "django-waffle==5.0.0",
    "drf_spectacular==0.29.0",
    "dockerflow==2026.1.26",
    "easy_thumbnails==2.10.1",
--- a/src/frontend/apps/e2e/tests/app-impress/doc-ai.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-ai.spec.ts
@@ -46,9 +46,9 @@ test.describe('Doc AI feature', () => {

      await page.locator('.bn-block-outer').last().fill('Anything');
      await page.getByText('Anything').selectText();
-      expect(
-        await page.locator('button[data-test="convertMarkdown"]').count(),
-      ).toBe(1);
+      await expect(
+        page.locator('button[data-test="convertMarkdown"]'),
+      ).toHaveCount(1);
      await expect(
        page.getByRole('button', { name: config.selector, exact: true }),
      ).toBeHidden();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-comments.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-comments.spec.ts
@@ -130,12 +130,13 @@ test.describe('Doc Comments', () => {
    await thread.getByRole('paragraph').first().fill('This is a comment');
    await thread.locator('[data-test="save"]').click();
    await expect(thread.getByText('This is a comment').first()).toBeHidden();
+    await expect(editor.getByText('Hello')).toHaveClass('bn-thread-mark');

-    // Check background color changed
    await expect(editor.getByText('Hello')).toHaveCSS(
      'background-color',
-      'rgba(237, 180, 0, 0.4)',
+      'color(srgb 0.882353 0.831373 0.717647 / 0.4)',
    );
+
    await editor.first().click();
    await editor.getByText('Hello').click();

@@ -184,6 +185,7 @@ test.describe('Doc Comments', () => {
    await thread.getByText('This is an edited comment').first().hover();
    await thread.locator('[data-test="resolve"]').click();
    await expect(thread).toBeHidden();
+
    await expect(editor.getByText('Hello')).toHaveCSS(
      'background-color',
      'rgba(0, 0, 0, 0)',
@@ -195,11 +197,13 @@ test.describe('Doc Comments', () => {

    await thread.getByRole('paragraph').first().fill('This is a new comment');
    await thread.locator('[data-test="save"]').click();
+    await expect(editor.getByText('Hello')).toHaveClass('bn-thread-mark');

    await expect(editor.getByText('Hello')).toHaveCSS(
      'background-color',
-      'rgba(237, 180, 0, 0.4)',
+      'color(srgb 0.882353 0.831373 0.717647 / 0.4)',
    );
+
    await editor.first().click();
    await editor.getByText('Hello').click();

@@ -207,6 +211,7 @@ test.describe('Doc Comments', () => {
    await thread.locator('[data-test="moreactions"]').first().click();
    await thread.getByRole('menuitem', { name: 'Delete comment' }).click();

+    await expect(editor.getByText('Hello')).not.toHaveClass('bn-thread-mark');
    await expect(editor.getByText('Hello')).toHaveCSS(
      'background-color',
      'rgba(0, 0, 0, 0)',
@@ -262,7 +267,7 @@ test.describe('Doc Comments', () => {

    await expect(otherEditor.getByText('Hello')).toHaveCSS(
      'background-color',
-      'rgba(237, 180, 0, 0.4)',
+      'color(srgb 0.882353 0.831373 0.717647 / 0.4)',
    );

    // We change the role of the second user to reader
@@ -297,7 +302,7 @@ test.describe('Doc Comments', () => {

    await expect(otherEditor.getByText('Hello')).toHaveCSS(
      'background-color',
-      'rgba(237, 180, 0, 0.4)',
+      'color(srgb 0.882353 0.831373 0.717647 / 0.4)',
    );
    await otherEditor.getByText('Hello').click();
    await expect(
@@ -343,7 +348,7 @@ test.describe('Doc Comments', () => {

    await expect(editor1.getByText('Document One')).toHaveCSS(
      'background-color',
-      'rgba(237, 180, 0, 0.4)',
+      'color(srgb 0.882353 0.831373 0.717647 / 0.4)',
    );

    await editor1.getByText('Document One').click();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-editor.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-editor.spec.ts
@@ -147,20 +147,18 @@ test.describe('Doc Editor', () => {
    const wsClosePromise = webSocket.waitForEvent('close');

    await selectVisibility.click();
-    await page.getByRole('menuitem', { name: 'Connected' }).click();
+    await page.getByRole('menuitemradio', { name: 'Connected' }).click();

    // Assert that the doc reconnects to the ws
    const wsClose = await wsClosePromise;
    expect(wsClose.isClosed()).toBeTruthy();

    // Check the ws is connected again
-    webSocketPromise = page.waitForEvent('websocket', (webSocket) => {
+    webSocket = await page.waitForEvent('websocket', (webSocket) => {
      return webSocket
        .url()
        .includes('ws://localhost:4444/collaboration/ws/?room=');
    });
-
-    webSocket = await webSocketPromise;
    framesentPromise = webSocket.waitForEvent('framesent');
    framesent = await framesentPromise;
    expect(framesent.payload).not.toBeNull();
@@ -577,12 +575,10 @@ test.describe('Doc Editor', () => {

    await page.reload();

-    responseCanEditPromise = page.waitForResponse(
+    responseCanEdit = await page.waitForResponse(
      (response) =>
        response.url().includes(`/can-edit/`) && response.status() === 200,
    );
-
-    responseCanEdit = await responseCanEditPromise;
    expect(responseCanEdit.ok()).toBeTruthy();

    jsonCanEdit = (await responseCanEdit.json()) as { can_edit: boolean };
@@ -608,7 +604,7 @@ test.describe('Doc Editor', () => {
    await page.getByRole('button', { name: 'Share' }).click();

    await page.getByTestId('doc-access-mode').click();
-    await page.getByRole('menuitem', { name: 'Reading' }).click();
+    await page.getByRole('menuitemradio', { name: 'Reading' }).click();

    // Close the modal
    await page.getByRole('button', { name: 'close' }).first().click();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-grid-move.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-grid-move.spec.ts
@@ -341,7 +341,9 @@ test.describe('Doc grid move', () => {
      `doc-share-access-request-row-${emailRequest}`,
    );
    await container.getByTestId('doc-role-dropdown').click();
-    await otherPage.getByRole('menuitem', { name: 'Administrator' }).click();
+    await otherPage
+      .getByRole('menuitemradio', { name: 'Administrator' })
+      .click();
    await container.getByRole('button', { name: 'Approve' }).click();

    await expect(otherPage.getByText('Access Requests')).toBeHidden();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-header.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-header.spec.ts
@@ -78,11 +78,7 @@ test.describe('Doc Header', () => {

    await page.getByTestId('doc-visibility').click();

-    await page
-      .getByRole('menuitem', {
-        name: 'Public',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await page.getByRole('button', { name: 'close' }).first().click();

@@ -241,7 +237,7 @@ test.describe('Doc Header', () => {
        hasText: randomDoc,
      });

-    expect(await row.count()).toBe(0);
+    await expect(row).toHaveCount(0);
  });

  test('it checks the options available if administrator', async ({ page }) => {
@@ -280,12 +276,12 @@ test.describe('Doc Header', () => {
    ).toBeDisabled();

    // Click somewhere else to close the options
-    await page.click('body', { position: { x: 0, y: 0 } });
+    await page.locator('body').click({ position: { x: 0, y: 0 } });

    await page.getByRole('button', { name: 'Share' }).click();

    const shareModal = page.getByRole('dialog', {
-      name: 'Share modal content',
+      name: 'Share the document',
    });
    await expect(shareModal).toBeVisible();
    await expect(page.getByText('Share the document')).toBeVisible();
@@ -300,7 +296,7 @@ test.describe('Doc Header', () => {

    await invitationRole.click();

-    await page.getByRole('menuitem', { name: 'Remove access' }).click();
+    await page.getByRole('menuitemradio', { name: 'Remove access' }).click();
    await expect(invitationCard).toBeHidden();

    const memberCard = shareModal.getByLabel('List members card');
@@ -313,7 +309,7 @@ test.describe('Doc Header', () => {

    await roles.click();
    await expect(
-      page.getByRole('menuitem', { name: 'Remove access' }),
+      page.getByRole('menuitemradio', { name: 'Remove access' }),
    ).toBeEnabled();
  });

@@ -359,12 +355,12 @@ test.describe('Doc Header', () => {
    ).toBeDisabled();

    // Click somewhere else to close the options
-    await page.click('body', { position: { x: 0, y: 0 } });
+    await page.locator('body').click({ position: { x: 0, y: 0 } });

    await page.getByRole('button', { name: 'Share' }).click();

    const shareModal = page.getByRole('dialog', {
-      name: 'Share modal content',
+      name: 'Share the document',
    });
    await expect(shareModal).toBeVisible();
    await expect(page.getByText('Share the document')).toBeVisible();
@@ -431,11 +427,13 @@ test.describe('Doc Header', () => {
    ).toBeDisabled();

    // Click somewhere else to close the options
-    await page.click('body', { position: { x: 0, y: 0 } });
+    await page.locator('body').click({ position: { x: 0, y: 0 } });

    await page.getByRole('button', { name: 'Share' }).click();

-    const shareModal = page.getByLabel('Share modal');
+    const shareModal = page.getByRole('dialog', {
+      name: 'Share the document',
+    });
    await expect(page.getByText('Share the document')).toBeVisible();

    await expect(page.getByPlaceholder('Type a name or email')).toBeHidden();
@@ -485,7 +483,9 @@ test.describe('Doc Header', () => {
    // Copy content to clipboard
    await page.getByLabel('Open the document options').click();
    await page.getByRole('menuitem', { name: 'Copy as Markdown' }).click();
-    await expect(page.getByText('Copied to clipboard')).toBeVisible();
+    await expect(
+      page.getByText('Copied as Markdown to clipboard'),
+    ).toBeVisible();

    // Test that clipboard is in Markdown format
    const handle = await page.evaluateHandle(() =>
@@ -705,10 +705,12 @@ test.describe('Documents Header mobile', () => {
    await page.getByRole('menuitem', { name: 'Share' }).click();

    const shareModal = page.getByRole('dialog', {
-      name: 'Share modal content',
+      name: 'Share the document',
    });
    await expect(shareModal).toBeVisible();
    await page.getByRole('button', { name: 'close' }).click();
-    await expect(page.getByLabel('Share modal')).toBeHidden();
+    await expect(
+      page.getByRole('dialog', { name: 'Share the document' }),
+    ).toBeHidden();
  });
 });
--- a/src/frontend/apps/e2e/tests/app-impress/doc-import.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-import.spec.ts
@@ -177,5 +177,5 @@ const dragAndDropFiles = async (
    return dt;
  }, filesData);

-  await page.dispatchEvent(selector, 'drop', { dataTransfer });
+  await page.locator(selector).dispatchEvent('drop', { dataTransfer });
 };
--- a/src/frontend/apps/e2e/tests/app-impress/doc-inherited-share.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-inherited-share.spec.ts
@@ -53,7 +53,7 @@ test.describe('Inherited share accesses', () => {
    await expect(docVisibilityCard.getByText('Reading')).toBeVisible();

    await docVisibilityCard.getByText('Reading').click();
-    await page.getByRole('menuitem', { name: 'Editing' }).click();
+    await page.getByRole('menuitemradio', { name: 'Editing' }).click();

    await expect(docVisibilityCard.getByText('Reading')).toBeHidden();
    await expect(docVisibilityCard.getByText('Editing')).toBeVisible();
@@ -61,11 +61,11 @@ test.describe('Inherited share accesses', () => {
    // Verify inherited link
    await docVisibilityCard.getByText('Connected').click();
    await expect(
-      page.getByRole('menuitem', { name: 'Private' }),
+      page.getByRole('menuitemradio', { name: 'Private' }),
    ).toBeDisabled();

    // Update child link
-    await page.getByRole('menuitem', { name: 'Public' }).click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await expect(docVisibilityCard.getByText('Connected')).toBeHidden();
    await expect(
--- a/src/frontend/apps/e2e/tests/app-impress/doc-member-create.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-member-create.spec.ts
@@ -16,6 +16,41 @@ test.describe('Document create member', () => {
    await page.goto('/');
  });

+  test('it checks search hints', async ({ page, browserName }) => {
+    await createDoc(page, 'select-multi-users', browserName, 1);
+
+    await page.getByRole('button', { name: 'Share' }).click();
+
+    const shareModal = page.getByLabel('Share the document');
+    await expect(shareModal.getByText('Document owner')).toBeVisible();
+
+    const inputSearch = page.getByTestId('quick-search-input');
+    await inputSearch.fill('u');
+    await expect(shareModal.getByText('Document owner')).toBeHidden();
+    await expect(
+      shareModal.getByText('Type at least 3 characters to display user names'),
+    ).toBeVisible();
+    await inputSearch.fill('user');
+    await expect(
+      shareModal.getByText('Type at least 3 characters to display user names'),
+    ).toBeHidden();
+    await expect(shareModal.getByText('Choose a user')).toBeVisible();
+    await inputSearch.fill('anything');
+    await expect(shareModal.getByText('Choose a user')).toBeHidden();
+    await expect(
+      shareModal.getByText(
+        'No results. Type a full email address to invite someone.',
+      ),
+    ).toBeVisible();
+    await inputSearch.fill('anything@test.com');
+    await expect(
+      shareModal.getByText(
+        'No results. Type a full email address to invite someone.',
+      ),
+    ).toBeHidden();
+    await expect(shareModal.getByText('Choose the email')).toBeVisible();
+  });
+
  test('it selects 2 users and 1 invitation', async ({ page, browserName }) => {
    const inputFill = 'user.test';
    const responsePromise = page.waitForResponse(
@@ -75,15 +110,21 @@ test.describe('Document create member', () => {

    // Check roles are displayed
    await list.getByTestId('doc-role-dropdown').click();
-    await expect(page.getByRole('menuitem', { name: 'Reader' })).toBeVisible();
-    await expect(page.getByRole('menuitem', { name: 'Editor' })).toBeVisible();
-    await expect(page.getByRole('menuitem', { name: 'Owner' })).toBeVisible();
    await expect(
-      page.getByRole('menuitem', { name: 'Administrator' }),
+      page.getByRole('menuitemradio', { name: 'Reader' }),
+    ).toBeVisible();
+    await expect(
+      page.getByRole('menuitemradio', { name: 'Editor' }),
+    ).toBeVisible();
+    await expect(
+      page.getByRole('menuitemradio', { name: 'Owner' }),
+    ).toBeVisible();
+    await expect(
+      page.getByRole('menuitemradio', { name: 'Administrator' }),
    ).toBeVisible();

    // Validate
-    await page.getByRole('menuitem', { name: 'Administrator' }).click();
+    await page.getByRole('menuitemradio', { name: 'Administrator' }).click();
    await page.getByTestId('doc-share-invite-button').click();

    // Check invitation added
@@ -129,7 +170,7 @@ test.describe('Document create member', () => {
    // Choose a role
    const container = page.getByTestId('doc-share-add-member-list');
    await container.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Owner' }).click();
+    await page.getByRole('menuitemradio', { name: 'Owner' }).click();

    const responsePromiseCreateInvitation = page.waitForResponse(
      (response) =>
@@ -147,7 +188,7 @@ test.describe('Document create member', () => {

    // Choose a role
    await container.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Owner' }).click();
+    await page.getByRole('menuitemradio', { name: 'Owner' }).click();

    const responsePromiseCreateInvitationFail = page.waitForResponse(
      (response) =>
@@ -184,7 +225,7 @@ test.describe('Document create member', () => {
    // Choose a role
    const container = page.getByTestId('doc-share-add-member-list');
    await container.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Administrator' }).click();
+    await page.getByRole('menuitemradio', { name: 'Administrator' }).click();

    const responsePromiseCreateInvitation = page.waitForResponse(
      (response) =>
@@ -211,13 +252,13 @@ test.describe('Document create member', () => {
    );

    await userInvitation.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Reader' }).click();
+    await page.getByRole('menuitemradio', { name: 'Reader' }).click();

    const responsePatchInvitation = await responsePromisePatchInvitation;
    expect(responsePatchInvitation.ok()).toBeTruthy();

    await userInvitation.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Remove access' }).click();
+    await page.getByRole('menuitemradio', { name: 'Remove access' }).click();

    await expect(userInvitation).toBeHidden();
  });
@@ -269,7 +310,7 @@ test.describe('Document create member', () => {
      `doc-share-access-request-row-${emailRequest}`,
    );
    await container.getByTestId('doc-role-dropdown').click();
-    await page.getByRole('menuitem', { name: 'Administrator' }).click();
+    await page.getByRole('menuitemradio', { name: 'Administrator' }).click();
    await container.getByRole('button', { name: 'Approve' }).click();

    await expect(page.getByText('Access Requests')).toBeHidden();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-member-list.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-member-list.spec.ts
@@ -161,7 +161,7 @@ test.describe('Document list members', () => {
    );
    await expect(soloOwner).toBeVisible();
    await expect(
-      page.getByRole('menuitem', { name: 'Administrator' }),
+      page.getByRole('menuitemradio', { name: 'Administrator' }),
    ).toBeDisabled();

    await list.click({
@@ -185,18 +185,20 @@ test.describe('Document list members', () => {
    });

    await currentUserRole.click();
-    await page.getByRole('menuitem', { name: 'Administrator' }).click();
+    await page.getByRole('menuitemradio', { name: 'Administrator' }).click();
    await list.click();
    await expect(currentUserRole).toBeVisible();

    await newUserRoles.click();
-    await expect(page.getByRole('menuitem', { name: 'Owner' })).toBeDisabled();
+    await expect(
+      page.getByRole('menuitemradio', { name: 'Owner' }),
+    ).toBeDisabled();
    await list.click({
      force: true, // Force click to close the dropdown
    });

    await currentUserRole.click();
-    await page.getByRole('menuitem', { name: 'Reader' }).click();
+    await page.getByRole('menuitemradio', { name: 'Reader' }).click();
    await list.click({
      force: true, // Force click to close the dropdown
    });
@@ -236,11 +238,11 @@ test.describe('Document list members', () => {
    await expect(userReader).toBeVisible();

    await userReaderRole.click();
-    await page.getByRole('menuitem', { name: 'Remove access' }).click();
+    await page.getByRole('menuitemradio', { name: 'Remove access' }).click();
    await expect(userReader).toBeHidden();

    await mySelfRole.click();
-    await page.getByRole('menuitem', { name: 'Remove access' }).click();
+    await page.getByRole('menuitemradio', { name: 'Remove access' }).click();
    await expect(
      page.getByText('Insufficient access rights to view the document.'),
    ).toBeVisible();
--- a/src/frontend/apps/e2e/tests/app-impress/doc-search.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-search.spec.ts
@@ -29,7 +29,7 @@ test.describe('Document search', () => {
    await page.getByTestId('search-docs-button').click();

    await expect(
-      page.getByRole('img', { name: 'No active search' }),
+      page.getByLabel('Search modal').locator('img[alt=""]'),
    ).toBeVisible();

    await expect(
@@ -107,7 +107,7 @@ test.describe('Document search', () => {

    await searchButton.click();
    await expect(
-      page.getByRole('combobox', { name: 'Quick search input' }),
+      page.getByRole('combobox', { name: 'Search documents' }),
    ).toBeVisible();
    await expect(filters).toBeHidden();

@@ -120,7 +120,7 @@ test.describe('Document search', () => {

    await searchButton.click();
    await expect(
-      page.getByRole('combobox', { name: 'Quick search input' }),
+      page.getByRole('combobox', { name: 'Search documents' }),
    ).toBeVisible();
    await expect(filters).toBeHidden();

@@ -137,12 +137,12 @@ test.describe('Document search', () => {
    await filters.click();
    await filters.getByRole('button', { name: 'Current doc' }).click();
    await expect(
-      page.getByRole('menuitem', { name: 'All docs' }),
+      page.getByRole('menuitemcheckbox', { name: 'All docs' }),
    ).toBeVisible();
    await expect(
-      page.getByRole('menuitem', { name: 'Current doc' }),
+      page.getByRole('menuitemcheckbox', { name: 'Current doc' }),
    ).toBeVisible();
-    await page.getByRole('menuitem', { name: 'All docs' }).click();
+    await page.getByRole('menuitemcheckbox', { name: 'All docs' }).click();

    await expect(page.getByRole('button', { name: 'Reset' })).toBeVisible();
  });
@@ -168,9 +168,9 @@ test.describe('Document search', () => {
    const searchButton = page.getByTestId('search-docs-button');

    await searchButton.click();
-    await page.getByRole('combobox', { name: 'Quick search input' }).click();
+    await page.getByRole('combobox', { name: 'Search documents' }).click();
    await page
-      .getByRole('combobox', { name: 'Quick search input' })
+      .getByRole('combobox', { name: 'Search documents' })
      .fill('sub page search');

    // Expect to find the first and second docs in the results list
@@ -192,7 +192,7 @@ test.describe('Document search', () => {
    );
    await searchButton.click();
    await page
-      .getByRole('combobox', { name: 'Quick search input' })
+      .getByRole('combobox', { name: 'Search documents' })
      .fill('second');

    // Now there is a sub page - expect to have the focus on the current doc
--- a/src/frontend/apps/e2e/tests/app-impress/doc-table-content.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-table-content.spec.ts
@@ -19,7 +19,9 @@ test.describe('Doc Table Content', () => {

    await page.locator('.ProseMirror').click();

-    await expect(page.getByRole('button', { name: 'Summary' })).toBeHidden();
+    await expect(
+      page.getByRole('button', { name: 'Show the table of contents' }),
+    ).toBeHidden();

    await page.keyboard.type('# Level 1\n## Level 2\n### Level 3');

--- a/src/frontend/apps/e2e/tests/app-impress/doc-tree.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-tree.spec.ts
@@ -42,15 +42,12 @@ test.describe('Doc Tree', () => {
    await expect(secondSubPageItem).toBeVisible();

    // Check the position of the sub pages
-    const allSubPageItems = await docTree
-      .getByTestId(/^doc-sub-page-item/)
-      .all();
-
-    expect(allSubPageItems.length).toBe(2);
+    const allSubPageItems = docTree.getByTestId(/^doc-sub-page-item/);
+    await expect(allSubPageItems).toHaveCount(2);

    // Check that elements are in the correct order
-    await expect(allSubPageItems[0].getByText('first move')).toBeVisible();
-    await expect(allSubPageItems[1].getByText('second move')).toBeVisible();
+    await expect(allSubPageItems.nth(0).getByText('first move')).toBeVisible();
+    await expect(allSubPageItems.nth(1).getByText('second move')).toBeVisible();

    // Will move the first sub page to the second position
    const firstSubPageBoundingBox = await firstSubPageItem.boundingBox();
@@ -90,17 +87,15 @@ test.describe('Doc Tree', () => {
    await expect(secondSubPageItem).toBeVisible();

    // Check that elements are in the correct order
-    const allSubPageItemsAfterReload = await docTree
-      .getByTestId(/^doc-sub-page-item/)
-      .all();
-
-    expect(allSubPageItemsAfterReload.length).toBe(2);
+    const allSubPageItemsAfterReload =
+      docTree.getByTestId(/^doc-sub-page-item/);
+    await expect(allSubPageItemsAfterReload).toHaveCount(2);

    await expect(
-      allSubPageItemsAfterReload[0].getByText('second move'),
+      allSubPageItemsAfterReload.nth(0).getByText('second move'),
    ).toBeVisible();
    await expect(
-      allSubPageItemsAfterReload[1].getByText('first move'),
+      allSubPageItemsAfterReload.nth(1).getByText('first move'),
    ).toBeVisible();
  });

@@ -162,7 +157,7 @@ test.describe('Doc Tree', () => {
    );
    const currentUserRole = currentUser.getByTestId('doc-role-dropdown');
    await currentUserRole.click();
-    await page.getByRole('menuitem', { name: 'Administrator' }).click();
+    await page.getByRole('menuitemradio', { name: 'Administrator' }).click();
    await list.click();

    await page.getByRole('button', { name: 'Ok' }).click();
@@ -297,7 +292,7 @@ test.describe('Doc Tree', () => {

    await page.keyboard.press('Tab');

-    await expect(page.getByLabel('Open onboarding menu')).toBeFocused();
+    await expect(page.getByLabel('Open help menu')).toBeFocused();

    await page.keyboard.press('Tab');

@@ -307,7 +302,7 @@ test.describe('Doc Tree', () => {

    await page.keyboard.press('Shift+Tab');

-    await expect(page.getByLabel('Open onboarding menu')).toBeFocused();
+    await expect(page.getByLabel('Open help menu')).toBeFocused();

    await page.keyboard.press('Shift+Tab');

@@ -390,11 +385,7 @@ test.describe('Doc Tree: Inheritance', () => {
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();

-    await page
-      .getByRole('menuitem', {
-        name: 'Public',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
--- a/src/frontend/apps/e2e/tests/app-impress/doc-version.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-version.spec.ts
@@ -23,8 +23,8 @@ test.describe('Doc Version', () => {
    await page.getByRole('menuitem', { name: 'Version history' }).click();
    await expect(page.getByText('History', { exact: true })).toBeVisible();

-    const modal = page.getByLabel('version history modal');
-    const panel = modal.getByLabel('version list');
+    const modal = page.getByRole('dialog', { name: 'Version history' });
+    const panel = modal.getByLabel('Version list');
    await expect(panel).toBeVisible();
    await expect(modal.getByText('No versions')).toBeVisible();

@@ -79,9 +79,9 @@ test.describe('Doc Version', () => {
    await expect(panel).toBeVisible();
    await expect(page.getByText('History', { exact: true })).toBeVisible();
    await expect(page.getByRole('status')).toBeHidden();
-    const items = await panel.locator('.version-item').all();
-    expect(items.length).toBe(2);
-    await items[1].click();
+    const items = panel.locator('.version-item');
+    await expect(items).toHaveCount(2);
+    await items.nth(1).click();

    await expect(modal.getByText('Hello World')).toBeVisible();
    await expect(modal.getByText('It will create a version')).toBeHidden();
@@ -89,7 +89,7 @@ test.describe('Doc Version', () => {
      modal.locator('div[data-content-type="callout"]').first(),
    ).toBeHidden();

-    await items[0].click();
+    await items.nth(0).click();

    await expect(modal.getByText('Hello World')).toBeVisible();
    await expect(modal.getByText('It will create a version')).toBeVisible();
@@ -100,7 +100,7 @@ test.describe('Doc Version', () => {
      modal.getByText('It will create a second version'),
    ).toBeHidden();

-    await items[1].click();
+    await items.nth(1).click();

    await expect(modal.getByText('Hello World')).toBeVisible();
    await expect(modal.getByText('It will create a version')).toBeHidden();
@@ -155,21 +155,26 @@ test.describe('Doc Version', () => {
    await page.getByLabel('Open the document options').click();
    await page.getByRole('menuitem', { name: 'Version history' }).click();

-    const modal = page.getByLabel('version history modal');
-    const panel = modal.getByLabel('version list');
+    const modal = page.getByRole('dialog', { name: 'Version history' });
+    const panel = modal.getByLabel('Version list');
    await expect(panel).toBeVisible();

    await expect(page.getByText('History', { exact: true })).toBeVisible();
-    await panel.getByRole('button', { name: 'version item' }).click();
+    await panel.locator('.version-item').first().click();

    await expect(modal.getByText('World')).toBeHidden();

-    await page.getByRole('button', { name: 'Restore' }).click();
-    await expect(page.getByText('Your current document will')).toBeVisible();
-    await page.getByText('If a member is editing, his').click();
+    await page.getByRole('button', { name: 'Restore', exact: true }).click();
+    await expect(
+      page.getByText(
+        "The current document will be replaced, but you'll still find it in the version history.",
+      ),
+    ).toBeVisible();

    await page.getByLabel('Restore', { exact: true }).click();

+    await page.waitForTimeout(500);
+
    await expect(page.getByText('Hello')).toBeVisible();
    await expect(page.getByText('World')).toBeHidden();
  });
--- a/src/frontend/apps/e2e/tests/app-impress/doc-visibility.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/doc-visibility.spec.ts
@@ -47,20 +47,20 @@ test.describe('Doc Visibility', () => {
    await expect(selectVisibility.getByText('Private')).toBeVisible();

    await expect(
-      page.getByRole('menuitem', { name: 'Read only' }),
+      page.getByRole('menuitemradio', { name: 'Read only' }),
    ).toBeHidden();
    await expect(
-      page.getByRole('menuitem', { name: 'Can read and edit' }),
+      page.getByRole('menuitemradio', { name: 'Can read and edit' }),
    ).toBeHidden();

    await selectVisibility.click();
-    await page.getByRole('menuitem', { name: 'Connected' }).click();
+    await page.getByRole('menuitemradio', { name: 'Connected' }).click();

    await expect(page.getByTestId('doc-access-mode')).toBeVisible();

    await selectVisibility.click();

-    await page.getByRole('menuitem', { name: 'Public' }).click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await expect(page.getByTestId('doc-access-mode')).toBeVisible();
  });
@@ -205,11 +205,7 @@ test.describe('Doc Visibility: Public', () => {
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();

-    await page
-      .getByRole('menuitem', {
-        name: 'Public',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
@@ -217,11 +213,7 @@ test.describe('Doc Visibility: Public', () => {

    await expect(page.getByTestId('doc-access-mode')).toBeVisible();
    await page.getByTestId('doc-access-mode').click();
-    await page
-      .getByRole('menuitem', {
-        name: 'Reading',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Reading' }).click();

    await expect(
      page.getByText('The document visibility has been updated.').first(),
@@ -307,18 +299,14 @@ test.describe('Doc Visibility: Public', () => {
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();

-    await page
-      .getByRole('menuitem', {
-        name: 'Public',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Public' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
    ).toBeVisible();

    await page.getByTestId('doc-access-mode').click();
-    await page.getByRole('menuitem', { name: 'Editing' }).click();
+    await page.getByRole('menuitemradio', { name: 'Editing' }).click();

    await expect(
      page.getByText('The document visibility has been updated.').first(),
@@ -402,11 +390,7 @@ test.describe('Doc Visibility: Authenticated', () => {
    await page.getByRole('button', { name: 'Share' }).click();
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();
-    await page
-      .getByRole('menuitem', {
-        name: 'Connected',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Connected' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
@@ -454,11 +438,7 @@ test.describe('Doc Visibility: Authenticated', () => {
    await page.getByRole('button', { name: 'Share' }).click();
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();
-    await page
-      .getByRole('menuitem', {
-        name: 'Connected',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Connected' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
@@ -556,11 +536,7 @@ test.describe('Doc Visibility: Authenticated', () => {
    await page.getByRole('button', { name: 'Share' }).click();
    const selectVisibility = page.getByTestId('doc-visibility');
    await selectVisibility.click();
-    await page
-      .getByRole('menuitem', {
-        name: 'Connected',
-      })
-      .click();
+    await page.getByRole('menuitemradio', { name: 'Connected' }).click();

    await expect(
      page.getByText('The document visibility has been updated.'),
@@ -568,7 +544,7 @@ test.describe('Doc Visibility: Authenticated', () => {

    const urlDoc = page.url();
    await page.getByTestId('doc-access-mode').click();
-    await page.getByRole('menuitem', { name: 'Editing' }).click();
+    await page.getByRole('menuitemradio', { name: 'Editing' }).click();

    await expect(
      page.getByText('The document visibility has been updated.').first(),
--- a/src/frontend/apps/e2e/tests/app-impress/footer.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/footer.spec.ts
@@ -47,7 +47,7 @@ test.describe('Footer', () => {
    // Check the translation
    const header = page.locator('header').first();
    await header.getByRole('button').getByText('English').click();
-    await page.getByRole('menuitem', { name: 'Français' }).click();
+    await page.getByRole('menuitemradio', { name: 'Français' }).click();

    await expect(
      page.locator('footer').getByText('Mentions légales'),
@@ -131,7 +131,7 @@ test.describe('Footer', () => {
    // Check the translation
    const header = page.locator('header').first();
    await header.getByRole('button').getByText('English').click();
-    await page.getByRole('menuitem', { name: 'Français' }).click();
+    await page.getByRole('menuitemradio', { name: 'Français' }).click();

    await expect(
      page
--- a/src/frontend/apps/e2e/tests/app-impress/header.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/header.spec.ts
@@ -55,7 +55,8 @@ test.describe('Header', () => {
      'src',
      '/assets/icon-docs-v2.svg',
    );
-    await expect(header.locator('h1')).toBeHidden();
+    // With withTitle: false, the h1 is kept for accessibility but visually hidden via sr-only
+    await expect(header.locator('h1').getByText('Docs')).toHaveClass(/sr-only/);
  });

  test('checks a custom waffle', async ({ page }) => {
@@ -190,25 +191,27 @@ test.describe('Header: Override configuration', () => {
 });

 test.describe('Header: Skip to Content', () => {
-  test('it displays skip link on first TAB and focuses main content on click', async ({
+  test('it displays skip link on first TAB and focuses page heading on click', async ({
    page,
  }) => {
    await page.goto('/');

-    // Wait for skip button to be mounted (client-side only component)
-    const skipButton = page.getByRole('button', { name: 'Go to content' });
-    await skipButton.waitFor({ state: 'attached' });
+    // Wait for skip link to be mounted (client-side only component)
+    const skipLink = page.getByRole('link', { name: 'Go to content' });
+    await skipLink.waitFor({ state: 'attached' });

-    // First TAB shows the skip button
+    // First TAB shows the skip link
    await page.keyboard.press('Tab');

-    // The skip button should be visible and focused
-    await expect(skipButton).toBeFocused();
-    await expect(skipButton).toBeVisible();
-
-    // Clicking moves focus to the main content
-    await skipButton.click();
-    const mainContent = page.locator('main#mainContent');
-    await expect(mainContent).toBeFocused();
+    // The skip link should be visible and focused
+    await expect(skipLink).toBeFocused();
+    await expect(skipLink).toBeVisible();
+    // Clicking moves focus to the page heading
+    await skipLink.click();
+    const pageHeading = page.getByRole('heading', {
+      name: 'All docs',
+      level: 2,
+    });
+    await expect(pageHeading).toBeFocused();
  });
 });
--- a/src/frontend/apps/e2e/tests/app-impress/help.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/help.spec.ts
@@ -26,7 +26,7 @@ test.describe('Help feature', () => {
      await expect(page.getByRole('button', { name: 'New doc' })).toBeVisible();

      await expect(
-        page.getByRole('button', { name: 'Open onboarding menu' }),
+        page.getByRole('button', { name: 'Open help menu' }),
      ).toBeHidden();
    });

@@ -42,7 +42,7 @@ test.describe('Help feature', () => {
        },
      });

-      await page.getByRole('button', { name: 'Open onboarding menu' }).click();
+      await page.getByRole('button', { name: 'Open help menu' }).click();

      await page.getByRole('menuitem', { name: 'Onboarding' }).click();

@@ -86,7 +86,7 @@ test.describe('Help feature', () => {
    });

    test('closes modal with Skip button', async ({ page }) => {
-      await page.getByRole('button', { name: 'Open onboarding menu' }).click();
+      await page.getByRole('button', { name: 'Open help menu' }).click();
      await page.getByRole('menuitem', { name: 'Onboarding' }).click();

      const modal = page.getByTestId('onboarding-modal');
@@ -106,9 +106,7 @@ test.describe('Help feature', () => {
      // switch to french
      await waitForLanguageSwitch(page, TestLanguage.French);

-      await page
-        .getByRole('button', { name: "Ouvrir le menu d'embarquement" })
-        .click();
+      await page.getByRole('button', { name: "Ouvrir le menu d'aide" }).click();

      await page.getByRole('menuitem', { name: 'Premiers pas' }).click();

--- a/src/frontend/apps/e2e/tests/app-impress/language.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/language.spec.ts
@@ -75,7 +75,7 @@ test.describe('Language', () => {

    await expect(page.locator('[role="menu"]')).toBeVisible();

-    const menuItems = page.getByRole('menuitem');
+    const menuItems = page.locator('[role="menuitemradio"]');
    await expect(menuItems.first()).toBeVisible();

    await menuItems.first().click();
--- a/src/frontend/apps/e2e/tests/app-impress/left-panel.spec.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/left-panel.spec.ts
@@ -1,6 +1,7 @@
 import { expect, test } from '@playwright/test';

 import { createDoc, goToGridDoc, verifyDocName } from './utils-common';
+import { createRootSubPage } from './utils-sub-pages';

 test.describe('Left panel desktop', () => {
  test.beforeEach(async ({ page }) => {
@@ -18,7 +19,7 @@ test.describe('Left panel desktop', () => {
    await expect(page.getByTestId('home-button')).toBeVisible();
  });

-  test('focuses main content after switching the docs filter', async ({
+  test('focuses page heading after switching the docs filter', async ({
    page,
  }) => {
    await page.goto('/');
@@ -28,8 +29,11 @@ test.describe('Left panel desktop', () => {
    await page.keyboard.press('Enter');
    await expect(page).toHaveURL(/target=my_docs/);

-    const mainContent = page.locator('main#mainContent');
-    await expect(mainContent).toBeFocused();
+    const pageHeading = page.getByRole('heading', {
+      name: 'My docs',
+      level: 2,
+    });
+    await expect(pageHeading).toBeFocused();
  });

  test('checks resize handle is present and functional on document page', async ({
@@ -118,6 +122,47 @@ test.describe('Left panel mobile', () => {
    await expect(logoutButton).toBeInViewport();
  });

+  test('checks panel closes when clicking on a subdoc', async ({
+    page,
+    browserName,
+  }) => {
+    const [docTitle] = await createDoc(
+      page,
+      'mobile-doc-test',
+      browserName,
+      1,
+      true,
+    );
+
+    const { name: docChild } = await createRootSubPage(
+      page,
+      browserName,
+      'mobile-doc-test-child',
+      true,
+    );
+
+    const { name: docChild2 } = await createRootSubPage(
+      page,
+      browserName,
+      'mobile-doc-test-child-2',
+      true,
+    );
+
+    const header = page.locator('header').first();
+    await header.getByLabel('Open the header menu').click();
+
+    await expect(page.getByTestId('left-panel-mobile')).toBeInViewport();
+
+    const docTree = page.getByTestId('doc-tree');
+    await expect(docTree.getByText(docTitle)).toBeVisible();
+    await expect(docTree.getByText(docChild)).toBeVisible();
+    await expect(docTree.getByText(docChild2)).toBeVisible();
+
+    await docTree.getByText(docChild).click();
+    await verifyDocName(page, docChild);
+    await expect(page.getByTestId('left-panel-mobile')).not.toBeInViewport();
+  });
+
  test('checks resize handle is not present on mobile', async ({ page }) => {
    await page.goto('/');

--- a/src/frontend/apps/e2e/tests/app-impress/utils-common.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/utils-common.ts
@@ -382,7 +382,7 @@ export async function waitForLanguageSwitch(

  await languagePicker.click();

-  await page.getByRole('menuitem', { name: lang.label }).click();
+  await page.getByRole('menuitemradio', { name: lang.label }).click();
 }

 export const clickInEditorMenu = async (page: Page, textButton: string) => {
--- a/src/frontend/apps/e2e/tests/app-impress/utils-share.ts
+++ b/src/frontend/apps/e2e/tests/app-impress/utils-share.ts
@@ -39,7 +39,7 @@ export const addNewMember = async (

  // Choose a role
  await page.getByTestId('doc-role-dropdown').click();
-  await page.getByRole('menuitem', { name: role }).click();
+  await page.getByRole('menuitemradio', { name: role }).click();
  await page.getByTestId('doc-share-invite-button').click();

  return users[index].email;
@@ -51,7 +51,7 @@ export const updateShareLink = async (
  linkRole?: LinkRole | null,
 ) => {
  await page.getByTestId('doc-visibility').click();
-  await page.getByRole('menuitem', { name: linkReach }).click();
+  await page.getByRole('menuitemradio', { name: linkReach }).click();

  const visibilityUpdatedText = page
    .getByText('The document visibility has been updated')
@@ -61,7 +61,7 @@ export const updateShareLink = async (

  if (linkRole) {
    await page.getByTestId('doc-access-mode').click();
-    await page.getByRole('menuitem', { name: linkRole }).click();
+    await page.getByRole('menuitemradio', { name: linkRole }).click();
    await expect(visibilityUpdatedText).toBeVisible();
  }
 };
@@ -76,7 +76,7 @@ export const updateRoleUser = async (
  const currentUser = list.getByTestId(`doc-share-member-row-${email}`);
  const currentUserRole = currentUser.getByTestId('doc-role-dropdown');
  await currentUserRole.click();
-  await page.getByRole('menuitem', { name: role }).click();
+  await page.getByRole('menuitemradio', { name: role }).click();
  await list.click();
 };

--- a/src/frontend/apps/e2e/package.json
+++ b/src/frontend/apps/e2e/package.json
@@ -1,6 +1,6 @@
 {
  "name": "app-e2e",
-  "version": "4.8.1",
+  "version": "4.8.4",
  "repository": "https://github.com/suitenumerique/docs",
  "author": "DINUM",
  "license": "MIT",
--- a/src/frontend/apps/impress/package.json
+++ b/src/frontend/apps/impress/package.json
@@ -1,6 +1,6 @@
 {
  "name": "app-impress",
-  "version": "4.8.1",
+  "version": "4.8.4",
  "repository": "https://github.com/suitenumerique/docs",
  "author": "DINUM",
  "license": "MIT",
@@ -23,7 +23,7 @@
  },
  "dependencies": {
    "@ag-media/react-pdf-table": "2.0.3",
-    "@ai-sdk/openai": "3.0.19",
+    "@ai-sdk/openai": "3.0.45",
    "@blocknote/code-block": "0.47.1",
    "@blocknote/core": "0.47.1",
    "@blocknote/mantine": "0.47.1",
@@ -38,19 +38,20 @@
    "@emoji-mart/data": "1.2.1",
    "@emoji-mart/react": "1.1.1",
    "@fontsource-variable/inter": "5.2.8",
-    "@fontsource-variable/material-symbols-outlined": "5.2.35",
+    "@fontsource-variable/material-symbols-outlined": "5.2.38",
    "@fontsource/material-icons": "5.2.7",
    "@gouvfr-lasuite/cunningham-react": "4.2.0",
    "@gouvfr-lasuite/integration": "1.0.3",
-    "@gouvfr-lasuite/ui-kit": "0.19.6",
+    "@gouvfr-lasuite/ui-kit": "0.19.10",
    "@hocuspocus/provider": "3.4.4",
-    "@mantine/core": "8.3.14",
-    "@mantine/hooks": "8.3.14",
+    "@mantine/core": "8.3.17",
+    "@mantine/hooks": "8.3.17",
+    "@react-aria/live-announcer": "3.4.4",
    "@react-pdf/renderer": "4.3.1",
-    "@sentry/nextjs": "10.38.0",
+    "@sentry/nextjs": "10.43.0",
    "@tanstack/react-query": "5.90.21",
    "@tiptap/extensions": "*",
-    "ai": "6.0.49",
+    "ai": "6.0.128",
    "canvg": "4.0.3",
    "clsx": "2.1.1",
    "cmdk": "1.1.1",
@@ -58,28 +59,28 @@
    "emoji-datasource-apple": "16.0.0",
    "emoji-mart": "5.6.0",
    "emoji-regex": "10.6.0",
-    "i18next": "25.8.12",
+    "i18next": "25.8.18",
    "i18next-browser-languagedetector": "8.2.1",
    "idb": "8.0.3",
    "lodash": "4.17.23",
    "luxon": "3.7.2",
-    "next": "16.1.6",
-    "posthog-js": "1.347.2",
+    "next": "16.1.7",
+    "posthog-js": "1.360.2",
    "react": "*",
-    "react-aria-components": "1.15.1",
+    "react-aria-components": "1.16.0",
    "react-dom": "*",
    "react-dropzone": "15.0.0",
-    "react-i18next": "16.5.4",
-    "react-intersection-observer": "10.0.2",
+    "react-i18next": "16.5.8",
+    "react-intersection-observer": "10.0.3",
    "react-resizable-panels": "3.0.6",
    "react-select": "5.10.2",
-    "styled-components": "6.3.9",
+    "styled-components": "6.3.11",
    "use-debounce": "10.1.0",
    "uuid": "13.0.0",
    "y-protocols": "1.0.7",
    "yjs": "*",
-    "zod": "3.25.28",
-    "zustand": "5.0.11"
+    "zod": "4.3.6",
+    "zustand": "5.0.12"
  },
  "devDependencies": {
    "@svgr/webpack": "8.1.0",
@@ -88,26 +89,25 @@
    "@testing-library/jest-dom": "6.9.1",
    "@testing-library/react": "16.3.2",
    "@testing-library/user-event": "14.6.1",
-    "@types/lodash": "4.17.23",
+    "@types/lodash": "4.17.24",
    "@types/luxon": "3.7.1",
    "@types/node": "*",
    "@types/react": "*",
    "@types/react-dom": "*",
-    "@vitejs/plugin-react": "5.1.4",
+    "@vitejs/plugin-react": "6.0.1",
    "cross-env": "10.1.0",
    "dotenv": "17.3.1",
    "eslint-plugin-docs": "*",
    "fetch-mock": "9.11.0",
-    "jsdom": "28.1.0",
+    "jsdom": "29.0.0",
    "node-fetch": "2.7.0",
    "prettier": "3.8.1",
    "stylelint": "16.26.1",
    "stylelint-config-standard": "39.0.1",
    "stylelint-prettier": "5.0.3",
    "typescript": "*",
-    "vite-tsconfig-paths": "6.1.1",
-    "vitest": "4.0.18",
-    "webpack": "5.105.2",
+    "vitest": "4.1.0",
+    "webpack": "5.105.4",
    "workbox-webpack-plugin": "7.1.0"
  },
  "packageManager": "yarn@1.22.22"
--- a/src/frontend/apps/impress/src/assets/icons/ui-kit/markdown_copy.svg
+++ b/src/frontend/apps/impress/src/assets/icons/ui-kit/markdown_copy.svg
@@ -0,0 +1,9 @@
+<svg
+  xmlns="http://www.w3.org/2000/svg"
+  viewBox="0 -960 960 960"
+  fill="currentColor"
+>
+  <path
+    d="M360-240q-33 0-56.5-23.5T280-320v-480q0-33 23.5-56.5T360-880h360q33 0 56.5 23.5T800-800v480q0 33-23.5 56.5T720-240H360Zm0-80h360v-480H360v480ZM200-80q-33 0-56.5-23.5T120-160v-560h80v560h440v80H200Zm210-360h60v-180h40v120h60v-120h40v180h60v-200q0-17-11.5-28.5T630-680H450q-17 0-28.5 11.5T410-640v200Zm-50 120v-480 480Z"
+  />
+</svg>
--- a/src/frontend/apps/impress/src/components/BoxButton.tsx
+++ b/src/frontend/apps/impress/src/components/BoxButton.tsx
@@ -1,17 +1,17 @@
-import { forwardRef } from 'react';
+import { Ref, forwardRef } from 'react';
 import { css } from 'styled-components';

 import { Box, BoxType } from './Box';

-export type BoxButtonType = BoxType & {
+export type BoxButtonType = Omit<BoxType, 'ref'> & {
  disabled?: boolean;
+  ref?: Ref<HTMLButtonElement>;
 };

-/**
-
 /**
 * Styleless button that extends the Box component.
 * Good to wrap around SVGs or other elements that need to be clickable.
+ * Uses aria-disabled instead of native disabled to preserve keyboard focusability.
 * @param props - @see BoxType props
 * @param ref
 * @see Box
@@ -22,8 +22,8 @@ export type BoxButtonType = BoxType & {
 *  </BoxButton>
 * ```
 */
-const BoxButton = forwardRef<HTMLDivElement, BoxButtonType>(
-  ({ $css, ...props }, ref) => {
+const BoxButton = forwardRef<HTMLButtonElement, BoxButtonType>(
+  ({ $css, disabled, ...props }, ref) => {
    const theme = props.$theme || 'gray';
    const variation = props.$variation || 'primary';

@@ -31,16 +31,18 @@ const BoxButton = forwardRef<HTMLDivElement, BoxButtonType>(
      <Box
        ref={ref}
        as="button"
+        type="button"
        $background="none"
        $margin="none"
        $padding="none"
        $hasTransition
+        aria-disabled={disabled || undefined}
        $css={css`
-          cursor: ${props.disabled ? 'not-allowed' : 'pointer'};
+          cursor: ${disabled ? 'not-allowed' : 'pointer'};
          border: none;
          outline: none;
          font-family: inherit;
-          color: ${props.disabled &&
+          color: ${disabled &&
          `var(--c--contextuals--content--semantic--disabled--primary)`};
          &:focus-visible {
            transition: none;
@@ -53,11 +55,11 @@ const BoxButton = forwardRef<HTMLDivElement, BoxButtonType>(
        `}
        {...props}
        className={`--docs--box-button ${props.className || ''}`}
-        onClick={(event: React.MouseEvent<HTMLDivElement>) => {
-          if (props.disabled) {
+        onClick={(event: React.MouseEvent<HTMLButtonElement>) => {
+          if (disabled) {
            return;
          }
-          props.onClick?.(event);
+          props.onClick?.(event as unknown as React.MouseEvent<HTMLDivElement>);
        }}
      />
    );
--- a/src/frontend/apps/impress/src/components/DropButton.tsx
+++ b/src/frontend/apps/impress/src/components/DropButton.tsx
@@ -93,6 +93,8 @@ export const DropButton = ({
          onOpenChangeHandler(true);
        }}
        aria-label={label}
+        aria-haspopup="true"
+        aria-expanded={isLocalOpen}
        data-testid={testId}
        $css={css`
          font-family: ${font};
--- a/src/frontend/apps/impress/src/components/SkipToContent.tsx
+++ b/src/frontend/apps/impress/src/components/SkipToContent.tsx
@@ -1,63 +1,33 @@
 import { Button } from '@gouvfr-lasuite/cunningham-react';
-import { useRouter } from 'next/router';
-import { useEffect, useState } from 'react';
+import { useState } from 'react';
 import { useTranslation } from 'react-i18next';
-import { css } from 'styled-components';

 import { Box } from '@/components';
 import { useCunninghamTheme } from '@/cunningham';
 import { MAIN_LAYOUT_ID } from '@/layouts/conf';
+import { focusMainContentStart } from '@/layouts/utils';

 export const SkipToContent = () => {
  const { t } = useTranslation();
-  const router = useRouter();
  const { spacingsTokens } = useCunninghamTheme();
  const [isVisible, setIsVisible] = useState(false);

-  // Reset focus after route change so first TAB goes to skip link
-  useEffect(() => {
-    const handleRouteChange = () => {
-      (document.activeElement as HTMLElement)?.blur();
-
-      document.body.setAttribute('tabindex', '-1');
-      document.body.focus({ preventScroll: true });
-
-      setTimeout(() => {
-        document.body.removeAttribute('tabindex');
-      }, 100);
-    };
-
-    router.events.on('routeChangeComplete', handleRouteChange);
-    return () => {
-      router.events.off('routeChangeComplete', handleRouteChange);
-    };
-  }, [router.events]);
-
  const handleClick = (e: React.MouseEvent) => {
    e.preventDefault();
-    const mainContent = document.getElementById(MAIN_LAYOUT_ID);
-    if (mainContent) {
-      mainContent.focus();
-      mainContent.scrollIntoView({ behavior: 'smooth', block: 'start' });
+    const focusTarget = focusMainContentStart();
+
+    if (focusTarget instanceof HTMLElement) {
+      focusTarget.scrollIntoView({ behavior: 'smooth', block: 'start' });
    }
  };

  return (
-    <Box
-      $css={css`
-        .c__button--brand--primary.--docs--skip-to-content:focus-visible {
-          box-shadow:
-            0 0 0 1px var(--c--globals--colors--white-000),
-            0 0 0 4px var(--c--contextuals--border--semantic--brand--primary);
-          border-radius: var(--c--globals--spacings--st);
-        }
-      `}
-    >
+    <Box>
      <Button
-        onClick={handleClick}
-        type="button"
+        href={`#${MAIN_LAYOUT_ID}`}
        color="brand"
        className="--docs--skip-to-content"
+        onClick={handleClick}
        onFocus={() => setIsVisible(true)}
        onBlur={() => setIsVisible(false)}
        style={{
@@ -65,7 +35,6 @@ export const SkipToContent = () => {
          pointerEvents: isVisible ? 'auto' : 'none',
          position: 'fixed',
          top: spacingsTokens['2xs'],
-          // padding header + logo(32px) + gap(3xs≈4px) + text "Docs"(≈70px) + 12px
          left: `calc(${spacingsTokens['base']} + 32px + ${spacingsTokens['3xs']} + 70px + 12px)`,
          zIndex: 9999,
          whiteSpace: 'nowrap',
--- a/Show More
+++ b/Show More