From 3e34b3c7a721abfb767f7e43ccc3a20129b64d34 Mon Sep 17 00:00:00 2001
From: Du Peng <gnepud@gmail.com>
Date: Fri, 18 Mar 2022 19:44:30 +0100
Subject: [PATCH] add user validation required setting, user proof of identity
 upload and organization custom field

---
 .dockerignore                                 |   3 +
 .gitignore                                    |   3 +
 CHANGELOG.md                                  |   1 +
 Dockerfile                                    |   1 +
 app/controllers/api/members_controller.rb     |  16 +-
 .../api/profile_custom_fields_controller.rb   |  50 ++++
 .../api/proof_of_identity_files_controller.rb |  54 +++++
 .../proof_of_identity_refusals_controller.rb  |  32 +++
 .../api/proof_of_identity_types_controller.rb |  50 ++++
 app/controllers/application_controller.rb     |   1 +
 app/frontend/src/javascript/api/member.ts     |   5 +
 .../javascript/api/profile-custom-field.ts    |  30 +++
 .../javascript/api/proof-of-identity-file.ts  |  36 +++
 .../api/proof-of-identity-refusal.ts          |  21 ++
 .../javascript/api/proof-of-identity-type.ts  |  36 +++
 .../components/machines/machine-card.tsx      |   8 +-
 .../components/machines/machines-list.tsx     |  12 +-
 .../components/machines/reserve-button.tsx    |  13 +-
 .../javascript/components/plans/plan-card.tsx |  11 +-
 .../components/plans/plans-list.tsx           |  10 +-
 .../profile-custom-fields-list.tsx            | 146 ++++++++++++
 .../delete-proof-of-identity-type-modal.tsx   |  37 +++
 .../proof-of-identity-files.tsx               | 169 ++++++++++++++
 .../proof-of-identity-refusal-form.tsx        |  75 ++++++
 .../proof-of-identity-refusal-modal.tsx       |  63 ++++++
 .../proof-of-identity-type-form.tsx           |  90 ++++++++
 .../proof-of-identity-type-modal.tsx          |  68 ++++++
 .../proof-of-identity-types-list.tsx          | 214 ++++++++++++++++++
 .../proof-of-identity-validation.tsx          | 121 ++++++++++
 .../components/settings/boolean-setting.tsx   | 116 ++++++++++
 .../settings/check-list-setting.tsx           |  29 ++-
 .../settings/user-validation-setting.tsx      | 112 +++++++++
 .../components/user/user-validation.tsx       |  58 +++++
 .../javascript/controllers/admin/invoices.js  |   4 +-
 .../javascript/controllers/admin/members.js   |  40 +++-
 .../javascript/controllers/admin/pricing.js   |  10 +-
 .../javascript/controllers/admin/projects.js  |  14 ++
 .../src/javascript/controllers/application.js |  26 ++-
 .../src/javascript/controllers/dashboard.js   |  31 ++-
 .../src/javascript/controllers/events.js.erb  |  17 ++
 .../src/javascript/controllers/header.js      |  12 +-
 .../javascript/controllers/machines.js.erb    |  29 ++-
 .../src/javascript/controllers/members.js     |  10 +-
 .../src/javascript/controllers/plans.js       |  10 +
 .../src/javascript/controllers/spaces.js.erb  |  14 +-
 .../javascript/controllers/trainings.js.erb   |  14 +-
 .../src/javascript/controllers/wallet.js      |   6 +-
 .../src/javascript/directives/cart.js         |   5 +
 .../directives/settings/boolean-setting.js    | 104 ---------
 .../javascript/models/profile-custom-field.ts |   6 +
 .../models/proof-of-identity-file.ts          |  11 +
 .../models/proof-of-identity-refusal.ts       |  12 +
 .../models/proof-of-identity-type.ts          |   9 +
 app/frontend/src/javascript/models/setting.ts |   2 +
 app/frontend/src/javascript/models/user.ts    |   1 +
 app/frontend/src/javascript/router.js         |  38 ++--
 .../src/javascript/services/helpers.js        |  17 +-
 .../services/profile_custom_field.js          |  11 +
 .../services/proof_of_identity_type.js        |  11 +
 .../templates/admin/invoices/payment.html     |  10 +-
 .../templates/admin/members/edit.html         |  14 +-
 .../templates/admin/members/members.html      |  12 +-
 .../templates/admin/projects/settings.html    |   9 +-
 .../templates/admin/settings/boolean.html     |   5 -
 .../templates/admin/settings/compte.html      | 107 +++++++++
 .../templates/admin/settings/general.html     |  61 ++---
 .../templates/admin/settings/index.html       |  12 +-
 .../templates/admin/settings/privacy.html     |   7 +-
 .../admin/settings/reservations.html          |  69 +++---
 app/frontend/templates/dashboard/nav.html     |   1 +
 .../dashboard/proof_of_identity_files.html    |  13 ++
 app/frontend/templates/events/show.html       |   8 +-
 app/frontend/templates/machines/index.html    |   3 +-
 app/frontend/templates/machines/reserve.html  |   1 +
 app/frontend/templates/plans/_plan.html       |   1 +
 app/frontend/templates/plans/index.html       |   5 +-
 app/frontend/templates/shared/_cart.html      |  10 +-
 .../templates/shared/_member_select.html      |   3 +
 app/frontend/templates/shared/header.html.erb |   3 +-
 .../templates/shared/signupModal.html         |  28 ++-
 app/frontend/templates/trainings/reserve.html |   2 +-
 app/models/cart_item/base_item.rb             |   4 +
 app/models/cart_item/coupon.rb                |   4 +
 app/models/cart_item/event_reservation.rb     |   4 +
 app/models/cart_item/free_extension.rb        |   4 +
 app/models/cart_item/machine_reservation.rb   |   4 +
 app/models/cart_item/payment_schedule.rb      |   4 +
 app/models/cart_item/prepaid_pack.rb          |   4 +
 app/models/cart_item/space_reservation.rb     |   4 +
 app/models/cart_item/subscription.rb          |   4 +
 app/models/cart_item/training_reservation.rb  |   4 +
 app/models/group.rb                           |   2 +
 app/models/invoicing_profile.rb               |   4 +
 app/models/notification_type.rb               |   6 +
 app/models/profile_custom_field.rb            |   4 +
 app/models/proof_of_identity_file.rb          |  12 +
 app/models/proof_of_identity_refusal.rb       |   7 +
 app/models/proof_of_identity_type.rb          |   8 +
 app/models/proof_of_identity_types_group.rb   |   6 +
 app/models/setting.rb                         |   4 +-
 app/models/shopping_cart.rb                   |  17 ++
 app/models/user.rb                            |  34 +--
 app/models/user_profile_custom_field.rb       |   4 +
 app/pdfs/pdf/invoice.rb                       |  11 +-
 app/policies/profile_custom_field_policy.rb   |  16 ++
 app/policies/proof_of_identity_file_policy.rb |  18 ++
 .../proof_of_identity_refusal_policy.rb       |  16 ++
 app/policies/proof_of_identity_type_policy.rb |  16 ++
 app/policies/setting_policy.rb                |   3 +-
 app/policies/user_policy.rb                   |   2 +-
 app/services/members/members_service.rb       |  32 +++
 .../proof_of_identity_file_service.rb         |  55 +++++
 .../proof_of_identity_refusal_service.rb      |  26 +++
 .../proof_of_identity_type_service.rb         |  15 ++
 .../proof_of_identity_file_uploader.rb        |  66 ++++++
 app/views/api/members/_member.json.jbuilder   |   2 +
 app/views/api/members/list.json.jbuilder      |   1 +
 app/views/api/members/search.json.jbuilder    |   3 +-
 ...of_of_identity_files_created.json.jbuilder |   3 +
 ...of_of_identity_files_updated.json.jbuilder |   3 +
 ...er_proof_of_identity_refusal.json.jbuilder |   3 +
 .../_notify_user_is_invalidated.json.jbuilder |   2 +
 .../_notify_user_is_validated.json.jbuilder   |   2 +
 ...er_proof_of_identity_refusal.json.jbuilder |   2 +
 .../_profile_custom_field.json.jbuilder       |   3 +
 .../create.json.jbuilder                      |   3 +
 .../profile_custom_fields/index.json.jbuilder |   5 +
 .../profile_custom_fields/show.json.jbuilder  |   3 +
 .../update.json.jbuilder                      |   3 +
 .../_proof_of_identity_file.json.jbuilder     |   4 +
 .../create.json.jbuilder                      |   3 +
 .../index.json.jbuilder                       |   5 +
 .../show.json.jbuilder                        |   3 +
 .../update.json.jbuilder                      |   3 +
 .../_proof_of_identity_refusal.json.jbuilder  |   3 +
 .../create.json.jbuilder                      |   3 +
 .../index.json.jbuilder                       |   5 +
 .../show.json.jbuilder                        |   3 +
 .../_proof_of_identity_type.json.jbuilder     |   3 +
 .../create.json.jbuilder                      |   3 +
 .../index.json.jbuilder                       |   5 +
 .../show.json.jbuilder                        |   3 +
 .../update.json.jbuilder                      |   3 +
 .../notify_admin_user_group_changed.html.erb  |   3 +
 ...r_proof_of_identity_files_created.html.erb |  18 ++
 ...r_proof_of_identity_files_updated.html.erb |  14 ++
 ...in_user_proof_of_identity_refusal.html.erb |  15 ++
 .../notify_user_is_invalidated.html.erb       |   5 +
 .../notify_user_is_validated.html.erb         |   5 +
 ...fy_user_proof_of_identity_refusal.html.erb |  16 ++
 .../notify_user_user_group_changed.html.erb   |   3 +
 config/locales/app.admin.de.yml               |  75 ++++++
 config/locales/app.admin.en.yml               |  75 ++++++
 config/locales/app.admin.es.yml               |  75 ++++++
 config/locales/app.admin.fr.yml               |  75 ++++++
 config/locales/app.admin.no.yml               |  75 ++++++
 config/locales/app.admin.pt.yml               |  75 ++++++
 config/locales/app.admin.zu.yml               |  75 ++++++
 config/locales/app.public.de.yml              |   3 +
 config/locales/app.public.en.yml              |   3 +
 config/locales/app.public.es.yml              |   3 +
 config/locales/app.public.fr.yml              |   3 +
 config/locales/app.public.no.yml              |   3 +
 config/locales/app.public.pt.yml              |   3 +
 config/locales/app.public.zu.yml              |   3 +
 config/locales/app.shared.de.yml              |   2 +
 config/locales/app.shared.en.yml              |   2 +
 config/locales/app.shared.es.yml              |   2 +
 config/locales/app.shared.fr.yml              |   2 +
 config/locales/app.shared.no.yml              |   1 +
 config/locales/app.shared.pt.yml              |   2 +
 config/locales/app.shared.zu.yml              |   2 +
 config/locales/de.yml                         |  12 +
 config/locales/en.yml                         |  12 +
 config/locales/es.yml                         |  12 +
 config/locales/fr.yml                         |  12 +
 config/locales/mails.de.yml                   |  29 +++
 config/locales/mails.en.yml                   |  29 +++
 config/locales/mails.es.yml                   |  29 +++
 config/locales/mails.fr.yml                   |  29 +++
 config/locales/mails.no.yml                   |  29 +++
 config/locales/mails.pt.yml                   |  29 +++
 config/locales/mails.zu.yml                   |  29 +++
 config/locales/no.yml                         |  12 +
 config/locales/pt.yml                         |  12 +
 config/locales/zu.yml                         |  12 +
 config/routes.rb                              |   9 +
 config/secrets.yml                            |   4 +
 ...22090245_create_proof_of_identity_types.rb |   9 +
 ...9_create_proof_of_identity_types_groups.rb |  10 +
 ...26162334_create_proof_of_identity_files.rb |  13 ++
 ...23828_create_proof_of_identity_refusals.rb |  11 +
 ...identity_type_proof_of_identity_refusal.rb |   8 +
 ...20220429164234_add_validated_at_to_user.rb |   5 +
 ...0506143526_create_profile_custom_fields.rb |  11 +
 ...05714_create_user_profile_custom_fields.rb |  11 +
 db/schema.rb                                  |  66 +++++-
 db/seeds.rb                                   |   9 +
 doc/environment.md                            |   8 +-
 env.example                                   |   2 +
 setup/env.example                             |   2 +
 setup/setup.sh                                |   2 +-
 202 files changed, 3855 insertions(+), 300 deletions(-)
 create mode 100644 app/controllers/api/profile_custom_fields_controller.rb
 create mode 100644 app/controllers/api/proof_of_identity_files_controller.rb
 create mode 100644 app/controllers/api/proof_of_identity_refusals_controller.rb
 create mode 100644 app/controllers/api/proof_of_identity_types_controller.rb
 create mode 100644 app/frontend/src/javascript/api/profile-custom-field.ts
 create mode 100644 app/frontend/src/javascript/api/proof-of-identity-file.ts
 create mode 100644 app/frontend/src/javascript/api/proof-of-identity-refusal.ts
 create mode 100644 app/frontend/src/javascript/api/proof-of-identity-type.ts
 create mode 100644 app/frontend/src/javascript/components/profile-custom-fields/profile-custom-fields-list.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/delete-proof-of-identity-type-modal.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-files.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-form.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-modal.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-form.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-modal.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-types-list.tsx
 create mode 100644 app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-validation.tsx
 create mode 100644 app/frontend/src/javascript/components/settings/boolean-setting.tsx
 create mode 100644 app/frontend/src/javascript/components/settings/user-validation-setting.tsx
 create mode 100644 app/frontend/src/javascript/components/user/user-validation.tsx
 delete mode 100644 app/frontend/src/javascript/directives/settings/boolean-setting.js
 create mode 100644 app/frontend/src/javascript/models/profile-custom-field.ts
 create mode 100644 app/frontend/src/javascript/models/proof-of-identity-file.ts
 create mode 100644 app/frontend/src/javascript/models/proof-of-identity-refusal.ts
 create mode 100644 app/frontend/src/javascript/models/proof-of-identity-type.ts
 create mode 100644 app/frontend/src/javascript/services/profile_custom_field.js
 create mode 100644 app/frontend/src/javascript/services/proof_of_identity_type.js
 delete mode 100644 app/frontend/templates/admin/settings/boolean.html
 create mode 100644 app/frontend/templates/admin/settings/compte.html
 create mode 100644 app/frontend/templates/dashboard/proof_of_identity_files.html
 create mode 100644 app/models/profile_custom_field.rb
 create mode 100644 app/models/proof_of_identity_file.rb
 create mode 100644 app/models/proof_of_identity_refusal.rb
 create mode 100644 app/models/proof_of_identity_type.rb
 create mode 100644 app/models/proof_of_identity_types_group.rb
 create mode 100644 app/models/user_profile_custom_field.rb
 create mode 100644 app/policies/profile_custom_field_policy.rb
 create mode 100644 app/policies/proof_of_identity_file_policy.rb
 create mode 100644 app/policies/proof_of_identity_refusal_policy.rb
 create mode 100644 app/policies/proof_of_identity_type_policy.rb
 create mode 100644 app/services/proof_of_identity_file_service.rb
 create mode 100644 app/services/proof_of_identity_refusal_service.rb
 create mode 100644 app/services/proof_of_identity_type_service.rb
 create mode 100644 app/uploaders/proof_of_identity_file_uploader.rb
 create mode 100644 app/views/api/notifications/_notify_admin_user_proof_of_identity_files_created.json.jbuilder
 create mode 100644 app/views/api/notifications/_notify_admin_user_proof_of_identity_files_updated.json.jbuilder
 create mode 100644 app/views/api/notifications/_notify_admin_user_proof_of_identity_refusal.json.jbuilder
 create mode 100644 app/views/api/notifications/_notify_user_is_invalidated.json.jbuilder
 create mode 100644 app/views/api/notifications/_notify_user_is_validated.json.jbuilder
 create mode 100644 app/views/api/notifications/_notify_user_proof_of_identity_refusal.json.jbuilder
 create mode 100644 app/views/api/profile_custom_fields/_profile_custom_field.json.jbuilder
 create mode 100644 app/views/api/profile_custom_fields/create.json.jbuilder
 create mode 100644 app/views/api/profile_custom_fields/index.json.jbuilder
 create mode 100644 app/views/api/profile_custom_fields/show.json.jbuilder
 create mode 100644 app/views/api/profile_custom_fields/update.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_files/_proof_of_identity_file.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_files/create.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_files/index.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_files/show.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_files/update.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_refusals/_proof_of_identity_refusal.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_refusals/create.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_refusals/index.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_refusals/show.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_types/_proof_of_identity_type.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_types/create.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_types/index.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_types/show.json.jbuilder
 create mode 100644 app/views/api/proof_of_identity_types/update.json.jbuilder
 create mode 100644 app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_created.html.erb
 create mode 100644 app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_updated.html.erb
 create mode 100644 app/views/notifications_mailer/notify_admin_user_proof_of_identity_refusal.html.erb
 create mode 100644 app/views/notifications_mailer/notify_user_is_invalidated.html.erb
 create mode 100644 app/views/notifications_mailer/notify_user_is_validated.html.erb
 create mode 100644 app/views/notifications_mailer/notify_user_proof_of_identity_refusal.html.erb
 create mode 100644 db/migrate/20220422090245_create_proof_of_identity_types.rb
 create mode 100644 db/migrate/20220422090709_create_proof_of_identity_types_groups.rb
 create mode 100644 db/migrate/20220426162334_create_proof_of_identity_files.rb
 create mode 100644 db/migrate/20220428123828_create_proof_of_identity_refusals.rb
 create mode 100644 db/migrate/20220428125751_create_join_table_proof_of_identity_type_proof_of_identity_refusal.rb
 create mode 100644 db/migrate/20220429164234_add_validated_at_to_user.rb
 create mode 100644 db/migrate/20220506143526_create_profile_custom_fields.rb
 create mode 100644 db/migrate/20220509105714_create_user_profile_custom_fields.rb

diff --git a/.dockerignore b/.dockerignore
index d1d9e2d39..11faf34e4 100644
--- a/.dockerignore
+++ b/.dockerignore
@@ -31,6 +31,9 @@ imports
 # accounting archives
 accounting
 
+# Proof of identity files
+proof_of_identity_files
+
 # Development files
 Vagrantfile
 provision
diff --git a/.gitignore b/.gitignore
index 4a28e3c41..3673b932c 100644
--- a/.gitignore
+++ b/.gitignore
@@ -46,6 +46,9 @@
 # Archives of closed accounting periods
 /accounting/*
 
+# Proof of identity files
+/proof_of_identity_files/*
+
 .DS_Store
 
 .vagrant
diff --git a/CHANGELOG.md b/CHANGELOG.md
index e9159517e..e6fd371a7 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -33,6 +33,7 @@
 - Fix a security issue: updated rails to 5.2.7.1 to fix [CVE-2022-22577](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22577) and [CVE-2022-27777](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27777)
 - [TODO DEPLOY] `rails db:seed`
 - [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
+- [TODO DEPLOY] add the `MAX_PROOF_OF_IDENTITY_FILE_SIZE` environment variable (see [doc/environment.md](doc/environment.md#MAX_PROOF_OF_IDENTITY_FILE_SIZE) for configuration details)
 
 ## v5.3.13 2022 May 02
 
diff --git a/Dockerfile b/Dockerfile
index f8381188c..a47795225 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -81,6 +81,7 @@ VOLUME /usr/src/app/public
 VOLUME /usr/src/app/public/uploads
 VOLUME /usr/src/app/public/packs
 VOLUME /usr/src/app/accounting
+VOLUME /usr/src/app/proof_of_identity_files
 VOLUME /var/log/supervisor
 
 # Expose port 3000 to the Docker host, so we can access it from the outside
diff --git a/app/controllers/api/members_controller.rb b/app/controllers/api/members_controller.rb
index c5490e889..87d405f5a 100644
--- a/app/controllers/api/members_controller.rb
+++ b/app/controllers/api/members_controller.rb
@@ -3,7 +3,7 @@
 # API Controller for resources of type User with role 'member'
 class API::MembersController < API::ApiController
   before_action :authenticate_user!, except: [:last_subscribed]
-  before_action :set_member, only: %i[update destroy merge complete_tour update_role]
+  before_action :set_member, only: %i[update destroy merge complete_tour update_role validate]
   respond_to :json
 
   def index
@@ -240,6 +240,18 @@ class API::MembersController < API::ApiController
     render json: @member
   end
 
+  def validate
+    authorize @member
+
+    members_service = Members::MembersService.new(@member)
+
+    if members_service.validate(user_params[:validated_at].present?)
+      render :show, status: :ok, location: member_path(@member)
+    else
+      render json: @member.errors, status: :unprocessable_entity
+    end
+  end
+
   private
 
   def set_member
@@ -262,7 +274,7 @@ class API::MembersController < API::ApiController
 
     elsif current_user.admin? || current_user.manager?
       params.require(:user).permit(:username, :email, :password, :password_confirmation, :is_allow_contact, :is_allow_newsletter, :group_id,
-                                   tag_ids: [],
+                                   :validated_at, tag_ids: [],
                                    profile_attributes: [:id, :first_name, :last_name, :phone, :interest, :software_mastered, :website, :job,
                                                         :facebook, :twitter, :google_plus, :viadeo, :linkedin, :instagram, :youtube, :vimeo,
                                                         :dailymotion, :github, :echosciences, :pinterest, :lastfm, :flickr,
diff --git a/app/controllers/api/profile_custom_fields_controller.rb b/app/controllers/api/profile_custom_fields_controller.rb
new file mode 100644
index 000000000..1d45e5985
--- /dev/null
+++ b/app/controllers/api/profile_custom_fields_controller.rb
@@ -0,0 +1,50 @@
+# frozen_string_literal: true
+
+# API Controller for resources of type ProfileCustomField
+# ProfileCustomFields are used to provide admin config user profile custom fields
+class API::ProfileCustomFieldsController < API::ApiController
+  before_action :authenticate_user!, except: :index
+  before_action :set_profile_custom_field, only: %i[show update destroy]
+
+  def index
+    @profile_custom_fields = ProfileCustomField.all.order('id ASC')
+  end
+
+  def show; end
+
+  def create
+    authorize ProofOfIdentityType
+    @profile_custom_field = ProfileCustomField.new(profile_custom_field_params)
+    if @profile_custom_field.save
+      render status: :created
+    else
+      render json: @profile_custom_field.errors.full_messages, status: :unprocessable_entity
+    end
+  end
+
+  def update
+    authorize @profile_custom_field
+
+    if @profile_custom_field.update(profile_custom_field_params)
+      render status: :ok
+    else
+      render json: @pack.errors.full_messages, status: :unprocessable_entity
+    end
+  end
+
+  def destroy
+    authorize @profile_custom_field
+    @profile_custom_field.destroy
+    head :no_content
+  end
+
+  private
+
+  def set_profile_custom_field
+    @profile_custom_field = ProfileCustomField.find(params[:id])
+  end
+
+  def profile_custom_field_params
+    params.require(:profile_custom_field).permit(:label, :required, :actived)
+  end
+end
diff --git a/app/controllers/api/proof_of_identity_files_controller.rb b/app/controllers/api/proof_of_identity_files_controller.rb
new file mode 100644
index 000000000..32a8679cd
--- /dev/null
+++ b/app/controllers/api/proof_of_identity_files_controller.rb
@@ -0,0 +1,54 @@
+# frozen_string_literal: true
+
+# API Controller for resources of type ProofOfIdentityFile
+# ProofOfIdentityFiles are used in settings
+class API::ProofOfIdentityFilesController < API::ApiController
+  before_action :authenticate_user!
+  before_action :set_proof_of_identity_file, only: %i[show update download]
+
+  def index
+    @proof_of_identity_files = ProofOfIdentityFileService.list(current_user, params)
+  end
+
+  # PUT /api/proof_of_identity_files/1/
+  def update
+    authorize @proof_of_identity_file
+    if ProofOfIdentityFileService.update(@proof_of_identity_file, proof_of_identity_file_params)
+      render :show, status: :ok, location: @proof_of_identity_file
+    else
+      render json: @proof_of_identity_file.errors, status: :unprocessable_entity
+    end
+  end
+
+  # POST /api/proof_of_identity_files/
+  def create
+    @proof_of_identity_file = ProofOfIdentityFile.new(proof_of_identity_file_params)
+    authorize @proof_of_identity_file
+    if ProofOfIdentityFileService.create(@proof_of_identity_file)
+      render :show, status: :created, location: @proof_of_identity_file
+    else
+      render json: @proof_of_identity_file.errors, status: :unprocessable_entity
+    end
+  end
+
+  # GET /api/proof_of_identity_files/1/download
+  def download
+    authorize @proof_of_identity_file
+    send_file @proof_of_identity_file.attachment.url, type: @proof_of_identity_file.attachment.content_type, disposition: 'attachment'
+  end
+
+  # GET /api/proof_of_identity_files/1/
+  def show; end
+
+  private
+
+  def set_proof_of_identity_file
+    @proof_of_identity_file = ProofOfIdentityFile.find(params[:id])
+  end
+
+  # Never trust parameters from the scary internet, only allow the white list through.
+  def proof_of_identity_file_params
+    params.required(:proof_of_identity_file).permit(:proof_of_identity_type_id, :attachment, :user_id)
+  end
+
+end
diff --git a/app/controllers/api/proof_of_identity_refusals_controller.rb b/app/controllers/api/proof_of_identity_refusals_controller.rb
new file mode 100644
index 000000000..e61be3b7b
--- /dev/null
+++ b/app/controllers/api/proof_of_identity_refusals_controller.rb
@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+# API Controller for resources of type ProofOfIdentityRefusal
+# ProofOfIdentityRefusal are used by admin refuse user's proof of identity file
+class API::ProofOfIdentityRefusalsController < API::ApiController
+  before_action :authenticate_user!
+
+  def index
+    authorize ProofOfIdentityRefusal
+    @proof_of_identity_files = ProofOfIdentityRefusalService.list(params)
+  end
+
+  def show; end
+
+  # POST /api/proof_of_identity_refusals/
+  def create
+    authorize ProofOfIdentityRefusal
+    @proof_of_identity_refusal = ProofOfIdentityRefusal.new(proof_of_identity_refusal_params)
+    if ProofOfIdentityRefusalService.create(@proof_of_identity_refusal)
+      render :show, status: :created, location: @proof_of_identity_refusal
+    else
+      render json: @proof_of_identity_refusal.errors, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  # Never trust parameters from the scary internet, only allow the white list through.
+  def proof_of_identity_refusal_params
+    params.required(:proof_of_identity_refusal).permit(:message, :operator_id, :user_id, proof_of_identity_type_ids: [])
+  end
+end
diff --git a/app/controllers/api/proof_of_identity_types_controller.rb b/app/controllers/api/proof_of_identity_types_controller.rb
new file mode 100644
index 000000000..5a3f9e0eb
--- /dev/null
+++ b/app/controllers/api/proof_of_identity_types_controller.rb
@@ -0,0 +1,50 @@
+# frozen_string_literal: true
+
+# API Controller for resources of type ProofOfIdentityType
+# ProofOfIdentityTypes are used to provide admin config proof of identity type by group
+class API::ProofOfIdentityTypesController < API::ApiController
+  before_action :authenticate_user!, except: :index
+  before_action :set_proof_of_identity_type, only: %i[show update destroy]
+
+  def index
+    @proof_of_identity_types = ProofOfIdentityTypeService.list(params)
+  end
+
+  def show; end
+
+  def create
+    authorize ProofOfIdentityType
+    @proof_of_identity_type = ProofOfIdentityType.new(proof_of_identity_type_params)
+    if @proof_of_identity_type.save
+      render status: :created
+    else
+      render json: @proof_of_identity_type.errors.full_messages, status: :unprocessable_entity
+    end
+  end
+
+  def update
+    authorize @proof_of_identity_type
+
+    if @proof_of_identity_type.update(proof_of_identity_type_params)
+      render status: :ok
+    else
+      render json: @pack.errors.full_messages, status: :unprocessable_entity
+    end
+  end
+
+  def destroy
+    authorize @proof_of_identity_type
+    @proof_of_identity_type.destroy
+    head :no_content
+  end
+
+  private
+
+  def set_proof_of_identity_type
+    @proof_of_identity_type = ProofOfIdentityType.find(params[:id])
+  end
+
+  def proof_of_identity_type_params
+    params.require(:proof_of_identity_type).permit(:name, group_ids: [])
+  end
+end
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 1301763bd..5ee5c20fc 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -43,6 +43,7 @@ class ApplicationController < ActionController::Base
                                           profile_attributes: %i[phone last_name first_name interest software_mastered],
                                           invoicing_profile_attributes: [
                                             organization_attributes: [:name, address_attributes: [:address]],
+                                            user_profile_custom_fields_attributes: %i[profile_custom_field_id value],
                                             address_attributes: [:address]
                                           ],
                                           statistic_profile_attributes: %i[gender birthday]
diff --git a/app/frontend/src/javascript/api/member.ts b/app/frontend/src/javascript/api/member.ts
index d01c4be93..b2727572b 100644
--- a/app/frontend/src/javascript/api/member.ts
+++ b/app/frontend/src/javascript/api/member.ts
@@ -39,4 +39,9 @@ export default class MemberAPI {
     const res: AxiosResponse<User> = await apiClient.get('/api/members/current');
     return res?.data;
   }
+
+  static async validate (member: User): Promise<User> {
+    const res: AxiosResponse<User> = await apiClient.patch(`/api/members/${member.id}/validate`, { user: member });
+    return res?.data;
+  }
 }
diff --git a/app/frontend/src/javascript/api/profile-custom-field.ts b/app/frontend/src/javascript/api/profile-custom-field.ts
new file mode 100644
index 000000000..0267dadd4
--- /dev/null
+++ b/app/frontend/src/javascript/api/profile-custom-field.ts
@@ -0,0 +1,30 @@
+import apiClient from './clients/api-client';
+import { AxiosResponse } from 'axios';
+import { ProfileCustomField } from '../models/profile-custom-field';
+
+export default class ProfileCustomFieldAPI {
+  static async index (): Promise<Array<ProfileCustomField>> {
+    const res: AxiosResponse<Array<ProfileCustomField>> = await apiClient.get('/api/profile_custom_fields');
+    return res?.data;
+  }
+
+  static async get (id: number): Promise<ProfileCustomField> {
+    const res: AxiosResponse<ProfileCustomField> = await apiClient.get(`/api/profile_custom_fields/${id}`);
+    return res?.data;
+  }
+
+  static async create (profileCustomField: ProfileCustomField): Promise<ProfileCustomField> {
+    const res: AxiosResponse<ProfileCustomField> = await apiClient.post('/api/profile_custom_fields', { profile_custom_field: profileCustomField });
+    return res?.data;
+  }
+
+  static async update (profileCustomField: ProfileCustomField): Promise<ProfileCustomField> {
+    const res: AxiosResponse<ProfileCustomField> = await apiClient.patch(`/api/profile_custom_fields/${profileCustomField.id}`, { profile_custom_field: profileCustomField });
+    return res?.data;
+  }
+
+  static async destroy (profileCustomFieldId: number): Promise<void> {
+    const res: AxiosResponse<void> = await apiClient.delete(`/api/profile_custom_fields/${profileCustomFieldId}`);
+    return res?.data;
+  }
+}
diff --git a/app/frontend/src/javascript/api/proof-of-identity-file.ts b/app/frontend/src/javascript/api/proof-of-identity-file.ts
new file mode 100644
index 000000000..1fa1c192f
--- /dev/null
+++ b/app/frontend/src/javascript/api/proof-of-identity-file.ts
@@ -0,0 +1,36 @@
+import apiClient from './clients/api-client';
+import { AxiosResponse } from 'axios';
+import { ProofOfIdentityFile, ProofOfIdentityFileIndexFilter } from '../models/proof-of-identity-file';
+
+export default class ProofOfIdentityFileAPI {
+  static async index (filters?: ProofOfIdentityFileIndexFilter): Promise<Array<ProofOfIdentityFile>> {
+    const res: AxiosResponse<Array<ProofOfIdentityFile>> = await apiClient.get(`/api/proof_of_identity_files${this.filtersToQuery(filters)}`);
+    return res?.data;
+  }
+
+  static async get (id: number): Promise<ProofOfIdentityFile> {
+    const res: AxiosResponse<ProofOfIdentityFile> = await apiClient.get(`/api/proof_of_identity_files/${id}`);
+    return res?.data;
+  }
+
+  static async create (proofOfIdentityFile: FormData): Promise<ProofOfIdentityFile> {
+    const res: AxiosResponse<ProofOfIdentityFile> = await apiClient.post('/api/proof_of_identity_files', proofOfIdentityFile);
+    return res?.data;
+  }
+
+  static async update (id: number, proofOfIdentityFile: FormData): Promise<ProofOfIdentityFile> {
+    const res: AxiosResponse<ProofOfIdentityFile> = await apiClient.patch(`/api/proof_of_identity_files/${id}`, proofOfIdentityFile);
+    return res?.data;
+  }
+
+  static async destroy (proofOfIdentityFileId: number): Promise<void> {
+    const res: AxiosResponse<void> = await apiClient.delete(`/api/proof_of_identity_files/${proofOfIdentityFileId}`);
+    return res?.data;
+  }
+
+  private static filtersToQuery (filters?: ProofOfIdentityFileIndexFilter): string {
+    if (!filters) return '';
+
+    return '?' + Object.entries(filters).map(f => `${f[0]}=${f[1]}`).join('&');
+  }
+}
diff --git a/app/frontend/src/javascript/api/proof-of-identity-refusal.ts b/app/frontend/src/javascript/api/proof-of-identity-refusal.ts
new file mode 100644
index 000000000..efa8d5a77
--- /dev/null
+++ b/app/frontend/src/javascript/api/proof-of-identity-refusal.ts
@@ -0,0 +1,21 @@
+import apiClient from './clients/api-client';
+import { AxiosResponse } from 'axios';
+import { ProofOfIdentityRefusal, ProofOfIdentityRefusalIndexFilter } from '../models/proof-of-identity-refusal';
+
+export default class ProofOfIdentityRefusalAPI {
+  static async index (filters?: ProofOfIdentityRefusalIndexFilter): Promise<Array<ProofOfIdentityRefusal>> {
+    const res: AxiosResponse<Array<ProofOfIdentityRefusal>> = await apiClient.get(`/api/proof_of_identity_refusals${this.filtersToQuery(filters)}`);
+    return res?.data;
+  }
+
+  static async create (proofOfIdentityRefusal: ProofOfIdentityRefusal): Promise<ProofOfIdentityRefusal> {
+    const res: AxiosResponse<ProofOfIdentityRefusal> = await apiClient.post('/api/proof_of_identity_refusals', { proof_of_identity_refusal: proofOfIdentityRefusal });
+    return res?.data;
+  }
+
+  private static filtersToQuery (filters?: ProofOfIdentityRefusalIndexFilter): string {
+    if (!filters) return '';
+
+    return '?' + Object.entries(filters).map(f => `${f[0]}=${f[1]}`).join('&');
+  }
+}
diff --git a/app/frontend/src/javascript/api/proof-of-identity-type.ts b/app/frontend/src/javascript/api/proof-of-identity-type.ts
new file mode 100644
index 000000000..f44fda060
--- /dev/null
+++ b/app/frontend/src/javascript/api/proof-of-identity-type.ts
@@ -0,0 +1,36 @@
+import apiClient from './clients/api-client';
+import { AxiosResponse } from 'axios';
+import { ProofOfIdentityType, ProofOfIdentityTypeIndexfilter } from '../models/proof-of-identity-type';
+
+export default class ProofOfIdentityTypeAPI {
+  static async index (filters?: ProofOfIdentityTypeIndexfilter): Promise<Array<ProofOfIdentityType>> {
+    const res: AxiosResponse<Array<ProofOfIdentityType>> = await apiClient.get(`/api/proof_of_identity_types${this.filtersToQuery(filters)}`);
+    return res?.data;
+  }
+
+  static async get (id: number): Promise<ProofOfIdentityType> {
+    const res: AxiosResponse<ProofOfIdentityType> = await apiClient.get(`/api/proof_of_identity_types/${id}`);
+    return res?.data;
+  }
+
+  static async create (proofOfIdentityType: ProofOfIdentityType): Promise<ProofOfIdentityType> {
+    const res: AxiosResponse<ProofOfIdentityType> = await apiClient.post('/api/proof_of_identity_types', { proof_of_identity_type: proofOfIdentityType });
+    return res?.data;
+  }
+
+  static async update (proofOfIdentityType: ProofOfIdentityType): Promise<ProofOfIdentityType> {
+    const res: AxiosResponse<ProofOfIdentityType> = await apiClient.patch(`/api/proof_of_identity_types/${proofOfIdentityType.id}`, { proof_of_identity_type: proofOfIdentityType });
+    return res?.data;
+  }
+
+  static async destroy (proofOfIdentityTypeId: number): Promise<void> {
+    const res: AxiosResponse<void> = await apiClient.delete(`/api/proof_of_identity_types/${proofOfIdentityTypeId}`);
+    return res?.data;
+  }
+
+  private static filtersToQuery (filters?: ProofOfIdentityTypeIndexfilter): string {
+    if (!filters) return '';
+
+    return '?' + Object.entries(filters).map(f => `${f[0]}=${f[1]}`).join('&');
+  }
+}
diff --git a/app/frontend/src/javascript/components/machines/machine-card.tsx b/app/frontend/src/javascript/components/machines/machine-card.tsx
index f35a4fbe7..3059552a3 100644
--- a/app/frontend/src/javascript/components/machines/machine-card.tsx
+++ b/app/frontend/src/javascript/components/machines/machine-card.tsx
@@ -14,13 +14,14 @@ interface MachineCardProps {
   onEnrollRequested: (trainingId: number) => void,
   onError: (message: string) => void,
   onSuccess: (message: string) => void,
+  canProposePacks: boolean,
 }
 
 /**
  * This component is a box showing the picture of the given machine and two buttons: one to start the reservation process
  * and another to redirect the user to the machine description page.
  */
-const MachineCardComponent: React.FC<MachineCardProps> = ({ user, machine, onShowMachine, onReserveMachine, onError, onSuccess, onLoginRequested, onEnrollRequested }) => {
+const MachineCardComponent: React.FC<MachineCardProps> = ({ user, machine, onShowMachine, onReserveMachine, onError, onSuccess, onLoginRequested, onEnrollRequested, canProposePacks }) => {
   const { t } = useTranslation('public');
 
   // shall we display a loader to prevent double-clicking, while the machine details are loading?
@@ -65,6 +66,7 @@ const MachineCardComponent: React.FC<MachineCardProps> = ({ user, machine, onSho
           onReserveMachine={handleReserveMachine}
           onLoginRequested={onLoginRequested}
           onEnrollRequested={onEnrollRequested}
+          canProposePacks={canProposePacks}
           className="reserve-button">
           <i className="fas fa-bookmark" />
           {t('app.public.machine_card.book')}
@@ -80,10 +82,10 @@ const MachineCardComponent: React.FC<MachineCardProps> = ({ user, machine, onSho
   );
 };
 
-export const MachineCard: React.FC<MachineCardProps> = ({ user, machine, onShowMachine, onReserveMachine, onError, onSuccess, onLoginRequested, onEnrollRequested }) => {
+export const MachineCard: React.FC<MachineCardProps> = ({ user, machine, onShowMachine, onReserveMachine, onError, onSuccess, onLoginRequested, onEnrollRequested, canProposePacks }) => {
   return (
     <Loader>
-      <MachineCardComponent user={user} machine={machine} onShowMachine={onShowMachine} onReserveMachine={onReserveMachine} onError={onError} onSuccess={onSuccess} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} />
+      <MachineCardComponent user={user} machine={machine} onShowMachine={onShowMachine} onReserveMachine={onReserveMachine} onError={onError} onSuccess={onSuccess} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} canProposePacks={canProposePacks} />
     </Loader>
   );
 };
diff --git a/app/frontend/src/javascript/components/machines/machines-list.tsx b/app/frontend/src/javascript/components/machines/machines-list.tsx
index adf1f0f67..caca4c710 100644
--- a/app/frontend/src/javascript/components/machines/machines-list.tsx
+++ b/app/frontend/src/javascript/components/machines/machines-list.tsx
@@ -18,12 +18,13 @@ interface MachinesListProps {
   onReserveMachine: (machine: Machine) => void,
   onLoginRequested: () => Promise<User>,
   onEnrollRequested: (trainingId: number) => void,
+  canProposePacks: boolean,
 }
 
 /**
  * This component shows a list of all machines and allows filtering on that list.
  */
-const MachinesList: React.FC<MachinesListProps> = ({ onError, onSuccess, onShowMachine, onReserveMachine, onLoginRequested, onEnrollRequested, user }) => {
+const MachinesList: React.FC<MachinesListProps> = ({ onError, onSuccess, onShowMachine, onReserveMachine, onLoginRequested, onEnrollRequested, user, canProposePacks }) => {
   // shown machines
   const [machines, setMachines] = useState<Array<Machine>>(null);
   // we keep the full list of machines, for filtering
@@ -68,19 +69,20 @@ const MachinesList: React.FC<MachinesListProps> = ({ onError, onSuccess, onShowM
             onError={onError}
             onSuccess={onSuccess}
             onLoginRequested={onLoginRequested}
-            onEnrollRequested={onEnrollRequested} />;
+            onEnrollRequested={onEnrollRequested}
+            canProposePacks={canProposePacks}/>;
         })}
       </div>
     </div>
   );
 };
 
-const MachinesListWrapper: React.FC<MachinesListProps> = ({ user, onError, onSuccess, onShowMachine, onReserveMachine, onLoginRequested, onEnrollRequested }) => {
+const MachinesListWrapper: React.FC<MachinesListProps> = ({ user, onError, onSuccess, onShowMachine, onReserveMachine, onLoginRequested, onEnrollRequested, canProposePacks }) => {
   return (
     <Loader>
-      <MachinesList user={user} onError={onError} onSuccess={onSuccess} onShowMachine={onShowMachine} onReserveMachine={onReserveMachine} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} />
+      <MachinesList user={user} onError={onError} onSuccess={onSuccess} onShowMachine={onShowMachine} onReserveMachine={onReserveMachine} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} canProposePacks={canProposePacks}/>
     </Loader>
   );
 };
 
-Application.Components.component('machinesList', react2angular(MachinesListWrapper, ['user', 'onError', 'onSuccess', 'onShowMachine', 'onReserveMachine', 'onLoginRequested', 'onEnrollRequested']));
+Application.Components.component('machinesList', react2angular(MachinesListWrapper, ['user', 'onError', 'onSuccess', 'onShowMachine', 'onReserveMachine', 'onLoginRequested', 'onEnrollRequested', 'canProposePacks']));
diff --git a/app/frontend/src/javascript/components/machines/reserve-button.tsx b/app/frontend/src/javascript/components/machines/reserve-button.tsx
index f3262986b..1a0bb6bea 100644
--- a/app/frontend/src/javascript/components/machines/reserve-button.tsx
+++ b/app/frontend/src/javascript/components/machines/reserve-button.tsx
@@ -24,13 +24,14 @@ interface ReserveButtonProps {
   onReserveMachine: (machine: Machine) => void,
   onLoginRequested: () => Promise<User>,
   onEnrollRequested: (trainingId: number) => void,
-  className?: string
+  className?: string,
+  canProposePacks: boolean,
 }
 
 /**
  * Button component that makes the training verification before redirecting the user to the reservation calendar
  */
-const ReserveButtonComponent: React.FC<ReserveButtonProps> = ({ currentUser, machineId, onLoginRequested, onLoadingStart, onLoadingEnd, onError, onSuccess, onReserveMachine, onEnrollRequested, className, children }) => {
+const ReserveButtonComponent: React.FC<ReserveButtonProps> = ({ currentUser, machineId, onLoginRequested, onLoadingStart, onLoadingEnd, onError, onSuccess, onReserveMachine, onEnrollRequested, className, children, canProposePacks }) => {
   const { t } = useTranslation('shared');
 
   const [machine, setMachine] = useState<Machine>(null);
@@ -146,7 +147,7 @@ const ReserveButtonComponent: React.FC<ReserveButtonProps> = ({ currentUser, mac
     // if the customer has already bought a pack or if there's no active packs for this machine,
     // or customer has not any subscription if admin active pack only for subscription option
     // let the customer reserve
-    if (machine.current_user_has_packs || !machine.has_prepaid_packs_for_current_user || (isPackOnlyForSubscription && !user.subscribed_plan)) {
+    if (machine.current_user_has_packs || !machine.has_prepaid_packs_for_current_user || (isPackOnlyForSubscription && !user.subscribed_plan) || !canProposePacks) {
       return onReserveMachine(machine);
     }
 
@@ -182,14 +183,14 @@ const ReserveButtonComponent: React.FC<ReserveButtonProps> = ({ currentUser, mac
   );
 };
 
-export const ReserveButton: React.FC<ReserveButtonProps> = ({ currentUser, machineId, onLoginRequested, onLoadingStart, onLoadingEnd, onError, onSuccess, onReserveMachine, onEnrollRequested, className, children }) => {
+export const ReserveButton: React.FC<ReserveButtonProps> = ({ currentUser, machineId, onLoginRequested, onLoadingStart, onLoadingEnd, onError, onSuccess, onReserveMachine, onEnrollRequested, className, children, canProposePacks }) => {
   return (
     <Loader>
-      <ReserveButtonComponent currentUser={currentUser} machineId={machineId} onError={onError} onSuccess={onSuccess} onLoadingStart={onLoadingStart} onLoadingEnd={onLoadingEnd} onReserveMachine={onReserveMachine} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} className={className}>
+      <ReserveButtonComponent currentUser={currentUser} machineId={machineId} onError={onError} onSuccess={onSuccess} onLoadingStart={onLoadingStart} onLoadingEnd={onLoadingEnd} onReserveMachine={onReserveMachine} onLoginRequested={onLoginRequested} onEnrollRequested={onEnrollRequested} className={className} canProposePacks={canProposePacks}>
         {children}
       </ReserveButtonComponent>
     </Loader>
   );
 };
 
-Application.Components.component('reserveButton', react2angular(ReserveButton, ['currentUser', 'machineId', 'onLoadingStart', 'onLoadingEnd', 'onError', 'onSuccess', 'onReserveMachine', 'onLoginRequested', 'onEnrollRequested', 'className']));
+Application.Components.component('reserveButton', react2angular(ReserveButton, ['currentUser', 'machineId', 'onLoadingStart', 'onLoadingEnd', 'onError', 'onSuccess', 'onReserveMachine', 'onLoginRequested', 'onEnrollRequested', 'className', 'canProposePacks']));
diff --git a/app/frontend/src/javascript/components/plans/plan-card.tsx b/app/frontend/src/javascript/components/plans/plan-card.tsx
index 7178bac19..50f3c9a22 100644
--- a/app/frontend/src/javascript/components/plans/plan-card.tsx
+++ b/app/frontend/src/javascript/components/plans/plan-card.tsx
@@ -14,6 +14,7 @@ interface PlanCardProps {
   subscribedPlanId?: number,
   operator: User,
   isSelected: boolean,
+  canSelectPlan: boolean,
   onSelectPlan: (plan: Plan) => void,
   onLoginRequested: () => void,
 }
@@ -21,7 +22,7 @@ interface PlanCardProps {
 /**
  * This component is a "card" (visually), publicly presenting the details of a plan and allowing a user to subscribe.
  */
-const PlanCardComponent: React.FC<PlanCardProps> = ({ plan, userId, subscribedPlanId, operator, onSelectPlan, isSelected, onLoginRequested }) => {
+const PlanCardComponent: React.FC<PlanCardProps> = ({ plan, userId, subscribedPlanId, operator, onSelectPlan, isSelected, onLoginRequested, canSelectPlan }) => {
   const { t } = useTranslation('public');
   /**
    * Return the formatted localized amount of the given plan (eg. 20.5 => "20,50 €")
@@ -88,7 +89,9 @@ const PlanCardComponent: React.FC<PlanCardProps> = ({ plan, userId, subscribedPl
    * Callback triggered when the user select the plan
    */
   const handleSelectPlan = (): void => {
-    onSelectPlan(plan);
+    if (canSelectPlan) {
+      onSelectPlan(plan);
+    }
   };
   /**
    * Callback triggered when a visitor (not logged-in user) select a plan
@@ -141,10 +144,10 @@ const PlanCardComponent: React.FC<PlanCardProps> = ({ plan, userId, subscribedPl
   );
 };
 
-export const PlanCard: React.FC<PlanCardProps> = ({ plan, userId, subscribedPlanId, operator, onSelectPlan, isSelected, onLoginRequested }) => {
+export const PlanCard: React.FC<PlanCardProps> = ({ plan, userId, subscribedPlanId, operator, onSelectPlan, isSelected, onLoginRequested, canSelectPlan }) => {
   return (
     <Loader>
-      <PlanCardComponent plan={plan} userId={userId} subscribedPlanId={subscribedPlanId} operator={operator} isSelected={isSelected} onSelectPlan={onSelectPlan} onLoginRequested={onLoginRequested}/>
+      <PlanCardComponent plan={plan} userId={userId} subscribedPlanId={subscribedPlanId} operator={operator} isSelected={isSelected} onSelectPlan={onSelectPlan} onLoginRequested={onLoginRequested} canSelectPlan={canSelectPlan}/>
     </Loader>
   );
 };
diff --git a/app/frontend/src/javascript/components/plans/plans-list.tsx b/app/frontend/src/javascript/components/plans/plans-list.tsx
index 5dced13dd..e49f8a9e8 100644
--- a/app/frontend/src/javascript/components/plans/plans-list.tsx
+++ b/app/frontend/src/javascript/components/plans/plans-list.tsx
@@ -22,6 +22,7 @@ interface PlansListProps {
   operator?: User,
   customer?: User,
   subscribedPlanId?: number,
+  canSelectPlan: boolean,
 }
 
 // A list of plans, organized by group ID - then organized by plan-category ID (or NaN if the plan has no category)
@@ -30,7 +31,7 @@ type PlansTree = Map<number, Map<number, Array<Plan>>>;
 /**
  * This component display an organized list of plans to allow the end-user to select one and subscribe online
  */
-const PlansList: React.FC<PlansListProps> = ({ onError, onPlanSelection, onLoginRequest, operator, customer, subscribedPlanId }) => {
+const PlansList: React.FC<PlansListProps> = ({ onError, onPlanSelection, onLoginRequest, operator, customer, subscribedPlanId, canSelectPlan }) => {
   // all plans
   const [plans, setPlans] = useState<PlansTree>(null);
   // all plan-categories, ordered by weight
@@ -218,6 +219,7 @@ const PlansList: React.FC<PlansListProps> = ({ onError, onPlanSelection, onLogin
             operator={operator}
             isSelected={isSelectedPlan(plan)}
             onSelectPlan={handlePlanSelection}
+            canSelectPlan={canSelectPlan}
             onLoginRequested={onLoginRequest} />
         ))}
       </div>
@@ -239,12 +241,12 @@ const PlansList: React.FC<PlansListProps> = ({ onError, onPlanSelection, onLogin
   );
 };
 
-const PlansListWrapper: React.FC<PlansListProps> = ({ customer, onError, onPlanSelection, onLoginRequest, operator, subscribedPlanId }) => {
+const PlansListWrapper: React.FC<PlansListProps> = ({ customer, onError, onPlanSelection, onLoginRequest, operator, subscribedPlanId, canSelectPlan }) => {
   return (
     <Loader>
-      <PlansList customer={customer} onError={onError} onPlanSelection={onPlanSelection} onLoginRequest={onLoginRequest} operator={operator} subscribedPlanId={subscribedPlanId} />
+      <PlansList customer={customer} onError={onError} onPlanSelection={onPlanSelection} onLoginRequest={onLoginRequest} operator={operator} subscribedPlanId={subscribedPlanId} canSelectPlan={canSelectPlan} />
     </Loader>
   );
 };
 
-Application.Components.component('plansList', react2angular(PlansListWrapper, ['customer', 'onError', 'onPlanSelection', 'onLoginRequest', 'operator', 'subscribedPlanId']));
+Application.Components.component('plansList', react2angular(PlansListWrapper, ['customer', 'onError', 'onPlanSelection', 'onLoginRequest', 'operator', 'subscribedPlanId', 'canSelectPlan']));
diff --git a/app/frontend/src/javascript/components/profile-custom-fields/profile-custom-fields-list.tsx b/app/frontend/src/javascript/components/profile-custom-fields/profile-custom-fields-list.tsx
new file mode 100644
index 000000000..c3f388521
--- /dev/null
+++ b/app/frontend/src/javascript/components/profile-custom-fields/profile-custom-fields-list.tsx
@@ -0,0 +1,146 @@
+import React, { useState, useEffect, BaseSyntheticEvent } from 'react';
+import { useTranslation } from 'react-i18next';
+import { react2angular } from 'react2angular';
+import Switch from 'react-switch';
+import _ from 'lodash';
+import { Loader } from '../base/loader';
+import { IApplication } from '../../models/application';
+import { ProfileCustomField } from '../../models/profile-custom-field';
+import ProfileCustomFieldAPI from '../../api/profile-custom-field';
+
+declare const Application: IApplication;
+
+interface ProfileCustomFieldsListProps {
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component shows a list of all profile custom fields
+ */
+const ProfileCustomFieldsList: React.FC<ProfileCustomFieldsListProps> = ({ onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  const [profileCustomFields, setProfileCustomFields] = useState<Array<ProfileCustomField>>([]);
+  const [profileCustomFieldToEdit, setProfileCustomFieldToEdit] = useState<ProfileCustomField>(null);
+
+  // get profile custom fields
+  useEffect(() => {
+    ProfileCustomFieldAPI.index().then(pData => {
+      setProfileCustomFields(pData);
+    });
+  }, []);
+
+  const saveProfileCustomField = (profileCustomField: ProfileCustomField) => {
+    ProfileCustomFieldAPI.update(profileCustomField).then(data => {
+      const newFields = profileCustomFields.map(f => {
+        if (f.id === data.id) {
+          return data;
+        }
+        return f;
+      });
+      setProfileCustomFields(newFields);
+      if (profileCustomFieldToEdit) {
+        setProfileCustomFieldToEdit(null);
+      }
+      onSuccess(t('app.admin.settings.compte.organization_profile_custom_field_successfully_updated'));
+    }).catch(err => {
+      onError(t('app.admin.settings.compte.organization_profile_custom_field_unable_to_update') + err);
+    });
+  };
+
+  /**
+   * Callback triggered when the 'switch' is changed.
+   */
+  const handleSwitchChanged = (profileCustomField: ProfileCustomField, field: string) => {
+    return (value: boolean) => {
+      const _profileCustomField = _.clone(profileCustomField);
+      _profileCustomField[field] = value;
+      if (field === 'actived' && !value) {
+        _profileCustomField.required = false;
+      }
+      saveProfileCustomField(_profileCustomField);
+    };
+  };
+
+  const editProfileCustomFieldLabel = (profileCustomField: ProfileCustomField) => {
+    return () => {
+      setProfileCustomFieldToEdit(_.clone(profileCustomField));
+    };
+  };
+
+  const onChangeProfileCustomFieldLabel = (e: BaseSyntheticEvent) => {
+    const { value } = e.target;
+    setProfileCustomFieldToEdit({
+      ...profileCustomFieldToEdit,
+      label: value
+    });
+  };
+
+  const saveProfileCustomFieldLabel = () => {
+    saveProfileCustomField(profileCustomFieldToEdit);
+  };
+
+  const cancelEditProfileCustomFieldLabel = () => {
+    setProfileCustomFieldToEdit(null);
+  };
+
+  return (
+    <table className="table profile-custom-fields-list">
+      <thead>
+        <tr>
+          <th style={{ width: '50%' }}></th>
+          <th style={{ width: '25%' }}></th>
+          <th style={{ width: '25%' }}></th>
+        </tr>
+      </thead>
+      <tbody>
+        {profileCustomFields.map(field => {
+          return (
+            <tr key={field.id}>
+              <td>
+                {profileCustomFieldToEdit?.id !== field.id && field.label}
+                {profileCustomFieldToEdit?.id !== field.id && (
+                  <button className="btn btn-default edit-profile-custom-field-label m-r-xs pull-right" onClick={editProfileCustomFieldLabel(field)}>
+                    <i className="fa fa-edit"></i>
+                  </button>
+                )}
+                {profileCustomFieldToEdit?.id === field.id && (
+                  <div>
+                    <input className="profile-custom-field-label-input" style={{ width: '80%', height: '38px' }} type="text" value={profileCustomFieldToEdit.label} onChange={onChangeProfileCustomFieldLabel} />
+                    <span className="buttons pull-right">
+                      <button className="btn btn-success save-profile-custom-field-label m-r-xs" onClick={saveProfileCustomFieldLabel}>
+                        <i className="fa fa-check"></i>
+                      </button>
+                      <button className="btn btn-default delete-profile-custom-field-label m-r-xs" onClick={cancelEditProfileCustomFieldLabel}>
+                        <i className="fa fa-ban"></i>
+                      </button>
+                    </span>
+                  </div>
+                )}
+              </td>
+              <td>
+                <label htmlFor="profile-custom-field-actived" className="control-label m-r">{t('app.admin.settings.compte.organization_profile_custom_field.actived')}</label>
+                <Switch checked={field.actived} id="profile-custom-field-actived" onChange={handleSwitchChanged(field, 'actived')} className="v-middle"></Switch>
+              </td>
+              <td>
+                <label htmlFor="profile-custom-field-required" className="control-label m-r">{t('app.admin.settings.compte.organization_profile_custom_field.required')}</label>
+                <Switch checked={field.required} disabled={!field.actived} id="profile-custom-field-required" onChange={handleSwitchChanged(field, 'required')} className="v-middle"></Switch>
+              </td>
+            </tr>
+          );
+        })}
+      </tbody>
+    </table>
+  );
+};
+
+const ProfileCustomFieldsListWrapper: React.FC<ProfileCustomFieldsListProps> = ({ onSuccess, onError }) => {
+  return (
+    <Loader>
+      <ProfileCustomFieldsList onSuccess={onSuccess} onError={onError} />
+    </Loader>
+  );
+};
+
+Application.Components.component('profileCustomFieldsList', react2angular(ProfileCustomFieldsListWrapper, ['onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/components/proof-of-identity/delete-proof-of-identity-type-modal.tsx b/app/frontend/src/javascript/components/proof-of-identity/delete-proof-of-identity-type-modal.tsx
new file mode 100644
index 000000000..33d6fbb47
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/delete-proof-of-identity-type-modal.tsx
@@ -0,0 +1,37 @@
+import React from 'react';
+import { useTranslation } from 'react-i18next';
+import { FabModal } from '../base/fab-modal';
+import ProofOfIdentityTypeAPI from '../../api/proof-of-identity-type';
+
+interface DeleteProofOfIdentityTypeModalProps {
+  isOpen: boolean,
+  proofOfIdentityTypeId: number,
+  toggleModal: () => void,
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+export const DeleteProofOfIdentityTypeModal: React.FC<DeleteProofOfIdentityTypeModalProps> = ({ isOpen, toggleModal, onSuccess, proofOfIdentityTypeId, onError }) => {
+  const { t } = useTranslation('admin');
+
+  const handleDeleteProofOfIdentityType = async (): Promise<void> => {
+    try {
+      await ProofOfIdentityTypeAPI.destroy(proofOfIdentityTypeId);
+      onSuccess(t('app.admin.settings.compte.proof_of_identity_type_deleted'));
+    } catch (e) {
+      onError(t('app.admin.settings.compte.proof_of_identity_type_unable_to_delete') + e);
+    }
+  };
+
+  return (
+    <FabModal title={t('app.admin.settings.compte.confirmation_required')}
+      isOpen={isOpen}
+      toggleModal={toggleModal}
+      closeButton={true}
+      confirmButton={t('app.admin.settings.compte.confirm')}
+      onConfirm={handleDeleteProofOfIdentityType}
+      className="proof-of-identity-type-modal">
+      <p>{t('app.admin.settings.compte.do_you_really_want_to_delete_this_proof_of_identity_type')}</p>
+    </FabModal>
+  );
+};
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-files.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-files.tsx
new file mode 100644
index 000000000..1eac9b8a1
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-files.tsx
@@ -0,0 +1,169 @@
+import React, { useState, useEffect } from 'react';
+import { useTranslation } from 'react-i18next';
+import { react2angular } from 'react2angular';
+import _ from 'lodash';
+import { HtmlTranslate } from '../base/html-translate';
+import { Loader } from '../base/loader';
+import { User } from '../../models/user';
+import { IApplication } from '../../models/application';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { ProofOfIdentityFile } from '../../models/proof-of-identity-file';
+import ProofOfIdentityTypeAPI from '../../api/proof-of-identity-type';
+import ProofOfIdentityFileAPI from '../../api/proof-of-identity-file';
+
+declare const Application: IApplication;
+
+interface ProofOfIdentityFilesProps {
+  currentUser: User,
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+interface FilesType {
+  number?: File
+}
+
+/**
+ * This component upload the proof of identity file of member
+ */
+const ProofOfIdentityFiles: React.FC<ProofOfIdentityFilesProps> = ({ currentUser, onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  // list of proof of identity type
+  const [proofOfIdentityTypes, setProofOfIdentityTypes] = useState<Array<ProofOfIdentityType>>([]);
+  const [proofOfIdentityFiles, setProofOfIdentityFiles] = useState<Array<ProofOfIdentityFile>>([]);
+  const [files, setFiles] = useState<FilesType>({});
+  const [errors, setErrors] = useState<Array<number>>([]);
+
+  // get proof of identity type and files
+  useEffect(() => {
+    ProofOfIdentityTypeAPI.index({ group_id: currentUser.group_id }).then(tData => {
+      setProofOfIdentityTypes(tData);
+    });
+    ProofOfIdentityFileAPI.index({ user_id: currentUser.id }).then(fData => {
+      setProofOfIdentityFiles(fData);
+    });
+  }, []);
+
+  const getProofOfIdentityFileByType = (proofOfIdentityTypeId: number): ProofOfIdentityFile => {
+    return _.find<ProofOfIdentityFile>(proofOfIdentityFiles, { proof_of_identity_type_id: proofOfIdentityTypeId });
+  };
+
+  const hasFile = (proofOfIdentityTypeId: number): boolean => {
+    return files[proofOfIdentityTypeId] || getProofOfIdentityFileByType(proofOfIdentityTypeId);
+  };
+
+  /**
+   * Check if the current collection of proof of identity types is empty or not.
+   */
+  const hasProofOfIdentityTypes = (): boolean => {
+    return proofOfIdentityTypes.length > 0;
+  };
+
+  const onFileChange = (poitId: number) => {
+    return (event) => {
+      const fileSize = event.target.files[0].size;
+      let _errors = errors;
+      // 5m max
+      if (fileSize > 5242880) {
+        _errors = errors.concat(poitId);
+        setErrors(_errors);
+      } else {
+        _errors = errors.filter(e => e !== poitId);
+      }
+      setErrors(_errors);
+      setFiles({
+        ...files,
+        [poitId]: event.target.files[0]
+      });
+    };
+  };
+
+  const onFileUpload = async () => {
+    try {
+      for (const proofOfIdentityTypeId of Object.keys(files)) {
+        const formData = new FormData();
+
+        formData.append('proof_of_identity_file[user_id]', currentUser.id.toString());
+        formData.append('proof_of_identity_file[proof_of_identity_type_id]', proofOfIdentityTypeId);
+        formData.append('proof_of_identity_file[attachment]', files[proofOfIdentityTypeId]);
+        const proofOfIdentityFile = getProofOfIdentityFileByType(parseInt(proofOfIdentityTypeId, 10));
+        if (proofOfIdentityFile) {
+          await ProofOfIdentityFileAPI.update(proofOfIdentityFile.id, formData);
+        } else {
+          await ProofOfIdentityFileAPI.create(formData);
+        }
+      }
+      if (Object.keys(files).length > 0) {
+        ProofOfIdentityFileAPI.index({ user_id: currentUser.id }).then(fData => {
+          setProofOfIdentityFiles(fData);
+          setFiles({});
+          onSuccess(t('app.admin.members_edit.proof_of_identity_files_successfully_uploaded'));
+        });
+      }
+    } catch (e) {
+      onError(t('app.admin.members_edit.proof_of_identity_files_unable_to_upload') + e);
+    }
+  };
+
+  const getProofOfIdentityFileUrl = (poifId: number) => {
+    return `/api/proof_of_identity_files/${poifId}/download`;
+  };
+
+  return (
+    <section className="panel panel-default bg-light m-lg col-sm-12 col-md-12 col-lg-9">
+      <h3>{t('app.admin.members_edit.proof_of_identity_files')}</h3>
+      <p className="text-black font-sbold">{t('app.admin.members_edit.my_documents_info')}</p>
+      <div className="alert alert-warning">
+        <HtmlTranslate trKey="app.admin.members_edit.my_documents_alert" />
+      </div>
+      <div className="widget-content no-bg auto">
+        {proofOfIdentityTypes.map((poit: ProofOfIdentityType) => {
+          return (
+            <div className={`form-group ${errors.includes(poit.id) ? 'has-error' : ''}`} key={poit.id}>
+              <label className="control-label m-r">{poit.name}</label>
+              <div className="fileinput input-group">
+                <div className="form-control">
+                  {hasFile(poit.id) && (
+                    <div>
+                      <i className="glyphicon glyphicon-file fileinput-exists"></i> <span className="fileinput-filename">{files[poit.id]?.name || getProofOfIdentityFileByType(poit.id).attachment}</span>
+                    </div>
+                  )}
+                  {getProofOfIdentityFileByType(poit.id) && !files[poit.id] && (
+                    <a href={getProofOfIdentityFileUrl(getProofOfIdentityFileByType(poit.id).id)} target="_blank" style={{ position: 'absolute', right: '10px' }} rel="noreferrer"><i className="fa fa-download text-black "></i></a>
+                  )}
+                </div>
+                <span className="input-group-addon btn btn-default btn-file">
+                  {!hasFile(poit.id) && (
+                    <span className="fileinput-new">Parcourir</span>
+                  )}
+                  {hasFile(poit.id) && (
+                    <span className="fileinput-exists">Modifier</span>
+                  )}
+                  <input type="file"
+                    accept="application/pdf,image/jpeg,image/jpg,image/png"
+                    onChange={onFileChange(poit.id)}
+                    required />
+                </span>
+              </div>
+              {errors.includes(poit.id) && <span className="help-block">{t('app.admin.members_edit.proof_of_identity_file_size_error')}</span>}
+            </div>
+          );
+        })}
+      </div>
+      {hasProofOfIdentityTypes() && (
+        <button type="button" className="btn btn-warning m-b m-t pull-right" onClick={onFileUpload} disabled={errors.length > 0}>{t('app.admin.members_edit.save')}</button>
+      )}
+    </section>
+  );
+};
+
+const ProofOfIdentityFilesWrapper: React.FC<ProofOfIdentityFilesProps> = ({ currentUser, onSuccess, onError }) => {
+  return (
+    <Loader>
+      <ProofOfIdentityFiles currentUser={currentUser} onSuccess={onSuccess} onError={onError} />
+    </Loader>
+  );
+};
+
+Application.Components.component('proofOfIdentityFiles', react2angular(ProofOfIdentityFilesWrapper, ['currentUser', 'onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-form.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-form.tsx
new file mode 100644
index 000000000..8f065fa90
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-form.tsx
@@ -0,0 +1,75 @@
+import React, { BaseSyntheticEvent, useState } from 'react';
+import { useTranslation } from 'react-i18next';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+
+interface ProofOfIdentityRefusalFormProps {
+  proofOfIdentityTypes: Array<ProofOfIdentityType>,
+  onChange: (field: string, value: string | Array<number>) => void,
+}
+
+/**
+ * Form to set the stripe's public and private keys
+ */
+export const ProofOfIdentityRefusalForm: React.FC<ProofOfIdentityRefusalFormProps> = ({ proofOfIdentityTypes, onChange }) => {
+  const { t } = useTranslation('admin');
+
+  const [values, setValues] = useState<Array<number>>([]);
+  const [message, setMessage] = useState<string>('');
+
+  /**
+   * Callback triggered when the name has changed.
+   */
+  const handleMessageChange = (e: BaseSyntheticEvent): void => {
+    const { value } = e.target;
+    setMessage(value);
+    onChange('message', value);
+  };
+
+  /**
+   * Callback triggered when a checkbox is ticked or unticked.
+   * This function construct the resulting string, by adding or deleting the provided option identifier.
+   */
+  const handleProofOfIdnentityTypesChange = (value: number) => {
+    return (event: BaseSyntheticEvent) => {
+      let newValues: Array<number>;
+      if (event.target.checked) {
+        newValues = values.concat(value);
+      } else {
+        newValues = values.filter(x => x !== value);
+      }
+      setValues(newValues);
+      onChange('proof_of_identity_type_ids', newValues);
+    };
+  };
+
+  /**
+   * Verify if the provided option is currently ticked (i.e. included in the value string)
+   */
+  const isChecked = (value: number) => {
+    return values.includes(value);
+  };
+
+  return (
+    <div className="proof-of-identity-type-form">
+      <form name="proofOfIdentityRefusalForm">
+        <div>
+          {proofOfIdentityTypes.map(type => <div key={type.id} className="">
+            <label htmlFor={`checkbox-${type.id}`}>{type.name}</label>
+            <input id={`checkbox-${type.id}`} className="pull-right" type="checkbox" checked={isChecked(type.id)} onChange={handleProofOfIdnentityTypesChange(type.id)} />
+          </div>)}
+        </div>
+        <div className="proof-of-identity-refusal-comment-textarea m-t">
+          <label htmlFor="proof-of-identity-refusal-comment">{t('app.admin.members_edit.proof_of_identity_refusal_comment')}</label>
+          <textarea
+            id="proof-of-identity-refusal-comment"
+            value={message}
+            placeholder={t('app.admin.members_edit.proof_of_identity_refuse_input_message')}
+            onChange={handleMessageChange}
+            style={{ width: '100%' }}
+            rows={5}
+            required/>
+        </div>
+      </form>
+    </div>
+  );
+};
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-modal.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-modal.tsx
new file mode 100644
index 000000000..4bfb9fd9e
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-refusal-modal.tsx
@@ -0,0 +1,63 @@
+import React, { useState } from 'react';
+import { useTranslation } from 'react-i18next';
+import { FabModal } from '../base/fab-modal';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { ProofOfIdentityRefusal } from '../../models/proof-of-identity-refusal';
+import { User } from '../../models/user';
+import ProofOfIdentityRefusalAPI from '../../api/proof-of-identity-refusal';
+import { ProofOfIdentityRefusalForm } from './proof-of-identity-refusal-form';
+
+interface ProofOfIdentityRefusalModalProps {
+  isOpen: boolean,
+  toggleModal: () => void,
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+  proofOfIdentityTypes: Array<ProofOfIdentityType>,
+  operator: User,
+  member: User
+}
+
+export const ProofOfIdentityRefusalModal: React.FC<ProofOfIdentityRefusalModalProps> = ({ isOpen, toggleModal, onSuccess, proofOfIdentityTypes, operator, member, onError }) => {
+  const { t } = useTranslation('admin');
+
+  const [data, setData] = useState<ProofOfIdentityRefusal>({
+    id: null,
+    operator_id: operator.id,
+    user_id: member.id,
+    proof_of_identity_type_ids: [],
+    message: ''
+  });
+
+  const handleProofOfIdentityRefusalChanged = (field: string, value: string | Array<number>) => {
+    setData({
+      ...data,
+      [field]: value
+    });
+  };
+
+  const handleSaveProofOfIdentityRefusal = async (): Promise<void> => {
+    try {
+      await ProofOfIdentityRefusalAPI.create(data);
+      onSuccess(t('app.admin.members_edit.proof_of_identity_refusal_successfully_sent'));
+    } catch (e) {
+      onError(t('app.admin.members_edit.proof_of_identity_refusal_unable_to_send') + e);
+    }
+  };
+
+  const isPreventSaveProofOfIdentityRefusal = (): boolean => {
+    return !data.message || data.proof_of_identity_type_ids.length === 0;
+  };
+
+  return (
+    <FabModal title={t('app.admin.members_edit.proof_of_identity_refusal')}
+      isOpen={isOpen}
+      toggleModal={toggleModal}
+      closeButton={false}
+      confirmButton={t('app.admin.members_edit.confirm')}
+      onConfirm={handleSaveProofOfIdentityRefusal}
+      preventConfirm={isPreventSaveProofOfIdentityRefusal()}
+      className="proof-of-identity-type-modal">
+      <ProofOfIdentityRefusalForm proofOfIdentityTypes={proofOfIdentityTypes} onChange={handleProofOfIdentityRefusalChanged}/>
+    </FabModal>
+  );
+};
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-form.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-form.tsx
new file mode 100644
index 000000000..0f6e4a8b4
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-form.tsx
@@ -0,0 +1,90 @@
+import React from 'react';
+import { useTranslation } from 'react-i18next';
+import Select from 'react-select';
+import { FabInput } from '../base/fab-input';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { Group } from '../../models/group';
+
+interface ProofOfIdentityTypeFormProps {
+  groups: Array<Group>,
+  proofOfIdentityType?: ProofOfIdentityType,
+  onChange: (field: string, value: string | Array<number>) => void,
+}
+
+/**
+ * Option format, expected by react-select
+ * @see https://github.com/JedWatson/react-select
+ */
+type selectOption = { value: number, label: string };
+
+/**
+ * Form to set the stripe's public and private keys
+ */
+export const ProofOfIdentityTypeForm: React.FC<ProofOfIdentityTypeFormProps> = ({ groups, proofOfIdentityType, onChange }) => {
+  const { t } = useTranslation('admin');
+
+  /**
+   * Convert all themes to the react-select format
+   */
+  const buildOptions = (): Array<selectOption> => {
+    return groups.map(t => {
+      return { value: t.id, label: t.name };
+    });
+  };
+
+  /**
+   * Return the current groups(s), formatted to match the react-select format
+   */
+  const groupsValues = (): Array<selectOption> => {
+    const res = [];
+    const groupIds = proofOfIdentityType?.group_ids || [];
+    if (groupIds.length > 0) {
+      groups.forEach(t => {
+        if (groupIds.indexOf(t.id) > -1) {
+          res.push({ value: t.id, label: t.name });
+        }
+      });
+    }
+    return res;
+  };
+
+  /**
+   * Callback triggered when the selection of group has changed.
+   */
+  const handleGroupsChange = (selectedOptions: Array<selectOption>): void => {
+    onChange('group_ids', selectedOptions.map(o => o.value));
+  };
+
+  /**
+   * Callback triggered when the name has changed.
+   */
+  const handleNameChange = (value: string): void => {
+    onChange('name', value);
+  };
+
+  return (
+    <div className="proof-of-identity-type-form">
+      <div className="proof-of-identity-type-form-info">
+        {t('app.admin.settings.compte.proof_of_identity_type_form_info')}
+      </div>
+      <form name="proofOfIdentityTypeForm">
+        <div className="proof-of-identity-type-select m-t">
+          <Select defaultValue={groupsValues()}
+            placeholder={t('app.admin.settings.compte.proof_of_identity_type_select_group')}
+            onChange={handleGroupsChange}
+            options={buildOptions()}
+            isMulti />
+        </div>
+        <div className="proof-of-identity-type-input m-t">
+          <FabInput id="proof_of_identity_type_name"
+            icon={<i className="fa fa-edit" />}
+            defaultValue={proofOfIdentityType?.name || ''}
+            placeholder={t('app.admin.settings.compte.proof_of_identity_type_input_name')}
+            onChange={handleNameChange}
+            debounce={200}
+            required/>
+        </div>
+      </form>
+    </div>
+  );
+};
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-modal.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-modal.tsx
new file mode 100644
index 000000000..c425586cb
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-type-modal.tsx
@@ -0,0 +1,68 @@
+import React, { useState, useEffect } from 'react';
+import { useTranslation } from 'react-i18next';
+import { FabModal } from '../base/fab-modal';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { Group } from '../../models/group';
+import ProofOfIdentityTypeAPI from '../../api/proof-of-identity-type';
+import { ProofOfIdentityTypeForm } from './proof-of-identity-type-form';
+
+interface ProofOfIdentityTypeModalProps {
+  isOpen: boolean,
+  toggleModal: () => void,
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+  groups: Array<Group>,
+  proofOfIdentityType?: ProofOfIdentityType,
+}
+
+export const ProofOfIdentityTypeModal: React.FC<ProofOfIdentityTypeModalProps> = ({ isOpen, toggleModal, onSuccess, onError, proofOfIdentityType, groups }) => {
+  const { t } = useTranslation('admin');
+
+  const [data, setData] = useState<ProofOfIdentityType>({ id: proofOfIdentityType?.id, group_ids: proofOfIdentityType?.group_ids || [], name: proofOfIdentityType?.name || '' });
+
+  useEffect(() => {
+    setData({ id: proofOfIdentityType?.id, group_ids: proofOfIdentityType?.group_ids || [], name: proofOfIdentityType?.name || '' });
+  }, [proofOfIdentityType]);
+
+  const handleProofOfIdentityTypeChanged = (field: string, value: string | Array<number>) => {
+    setData({
+      ...data,
+      [field]: value
+    });
+  };
+
+  const handleSaveProofOfIdentityType = async (): Promise<void> => {
+    try {
+      if (proofOfIdentityType?.id) {
+        await ProofOfIdentityTypeAPI.update(data);
+        onSuccess(t('app.admin.settings.compte.proof_of_identity_type_successfully_updated'));
+      } else {
+        await ProofOfIdentityTypeAPI.create(data);
+        onSuccess(t('app.admin.settings.compte.proof_of_identity_type_successfully_created'));
+      }
+    } catch (e) {
+      if (proofOfIdentityType?.id) {
+        onError(t('app.admin.settings.compte.proof_of_identity_type_unable_to_update') + e);
+      } else {
+        onError(t('app.admin.settings.compte.proof_of_identity_type_unable_to_create') + e);
+      }
+    }
+  };
+
+  const isPreventSaveProofOfIdentityType = (): boolean => {
+    return !data.name || data.group_ids.length === 0;
+  };
+
+  return (
+    <FabModal title={t(`app.admin.settings.compte.${proofOfIdentityType ? 'edit' : 'new'}_proof_of_identity_type`)}
+      isOpen={isOpen}
+      toggleModal={toggleModal}
+      closeButton={false}
+      confirmButton={t(`app.admin.settings.compte.${proofOfIdentityType ? 'edit' : 'create'}`)}
+      onConfirm={handleSaveProofOfIdentityType}
+      preventConfirm={isPreventSaveProofOfIdentityType()}
+      className="proof-of-identity-type-modal">
+      <ProofOfIdentityTypeForm proofOfIdentityType={proofOfIdentityType} groups={groups} onChange={handleProofOfIdentityTypeChanged}/>
+    </FabModal>
+  );
+};
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-types-list.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-types-list.tsx
new file mode 100644
index 000000000..5c60048ff
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-types-list.tsx
@@ -0,0 +1,214 @@
+import React, { useState, useEffect } from 'react';
+import { useTranslation } from 'react-i18next';
+import { react2angular } from 'react2angular';
+import _ from 'lodash';
+import { HtmlTranslate } from '../base/html-translate';
+import { Loader } from '../base/loader';
+import { IApplication } from '../../models/application';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { Group } from '../../models/group';
+import { ProofOfIdentityTypeModal } from './proof-of-identity-type-modal';
+import { DeleteProofOfIdentityTypeModal } from './delete-proof-of-identity-type-modal';
+import GroupAPI from '../../api/group';
+import ProofOfIdentityTypeAPI from '../../api/proof-of-identity-type';
+
+declare const Application: IApplication;
+
+interface ProofOfIdentityTypesListProps {
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component shows a list of all payment schedules with their associated deadlines (aka. PaymentScheduleItem) and invoices
+ */
+const ProofOfIdentityTypesList: React.FC<ProofOfIdentityTypesListProps> = ({ onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  // list of displayed proof of identity type
+  const [proofOfIdentityTypes, setProofOfIdentityTypes] = useState<Array<ProofOfIdentityType>>([]);
+  const [proofOfIdentityType, setProofOfIdentityType] = useState<ProofOfIdentityType>(null);
+  const [proofOfIdentityTypeOrder, setProofOfIdentityTypeOrder] = useState<string>(null);
+  const [modalIsOpen, setModalIsOpen] = useState<boolean>(false);
+  const [groups, setGroups] = useState<Array<Group>>([]);
+  const [destroyModalIsOpen, setDestroyModalIsOpen] = useState<boolean>(false);
+  const [proofOfIdentityTypeId, setProofOfIdentityTypeId] = useState<number>(null);
+
+  // get groups
+  useEffect(() => {
+    GroupAPI.index({ disabled: false, admins: false }).then(data => {
+      setGroups(data);
+      ProofOfIdentityTypeAPI.index().then(pData => {
+        setProofOfIdentityTypes(pData);
+      });
+    });
+  }, []);
+
+  /**
+   * Check if the current collection of proof of identity types is empty or not.
+   */
+  const hasProofOfIdentityTypes = (): boolean => {
+    return proofOfIdentityTypes.length > 0;
+  };
+
+  const addProofOfIdentityType = (): void => {
+    setProofOfIdentityType(null);
+    setModalIsOpen(true);
+  };
+
+  const editProofOfIdentityType = (poit: ProofOfIdentityType): () => void => {
+    return (): void => {
+      setProofOfIdentityType(poit);
+      setModalIsOpen(true);
+    };
+  };
+
+  const toggleCreateAndEditModal = (): void => {
+    setModalIsOpen(false);
+  };
+
+  const saveProofOfIdentityTypeOnSuccess = (message: string): void => {
+    setModalIsOpen(false);
+    ProofOfIdentityTypeAPI.index().then(pData => {
+      setProofOfIdentityTypes(orderProofOfIdentityTypes(pData, proofOfIdentityTypeOrder));
+      onSuccess(message);
+    }).catch((error) => {
+      onError('Unable to load proof of identity types' + error);
+    });
+  };
+
+  const destroyProofOfIdentityType = (id: number): () => void => {
+    return (): void => {
+      setProofOfIdentityTypeId(id);
+      setDestroyModalIsOpen(true);
+    };
+  };
+
+  const toggleDestroyModal = (): void => {
+    setDestroyModalIsOpen(false);
+  };
+
+  const destroyProofOfIdentityTypeOnSuccess = (message: string): void => {
+    setDestroyModalIsOpen(false);
+    ProofOfIdentityTypeAPI.index().then(pData => {
+      setProofOfIdentityTypes(pData);
+      setProofOfIdentityTypes(orderProofOfIdentityTypes(pData, proofOfIdentityTypeOrder));
+      onSuccess(message);
+    }).catch((error) => {
+      onError('Unable to load proof of identity types' + error);
+    });
+  };
+
+  const setOrderProofOfIdentityType = (orderBy: string): () => void => {
+    return () => {
+      let order = orderBy;
+      if (proofOfIdentityTypeOrder === orderBy) {
+        order = `-${orderBy}`;
+      }
+      setProofOfIdentityTypeOrder(order);
+      setProofOfIdentityTypes(orderProofOfIdentityTypes(proofOfIdentityTypes, order));
+    };
+  };
+
+  const orderProofOfIdentityTypes = (poits: Array<ProofOfIdentityType>, orderBy?: string): Array<ProofOfIdentityType> => {
+    if (!orderBy) {
+      return poits;
+    }
+    const order = orderBy[0] === '-' ? 'desc' : 'asc';
+    if (orderBy.search('group_name') !== -1) {
+      return _.orderBy(poits, (poit: ProofOfIdentityType) => getGroupName(poit.group_ids), order);
+    } else {
+      return _.orderBy(poits, 'name', order);
+    }
+  };
+
+  const orderClassName = (orderBy: string): string => {
+    if (proofOfIdentityTypeOrder) {
+      const order = proofOfIdentityTypeOrder[0] === '-' ? proofOfIdentityTypeOrder.substr(1) : proofOfIdentityTypeOrder;
+      if (order === orderBy) {
+        return `fa fa-arrows-v ${proofOfIdentityTypeOrder[0] === '-' ? 'fa-sort-alpha-desc' : 'fa-sort-alpha-asc'}`;
+      }
+    }
+    return 'fa fa-arrows-v';
+  };
+
+  const getGroupName = (groupIds: Array<number>): string => {
+    if (groupIds.length === groups.length && groupIds.length > 0) {
+      return t('app.admin.settings.compte.all_groups');
+    }
+    const _groups = _.filter(groups, (g: Group) => { return groupIds.includes(g.id); });
+    return _groups.map((g: Group) => g.name).join(', ');
+  };
+
+  return (
+    <div className="panel panel-default m-t-md">
+      <div className="panel-heading">
+        <span className="font-sbold">{t('app.admin.settings.compte.add_proof_of_identity_types')}</span>
+      </div>
+      <div className="panel-body">
+        <div className="row">
+          <p className="m-h">{t('app.admin.settings.compte.proof_of_identity_type_info')}</p>
+          <div className="alert alert-warning m-h-md row">
+            <div className="col-md-8">
+              <HtmlTranslate trKey="app.admin.settings.compte.proof_of_identity_type_no_group_info" />
+            </div>
+            <a href="/#!/admin/members?tabs=1" className="btn btn-warning pull-right m-t m-r-md col-md-3" style={{ color: '#000' }}>{t('app.admin.settings.compte.create_groups')}</a>
+          </div>
+        </div>
+
+        <div className="row">
+          <h3 className="m-l inline">{t('app.admin.settings.compte.proof_of_identity_type_title')}</h3>
+          <button name="button" className="btn btn-warning pull-right m-t m-r-md" onClick={addProofOfIdentityType}>{t('app.admin.settings.compte.add_proof_of_identity_type_button')}</button>
+        </div>
+
+        <ProofOfIdentityTypeModal isOpen={modalIsOpen} groups={groups} proofOfIdentityType={proofOfIdentityType} toggleModal={toggleCreateAndEditModal} onSuccess={saveProofOfIdentityTypeOnSuccess} onError={onError} />
+        <DeleteProofOfIdentityTypeModal isOpen={destroyModalIsOpen} proofOfIdentityTypeId={proofOfIdentityTypeId} toggleModal={toggleDestroyModal} onSuccess={destroyProofOfIdentityTypeOnSuccess} onError={onError}/>
+
+        <table className="table proof-of-identity-type-list">
+          <thead>
+            <tr>
+              <th style={{ width: '40%' }}><a onClick={setOrderProofOfIdentityType('group_name')}>{t('app.admin.settings.compte.proof_of_identity_type.group_name')} <i className={orderClassName('group_name')}></i></a></th>
+              <th style={{ width: '40%' }}><a onClick={setOrderProofOfIdentityType('name')}>{t('app.admin.settings.compte.proof_of_identity_type.name')} <i className={orderClassName('name')}></i></a></th>
+              <th style={{ width: '20%' }} className="buttons-col"></th>
+            </tr>
+          </thead>
+          <tbody>
+            {proofOfIdentityTypes.map(poit => {
+              return (
+                <tr key={poit.id}>
+                  <td>{getGroupName(poit.group_ids)}</td>
+                  <td>{poit.name}</td>
+                  <td>
+                    <div className="buttons">
+                      <button className="btn btn-default edit-proof-of-identity-type m-r-xs" onClick={editProofOfIdentityType(poit)}>
+                        <i className="fa fa-edit"></i>
+                      </button>
+                      <button className="btn btn-danger delete-proof-of-identity-type" onClick={destroyProofOfIdentityType(poit.id)}>
+                        <i className="fa fa-trash"></i>
+                      </button>
+                    </div>
+                  </td>
+                </tr>
+              );
+            })}
+          </tbody>
+        </table>
+        {!hasProofOfIdentityTypes() && (
+          <p className="text-center">
+            <HtmlTranslate trKey="app.admin.settings.compte.no_proof_of_identity_types" />
+          </p>
+        )}
+      </div>
+    </div>
+  );
+};
+
+const ProofOfIdentityTypesListWrapper: React.FC<ProofOfIdentityTypesListProps> = ({ onSuccess, onError }) => {
+  return (
+    <Loader>
+      <ProofOfIdentityTypesList onSuccess={onSuccess} onError={onError} />
+    </Loader>
+  );
+};
+
+Application.Components.component('proofOfIdentityTypesList', react2angular(ProofOfIdentityTypesListWrapper, ['onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-validation.tsx b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-validation.tsx
new file mode 100644
index 000000000..de26ee14d
--- /dev/null
+++ b/app/frontend/src/javascript/components/proof-of-identity/proof-of-identity-validation.tsx
@@ -0,0 +1,121 @@
+import React, { useState, useEffect } from 'react';
+import { useTranslation } from 'react-i18next';
+import { react2angular } from 'react2angular';
+import _ from 'lodash';
+import { Loader } from '../base/loader';
+import { User } from '../../models/user';
+import { IApplication } from '../../models/application';
+import { ProofOfIdentityType } from '../../models/proof-of-identity-type';
+import { ProofOfIdentityFile } from '../../models/proof-of-identity-file';
+import ProofOfIdentityTypeAPI from '../../api/proof-of-identity-type';
+import ProofOfIdentityFileAPI from '../../api/proof-of-identity-file';
+import { ProofOfIdentityRefusalModal } from './proof-of-identity-refusal-modal';
+
+declare const Application: IApplication;
+
+interface ProofOfIdentityValidationProps {
+  operator: User,
+  member: User
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component shows a list of proof of identity file of member, admin can download and valid
+ **/
+const ProofOfIdentityValidation: React.FC<ProofOfIdentityValidationProps> = ({ operator, member, onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  // list of proof of identity type
+  const [proofOfIdentityTypes, setProofOfIdentityTypes] = useState<Array<ProofOfIdentityType>>([]);
+  const [proofOfIdentityFiles, setProofOfIdentityFiles] = useState<Array<ProofOfIdentityFile>>([]);
+  const [modalIsOpen, setModalIsOpen] = useState<boolean>(false);
+
+  // get groups
+  useEffect(() => {
+    ProofOfIdentityTypeAPI.index({ group_id: member.group_id }).then(tData => {
+      setProofOfIdentityTypes(tData);
+    });
+    ProofOfIdentityFileAPI.index({ user_id: member.id }).then(fData => {
+      setProofOfIdentityFiles(fData);
+    });
+  }, []);
+
+  const getProofOfIdentityFileByType = (proofOfIdentityTypeId: number): ProofOfIdentityFile => {
+    return _.find<ProofOfIdentityFile>(proofOfIdentityFiles, { proof_of_identity_type_id: proofOfIdentityTypeId });
+  };
+
+  /**
+   * Check if the current collection of proof of identity types is empty or not.
+   */
+  const hasProofOfIdentityTypes = (): boolean => {
+    return proofOfIdentityTypes.length > 0;
+  };
+
+  const getProofOfIdentityFileUrl = (poifId: number): string => {
+    return `/api/proof_of_identity_files/${poifId}/download`;
+  };
+
+  const openProofOfIdentityRefusalModal = (): void => {
+    setModalIsOpen(true);
+  };
+
+  const toggleModal = (): void => {
+    setModalIsOpen(false);
+  };
+
+  const saveProofOfIdentityRefusalOnSuccess = (message: string): void => {
+    setModalIsOpen(false);
+    onSuccess(message);
+  };
+
+  return (
+    <div>
+      <section className="panel panel-default bg-light m-lg col-sm-12 col-md-12 col-lg-7">
+        <h3>{t('app.admin.members_edit.proof_of_identity_files')}</h3>
+        <p className="text-black font-sbold">{t('app.admin.members_edit.find_below_the_proof_of_identity_files')}</p>
+        {proofOfIdentityTypes.map((poit: ProofOfIdentityType) => {
+          return (
+            <div key={poit.id} className="m-b">
+              <div className="m-b-xs">{poit.name}</div>
+              {getProofOfIdentityFileByType(poit.id) && (
+                <a href={getProofOfIdentityFileUrl(getProofOfIdentityFileByType(poit.id).id)} target="_blank" rel="noreferrer">
+                  <span className="m-r">{getProofOfIdentityFileByType(poit.id).attachment}</span>
+                  <i className="fa fa-download"></i>
+                </a>
+              )}
+              {!getProofOfIdentityFileByType(poit.id) && (
+                <div className="text-danger">{t('app.admin.members_edit.to_complete')}</div>
+              )}
+            </div>
+          );
+        })}
+      </section>
+      {hasProofOfIdentityTypes() && !member.validated_at && (
+        <section className="panel panel-default bg-light m-t-lg col-sm-12 col-md-12 col-lg-4">
+          <h3>{t('app.admin.members_edit.refuse_proof_of_identity_files')}</h3>
+          <p className="text-black">{t('app.admin.members_edit.refuse_proof_of_identity_files_info')}</p>
+          <button type="button" className="btn btn-warning m-b m-t" onClick={openProofOfIdentityRefusalModal}>{t('app.admin.members_edit.proof_of_identity_refusal')}</button>
+          <ProofOfIdentityRefusalModal
+            isOpen={modalIsOpen}
+            proofOfIdentityTypes={proofOfIdentityTypes}
+            toggleModal={toggleModal}
+            operator={operator}
+            member={member}
+            onError={onError}
+            onSuccess={saveProofOfIdentityRefusalOnSuccess}/>
+        </section>
+      )}
+    </div>
+  );
+};
+
+const ProofOfIdentityValidationWrapper: React.FC<ProofOfIdentityValidationProps> = ({ operator, member, onSuccess, onError }) => {
+  return (
+    <Loader>
+      <ProofOfIdentityValidation operator={operator} member={member} onSuccess={onSuccess} onError={onError} />
+    </Loader>
+  );
+};
+
+Application.Components.component('proofOfIdentityValidation', react2angular(ProofOfIdentityValidationWrapper, ['operator', 'member', 'onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/components/settings/boolean-setting.tsx b/app/frontend/src/javascript/components/settings/boolean-setting.tsx
new file mode 100644
index 000000000..fa16efadd
--- /dev/null
+++ b/app/frontend/src/javascript/components/settings/boolean-setting.tsx
@@ -0,0 +1,116 @@
+import React, { useEffect, useState } from 'react';
+import Switch from 'react-switch';
+import _ from 'lodash';
+import { AxiosResponse } from 'axios';
+import { useTranslation } from 'react-i18next';
+import { SettingName } from '../../models/setting';
+import { IApplication } from '../../models/application';
+import { react2angular } from 'react2angular';
+import SettingAPI from '../../api/setting';
+import { Loader } from '../base/loader';
+import { FabButton } from '../base/fab-button';
+
+declare const Application: IApplication;
+
+interface BooleanSettingProps {
+  name: SettingName,
+  label: string,
+  className?: string,
+  hideSave?: boolean,
+  onChange?: (value: string) => void,
+  onBeforeSave?: (message: string) => void,
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component allows to configure boolean value for a setting.
+ */
+export const BooleanSetting: React.FC<BooleanSettingProps> = ({ name, label, className, hideSave, onChange, onSuccess, onError, onBeforeSave }) => {
+  const { t } = useTranslation('admin');
+
+  const [value, setValue] = useState<boolean>(false);
+
+  // on component load, we retrieve the current value of the list from the API
+  useEffect(() => {
+    SettingAPI.get(name)
+      .then(res => {
+        setValue(res.value === 'true');
+        if (_.isFunction(onChange)) {
+          onChange(res.value === 'true' ? 'true' : 'false');
+        }
+      })
+      .catch(err => onError(err));
+  }, []);
+
+  /**
+   * Save the built string to the Setting API
+   */
+  const updateSetting = () => {
+    SettingAPI.update(name, value ? 'true' : 'false')
+      .then(() => onSuccess(t('app.admin.settings.customization_of_SETTING_successfully_saved', { SETTING: t(`app.admin.settings.${name}`) })))
+      .catch(err => {
+        if (err.status === 304) return;
+
+        if (err.status === 423) {
+          onError(t('app.admin.settings.error_SETTING_locked', { SETTING: t(`app.admin.settings.${name}`) }));
+          return;
+        }
+
+        console.log(err);
+        onError(t('app.admin.settings.an_error_occurred_saving_the_setting'));
+      });
+  };
+
+  /**
+   * Callback triggered when the 'save' button is clicked.
+   * Save the built string to the Setting API
+   */
+  const handleSave = () => {
+    if (_.isFunction(onBeforeSave)) {
+      const res = onBeforeSave({ value, name });
+      if (res && _.isFunction(res.then)) {
+        // res is a promise, wait for it before proceed
+        res.then((success: AxiosResponse) => {
+          if (success) updateSetting();
+          else setValue(false);
+        }, function () {
+          setValue(false);
+        });
+      } else {
+        if (res) updateSetting();
+        else setValue(false);
+      }
+    } else {
+      updateSetting();
+    }
+  };
+
+  /**
+   * Callback triggered when the 'switch' is changed.
+   */
+  const handleChanged = (_value: boolean) => {
+    setValue(_value);
+    if (_.isFunction(onChange)) {
+      onChange(_value ? 'true' : 'false');
+    }
+  };
+
+  return (
+    <div className={`form-group ${className || ''}`}>
+      <label htmlFor={`setting-${name}`} className="control-label m-r">{label}</label>
+      <Switch checked={value} id={`setting-${name}}`} onChange={handleChanged} className="v-middle"></Switch>
+      {!hideSave && <FabButton className="btn btn-warning m-l" onClick={handleSave}>{t('app.admin.check_list_setting.save')}</FabButton> }
+    </div>
+  );
+};
+
+export const BooleanSettingWrapper: React.FC<BooleanSettingProps> = ({ onChange, onSuccess, onError, label, className, name, hideSave, onBeforeSave }) => {
+  return (
+    <Loader>
+      <BooleanSetting label={label} name={name} onError={onError} onSuccess={onSuccess} onChange={onChange} className={className} hideSave={hideSave} onBeforeSave={onBeforeSave} />
+    </Loader>
+  );
+};
+
+Application.Components.component('booleanSetting', react2angular(BooleanSettingWrapper, ['className', 'name', 'label', 'onChange', 'onSuccess', 'onError', 'onBeforeSave']));
diff --git a/app/frontend/src/javascript/components/settings/check-list-setting.tsx b/app/frontend/src/javascript/components/settings/check-list-setting.tsx
index 909509e58..446c9b510 100644
--- a/app/frontend/src/javascript/components/settings/check-list-setting.tsx
+++ b/app/frontend/src/javascript/components/settings/check-list-setting.tsx
@@ -1,5 +1,6 @@
 import React, { BaseSyntheticEvent, useEffect, useState } from 'react';
 import { useTranslation } from 'react-i18next';
+import _ from 'lodash';
 import { SettingName } from '../../models/setting';
 import { IApplication } from '../../models/application';
 import { react2angular } from 'react2angular';
@@ -13,8 +14,11 @@ interface CheckListSettingProps {
   name: SettingName,
   label: string,
   className?: string,
+  hideSave?: boolean,
+  defaultValue?: string,
   // availableOptions must be like this [['option1', 'label 1'], ['option2', 'label 2']]
   availableOptions: Array<Array<string>>,
+  onChange?: (value: string) => void,
   onSuccess: (message: string) => void,
   onError: (message: string) => void,
 }
@@ -23,7 +27,7 @@ interface CheckListSettingProps {
  * This component allows to configure multiples values for a setting, like a check list.
  * The result is stored as a string, composed of the checked values, e.g. 'option1,option2'
  */
-const CheckListSetting: React.FC<CheckListSettingProps> = ({ name, label, className, availableOptions, onSuccess, onError }) => {
+export const CheckListSetting: React.FC<CheckListSettingProps> = ({ name, label, hideSave, defaultValue, className, availableOptions, onChange, onSuccess, onError }) => {
   const { t } = useTranslation('admin');
 
   const [value, setValue] = useState<string>(null);
@@ -31,7 +35,13 @@ const CheckListSetting: React.FC<CheckListSettingProps> = ({ name, label, classN
   // on component load, we retrieve the current value of the list from the API
   useEffect(() => {
     SettingAPI.get(name)
-      .then(res => setValue(res.value))
+      .then(res => {
+        const value = res.value === null && defaultValue ? defaultValue : res.value;
+        setValue(value);
+        if (_.isFunction(onChange)) {
+          onChange(value);
+        }
+      })
       .catch(err => onError(err));
   }, []);
 
@@ -45,9 +55,16 @@ const CheckListSetting: React.FC<CheckListSettingProps> = ({ name, label, classN
         let newValue = value ? `${value},` : '';
         newValue += option;
         setValue(newValue);
+        if (_.isFunction(onChange)) {
+          onChange(newValue);
+        }
       } else {
         const regex = new RegExp(`,?${option}`, 'g');
-        setValue(value.replace(regex, ''));
+        const newValue = value.replace(regex, '');
+        setValue(newValue);
+        if (_.isFunction(onChange)) {
+          onChange(newValue);
+        }
       }
     };
   };
@@ -76,15 +93,15 @@ const CheckListSetting: React.FC<CheckListSettingProps> = ({ name, label, classN
         <input id={`setting-${name}-${option[0]}`} type="checkbox" checked={isChecked(option[0])} onChange={toggleCheckbox(option[0])} />
         <label htmlFor={`setting-${name}-${option[0]}`}>{option[1]}</label>
       </div>)}
-      <FabButton className="save" onClick={handleSave}>{t('app.admin.check_list_setting.save')}</FabButton>
+      {!hideSave && <FabButton className="save" onClick={handleSave}>{t('app.admin.check_list_setting.save')}</FabButton>}
     </div>
   );
 };
 
-const CheckListSettingWrapper: React.FC<CheckListSettingProps> = ({ availableOptions, onSuccess, onError, label, className, name }) => {
+export const CheckListSettingWrapper: React.FC<CheckListSettingProps> = ({ availableOptions, onSuccess, onError, label, className, name, hideSave, defaultValue, onChange }) => {
   return (
     <Loader>
-      <CheckListSetting availableOptions={availableOptions} label={label} name={name} onError={onError} onSuccess={onSuccess} className={className} />
+      <CheckListSetting availableOptions={availableOptions} label={label} name={name} onError={onError} onSuccess={onSuccess} className={className} hideSave={hideSave} defaultValue={defaultValue} onChange={onChange} />
     </Loader>
   );
 };
diff --git a/app/frontend/src/javascript/components/settings/user-validation-setting.tsx b/app/frontend/src/javascript/components/settings/user-validation-setting.tsx
new file mode 100644
index 000000000..6bd4b9bd7
--- /dev/null
+++ b/app/frontend/src/javascript/components/settings/user-validation-setting.tsx
@@ -0,0 +1,112 @@
+import React, { useState } from 'react';
+import { useTranslation } from 'react-i18next';
+import { SettingName } from '../../models/setting';
+import { IApplication } from '../../models/application';
+import { react2angular } from 'react2angular';
+import SettingAPI from '../../api/setting';
+import { Loader } from '../base/loader';
+import { FabButton } from '../base/fab-button';
+import { BooleanSetting } from './boolean-setting';
+import { CheckListSetting } from './check-list-setting';
+
+declare const Application: IApplication;
+
+interface UserValidationSettingProps {
+  onSuccess: (message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component allows to configure user validation required setting.
+ */
+const UserValidationSetting: React.FC<UserValidationSettingProps> = ({ onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  const [userValidationRequired, setUserValidationRequired] = useState<string>('false');
+  const userValidationRequiredListDefault = ['subscription', 'machine', 'event', 'space', 'training', 'pack'];
+  const [userValidationRequiredList, setUserValidationRequiredList] = useState<string>(null);
+  const userValidationRequiredOptions = userValidationRequiredListDefault.map(l => {
+    return [l, t(`app.admin.settings.compte.user_validation_required_list.${l}`)];
+  });
+
+  /**
+   * Save the built string to the Setting API
+   */
+  const updateSetting = (name: SettingName, value: string) => {
+    SettingAPI.update(name, value)
+      .then(() => {
+        if (name === SettingName.UserValidationRequired) {
+          onSuccess(t('app.admin.settings.customization_of_SETTING_successfully_saved', { SETTING: t(`app.admin.settings.compte.${name}`) }));
+        }
+      }).catch(err => {
+        if (err.status === 304) return;
+
+        if (err.status === 423) {
+          if (name === SettingName.UserValidationRequired) {
+            onError(t('app.admin.settings.error_SETTING_locked', { SETTING: t(`app.admin.settings.compte.${name}`) }));
+          }
+          return;
+        }
+
+        console.log(err);
+        onError(t('app.admin.settings.an_error_occurred_saving_the_setting'));
+      });
+  };
+
+  /**
+   * Callback triggered when the 'save' button is clicked.
+   */
+  const handleSave = () => {
+    updateSetting(SettingName.UserValidationRequired, userValidationRequired);
+    if (userValidationRequiredList !== null) {
+      if (userValidationRequired === 'true') {
+        updateSetting(SettingName.UserValidationRequiredList, userValidationRequiredList);
+      } else {
+        updateSetting(SettingName.UserValidationRequiredList, null);
+      }
+    }
+  };
+
+  return (
+    <div className="user-validation-setting">
+      <BooleanSetting name={SettingName.UserValidationRequired}
+        label={t('app.admin.settings.compte.user_validation_required_option_label')}
+        hideSave={true}
+        onChange={setUserValidationRequired}
+        onSuccess={onSuccess}
+        onError={onError}>
+      </BooleanSetting>
+      {userValidationRequired === 'true' &&
+        <div>
+          <h4>{t('app.admin.settings.compte.user_validation_required_list_title')}</h4>
+          <p>
+            {t('app.admin.settings.compte.user_validation_required_list_info')}
+          </p>
+          <p className="alert alert-warning">
+            {t('app.admin.settings.compte.user_validation_required_list_other_info')}
+          </p>
+          <CheckListSetting name={SettingName.UserValidationRequiredList}
+            label=""
+            availableOptions={userValidationRequiredOptions}
+            defaultValue={userValidationRequiredListDefault.join(',')}
+            hideSave={true}
+            onChange={setUserValidationRequiredList}
+            onSuccess={onSuccess}
+            onError={onError}>
+          </CheckListSetting>
+        </div>
+      }
+      <FabButton className="btn btn-warning m-t" onClick={handleSave}>{t('app.admin.check_list_setting.save')}</FabButton>
+    </div>
+  );
+};
+
+const UserValidationSettingWrapper: React.FC<UserValidationSettingProps> = ({ onSuccess, onError }) => {
+  return (
+    <Loader>
+      <UserValidationSetting onError={onError} onSuccess={onSuccess} />
+    </Loader>
+  );
+};
+
+Application.Components.component('userValidationSetting', react2angular(UserValidationSettingWrapper, ['onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/components/user/user-validation.tsx b/app/frontend/src/javascript/components/user/user-validation.tsx
new file mode 100644
index 000000000..235994e0a
--- /dev/null
+++ b/app/frontend/src/javascript/components/user/user-validation.tsx
@@ -0,0 +1,58 @@
+import React, { useState, useEffect } from 'react';
+import Switch from 'react-switch';
+import _ from 'lodash';
+import { useTranslation } from 'react-i18next';
+import { User } from '../../models/user';
+import { IApplication } from '../../models/application';
+import { react2angular } from 'react2angular';
+import MemberAPI from '../../api/member';
+
+declare const Application: IApplication;
+
+interface UserValidationProps {
+  member: User
+  onSuccess: (user: User, message: string) => void,
+  onError: (message: string) => void,
+}
+
+/**
+ * This component allows to configure boolean value for a setting.
+ */
+export const UserValidation: React.FC<UserValidationProps> = ({ member, onSuccess, onError }) => {
+  const { t } = useTranslation('admin');
+
+  const [value, setValue] = useState<boolean>(!!(member?.validated_at));
+
+  useEffect(() => {
+    setValue(!!(member?.validated_at));
+  }, [member]);
+
+  /**
+   * Callback triggered when the 'switch' is changed.
+   */
+  const handleChanged = (_value: boolean) => {
+    setValue(_value);
+    const _member = _.clone(member);
+    if (_value) {
+      _member.validated_at = new Date();
+    } else {
+      _member.validated_at = null;
+    }
+    MemberAPI.validate(_member)
+      .then((user: User) => {
+        onSuccess(user, t(`app.admin.members_edit.${_value ? 'validate' : 'invalidate'}_member_success`));
+      }).catch(err => {
+        setValue(!_value);
+        onError(t(`app.admin.members_edit.${_value ? 'validate' : 'invalidate'}_member_error`) + err);
+      });
+  };
+
+  return (
+    <div className="user-validation">
+      <label htmlFor="user-validation-switch" className="control-label m-r">{t('app.admin.members_edit.validate_account')}</label>
+      <Switch checked={value} id="user-validation-switch" onChange={handleChanged} className="v-middle"></Switch>
+    </div>
+  );
+};
+
+Application.Components.component('userValidation', react2angular(UserValidation, ['member', 'onSuccess', 'onError']));
diff --git a/app/frontend/src/javascript/controllers/admin/invoices.js b/app/frontend/src/javascript/controllers/admin/invoices.js
index e8fc61411..2abcaa1dd 100644
--- a/app/frontend/src/javascript/controllers/admin/invoices.js
+++ b/app/frontend/src/javascript/controllers/admin/invoices.js
@@ -834,7 +834,9 @@ Application.Controllers.controller('InvoicesController', ['$scope', '$state', 'I
           $scope.stripeSecretKey = (res.isPresent ? STRIPE_SK_HIDDEN : '');
         });
         Payment.onlinePaymentStatus(function (res) {
-          $scope.onlinePaymentStatus = res.status;
+          const value = res.status.toString();
+          $scope.onlinePaymentStatus = value;
+          $scope.allSettings.online_payment_module = value;
         });
       }
     };
diff --git a/app/frontend/src/javascript/controllers/admin/members.js b/app/frontend/src/javascript/controllers/admin/members.js
index c01c793dd..c5b234268 100644
--- a/app/frontend/src/javascript/controllers/admin/members.js
+++ b/app/frontend/src/javascript/controllers/admin/members.js
@@ -126,8 +126,8 @@ class MembersController {
 /**
  * Controller used in the members/groups management page
  */
-Application.Controllers.controller('AdminMembersController', ['$scope', '$sce', '$uibModal', 'membersPromise', 'adminsPromise', 'partnersPromise', 'managersPromise', 'growl', 'Admin', 'AuthService', 'dialogs', '_t', 'Member', 'Export', 'User', 'uiTourService', 'settingsPromise',
-  function ($scope, $sce, $uibModal, membersPromise, adminsPromise, partnersPromise, managersPromise, growl, Admin, AuthService, dialogs, _t, Member, Export, User, uiTourService, settingsPromise) {
+Application.Controllers.controller('AdminMembersController', ['$scope', '$sce', '$uibModal', 'membersPromise', 'adminsPromise', 'partnersPromise', 'managersPromise', 'growl', 'Admin', 'AuthService', 'dialogs', '_t', 'Member', 'Export', 'User', 'uiTourService', 'settingsPromise', '$location',
+  function ($scope, $sce, $uibModal, membersPromise, adminsPromise, partnersPromise, managersPromise, growl, Admin, AuthService, dialogs, _t, Member, Export, User, uiTourService, settingsPromise, $location) {
   /* PRIVATE STATIC CONSTANTS */
 
     // number of users loaded each time we click on 'load more...'
@@ -160,6 +160,9 @@ Application.Controllers.controller('AdminMembersController', ['$scope', '$sce',
     // admins list
     $scope.admins = adminsPromise.admins.filter(function (m) { return m.id !== Fablab.adminSysId; });
 
+    // is user validation required
+    $scope.enableUserValidationRequired = (settingsPromise.user_validation_required === 'true');
+
     // Admins ordering/sorting. Default: not sorted
     $scope.orderAdmin = null;
 
@@ -176,7 +179,8 @@ Application.Controllers.controller('AdminMembersController', ['$scope', '$sce',
     $scope.orderManager = null;
 
     // default tab: members list
-    $scope.tabs = { active: 0, sub: 0 };
+    const defaultActiveTab = $location.search().tabs ? parseInt($location.search().tabs, 10) : 0;
+    $scope.tabs = { active: defaultActiveTab, sub: 0 };
 
     /**
      * Change the members ordering criterion to the one provided
@@ -650,8 +654,8 @@ Application.Controllers.controller('AdminMembersController', ['$scope', '$sce',
 /**
  * Controller used in the member edition page
  */
-Application.Controllers.controller('EditMemberController', ['$scope', '$state', '$transition$', 'Member', 'Training', 'dialogs', 'growl', 'Group', 'Subscription', 'CSRF', 'memberPromise', 'tagsPromise', '$uibModal', 'Plan', '$filter', '_t', 'walletPromise', 'transactionsPromise', 'activeProviderPromise', 'Wallet', 'settingsPromise',
-  function ($scope, $state, $transition$, Member, Training, dialogs, growl, Group, Subscription, CSRF, memberPromise, tagsPromise, $uibModal, Plan, $filter, _t, walletPromise, transactionsPromise, activeProviderPromise, Wallet, settingsPromise) {
+Application.Controllers.controller('EditMemberController', ['$scope', '$state', '$transition$', 'Member', 'Training', 'dialogs', 'growl', 'Group', 'Subscription', 'CSRF', 'memberPromise', 'tagsPromise', '$uibModal', 'Plan', '$filter', '_t', 'walletPromise', 'transactionsPromise', 'activeProviderPromise', 'Wallet', 'settingsPromise', 'ProofOfIdentityType',
+  function ($scope, $state, $transition$, Member, Training, dialogs, growl, Group, Subscription, CSRF, memberPromise, tagsPromise, $uibModal, Plan, $filter, _t, walletPromise, transactionsPromise, activeProviderPromise, Wallet, settingsPromise, ProofOfIdentityType) {
   /* PUBLIC SCOPE */
 
     // API URL where the form will be posted
@@ -675,6 +679,9 @@ Application.Controllers.controller('EditMemberController', ['$scope', '$state',
     // is the address required in _member_form?
     $scope.addressRequired = (settingsPromise.address_required === 'true');
 
+    // is user validation required
+    $scope.enableUserValidationRequired = (settingsPromise.user_validation_required === 'true');
+
     // the user subscription
     if (($scope.user.subscribed_plan != null) && ($scope.user.subscription != null)) {
       $scope.subscription = $scope.user.subscription;
@@ -806,6 +813,18 @@ Application.Controllers.controller('EditMemberController', ['$scope', '$state',
       $scope.subscription = newSubscription;
     };
 
+    /**
+     * Callback triggered if validate member was successfully taken
+     */
+    $scope.onValidateMemberSuccess = (_user, message) => {
+      growl.success(message);
+      setTimeout(() => {
+        $scope.user = _user;
+        $scope.user.statistic_profile.birthday = moment(_user.statistic_profile.birthday).toDate();
+        $scope.$apply();
+      }, 50);
+    };
+
     /**
      * Callback triggered in case of error
      */
@@ -821,6 +840,13 @@ Application.Controllers.controller('EditMemberController', ['$scope', '$state',
       $state.go('app.admin.members');
     };
 
+    /**
+     * Callback triggered in case of success
+     */
+    $scope.onSuccess = (message) => {
+      growl.success(message);
+    };
+
     $scope.createWalletCreditModal = function (user, wallet) {
       const modalInstance = $uibModal.open({
         animation: true,
@@ -918,6 +944,10 @@ Application.Controllers.controller('EditMemberController', ['$scope', '$state',
         });
       }
 
+      ProofOfIdentityType.query({ group_id: $scope.user.group_id }, function (proofOfIdentityTypes) {
+        $scope.hasProofOfIdentityTypes = proofOfIdentityTypes.length > 0;
+      });
+
       // Using the MembersController
       return new MembersController($scope, $state, Group, Training);
     };
diff --git a/app/frontend/src/javascript/controllers/admin/pricing.js b/app/frontend/src/javascript/controllers/admin/pricing.js
index 63af4beca..da5afd614 100644
--- a/app/frontend/src/javascript/controllers/admin/pricing.js
+++ b/app/frontend/src/javascript/controllers/admin/pricing.js
@@ -573,11 +573,15 @@ Application.Controllers.controller('EditPricingController', ['$scope', '$state',
       $uibModal.open({
         templateUrl: '/admin/pricing/sendCoupon.html',
         resolve: {
-          coupon () { return coupon; }
+          coupon () { return coupon; },
+          enableUserValidationRequired () { return settingsPromise.user_validation_required === 'true'; }
         },
         size: 'md',
-        controller: ['$scope', '$uibModalInstance', 'Coupon', 'coupon', '_t', function ($scope, $uibModalInstance, Coupon, coupon, _t) {
-        // Member, receiver of the coupon
+        controller: ['$scope', '$uibModalInstance', 'Coupon', 'coupon', '_t', 'enableUserValidationRequired', function ($scope, $uibModalInstance, Coupon, coupon, _t, enableUserValidationRequired) {
+          // Global config: is the user validation required ?
+          $scope.enableUserValidationRequired = enableUserValidationRequired;
+
+          // Member, receiver of the coupon
           $scope.ctrl =
           { member: null };
 
diff --git a/app/frontend/src/javascript/controllers/admin/projects.js b/app/frontend/src/javascript/controllers/admin/projects.js
index ee663e439..e721bda34 100644
--- a/app/frontend/src/javascript/controllers/admin/projects.js
+++ b/app/frontend/src/javascript/controllers/admin/projects.js
@@ -265,6 +265,20 @@ Application.Controllers.controller('AdminProjectsController', ['$scope', '$state
       }
     };
 
+    /**
+     * Shows a success message forwarded from a child react component
+     */
+    $scope.onSuccess = function (message) {
+      growl.success(message);
+    };
+
+    /**
+     * Callback triggered by react components
+     */
+    $scope.onError = function (message) {
+      growl.error(message);
+    };
+
     /* PRIVATE SCOPE */
 
     /**
diff --git a/app/frontend/src/javascript/controllers/application.js b/app/frontend/src/javascript/controllers/application.js
index 4179ae26b..218e10f08 100644
--- a/app/frontend/src/javascript/controllers/application.js
+++ b/app/frontend/src/javascript/controllers/application.js
@@ -79,9 +79,11 @@ Application.Controllers.controller('ApplicationController', ['$rootScope', '$sco
           resolve: {
             settingsPromise: ['Setting', function (Setting) {
               return Setting.query({ names: "['phone_required', 'recaptcha_site_key', 'confirmation_required', 'address_required']" }).$promise;
-            }]
+            }],
+            profileCustomFieldsPromise: ['ProfileCustomField', function (ProfileCustomField) { return ProfileCustomField.query({}).$promise; }],
+            proofOfIdentityTypesPromise: ['ProofOfIdentityType', function (ProofOfIdentityType) { return ProofOfIdentityType.query({}).$promise; }]
           },
-          controller: ['$scope', '$uibModalInstance', 'Group', 'CustomAsset', 'settingsPromise', 'growl', '_t', function ($scope, $uibModalInstance, Group, CustomAsset, settingsPromise, growl, _t) {
+          controller: ['$scope', '$uibModalInstance', 'Group', 'CustomAsset', 'settingsPromise', 'growl', '_t', 'profileCustomFieldsPromise', 'proofOfIdentityTypesPromise', function ($scope, $uibModalInstance, Group, CustomAsset, settingsPromise, growl, _t, profileCustomFieldsPromise, proofOfIdentityTypesPromise) {
             // default parameters for the date picker in the account creation modal
             $scope.datePicker = {
               format: Fablab.uibDateFormat,
@@ -108,6 +110,8 @@ Application.Controllers.controller('ApplicationController', ['$rootScope', '$sco
               $scope.datePicker.opened = true;
             };
 
+            $scope.profileCustomFields = profileCustomFieldsPromise.filter(f => f.actived);
+
             // retrieve the groups (standard, student ...)
             Group.query(function (groups) {
               $scope.groups = groups;
@@ -126,7 +130,23 @@ Application.Controllers.controller('ApplicationController', ['$rootScope', '$sco
               is_allow_contact: true,
               is_allow_newsletter: false,
               // reCaptcha response, received from Google (through AJAX) and sent to server for validation
-              recaptcha: undefined
+              recaptcha: undefined,
+              invoicing_profile_attributes: {
+                user_profile_custom_fields_attributes: $scope.profileCustomFields.map(f => {
+                  return { profile_custom_field_id: f.id };
+                })
+              }
+            };
+
+            $scope.hasProofOfIdentityTypes = function (groupId) {
+              return proofOfIdentityTypesPromise.filter(t => t.group_ids.includes(groupId)).length > 0;
+            };
+
+            $scope.groupName = function (groupId) {
+              if (!$scope.enabledGroups || groupId === undefined || groupId === null) {
+                return '';
+              }
+              return $scope.enabledGroups.find(g => g.id === groupId).name;
             };
 
             // Errors display
diff --git a/app/frontend/src/javascript/controllers/dashboard.js b/app/frontend/src/javascript/controllers/dashboard.js
index 8e550be90..8f4346e3e 100644
--- a/app/frontend/src/javascript/controllers/dashboard.js
+++ b/app/frontend/src/javascript/controllers/dashboard.js
@@ -12,8 +12,8 @@
  */
 'use strict';
 
-Application.Controllers.controller('DashboardController', ['$scope', 'memberPromise', 'trainingsPromise', 'SocialNetworks', 'growl',
-  function ($scope, memberPromise, trainingsPromise, SocialNetworks, growl) {
+Application.Controllers.controller('DashboardController', ['$scope', 'memberPromise', 'trainingsPromise', 'SocialNetworks', 'growl', 'proofOfIdentityTypesPromise',
+  function ($scope, memberPromise, trainingsPromise, SocialNetworks, growl, proofOfIdentityTypesPromise) {
     // Current user's profile
     $scope.user = memberPromise;
 
@@ -23,6 +23,8 @@ Application.Controllers.controller('DashboardController', ['$scope', 'memberProm
       networks: SocialNetworks
     };
 
+    $scope.hasProofOfIdentityTypes = proofOfIdentityTypesPromise.length > 0;
+
     /**
      * Check if the member has used his training credits for the given credit
      * @param trainingCredits array of credits used by the member
@@ -60,7 +62,9 @@ Application.Controllers.controller('DashboardController', ['$scope', 'memberProm
     /**
      * Kind of constructor: these actions will be realized first when the controller is loaded
      */
-    const initialize = () => $scope.social.networks = filterNetworks();
+    const initialize = () => {
+      $scope.social.networks = filterNetworks();
+    };
 
     /**
      * Filter the social networks or websites that are associated with the profile of the user provided in promise
@@ -77,6 +81,27 @@ Application.Controllers.controller('DashboardController', ['$scope', 'memberProm
       return networks;
     };
 
+    /**
+     * Callback used in case of error
+     */
+    $scope.onSuccess = function (message) {
+      growl.success(message);
+    };
+
+    /**
+     * Callback used in PaymentScheduleDashboard, in case of error
+     */
+    $scope.onError = function (message) {
+      growl.error(message);
+    };
+
+    /**
+     * Callback triggered when the user has successfully updated his card
+     */
+    $scope.onCardUpdateSuccess = function (message) {
+      growl.success(message);
+    };
+
     // !!! MUST BE CALLED AT THE END of the controller
     return initialize();
   }
diff --git a/app/frontend/src/javascript/controllers/events.js.erb b/app/frontend/src/javascript/controllers/events.js.erb
index b9db09443..16a3012b5 100644
--- a/app/frontend/src/javascript/controllers/events.js.erb
+++ b/app/frontend/src/javascript/controllers/events.js.erb
@@ -160,6 +160,9 @@ Application.Controllers.controller('ShowEventController', ['$scope', '$state', '
     // Get the details for the current event (event's id is recovered from the current URL)
     $scope.event = eventPromise;
 
+    // the application global settings
+    $scope.settings = settingsPromise;
+
     // List of price categories for the events
     $scope.priceCategories = priceCategoriesPromise;
 
@@ -178,6 +181,9 @@ Application.Controllers.controller('ShowEventController', ['$scope', '$state', '
     // Message displayed to the end user about rules that applies to events reservations
     $scope.eventExplicationsAlert = settingsPromise.event_explications_alert;
 
+    // Global config: is the user validation required ?
+    $scope.enableUserValidationRequired = settingsPromise.user_validation_required === 'true';
+
     // online payments (by card)
     $scope.onlinePayment = {
       showModal: false,
@@ -243,6 +249,17 @@ Application.Controllers.controller('ShowEventController', ['$scope', '$state', '
       return resetEventReserve();
     };
 
+    $scope.isUserValidatedByType = () => {
+      return helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'event');
+    };
+
+    $scope.isShowReserveEventButton = () => {
+      return $scope.event.nb_free_places > 0 &&
+        !$scope.reserve.toReserve &&
+        $scope.now.isBefore($scope.event.end_date) &&
+        helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'event');
+    };
+
     /**
      * Callback to allow the user to set the details for his reservation
      */
diff --git a/app/frontend/src/javascript/controllers/header.js b/app/frontend/src/javascript/controllers/header.js
index 02fe583fb..59d2a31ad 100644
--- a/app/frontend/src/javascript/controllers/header.js
+++ b/app/frontend/src/javascript/controllers/header.js
@@ -1,7 +1,7 @@
 'use strict';
 
-Application.Controllers.controller('HeaderController', ['$scope', '$transitions', '$state', 'settingsPromise',
-  function ($scope, $transitions, $state, settingsPromise) {
+Application.Controllers.controller('HeaderController', ['$scope', '$transitions', '$state', 'settingsPromise', 'ProofOfIdentityType', 'AuthService',
+  function ($scope, $transitions, $state, settingsPromise, ProofOfIdentityType, AuthService) {
     $scope.aboutPage = ($state.current.name === 'app.public.about');
 
     $transitions.onStart({}, function (trans) {
@@ -14,5 +14,13 @@ Application.Controllers.controller('HeaderController', ['$scope', '$transitions'
     $scope.registrationEnabled = function () {
       return settingsPromise.public_registrations === 'true';
     };
+
+    $scope.dropdownOnToggled = function (open) {
+      if (open) {
+        ProofOfIdentityType.query({ group_id: $scope.currentUser.group_id }, function (proofOfIdentityTypes) {
+          $scope.hasProofOfIdentityTypes = proofOfIdentityTypes.length > 0;
+        });
+      }
+    };
   }
 ]);
diff --git a/app/frontend/src/javascript/controllers/machines.js.erb b/app/frontend/src/javascript/controllers/machines.js.erb
index cacd5cd1a..ef0e6fb83 100644
--- a/app/frontend/src/javascript/controllers/machines.js.erb
+++ b/app/frontend/src/javascript/controllers/machines.js.erb
@@ -98,10 +98,13 @@ class MachinesController {
 /**
  * Controller used in the public listing page, allowing everyone to see the list of machines
  */
-Application.Controllers.controller('MachinesController', ['$scope', '$state', '_t', 'AuthService', 'Machine', '$uibModal', 'settingsPromise', 'Member', 'uiTourService', 'machinesPromise', 'growl',
-  function ($scope, $state, _t, AuthService, Machine, $uibModal, settingsPromise, Member, uiTourService, machinesPromise, growl) {
+Application.Controllers.controller('MachinesController', ['$scope', '$state', '_t', 'AuthService', 'Machine', '$uibModal', 'settingsPromise', 'Member', 'uiTourService', 'machinesPromise', 'growl', 'helpers',
+  function ($scope, $state, _t, AuthService, Machine, $uibModal, settingsPromise, Member, uiTourService, machinesPromise, growl, helpers) {
     /* PUBLIC SCOPE */
 
+    // the application global settings
+    $scope.settings = settingsPromise;
+
     /**
      * Redirect the user to the machine details page
      */
@@ -145,6 +148,10 @@ Application.Controllers.controller('MachinesController', ['$scope', '$state', '_
       $state.go('app.logged.machines_reserve', { id: machine.slug });
     }
 
+    $scope.canProposePacks = function () {
+      return AuthService.isAuthorized(['admin', 'manager']) || !helpers.isUserValidationRequired($scope.settings, 'pack') || (helpers.isUserValidationRequired($scope.settings, 'pack') && helpers.isUserValidated($scope.currentUser));
+    };
+
     /**
      * Setup the feature-tour for the machines page. (admins only)
      * This is intended as a contextual help (when pressing F1)
@@ -357,8 +364,8 @@ Application.Controllers.controller('ShowMachineController', ['$scope', '$state',
  * This controller workflow is pretty similar to the trainings reservation controller.
  */
 
-Application.Controllers.controller('ReserveMachineController', ['$scope', '$transition$', '_t', 'moment', 'Auth', '$timeout', 'Member', 'Availability', 'plansPromise', 'groupsPromise', 'machinePromise', 'settingsPromise', 'uiCalendarConfig', 'CalendarConfig', 'Reservation', 'growl',
-  function ($scope, $transition$, _t, moment, Auth, $timeout, Member, Availability, plansPromise, groupsPromise, machinePromise, settingsPromise, uiCalendarConfig, CalendarConfig, Reservation, growl) {
+Application.Controllers.controller('ReserveMachineController', ['$scope', '$transition$', '_t', 'moment', 'Auth', '$timeout', 'Member', 'Availability', 'plansPromise', 'groupsPromise', 'machinePromise', 'settingsPromise', 'uiCalendarConfig', 'CalendarConfig', 'Reservation', 'growl', 'helpers', 'AuthService',
+  function ($scope, $transition$, _t, moment, Auth, $timeout, Member, Availability, plansPromise, groupsPromise, machinePromise, settingsPromise, uiCalendarConfig, CalendarConfig, Reservation, growl, helpers, AuthService) {
   /* PRIVATE STATIC CONSTANTS */
 
     // Slot free to be booked
@@ -436,6 +443,9 @@ Application.Controllers.controller('ReserveMachineController', ['$scope', '$tran
     // Global config: message to the end user concerning the machine bookings
     $scope.machineExplicationsAlert = settingsPromise.machine_explications_alert;
 
+    // Global config: is the user validation required ?
+    $scope.enableUserValidationRequired = settingsPromise.user_validation_required === 'true';
+
     /**
      * Change the last selected slot's appearance to looks like 'added to cart'
      */
@@ -579,6 +589,10 @@ Application.Controllers.controller('ReserveMachineController', ['$scope', '$tran
       }, 50);
     };
 
+    $scope.canSelectPlan = function () {
+      return helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'subscription');
+    };
+
     /**
      * Check if the provided plan is currently selected
      * @param plan {Object} Resource plan
@@ -652,6 +666,10 @@ Application.Controllers.controller('ReserveMachineController', ['$scope', '$tran
       growl.error(message);
     };
 
+    $scope.isShowPacks = function () {
+      return !helpers.isUserValidationRequired($scope.settings, 'pack') || (helpers.isUserValidationRequired($scope.settings, 'pack') && helpers.isUserValidated($scope.ctrl.member));
+    };
+
     /* PRIVATE SCOPE */
 
     /**
@@ -679,6 +697,9 @@ Application.Controllers.controller('ReserveMachineController', ['$scope', '$tran
      * if it's too late).
      */
     const calendarEventClickCb = function (event, jsEvent, view) {
+      if (!AuthService.isAuthorized(['admin', 'manager']) && (helpers.isUserValidationRequired($scope.settings, 'machine') && !helpers.isUserValidated($scope.ctrl.member))) {
+        return;
+      }
       $scope.selectedEvent = event;
       return $scope.selectionTime = new Date();
     };
diff --git a/app/frontend/src/javascript/controllers/members.js b/app/frontend/src/javascript/controllers/members.js
index 6225fe689..461892fb7 100644
--- a/app/frontend/src/javascript/controllers/members.js
+++ b/app/frontend/src/javascript/controllers/members.js
@@ -72,8 +72,8 @@ Application.Controllers.controller('MembersController', ['$scope', 'Member', 'me
 /**
  * Controller used when editing the current user's profile (in dashboard)
  */
-Application.Controllers.controller('EditProfileController', ['$scope', '$rootScope', '$state', '$window', '$sce', '$cookies', '$injector', 'Member', 'Auth', 'Session', 'activeProviderPromise', 'settingsPromise', 'growl', 'dialogs', 'CSRF', 'memberPromise', 'groups', '_t',
-  function ($scope, $rootScope, $state, $window, $sce, $cookies, $injector, Member, Auth, Session, activeProviderPromise, settingsPromise, growl, dialogs, CSRF, memberPromise, groups, _t) {
+Application.Controllers.controller('EditProfileController', ['$scope', '$rootScope', '$state', '$window', '$sce', '$cookies', '$injector', 'Member', 'Auth', 'Session', 'activeProviderPromise', 'settingsPromise', 'growl', 'dialogs', 'CSRF', 'memberPromise', 'groups', '_t', 'proofOfIdentityTypesPromise', 'ProofOfIdentityType',
+  function ($scope, $rootScope, $state, $window, $sce, $cookies, $injector, Member, Auth, Session, activeProviderPromise, settingsPromise, growl, dialogs, CSRF, memberPromise, groups, _t, proofOfIdentityTypesPromise, ProofOfIdentityType) {
     /* PUBLIC SCOPE */
 
     // API URL where the form will be posted
@@ -128,6 +128,8 @@ Application.Controllers.controller('EditProfileController', ['$scope', '$rootSco
     // This boolean value will tell if the current user is the system admin
     $scope.isAdminSys = memberPromise.id === Fablab.adminSysId;
 
+    $scope.hasProofOfIdentityTypes = proofOfIdentityTypesPromise.length > 0;
+
     /**
      * Return the group object, identified by the ID set in $scope.userGroup
      */
@@ -150,6 +152,9 @@ Application.Controllers.controller('EditProfileController', ['$scope', '$rootSco
       }, 50);
       $rootScope.currentUser.group_id = user.group_id;
       Auth._currentUser.group_id = user.group_id;
+      ProofOfIdentityType.query({ group_id: user.group_id }, function (proofOfIdentityTypes) {
+        $scope.hasProofOfIdentityTypes = proofOfIdentityTypes.length > 0;
+      });
     };
 
     /**
@@ -309,6 +314,7 @@ Application.Controllers.controller('EditProfileController', ['$scope', '$rootSco
       if ($scope.activeProvider.providable_type !== 'DatabaseProvider') {
         $scope.preventPassword = true;
       }
+
       // bind fields protection with sso fields
       return angular.forEach(activeProviderPromise.mapping, map => $scope.preventField[map] = true);
     };
diff --git a/app/frontend/src/javascript/controllers/plans.js b/app/frontend/src/javascript/controllers/plans.js
index 7c2c3a8a2..3431ef582 100644
--- a/app/frontend/src/javascript/controllers/plans.js
+++ b/app/frontend/src/javascript/controllers/plans.js
@@ -35,6 +35,9 @@ Application.Controllers.controller('PlansIndexController', ['$scope', '$rootScop
     // the application global settings
     $scope.settings = settingsPromise;
 
+    // Global config: is the user validation required ?
+    $scope.enableUserValidationRequired = settingsPromise.user_validation_required === 'true';
+
     // Discount coupon to apply to the basket, if any
     $scope.coupon =
       { applied: null };
@@ -61,6 +64,9 @@ Application.Controllers.controller('PlansIndexController', ['$scope', '$rootScop
     $scope.selectPlan = function (plan) {
       setTimeout(() => {
         if ($scope.isAuthenticated()) {
+          if (!AuthService.isAuthorized(['admin', 'manager']) && (helpers.isUserValidationRequired($scope.settings, 'subscription') && !helpers.isUserValidated($scope.ctrl.member))) {
+            return;
+          }
           if ($scope.selectedPlan !== plan) {
             $scope.selectedPlan = plan;
             $scope.planSelectionTime = new Date();
@@ -72,6 +78,10 @@ Application.Controllers.controller('PlansIndexController', ['$scope', '$rootScop
       }, 50);
     };
 
+    $scope.canSelectPlan = function () {
+      return helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'subscription');
+    };
+
     /**
      * Open the modal dialog allowing the user to log into the system
      */
diff --git a/app/frontend/src/javascript/controllers/spaces.js.erb b/app/frontend/src/javascript/controllers/spaces.js.erb
index c23d5e104..eafae63fe 100644
--- a/app/frontend/src/javascript/controllers/spaces.js.erb
+++ b/app/frontend/src/javascript/controllers/spaces.js.erb
@@ -307,8 +307,8 @@ Application.Controllers.controller('ShowSpaceController', ['$scope', '$state', '
  * per slots.
  */
 
-Application.Controllers.controller('ReserveSpaceController', ['$scope', '$transition$', 'Auth', '$timeout', 'Availability', 'Member', 'plansPromise', 'groupsPromise', 'settingsPromise', 'spacePromise', '_t', 'uiCalendarConfig', 'CalendarConfig', 'Reservation',
-  function ($scope, $transition$, Auth, $timeout, Availability, Member, plansPromise, groupsPromise, settingsPromise, spacePromise, _t, uiCalendarConfig, CalendarConfig, Reservation) {
+Application.Controllers.controller('ReserveSpaceController', ['$scope', '$transition$', 'Auth', '$timeout', 'Availability', 'Member', 'plansPromise', 'groupsPromise', 'settingsPromise', 'spacePromise', '_t', 'uiCalendarConfig', 'CalendarConfig', 'Reservation', 'helpers', 'AuthService',
+  function ($scope, $transition$, Auth, $timeout, Availability, Member, plansPromise, groupsPromise, settingsPromise, spacePromise, _t, uiCalendarConfig, CalendarConfig, Reservation, helpers, AuthService) {
     /* PRIVATE STATIC CONSTANTS */
 
     // Color of the selected event backgound
@@ -383,6 +383,9 @@ Application.Controllers.controller('ReserveSpaceController', ['$scope', '$transi
     // Global config: message to the end user concerning the space reservation
     $scope.spaceExplicationsAlert = settingsPromise.space_explications_alert;
 
+    // Global config: is the user validation required ?
+    $scope.enableUserValidationRequired = settingsPromise.user_validation_required === 'true';
+
     /**
      * Change the last selected slot's appearance to looks like 'added to cart'
      */
@@ -523,6 +526,10 @@ Application.Controllers.controller('ReserveSpaceController', ['$scope', '$transi
       }, 50);
     };
 
+    $scope.canSelectPlan = function () {
+      return helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'subscription');
+    };
+
     /**
      * Check if the provided plan is currently selected
      * @param plan {Object} Resource plan
@@ -617,6 +624,9 @@ Application.Controllers.controller('ReserveSpaceController', ['$scope', '$transi
      * @see http://fullcalendar.io/docs/mouse/eventClick/
      */
     const calendarEventClickCb = function (event, jsEvent, view) {
+      if (!AuthService.isAuthorized(['admin', 'manager']) && (helpers.isUserValidationRequired($scope.settings, 'space') && !helpers.isUserValidated($scope.ctrl.member))) {
+        return;
+      }
       $scope.selectedEvent = event;
       $scope.selectionTime = new Date();
     };
diff --git a/app/frontend/src/javascript/controllers/trainings.js.erb b/app/frontend/src/javascript/controllers/trainings.js.erb
index 949b243d2..ec381ac13 100644
--- a/app/frontend/src/javascript/controllers/trainings.js.erb
+++ b/app/frontend/src/javascript/controllers/trainings.js.erb
@@ -91,8 +91,8 @@ Application.Controllers.controller('ShowTrainingController', ['$scope', '$state'
  * training can be reserved during the reservation process (the shopping cart may contains only one training and a subscription).
  */
 
-Application.Controllers.controller('ReserveTrainingController', ['$scope', '$transition$', 'Auth', 'AuthService', '$timeout', 'Availability', 'Member', 'plansPromise', 'groupsPromise', 'settingsPromise', 'trainingPromise', '_t', 'uiCalendarConfig', 'CalendarConfig', 'Reservation',
-  function ($scope, $transition$, Auth, AuthService, $timeout, Availability, Member, plansPromise, groupsPromise, settingsPromise, trainingPromise, _t, uiCalendarConfig, CalendarConfig, Reservation) {
+Application.Controllers.controller('ReserveTrainingController', ['$scope', '$transition$', 'Auth', 'AuthService', '$timeout', 'Availability', 'Member', 'plansPromise', 'groupsPromise', 'settingsPromise', 'trainingPromise', '_t', 'uiCalendarConfig', 'CalendarConfig', 'Reservation', 'helpers',
+  function ($scope, $transition$, Auth, AuthService, $timeout, Availability, Member, plansPromise, groupsPromise, settingsPromise, trainingPromise, _t, uiCalendarConfig, CalendarConfig, Reservation, helpers) {
   /* PRIVATE STATIC CONSTANTS */
 
     // Color of the selected event backgound
@@ -170,6 +170,9 @@ Application.Controllers.controller('ReserveTrainingController', ['$scope', '$tra
     // Global config: message to the end user giving advice about the training reservation
     $scope.trainingInformationMessage = settingsPromise.training_information_message;
 
+    // Global config: is the user validation required ?
+    $scope.enableUserValidationRequired = settingsPromise.user_validation_required === 'true';
+
     /**
      * Change the last selected slot's appearance to looks like 'added to cart'
      */
@@ -313,6 +316,10 @@ Application.Controllers.controller('ReserveTrainingController', ['$scope', '$tra
       }, 50);
     };
 
+    $scope.canSelectPlan = function () {
+      return helpers.isUserValidatedByType($scope.ctrl.member, $scope.settings, 'subscription');
+    };
+
     /**
      * Check if the provided plan is currently selected
      * @param plan {Object} Resource plan
@@ -407,6 +414,9 @@ Application.Controllers.controller('ReserveTrainingController', ['$scope', '$tra
      * @see http://fullcalendar.io/docs/mouse/eventClick/
      */
     const calendarEventClickCb = function (event, jsEvent, view) {
+      if (!AuthService.isAuthorized(['admin', 'manager']) && (helpers.isUserValidationRequired($scope.settings, 'training') && !helpers.isUserValidated($scope.ctrl.member))) {
+        return;
+      }
       $scope.selectedEvent = event;
       if ($transition$.params().id === 'all') {
         $scope.training = event.training;
diff --git a/app/frontend/src/javascript/controllers/wallet.js b/app/frontend/src/javascript/controllers/wallet.js
index c0fb0701c..839e8421e 100644
--- a/app/frontend/src/javascript/controllers/wallet.js
+++ b/app/frontend/src/javascript/controllers/wallet.js
@@ -1,7 +1,7 @@
 'use strict';
 
-Application.Controllers.controller('WalletController', ['$scope', 'walletPromise', 'transactionsPromise',
-  function ($scope, walletPromise, transactionsPromise) {
+Application.Controllers.controller('WalletController', ['$scope', 'walletPromise', 'transactionsPromise', 'proofOfIdentityTypesPromise',
+  function ($scope, walletPromise, transactionsPromise, proofOfIdentityTypesPromise) {
   /* PUBLIC SCOPE */
 
     // current user wallet
@@ -9,5 +9,7 @@ Application.Controllers.controller('WalletController', ['$scope', 'walletPromise
 
     // current wallet transactions
     $scope.transactions = transactionsPromise;
+
+    $scope.hasProofOfIdentityTypes = proofOfIdentityTypesPromise.length > 0;
   }
 ]);
diff --git a/app/frontend/src/javascript/directives/cart.js b/app/frontend/src/javascript/directives/cart.js
index 968b169e7..dd1e544a0 100644
--- a/app/frontend/src/javascript/directives/cart.js
+++ b/app/frontend/src/javascript/directives/cart.js
@@ -389,6 +389,11 @@ Application.Directives.directive('cart', ['$rootScope', '$uibModal', 'dialogs',
           }, 50);
         };
 
+        $scope.isUserValidatedByType = (type) => {
+          return AuthService.isAuthorized(['admin', 'manager']) || (!helpers.isUserValidationRequired($scope.settings, type) || (
+            helpers.isUserValidationRequired($scope.settings, type) && helpers.isUserValidated($scope.user)));
+        };
+
         /* PRIVATE SCOPE */
 
         /**
diff --git a/app/frontend/src/javascript/directives/settings/boolean-setting.js b/app/frontend/src/javascript/directives/settings/boolean-setting.js
deleted file mode 100644
index 6fb46768d..000000000
--- a/app/frontend/src/javascript/directives/settings/boolean-setting.js
+++ /dev/null
@@ -1,104 +0,0 @@
-Application.Directives.directive('booleanSetting', ['Setting', 'growl', '_t',
-  function (Setting, growl, _t) {
-    return ({
-      restrict: 'E',
-      scope: {
-        name: '@',
-        label: '@',
-        settings: '=',
-        classes: '@',
-        onBeforeSave: '='
-      },
-      templateUrl: '/admin/settings/boolean.html',
-      link ($scope, element, attributes) {
-        // The setting
-        $scope.setting = {
-          name: $scope.name,
-          value: ($scope.settings[$scope.name] === 'true')
-        };
-
-        // ID of the html input
-        $scope.id = `setting-${$scope.setting.name}`;
-
-        /**
-         * This will update the value when the user toggles the switch button
-         * @param checked {Boolean}
-         */
-        $scope.toggleSetting = (checked) => {
-          setTimeout(() => {
-            $scope.setting.value = checked;
-            $scope.$apply();
-          }, 50);
-        };
-
-        /**
-         * This will force the component to update, and the child react component to re-render
-         */
-        $scope.refreshComponent = () => {
-          $scope.$apply();
-        };
-
-        /**
-         * Callback to save the setting value to the database
-         * @param setting {{value:*, name:string}} note that the value will be stringified
-         */
-        $scope.save = function (setting) {
-          if (typeof $scope.onBeforeSave === 'function') {
-            const res = $scope.onBeforeSave(setting);
-            if (res && _.isFunction(res.then)) {
-              // res is a promise, wait for it before proceed
-              res.then(function (success) {
-                if (success) saveValue(setting);
-                else resetValue();
-              }, function () {
-                resetValue();
-              });
-            } else {
-              if (res) saveValue(setting);
-              else resetValue();
-            }
-          } else {
-            saveValue(setting);
-          }
-        };
-
-        /* PRIVATE SCOPE */
-
-        /**
-         * Save the setting's new value in DB
-         * @param setting
-         */
-        const saveValue = function (setting) {
-          const value = setting.value.toString();
-
-          Setting.update(
-            { name: setting.name },
-            { value },
-            function () {
-              growl.success(_t('app.admin.settings.customization_of_SETTING_successfully_saved', { SETTING: _t(`app.admin.settings.${setting.name}`) }));
-              $scope.settings[$scope.name] = value;
-            },
-            function (error) {
-              if (error.status === 304) return;
-
-              if (error.status === 423) {
-                growl.error(_t('app.admin.settings.error_SETTING_locked', { SETTING: _t(`app.admin.settings.${setting.name}`) }));
-                return;
-              }
-
-              growl.error(_t('app.admin.settings.an_error_occurred_saving_the_setting'));
-              console.log(error);
-            }
-          );
-        };
-
-        /**
-         * Reset the value of the setting to its original state (when the component loads)
-         */
-        const resetValue = function () {
-          $scope.setting.value = $scope.settings[$scope.name] === 'true';
-        };
-      }
-    });
-  }
-]);
diff --git a/app/frontend/src/javascript/models/profile-custom-field.ts b/app/frontend/src/javascript/models/profile-custom-field.ts
new file mode 100644
index 000000000..c1e8ca2fa
--- /dev/null
+++ b/app/frontend/src/javascript/models/profile-custom-field.ts
@@ -0,0 +1,6 @@
+export interface ProfileCustomField {
+  id: number,
+  label: string,
+  required: boolean,
+  actived: boolean
+}
diff --git a/app/frontend/src/javascript/models/proof-of-identity-file.ts b/app/frontend/src/javascript/models/proof-of-identity-file.ts
new file mode 100644
index 000000000..73489d482
--- /dev/null
+++ b/app/frontend/src/javascript/models/proof-of-identity-file.ts
@@ -0,0 +1,11 @@
+
+export interface ProofOfIdentityFileIndexFilter {
+  user_id: number,
+}
+
+export interface ProofOfIdentityFile {
+  id: number,
+  attachment: string,
+  user_id: number,
+  proof_of_identity_file_id: number,
+}
diff --git a/app/frontend/src/javascript/models/proof-of-identity-refusal.ts b/app/frontend/src/javascript/models/proof-of-identity-refusal.ts
new file mode 100644
index 000000000..e54d9fa27
--- /dev/null
+++ b/app/frontend/src/javascript/models/proof-of-identity-refusal.ts
@@ -0,0 +1,12 @@
+
+export interface ProofOfIdentityRefusalIndexFilter {
+  user_id: number,
+}
+
+export interface ProofOfIdentityRefusal {
+  id: number,
+  message: string,
+  user_id: number,
+  operator_id: number,
+  proof_of_identity_type_ids: Array<number>,
+}
diff --git a/app/frontend/src/javascript/models/proof-of-identity-type.ts b/app/frontend/src/javascript/models/proof-of-identity-type.ts
new file mode 100644
index 000000000..3025ad71a
--- /dev/null
+++ b/app/frontend/src/javascript/models/proof-of-identity-type.ts
@@ -0,0 +1,9 @@
+export interface ProofOfIdentityTypeIndexfilter {
+  group_id?: number,
+}
+
+export interface ProofOfIdentityType {
+  id: number,
+  name: string,
+  group_ids: Array<number>
+}
diff --git a/app/frontend/src/javascript/models/setting.ts b/app/frontend/src/javascript/models/setting.ts
index 3f39c8f25..041e06712 100644
--- a/app/frontend/src/javascript/models/setting.ts
+++ b/app/frontend/src/javascript/models/setting.ts
@@ -135,6 +135,8 @@ export enum SettingName {
   SocialsFlickr = 'flickr',
   MachinesModule = 'machines_module',
   UserChangeGroup = 'user_change_group',
+  UserValidationRequired = 'user_validation_required',
+  UserValidationRequiredList = 'user_validation_required_list'
 }
 
 export type SettingValue = string|boolean|number;
diff --git a/app/frontend/src/javascript/models/user.ts b/app/frontend/src/javascript/models/user.ts
index 68c227f1e..df5897fb7 100644
--- a/app/frontend/src/javascript/models/user.ts
+++ b/app/frontend/src/javascript/models/user.ts
@@ -78,6 +78,7 @@ export interface User {
   training_credits: Array<number>,
   machine_credits: Array<{ machine_id: number, hours_used: number }>,
   last_sign_in_at: TDateISO
+  validated_at: TDateISO
 }
 
 type OrderingKey = 'last_name' | 'first_name' | 'email' | 'phone' | 'group' | 'plan' | 'id'
diff --git a/app/frontend/src/javascript/router.js b/app/frontend/src/javascript/router.js
index 0932734ff..b5aedcea9 100644
--- a/app/frontend/src/javascript/router.js
+++ b/app/frontend/src/javascript/router.js
@@ -137,7 +137,8 @@ angular.module('application.router', ['ui.router'])
         url: '/dashboard',
         resolve: {
           memberPromise: ['Member', 'currentUser', function (Member, currentUser) { return Member.get({ id: currentUser.id }).$promise; }],
-          trainingsPromise: ['Training', function (Training) { return Training.query().$promise; }]
+          trainingsPromise: ['Training', function (Training) { return Training.query().$promise; }],
+          proofOfIdentityTypesPromise: ['ProofOfIdentityType', 'currentUser', function (ProofOfIdentityType, currentUser) { return ProofOfIdentityType.query({ group_id: currentUser.group_id }).$promise; }]
         }
       })
       .state('app.logged.dashboard.profile', {
@@ -163,6 +164,15 @@ angular.module('application.router', ['ui.router'])
           settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['phone_required', 'address_required']" }).$promise; }]
         }
       })
+      .state('app.logged.dashboard.proof_of_identity_files', {
+        url: '/proof_of_identity_files',
+        views: {
+          'main@': {
+            templateUrl: '/dashboard/proof_of_identity_files.html',
+            controller: 'DashboardController'
+          }
+        }
+      })
       .state('app.logged.dashboard.projects', {
         url: '/projects',
         views: {
@@ -317,7 +327,7 @@ angular.module('application.router', ['ui.router'])
         },
         resolve: {
           machinesPromise: ['Machine', function (Machine) { return Machine.query().$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display']" }).$promise; }]
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display', 'user_validation_required', 'user_validation_required_list']" }).$promise; }]
         }
       })
       .state('app.admin.machines_new', {
@@ -357,7 +367,7 @@ angular.module('application.router', ['ui.router'])
             return Setting.query({
               names: "['machine_explications_alert', 'booking_window_start',  'booking_window_end',  'booking_move_enable', " +
                      "'booking_move_delay', 'booking_cancel_enable',  'booking_cancel_delay', 'subscription_explications_alert', " +
-                     "'online_payment_module', 'payment_gateway', 'overlapping_categories']"
+                     "'online_payment_module', 'payment_gateway', 'overlapping_categories', 'user_validation_required', 'user_validation_required_list']"
             }).$promise;
           }]
         }
@@ -443,7 +453,8 @@ angular.module('application.router', ['ui.router'])
             return Setting.query({
               names: "['booking_window_start', 'booking_window_end', 'booking_move_enable',  'booking_move_delay', " +
                      "'booking_cancel_enable', 'booking_cancel_delay', 'subscription_explications_alert',  " +
-                     "'space_explications_alert', 'online_payment_module', 'payment_gateway', 'overlapping_categories']"
+                     "'space_explications_alert', 'online_payment_module', 'payment_gateway', 'overlapping_categories', " +
+                     "'user_validation_required', 'user_validation_required_list']"
             }).$promise;
           }]
         }
@@ -497,7 +508,7 @@ angular.module('application.router', ['ui.router'])
               names: "['booking_window_start', 'booking_window_end', 'booking_move_enable', 'booking_move_delay', " +
                      "'booking_cancel_enable', 'booking_cancel_delay', 'subscription_explications_alert', " +
                      "'training_explications_alert', 'training_information_message', 'online_payment_module', " +
-                     "'payment_gateway', 'overlapping_categories', 'user_validation_required_training']"
+                     "'payment_gateway', 'overlapping_categories', 'user_validation_required', 'user_validation_required_list']"
             }).$promise;
           }]
         }
@@ -525,7 +536,8 @@ angular.module('application.router', ['ui.router'])
         },
         resolve: {
           subscriptionExplicationsPromise: ['Setting', function (Setting) { return Setting.get({ name: 'subscription_explications_alert' }).$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['online_payment_module', 'payment_gateway', 'overlapping_categories']" }).$promise; }]
+          groupsPromise: ['Group', function (Group) { return Group.query().$promise; }],
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['online_payment_module', 'payment_gateway', 'overlapping_categories', 'user_validation_required', 'user_validation_required_list']" }).$promise; }]
         }
       })
 
@@ -555,7 +567,7 @@ angular.module('application.router', ['ui.router'])
         resolve: {
           eventPromise: ['Event', '$transition$', function (Event, $transition$) { return Event.get({ id: $transition$.params().id }).$promise; }],
           priceCategoriesPromise: ['PriceCategory', function (PriceCategory) { return PriceCategory.query().$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['booking_move_enable', 'booking_move_delay', 'booking_cancel_enable', 'booking_cancel_delay', 'event_explications_alert', 'online_payment_module']" }).$promise; }]
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['booking_move_enable', 'booking_move_delay', 'booking_cancel_enable', 'booking_cancel_delay', 'event_explications_alert', 'online_payment_module', 'user_validation_required', 'user_validation_required_list']" }).$promise; }]
         }
       })
 
@@ -772,7 +784,7 @@ angular.module('application.router', ['ui.router'])
           spacesPromise: ['Space', function (Space) { return Space.query().$promise; }],
           spacesPricesPromise: ['Price', function (Price) { return Price.query({ priceable_type: 'Space', plan_id: 'null' }).$promise; }],
           spacesCreditsPromise: ['Credit', function (Credit) { return Credit.query({ creditable_type: 'Space' }).$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display', 'slot_duration']" }).$promise; }],
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display', 'slot_duration', 'user_validation_required', 'user_validation_required_list']" }).$promise; }],
           planCategories: ['PlanCategory', function (PlanCategory) { return PlanCategory.query().$promise; }]
         }
       })
@@ -913,7 +925,7 @@ angular.module('application.router', ['ui.router'])
           groupsPromise: ['Group', function (Group) { return Group.query().$promise; }],
           tagsPromise: ['Tag', function (Tag) { return Tag.query().$promise; }],
           authProvidersPromise: ['AuthProvider', function (AuthProvider) { return AuthProvider.query().$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display']" }).$promise; }]
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['feature_tour_display', 'user_validation_required']" }).$promise; }]
         }
       })
       .state('app.admin.members_new', {
@@ -966,7 +978,7 @@ angular.module('application.router', ['ui.router'])
           walletPromise: ['Wallet', '$transition$', function (Wallet, $transition$) { return Wallet.getWalletByUser({ user_id: $transition$.params().id }).$promise; }],
           transactionsPromise: ['Wallet', 'walletPromise', function (Wallet, walletPromise) { return Wallet.transactions({ id: walletPromise.id }).$promise; }],
           tagsPromise: ['Tag', function (Tag) { return Tag.query().$promise; }],
-          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['phone_required', 'address_required']" }).$promise; }]
+          settingsPromise: ['Setting', function (Setting) { return Setting.query({ names: "['phone_required', 'address_required', 'user_validation_required']" }).$promise; }]
         }
       })
       .state('app.admin.admins_new', {
@@ -1069,10 +1081,8 @@ angular.module('application.router', ['ui.router'])
                      "'display_name_enable', 'machines_sort_by', 'fab_analytics', 'statistics_module', 'address_required', " +
                      "'link_name', 'home_content', 'home_css', 'phone_required', 'upcoming_events_shown', 'public_agenda_module'," +
                      "'renew_pack_threshold', 'pack_only_for_subscription', 'overlapping_categories', 'public_registrations'," +
-                     "'extended_prices_in_same_day', 'recaptcha_site_key', 'recaptcha_secret_key', 'user_validation_required', 'user_validation_required_machine', " +
-                     "'user_validation_required_training', 'user_validation_required_subscription', 'user_validation_required_space'," +
-                     "'user_validation_required_event', 'user_validation_required_pack', 'user_validation_required_list'," +
-                     "'machines_module', 'user_change_group']"
+                     "'extended_prices_in_same_day', 'recaptcha_site_key', 'recaptcha_secret_key', 'user_validation_required', " +
+                     "'user_validation_required_list', 'machines_module', 'user_change_group']"
             }).$promise;
           }],
           privacyDraftsPromise: ['Setting', function (Setting) { return Setting.get({ name: 'privacy_draft', history: true }).$promise; }],
diff --git a/app/frontend/src/javascript/services/helpers.js b/app/frontend/src/javascript/services/helpers.js
index 6ce18dba9..8b860b331 100644
--- a/app/frontend/src/javascript/services/helpers.js
+++ b/app/frontend/src/javascript/services/helpers.js
@@ -1,9 +1,24 @@
 'use strict';
 
-Application.Services.factory('helpers', [function () {
+Application.Services.factory('helpers', ['AuthService', function (AuthService) {
   return ({
     getAmountToPay (price, walletAmount) {
       if (walletAmount > price) { return 0; } else { return price - walletAmount; }
+    },
+
+    isUserValidationRequired (settings, type) {
+      return settings.user_validation_required === 'true' &&
+        settings.user_validation_required_list &&
+        settings.user_validation_required_list.split(',').includes(type);
+    },
+
+    isUserValidated (user) {
+      return !!(user?.validated_at);
+    },
+
+    isUserValidatedByType (user, settings, type) {
+      return AuthService.isAuthorized(['admin', 'manager']) || (!this.isUserValidationRequired(settings, type) || (
+        this.isUserValidationRequired(settings, type) && this.isUserValidated(user)));
     }
   });
 }]);
diff --git a/app/frontend/src/javascript/services/profile_custom_field.js b/app/frontend/src/javascript/services/profile_custom_field.js
new file mode 100644
index 000000000..176953994
--- /dev/null
+++ b/app/frontend/src/javascript/services/profile_custom_field.js
@@ -0,0 +1,11 @@
+'use strict';
+
+Application.Services.factory('ProfileCustomField', ['$resource', function ($resource) {
+  return $resource('/api/profile_custom_fields/:id',
+    { id: '@id' }, {
+      update: {
+        method: 'PUT'
+      }
+    }
+  );
+}]);
diff --git a/app/frontend/src/javascript/services/proof_of_identity_type.js b/app/frontend/src/javascript/services/proof_of_identity_type.js
new file mode 100644
index 000000000..b3fc647c4
--- /dev/null
+++ b/app/frontend/src/javascript/services/proof_of_identity_type.js
@@ -0,0 +1,11 @@
+'use strict';
+
+Application.Services.factory('ProofOfIdentityType', ['$resource', function ($resource) {
+  return $resource('/api/proof_of_identity_types/:id',
+    { id: '@id' }, {
+      update: {
+        method: 'PUT'
+      }
+    }
+  );
+}]);
diff --git a/app/frontend/templates/admin/invoices/payment.html b/app/frontend/templates/admin/invoices/payment.html
index 6c8b4aa5c..b4cf28218 100644
--- a/app/frontend/templates/admin/invoices/payment.html
+++ b/app/frontend/templates/admin/invoices/payment.html
@@ -6,12 +6,12 @@
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.invoices.payment.online_payment' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.invoices.payment.online_payment_info_html' | translate"></p>
-      <boolean-setting name="online_payment_module"
-                       settings="allSettings"
-                       label="app.admin.invoices.payment.enable_online_payment"
-                       classes="m-l"
+      <boolean-setting name="'online_payment_module'"
+                       label="'app.admin.invoices.payment.enable_online_payment' | translate"
+                       class-name="'m-l'"
                        on-before-save="selectPaymentGateway"
-                       fa-icon="fa-font">
+                       on-success="onCardUpdateSuccess"
+                       on-error="onError">
       </boolean-setting>
       <select-gateway-modal is-open="openSelectGatewayModal"
                             toggle-modal="toggleSelectGatewayModal"
diff --git a/app/frontend/templates/admin/members/edit.html b/app/frontend/templates/admin/members/edit.html
index 5c9358ff9..cb22dc095 100644
--- a/app/frontend/templates/admin/members/edit.html
+++ b/app/frontend/templates/admin/members/edit.html
@@ -11,8 +11,12 @@
         <section class="heading-title">
           <h1 class="inline">{{ 'app.shared.user_admin.user' | translate }} {{ user.name }}</h1>
           <span class="label label-danger text-white" ng-show="user.need_completion" translate>{{ 'app.shared.user_admin.incomplete_profile' }}</span>
+          <div class="pull-right" style="top: 35%;position: relative;right: 10px;" ng-if="enableUserValidationRequired">
+            <user-validation member="user"
+             on-error="onError"
+             on-success="onValidateMemberSuccess" />
+          </div>
         </section>
-
       </div>
 
       <div class="col-md-3">
@@ -56,6 +60,14 @@
 
         </uib-tab>
 
+        <uib-tab heading="{{ 'app.admin.members_edit.proof_of_identity_files' | translate }}" ng-show="hasProofOfIdentityTypes">
+          <proof-of-identity-validation
+            operator="currentUser"
+            member="user"
+            on-error="onError"
+            on-success="onSuccess" />
+        </uib-tab>
+
         <uib-tab heading="{{ 'app.admin.members_edit.subscription' | translate }}" ng-if="$root.modules.plans">
 
 
diff --git a/app/frontend/templates/admin/members/members.html b/app/frontend/templates/admin/members/members.html
index f66f33146..fdd7d70c7 100644
--- a/app/frontend/templates/admin/members/members.html
+++ b/app/frontend/templates/admin/members/members.html
@@ -37,17 +37,21 @@
   <table class="table members-list">
     <thead>
     <tr>
+      <th style="width:4%" class="hidden-xs" ng-if="enableUserValidationRequired"></th>
       <th style="width:15%"><a ng-click="setOrderMember('last_name')">{{ 'app.admin.members.surname' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='last_name', 'fa fa-sort-alpha-desc': member.order=='-last_name', 'fa fa-arrows-v': member.order }"></i></a></th>
       <th style="width:15%"><a ng-click="setOrderMember('first_name')">{{ 'app.admin.members.first_name' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='first_name', 'fa fa-sort-alpha-desc': member.order=='-first_name', 'fa fa-arrows-v': member.order }"></i></a></th>
       <th style="width:15%" class="hidden-xs"><a ng-click="setOrderMember('email')">{{ 'app.admin.members.email' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='email', 'fa fa-sort-alpha-desc': member.order=='-email', 'fa fa-arrows-v': member.order }"></i></a></th>
-      <th style="width:10%" class="hidden-xs hidden-sm hidden-md"><a ng-click="setOrderMember('phone')">{{ 'app.admin.members.phone' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-numeric-asc': member.order=='phone', 'fa fa-sort-numeric-desc': member.order=='-phone', 'fa fa-arrows-v': member.order }"></i></a></th>
-      <th style="width:15%" class="hidden-xs hidden-sm"><a ng-click="setOrderMember('group')">{{ 'app.admin.members.user_type' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='group', 'fa fa-sort-alpha-desc': member.order=='-group', 'fa fa-arrows-v': member.order }"></i></a></th>
-      <th style="width:15%" class="hidden-xs hidden-sm hidden-md"><a ng-click="setOrderMember('plan')">{{ 'app.admin.members.subscription' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='plan', 'fa fa-sort-alpha-desc': member.order=='-plan', 'fa fa-arrows-v': member.order }"></i></a></th>
-      <th style="width:15%" class="buttons-col"></th>
+      <th style="width:9%" class="hidden-xs hidden-sm hidden-md"><a ng-click="setOrderMember('phone')">{{ 'app.admin.members.phone' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-numeric-asc': member.order=='phone', 'fa fa-sort-numeric-desc': member.order=='-phone', 'fa fa-arrows-v': member.order }"></i></a></th>
+      <th style="width:14%" class="hidden-xs hidden-sm"><a ng-click="setOrderMember('group')">{{ 'app.admin.members.user_type' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='group', 'fa fa-sort-alpha-desc': member.order=='-group', 'fa fa-arrows-v': member.order }"></i></a></th>
+      <th style="width:14%" class="hidden-xs hidden-sm hidden-md"><a ng-click="setOrderMember('plan')">{{ 'app.admin.members.subscription' | translate }} <i class="fa fa-arrows-v" ng-class="{'fa fa-sort-alpha-asc': member.order=='plan', 'fa fa-sort-alpha-desc': member.order=='-plan', 'fa fa-arrows-v': member.order }"></i></a></th>
+      <th style="width:14%" class="buttons-col"></th>
     </tr>
     </thead>
     <tbody>
     <tr ng-repeat="m in members">
+      <td class="text-center" ng-if="enableUserValidationRequired">
+        <span ng-class="{ 'text-success': !!m.validated_at }"><i class="fa fa-user-check"></i></span>
+      </td>
       <td class="text-c">{{ m.profile.last_name }}</td>
       <td class="text-c">{{ m.profile.first_name }}</td>
       <td class="hidden-xs">{{ m.email }}</td>
diff --git a/app/frontend/templates/admin/projects/settings.html b/app/frontend/templates/admin/projects/settings.html
index a9cb74b69..97eaa2a0b 100644
--- a/app/frontend/templates/admin/projects/settings.html
+++ b/app/frontend/templates/admin/projects/settings.html
@@ -87,10 +87,11 @@
     </div>
     <div class="row m-t" ng-show="allSettings.openlab_app_secret">
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.projects.settings.openlab_default_info_html' | translate"></p>
-      <boolean-setting name="openlab_default"
-                       settings="allSettings"
-                       label="app.admin.projects.settings.default_to_openlab"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'openlab_default'"
+                       label="'app.admin.projects.settings.default_to_openlab' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
   </div>
 </div>
diff --git a/app/frontend/templates/admin/settings/boolean.html b/app/frontend/templates/admin/settings/boolean.html
deleted file mode 100644
index 6802791c3..000000000
--- a/app/frontend/templates/admin/settings/boolean.html
+++ /dev/null
@@ -1,5 +0,0 @@
-<div class="form-group {{classes}}">
-  <label for="{{id}}" class="control-label m-r" translate ng-click="refreshComponent">{{ label }}</label>
-  <switch checked="setting.value" id="id" on-change="toggleSetting" class-name="'v-middle'" ng-if="setting"></switch>
-  <button name="button" class="btn btn-warning m-l" ng-click="save(setting)" translate>{{ 'app.shared.buttons.save' }}</button>
-</div>
diff --git a/app/frontend/templates/admin/settings/compte.html b/app/frontend/templates/admin/settings/compte.html
new file mode 100644
index 000000000..7cbbfcec3
--- /dev/null
+++ b/app/frontend/templates/admin/settings/compte.html
@@ -0,0 +1,107 @@
+<div class="panel panel-default m-t-md">
+  <div class="panel-heading">
+    <span class="font-sbold" translate>{{ 'app.admin.settings.account_creation' }}</span>
+  </div>
+  <div class="panel-body">
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.general.public_registrations' }}</h3>
+      <p class="alert alert-warning m-h-md" translate>
+        {{ 'app.admin.settings.general.public_registrations_info' }}
+      </p>
+      <div class="col-md-10 col-md-offset-1">
+        <boolean-setting name="'public_registrations'"
+                         label="'app.admin.settings.general.public_registrations_allowed' | translate"
+                         on-success="onSuccess"
+                         on-error="onError">
+        </boolean-setting>
+      </div>
+    </div>
+    <div class="row">
+        <h3 class="m-l" translate>{{ 'app.admin.settings.account_confirmation' }}</h3>
+        <p class="alert alert-warning m-h-md" translate>
+            {{ 'app.admin.settings.confirmation_required_info' }}
+        </p>
+        <div class="col-md-10 col-md-offset-1">
+            <boolean-setting name="'confirmation_required'"
+                             label="'app.admin.settings.confirmation_is_required' | translate"
+                             on-success="onSuccess"
+                             on-error="onError">
+            </boolean-setting>
+        </div>
+    </div>
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.compte.user_validation_required_title' }}</h3>
+      <p class="alert alert-warning m-h-md" translate>
+        {{ 'app.admin.settings.compte.user_validation_required_info' }}
+      <div class="col-md-10 col-md-offset-1">
+        <user-validation-setting on-success="onSuccess" on-error="onError" />
+      </div>
+    </div>
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.captcha' }}</h3>
+      <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.captcha_info_html' | translate"></p>
+      <div class="col-md-6">
+        <text-setting name="recaptcha_site_key"
+                      settings="allSettings"
+                      label="app.admin.settings.site_key"
+                      fa-icon="fa-info"
+                      placeholder="0000000000000000000000000000000000000000">
+        </text-setting>
+      </div>
+      <div class="col-md-6">
+        <text-setting name="recaptcha_secret_key"
+                      settings="allSettings"
+                      label="app.admin.settings.secret_key"
+                      fa-icon="fa-key"
+                      placeholder="0000000000000000000000000000000000000000">
+        </text-setting>
+      </div>
+    </div>
+  </div>
+</div>
+
+<div class="panel panel-default m-t-md">
+  <div class="panel-heading">
+    <span class="font-sbold" translate>{{ 'app.admin.settings.compte.customize_account_settings' }}</span>
+  </div>
+  <div class="panel-body">
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.phone' }}</h3>
+      <p class="alert alert-warning m-h-md" translate>
+        {{ 'app.admin.settings.phone_required_info' }}
+      </p>
+      <div class="col-md-10 col-md-offset-1">
+        <boolean-setting name="'phone_required'"
+                         label="'app.admin.settings.phone_is_required' | translate"
+                         on-success="onSuccess"
+                         on-error="onError">
+        </boolean-setting>
+      </div>
+    </div>
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.address' }}</h3>
+      <p class="alert alert-warning m-h-md" translate>
+        {{ 'app.admin.settings.address_required_info_html' }}
+      </p>
+      <div class="col-md-10 col-md-offset-1">
+        <boolean-setting name="'address_required'"
+                         label="'app.admin.settings.address_is_required' | translate"
+                         on-success="onSuccess"
+                         on-error="onError">
+        </boolean-setting>
+      </div>
+    </div>
+
+    <div class="row">
+      <h3 class="m-l" translate>{{ 'app.admin.settings.compte.organization' }}</h3>
+      <p class="alert alert-warning m-h-md" translate>
+        {{ 'app.admin.settings.compte.organization_profile_custom_fields_info' }}
+      <div class="col-md-12">
+        <profile-custom-fields-list on-success="onSuccess" on-error="onError" />
+      </div>
+    </div>
+  </div>
+</div>
+
+
+<proof-of-identity-types-list on-success="onSuccess" on-error="onError"/>
diff --git a/app/frontend/templates/admin/settings/general.html b/app/frontend/templates/admin/settings/general.html
index 26d7edc4e..3d8774a8f 100644
--- a/app/frontend/templates/admin/settings/general.html
+++ b/app/frontend/templates/admin/settings/general.html
@@ -512,57 +512,64 @@
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.settings.spaces' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.spaces_info_html' | translate"></p>
-      <boolean-setting name="spaces_module"
-                       settings="allSettings"
-                       label="app.admin.settings.enable_spaces"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'spaces_module'"
+                       label="'app.admin.settings.enable_spaces' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.settings.plans' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.plans_info_html' | translate"></p>
-      <boolean-setting name="plans_module"
-                       settings="allSettings"
-                       label="app.admin.settings.enable_plans"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'plans_module'"
+                       label="'app.admin.settings.enable_plans' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.settings.trainings' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.trainings_info_html' | translate"></p>
-      <boolean-setting name="trainings_module"
-                       settings="allSettings"
-                       label="app.admin.settings.enable_trainings"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'trainings_module'"
+                       label="'app.admin.settings.enable_trainings' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.settings.invoicing' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.invoicing_info_html' | translate"></p>
-      <boolean-setting name="invoicing_module"
-                       settings="allSettings"
-                       label="app.admin.settings.enable_invoicing"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'invoicing_module'"
+                       label="'app.admin.settings.enable_invoicing' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
         <h3 class="m-l" translate>{{ 'app.admin.settings.general.wallet' }}</h3>
         <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.general.wallet_info_html' | translate"></p>
-        <boolean-setting name="wallet_module"
-                         settings="allSettings"
-                         label="app.admin.settings.general.enable_wallet"
-                         classes="m-l"></boolean-setting>
+        <boolean-setting name="'wallet_module'"
+                         label="'app.admin.settings.general.enable_wallet' | translate"
+                         on-success="onSuccess"
+                         on-error="onError"
+                         class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
       <h3 class="m-l" translate>{{ 'app.admin.settings.general.public_agenda' }}</h3>
       <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.general.public_agenda_info_html' | translate"></p>
-      <boolean-setting name="public_agenda_module"
-                       settings="allSettings"
-                       label="app.admin.settings.general.enable_public_agenda"
-                       classes="m-l"></boolean-setting>
+      <boolean-setting name="'public_agenda_module'"
+                       label="'app.admin.settings.general.enable_public_agenda' | translate"
+                       on-success="onSuccess"
+                       on-error="onError"
+                       class-name="'m-l'"></boolean-setting>
     </div>
     <div class="row">
         <h3 class="m-l" translate>{{ 'app.admin.settings.general.statistics' }}</h3>
         <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.general.statistics_info_html' | translate"></p>
-        <boolean-setting name="statistics_module"
-                         settings="allSettings"
-                         label="app.admin.settings.general.enable_statistics"
+        <boolean-setting name="'statistics_module'"
+                         label="'app.admin.settings.general.enable_statistics' | translate"
+                         on-success="onSuccess"
+                         on-error="onError"
                          classes="m-l"></boolean-setting>
     </div>
   </div>
diff --git a/app/frontend/templates/admin/settings/index.html b/app/frontend/templates/admin/settings/index.html
index 2fef85d5b..4f6c72377 100644
--- a/app/frontend/templates/admin/settings/index.html
+++ b/app/frontend/templates/admin/settings/index.html
@@ -30,19 +30,23 @@
           <ng-include src="'/admin/settings/general.html'"></ng-include>
         </uib-tab>
 
-        <uib-tab heading="{{ 'app.admin.settings.home_page' | translate }}" index="1">
+        <uib-tab heading="{{ 'app.admin.settings.compte.compte' | translate }}" index="1">
+          <ng-include src="'/admin/settings/compte.html'"></ng-include>
+        </uib-tab>
+
+        <uib-tab heading="{{ 'app.admin.settings.home_page' | translate }}" index="2">
           <ng-include src="'/admin/settings/home_page.html'"></ng-include>
         </uib-tab>
 
-        <uib-tab heading="{{ 'app.admin.settings.about' | translate }}" index="2" class="about-page-tab">
+        <uib-tab heading="{{ 'app.admin.settings.about' | translate }}" index="3" class="about-page-tab">
           <ng-include src="'/admin/settings/about.html'"></ng-include>
         </uib-tab>
 
-        <uib-tab heading="{{ 'app.admin.settings.privacy.title' | translate }}" index="3" class="privacy-page-tab">
+        <uib-tab heading="{{ 'app.admin.settings.privacy.title' | translate }}" index="4" class="privacy-page-tab">
           <ng-include src="'/admin/settings/privacy.html'"></ng-include>
         </uib-tab>
 
-        <uib-tab heading="{{ 'app.admin.settings.reservations' | translate }}" index="4" class="reservations-page-tab">
+        <uib-tab heading="{{ 'app.admin.settings.reservations' | translate }}" index="5" class="reservations-page-tab">
           <ng-include src="'/admin/settings/reservations.html'"></ng-include>
         </uib-tab>
       </uib-tabset>
diff --git a/app/frontend/templates/admin/settings/privacy.html b/app/frontend/templates/admin/settings/privacy.html
index ba922c27a..9513115ce 100644
--- a/app/frontend/templates/admin/settings/privacy.html
+++ b/app/frontend/templates/admin/settings/privacy.html
@@ -39,9 +39,10 @@
       <div class="row">
         <div class="col-md-10 col-md-offset-1">
           <boolean-setting
-              name="fab_analytics"
-              settings="allSettings"
-              label="app.admin.settings.fab_analytics">
+              name="'fab_analytics'"
+              label="'app.admin.settings.fab_analytics' | translate"
+              on-success="onSuccess"
+              on-error="onError">
           </boolean-setting>
           <p>
             <span translate>{{ 'app.admin.settings.privacy.about_analytics' }}</span>
diff --git a/app/frontend/templates/admin/settings/reservations.html b/app/frontend/templates/admin/settings/reservations.html
index 5a1ca2586..e13182ff3 100644
--- a/app/frontend/templates/admin/settings/reservations.html
+++ b/app/frontend/templates/admin/settings/reservations.html
@@ -45,10 +45,10 @@
             <div class="row">
                 <h3 class="m-l m-t-lg" translate>{{ 'app.admin.settings.ability_for_the_users_to_move_their_reservations' }}</h3>
                 <div class="col-md-6">
-                    <boolean-setting name="booking_move_enable"
-                                     settings="allSettings"
-                                     label="app.admin.settings.reservations_shifting"
-                                     classes="m-l">
+                    <boolean-setting name="'booking_move_enable'"
+                                     label="'app.admin.settings.reservations_shifting' | translate"
+                                     on-success="onSuccess"
+                                     on-error="onError">
                     </boolean-setting>
                 </div>
                 <div class="col-md-6" ng-show="allSettings.booking_move_enable === 'true'">
@@ -65,10 +65,10 @@
             <div class="row">
                 <h3 class="m-l m-t-lg" translate>{{ 'app.admin.settings.ability_for_the_users_to_cancel_their_reservations' }}</h3>
                 <div class="col-md-6">
-                    <boolean-setting name="booking_cancel_enable"
-                                     settings="allSettings"
-                                     label="app.admin.settings.reservations_cancelling"
-                                     classes="m-l">
+                    <boolean-setting name="'booking_cancel_enable'"
+                                     label="'app.admin.settings.reservations_cancelling' | translate"
+                                     on-success="onSuccess"
+                                     on-error="onError">
                     </boolean-setting>
                 </div>
                 <div class="col-md-6" ng-show="allSettings.booking_cancel_enable === 'true'">
@@ -86,10 +86,10 @@
             <div class="row">
                 <h3 class="m-l m-t-lg" translate>{{ 'app.admin.settings.book_overlapping_slots_info' }}</h3>
                 <div class="col-md-6">
-                    <boolean-setting name="book_overlapping_slots"
-                                     settings="allSettings"
-                                     label="app.admin.settings.allow_booking"
-                                     classes="m-l">
+                    <boolean-setting name="'book_overlapping_slots'"
+                                     label="'app.admin.settings.allow_booking' | translate"
+                                     on-success="onSuccess"
+                                     on-error="onError">
                     </boolean-setting>
                     <div class="alert alert-warning" ng-show="allSettings.book_overlapping_slots !== 'true'" translate>
                         {{ 'app.admin.settings.overlapping_categories_info' }}
@@ -122,10 +122,11 @@
             <div class="row">
                 <h3 class="m-l" translate>{{ 'app.admin.settings.pack_only_for_subscription_info' }}</h3>
                 <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.pack_only_for_subscription_info_html' | translate"></p>
-                <boolean-setting name="pack_only_for_subscription"
-                                 settings="allSettings"
-                                 label="app.admin.settings.pack_only_for_subscription"
-                                 classes="m-l">
+                <boolean-setting name="'pack_only_for_subscription'"
+                                 label="'app.admin.settings.pack_only_for_subscription' | translate"
+                                 class-name="'m-l'"
+                                 on-success="onSuccess"
+                                 on-error="onError">
                 </boolean-setting>
             </div>
 
@@ -133,10 +134,11 @@
             <div class="row">
                 <h3 class="m-l" translate>{{ 'app.admin.settings.extended_prices' }}</h3>
                 <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.extended_prices_info_html' | translate"></p>
-                <boolean-setting name="extended_prices_in_same_day"
-                                 settings="allSettings"
-                                 label="app.admin.settings.extended_prices_in_same_day"
-                                 classes="m-l">
+                <boolean-setting name="'extended_prices_in_same_day'"
+                                 label="'app.admin.settings.extended_prices_in_same_day' | translate"
+                                 class-name="'m-l'"
+                                 on-success="onSuccess"
+                                 on-error="onError">
                 </boolean-setting>
             </div>
         </div>
@@ -150,10 +152,11 @@
     <div class="panel-body">
         <div class="row">
             <h3 class="m-l" translate>{{ 'app.admin.settings.notification_sending_before_the_reservation_occurs' }}</h3>
-            <boolean-setting name="reminder_enable"
-                             settings="allSettings"
-                             label="app.admin.settings.reservations_reminders"
-                             classes="m-l">
+            <boolean-setting name="'reminder_enable'"
+                             label="'app.admin.settings.reservations_reminders' | translate"
+                             class-name="'m-l'"
+                             on-success="onSuccess"
+                             on-error="onError">
             </boolean-setting>
         </div>
         <div class="row" ng-show="allSettings.reminder_enable === 'true'">
@@ -178,19 +181,21 @@
         <div class="row" ng-show="$root.modules.machines">
             <h3 class="m-l" translate>{{ 'app.admin.settings.display_machine_reservation_user_name' }}</h3>
             <p class="alert alert-warning m-h-md" ng-bind-html="'app.admin.settings.display_name_info_html' | translate"></p>
-            <boolean-setting name="display_name_enable"
-                             settings="allSettings"
-                             label="app.admin.settings.display_name"
-                             classes="m-l">
+            <boolean-setting name="'display_name_enable'"
+                             label="'app.admin.settings.display_name' | translate"
+                             class-name="'m-l'"
+                             on-success="onSuccess"
+                             on-error="onError">
             </boolean-setting>
         </div>
       <div class="row">
         <h3 class="m-l" translate>{{ 'app.admin.settings.events_in_the_calendar' }}</h3>
         <p class="alert alert-warning m-h-md" translate>{{ 'app.admin.settings.events_in_calendar_info' }}</p>
-        <boolean-setting name="events_in_calendar"
-                         settings="allSettings"
-                         label="app.admin.settings.show_event"
-                         classes="m-l"></boolean-setting>
+        <boolean-setting name="'events_in_calendar'"
+                         label="'app.admin.settings.show_event' | translate"
+                         on-success="onSuccess"
+                         on-error="onError"
+                         class-name="'m-l'"></boolean-setting>
       </div>
 
       <div class="section-separator"></div>
diff --git a/app/frontend/templates/dashboard/nav.html b/app/frontend/templates/dashboard/nav.html
index dd18e9e2d..edd729355 100644
--- a/app/frontend/templates/dashboard/nav.html
+++ b/app/frontend/templates/dashboard/nav.html
@@ -12,6 +12,7 @@
         <ul class="nav-page nav nav-pills text-u-c text-sm">
           <li ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.profile" translate>{{ 'app.public.common.my_profile' }}</a></li>
           <li ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.settings" translate>{{ 'app.public.common.my_settings' }}</a></li>
+          <li ng-if="!isAuthorized(['admin', 'manager']) && hasProofOfIdentityTypes" ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.proof_of_identity_files" translate>{{ 'app.public.common.my_proof_of_identity_files' }}</a></li>
           <li ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.projects" translate>{{ 'app.public.common.my_projects' }}</a></li>
           <li ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.trainings" translate>{{ 'app.public.common.my_trainings' }}</a></li>
           <li ui-sref-active="active"><a class="text-black" ui-sref="app.logged.dashboard.events" translate>{{ 'app.public.common.my_events' }}</a></li>
diff --git a/app/frontend/templates/dashboard/proof_of_identity_files.html b/app/frontend/templates/dashboard/proof_of_identity_files.html
new file mode 100644
index 000000000..d33f915a7
--- /dev/null
+++ b/app/frontend/templates/dashboard/proof_of_identity_files.html
@@ -0,0 +1,13 @@
+<div>
+
+  <section class="heading">
+    <div class="row no-gutter">
+      <ng-include src="'/dashboard/nav.html'"></ng-include>
+    </div>
+  </section>
+
+
+  <div class="row no-gutter">
+    <proof-of-identity-files current-user="currentUser" on-success="onSuccess" on-error="onError" />
+  </div>
+</div>
diff --git a/app/frontend/templates/events/show.html b/app/frontend/templates/events/show.html
index d6101c47b..f09c80cb6 100644
--- a/app/frontend/templates/events/show.html
+++ b/app/frontend/templates/events/show.html
@@ -178,7 +178,13 @@
             <span ng-show="reservations.length > 0" translate>{{ 'app.public.events_show.thanks_for_coming' }}</span>
             <a ui-sref="app.public.events_list" translate>{{ 'app.public.events_show.view_event_list' }}</a>
           </div>
-          <button class="btn btn-warning-full rounded btn-block text-sm" ng-click="reserveEvent()" ng-show="event.nb_free_places > 0 && !reserve.toReserve && now.isBefore(event.end_date)">{{ 'app.public.events_show.book' | translate }}</button>
+          <button class="btn btn-warning-full rounded btn-block text-sm" ng-click="reserveEvent()" ng-show="isShowReserveEventButton()">{{ 'app.public.events_show.book' | translate }}</button>
+          <uib-alert type="danger" ng-if="ctrl.member.id && !isUserValidatedByType()">
+            <p class="text-sm">
+              <i class="fa fa-warning"></i>
+              <span translate>{{ 'app.shared.cart.user_validation_required_alert' }}</span>
+            </p>
+          </uib-alert>
 
           <coupon show="reserve.totalSeats > 0 && ctrl.member" coupon="coupon.applied" total="reserve.totalNoCoupon" user-id="{{ctrl.member.id}}"></coupon>
         </div>
diff --git a/app/frontend/templates/machines/index.html b/app/frontend/templates/machines/index.html
index 192841b71..90b8a58a6 100644
--- a/app/frontend/templates/machines/index.html
+++ b/app/frontend/templates/machines/index.html
@@ -47,7 +47,8 @@
                  on-show-machine="showMachine"
                  on-reserve-machine="reserveMachine"
                  on-login-requested="onLoginRequest"
-                 on-enroll-requested="onEnrollRequest">
+                 on-enroll-requested="onEnrollRequest"
+                 can-propose-packs="canProposePacks()">
   </machines-list>
 
 </section>
diff --git a/app/frontend/templates/machines/reserve.html b/app/frontend/templates/machines/reserve.html
index eeb4c86ee..785ba2cee 100644
--- a/app/frontend/templates/machines/reserve.html
+++ b/app/frontend/templates/machines/reserve.html
@@ -35,6 +35,7 @@
                    operator="currentUser"
                    on-error="onError"
                    on-success="onSuccess"
+                   ng-if="isShowPacks()"
                    refresh="afterPaymentPromise">
     </packs-summary>
 
diff --git a/app/frontend/templates/plans/_plan.html b/app/frontend/templates/plans/_plan.html
index 90dc57166..4e613a26a 100644
--- a/app/frontend/templates/plans/_plan.html
+++ b/app/frontend/templates/plans/_plan.html
@@ -4,6 +4,7 @@
               subscribed-plan-id="ctrl.member.subscribed_plan.id"
               on-error="onError"
               on-plan-selection="selectPlan"
+              can-select-plan="canSelectPlan()"
               operator="currentUser">
   </plans-list>
 
diff --git a/app/frontend/templates/plans/index.html b/app/frontend/templates/plans/index.html
index 01f1479d5..5beb868ae 100644
--- a/app/frontend/templates/plans/index.html
+++ b/app/frontend/templates/plans/index.html
@@ -28,7 +28,9 @@
                 on-error="onError"
                 on-plan-selection="selectPlan"
                 on-login-request="userLogin"
-                operator="currentUser" >
+                operator="currentUser"
+                can-select-plan="canSelectPlan()"
+                >
     </plans-list>
 
   </div>
@@ -65,6 +67,7 @@
           plan="selectedPlan"
           plan-selection-time="planSelectionTime"
           settings="settings"
+          reservable-type="Subscription"
           after-payment="afterPayment"></cart>
 
 
diff --git a/app/frontend/templates/shared/_cart.html b/app/frontend/templates/shared/_cart.html
index 3ae1ef504..9b815f632 100644
--- a/app/frontend/templates/shared/_cart.html
+++ b/app/frontend/templates/shared/_cart.html
@@ -1,4 +1,10 @@
-<div class="widget panel b-a m m-t-lg" ng-if="user && !events.modifiable && !events.moved && !paidPlan">
+<uib-alert type="danger m" ng-if="user && !isUserValidatedByType(reservableType.toLowerCase())">
+  <p class="text-sm">
+    <i class="fa fa-warning"></i>
+    <span translate>{{ 'app.shared.cart.user_validation_required_alert' }}</span>
+  </p>
+</uib-alert>
+<div class="widget panel b-a m m-t-lg" ng-if="user && !events.modifiable && !events.moved && !paidPlan && isUserValidatedByType(reservableType.toLowerCase())">
   <div class="panel-heading b-b small">
     <h3 translate>{{ 'app.shared.cart.summary' }}</h3>
   </div>
@@ -55,7 +61,7 @@
 
     <coupon show="isSlotsValid() && (!modePlans || selectedPlan)" coupon="coupon.applied" total="totalNoCoupon" user-id="{{user.id}}"></coupon>
 
-    <div ng-show="$root.modules.plans">
+    <div ng-show="$root.modules.plans && isUserValidatedByType('subscription')">
       <div ng-if="isSlotsValid() && !user.subscribed_plan" ng-show="!modePlans">
         <p class="font-sbold text-base l-h-2x" translate>{{ 'app.shared.cart.to_benefit_from_attractive_prices' }}</p>
         <div><button class="btn btn-warning-full rounded btn-block text-xs" ng-click="showPlans()" translate>{{ 'app.shared.cart.view_our_subscriptions' }}</button></div>
diff --git a/app/frontend/templates/shared/_member_select.html b/app/frontend/templates/shared/_member_select.html
index 24c29c8c9..b508c96fe 100644
--- a/app/frontend/templates/shared/_member_select.html
+++ b/app/frontend/templates/shared/_member_select.html
@@ -12,5 +12,8 @@
         </ui-select-choices>
     </ui-select>
     {{member}}
+    <div class="alert alert-danger m-t" style="margin-bottom: 0 !important;" ng-if="enableUserValidationRequired && ctrl.member.id && !ctrl.member.validated_at">
+      <span translate>{{ 'app.shared.member_select.member_not_validated' }}</span>
+    </div>
   </div>
 </div>
diff --git a/app/frontend/templates/shared/header.html.erb b/app/frontend/templates/shared/header.html.erb
index cf0afafb4..fa31cbbfe 100644
--- a/app/frontend/templates/shared/header.html.erb
+++ b/app/frontend/templates/shared/header.html.erb
@@ -30,7 +30,7 @@
     <li class="notification-open notification-center-link" ng-if="isAuthenticated()">
       <a ui-sref="app.logged.notifications"><i class="fa fa-bell fa-2x black"></i> <span class="badge" ng-class="{'bg-red': notifications.unread > 0}">{{notifications.unread}}</span></a>
     </li>
-    <li class="dropdown user-profile-nav user-menu-dropdown" ng-if="isAuthenticated()" uib-dropdown>
+    <li class="dropdown user-profile-nav user-menu-dropdown" ng-if="isAuthenticated()" uib-dropdown on-toggle="dropdownOnToggled(open)">
       <a class="dropdown-toggle pointer" uib-dropdown-toggle>
         <span class="avatar text-center">
           <fab-user-avatar ng-model="currentUser.profile_attributes.user_avatar_attributes" avatar-class="thumb-50"></fab-user-avatar>
@@ -41,6 +41,7 @@
       <ul uib-dropdown-menu class="animated fadeInRight">
         <li><a ui-sref="app.logged.dashboard.profile" translate>{{ 'app.public.common.my_profile' }}</a></li>
         <li><a ui-sref="app.logged.dashboard.settings" translate>{{ 'app.public.common.my_settings' }}</a></li>
+        <li ng-if="!isAuthorized(['admin', 'manager']) && hasProofOfIdentityTypes"><a ui-sref="app.logged.dashboard.proof_of_identity_files" translate>{{ 'app.public.common.my_proof_of_identity_files' }}</a></li>
         <li><a ui-sref="app.logged.dashboard.projects" translate>{{ 'app.public.common.my_projects' }}</a></li>
         <li><a ui-sref="app.logged.dashboard.trainings" translate>{{ 'app.public.common.my_trainings' }}</a></li>
         <li><a ui-sref="app.logged.dashboard.events" translate>{{ 'app.public.common.my_events' }}</a></li>
diff --git a/app/frontend/templates/shared/signupModal.html b/app/frontend/templates/shared/signupModal.html
index ab0c8ef35..aca527613 100644
--- a/app/frontend/templates/shared/signupModal.html
+++ b/app/frontend/templates/shared/signupModal.html
@@ -138,7 +138,7 @@
               <span class="input-group-addon"><i class="fa fa-building-o"></i></span>
               <input type="text"
                      name="organization_name"
-                     ng-model="user.profile_attributes.organization_attributes.name"
+                     ng-model="user.invoicing_profile_attributes.organization_attributes.name"
                      class="form-control"
                      placeholder="{{ 'app.public.common.name_of_your_organization' | translate }}"
                      ng-required="user.organization">
@@ -154,7 +154,7 @@
               <span class="input-group-addon"><i class="fa fa-map-marker"></i></span>
               <input type="text"
                      name="organization_address"
-                     ng-model="user.profile_attributes.organization_attributes.address_attributes.address"
+                     ng-model="user.invoicing_profile_attributes.organization_attributes.address_attributes.address"
                      class="form-control"
                      placeholder="{{ 'app.public.common.address_of_your_organization' | translate }}"
                      ng-required="user.organization">
@@ -164,6 +164,24 @@
           </div>
         </div>
 
+        <div ng-repeat="(i, profileCustomField) in profileCustomFields">
+          <div class="form-group required-row" ng-show="user.organization" ng-class="{'has-error': signupForm.user_profile_custom_fields{{i}}.$dirty && signupForm.user_profile_custom_fields{{i}}.$invalid}">
+            <div class="col-sm-12">
+              <div class="input-group">
+                <span class="input-group-addon"><i class="fa fa-building-o"></i></span>
+                <input type="text"
+                       name="user_profile_custom_fields{{i}}"
+                       ng-model="user.invoicing_profile_attributes.user_profile_custom_fields_attributes[i].value"
+                       class="form-control"
+                       placeholder="{{profileCustomField.label}}"
+                       ng-required="profileCustomField.required">
+              </div>
+              <span class="exponent help-cursor" title="{{ 'app.public.common.used_for_invoicing' | translate }}"><i class="fa fa-asterisk" aria-hidden="true"></i></span>
+              <span class="help-block" ng-show="signupForm.user_profile_custom_fields{{i}}.$dirty && signupForm.user_profile_custom_fields{{i}}.$error.required" translate translate-values="{FEILD: profileCustomField.label}">{{ 'app.public.common.profile_custom_field_is_required' }}</span>
+            </div>
+          </div>
+        </div>
+
         <div class="form-group required-row" ng-class="{'has-error': signupForm.group_id.$dirty && signupForm.group_id.$invalid}">
           <div class="col-sm-12">
             <div>
@@ -175,6 +193,12 @@
             <span class="help-block" ng-show="signupForm.group_id.$dirty && signupForm.group_id.$error.required" translate>{{ 'app.public.common.user_s_profile_is_required' }}</span>
           </div>
         </div>
+        <div class="alert alert-warning" ng-show="hasProofOfIdentityTypes(user.group_id)">
+          <p class="text-sm">
+            <i class="fa fa-warning"></i>
+            <span translate translate-values="{GROUP: groupName(user.group_id)}">{{ 'app.public.common.user_proof_of_identity_files_is_required' }}</span>
+          </p>
+        </div>
 
         <div class="form-group required-row" ng-class="{'has-error': signupForm.birthday.$dirty && signupForm.birthday.$invalid}">
           <div class="col-sm-12">
diff --git a/app/frontend/templates/trainings/reserve.html b/app/frontend/templates/trainings/reserve.html
index def405129..af11a3737 100644
--- a/app/frontend/templates/trainings/reserve.html
+++ b/app/frontend/templates/trainings/reserve.html
@@ -34,7 +34,7 @@
   <div class="col-sm-12 col-md-12 col-lg-3">
 
     <div ng-if="isAuthorized(['admin', 'manager'])">
-      <select-member></select-member>
+      <select-member settings="settings"></select-member>
     </div>
 
 
diff --git a/app/models/cart_item/base_item.rb b/app/models/cart_item/base_item.rb
index 4b8d1abbc..25d829785 100644
--- a/app/models/cart_item/base_item.rb
+++ b/app/models/cart_item/base_item.rb
@@ -26,4 +26,8 @@ class CartItem::BaseItem
   end
 
   def to_object; end
+
+  def type
+    ''
+  end
 end
diff --git a/app/models/cart_item/coupon.rb b/app/models/cart_item/coupon.rb
index 0a02004fe..b26f02f6a 100644
--- a/app/models/cart_item/coupon.rb
+++ b/app/models/cart_item/coupon.rb
@@ -23,4 +23,8 @@ class CartItem::Coupon
 
     { amount: amount, total_with_coupon: new_total, total_without_coupon: cart_total }
   end
+
+  def type
+    'coupon'
+  end
 end
diff --git a/app/models/cart_item/event_reservation.rb b/app/models/cart_item/event_reservation.rb
index c84ed9a24..65b8cb964 100644
--- a/app/models/cart_item/event_reservation.rb
+++ b/app/models/cart_item/event_reservation.rb
@@ -49,6 +49,10 @@ class CartItem::EventReservation < CartItem::Reservation
     @reservable.title
   end
 
+  def type
+    'event'
+  end
+
   protected
 
   def tickets_params
diff --git a/app/models/cart_item/free_extension.rb b/app/models/cart_item/free_extension.rb
index af64d1fef..9c11ae0ec 100644
--- a/app/models/cart_item/free_extension.rb
+++ b/app/models/cart_item/free_extension.rb
@@ -35,4 +35,8 @@ class CartItem::FreeExtension < CartItem::BaseItem
       end_at: @new_expiration_date
     )
   end
+
+  def type
+    'subscription'
+  end
 end
diff --git a/app/models/cart_item/machine_reservation.rb b/app/models/cart_item/machine_reservation.rb
index 8306a8dbc..2c2140108 100644
--- a/app/models/cart_item/machine_reservation.rb
+++ b/app/models/cart_item/machine_reservation.rb
@@ -21,6 +21,10 @@ class CartItem::MachineReservation < CartItem::Reservation
     )
   end
 
+  def type
+    'machine'
+  end
+
   protected
 
   def credits
diff --git a/app/models/cart_item/payment_schedule.rb b/app/models/cart_item/payment_schedule.rb
index 34c7d5e2e..525053c93 100644
--- a/app/models/cart_item/payment_schedule.rb
+++ b/app/models/cart_item/payment_schedule.rb
@@ -29,4 +29,8 @@ class CartItem::PaymentSchedule
 
     { schedule: schedule, total: total_amount }
   end
+
+  def type
+    'subscription'
+  end
 end
diff --git a/app/models/cart_item/prepaid_pack.rb b/app/models/cart_item/prepaid_pack.rb
index f7b1b802c..e4c4735ed 100644
--- a/app/models/cart_item/prepaid_pack.rb
+++ b/app/models/cart_item/prepaid_pack.rb
@@ -33,4 +33,8 @@ class CartItem::PrepaidPack < CartItem::BaseItem
       statistic_profile_id: StatisticProfile.find_by(user: @customer).id
     )
   end
+
+  def type
+    'pack'
+  end
 end
diff --git a/app/models/cart_item/space_reservation.rb b/app/models/cart_item/space_reservation.rb
index 46e8c2c0d..0dd341952 100644
--- a/app/models/cart_item/space_reservation.rb
+++ b/app/models/cart_item/space_reservation.rb
@@ -21,6 +21,10 @@ class CartItem::SpaceReservation < CartItem::Reservation
     )
   end
 
+  def type
+    'space'
+  end
+
   protected
 
   def credits
diff --git a/app/models/cart_item/subscription.rb b/app/models/cart_item/subscription.rb
index 0b235a736..5c3ff9ff3 100644
--- a/app/models/cart_item/subscription.rb
+++ b/app/models/cart_item/subscription.rb
@@ -37,4 +37,8 @@ class CartItem::Subscription < CartItem::BaseItem
       start_at: @start_at
     )
   end
+
+  def type
+    'subscription'
+  end
 end
diff --git a/app/models/cart_item/training_reservation.rb b/app/models/cart_item/training_reservation.rb
index b0e230abd..9106f9099 100644
--- a/app/models/cart_item/training_reservation.rb
+++ b/app/models/cart_item/training_reservation.rb
@@ -41,6 +41,10 @@ class CartItem::TrainingReservation < CartItem::Reservation
     )
   end
 
+  def type
+    'training'
+  end
+
   protected
 
   def credits
diff --git a/app/models/group.rb b/app/models/group.rb
index bce93d058..cd54e6312 100644
--- a/app/models/group.rb
+++ b/app/models/group.rb
@@ -8,6 +8,8 @@ class Group < ApplicationRecord
   has_many :trainings_pricings, dependent: :destroy
   has_many :machines_prices, -> { where(priceable_type: 'Machine') }, class_name: 'Price', dependent: :destroy
   has_many :spaces_prices, -> { where(priceable_type: 'Space') }, class_name: 'Price', dependent: :destroy
+  has_many :proof_of_identity_types_groups, dependent: :destroy
+  has_many :proof_of_identity_types, through: :proof_of_identity_types_groups
 
   scope :all_except_admins, -> { where.not(slug: 'admins') }
 
diff --git a/app/models/invoicing_profile.rb b/app/models/invoicing_profile.rb
index 963e8790f..4db85f2de 100644
--- a/app/models/invoicing_profile.rb
+++ b/app/models/invoicing_profile.rb
@@ -20,6 +20,10 @@ class InvoicingProfile < ApplicationRecord
   has_many :operated_invoices, foreign_key: :operator_profile_id, class_name: 'Invoice', dependent: :nullify
   has_many :operated_payment_schedules, foreign_key: :operator_profile_id, class_name: 'PaymentSchedule', dependent: :nullify
 
+  has_many :user_profile_custom_fields
+  has_many :profile_custom_fields, through: :user_profile_custom_fields
+  accepts_nested_attributes_for :user_profile_custom_fields, allow_destroy: true
+
   validates :address, presence: true, if: -> { Setting.get('address_required') }
 
   def full_name
diff --git a/app/models/notification_type.rb b/app/models/notification_type.rb
index 975bd3bc5..834482649 100644
--- a/app/models/notification_type.rb
+++ b/app/models/notification_type.rb
@@ -63,6 +63,12 @@ class NotificationType
     notify_member_payment_schedule_error
     notify_admin_payment_schedule_gateway_canceled
     notify_member_payment_schedule_gateway_canceled
+    notify_admin_user_proof_of_identity_files_created
+    notify_admin_user_proof_of_identity_files_updated
+    notify_user_is_validated
+    notify_user_is_invalidated
+    notify_user_proof_of_identity_refusal
+    notify_admin_user_proof_of_identity_refusal
   ]
   # deprecated:
   # - notify_member_subscribed_plan_is_changed
diff --git a/app/models/profile_custom_field.rb b/app/models/profile_custom_field.rb
new file mode 100644
index 000000000..fef31c580
--- /dev/null
+++ b/app/models/profile_custom_field.rb
@@ -0,0 +1,4 @@
+class ProfileCustomField < ApplicationRecord
+  has_many :user_profile_custom_fields
+  has_many :invoicing_profiles, through: :user_profile_custom_fields
+end
diff --git a/app/models/proof_of_identity_file.rb b/app/models/proof_of_identity_file.rb
new file mode 100644
index 000000000..637a50499
--- /dev/null
+++ b/app/models/proof_of_identity_file.rb
@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+require 'file_size_validator'
+
+class ProofOfIdentityFile < ApplicationRecord
+  mount_uploader :attachment, ProofOfIdentityFileUploader
+
+  belongs_to :proof_of_identity_type
+  belongs_to :user
+
+  validates :attachment, file_size: { maximum: Rails.application.secrets.max_proof_of_identity_file_size&.to_i || 5.megabytes.to_i }
+end
diff --git a/app/models/proof_of_identity_refusal.rb b/app/models/proof_of_identity_refusal.rb
new file mode 100644
index 000000000..6d44ada56
--- /dev/null
+++ b/app/models/proof_of_identity_refusal.rb
@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+class ProofOfIdentityRefusal < ApplicationRecord
+  belongs_to :user
+  belongs_to :operator, class_name: 'User', foreign_key: :operator_id
+  has_and_belongs_to_many :proof_of_identity_types
+end
diff --git a/app/models/proof_of_identity_type.rb b/app/models/proof_of_identity_type.rb
new file mode 100644
index 000000000..624ed3c25
--- /dev/null
+++ b/app/models/proof_of_identity_type.rb
@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+class ProofOfIdentityType < ApplicationRecord
+  has_many :proof_of_identity_types_groups, dependent: :destroy
+  has_many :groups, through: :proof_of_identity_types_groups
+
+  has_many :proof_of_identity_files, dependent: :destroy
+end
diff --git a/app/models/proof_of_identity_types_group.rb b/app/models/proof_of_identity_types_group.rb
new file mode 100644
index 000000000..b297de827
--- /dev/null
+++ b/app/models/proof_of_identity_types_group.rb
@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+
+class ProofOfIdentityTypesGroup < ApplicationRecord
+  belongs_to :proof_of_identity_type
+  belongs_to :group
+end
diff --git a/app/models/setting.rb b/app/models/setting.rb
index 71152d113..245b15446 100644
--- a/app/models/setting.rb
+++ b/app/models/setting.rb
@@ -145,7 +145,9 @@ class Setting < ApplicationRecord
                              lastfm
                              flickr
                              machines_module
-                             user_change_group] }
+                             user_change_group
+                             user_validation_required
+                             user_validation_required_list] }
   # WARNING: when adding a new key, you may also want to add it in:
   # - config/locales/en.yml#settings
   # - app/frontend/src/javascript/models/setting.ts#SettingName
diff --git a/app/models/shopping_cart.rb b/app/models/shopping_cart.rb
index 1758c11f5..35eb91005 100644
--- a/app/models/shopping_cart.rb
+++ b/app/models/shopping_cart.rb
@@ -48,6 +48,23 @@ class ShoppingCart
   # Build the dataset for the current ShoppingCart and save it into the database.
   # Data integrity is guaranteed: all goes right or nothing is saved.
   def build_and_save(payment_id, payment_type)
+    user_validation_required = Setting.get('user_validation_required')
+    user_validation_required_list = Setting.get('user_validation_required_list')
+    unless @operator.privileged?
+      if user_validation_required && user_validation_required_list.present?
+        list = user_validation_required_list.split(',')
+        errors = []
+        items.each do |item|
+          if list.include?(item.type) && !@customer.validated_at?
+            errors.push("User validation is required for reserve #{item.type}")
+          end
+        end
+        unless errors.empty?
+          return { success: nil, payment: nil, errors: errors }
+        end
+      end
+    end
+
     price = total
     objects = []
     payment = nil
diff --git a/app/models/user.rb b/app/models/user.rb
index 3f170ed95..4050a2793 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -47,6 +47,9 @@ class User < ApplicationRecord
 
   has_many :accounting_periods, foreign_key: 'closed_by', dependent: :nullify
 
+  has_many :proof_of_identity_files, dependent: :destroy
+  has_many :proof_of_identity_refusals, dependent: :destroy
+
   # fix for create admin user
   before_save do
     email&.downcase!
@@ -56,7 +59,6 @@ class User < ApplicationRecord
   after_commit :create_gateway_customer, on: [:create]
   after_commit :notify_admin_when_user_is_created, on: :create
   after_create :init_dependencies
-  after_update :notify_group_changed, if: :saved_change_to_group_id?
   after_update :update_invoicing_profile, if: :invoicing_data_was_modified?
   after_update :update_statistic_profile, if: :statistic_data_was_modified?
   before_destroy :remove_orphan_drafts
@@ -232,6 +234,20 @@ class User < ApplicationRecord
     !invoicing_profile.organization.nil?
   end
 
+  def notify_group_changed(ex_group, user_invalidated)
+    meta_data = { ex_group_name: ex_group.name, user_invalidated: user_invalidated }
+
+    NotificationCenter.call type: :notify_admin_user_group_changed,
+                            receiver: User.admins_and_managers,
+                            attached_object: self,
+                            meta_data: meta_data
+
+    NotificationCenter.call type: :notify_user_user_group_changed,
+                            receiver: self,
+                            attached_object: self,
+                            meta_data: meta_data
+  end
+
   protected
 
   # remove projects drafts that are not linked to another user
@@ -286,22 +302,6 @@ class User < ApplicationRecord
     end
   end
 
-  def notify_group_changed
-    return unless changes[:group_id]&.first
-
-    ex_group = Group.find(changes[:group_id].first)
-    meta_data = { ex_group_name: ex_group.name }
-
-    NotificationCenter.call type: :notify_admin_user_group_changed,
-                            receiver: User.admins_and_managers,
-                            attached_object: self,
-                            meta_data: meta_data
-
-    NotificationCenter.call type: :notify_user_user_group_changed,
-                            receiver: self,
-                            attached_object: self
-  end
-
   def invoicing_data_was_modified?
     saved_change_to_email?
   end
diff --git a/app/models/user_profile_custom_field.rb b/app/models/user_profile_custom_field.rb
new file mode 100644
index 000000000..b98c65c82
--- /dev/null
+++ b/app/models/user_profile_custom_field.rb
@@ -0,0 +1,4 @@
+class UserProfileCustomField < ApplicationRecord
+  belongs_to :invoicing_profile
+  belongs_to :profile_custom_field
+end
diff --git a/app/pdfs/pdf/invoice.rb b/app/pdfs/pdf/invoice.rb
index ab391869b..ac8ef030c 100644
--- a/app/pdfs/pdf/invoice.rb
+++ b/app/pdfs/pdf/invoice.rb
@@ -61,6 +61,9 @@ class PDF::Invoice < Prawn::Document
       if invoice&.invoicing_profile&.organization
         name = invoice.invoicing_profile.organization.name
         full_name = "#{name} (#{invoice.invoicing_profile.full_name})"
+        others = invoice&.invoicing_profile&.user_profile_custom_fields&.includes(:profile_custom_field)&.map do |f|
+          "#{f.profile_custom_field.label}: #{f.value}"
+        end
       else
         name = invoice.invoicing_profile.full_name
         full_name = name
@@ -74,15 +77,15 @@ class PDF::Invoice < Prawn::Document
                   ''
                 end
 
-      text_box "<b>#{name}</b>\n#{invoice.invoicing_profile.email}\n#{address}",
-               at: [bounds.width - 130, bounds.top - 49],
-               width: 130,
+      text_box "<b>#{name}</b>\n#{invoice.invoicing_profile.email}\n#{address}\n#{others&.join("\n")}",
+               at: [bounds.width - 180, bounds.top - 49],
+               width: 180,
                align: :right,
                inline_format: true
       name = full_name
 
       # object
-      move_down 25
+      move_down 28
       if invoice.is_a?(Avoir)
         object = if invoice.main_item.object_type == WalletTransaction.name
                    I18n.t('invoices.wallet_credit')
diff --git a/app/policies/profile_custom_field_policy.rb b/app/policies/profile_custom_field_policy.rb
new file mode 100644
index 000000000..2e3a3149a
--- /dev/null
+++ b/app/policies/profile_custom_field_policy.rb
@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+# Check the access policies for API::ProfileCustomFieldsController
+class ProfileCustomFieldPolicy < ApplicationPolicy
+  def create?
+    user.admin?
+  end
+
+  def update?
+    user.admin?
+  end
+
+  def destroy?
+    user.admin?
+  end
+end
diff --git a/app/policies/proof_of_identity_file_policy.rb b/app/policies/proof_of_identity_file_policy.rb
new file mode 100644
index 000000000..acf8946f9
--- /dev/null
+++ b/app/policies/proof_of_identity_file_policy.rb
@@ -0,0 +1,18 @@
+class ProofOfIdentityFilePolicy < ApplicationPolicy
+
+  def index?
+    user.privileged?
+  end
+
+  def create?
+    user.privileged? or record.user_id == user.id
+  end
+
+  def update?
+    user.privileged? or record.user_id == user.id
+  end
+
+  def download?
+    user.privileged? or record.user_id == user.id
+  end
+end
diff --git a/app/policies/proof_of_identity_refusal_policy.rb b/app/policies/proof_of_identity_refusal_policy.rb
new file mode 100644
index 000000000..6e067c0bd
--- /dev/null
+++ b/app/policies/proof_of_identity_refusal_policy.rb
@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+# Check the access policies for API::ProofOfIdentityRefusalsController
+class ProofOfIdentityRefusalPolicy < ApplicationPolicy
+  def index?
+    user.privileged?
+  end
+
+  def create?
+    user.privileged?
+  end
+
+  def show?
+    user.privileged?
+  end
+end
diff --git a/app/policies/proof_of_identity_type_policy.rb b/app/policies/proof_of_identity_type_policy.rb
new file mode 100644
index 000000000..a5c6fafd1
--- /dev/null
+++ b/app/policies/proof_of_identity_type_policy.rb
@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+# Check the access policies for API::ProofOfIdentityTypesController
+class ProofOfIdentityTypePolicy < ApplicationPolicy
+  def create?
+    user.admin?
+  end
+
+  def update?
+    user.admin?
+  end
+
+  def destroy?
+    user.admin?
+  end
+end
diff --git a/app/policies/setting_policy.rb b/app/policies/setting_policy.rb
index 561d4dadf..3c279459d 100644
--- a/app/policies/setting_policy.rb
+++ b/app/policies/setting_policy.rb
@@ -41,7 +41,8 @@ class SettingPolicy < ApplicationPolicy
        online_payment_module stripe_public_key confirmation_required wallet_module trainings_module address_required
        payment_gateway payzen_endpoint payzen_public_key public_agenda_module renew_pack_threshold statistics_module
        pack_only_for_subscription overlapping_categories public_registrations facebook twitter viadeo linkedin instagram
-       youtube vimeo dailymotion github echosciences pinterest lastfm flickr machines_module user_change_group]
+       youtube vimeo dailymotion github echosciences pinterest lastfm flickr machines_module user_change_group
+       user_validation_required user_validation_required_list]
   end
 
   ##
diff --git a/app/policies/user_policy.rb b/app/policies/user_policy.rb
index 2c9b28b0c..b608fb397 100644
--- a/app/policies/user_policy.rb
+++ b/app/policies/user_policy.rb
@@ -37,7 +37,7 @@ class UserPolicy < ApplicationPolicy
     end
   end
 
-  %w[list index create_member].each do |action|
+  %w[list index create_member validate].each do |action|
     define_method "#{action}?" do
       user.admin? || user.manager?
     end
diff --git a/app/services/members/members_service.rb b/app/services/members/members_service.rb
index 4026f4315..efbea548c 100644
--- a/app/services/members/members_service.rb
+++ b/app/services/members/members_service.rb
@@ -21,10 +21,26 @@ class Members::MembersService
       return false
     end
 
+    group_changed = params[:group_id] && @member.group_id != params[:group_id].to_i
+    ex_group = @member.group
+
+    user_validation_required = Setting.get('user_validation_required')
+    validated_at_changed = false
+    if group_changed && user_validation_required
+      # here a group change, user must re-validate by admin
+      current_proof_of_identity_types = @member.group.proof_of_identity_types
+      new_proof_of_identity_types = Group.find(params[:group_id].to_i).proof_of_identity_types
+      if @member.validated_at? && !(new_proof_of_identity_types - current_proof_of_identity_types).empty?
+        validated_at_changed = true
+        @member.validated_at = nil
+      end
+    end
+
     not_complete = member.need_completion?
     up_result = member.update(params)
 
     notify_user_profile_complete(not_complete) if up_result
+    member.notify_group_changed(ex_group, validated_at_changed) if group_changed
     up_result
   end
 
@@ -61,6 +77,22 @@ class Members::MembersService
     merge_result
   end
 
+  def validate(is_valid)
+    is_updated = member.update(validated_at: is_valid ? Time.now : nil)
+    if is_updated
+      if is_valid
+        NotificationCenter.call type: 'notify_user_is_validated',
+                                receiver: member,
+                                attached_object: member
+      else
+        NotificationCenter.call type: 'notify_user_is_invalidated',
+                                receiver: member,
+                                attached_object: member
+      end
+    end
+    is_updated
+  end
+
   private
 
   def notify_user_profile_complete(previous_state)
diff --git a/app/services/proof_of_identity_file_service.rb b/app/services/proof_of_identity_file_service.rb
new file mode 100644
index 000000000..ad4164837
--- /dev/null
+++ b/app/services/proof_of_identity_file_service.rb
@@ -0,0 +1,55 @@
+# frozen_string_literal: true
+
+# Provides methods for ProofOfIdentityFile
+class ProofOfIdentityFileService
+  def self.list(operator, filters = {})
+    files = []
+    if filters[:user_id].present?
+      if operator.privileged? || filters[:user_id].to_i == operator.id
+        files = ProofOfIdentityFile.where(user_id: filters[:user_id])
+      end
+    end
+    files
+  end
+
+  def self.create(proof_of_identity_file)
+    saved = proof_of_identity_file.save
+
+    if saved
+      user = User.find(proof_of_identity_file.user_id)
+      all_files_are_upload = true
+      user.group.proof_of_identity_types.each do |type|
+        file = type.proof_of_identity_files.find_by(user_id: proof_of_identity_file.user_id)
+        unless file
+          all_files_are_upload = false
+        end
+      end
+      if all_files_are_upload
+        NotificationCenter.call type: 'notify_admin_user_proof_of_identity_files_created',
+                                receiver: User.admins_and_managers,
+                                attached_object: user
+      end
+    end
+    saved
+  end
+
+  def self.update(proof_of_identity_file, params)
+    updated = proof_of_identity_file.update(params)
+    if updated
+      user = proof_of_identity_file.user
+      all_files_are_upload = true
+      user.group.proof_of_identity_types.each do |type|
+        file = type.proof_of_identity_files.find_by(user_id: proof_of_identity_file.user_id)
+        unless file
+          all_files_are_upload = false
+        end
+      end
+      if all_files_are_upload && !user.validated_at?
+        NotificationCenter.call type: 'notify_admin_user_proof_of_identity_files_updated',
+                                receiver: User.admins_and_managers,
+                                attached_object: proof_of_identity_file
+      end
+    end
+    updated
+  end
+end
diff --git a/app/services/proof_of_identity_refusal_service.rb b/app/services/proof_of_identity_refusal_service.rb
new file mode 100644
index 000000000..4c8416b91
--- /dev/null
+++ b/app/services/proof_of_identity_refusal_service.rb
@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+# Provides methods for ProofOfIdentityRefusal
+class ProofOfIdentityRefusalService
+  def self.list(filters = {})
+    refusals = []
+    if filters[:user_id].present?
+      files = ProofOfIdentityRefusal.where(user_id: filters[:user_id])
+    end
+    refusals
+  end
+
+  def self.create(proof_of_identity_refusal)
+    saved = proof_of_identity_refusal.save
+
+    if saved
+      NotificationCenter.call type: 'notify_admin_user_proof_of_identity_refusal',
+                              receiver: User.admins_and_managers,
+                              attached_object: proof_of_identity_refusal
+      NotificationCenter.call type: 'notify_user_proof_of_identity_refusal',
+                              receiver: proof_of_identity_refusal.user,
+                              attached_object: proof_of_identity_refusal
+    end
+    saved
+  end
+end
diff --git a/app/services/proof_of_identity_type_service.rb b/app/services/proof_of_identity_type_service.rb
new file mode 100644
index 000000000..a572f9a67
--- /dev/null
+++ b/app/services/proof_of_identity_type_service.rb
@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+# Provides methods for ProofOfIdentityType
+class ProofOfIdentityTypeService
+  def self.list(filters = {})
+    types = []
+    if filters[:group_id].present?
+      group = Group.find(filters[:group_id])
+      types = group.proof_of_identity_types.includes(:groups)
+    else
+      types = ProofOfIdentityType.all
+    end
+    types
+  end
+end
diff --git a/app/uploaders/proof_of_identity_file_uploader.rb b/app/uploaders/proof_of_identity_file_uploader.rb
new file mode 100644
index 000000000..f7744cc82
--- /dev/null
+++ b/app/uploaders/proof_of_identity_file_uploader.rb
@@ -0,0 +1,66 @@
+# frozen_string_literal: true
+
+# CarrierWave uploader for proof of identity file of user
+# This file defines the parameters for these uploads.
+class ProofOfIdentityFileUploader < CarrierWave::Uploader::Base
+
+  # Include RMagick or MiniMagick support:
+  # include CarrierWave::RMagick
+  # include CarrierWave::MiniMagick
+  include UploadHelper
+
+  # Choose what kind of storage to use for this uploader:
+  storage :file
+  # storage :fog
+
+  after :remove, :delete_empty_dirs
+
+  # Override the directory where uploaded files will be stored.
+  # This is a sensible default for uploaders that are meant to be mounted:
+  def store_dir
+    "#{base_store_dir}/#{model.id}"
+  end
+
+  def base_store_dir
+    "../proof_of_identity_files"
+  end
+
+  # Provide a default URL as a default if there hasn't been a file uploaded:
+  # def default_url
+  #   # For Rails 3.1+ asset pipeline compatibility:
+  #   # ActionController::Base.helpers.asset_pack_path("fallback/" + [version_name, "default.png"].compact.join('_'))
+  #
+  #   "/images/fallback/" + [version_name, "default.png"].compact.join('_')
+  # end
+
+  # Process files as they are uploaded:
+  # process :scale => [200, 300]
+  #
+  # def scale(width, height)
+  #   # do something
+  # end
+
+  # Create different versions of your uploaded files:
+  # version :thumb do
+  #   process :resize_to_fit => [50, 50]
+  # end
+
+  # Add a white list of extensions which are allowed to be uploaded.
+  # For images you might use something like this:
+  def extension_whitelist
+    %w[pdf png jpeg jpg]
+  end
+
+  def content_type_whitelist
+    [%r{image/}, 'application/pdf']
+  end
+
+  # Override the filename of the uploaded files:
+  # Avoid using model.id or version_name here, see uploader/store.rb for details.
+  def filename
+    original_filename.split('.').map do |s|
+      ActiveSupport::Inflector.transliterate(s).to_s
+    end.join('.') if original_filename
+  end
+
+end
diff --git a/app/views/api/members/_member.json.jbuilder b/app/views/api/members/_member.json.jbuilder
index 481aea54c..5f511e4d4 100644
--- a/app/views/api/members/_member.json.jbuilder
+++ b/app/views/api/members/_member.json.jbuilder
@@ -79,3 +79,5 @@ json.machine_credits member.machine_credits do |mc|
 end
 # TODO, missing space_credits?
 json.last_sign_in_at member.last_sign_in_at.iso8601 if member.last_sign_in_at
+
+json.validated_at member.validated_at
diff --git a/app/views/api/members/list.json.jbuilder b/app/views/api/members/list.json.jbuilder
index d5e557416..ee443adb1 100644
--- a/app/views/api/members/list.json.jbuilder
+++ b/app/views/api/members/list.json.jbuilder
@@ -16,4 +16,5 @@ json.array!(@members) do |member|
       json.partial! 'api/shared/plan', plan: member.subscribed_plan
     end
   end
+  json.validated_at member.validated_at
 end
diff --git a/app/views/api/members/search.json.jbuilder b/app/views/api/members/search.json.jbuilder
index c2ef52edc..19cc99c80 100644
--- a/app/views/api/members/search.json.jbuilder
+++ b/app/views/api/members/search.json.jbuilder
@@ -3,4 +3,5 @@ json.array!(@members) do |member|
   json.name "#{member.profile.first_name} #{member.profile.last_name}"
   json.group_id member.group_id
   json.need_completion member.need_completion?
-end
\ No newline at end of file
+  json.validated_at member.validated_at
+end
diff --git a/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_created.json.jbuilder b/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_created.json.jbuilder
new file mode 100644
index 000000000..d075018b0
--- /dev/null
+++ b/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_created.json.jbuilder
@@ -0,0 +1,3 @@
+json.title notification.notification_type
+json.description t('.proof_of_identity_files_uploaded',
+                   NAME: notification.attached_object&.profile&.full_name || t('api.notifications.deleted_user'))
diff --git a/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_updated.json.jbuilder b/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_updated.json.jbuilder
new file mode 100644
index 000000000..1ffa0c347
--- /dev/null
+++ b/app/views/api/notifications/_notify_admin_user_proof_of_identity_files_updated.json.jbuilder
@@ -0,0 +1,3 @@
+json.title notification.notification_type
+json.description t('.proof_of_identity_files_uploaded',
+                   NAME: notification.attached_object&.user&.profile&.full_name || t('api.notifications.deleted_user'))
diff --git a/app/views/api/notifications/_notify_admin_user_proof_of_identity_refusal.json.jbuilder b/app/views/api/notifications/_notify_admin_user_proof_of_identity_refusal.json.jbuilder
new file mode 100644
index 000000000..1fa287c30
--- /dev/null
+++ b/app/views/api/notifications/_notify_admin_user_proof_of_identity_refusal.json.jbuilder
@@ -0,0 +1,3 @@
+json.title notification.notification_type
+json.description t('.refusal',
+                   NAME: notification.attached_object&.user&.profile&.full_name || t('api.notifications.deleted_user'))
diff --git a/app/views/api/notifications/_notify_user_is_invalidated.json.jbuilder b/app/views/api/notifications/_notify_user_is_invalidated.json.jbuilder
new file mode 100644
index 000000000..2a37df8ff
--- /dev/null
+++ b/app/views/api/notifications/_notify_user_is_invalidated.json.jbuilder
@@ -0,0 +1,2 @@
+json.title notification.notification_type
+json.description t('.account_invalidated')
diff --git a/app/views/api/notifications/_notify_user_is_validated.json.jbuilder b/app/views/api/notifications/_notify_user_is_validated.json.jbuilder
new file mode 100644
index 000000000..17b181f32
--- /dev/null
+++ b/app/views/api/notifications/_notify_user_is_validated.json.jbuilder
@@ -0,0 +1,2 @@
+json.title notification.notification_type
+json.description t('.account_validated')
diff --git a/app/views/api/notifications/_notify_user_proof_of_identity_refusal.json.jbuilder b/app/views/api/notifications/_notify_user_proof_of_identity_refusal.json.jbuilder
new file mode 100644
index 000000000..b25586a8c
--- /dev/null
+++ b/app/views/api/notifications/_notify_user_proof_of_identity_refusal.json.jbuilder
@@ -0,0 +1,2 @@
+json.title notification.notification_type
+json.description t('.refusal')
diff --git a/app/views/api/profile_custom_fields/_profile_custom_field.json.jbuilder b/app/views/api/profile_custom_fields/_profile_custom_field.json.jbuilder
new file mode 100644
index 000000000..9197c38b6
--- /dev/null
+++ b/app/views/api/profile_custom_fields/_profile_custom_field.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.extract! profile_custom_field, :id, :label, :required, :actived
diff --git a/app/views/api/profile_custom_fields/create.json.jbuilder b/app/views/api/profile_custom_fields/create.json.jbuilder
new file mode 100644
index 000000000..b51dbc417
--- /dev/null
+++ b/app/views/api/profile_custom_fields/create.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/profile_custom_fields/profile_custom_field', profile_custom_field: @profile_custom_field
diff --git a/app/views/api/profile_custom_fields/index.json.jbuilder b/app/views/api/profile_custom_fields/index.json.jbuilder
new file mode 100644
index 000000000..9991c397b
--- /dev/null
+++ b/app/views/api/profile_custom_fields/index.json.jbuilder
@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+json.array! @profile_custom_fields do |profile_custom_field|
+  json.partial! 'api/profile_custom_fields/profile_custom_field', profile_custom_field: profile_custom_field
+end
diff --git a/app/views/api/profile_custom_fields/show.json.jbuilder b/app/views/api/profile_custom_fields/show.json.jbuilder
new file mode 100644
index 000000000..b51dbc417
--- /dev/null
+++ b/app/views/api/profile_custom_fields/show.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/profile_custom_fields/profile_custom_field', profile_custom_field: @profile_custom_field
diff --git a/app/views/api/profile_custom_fields/update.json.jbuilder b/app/views/api/profile_custom_fields/update.json.jbuilder
new file mode 100644
index 000000000..b51dbc417
--- /dev/null
+++ b/app/views/api/profile_custom_fields/update.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/profile_custom_fields/profile_custom_field', profile_custom_field: @profile_custom_field
diff --git a/app/views/api/proof_of_identity_files/_proof_of_identity_file.json.jbuilder b/app/views/api/proof_of_identity_files/_proof_of_identity_file.json.jbuilder
new file mode 100644
index 000000000..0ffbafa51
--- /dev/null
+++ b/app/views/api/proof_of_identity_files/_proof_of_identity_file.json.jbuilder
@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+json.extract! proof_of_identity_file, :id, :user_id, :proof_of_identity_type_id
+json.attachment proof_of_identity_file.attachment.file.filename
diff --git a/app/views/api/proof_of_identity_files/create.json.jbuilder b/app/views/api/proof_of_identity_files/create.json.jbuilder
new file mode 100644
index 000000000..18b97c354
--- /dev/null
+++ b/app/views/api/proof_of_identity_files/create.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_files/proof_of_identity_file', proof_of_identity_file: @proof_of_identity_file
diff --git a/app/views/api/proof_of_identity_files/index.json.jbuilder b/app/views/api/proof_of_identity_files/index.json.jbuilder
new file mode 100644
index 000000000..c7aa2efd8
--- /dev/null
+++ b/app/views/api/proof_of_identity_files/index.json.jbuilder
@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+json.array! @proof_of_identity_files do |proof_of_identity_file|
+  json.partial! 'api/proof_of_identity_files/proof_of_identity_file', proof_of_identity_file: proof_of_identity_file
+end
diff --git a/app/views/api/proof_of_identity_files/show.json.jbuilder b/app/views/api/proof_of_identity_files/show.json.jbuilder
new file mode 100644
index 000000000..18b97c354
--- /dev/null
+++ b/app/views/api/proof_of_identity_files/show.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_files/proof_of_identity_file', proof_of_identity_file: @proof_of_identity_file
diff --git a/app/views/api/proof_of_identity_files/update.json.jbuilder b/app/views/api/proof_of_identity_files/update.json.jbuilder
new file mode 100644
index 000000000..18b97c354
--- /dev/null
+++ b/app/views/api/proof_of_identity_files/update.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_files/proof_of_identity_file', proof_of_identity_file: @proof_of_identity_file
diff --git a/app/views/api/proof_of_identity_refusals/_proof_of_identity_refusal.json.jbuilder b/app/views/api/proof_of_identity_refusals/_proof_of_identity_refusal.json.jbuilder
new file mode 100644
index 000000000..980b43078
--- /dev/null
+++ b/app/views/api/proof_of_identity_refusals/_proof_of_identity_refusal.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.extract! proof_of_identity_refusal, :id, :user_id, :operator_id, :proof_of_identity_type_ids, :message
diff --git a/app/views/api/proof_of_identity_refusals/create.json.jbuilder b/app/views/api/proof_of_identity_refusals/create.json.jbuilder
new file mode 100644
index 000000000..439defbb6
--- /dev/null
+++ b/app/views/api/proof_of_identity_refusals/create.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_refusals/proof_of_identity_refusal', proof_of_identity_refusal: @proof_of_identity_refusal
diff --git a/app/views/api/proof_of_identity_refusals/index.json.jbuilder b/app/views/api/proof_of_identity_refusals/index.json.jbuilder
new file mode 100644
index 000000000..b6555841f
--- /dev/null
+++ b/app/views/api/proof_of_identity_refusals/index.json.jbuilder
@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+json.array! @proof_of_identity_refusals do |proof_of_identity_refusal|
+  json.partial! 'api/proof_of_identity_refusals/proof_of_identity_refusal', proof_of_identity_refusal: proof_of_identity_refusal
+end
diff --git a/app/views/api/proof_of_identity_refusals/show.json.jbuilder b/app/views/api/proof_of_identity_refusals/show.json.jbuilder
new file mode 100644
index 000000000..439defbb6
--- /dev/null
+++ b/app/views/api/proof_of_identity_refusals/show.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_refusals/proof_of_identity_refusal', proof_of_identity_refusal: @proof_of_identity_refusal
diff --git a/app/views/api/proof_of_identity_types/_proof_of_identity_type.json.jbuilder b/app/views/api/proof_of_identity_types/_proof_of_identity_type.json.jbuilder
new file mode 100644
index 000000000..3fea8b8af
--- /dev/null
+++ b/app/views/api/proof_of_identity_types/_proof_of_identity_type.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.extract! proof_of_identity_type, :id, :name, :group_ids
diff --git a/app/views/api/proof_of_identity_types/create.json.jbuilder b/app/views/api/proof_of_identity_types/create.json.jbuilder
new file mode 100644
index 000000000..7eeabfe4e
--- /dev/null
+++ b/app/views/api/proof_of_identity_types/create.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_types/proof_of_identity_type', proof_of_identity_type: @proof_of_identity_type
diff --git a/app/views/api/proof_of_identity_types/index.json.jbuilder b/app/views/api/proof_of_identity_types/index.json.jbuilder
new file mode 100644
index 000000000..a4f3d5a0c
--- /dev/null
+++ b/app/views/api/proof_of_identity_types/index.json.jbuilder
@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+
+json.array! @proof_of_identity_types do |proof_of_identity_type|
+  json.partial! 'api/proof_of_identity_types/proof_of_identity_type', proof_of_identity_type: proof_of_identity_type
+end
diff --git a/app/views/api/proof_of_identity_types/show.json.jbuilder b/app/views/api/proof_of_identity_types/show.json.jbuilder
new file mode 100644
index 000000000..7eeabfe4e
--- /dev/null
+++ b/app/views/api/proof_of_identity_types/show.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_types/proof_of_identity_type', proof_of_identity_type: @proof_of_identity_type
diff --git a/app/views/api/proof_of_identity_types/update.json.jbuilder b/app/views/api/proof_of_identity_types/update.json.jbuilder
new file mode 100644
index 000000000..7eeabfe4e
--- /dev/null
+++ b/app/views/api/proof_of_identity_types/update.json.jbuilder
@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+
+json.partial! 'api/proof_of_identity_types/proof_of_identity_type', proof_of_identity_type: @proof_of_identity_type
diff --git a/app/views/notifications_mailer/notify_admin_user_group_changed.html.erb b/app/views/notifications_mailer/notify_admin_user_group_changed.html.erb
index 1baffd920..1c2f55718 100644
--- a/app/views/notifications_mailer/notify_admin_user_group_changed.html.erb
+++ b/app/views/notifications_mailer/notify_admin_user_group_changed.html.erb
@@ -6,3 +6,6 @@
   <small><%= t('.body.previous_group') %> <strong><%= "#{@notification.get_meta_data(:ex_group_name)}" %></strong></small>
   <br/><%= t('.body.new_group') %> <strong><%= "#{@attached_object.group.name}" %></strong>
 </p>
+<% if @notification.get_meta_data(:user_invalidated) %>
+  <p><%= t(".body.user_invalidated") %></p>
+<% end %>
diff --git a/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_created.html.erb b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_created.html.erb
new file mode 100644
index 000000000..d8bf2a4fd
--- /dev/null
+++ b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_created.html.erb
@@ -0,0 +1,18 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.proof_of_identity_files_uploaded_below',
+        NAME: @attached_object&.profile&.full_name || t('api.notifications.deleted_user')) %>
+</p>
+<ul>
+<% if @attached_object %>
+  <% @attached_object.group.proof_of_identity_types.each do |type| %>
+    <li><%= type.name %></li>
+  <% end %>
+<% end %>
+</ul>
+<% if Setting.get('user_validation_required') %>
+<p>
+  <%= t('.body.validate_user') %>
+</p>
+<% end %>
diff --git a/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_updated.html.erb b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_updated.html.erb
new file mode 100644
index 000000000..8951793ca
--- /dev/null
+++ b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_files_updated.html.erb
@@ -0,0 +1,14 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.user_update_proof_of_identity_file',
+        NAME: @attached_object&.user&.profile&.full_name || t('api.notifications.deleted_user')) %>
+</p>
+<ul>
+  <li><%= @attached_object.proof_of_identity_type.name %></li>
+</ul>
+<% if Setting.get('user_validation_required') %>
+<p>
+  <%= t('.body.validate_user') %>
+</p>
+<% end %>
diff --git a/app/views/notifications_mailer/notify_admin_user_proof_of_identity_refusal.html.erb b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_refusal.html.erb
new file mode 100644
index 000000000..b2480ddcb
--- /dev/null
+++ b/app/views/notifications_mailer/notify_admin_user_proof_of_identity_refusal.html.erb
@@ -0,0 +1,15 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.user_proof_of_identity_files_refusal',
+        NAME: @attached_object&.user&.profile&.full_name || t('api.notifications.deleted_user'),
+        OPERATOR: @attached_object&.operator&.profile&.full_name || t('api.notifications.deleted_user')) %>
+</p>
+<ul>
+  <% @attached_object.proof_of_identity_types.each do |type| %>
+    <li><%= type.name %></li>
+  <% end %>
+</ul>
+<p>
+  <%= @attached_object.message %>
+</p>
diff --git a/app/views/notifications_mailer/notify_user_is_invalidated.html.erb b/app/views/notifications_mailer/notify_user_is_invalidated.html.erb
new file mode 100644
index 000000000..004c7ee64
--- /dev/null
+++ b/app/views/notifications_mailer/notify_user_is_invalidated.html.erb
@@ -0,0 +1,5 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.account_invalidated') %>
+</p>
diff --git a/app/views/notifications_mailer/notify_user_is_validated.html.erb b/app/views/notifications_mailer/notify_user_is_validated.html.erb
new file mode 100644
index 000000000..311b0bce0
--- /dev/null
+++ b/app/views/notifications_mailer/notify_user_is_validated.html.erb
@@ -0,0 +1,5 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.account_validated') %>
+</p>
diff --git a/app/views/notifications_mailer/notify_user_proof_of_identity_refusal.html.erb b/app/views/notifications_mailer/notify_user_proof_of_identity_refusal.html.erb
new file mode 100644
index 000000000..2e28f7d67
--- /dev/null
+++ b/app/views/notifications_mailer/notify_user_proof_of_identity_refusal.html.erb
@@ -0,0 +1,16 @@
+<%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
+
+<p>
+  <%= t('.body.user_proof_of_identity_files_refusal') %>
+</p>
+<ul>
+  <% @attached_object.proof_of_identity_types.each do |type| %>
+    <li><%= type.name %></li>
+  <% end %>
+</ul>
+<p>
+  <%= @attached_object.message %>
+</p>
+<p>
+  <%= t('.body.action') %>
+</p>
diff --git a/app/views/notifications_mailer/notify_user_user_group_changed.html.erb b/app/views/notifications_mailer/notify_user_user_group_changed.html.erb
index accf48e74..5e7038fb1 100644
--- a/app/views/notifications_mailer/notify_user_user_group_changed.html.erb
+++ b/app/views/notifications_mailer/notify_user_user_group_changed.html.erb
@@ -1,3 +1,6 @@
 <%= render 'notifications_mailer/shared/hello', recipient: @recipient %>
 
 <p><%= t(".body.warning") %></p>
+<% if @notification.get_meta_data(:user_invalidated) %>
+  <p><%= t(".body.user_invalidated") %></p>
+<% end %>
diff --git a/config/locales/app.admin.de.yml b/config/locales/app.admin.de.yml
index 73bd82fef..c457f8a82 100644
--- a/config/locales/app.admin.de.yml
+++ b/config/locales/app.admin.de.yml
@@ -957,6 +957,30 @@ de:
         to_credit: 'Guthaben'
         cannot_credit_own_wallet: "Sie können keine Gutschrift auf Ihr eigenes Guthaben einbuchen. Bitten Sie einen anderen Manager oder einen Administrator um die Gutschreibung."
         cannot_extend_own_subscription: "Sie können Ihr eigenes Abonnement nicht erweitern. Bitte fragen Sie einen anderen Manager oder einen Administrator."
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "Abonnement verlängern"
@@ -1347,6 +1371,57 @@ de:
           statistics: "Statistiken"
           statistics_info_html: "<p>Aktivieren oder deaktivieren Sie das Statistik-Modul.</p><p>Wenn aktiviert, konsolidiert das Modul die Tagesdaten in der Datenbank einer leistungsstarken Analyse-Engine. Administratoren können im entsprechenden Abschnitt die erstellten Diagramme und Tabellen durchsuchen.</p>"
           enable_statistics: "Statistik-Modul aktivieren"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "Anstehende Veranstaltungen anzeigen"
           upcoming_events:
diff --git a/config/locales/app.admin.en.yml b/config/locales/app.admin.en.yml
index b4bba2186..35f109372 100644
--- a/config/locales/app.admin.en.yml
+++ b/config/locales/app.admin.en.yml
@@ -992,6 +992,30 @@ en:
         cannot_credit_own_wallet: "You cannot credit your own wallet. Please ask another manager or an administrator to credit your wallet."
         cannot_extend_own_subscription: "You cannot extend your own subscription. Please ask another manager or an administrator to extend your subscription."
         update_success: "Member's profile successfully updated"
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       # extend a subscription for free
       free_extend_modal:
         extend_subscription: "Extend the subscription"
@@ -1476,6 +1500,57 @@ en:
           statistics: "Statistics"
           statistics_info_html: "<p>Enable or disable the statistics module.</p><p>If enabled, every nights, the data of the day just passed will be consolidated in the database of a powerful analysis engine. Then, every administrators will be able to browse statistical charts and tables in the corresponding section.</p>"
           enable_statistics: "Enable statistics"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "Show upcoming events"
           upcoming_events:
diff --git a/config/locales/app.admin.es.yml b/config/locales/app.admin.es.yml
index 5d87d0d5e..700028a8a 100644
--- a/config/locales/app.admin.es.yml
+++ b/config/locales/app.admin.es.yml
@@ -957,6 +957,30 @@ es:
         to_credit: 'Credit'
         cannot_credit_own_wallet: "You cannot credit your own wallet. Please ask another manager or an administrator to credit your wallet."
         cannot_extend_own_subscription: "You cannot extend your own subscription. Please ask another manager or an administrator to extend your subscription."
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "Extend the subscription"
@@ -1347,6 +1371,57 @@ es:
           statistics: "Statistics"
           statistics_info_html: "<p>Enable or disable the statistics module.</p><p>If enabled, every nights, the data of the day just passed will be consolidated in the database of a powerful analysis engine. Then, every administrators will be able to browse statistical charts and tables in the corresponding section.</p>"
           enable_statistics: "Enable statistics"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "Show upcoming events"
           upcoming_events:
diff --git a/config/locales/app.admin.fr.yml b/config/locales/app.admin.fr.yml
index 733c5af20..736818147 100644
--- a/config/locales/app.admin.fr.yml
+++ b/config/locales/app.admin.fr.yml
@@ -957,6 +957,30 @@ fr:
         to_credit: 'Créditer'
         cannot_credit_own_wallet: "Vous ne pouvez pas créditer votre propre porte-monnaie. Veuillez demander à un autre gestionnaire ou à un administrateur de créditer votre porte-monnaie."
         cannot_extend_own_subscription: "Vous ne pouvez pas prolonger votre propre abonnement. Veuillez demander à un autre gestionnaire ou à un administrateur de prolonger votre abonnement."
+        my_documents: "Mes documents"
+        my_documents_info: "Suite à la déclaration de votre profil, vous devez déclarer des justificatifs. Une fois déposé, ces documents vont être vérifiés par l'administrateur."
+        proof_of_identity_file_size_error: "La limite de poids est 5 Mo max"
+        my_documents_alert: "Attention ! </br>Vous pouvez déposer vos documents en pdf ou en image(jpg) sous une limite de poids de 5 Mo max"
+        proof_of_identity_files: "Justificatifs"
+        find_below_the_proof_of_identity_files: "Retrouvez ci-dessous, les justificatifs déposés par le membre."
+        save: "Enregistrer"
+        to_complete: "À complèter"
+        proof_of_identity_refusal: "Refus du justificatif"
+        refuse_proof_of_identity_files: "Refuser des justificatifs"
+        refuse_proof_of_identity_files_info: "Après vérification, vous pouvez notifier le membre que le ou les justificatifs déposés ne sont pas recevables. Vous pouvez préciser les motifs de votre refus et lui indiquer les actions à mettre en oeuvre. Le membre sera notifié par mail."
+        confirm: "Confirmer"
+        cancel: "Annuler"
+        proof_of_identity_refusal_comment: "Commentaire"
+        proof_of_identity_refuse_input_message: "Tapper votre text"
+        validate_account: "Valider le compte"
+        validate_member_success: "Le membre est validé"
+        invalidate_member_success: "Le membre est invalidé"
+        validate_member_error: "Une error est survenue : impossible de valider de ce membre."
+        invalidate_member_error: "Une error est survenue : impossible d'invalider de ce membre."
+        proof_of_identity_refusal_successfully_sent: "Refus du justificatif a bien été envoyé."
+        proof_of_identity_refusal_unable_to_send: "Impossible refuser des justificatifs : "
+        proof_of_identity_files_successfully_uploaded: "Le justificatif a bien été envoyé."
+        proof_of_identity_files_unable_to_upload: "Impossible d'envoyer le justificatif : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "Prolonger l'abonnement"
@@ -1347,6 +1371,57 @@ fr:
           statistics: "Statistiques"
           statistics_info_html: "<p>Activer ou désactiver le module de statistiques.</p><p>Si activé, chaque nuit, les données de la journée qui vient de s'écouler seront consolidées dans la base de données d'un puissant moteur d'analyse. Ensuite, chaque administrateur pourra parcourir les tableaux et graphiques statistiques dans la section correspondante.</p>"
           enable_statistics: "Activer les statistiques"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Personnaliser les paramètres du compte"
+          user_validation_required: "la validation du compte"
+          user_validation_required_title: "Validation des comptes"
+          user_validation_required_info: "En activant cette option, seuls les membres dont le compte est validé par un administrateur ou un gestionnaire pourront effectuer des réservations."
+          user_validation_required_option_label: "Activer l'option validation des comptes"
+          user_validation_required_list_title: "Message d'information de la validation du compte membre"
+          user_validation_required_list_info: "Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
+          user_validation_required_list_other_info: "Les ressources sélectionnées ci-dessous seront assujetties à la validation du compte membre."
+          user_validation_required_list:
+            subscription: "Abonnements"
+            machine: "Machines"
+            event: "Événement"
+            space: "Espaces"
+            training: "Formations"
+            pack: "Achat pack d'heure"
+          create_groups: "Créer des groupes"
+          add_proof_of_identity_types: "Ajouter des justificatifs"
+          proof_of_identity_type_info: "Vous pouvez ajouter des justificatifs en fonction des groupes d'utilisateurs créés afin de demander à vos membres de les déposer au sein de leur espace. Chaque membre sera informé des justificatifs à fournir dans son espace personnel(onglet Mes justificatifs). De votre côté, vous pouvez allez vérifier les justificatifs et valider leur compte (sous réserve que l'option Validation de compte soit activée)."
+          proof_of_identity_type_no_group_info: "Les justificatifs sont nécessairement appliqués à des groupes.<br/>Si vous n'avez pas encore de groupe, vous pouvez en créer depuis la page \"Utilisateurs/Groupes\" (bouton ci-contre)."
+          proof_of_identity_type_title: "Justificatifs"
+          add_proof_of_identity_type_button: "Créer un justificatif"
+          no_proof_of_identity_types: "Vous n'avez aucun justificatifs.</br>Vérifiez bien que vous avez créé au moins un groupe afin d'accéder à l'ajout d'un document."
+          proof_of_identity_type:
+            group_name: "Groupe"
+            name: "Justificatif"
+          all_groups: 'Tous les groupes'
+          new_proof_of_identity_type: "Créer un justificatif"
+          edit_proof_of_identity_type: "Éditer le justificatif"
+          proof_of_identity_type_form_info: "Paramètres du champs"
+          proof_of_identity_type_select_group: "Choisir un groupe"
+          proof_of_identity_type_input_name: "Nom du champs"
+          create: "Créer"
+          edit: "Éditer"
+          confirm: "Valider"
+          confirmation_required: "Confirmation requise"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Voulez vous vraiment supprimer ce justificatif ?"
+          proof_of_identity_type_successfully_created: "Le nouveau justificatif a bien été créé."
+          proof_of_identity_type_unable_to_create: "Impossible de supprimer le justificatif : "
+          proof_of_identity_type_successfully_updated: "Le justificatif a bien été mis à jour."
+          proof_of_identity_type_unable_to_update: "Impossible de modifier le justificatif : "
+          proof_of_identity_type_deleted: "Le justificatif a été bien supprimé."
+          proof_of_identity_type_unable_to_delete: "Impossible de supprimer le justificatif : "
+          organization: "Structure"
+          organization_profile_custom_fields_info: "Vous pouvez afficher des champs supplémentaires pour les utilisateurs qui déclarent être une structure. Vous pouvez aussi choisir de les rendre obligatoires à la création du compte."
+          organization_profile_custom_field:
+            required: "Confirmation requise"
+            actived: "Activer le champs"
+          organization_profile_custom_field_successfully_updated: "Le champ de structure a bien été mise à jour."
+          organization_profile_custom_field_unable_to_update: "Impossible de modifier le champ : "
         home:
           show_upcoming_events: "Afficher les prochains événements"
           upcoming_events:
diff --git a/config/locales/app.admin.no.yml b/config/locales/app.admin.no.yml
index a2f390b65..07209ed3a 100644
--- a/config/locales/app.admin.no.yml
+++ b/config/locales/app.admin.no.yml
@@ -957,6 +957,30 @@
         to_credit: 'Kreditt'
         cannot_credit_own_wallet: "Du kan ikke kreditere din egen lommebok. Vennligst spør en annen leder eller administrator om å kreditere din lommebok."
         cannot_extend_own_subscription: "Du kan ikke utvide ditt eget medlemskap. Be en annen leder eller en administrator om å utvide abonnementet."
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "Forleng abonnementet"
@@ -1347,6 +1371,57 @@
           statistics: "Statistics"
           statistics_info_html: "<p>Enable or disable the statistics module.</p><p>If enabled, every nights, the data of the day just passed will be consolidated in the database of a powerful analysis engine. Then, every administrators will be able to browse statistical charts and tables in the corresponding section.</p>"
           enable_statistics: "Enable statistics"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "Show upcoming events"
           upcoming_events:
diff --git a/config/locales/app.admin.pt.yml b/config/locales/app.admin.pt.yml
index 9ef64f1d7..d5e0a9778 100755
--- a/config/locales/app.admin.pt.yml
+++ b/config/locales/app.admin.pt.yml
@@ -957,6 +957,30 @@ pt:
         to_credit: 'Crédito'
         cannot_credit_own_wallet: "Você não pode creditar sua própria carteira. Por favor, peça a outro gerente ou a um administrador para creditar sua carteira."
         cannot_extend_own_subscription: "Você não pode estender sua própria assinatura. Por favor, peça a outro gerente ou administrador para estender sua assinatura."
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "Estender assinatura"
@@ -1347,6 +1371,57 @@ pt:
           statistics: "Estatísticas"
           statistics_info_html: "<p>Ativar ou desativar módulo de estatísticas.</p><p>Se ativado, todas as noites, os dados do dia que acabou de ser passado serão consolidados na base de dados de um poderoso motor de análise. Então, todos os administradores poderão navegar em gráficos estatísticos e tabelas na seção correspondente.</p>"
           enable_statistics: "Habilitar estatísticas"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "Mostrar próximos eventos"
           upcoming_events:
diff --git a/config/locales/app.admin.zu.yml b/config/locales/app.admin.zu.yml
index a2f512a49..ad99e377b 100644
--- a/config/locales/app.admin.zu.yml
+++ b/config/locales/app.admin.zu.yml
@@ -957,6 +957,30 @@ zu:
         to_credit: 'crwdns8025:0crwdne8025:0'
         cannot_credit_own_wallet: "crwdns20344:0crwdne20344:0"
         cannot_extend_own_subscription: "crwdns20346:0crwdne20346:0"
+        my_documents: "My documents"
+        my_documents_info: "Following the declaration of your profile, you must declare the proof of identity documents. Once submitted, these documents will be verified by the administrator."
+        proof_of_identity_file_size_error: "The weight limit is 5 MB max"
+        my_documents_alert: "Attention!</br>You can submit your documents in pdf or in image (jpg) under a weight limit of 5 Mb max"
+        proof_of_identity_files: "Proof of identity"
+        find_below_the_proof_of_identity_files: "You will find below the proof of identity documents submitted by the member."
+        save: "Save"
+        to_complete: "To complete"
+        proof_of_identity_refusal: "Refusal of the proof of identity"
+        refuse_proof_of_identity_files: "Refusing to proof of identity"
+        refuse_proof_of_identity_files_info: "After verification, you may notify the member that the evidence submitted is not acceptable. You can specify the reasons for your refusal and indicate the actions to be taken. The member will be notified by e-mail."
+        confirm: "Confirm"
+        cancel: "Cancel"
+        proof_of_identity_refusal_comment: "Comment"
+        proof_of_identity_refuse_input_message: "Type your text"
+        validate_account: "Validate the account"
+        validate_member_success: "The member is validated"
+        invalidate_member_success: "The member is invalidated"
+        validate_member_error: "An error occurred: impossible to validate from this member."
+        invalidate_member_error: "An error occurred: impossible to invalidate from this member."
+        proof_of_identity_refusal_successfully_sent: "Refusal of the proof of identity has been sent."
+        proof_of_identity_refusal_unable_to_send: "Impossible to refuse proof of identity : "
+        proof_of_identity_files_successfully_uploaded: "The proof of identity has been sent."
+        proof_of_identity_files_unable_to_upload: "Impossible to send proof of identity : "
       #extend a subscription for free
       free_extend_modal:
         extend_subscription: "crwdns22047:0crwdne22047:0"
@@ -1347,6 +1371,57 @@ zu:
           statistics: "crwdns20866:0crwdne20866:0"
           statistics_info_html: "crwdns20868:0crwdne20868:0"
           enable_statistics: "crwdns20870:0crwdne20870:0"
+        compte:
+          compte: "Compte"
+          customize_account_settings: "Customize account settings"
+          user_validation_required: "validation of accounts"
+          user_validation_required_title: "Validation of accounts"
+          user_validation_required_info: "By activating this option, only members whose account is validated by an administrator or a manager will be able to make reservations."
+          user_validation_required_option_label: "Activate the account validation option"
+          user_validation_required_list_title: "Member account validation information message"
+          user_validation_required_list_info: "Your administrator must validate your account ? You will then be able to access all the booking features."
+          user_validation_required_list_other_info: "The resources selected below will be subject to member account validation."
+          user_validation_required_list:
+            subscription: "Subscriptions"
+            machine: "Machines"
+            event: "Events"
+            space: "Spaces"
+            training: "Trainings"
+            pack: "Prepaid pack"
+          create_groups: "Create groups"
+          add_proof_of_identity_types: "Add proof of identity"
+          proof_of_identity_type_info: "You can add proof of identity according to the user groups created in order to ask your members to deposit them in their space. Each member will be informed of the proof of identity to be provided in their personal space (My proof of identity tab). On your side, you can check the proof of identity and validate their account (provided that the Account Validation option is activated)."
+          proof_of_identity_type_no_group_info: "Proof of identity are necessarily applied to groups.</br>If you do not have a group yet, you can create one from the \"Users/Groups\" page (button on the right)."
+          proof_of_identity_type_title: "Proof of identity"
+          add_proof_of_identity_type_button: "Create proof of identity"
+          no_proof_of_identity_types: "You do not have any proof of identity.</br>Make sure you have created at least one group in order to add a document."
+          proof_of_identity_type:
+            group_name: "Group"
+            name: "Proof of identity"
+          all_groups: 'All groups'
+          new_proof_of_identity_type: "Create a proof of identity"
+          edit_proof_of_identity_type: "Edit the proof of identity"
+          proof_of_identity_type_form_info: "Field parameters"
+          proof_of_identity_type_select_group: "Choose a group"
+          proof_of_identity_type_input_name: "Name"
+          create: "Create"
+          edit: "Edit"
+          confirm: "Confirm"
+          confirmation_required: "Confirmation required"
+          do_you_really_want_to_delete_this_proof_of_identity_type: "Do you really want to remove this proof of identity ?"
+          proof_of_identity_type_successfully_created: "The new proof of identity has been created."
+          proof_of_identity_type_unable_to_create: "Unable to delete the proof of identity : "
+          proof_of_identity_type_successfully_updated: "The proof of identity has been updated."
+          proof_of_identity_type_unable_to_update: "Unable to modify the proof of identity : "
+          proof_of_identity_type_deleted: "The proof of identity has been deleted."
+          proof_of_identity_type_unable_to_delete: "Unable to delete the proof of identity : "
+          organization: "Organization"
+          organization_profile_custom_fields_info: "You can display additional fields for users who declare themselves to be an organization. You can also choose to make them mandatory at account creation."
+          organization_profile_custom_field:
+            required: "Confirmation required"
+            actived: "Activate the field"
+          organization_profile_custom_field_successfully_updated: "The organization field has been updated."
+          organization_profile_custom_field_unable_to_update: "Impossible to modify the field : "
         home:
           show_upcoming_events: "crwdns20900:0crwdne20900:0"
           upcoming_events:
diff --git a/config/locales/app.public.de.yml b/config/locales/app.public.de.yml
index be389b6a8..33f026915 100644
--- a/config/locales/app.public.de.yml
+++ b/config/locales/app.public.de.yml
@@ -15,6 +15,7 @@ de:
         dashboard: "Dashboard"
         my_profile: "Mein Profil"
         my_settings: "Persönliche Einstellungen"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "Meine Projekte"
         my_trainings: "Meine Trainings"
         my_events: "Meine Veranstaltungen"
@@ -91,6 +92,8 @@ de:
         i_ve_read_and_i_accept_: "Ich habe gelesen und akzeptiere"
         _the_fablab_policy: "die FabLab Richtlinie"
         field_required: "Erforderliche Felder"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "Ein unerwarteter Fehler ist aufgetreten. Bitte versuche es später erneut."
         used_for_statistics: "Diese Daten werden für statistische Zwecke verwendet"
         used_for_invoicing: "Diese Daten werden für Abrechnungszwecke verwendet"
diff --git a/config/locales/app.public.en.yml b/config/locales/app.public.en.yml
index b1956079e..7b87f0b96 100644
--- a/config/locales/app.public.en.yml
+++ b/config/locales/app.public.en.yml
@@ -15,6 +15,7 @@ en:
         dashboard: "Dashboard"
         my_profile: "My Profile"
         my_settings: "My Settings"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "My Projects"
         my_trainings: "My Trainings"
         my_events: "My Events"
@@ -91,6 +92,8 @@ en:
         i_ve_read_and_i_accept_: "I've read and I accept"
         _the_fablab_policy: "the FabLab policy"
         field_required: "Field required"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "An unexpected error occurred. Please try again later."
         used_for_statistics: "This data will be used for statistical purposes"
         used_for_invoicing: "This data will be used for billing purposes"
diff --git a/config/locales/app.public.es.yml b/config/locales/app.public.es.yml
index ad4d62969..00d2fe4be 100644
--- a/config/locales/app.public.es.yml
+++ b/config/locales/app.public.es.yml
@@ -15,6 +15,7 @@ es:
         dashboard: "Panel"
         my_profile: "My Perfil"
         my_settings: "Mis ajustes"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "Mis proyectos"
         my_trainings: "Mis cursos"
         my_events: "Mis eventos"
@@ -91,6 +92,8 @@ es:
         i_ve_read_and_i_accept_: "He leido y acepto"
         _the_fablab_policy: "la política de FabLab"
         field_required: "Field required"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "An unexpected error occurred. Please try again later."
         used_for_statistics: "This data will be used for statistical purposes"
         used_for_invoicing: "This data will be used for billing purposes"
diff --git a/config/locales/app.public.fr.yml b/config/locales/app.public.fr.yml
index 179831e08..64abdb37c 100644
--- a/config/locales/app.public.fr.yml
+++ b/config/locales/app.public.fr.yml
@@ -15,6 +15,7 @@ fr:
         dashboard: "Tableau de bord"
         my_profile: "Mon profil"
         my_settings: "Mes paramètres"
+        my_proof_of_identity_files: "Mes justificatifs"
         my_projects: "Mes projets"
         my_trainings: "Mes formations"
         my_events: "Mes événements"
@@ -91,6 +92,8 @@ fr:
         i_ve_read_and_i_accept_: "J'ai lu et j'accepte"
         _the_fablab_policy: "la charte d'utilisation du Fab Lab"
         field_required: "Champ requis"
+        profile_custom_field_is_required: "{FEILD} est requise"
+        user_proof_of_identity_files_is_required: "Attention !</br>Vous avez déclarez être \"{GROUP}\", des pièces justificatives pourront vous être demandées."
         unexpected_error_occurred: "Une erreur inattendue s'est produite. Veuillez réessayer ultérieurement."
         used_for_statistics: "Cette donnée sera utilisée à des fins statistiques"
         used_for_invoicing: "Cette donnée sera utilisée à des fins de facturation"
diff --git a/config/locales/app.public.no.yml b/config/locales/app.public.no.yml
index 0c071324b..0a7e32c58 100644
--- a/config/locales/app.public.no.yml
+++ b/config/locales/app.public.no.yml
@@ -15,6 +15,7 @@
         dashboard: "Kontrollpanel"
         my_profile: "Min profil"
         my_settings: "Mine innstillinger"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "Mine prosjekter"
         my_trainings: "Mine opplæringer/kurs"
         my_events: "Mine arrangementer"
@@ -91,6 +92,8 @@
         i_ve_read_and_i_accept_: "Jeg har lest og aksepterer"
         _the_fablab_policy: "Les policyen vår"
         field_required: "Nødvendig felt"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "En uventet feil oppstod, vennligst forsøk igjen."
         used_for_statistics: "Dataene vil bli brukt til statistiske formål"
         used_for_invoicing: "Disse dataene vil bli brukt i fakturering"
diff --git a/config/locales/app.public.pt.yml b/config/locales/app.public.pt.yml
index a54963698..b0844b322 100755
--- a/config/locales/app.public.pt.yml
+++ b/config/locales/app.public.pt.yml
@@ -15,6 +15,7 @@ pt:
         dashboard: "Painel de controle"
         my_profile: "Meu Perfil"
         my_settings: "Minhas Configurações"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "Meus Projetos"
         my_trainings: "Meus Treinamentos"
         my_events: "Meus Eventos"
@@ -91,6 +92,8 @@ pt:
         i_ve_read_and_i_accept_: "Eu li e aceito"
         _the_fablab_policy: "a política do FabLab"
         field_required: "Campo obrigatório"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "Ocorreu um erro inesperado. Por favor, tenta novamente mais tarde."
         used_for_statistics: "Estes dados serão utilizados para fins estatísticos"
         used_for_invoicing: "Esses dados serão usados para fins de faturamento"
diff --git a/config/locales/app.public.zu.yml b/config/locales/app.public.zu.yml
index d0524ed8b..6001affe8 100644
--- a/config/locales/app.public.zu.yml
+++ b/config/locales/app.public.zu.yml
@@ -15,6 +15,7 @@ zu:
         dashboard: "crwdns8817:0crwdne8817:0"
         my_profile: "crwdns8819:0crwdne8819:0"
         my_settings: "crwdns8821:0crwdne8821:0"
+        my_proof_of_identity_files: "My proof of identity"
         my_projects: "crwdns8823:0crwdne8823:0"
         my_trainings: "crwdns8825:0crwdne8825:0"
         my_events: "crwdns8827:0crwdne8827:0"
@@ -91,6 +92,8 @@ zu:
         i_ve_read_and_i_accept_: "crwdns8947:0crwdne8947:0"
         _the_fablab_policy: "crwdns8949:0crwdne8949:0"
         field_required: "crwdns8951:0crwdne8951:0"
+        profile_custom_field_is_required: "{FEILD} is required"
+        user_proof_of_identity_files_is_required: "Attention !</br>You have declared to be \"{GROUP}\", proof of identity may be requested."
         unexpected_error_occurred: "crwdns8953:0crwdne8953:0"
         used_for_statistics: "crwdns8955:0crwdne8955:0"
         used_for_invoicing: "crwdns8957:0crwdne8957:0"
diff --git a/config/locales/app.shared.de.yml b/config/locales/app.shared.de.yml
index aa37a1346..6227e0535 100644
--- a/config/locales/app.shared.de.yml
+++ b/config/locales/app.shared.de.yml
@@ -118,6 +118,7 @@ de:
       member_select:
         select_a_member: "Ein Mitglied auswählen"
         start_typing: "Tippe ein..."
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "Online-Bezahlung"
@@ -464,6 +465,7 @@ de:
         slot_tags: "Slot-Tags"
         user_tags: "Nutzer-Tags"
         no_tags: "Keine Tags"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       #feature-tour modal
       tour:
         previous: "Vorherige"
diff --git a/config/locales/app.shared.en.yml b/config/locales/app.shared.en.yml
index b12cfba7d..526603a2e 100644
--- a/config/locales/app.shared.en.yml
+++ b/config/locales/app.shared.en.yml
@@ -152,6 +152,7 @@ en:
       member_select:
         select_a_member: "Select a member"
         start_typing: "Start typing..."
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "Online payment"
@@ -460,6 +461,7 @@ en:
         slot_tags: "Slot tags"
         user_tags: "User tags"
         no_tags: "No tags"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       # feature-tour modal
       tour:
         previous: "Previous"
diff --git a/config/locales/app.shared.es.yml b/config/locales/app.shared.es.yml
index e1212c6bb..9330d8a68 100644
--- a/config/locales/app.shared.es.yml
+++ b/config/locales/app.shared.es.yml
@@ -118,6 +118,7 @@ es:
       member_select:
         select_a_member: "Selecciona un miembro"
         start_typing: "Empezar a escribir..."
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "Online payment"
@@ -464,6 +465,7 @@ es:
         slot_tags: "Slot tags"
         user_tags: "User tags"
         no_tags: "No tags"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       #feature-tour modal
       tour:
         previous: "Previous"
diff --git a/config/locales/app.shared.fr.yml b/config/locales/app.shared.fr.yml
index 25bfed70f..8ec71102c 100644
--- a/config/locales/app.shared.fr.yml
+++ b/config/locales/app.shared.fr.yml
@@ -118,6 +118,7 @@ fr:
       member_select:
         select_a_member: "Sélectionnez un membre"
         start_typing: "Commencez à écrire..."
+        member_not_validated: "Attention:</br> Le membre n'a pas validé."
       #payment modal
       payment:
         online_payment: "Paiement en ligne"
@@ -464,6 +465,7 @@ fr:
         slot_tags: "Étiquettes du créneau"
         user_tags: "Étiquettes de l'utilisateur"
         no_tags: "Aucune étiquette"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       #feature-tour modal
       tour:
         previous: "Précédent"
diff --git a/config/locales/app.shared.no.yml b/config/locales/app.shared.no.yml
index 5076413cd..017fd67c7 100644
--- a/config/locales/app.shared.no.yml
+++ b/config/locales/app.shared.no.yml
@@ -118,6 +118,7 @@
       member_select:
         select_a_member: "Velg et medlem"
         start_typing: "Begynn å skrive..."
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "Online betaling"
diff --git a/config/locales/app.shared.pt.yml b/config/locales/app.shared.pt.yml
index 1979341cb..33e553f1a 100755
--- a/config/locales/app.shared.pt.yml
+++ b/config/locales/app.shared.pt.yml
@@ -118,6 +118,7 @@ pt:
       member_select:
         select_a_member: "Selecionar um membro"
         start_typing: "Escrevendo..."
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "Pagamento Online"
@@ -464,6 +465,7 @@ pt:
         slot_tags: "Tags do Slot"
         user_tags: "Etiquetas de usuários"
         no_tags: "Sem etiquetas"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       #feature-tour modal
       tour:
         previous: "Anterior"
diff --git a/config/locales/app.shared.zu.yml b/config/locales/app.shared.zu.yml
index cb159d850..30baf28a4 100644
--- a/config/locales/app.shared.zu.yml
+++ b/config/locales/app.shared.zu.yml
@@ -118,6 +118,7 @@ zu:
       member_select:
         select_a_member: "crwdns9571:0crwdne9571:0"
         start_typing: "crwdns9573:0crwdne9573:0"
+        member_not_validated: "Attention:</br> The member has not validated."
       #payment modal
       payment:
         online_payment: "crwdns21484:0crwdne21484:0"
@@ -464,6 +465,7 @@ zu:
         slot_tags: "crwdns20490:0crwdne20490:0"
         user_tags: "crwdns20492:0crwdne20492:0"
         no_tags: "crwdns20494:0crwdne20494:0"
+        user_validation_required_alert: "Attention !</br>Votre administrateur doit valider votre compte ? Vous pourrez alors accéder à l'ensemble des fonctionnalités de réservation."
       #feature-tour modal
       tour:
         previous: "crwdns20166:0crwdne20166:0"
diff --git a/config/locales/de.yml b/config/locales/de.yml
index d082224cc..e97382932 100644
--- a/config/locales/de.yml
+++ b/config/locales/de.yml
@@ -384,6 +384,18 @@ de:
         schedule_deadline: "Sie müssen den Scheck zur %{DATE} -Frist einlösen, für den Zeitplan %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "Sie müssen das Lastschriftverfahren für die %{DATE} -Frist bestätigen, für Zeitplan %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: " Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "Abonnements"
diff --git a/config/locales/en.yml b/config/locales/en.yml
index b0aa9d5a9..4ee542f12 100644
--- a/config/locales/en.yml
+++ b/config/locales/en.yml
@@ -397,6 +397,18 @@ en:
         schedule_deadline: "You must cash the check for the %{DATE} deadline, for schedule %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "You must confirm the bank direct debit for the %{DATE} deadline, for schedule %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "Subscriptions"
diff --git a/config/locales/es.yml b/config/locales/es.yml
index 27bd12a91..5363f67da 100644
--- a/config/locales/es.yml
+++ b/config/locales/es.yml
@@ -384,6 +384,18 @@ es:
         schedule_deadline: "You must cash the check for the %{DATE} deadline, for schedule %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "You must confirm the bank direct debit for the %{DATE} deadline, for schedule %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "Suscripciones"
diff --git a/config/locales/fr.yml b/config/locales/fr.yml
index 3c01a72b6..3d8554e0a 100644
--- a/config/locales/fr.yml
+++ b/config/locales/fr.yml
@@ -384,6 +384,18 @@ fr:
         schedule_deadline: "Vous devez encaisser le chèque de l'échéance du %{DATE}, pour l'échéancier %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "Vous devez confirmer le prélèvement bancaire pour l'échéance du %{DATE} , pour l'échéancier %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Justificatifs téléchargés par le membre <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Justificatif modifié par le membre <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Votre compte est valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Votre compte est invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "les justificatifs refusés"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Les justificatifs du membre <strong><em>%{NAME}</strong></em> a refusés."
   #statistics tools for admins
   statistics:
     subscriptions: "Abonnements"
diff --git a/config/locales/mails.de.yml b/config/locales/mails.de.yml
index b44103d8d..d1a097e33 100644
--- a/config/locales/mails.de.yml
+++ b/config/locales/mails.de.yml
@@ -24,12 +24,14 @@ de:
       subject: "Ihre Gruppe wurde geändert"
       body:
         warning: "Sie haben die Gruppe gewechselt. Im FabLab kann geprüft werden, ob diese Änderung zulässig ist."
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "Ein Mitglied hat die Gruppe geändert"
       body:
         user_changed_group_html: "Benutzer <em><strong>%{NAME}</strong></em> hat die Gruppe geändert."
         previous_group: "Vorherige Gruppe:"
         new_group: "Neue Gruppe:"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "Ein Abonnement wurde verlängert"
       body:
@@ -343,5 +345,32 @@ de:
         remember: "Gemäß Ihrem Zahlungsplan von %{REFERENCE} wurde zum %{DATE} eine Belastung der Karte in Höhe von %{AMOUNT} geplant."
         date: "Dies ist eine Erinnerung zur Prüfung, ob das Bankkonto erfolgreich belastet werden konnte."
         confirm: "Bitte bestätigen Sie den Erhalt des Guthabens in Ihrer Zahlungsverwaltung, damit die entsprechende Rechnung generiert werden kann."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "Hallo %{user_name}"
diff --git a/config/locales/mails.en.yml b/config/locales/mails.en.yml
index 92cf1b735..23fd767ab 100644
--- a/config/locales/mails.en.yml
+++ b/config/locales/mails.en.yml
@@ -24,12 +24,14 @@ en:
       subject: "Your have changed group"
       body:
         warning: "You have changed group. Inspections can be conducted at the lab to verify the legitimacy of this change."
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "A member has changed group"
       body:
         user_changed_group_html: "User <em><strong>%{NAME}</strong></em> has changed group."
         previous_group: "Previous group:"
         new_group: "New group:"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "A subscription has been extended"
       body:
@@ -343,5 +345,32 @@ en:
         remember: "In accordance with your %{REFERENCE} payment schedule, %{AMOUNT} was due to be debited on %{DATE}."
         date: "This is a reminder to verify that the direct bank debit was successfull."
         confirm: "Please confirm the receipt of funds in your payment schedule management interface, so that the corresponding invoice will be generated."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "Hello %{user_name}"
diff --git a/config/locales/mails.es.yml b/config/locales/mails.es.yml
index b706e774f..e03de893a 100644
--- a/config/locales/mails.es.yml
+++ b/config/locales/mails.es.yml
@@ -24,12 +24,14 @@ es:
       subject: "Tu has cambiado grupo"
       body:
         warning: "Has cambiado de grupo. Se pueden realizar inspecciones en el laboratorio para verificar la legitimidad de este cambio.."
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "Un miembro ha cambiado de grupo."
       body:
         user_changed_group_html: "El usuario <em><strong>%{NAME}</strong></em> ha cambiado de grupo."
         previous_group: "Grupo anterior:"
         new_group: "Nuevo grupo:"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "Una suscripción ha sido extendida"
       body:
@@ -343,5 +345,32 @@ es:
         remember: "In accordance with your %{REFERENCE} payment schedule, %{AMOUNT} was due to be debited on %{DATE}."
         date: "This is a reminder to verify that the direct bank debit was successfull."
         confirm: "Please confirm the receipt of funds in your payment schedule management interface, so that the corresponding invoice will be generated."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "¡Hola %{user_name}!"
diff --git a/config/locales/mails.fr.yml b/config/locales/mails.fr.yml
index 3611b3d80..5ae55aa89 100644
--- a/config/locales/mails.fr.yml
+++ b/config/locales/mails.fr.yml
@@ -24,12 +24,14 @@ fr:
       subject: "Vous avez changé de groupe"
       body:
         warning: "Vous venez de changer de groupe utilisateurs. Des contrôles pourront être opérés au Fab Lab afin de vérifier que ce changement est justifié."
+        user_invalidated: "Votre compte est invalidé, Veuillez vous télécharger vos nouveaux justificatifs pour valider votre compte."
     notify_admin_user_group_changed:
       subject: "Un membre a changé de groupe"
       body:
         user_changed_group_html: "L'utilisateur <em><strong>%{NAME}</strong></em> a changé de groupe."
         previous_group: "Ancien groupe :"
         new_group: "Nouveau groupe :"
+        user_invalidated: "Le compte de l'utilisateur est invalidé."
     notify_admin_subscription_extended:
       subject: "Un abonnement a été prolongé"
       body:
@@ -343,5 +345,32 @@ fr:
         remember: "Conformément à l'échéancier de paiement %{REFERENCE}, une échéance de %{AMOUNT} était prévu pour être prélevée le %{DATE}."
         date: "Ceci est un rappel pour vérifier que le prélèvement bancaire a bien été effectué."
         confirm: "Veuillez confirmer la réception des fonds dans votre interface de gestion des échéanciers de paiement, afin que la facture correspondante soit générée."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Justificatifs téléchargés par un membre"
+      body:
+        proof_of_identity_files_uploaded_below: "Le membre %{NAME} a téléchargé les justificatifs ci-dessous :"
+        validate_user: "Veuillez valider son compte"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Justificatif modifié par un membre"
+      body:
+        user_update_proof_of_identity_file: "Le membre %{NAME} a modifié le justificatif ci-dessous :"
+        validate_user: "Veuillez valider son compte"
+    notify_user_is_validated:
+      subject: "Le compte est valid"
+      body:
+        account_validated: "Votre compte est valid."
+    notify_user_is_invalidated:
+      subject: "Le compte est invalid"
+      body:
+        account_invalidated: "Votre compte est invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Les justificatifs refusés"
+      body:
+        user_proof_of_identity_files_refusal: "Vos justificatifs sont refusés :"
+        action: "Veuillez re-télécharger les nouveaux justificatifs."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "Justificatifs d'un membre refusés"
+      body:
+        user_proof_of_identity_files_refusal: "Les justificatifs du membre %{NAME} sont refusés par %{OPERATOR}:"
     shared:
       hello: "Bonjour %{user_name}"
diff --git a/config/locales/mails.no.yml b/config/locales/mails.no.yml
index b02fdc717..06c23c6ec 100644
--- a/config/locales/mails.no.yml
+++ b/config/locales/mails.no.yml
@@ -24,12 +24,14 @@
       subject: "Du har endret gruppe"
       body:
         warning: "You have changed group. Inspections can be conducted at the lab to verify the legitimacy of this change."
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "Et medlem har endret gruppe"
       body:
         user_changed_group_html: "Bruker <em><strong>%{NAME}</strong></em> har endret gruppe."
         previous_group: "Forrige gruppe:"
         new_group: "Ny gruppe:"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "Et abonnement har blitt utvidet"
       body:
@@ -343,5 +345,32 @@
         remember: "In accordance with your %{REFERENCE} payment schedule, %{AMOUNT} was due to be debited on %{DATE}."
         date: "This is a reminder to verify that the direct bank debit was successfull."
         confirm: "Please confirm the receipt of funds in your payment schedule management interface, so that the corresponding invoice will be generated."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "Hello %{user_name}"
diff --git a/config/locales/mails.pt.yml b/config/locales/mails.pt.yml
index 112b236f5..d2a398a71 100755
--- a/config/locales/mails.pt.yml
+++ b/config/locales/mails.pt.yml
@@ -24,12 +24,14 @@ pt:
       subject: "Seu grupo mudou"
       body:
         warning: "Você mudou de grupo. As inspeções podem ser realizadas no laboratório para verificar a legitimidade dessa mudança."
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "Um membro mudou de grupo"
       body:
         user_changed_group_html: "O usuário <em><strong>%{NAME}</strong></em> mudou de grupo."
         previous_group: "Grupo anterior:"
         new_group: "Novo grupo:"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "Uma assinatura foi estendida"
       body:
@@ -343,5 +345,32 @@ pt:
         remember: "In accordance with your %{REFERENCE} payment schedule, %{AMOUNT} was due to be debited on %{DATE}."
         date: "This is a reminder to verify that the direct bank debit was successfull."
         confirm: "Please confirm the receipt of funds in your payment schedule management interface, so that the corresponding invoice will be generated."
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "Olá %{user_name}"
diff --git a/config/locales/mails.zu.yml b/config/locales/mails.zu.yml
index aebe7a467..1519ff6d5 100644
--- a/config/locales/mails.zu.yml
+++ b/config/locales/mails.zu.yml
@@ -24,12 +24,14 @@ zu:
       subject: "crwdns3891:0crwdne3891:0"
       body:
         warning: "crwdns3893:0crwdne3893:0"
+        user_invalidated: "Your account is invalidated, please upload your new proof of identity to validate your account."
     notify_admin_user_group_changed:
       subject: "crwdns3895:0crwdne3895:0"
       body:
         user_changed_group_html: "crwdns3897:0%{NAME}crwdne3897:0"
         previous_group: "crwdns3899:0crwdne3899:0"
         new_group: "crwdns3901:0crwdne3901:0"
+        user_invalidated: "The user's account is invalidated."
     notify_admin_subscription_extended:
       subject: "crwdns3903:0crwdne3903:0"
       body:
@@ -343,5 +345,32 @@ zu:
         remember: "crwdns22309:0%{REFERENCE}crwdnd22309:0%{AMOUNT}crwdnd22309:0%{DATE}crwdne22309:0"
         date: "crwdns22311:0crwdne22311:0"
         confirm: "crwdns22313:0crwdne22313:0"
+    notify_admin_user_proof_of_identity_files_created:
+      subject: "Proof of identity uploaded by a member"
+      body:
+        proof_of_identity_files_uploaded_below: "Member %{NAME} has uploaded the following proof of identity :"
+        validate_user: "Please validate this account"
+    notify_admin_user_proof_of_identity_files_updated:
+      subject: "Proof of identity is changed by m member"
+      body:
+        user_update_proof_of_identity_file: "Member %{NAME} has modified the proof of identity below:"
+        validate_user: "Please validate this account"
+    notify_user_is_validated:
+      subject: "The account is validated"
+      body:
+        account_validated: "Your account is valid."
+    notify_user_is_invalidated:
+      subject: "The account is invalid"
+      body:
+        account_invalidated: "Your account is invalid."
+    notify_user_proof_of_identity_refusal:
+      subject: "Your proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Your proof of identity are not accepted :"
+        action: "Please re-upload the new proof of identity."
+    notify_admin_user_proof_of_identity_refusal:
+      subject: "A member's proof of identity are not accepted"
+      body:
+        user_proof_of_identity_files_refusal: "Member %{NAME}'s proof of identity are rejected by %{OPERATOR}:"
     shared:
       hello: "crwdns4215:0%{user_name}crwdne4215:0"
diff --git a/config/locales/no.yml b/config/locales/no.yml
index 0e2e2a515..8d40fceb4 100644
--- a/config/locales/no.yml
+++ b/config/locales/no.yml
@@ -384,6 +384,18 @@
         schedule_deadline: "You must cash the check for the %{DATE} deadline, for schedule %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "You must confirm the bank direct debit for the %{DATE} deadline, for schedule %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "Subscriptions"
diff --git a/config/locales/pt.yml b/config/locales/pt.yml
index be8fc3acc..571b4c6c2 100755
--- a/config/locales/pt.yml
+++ b/config/locales/pt.yml
@@ -384,6 +384,18 @@ pt:
         schedule_deadline: "Você deve realizar a verificação para a data limite de %{DATE} para agendar %{REFERENCE}"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "You must confirm the bank direct debit for the %{DATE} deadline, for schedule %{REFERENCE}"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "Assinaturas"
diff --git a/config/locales/zu.yml b/config/locales/zu.yml
index 4aa2ade79..71316a103 100644
--- a/config/locales/zu.yml
+++ b/config/locales/zu.yml
@@ -384,6 +384,18 @@ zu:
         schedule_deadline: "crwdns21120:0%{DATE}crwdnd21120:0%{REFERENCE}crwdne21120:0"
       notify_admin_payment_schedule_transfer_deadline:
         schedule_deadline: "crwdns22305:0%{DATE}crwdnd22305:0%{REFERENCE}crwdne22305:0"
+      notify_admin_user_proof_of_identity_files_created:
+        proof_of_identity_files_uploaded: "Proof of identity uploaded by member <strong><em>%{NAME}</strong></em>."
+      notify_admin_user_proof_of_identity_files_updated:
+        proof_of_identity_files_uploaded: "Proof of identity changed by Member <strong><em>%{NAME}</strong></em>."
+      notify_user_is_validated:
+        account_validated: "Your account is valid."
+      notify_user_is_invalidated:
+        account_invalidated: "Your account is invalid."
+      notify_user_proof_of_identity_refusal:
+        refusal: "Your proof of identity are not accepted"
+      notify_admin_user_proof_of_identity_refusal:
+        refusal: "Member's proof of identity <strong><em>%{NAME}</strong></em> refused."
   #statistics tools for admins
   statistics:
     subscriptions: "crwdns3689:0crwdne3689:0"
diff --git a/config/routes.rb b/config/routes.rb
index 2f8de801d..4cc3a2085 100644
--- a/config/routes.rb
+++ b/config/routes.rb
@@ -62,6 +62,7 @@ Rails.application.routes.draw do
       get 'mapping', action: 'mapping', on: :collection
       patch ':id/complete_tour', action: 'complete_tour', on: :collection
       patch ':id/update_role', action: 'update_role', on: :collection
+      patch ':id/validate', action: 'validate', on: :collection
     end
     resources :reservations, only: %i[show index update]
     resources :notifications, only: %i[index show update] do
@@ -141,6 +142,14 @@ Rails.application.routes.draw do
       post 'sync', on: :member
     end
 
+    resources :proof_of_identity_types
+    resources :proof_of_identity_files, only: %i[index show create update] do
+      get 'download', on: :member
+    end
+    resources :proof_of_identity_refusals, only: %i[index show create]
+
+    resources :profile_custom_fields
+
     # for admin
     resources :trainings do
       get :availabilities, on: :member
diff --git a/config/secrets.yml b/config/secrets.yml
index 560d1610f..5dbf1a2e7 100644
--- a/config/secrets.yml
+++ b/config/secrets.yml
@@ -39,6 +39,7 @@ development:
   max_image_size: <%= ENV["MAX_IMAGE_SIZE"] %>
   max_cao_size: <%= ENV["MAX_CAO_SIZE"] %>
   max_import_size: <%= ENV["MAX_IMPORT_SIZE"] %>
+  max_proof_of_identity_file_size: <%= ENV["MAX_PROOF_OF_IDENTITY_FILE_SIZE"] %>
   disk_space_mb_alert: <%= ENV["DISK_SPACE_MB_ALERT"] %>
   adminsys_email: <%= ENV["ADMINSYS_EMAIL"] %>
   allow_insecure_http: <%= ENV.fetch("ALLOW_INSECURE_HTTP", false) %>
@@ -71,6 +72,7 @@ test:
   max_image_size: <%= ENV["MAX_IMAGE_SIZE"] %>
   max_cao_size: <%= ENV["MAX_CAO_SIZE"] %>
   max_import_size: <%= ENV["MAX_IMPORT_SIZE"] %>
+  max_proof_of_identity_file_size: <%= ENV["MAX_PROOF_OF_IDENTITY_FILE_SIZE"] %>
   disk_space_mb_alert: <%= ENV["DISK_SPACE_MB_ALERT"] %>
   adminsys_email: <%= ENV["ADMINSYS_EMAIL"] %>
   allow_insecure_http: <%= ENV.fetch("ALLOW_INSECURE_HTTP", false) %>
@@ -112,6 +114,7 @@ staging:
   max_image_size: <%= ENV["MAX_IMAGE_SIZE"] %>
   max_cao_size: <%= ENV["MAX_CAO_SIZE"] %>
   max_import_size: <%= ENV["MAX_IMPORT_SIZE"] %>
+  max_proof_of_identity_file_size: <%= ENV["MAX_PROOF_OF_IDENTITY_FILE_SIZE"] %>
   disk_space_mb_alert: <%= ENV["DISK_SPACE_MB_ALERT"] %>
   adminsys_email: <%= ENV["ADMINSYS_EMAIL"] %>
   enable_in_context_translation: <%= ENV["ENABLE_IN_CONTEXT_TRANSLATION"] %>
@@ -156,6 +159,7 @@ production:
   max_image_size: <%= ENV["MAX_IMAGE_SIZE"] %>
   max_cao_size: <%= ENV["MAX_CAO_SIZE"] %>
   max_import_size: <%= ENV["MAX_IMPORT_SIZE"] %>
+  max_proof_of_identity_file_size: <%= ENV["MAX_PROOF_OF_IDENTITY_FILE_SIZE"] %>
   disk_space_mb_alert: <%= ENV["DISK_SPACE_MB_ALERT"] %>
   adminsys_email: <%= ENV["ADMINSYS_EMAIL"] %>
   allow_insecure_http: <%= ENV.fetch("ALLOW_INSECURE_HTTP", false) %>
diff --git a/db/migrate/20220422090245_create_proof_of_identity_types.rb b/db/migrate/20220422090245_create_proof_of_identity_types.rb
new file mode 100644
index 000000000..38c97019b
--- /dev/null
+++ b/db/migrate/20220422090245_create_proof_of_identity_types.rb
@@ -0,0 +1,9 @@
+class CreateProofOfIdentityTypes < ActiveRecord::Migration[5.2]
+  def change
+    create_table :proof_of_identity_types do |t|
+      t.string :name
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/migrate/20220422090709_create_proof_of_identity_types_groups.rb b/db/migrate/20220422090709_create_proof_of_identity_types_groups.rb
new file mode 100644
index 000000000..e89e93e2d
--- /dev/null
+++ b/db/migrate/20220422090709_create_proof_of_identity_types_groups.rb
@@ -0,0 +1,10 @@
+class CreateProofOfIdentityTypesGroups < ActiveRecord::Migration[5.2]
+  def change
+    create_table :proof_of_identity_types_groups do |t|
+      t.references :proof_of_identity_type, foreign_key: true, index: { name: 'index_p_o_i_t_groups_on_proof_of_identity_type_id' }
+      t.references :group, foreign_key: true, index: { name: 'index_p_o_i_t_groups_on_group_id' }
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/migrate/20220426162334_create_proof_of_identity_files.rb b/db/migrate/20220426162334_create_proof_of_identity_files.rb
new file mode 100644
index 000000000..7e04a098b
--- /dev/null
+++ b/db/migrate/20220426162334_create_proof_of_identity_files.rb
@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+class CreateProofOfIdentityFiles < ActiveRecord::Migration[5.2]
+  def change
+    create_table :proof_of_identity_files do |t|
+      t.belongs_to :proof_of_identity_type, index: true
+      t.belongs_to :user, index: true
+      t.string :attachment
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/migrate/20220428123828_create_proof_of_identity_refusals.rb b/db/migrate/20220428123828_create_proof_of_identity_refusals.rb
new file mode 100644
index 000000000..8dfd8acbd
--- /dev/null
+++ b/db/migrate/20220428123828_create_proof_of_identity_refusals.rb
@@ -0,0 +1,11 @@
+class CreateProofOfIdentityRefusals < ActiveRecord::Migration[5.2]
+  def change
+    create_table :proof_of_identity_refusals do |t|
+      t.belongs_to :user, foreign_key: true
+      t.integer :operator_id
+      t.text :message
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/migrate/20220428125751_create_join_table_proof_of_identity_type_proof_of_identity_refusal.rb b/db/migrate/20220428125751_create_join_table_proof_of_identity_type_proof_of_identity_refusal.rb
new file mode 100644
index 000000000..0e298925e
--- /dev/null
+++ b/db/migrate/20220428125751_create_join_table_proof_of_identity_type_proof_of_identity_refusal.rb
@@ -0,0 +1,8 @@
+class CreateJoinTableProofOfIdentityTypeProofOfIdentityRefusal < ActiveRecord::Migration[5.2]
+  def change
+    create_join_table :proof_of_identity_types, :proof_of_identity_refusals do |t|
+      t.index [:proof_of_identity_type_id, :proof_of_identity_refusal_id], name: 'proof_of_identity_type_id_and_proof_of_identity_refusal_id'
+      # t.index [:proof_of_identity_refusal_id, :proof_of_identity_type_id]
+    end
+  end
+end
diff --git a/db/migrate/20220429164234_add_validated_at_to_user.rb b/db/migrate/20220429164234_add_validated_at_to_user.rb
new file mode 100644
index 000000000..c653b38fc
--- /dev/null
+++ b/db/migrate/20220429164234_add_validated_at_to_user.rb
@@ -0,0 +1,5 @@
+class AddValidatedAtToUser < ActiveRecord::Migration[5.2]
+  def change
+    add_column :users, :validated_at, :datetime
+  end
+end
diff --git a/db/migrate/20220506143526_create_profile_custom_fields.rb b/db/migrate/20220506143526_create_profile_custom_fields.rb
new file mode 100644
index 000000000..93c4d0a25
--- /dev/null
+++ b/db/migrate/20220506143526_create_profile_custom_fields.rb
@@ -0,0 +1,11 @@
+class CreateProfileCustomFields < ActiveRecord::Migration[5.2]
+  def change
+    create_table :profile_custom_fields do |t|
+      t.string :label
+      t.boolean :required, default: false
+      t.boolean :actived, default: false
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/migrate/20220509105714_create_user_profile_custom_fields.rb b/db/migrate/20220509105714_create_user_profile_custom_fields.rb
new file mode 100644
index 000000000..624e6ca88
--- /dev/null
+++ b/db/migrate/20220509105714_create_user_profile_custom_fields.rb
@@ -0,0 +1,11 @@
+class CreateUserProfileCustomFields < ActiveRecord::Migration[5.2]
+  def change
+    create_table :user_profile_custom_fields do |t|
+      t.belongs_to :invoicing_profile, foreign_key: true
+      t.belongs_to :profile_custom_field, foreign_key: true
+      t.string :value
+
+      t.timestamps
+    end
+  end
+end
diff --git a/db/schema.rb b/db/schema.rb
index b77141c4b..dfff7c3fd 100644
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -10,7 +10,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 2022_04_25_095244) do
+ActiveRecord::Schema.define(version: 2022_05_09_105714) do
 
   # These are extensions that must be enabled in order to support this database
   enable_extension "fuzzystrmatch"
@@ -581,6 +581,14 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
     t.index ["priceable_type", "priceable_id"], name: "index_prices_on_priceable_type_and_priceable_id"
   end
 
+  create_table "profile_custom_fields", force: :cascade do |t|
+    t.string "label"
+    t.boolean "required", default: false
+    t.boolean "actived", default: false
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+  end
+
   create_table "profiles", id: :serial, force: :cascade do |t|
     t.integer "user_id"
     t.string "first_name"
@@ -677,6 +685,46 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
     t.index ["theme_id"], name: "index_projects_themes_on_theme_id"
   end
 
+  create_table "proof_of_identity_files", force: :cascade do |t|
+    t.bigint "proof_of_identity_type_id"
+    t.bigint "user_id"
+    t.string "attachment"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+    t.index ["proof_of_identity_type_id"], name: "index_proof_of_identity_files_on_proof_of_identity_type_id"
+    t.index ["user_id"], name: "index_proof_of_identity_files_on_user_id"
+  end
+
+  create_table "proof_of_identity_refusals", force: :cascade do |t|
+    t.bigint "user_id"
+    t.integer "operator_id"
+    t.text "message"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+    t.index ["user_id"], name: "index_proof_of_identity_refusals_on_user_id"
+  end
+
+  create_table "proof_of_identity_refusals_types", id: false, force: :cascade do |t|
+    t.bigint "proof_of_identity_type_id", null: false
+    t.bigint "proof_of_identity_refusal_id", null: false
+    t.index ["proof_of_identity_type_id", "proof_of_identity_refusal_id"], name: "proof_of_identity_type_id_and_proof_of_identity_refusal_id"
+  end
+
+  create_table "proof_of_identity_types", force: :cascade do |t|
+    t.string "name"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+  end
+
+  create_table "proof_of_identity_types_groups", force: :cascade do |t|
+    t.bigint "proof_of_identity_type_id"
+    t.bigint "group_id"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+    t.index ["group_id"], name: "index_p_o_i_t_groups_on_group_id"
+    t.index ["proof_of_identity_type_id"], name: "index_p_o_i_t_groups_on_proof_of_identity_type_id"
+  end
+
   create_table "reservations", id: :serial, force: :cascade do |t|
     t.text "message"
     t.datetime "created_at"
@@ -924,6 +972,16 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
     t.index ["training_id"], name: "index_trainings_pricings_on_training_id"
   end
 
+  create_table "user_profile_custom_fields", force: :cascade do |t|
+    t.bigint "invoicing_profile_id"
+    t.bigint "profile_custom_field_id"
+    t.string "value"
+    t.datetime "created_at", null: false
+    t.datetime "updated_at", null: false
+    t.index ["invoicing_profile_id"], name: "index_user_profile_custom_fields_on_invoicing_profile_id"
+    t.index ["profile_custom_field_id"], name: "index_user_profile_custom_fields_on_profile_custom_field_id"
+  end
+
   create_table "user_tags", id: :serial, force: :cascade do |t|
     t.integer "user_id"
     t.integer "tag_id"
@@ -964,6 +1022,7 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
     t.inet "current_sign_in_ip"
     t.inet "last_sign_in_ip"
     t.string "mapped_from_sso"
+    t.datetime "validated_at"
     t.index ["auth_token"], name: "index_users_on_auth_token"
     t.index ["confirmation_token"], name: "index_users_on_confirmation_token", unique: true
     t.index ["email"], name: "index_users_on_email", unique: true
@@ -1056,6 +1115,9 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
   add_foreign_key "projects_spaces", "spaces"
   add_foreign_key "projects_themes", "projects"
   add_foreign_key "projects_themes", "themes"
+  add_foreign_key "proof_of_identity_refusals", "users"
+  add_foreign_key "proof_of_identity_types_groups", "groups"
+  add_foreign_key "proof_of_identity_types_groups", "proof_of_identity_types"
   add_foreign_key "reservations", "statistic_profiles"
   add_foreign_key "slots_reservations", "reservations"
   add_foreign_key "slots_reservations", "slots"
@@ -1072,6 +1134,8 @@ ActiveRecord::Schema.define(version: 2022_04_25_095244) do
   add_foreign_key "subscriptions", "statistic_profiles"
   add_foreign_key "tickets", "event_price_categories"
   add_foreign_key "tickets", "reservations"
+  add_foreign_key "user_profile_custom_fields", "invoicing_profiles"
+  add_foreign_key "user_profile_custom_fields", "profile_custom_fields"
   add_foreign_key "user_tags", "tags"
   add_foreign_key "user_tags", "users"
   add_foreign_key "wallet_transactions", "invoicing_profiles"
diff --git a/db/seeds.rb b/db/seeds.rb
index 4ae399cef..af31c3ed8 100644
--- a/db/seeds.rb
+++ b/db/seeds.rb
@@ -887,6 +887,10 @@ Setting.set('payment_schedule_prefix', 'FabManager_paymentSchedule') unless Sett
 
 Setting.set('confirmation_required', false) unless Setting.find_by(name: 'confirmation_required').try(:value)
 
+Setting.set('user_validation_required', false) unless Setting.find_by(name: 'user_validation_required').try(:value)
+
+Setting.set('user_validation_required_list', '') unless Setting.find_by(name: 'user_validation_required_list').try(:value)
+
 Setting.set('wallet_module', true) unless Setting.find_by(name: 'wallet_module').try(:value)
 
 Setting.set('statistics_module', true) unless Setting.find_by(name: 'statistics_module').try(:value)
@@ -950,3 +954,8 @@ unless StatisticIndex.find_by(es_type_key: 'space')
                             graph: true, simple: false }
                         ])
 end
+
+ProfileCustomField.find_or_create_by(label: 'N° SIRET')
+ProfileCustomField.find_or_create_by(label: 'Code NAF')
+ProfileCustomField.find_or_create_by(label: 'N° TVA intracommunautaire')
+ProfileCustomField.find_or_create_by(label: 'N° DUNS')
diff --git a/doc/environment.md b/doc/environment.md
index 8f73d88ca..831453685 100644
--- a/doc/environment.md
+++ b/doc/environment.md
@@ -99,6 +99,12 @@ If this parameter is not specified, the maximum size allowed will be 5MB.
 Maximum size (in bytes) allowed for import files uploaded on the platform.
 Currently, this is only used to import users from a CSV file.
 If this parameter is not specified, the maximum size allowed will be 5MB.
+<a name="MAX_PROOF_OF_IDENTITY_FILE_SIZE"></a>
+
+    MAX_PROOF_OF_IDENTITY_FILE_SIZE
+
+Maximum size (in bytes) allowed for proof of identity files uploaded on the platform.
+If this parameter is not specified, the maximum size allowed will be 5MB.
 <a name="DISK_SPACE_MB_ALERT"></a>
 
     DISK_SPACE_MB_ALERT
@@ -282,7 +288,7 @@ Set this variable to `false` if you do not want to verify the OpenLab's server's
 
     OPENLAB_SSL_VERIFY_PEER
 
-Set this variable to `false` if you want to turn off the OpenLab's server's verification but still send client certificate. 
+Set this variable to `false` if you want to turn off the OpenLab's server's verification but still send client certificate.
 <a name="other-settings"></a>
 ## Other settings
 
diff --git a/env.example b/env.example
index 9c3331803..ef65b0cdf 100644
--- a/env.example
+++ b/env.example
@@ -67,3 +67,5 @@ MAX_IMPORT_SIZE=5242880
 MAX_IMAGE_SIZE=10485760
 # 20971520 = 20 megabytes
 MAX_CAO_SIZE=20971520
+# 5242880 = 5 megabytes
+MAX_PROOF_OF_IDENTITY_FILE_SIZE=5242880
diff --git a/setup/env.example b/setup/env.example
index ca617a7fe..5907dd4ad 100644
--- a/setup/env.example
+++ b/setup/env.example
@@ -52,3 +52,5 @@ MAX_IMPORT_SIZE='5242880'
 MAX_IMAGE_SIZE='10485760'
 # 20971520 = 20 megabytes
 MAX_CAO_SIZE='20971520'
+# 5242880 = 5 megabytes
+MAX_PROOF_OF_IDENTITY_FILE_SIZE='5242880'
diff --git a/setup/setup.sh b/setup/setup.sh
index e137752a9..2a15f77b3 100755
--- a/setup/setup.sh
+++ b/setup/setup.sh
@@ -303,7 +303,7 @@ configure_env_file()
   local doc variables secret
   doc=$(\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/doc/environment.md)
   variables=(DEFAULT_HOST DEFAULT_PROTOCOL DELIVERY_METHOD SMTP_ADDRESS SMTP_PORT SMTP_USER_NAME SMTP_PASSWORD SMTP_AUTHENTICATION \
-   SMTP_ENABLE_STARTTLS_AUTO SMTP_OPENSSL_VERIFY_MODE SMTP_TLS LOG_LEVEL MAX_IMAGE_SIZE MAX_CAO_SIZE MAX_IMPORT_SIZE DISK_SPACE_MB_ALERT \
+   SMTP_ENABLE_STARTTLS_AUTO SMTP_OPENSSL_VERIFY_MODE SMTP_TLS LOG_LEVEL MAX_IMAGE_SIZE MAX_CAO_SIZE MAX_IMPORT_SIZE MAX_PROOF_OF_IDENTITY_FILE_SIZE DISK_SPACE_MB_ALERT \
    ADMINSYS_EMAIL APP_LOCALE RAILS_LOCALE MOMENT_LOCALE SUMMERNOTE_LOCALE ANGULAR_LOCALE FULLCALENDAR_LOCALE INTL_LOCALE INTL_CURRENCY\
    POSTGRESQL_LANGUAGE_ANALYZER TIME_ZONE WEEK_STARTING_DAY D3_DATE_FORMAT UIB_DATE_FORMAT EXCEL_DATE_FORMAT)
   for variable in "${variables[@]}"; do