기능구현중

2026-01-11 17:01:01 +09:00
parent 375d5bf91a
commit 954ba21211
148 changed files with 2276 additions and 0 deletions
--- a/server/api/employee/[id]/delete.delete.ts
+++ b/server/api/employee/[id]/delete.delete.ts
@@ -0,0 +1,64 @@
+import { query, execute } from '../../../utils/db'
+import { requireAdmin } from '../../../utils/session'
+
+/**
+ * 직원 삭제
+ * DELETE /api/employee/[id]/delete
+ */
+export default defineEventHandler(async (event) => {
+  // 관리자 권한 체크 (role 기반)
+  const currentUserId = await requireAdmin(event)
+  
+  const employeeId = getRouterParam(event, 'id')
+  if (!employeeId) {
+    throw createError({ statusCode: 400, message: '직원 ID가 필요합니다.' })
+  }
+  
+  // 본인 삭제 방지
+  if (parseInt(employeeId) === currentUserId) {
+    throw createError({ statusCode: 400, message: '본인은 삭제할 수 없습니다.' })
+  }
+  
+  // 직원 존재 여부 확인
+  const employee = await query<any>(`
+    SELECT employee_id, employee_name FROM wr_employee_info WHERE employee_id = $1
+  `, [employeeId])
+  
+  if (!employee[0]) {
+    throw createError({ statusCode: 404, message: '직원을 찾을 수 없습니다.' })
+  }
+  
+  // 주간보고 존재 여부 확인
+  const reports = await query<any>(`
+    SELECT COUNT(*) as cnt FROM wr_weekly_report WHERE author_id = $1
+  `, [employeeId])
+  
+  const reportCount = parseInt(reports[0].cnt)
+  
+  if (reportCount > 0) {
+    // 주간보고가 있으면 비활성화만
+    await execute(`
+      UPDATE wr_employee_info 
+      SET is_active = false, updated_at = NOW()
+      WHERE employee_id = $1
+    `, [employeeId])
+    
+    return {
+      success: true,
+      action: 'deactivated',
+      message: `${employee[0].employee_name}님이 비활성화되었습니다. (주간보고 ${reportCount}건 보존)`
+    }
+  } else {
+    // 주간보고가 없으면 완전 삭제 (관련 데이터 포함)
+    await execute(`DELETE FROM wr_employee_role WHERE employee_id = $1`, [employeeId])
+    await execute(`DELETE FROM wr_session WHERE employee_id = $1`, [employeeId])
+    await execute(`DELETE FROM wr_login_history WHERE employee_id = $1`, [employeeId])
+    await execute(`DELETE FROM wr_employee_info WHERE employee_id = $1`, [employeeId])
+    
+    return {
+      success: true,
+      action: 'deleted',
+      message: `${employee[0].employee_name}님이 삭제되었습니다.`
+    }
+  }
+})
--- a/server/api/employee/[id]/detail.get.ts
+++ b/server/api/employee/[id]/detail.get.ts
@@ -0,0 +1,72 @@
+import { queryOne, query } from '../../../utils/db'
+import { requireAuth, getSessionIdFromCookie, getDbSession } from '../../../utils/session'
+
+/**
+ * 직원 상세 조회
+ * GET /api/employee/[id]/detail
+ */
+export default defineEventHandler(async (event) => {
+  await requireAuth(event)
+  
+  const employeeId = getRouterParam(event, 'id')
+  
+  // 세션에서 현재 로그인 히스토리 ID 가져오기
+  const sessionId = getSessionIdFromCookie(event)
+  const session = sessionId ? await getDbSession(sessionId) : null
+  const currentHistoryId = session?.loginHistoryId || null
+  
+  const employee = await queryOne<any>(`
+    SELECT * FROM wr_employee_info WHERE employee_id = $1
+  `, [employeeId])
+  
+  if (!employee) {
+    throw createError({ statusCode: 404, message: '직원을 찾을 수 없습니다.' })
+  }
+  
+  // 로그인 이력 조회 (최근 20건)
+  const loginHistory = await query<any>(`
+    SELECT 
+      history_id,
+      login_at,
+      login_ip,
+      logout_at,
+      logout_ip
+    FROM wr_login_history
+    WHERE employee_id = $1
+    ORDER BY login_at DESC
+    LIMIT 20
+  `, [employeeId])
+  
+  return {
+    employee: {
+      employeeId: employee.employee_id,
+      employeeName: employee.employee_name,
+      employeeEmail: employee.employee_email,
+      employeePhone: employee.employee_phone,
+      employeePosition: employee.employee_position,
+      company: employee.company,
+      joinDate: employee.join_date,
+      isActive: employee.is_active,
+      createdAt: employee.created_at,
+      createdIp: employee.created_ip,
+      updatedAt: employee.updated_at,
+      updatedIp: employee.updated_ip,
+      // 계정 관련 필드
+      hasPassword: !!employee.password_hash,
+      googleId: employee.google_id,
+      googleEmail: employee.google_email,
+      googleLinkedAt: employee.google_linked_at,
+      lastLoginAt: employee.last_login_at,
+      lastLoginIp: employee.last_login_ip
+    },
+    loginHistory: loginHistory.map(h => ({
+      historyId: h.history_id,
+      loginAt: h.login_at,
+      loginIp: h.login_ip,
+      logoutAt: h.logout_at,
+      logoutIp: h.logout_ip,
+      // 현재 세션인지 여부
+      isCurrentSession: currentHistoryId && h.history_id === parseInt(currentHistoryId)
+    }))
+  }
+})
--- a/server/api/employee/[id]/unlink-google.post.ts
+++ b/server/api/employee/[id]/unlink-google.post.ts
@@ -0,0 +1,34 @@
+import { execute } from '../../../utils/db'
+import { getClientIp } from '../../../utils/ip'
+import { requireAuth } from '../../../utils/session'
+
+/**
+ * Google 계정 연결 해제
+ * POST /api/employee/[id]/unlink-google
+ */
+export default defineEventHandler(async (event) => {
+  await requireAuth(event)
+  
+  const employeeId = parseInt(event.context.params?.id || '0')
+  if (!employeeId) {
+    throw createError({ statusCode: 400, message: '사용자 ID가 필요합니다.' })
+  }
+  
+  const ip = getClientIp(event)
+  
+  const result = await execute(`
+    UPDATE wr_employee_info 
+    SET google_id = NULL, 
+        google_email = NULL, 
+        google_linked_at = NULL,
+        updated_at = NOW(),
+        updated_ip = $1
+    WHERE employee_id = $2
+  `, [ip, employeeId])
+  
+  if (result === 0) {
+    throw createError({ statusCode: 404, message: '사용자를 찾을 수 없습니다.' })
+  }
+  
+  return { success: true, message: 'Google 계정 연결이 해제되었습니다.' }
+})
--- a/server/api/employee/[id]/update.put.ts
+++ b/server/api/employee/[id]/update.put.ts
@@ -0,0 +1,60 @@
+import { execute, queryOne } from '../../../utils/db'
+import { getClientIp } from '../../../utils/ip'
+import { getCurrentUserEmail } from '../../../utils/user'
+
+// 빈 문자열을 null로 변환 (date 타입 등에서 필요)
+const emptyToNull = (value: any) => (value === '' ? null : value)
+
+interface UpdateEmployeeBody {
+  employeeName?: string
+  employeePhone?: string
+  employeePosition?: string
+  company?: string
+  joinDate?: string
+  isActive?: boolean
+}
+
+/**
+ * 직원 정보 수정
+ * PUT /api/employee/[id]/update
+ */
+export default defineEventHandler(async (event) => {
+  const employeeId = getRouterParam(event, 'id')
+  const body = await readBody<UpdateEmployeeBody>(event)
+  const clientIp = getClientIp(event)
+  const userEmail = await getCurrentUserEmail(event)
+  
+  const existing = await queryOne<any>(`
+    SELECT * FROM wr_employee_info WHERE employee_id = $1
+  `, [employeeId])
+  
+  if (!existing) {
+    throw createError({ statusCode: 404, message: '직원을 찾을 수 없습니다.' })
+  }
+  
+  await execute(`
+    UPDATE wr_employee_info SET
+      employee_name = $1,
+      employee_phone = $2,
+      employee_position = $3,
+      company = $4,
+      join_date = $5,
+      is_active = $6,
+      updated_at = NOW(),
+      updated_ip = $7,
+      updated_email = $8
+    WHERE employee_id = $9
+  `, [
+    body.employeeName ?? existing.employee_name,
+    emptyToNull(body.employeePhone) ?? existing.employee_phone,
+    emptyToNull(body.employeePosition) ?? existing.employee_position,
+    body.company ?? existing.company,
+    emptyToNull(body.joinDate) ?? existing.join_date,
+    body.isActive ?? existing.is_active,
+    clientIp,
+    userEmail,
+    employeeId
+  ])
+  
+  return { success: true }
+})