권한, 사용자, 메뉴 등에 대한 기능 업데이트

2026-01-10 16:54:06 +09:00
parent 134a68d9db
commit ef7914d5c6
34 changed files with 2678 additions and 650 deletions
--- a/backend/api/admin/user/[id]/roles.put.ts
+++ b/backend/api/admin/user/[id]/roles.put.ts
@@ -0,0 +1,55 @@
+import { query, queryOne, execute } from '../../../../utils/db'
+import { requireAdmin } from '../../../../utils/session'
+
+/**
+ * 사용자 권한 변경
+ * PUT /api/admin/user/[id]/roles
+ * 
+ * Body: { roleIds: number[] }
+ */
+export default defineEventHandler(async (event) => {
+  await requireAdmin(event)
+  
+  const employeeId = getRouterParam(event, 'id')
+  if (!employeeId) {
+    throw createError({ statusCode: 400, message: '사용자 ID가 필요합니다.' })
+  }
+  
+  const body = await readBody<{ roleIds: number[] }>(event)
+  const roleIds = body.roleIds || []
+  
+  // 사용자 존재 확인
+  const user = await queryOne<any>(`
+    SELECT employee_id, employee_email FROM wr_employee_info WHERE employee_id = $1
+  `, [employeeId])
+  
+  if (!user) {
+    throw createError({ statusCode: 404, message: '사용자를 찾을 수 없습니다.' })
+  }
+  
+  // 기존 권한 모두 삭제
+  await execute(`DELETE FROM wr_employee_role WHERE employee_id = $1`, [employeeId])
+  
+  // 새 권한 추가
+  for (const roleId of roleIds) {
+    await execute(`
+      INSERT INTO wr_employee_role (employee_id, role_id)
+      VALUES ($1, $2)
+      ON CONFLICT (employee_id, role_id) DO NOTHING
+    `, [employeeId, roleId])
+  }
+  
+  // 변경된 권한 조회
+  const updatedRoles = await query<any>(`
+    SELECT r.role_id, r.role_code, r.role_name
+    FROM wr_employee_role er
+    JOIN wr_role r ON er.role_id = r.role_id
+    WHERE er.employee_id = $1
+  `, [employeeId])
+  
+  return {
+    success: true,
+    employeeId: parseInt(employeeId as string),
+    roles: updatedRoles
+  }
+})
--- a/backend/api/admin/user/[id]/toggle-role.post.ts
+++ b/backend/api/admin/user/[id]/toggle-role.post.ts
@@ -0,0 +1,70 @@
+import { queryOne, execute } from '../../../../utils/db'
+import { requireAdmin } from '../../../../utils/session'
+
+/**
+ * 사용자 개별 권한 토글 (추가/제거)
+ * POST /api/admin/user/[id]/toggle-role
+ * 
+ * Body: { roleId: number }
+ */
+export default defineEventHandler(async (event) => {
+  await requireAdmin(event)
+  
+  const employeeId = getRouterParam(event, 'id')
+  if (!employeeId) {
+    throw createError({ statusCode: 400, message: '사용자 ID가 필요합니다.' })
+  }
+  
+  const body = await readBody<{ roleId: number }>(event)
+  if (!body.roleId) {
+    throw createError({ statusCode: 400, message: '권한 ID가 필요합니다.' })
+  }
+  
+  // 사용자 존재 확인
+  const user = await queryOne<any>(`
+    SELECT employee_id FROM wr_employee_info WHERE employee_id = $1
+  `, [employeeId])
+  
+  if (!user) {
+    throw createError({ statusCode: 404, message: '사용자를 찾을 수 없습니다.' })
+  }
+  
+  // 권한 존재 확인
+  const role = await queryOne<any>(`
+    SELECT role_id, role_code FROM wr_role WHERE role_id = $1
+  `, [body.roleId])
+  
+  if (!role) {
+    throw createError({ statusCode: 404, message: '권한을 찾을 수 없습니다.' })
+  }
+  
+  // 현재 권한 보유 여부 확인
+  const existing = await queryOne<any>(`
+    SELECT employee_role_id FROM wr_employee_role 
+    WHERE employee_id = $1 AND role_id = $2
+  `, [employeeId, body.roleId])
+  
+  let added: boolean
+  
+  if (existing) {
+    // 권한 제거
+    await execute(`
+      DELETE FROM wr_employee_role WHERE employee_id = $1 AND role_id = $2
+    `, [employeeId, body.roleId])
+    added = false
+  } else {
+    // 권한 추가
+    await execute(`
+      INSERT INTO wr_employee_role (employee_id, role_id) VALUES ($1, $2)
+    `, [employeeId, body.roleId])
+    added = true
+  }
+  
+  return {
+    success: true,
+    employeeId: parseInt(employeeId as string),
+    roleId: body.roleId,
+    roleCode: role.role_code,
+    added
+  }
+})