import { query, execute } from '../../../utils/db' const ADMIN_EMAIL = 'coziny@gmail.com' /** * 직원 삭제 * DELETE /api/employee/[id] */ export default defineEventHandler(async (event) => { const userId = getCookie(event, 'user_id') if (!userId) { throw createError({ statusCode: 401, message: '로그인이 필요합니다.' }) } // 관리자 권한 체크 const currentUser = await query(` SELECT employee_email FROM wr_employee_info WHERE employee_id = $1 `, [userId]) if (!currentUser[0] || currentUser[0].employee_email !== ADMIN_EMAIL) { throw createError({ statusCode: 403, message: '관리자만 삭제할 수 있습니다.' }) } const employeeId = getRouterParam(event, 'id') if (!employeeId) { throw createError({ statusCode: 400, message: '직원 ID가 필요합니다.' }) } // 본인 삭제 방지 if (employeeId === userId) { throw createError({ statusCode: 400, message: '본인은 삭제할 수 없습니다.' }) } // 직원 존재 여부 확인 const employee = await query(` SELECT employee_id, employee_name FROM wr_employee_info WHERE employee_id = $1 `, [employeeId]) if (!employee[0]) { throw createError({ statusCode: 404, message: '직원을 찾을 수 없습니다.' }) } // 주간보고 존재 여부 확인 const reports = await query(` SELECT COUNT(*) as cnt FROM wr_weekly_report WHERE author_id = $1 `, [employeeId]) const reportCount = parseInt(reports[0].cnt) if (reportCount > 0) { // 주간보고가 있으면 비활성화만 await execute(` UPDATE wr_employee_info SET is_active = false, updated_at = NOW() WHERE employee_id = $1 `, [employeeId]) return { success: true, action: 'deactivated', message: `${employee[0].employee_name}님이 비활성화되었습니다. (주간보고 ${reportCount}건 보존)` } } else { // 주간보고가 없으면 완전 삭제 (로그인 이력 포함) await execute(`DELETE FROM wr_login_history WHERE employee_id = $1`, [employeeId]) await execute(`DELETE FROM wr_employee_info WHERE employee_id = $1`, [employeeId]) return { success: true, action: 'deleted', message: `${employee[0].employee_name}님이 삭제되었습니다.` } } })