diff --git a/docker-compose.yml b/docker-compose.yml index 14e6945..0c475cc 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -372,6 +372,46 @@ services: networks: - tk-network + # ================================================================= + # Support (tksupport) - 전사 행정지원 + # ================================================================= + + tksupport-api: + build: + context: ./tksupport/api + dockerfile: Dockerfile + container_name: tk-tksupport-api + restart: unless-stopped + ports: + - "30600:3000" + environment: + - NODE_ENV=production + - PORT=3000 + - DB_HOST=mariadb + - DB_PORT=3306 + - DB_USER=${MYSQL_USER:-hyungi_user} + - DB_PASSWORD=${MYSQL_PASSWORD} + - DB_NAME=${MYSQL_DATABASE:-hyungi} + - SSO_JWT_SECRET=${SSO_JWT_SECRET} + depends_on: + mariadb: + condition: service_healthy + networks: + - tk-network + + tksupport-web: + build: + context: ./tksupport/web + dockerfile: Dockerfile + container_name: tk-tksupport-web + restart: unless-stopped + ports: + - "30680:80" + depends_on: + - tksupport-api + networks: + - tk-network + # ================================================================= # AI Service — 맥미니로 이전됨 (~/docker/tk-ai-service/) # ================================================================= @@ -434,6 +474,7 @@ services: - system3-web - tkpurchase-web - tksafety-web + - tksupport-web networks: - tk-network diff --git a/tksupport/api/Dockerfile b/tksupport/api/Dockerfile new file mode 100644 index 0000000..7432d7c --- /dev/null +++ b/tksupport/api/Dockerfile @@ -0,0 +1,11 @@ +FROM node:18-alpine +WORKDIR /usr/src/app +COPY package*.json ./ +RUN npm install --omit=dev +COPY . . +RUN chown -R node:node /usr/src/app +USER node +EXPOSE 3000 +HEALTHCHECK --interval=30s --timeout=3s --start-period=20s --retries=3 \ + CMD node -e "require('http').get('http://localhost:3000/health', (res) => { process.exit(res.statusCode === 200 ? 0 : 1); })" +CMD ["node", "index.js"] diff --git a/tksupport/api/controllers/vacationController.js b/tksupport/api/controllers/vacationController.js new file mode 100644 index 0000000..cc211d3 --- /dev/null +++ b/tksupport/api/controllers/vacationController.js @@ -0,0 +1,319 @@ +const vacationRequestModel = require('../models/vacationRequestModel'); +const vacationBalanceModel = require('../models/vacationBalanceModel'); +const { getPool } = require('../middleware/auth'); + +const vacationController = { + // ─── 휴가 신청 ─── + + async createRequest(req, res) { + try { + const { vacation_type_id, start_date, end_date, days_used, reason } = req.body; + const user_id = req.user.user_id || req.user.id; + + if (!vacation_type_id || !start_date || !end_date || !days_used) { + return res.status(400).json({ success: false, error: '필수 필드가 누락되었습니다' }); + } + if (new Date(end_date) < new Date(start_date)) { + return res.status(400).json({ success: false, error: '종료일은 시작일보다 이후여야 합니다' }); + } + + const overlapRows = await vacationRequestModel.checkOverlap(user_id, start_date, end_date); + if (overlapRows[0].count > 0) { + return res.status(400).json({ success: false, error: '해당 기간에 이미 신청된 휴가가 있습니다' }); + } + + const result = await vacationRequestModel.create({ + user_id, vacation_type_id, start_date, end_date, + days_used, reason: reason || null, status: 'pending' + }); + + res.status(201).json({ + success: true, + message: '휴가 신청이 완료되었습니다', + data: { request_id: result.insertId } + }); + } catch (error) { + console.error('휴가 신청 생성 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async getRequests(req, res) { + try { + const role = (req.user.role || '').toLowerCase(); + const userId = req.user.user_id || req.user.id; + const filters = { + status: req.query.status, + start_date: req.query.start_date, + end_date: req.query.end_date, + vacation_type_id: req.query.vacation_type_id + }; + + if (!['admin', 'system'].includes(role)) { + filters.user_id = userId; + } else if (req.query.user_id) { + filters.user_id = req.query.user_id; + } + + const results = await vacationRequestModel.getAll(filters); + res.json({ success: true, data: results }); + } catch (error) { + console.error('휴가 신청 목록 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async getRequestById(req, res) { + try { + const results = await vacationRequestModel.getById(req.params.id); + if (results.length === 0) { + return res.status(404).json({ success: false, error: '해당 휴가 신청을 찾을 수 없습니다' }); + } + const request = results[0]; + const role = (req.user.role || '').toLowerCase(); + const userId = req.user.user_id || req.user.id; + if (!['admin', 'system'].includes(role) && userId !== request.user_id) { + return res.status(403).json({ success: false, error: '권한이 없습니다' }); + } + res.json({ success: true, data: request }); + } catch (error) { + console.error('휴가 신청 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async updateRequest(req, res) { + try { + const { id } = req.params; + const { start_date, end_date, days_used, reason, vacation_type_id } = req.body; + + const results = await vacationRequestModel.getById(id); + if (results.length === 0) { + return res.status(404).json({ success: false, error: '해당 휴가 신청을 찾을 수 없습니다' }); + } + + const existing = results[0]; + const role = (req.user.role || '').toLowerCase(); + const userId = req.user.user_id || req.user.id; + if (!['admin', 'system'].includes(role) && userId !== existing.user_id) { + return res.status(403).json({ success: false, error: '권한이 없습니다' }); + } + if (existing.status !== 'pending') { + return res.status(400).json({ success: false, error: '대기 중인 신청만 수정할 수 있습니다' }); + } + + const updateData = {}; + if (vacation_type_id) updateData.vacation_type_id = vacation_type_id; + if (start_date) updateData.start_date = start_date; + if (end_date) updateData.end_date = end_date; + if (days_used) updateData.days_used = days_used; + if (reason !== undefined) updateData.reason = reason; + + if (start_date || end_date) { + const newStart = start_date || existing.start_date; + const newEnd = end_date || existing.end_date; + const overlapRows = await vacationRequestModel.checkOverlap(existing.user_id, newStart, newEnd, id); + if (overlapRows[0].count > 0) { + return res.status(400).json({ success: false, error: '해당 기간에 이미 신청된 휴가가 있습니다' }); + } + } + + await vacationRequestModel.update(id, updateData); + res.json({ success: true, message: '휴가 신청이 수정되었습니다' }); + } catch (error) { + console.error('휴가 신청 수정 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async cancelRequest(req, res) { + try { + const { id } = req.params; + const results = await vacationRequestModel.getById(id); + if (results.length === 0) { + return res.status(404).json({ success: false, error: '해당 휴가 신청을 찾을 수 없습니다' }); + } + + const existing = results[0]; + const role = (req.user.role || '').toLowerCase(); + const userId = req.user.user_id || req.user.id; + if (!['admin', 'system'].includes(role) && userId !== existing.user_id) { + return res.status(403).json({ success: false, error: '권한이 없습니다' }); + } + if (existing.status === 'cancelled') { + return res.status(400).json({ success: false, error: '이미 취소된 신청입니다' }); + } + + // 승인된 건 취소 시 잔여일 복구 + if (existing.status === 'approved') { + const year = new Date(existing.start_date).getFullYear(); + await vacationBalanceModel.restoreDays( + existing.user_id, existing.vacation_type_id, year, parseFloat(existing.days_used) + ); + } + + await vacationRequestModel.updateStatus(id, { + status: 'cancelled', + reviewed_by: userId, + review_note: '취소됨' + }); + res.json({ success: true, message: '휴가 신청이 취소되었습니다' }); + } catch (error) { + console.error('휴가 취소 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + // ─── 승인/반려 (관리자) ─── + + async getPending(req, res) { + try { + const results = await vacationRequestModel.getAllPending(); + res.json({ success: true, data: results }); + } catch (error) { + console.error('대기 목록 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async approveRequest(req, res) { + try { + const { id } = req.params; + const { review_note } = req.body; + const reviewed_by = req.user.user_id || req.user.id; + + const results = await vacationRequestModel.getById(id); + if (results.length === 0) { + return res.status(404).json({ success: false, error: '해당 휴가 신청을 찾을 수 없습니다' }); + } + if (results[0].status !== 'pending') { + return res.status(400).json({ success: false, error: '이미 처리된 신청입니다' }); + } + + const request = results[0]; + + // 잔여일 차감 + const year = new Date(request.start_date).getFullYear(); + await vacationBalanceModel.deductDays( + request.user_id, request.vacation_type_id, year, parseFloat(request.days_used) + ); + + await vacationRequestModel.updateStatus(id, { status: 'approved', reviewed_by, review_note }); + res.json({ success: true, message: '휴가 신청이 승인되었습니다' }); + } catch (error) { + console.error('휴가 승인 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async rejectRequest(req, res) { + try { + const { id } = req.params; + const { review_note } = req.body; + const reviewed_by = req.user.user_id || req.user.id; + + const results = await vacationRequestModel.getById(id); + if (results.length === 0) { + return res.status(404).json({ success: false, error: '해당 휴가 신청을 찾을 수 없습니다' }); + } + if (results[0].status !== 'pending') { + return res.status(400).json({ success: false, error: '이미 처리된 신청입니다' }); + } + + await vacationRequestModel.updateStatus(id, { status: 'rejected', reviewed_by, review_note }); + res.json({ success: true, message: '휴가 신청이 반려되었습니다' }); + } catch (error) { + console.error('휴가 반려 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + // ─── 잔여일 ─── + + async getMyBalance(req, res) { + try { + const userId = req.user.user_id || req.user.id; + const year = parseInt(req.query.year) || new Date().getFullYear(); + const balances = await vacationBalanceModel.getByUserAndYear(userId, year); + const hireDate = await vacationBalanceModel.getUserHireDate(userId); + res.json({ success: true, data: { balances, hire_date: hireDate } }); + } catch (error) { + console.error('잔여일 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async getUserBalance(req, res) { + try { + const { userId } = req.params; + const year = parseInt(req.query.year) || new Date().getFullYear(); + const balances = await vacationBalanceModel.getByUserAndYear(userId, year); + const hireDate = await vacationBalanceModel.getUserHireDate(userId); + res.json({ success: true, data: { balances, hire_date: hireDate } }); + } catch (error) { + console.error('사용자 잔여일 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async allocateBalance(req, res) { + try { + const { user_id, vacation_type_id, year, total_days, notes } = req.body; + const created_by = req.user.user_id || req.user.id; + + if (!user_id || !vacation_type_id || !year || total_days === undefined) { + return res.status(400).json({ success: false, error: '필수 필드가 누락되었습니다' }); + } + + await vacationBalanceModel.allocate({ user_id, vacation_type_id, year, total_days, notes, created_by }); + res.json({ success: true, message: '휴가 잔여일이 배정되었습니다' }); + } catch (error) { + console.error('잔여일 배정 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + async getAllBalances(req, res) { + try { + const year = parseInt(req.query.year) || new Date().getFullYear(); + const balances = await vacationBalanceModel.getAllByYear(year); + res.json({ success: true, data: balances }); + } catch (error) { + console.error('전체 잔여일 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + // ─── 참조 데이터 ─── + + async getVacationTypes(req, res) { + try { + const db = getPool(); + const [rows] = await db.query('SELECT * FROM vacation_types ORDER BY priority ASC, type_name ASC'); + res.json({ success: true, data: rows }); + } catch (error) { + console.error('휴가 유형 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + }, + + // ─── 사용자 목록 (관리자 - 배정용) ─── + + async getUsers(req, res) { + try { + const db = getPool(); + const [rows] = await db.query(` + SELECT user_id, username, name, hire_date + FROM sso_users + WHERE is_active = 1 + ORDER BY name ASC + `); + res.json({ success: true, data: rows }); + } catch (error) { + console.error('사용자 목록 조회 오류:', error); + res.status(500).json({ success: false, error: '서버 오류가 발생했습니다' }); + } + } +}; + +module.exports = vacationController; diff --git a/tksupport/api/db/migrations/001_create_sp_tables.sql b/tksupport/api/db/migrations/001_create_sp_tables.sql new file mode 100644 index 0000000..598c44a --- /dev/null +++ b/tksupport/api/db/migrations/001_create_sp_tables.sql @@ -0,0 +1,42 @@ +-- sso_users에 입사일 추가 +ALTER TABLE sso_users ADD COLUMN IF NOT EXISTS hire_date DATE NULL COMMENT '입사일'; + +-- 전사 휴가 신청 +CREATE TABLE IF NOT EXISTS sp_vacation_requests ( + request_id INT AUTO_INCREMENT PRIMARY KEY, + user_id INT NOT NULL COMMENT 'sso_users.user_id', + vacation_type_id INT UNSIGNED NOT NULL, + start_date DATE NOT NULL, + end_date DATE NOT NULL, + days_used DECIMAL(4,1) NOT NULL, + reason TEXT, + status ENUM('pending','approved','rejected','cancelled') DEFAULT 'pending', + reviewed_by INT NULL, + reviewed_at TIMESTAMP NULL, + review_note TEXT, + created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP, + updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, + FOREIGN KEY (user_id) REFERENCES sso_users(user_id), + FOREIGN KEY (reviewed_by) REFERENCES sso_users(user_id), + FOREIGN KEY (vacation_type_id) REFERENCES vacation_types(id), + INDEX idx_user_status (user_id, status), + INDEX idx_dates (start_date, end_date) +); + +-- 전사 휴가 잔여일 +CREATE TABLE IF NOT EXISTS sp_vacation_balances ( + id INT AUTO_INCREMENT PRIMARY KEY, + user_id INT NOT NULL COMMENT 'sso_users.user_id', + vacation_type_id INT UNSIGNED NOT NULL, + year INT NOT NULL, + total_days DECIMAL(4,1) DEFAULT 0, + used_days DECIMAL(4,1) DEFAULT 0, + notes TEXT, + created_by INT NOT NULL, + created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP, + updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP, + UNIQUE KEY unique_user_type_year (user_id, vacation_type_id, year), + FOREIGN KEY (user_id) REFERENCES sso_users(user_id), + FOREIGN KEY (created_by) REFERENCES sso_users(user_id), + FOREIGN KEY (vacation_type_id) REFERENCES vacation_types(id) +); diff --git a/tksupport/api/index.js b/tksupport/api/index.js new file mode 100644 index 0000000..7a4a792 --- /dev/null +++ b/tksupport/api/index.js @@ -0,0 +1,62 @@ +const express = require('express'); +const cors = require('cors'); +const vacationRoutes = require('./routes/vacationRoutes'); +const vacationRequestModel = require('./models/vacationRequestModel'); +const { requireAuth } = require('./middleware/auth'); + +const app = express(); +const PORT = process.env.PORT || 3000; + +const allowedOrigins = [ + 'https://tkfb.technicalkorea.net', + 'https://tkreport.technicalkorea.net', + 'https://tkqc.technicalkorea.net', + 'https://tkuser.technicalkorea.net', + 'https://tkpurchase.technicalkorea.net', + 'https://tksafety.technicalkorea.net', + 'https://tksupport.technicalkorea.net', +]; +if (process.env.NODE_ENV === 'development') { + allowedOrigins.push('http://localhost:30680'); +} +app.use(cors({ + origin: function(origin, cb) { + if (!origin || allowedOrigins.includes(origin) || /^http:\/\/192\.168\.\d+\.\d+(:\d+)?$/.test(origin)) return cb(null, true); + cb(new Error('CORS blocked: ' + origin)); + }, + credentials: true +})); +app.use(express.json()); + +// Health check +app.get('/health', (req, res) => { + res.json({ status: 'ok', service: 'tksupport-api', timestamp: new Date().toISOString() }); +}); + +// Routes +app.use('/api/vacation', vacationRoutes); + +// 404 +app.use((req, res) => { + res.status(404).json({ success: false, error: 'Not Found' }); +}); + +// Error handler +app.use((err, req, res, next) => { + console.error('tksupport-api Error:', err.message); + res.status(err.status || 500).json({ + success: false, + error: err.message || 'Internal Server Error' + }); +}); + +app.listen(PORT, async () => { + console.log(`tksupport-api running on port ${PORT}`); + try { + await vacationRequestModel.runMigration(); + } catch (err) { + console.error('Migration error:', err.message); + } +}); + +module.exports = app; diff --git a/tksupport/api/middleware/auth.js b/tksupport/api/middleware/auth.js new file mode 100644 index 0000000..0226c41 --- /dev/null +++ b/tksupport/api/middleware/auth.js @@ -0,0 +1,98 @@ +const jwt = require('jsonwebtoken'); +const mysql = require('mysql2/promise'); + +const JWT_SECRET = process.env.SSO_JWT_SECRET; + +let pool; +function getPool() { + if (!pool) { + pool = mysql.createPool({ + host: process.env.DB_HOST || 'mariadb', + port: parseInt(process.env.DB_PORT) || 3306, + user: process.env.DB_USER || 'hyungi_user', + password: process.env.DB_PASSWORD, + database: process.env.DB_NAME || 'hyungi', + waitForConnections: true, + connectionLimit: 5, + queueLimit: 0 + }); + } + return pool; +} + +function extractToken(req) { + const authHeader = req.headers['authorization']; + if (authHeader && authHeader.startsWith('Bearer ')) { + return authHeader.split(' ')[1]; + } + if (req.cookies && req.cookies.sso_token) { + return req.cookies.sso_token; + } + return null; +} + +function requireAuth(req, res, next) { + const token = extractToken(req); + if (!token) { + return res.status(401).json({ success: false, error: '인증이 필요합니다' }); + } + try { + const decoded = jwt.verify(token, JWT_SECRET); + req.user = decoded; + next(); + } catch { + return res.status(401).json({ success: false, error: '유효하지 않은 토큰입니다' }); + } +} + +function requireAdmin(req, res, next) { + const token = extractToken(req); + if (!token) { + return res.status(401).json({ success: false, error: '인증이 필요합니다' }); + } + try { + const decoded = jwt.verify(token, JWT_SECRET); + if (!['admin', 'system'].includes((decoded.role || '').toLowerCase())) { + return res.status(403).json({ success: false, error: '관리자 권한이 필요합니다' }); + } + req.user = decoded; + next(); + } catch { + return res.status(401).json({ success: false, error: '유효하지 않은 토큰입니다' }); + } +} + +function requirePage(pageName) { + return async (req, res, next) => { + const userId = req.user.user_id || req.user.id; + const role = (req.user.role || '').toLowerCase(); + if (role === 'admin' || role === 'system') return next(); + + try { + const db = getPool(); + const [rows] = await db.query( + 'SELECT can_access FROM user_page_permissions WHERE user_id = ? AND page_name = ?', + [userId, pageName] + ); + if (rows.length > 0) { + return rows[0].can_access ? next() : res.status(403).json({ success: false, error: '접근 권한이 없습니다' }); + } + const [userRows] = await db.query('SELECT department_id FROM sso_users WHERE user_id = ?', [userId]); + if (userRows.length > 0 && userRows[0].department_id) { + const [deptRows] = await db.query( + 'SELECT can_access FROM department_page_permissions WHERE department_id = ? AND page_name = ?', + [userRows[0].department_id, pageName] + ); + if (deptRows.length > 0) { + return deptRows[0].can_access ? next() : res.status(403).json({ success: false, error: '접근 권한이 없습니다' }); + } + } + return res.status(403).json({ success: false, error: '접근 권한이 없습니다' }); + } catch (err) { + console.error('Permission check error:', err); + return res.status(500).json({ success: false, error: '권한 확인 실패' }); + } + }; +} + +module.exports = { getPool, extractToken, requireAuth, requireAdmin, requirePage }; diff --git a/tksupport/api/models/vacationBalanceModel.js b/tksupport/api/models/vacationBalanceModel.js new file mode 100644 index 0000000..9236a23 --- /dev/null +++ b/tksupport/api/models/vacationBalanceModel.js @@ -0,0 +1,96 @@ +const { getPool } = require('../middleware/auth'); + +const vacationBalanceModel = { + async getByUserAndYear(userId, year) { + const db = getPool(); + const [rows] = await db.query(` + SELECT + vb.*, + vt.type_name, + vt.type_code, + vt.priority, + vt.is_special, + (vb.total_days - vb.used_days) as remaining_days + FROM sp_vacation_balances vb + INNER JOIN vacation_types vt ON vb.vacation_type_id = vt.id + WHERE vb.user_id = ? AND vb.year = ? + ORDER BY vt.priority ASC, vt.type_name ASC + `, [userId, year]); + return rows; + }, + + async getAllByYear(year) { + const db = getPool(); + const [rows] = await db.query(` + SELECT + vb.*, + su.name as user_name, + su.username, + su.hire_date, + vt.type_name, + vt.type_code, + vt.priority, + (vb.total_days - vb.used_days) as remaining_days + FROM sp_vacation_balances vb + INNER JOIN sso_users su ON vb.user_id = su.user_id + INNER JOIN vacation_types vt ON vb.vacation_type_id = vt.id + WHERE vb.year = ? AND su.is_active = 1 + ORDER BY su.name ASC, vt.priority ASC + `, [year]); + return rows; + }, + + async allocate(data) { + const db = getPool(); + const [result] = await db.query(` + INSERT INTO sp_vacation_balances (user_id, vacation_type_id, year, total_days, used_days, notes, created_by) + VALUES (?, ?, ?, ?, 0, ?, ?) + ON DUPLICATE KEY UPDATE + total_days = VALUES(total_days), + notes = VALUES(notes), + updated_at = NOW() + `, [data.user_id, data.vacation_type_id, data.year, data.total_days, data.notes || null, data.created_by]); + return result; + }, + + async deductDays(userId, vacationTypeId, year, daysToDeduct) { + const db = getPool(); + const [result] = await db.query(` + UPDATE sp_vacation_balances + SET used_days = used_days + ?, updated_at = NOW() + WHERE user_id = ? AND vacation_type_id = ? AND year = ? + `, [daysToDeduct, userId, vacationTypeId, year]); + return result; + }, + + async restoreDays(userId, vacationTypeId, year, daysToRestore) { + const db = getPool(); + const [result] = await db.query(` + UPDATE sp_vacation_balances + SET used_days = GREATEST(0, used_days - ?), updated_at = NOW() + WHERE user_id = ? AND vacation_type_id = ? AND year = ? + `, [daysToRestore, userId, vacationTypeId, year]); + return result; + }, + + calculateAnnualLeaveDays(hireDate, targetYear) { + const hire = new Date(hireDate); + const targetDate = new Date(targetYear, 0, 1); + const monthsDiff = (targetDate.getFullYear() - hire.getFullYear()) * 12 + + (targetDate.getMonth() - hire.getMonth()); + if (monthsDiff < 12) { + return Math.floor(monthsDiff); + } + const yearsWorked = Math.floor(monthsDiff / 12); + const additionalDays = Math.floor((yearsWorked - 1) / 2); + return Math.min(15 + additionalDays, 25); + }, + + async getUserHireDate(userId) { + const db = getPool(); + const [rows] = await db.query('SELECT hire_date FROM sso_users WHERE user_id = ?', [userId]); + return rows.length > 0 ? rows[0].hire_date : null; + } +}; + +module.exports = vacationBalanceModel; diff --git a/tksupport/api/models/vacationRequestModel.js b/tksupport/api/models/vacationRequestModel.js new file mode 100644 index 0000000..a33f612 --- /dev/null +++ b/tksupport/api/models/vacationRequestModel.js @@ -0,0 +1,149 @@ +const { getPool } = require('../middleware/auth'); + +const vacationRequestModel = { + async create(data) { + const db = getPool(); + const [result] = await db.query('INSERT INTO sp_vacation_requests SET ?', data); + return result; + }, + + async getAll(filters = {}) { + const db = getPool(); + let query = ` + SELECT + vr.*, + su.name as user_name, + su.username, + vt.type_name as vacation_type_name, + vt.type_code, + reviewer.name as reviewer_name + FROM sp_vacation_requests vr + INNER JOIN sso_users su ON vr.user_id = su.user_id + INNER JOIN vacation_types vt ON vr.vacation_type_id = vt.id + LEFT JOIN sso_users reviewer ON vr.reviewed_by = reviewer.user_id + WHERE 1=1 + `; + const params = []; + + if (filters.user_id) { + query += ' AND vr.user_id = ?'; + params.push(filters.user_id); + } + if (filters.status) { + query += ' AND vr.status = ?'; + params.push(filters.status); + } + if (filters.start_date) { + query += ' AND vr.start_date >= ?'; + params.push(filters.start_date); + } + if (filters.end_date) { + query += ' AND vr.end_date <= ?'; + params.push(filters.end_date); + } + if (filters.vacation_type_id) { + query += ' AND vr.vacation_type_id = ?'; + params.push(filters.vacation_type_id); + } + + query += ' ORDER BY vr.created_at DESC'; + + const [rows] = await db.query(query, params); + return rows; + }, + + async getById(requestId) { + const db = getPool(); + const [rows] = await db.query(` + SELECT + vr.*, + su.name as user_name, + su.username, + vt.type_name as vacation_type_name, + vt.type_code, + reviewer.name as reviewer_name + FROM sp_vacation_requests vr + INNER JOIN sso_users su ON vr.user_id = su.user_id + INNER JOIN vacation_types vt ON vr.vacation_type_id = vt.id + LEFT JOIN sso_users reviewer ON vr.reviewed_by = reviewer.user_id + WHERE vr.request_id = ? + `, [requestId]); + return rows; + }, + + async update(requestId, data) { + const db = getPool(); + const [result] = await db.query('UPDATE sp_vacation_requests SET ? WHERE request_id = ?', [data, requestId]); + return result; + }, + + async updateStatus(requestId, statusData) { + const db = getPool(); + const [result] = await db.query(` + UPDATE sp_vacation_requests + SET status = ?, reviewed_by = ?, reviewed_at = NOW(), review_note = ? + WHERE request_id = ? + `, [statusData.status, statusData.reviewed_by, statusData.review_note || null, requestId]); + return result; + }, + + async checkOverlap(userId, startDate, endDate, excludeRequestId = null) { + const db = getPool(); + let query = ` + SELECT COUNT(*) as count FROM sp_vacation_requests + WHERE user_id = ? + AND status IN ('pending', 'approved') + AND start_date <= ? AND end_date >= ? + `; + const params = [userId, endDate, startDate]; + + if (excludeRequestId) { + query += ' AND request_id != ?'; + params.push(excludeRequestId); + } + + const [rows] = await db.query(query, params); + return rows; + }, + + async getAllPending() { + const db = getPool(); + const [rows] = await db.query(` + SELECT + vr.*, + su.name as user_name, + su.username, + vt.type_name as vacation_type_name, + vt.type_code + FROM sp_vacation_requests vr + INNER JOIN sso_users su ON vr.user_id = su.user_id + INNER JOIN vacation_types vt ON vr.vacation_type_id = vt.id + WHERE vr.status = 'pending' + ORDER BY vr.created_at ASC + `); + return rows; + }, + + async runMigration() { + const db = getPool(); + const fs = require('fs'); + const path = require('path'); + const sqlFile = path.join(__dirname, '..', 'db', 'migrations', '001_create_sp_tables.sql'); + const sql = fs.readFileSync(sqlFile, 'utf8'); + const statements = sql.split(';').map(s => s.trim()).filter(s => s.length > 0); + for (const stmt of statements) { + try { + await db.query(stmt); + } catch (err) { + if (err.code === 'ER_DUP_FIELDNAME' || err.code === 'ER_TABLE_EXISTS_ERROR') { + // Already migrated + } else { + throw err; + } + } + } + console.log('[tksupport] Migration completed'); + } +}; + +module.exports = vacationRequestModel; diff --git a/tksupport/api/package.json b/tksupport/api/package.json new file mode 100644 index 0000000..491a67e --- /dev/null +++ b/tksupport/api/package.json @@ -0,0 +1,16 @@ +{ + "name": "tksupport-api", + "version": "1.0.0", + "description": "TK Factory Services - 전사 행정지원 서비스", + "main": "index.js", + "scripts": { + "start": "node index.js", + "dev": "node --watch index.js" + }, + "dependencies": { + "cors": "^2.8.5", + "express": "^4.18.2", + "jsonwebtoken": "^9.0.0", + "mysql2": "^3.14.1" + } +} diff --git a/tksupport/api/routes/vacationRoutes.js b/tksupport/api/routes/vacationRoutes.js new file mode 100644 index 0000000..46488ff --- /dev/null +++ b/tksupport/api/routes/vacationRoutes.js @@ -0,0 +1,32 @@ +const express = require('express'); +const router = express.Router(); +const { requireAuth, requireAdmin } = require('../middleware/auth'); +const ctrl = require('../controllers/vacationController'); + +router.use(requireAuth); + +// 참조 데이터 +router.get('/types', ctrl.getVacationTypes); + +// 휴가 신청 +router.post('/requests', ctrl.createRequest); +router.get('/requests', ctrl.getRequests); +router.get('/requests/:id', ctrl.getRequestById); +router.put('/requests/:id', ctrl.updateRequest); +router.patch('/requests/:id/cancel', ctrl.cancelRequest); + +// 승인 (관리자) +router.get('/pending', requireAdmin, ctrl.getPending); +router.patch('/requests/:id/approve', requireAdmin, ctrl.approveRequest); +router.patch('/requests/:id/reject', requireAdmin, ctrl.rejectRequest); + +// 잔여일 +router.get('/balance', ctrl.getMyBalance); +router.get('/balance/all', requireAdmin, ctrl.getAllBalances); +router.get('/balance/:userId', requireAdmin, ctrl.getUserBalance); +router.post('/balance/allocate', requireAdmin, ctrl.allocateBalance); + +// 사용자 목록 (관리자) +router.get('/users', requireAdmin, ctrl.getUsers); + +module.exports = router; diff --git a/tksupport/web/Dockerfile b/tksupport/web/Dockerfile new file mode 100644 index 0000000..dc12d9e --- /dev/null +++ b/tksupport/web/Dockerfile @@ -0,0 +1,6 @@ +FROM nginx:alpine +COPY nginx.conf /etc/nginx/conf.d/default.conf +COPY *.html /usr/share/nginx/html/ +COPY static/ /usr/share/nginx/html/static/ +EXPOSE 80 +CMD ["nginx", "-g", "daemon off;"] diff --git a/tksupport/web/index.html b/tksupport/web/index.html new file mode 100644 index 0000000..3f7fce9 --- /dev/null +++ b/tksupport/web/index.html @@ -0,0 +1,237 @@ + + + + + + 대시보드 - TK 행정지원 + + + + + + +
+
+
+
+ +

TK 행정지원

+
+
+ +
-
+ +
+
+
+
+ +
+
+ + + + +
+ +
+
+
-
+
잔여 연차
+
+
+
-
+
사용 연차
+
+
+
-
+
대기 중
+
+
+
-
+
승인 완료
+
+
+ + +
+
+

빠른 휴가 신청

+ 상세 신청 +
+ +
+
+
+ + +
+
+ + +
+
+ + +
+
+ + +
+
+
+ + +
+
+ +
+
+
+ + +
+

최근 신청 현황

+
+ + + + + + + + + + + + + + +
유형기간일수사유상태신청일
로딩 중...
+
+
+
+
+
+ + + + + diff --git a/tksupport/web/nginx.conf b/tksupport/web/nginx.conf new file mode 100644 index 0000000..0f4fd3a --- /dev/null +++ b/tksupport/web/nginx.conf @@ -0,0 +1,45 @@ +server { + listen 80; + server_name _; + charset utf-8; + root /usr/share/nginx/html; + index index.html; + + gzip on; + gzip_types text/plain text/css application/javascript application/json; + gzip_min_length 1024; + + location ~* \.html$ { + expires -1; + add_header Cache-Control "no-store, no-cache, must-revalidate"; + } + + location ~* \.(js|css)$ { + expires 1h; + add_header Cache-Control "public, no-transform"; + } + + location /api/ { + proxy_pass http://tksupport-api:3000/api/; + proxy_http_version 1.1; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + } + + location /static/ { + expires 1h; + add_header Cache-Control "public, no-transform"; + } + + location / { + try_files $uri $uri/ /index.html; + } + + location /health { + access_log off; + return 200 'ok'; + add_header Content-Type text/plain; + } +} diff --git a/tksupport/web/static/css/tksupport.css b/tksupport/web/static/css/tksupport.css new file mode 100644 index 0000000..8ee0cb6 --- /dev/null +++ b/tksupport/web/static/css/tksupport.css @@ -0,0 +1,50 @@ +/* tksupport global styles */ +body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif; background: #f8fafc; margin: 0; } +.fade-in { opacity: 0; transition: opacity 0.3s; } +.fade-in.visible { opacity: 1; } + +/* Input */ +.input-field { border: 1px solid #e2e8f0; transition: border-color 0.15s; outline: none; } +.input-field:focus { border-color: #7c3aed; box-shadow: 0 0 0 3px rgba(124,58,237,0.1); } + +/* Toast */ +.toast-message { transition: opacity 0.3s; } + +/* Nav active */ +.nav-link.active { background: rgba(124,58,237,0.15); color: #6d28d9; font-weight: 600; } + +/* Stat card */ +.stat-card { background: white; border-radius: 0.75rem; padding: 1.25rem; box-shadow: 0 1px 3px rgba(0,0,0,0.08); } +.stat-card .stat-value { font-size: 1.75rem; font-weight: 700; line-height: 1.2; } +.stat-card .stat-label { font-size: 0.8rem; color: #6b7280; margin-top: 0.25rem; } + +/* Table */ +.data-table { width: 100%; border-collapse: collapse; font-size: 0.875rem; } +.data-table th { background: #f1f5f9; padding: 0.625rem 0.75rem; text-align: left; font-weight: 600; color: #475569; white-space: nowrap; border-bottom: 2px solid #e2e8f0; } +.data-table td { padding: 0.625rem 0.75rem; border-bottom: 1px solid #f1f5f9; vertical-align: middle; } +.data-table tr:hover { background: #f8fafc; } + +/* Badge */ +.badge { display: inline-flex; align-items: center; padding: 0.125rem 0.5rem; border-radius: 9999px; font-size: 0.75rem; font-weight: 500; } +.badge-green { background: #ecfdf5; color: #059669; } +.badge-blue { background: #eff6ff; color: #2563eb; } +.badge-amber { background: #fffbeb; color: #d97706; } +.badge-red { background: #fef2f2; color: #dc2626; } +.badge-gray { background: #f3f4f6; color: #6b7280; } +.badge-purple { background: #f5f3ff; color: #7c3aed; } + +/* Modal */ +.modal-overlay { position: fixed; inset: 0; background: rgba(0,0,0,0.4); display: flex; align-items: center; justify-content: center; z-index: 50; padding: 1rem; } +.modal-content { background: white; border-radius: 0.75rem; max-width: 40rem; width: 100%; max-height: 90vh; overflow-y: auto; box-shadow: 0 20px 60px rgba(0,0,0,0.2); } + +/* Empty state */ +.empty-state { text-align: center; padding: 3rem 1rem; color: #9ca3af; } +.empty-state i { font-size: 2.5rem; margin-bottom: 0.75rem; } + +/* Responsive */ +@media (max-width: 768px) { + .stat-card .stat-value { font-size: 1.25rem; } + .data-table { font-size: 0.8rem; } + .data-table th, .data-table td { padding: 0.5rem; } + .hide-mobile { display: none; } +} diff --git a/tksupport/web/static/js/tksupport-core.js b/tksupport/web/static/js/tksupport-core.js new file mode 100644 index 0000000..c0ee33f --- /dev/null +++ b/tksupport/web/static/js/tksupport-core.js @@ -0,0 +1,145 @@ +/* ===== 서비스 워커 해제 (push-sw.js 제외) ===== */ +if ('serviceWorker' in navigator) { + navigator.serviceWorker.getRegistrations().then(function(regs) { regs.forEach(function(r) { + if (!r.active || !r.active.scriptURL.includes('push-sw.js')) { r.unregister(); } + }); }); + if (typeof caches !== 'undefined') { caches.keys().then(function(ns) { ns.forEach(function(n) { caches.delete(n); }); }); } +} + +/* ===== Config ===== */ +const API_BASE = '/api'; + +/* ===== Token ===== */ +function _cookieGet(n) { const m = document.cookie.match(new RegExp('(?:^|; )' + n + '=([^;]*)')); return m ? decodeURIComponent(m[1]) : null; } +function _cookieRemove(n) { let c = n + '=; path=/; max-age=0'; if (location.hostname.includes('technicalkorea.net')) c += '; domain=.technicalkorea.net; secure; samesite=lax'; document.cookie = c; } +function getToken() { return _cookieGet('sso_token') || localStorage.getItem('sso_token'); } +function getLoginUrl() { + const h = location.hostname; + const t = Date.now(); + if (h.includes('technicalkorea.net')) return location.protocol + '//tkfb.technicalkorea.net/login?redirect=' + encodeURIComponent(location.href) + '&_t=' + t; + return location.protocol + '//' + h + ':30000/login?redirect=' + encodeURIComponent(location.href) + '&_t=' + t; +} +function decodeToken(t) { try { const b = atob(t.split('.')[1].replace(/-/g,'+').replace(/_/g,'/')); return JSON.parse(new TextDecoder().decode(Uint8Array.from(b, c => c.charCodeAt(0)))); } catch { return null; } } + +/* ===== 리다이렉트 루프 방지 ===== */ +const _REDIRECT_KEY = '_sso_redirect_ts'; +function _safeRedirect() { + const last = parseInt(sessionStorage.getItem(_REDIRECT_KEY) || '0', 10); + if (Date.now() - last < 5000) { console.warn('[tksupport] 리다이렉트 루프 감지'); return; } + sessionStorage.setItem(_REDIRECT_KEY, String(Date.now())); + location.href = getLoginUrl(); +} + +/* ===== API ===== */ +async function api(path, opts = {}) { + const token = getToken(); + const headers = { 'Authorization': token ? `Bearer ${token}` : '', ...(opts.headers||{}) }; + if (!(opts.body instanceof FormData)) headers['Content-Type'] = 'application/json'; + const res = await fetch(API_BASE + path, { ...opts, headers }); + if (res.status === 401) { _safeRedirect(); throw new Error('인증 만료'); } + const data = await res.json(); + if (!res.ok) throw new Error(data.error || '요청 실패'); + return data; +} + +/* ===== Toast ===== */ +function showToast(msg, type = 'success') { + document.querySelector('.toast-message')?.remove(); + const el = document.createElement('div'); + el.className = `toast-message fixed bottom-4 right-4 px-4 py-3 rounded-lg text-white z-[10000] shadow-lg ${type==='success'?'bg-purple-500':'bg-red-500'}`; + el.innerHTML = `${escapeHtml(msg)}`; + document.body.appendChild(el); + setTimeout(() => { el.classList.add('opacity-0'); setTimeout(() => el.remove(), 300); }, 3000); +} + +/* ===== Escape ===== */ +function escapeHtml(str) { if (!str) return ''; const d = document.createElement('div'); d.textContent = str; return d.innerHTML; } + +/* ===== Helpers ===== */ +function formatDate(d) { if (!d) return ''; return String(d).substring(0, 10); } +function formatDateTime(d) { if (!d) return ''; return String(d).substring(0, 16).replace('T', ' '); } + +function statusBadge(s) { + const m = { + pending: ['badge-amber', '대기'], + approved: ['badge-green', '승인'], + rejected: ['badge-red', '반려'], + cancelled: ['badge-gray', '취소'] + }; + const [cls, label] = m[s] || ['badge-gray', s]; + return `${label}`; +} + +/* ===== Logout ===== */ +function doLogout() { + if (!confirm('로그아웃?')) return; + _cookieRemove('sso_token'); _cookieRemove('sso_user'); _cookieRemove('sso_refresh_token'); + ['sso_token','sso_user','sso_refresh_token','token','user','access_token','currentUser','current_user','userInfo','userPageAccess'].forEach(k => localStorage.removeItem(k)); + location.href = getLoginUrl() + '&logout=1'; +} + +/* ===== Navbar ===== */ +function renderNavbar() { + const currentPage = location.pathname.replace(/\//g, '') || 'index.html'; + const isAdmin = currentUser && ['admin','system'].includes(currentUser.role); + const links = [ + { href: '/', icon: 'fa-home', label: '대시보드', match: ['index.html', ''] }, + { href: '/vacation-request.html', icon: 'fa-paper-plane', label: '휴가 신청', match: ['vacation-request.html'] }, + { href: '/vacation-status.html', icon: 'fa-calendar-check', label: '내 휴가 현황', match: ['vacation-status.html'] }, + { href: '/vacation-approval.html', icon: 'fa-clipboard-check', label: '휴가 승인', match: ['vacation-approval.html'], admin: true }, + ]; + const nav = document.getElementById('sideNav'); + if (!nav) return; + nav.innerHTML = links.filter(l => !l.admin || isAdmin).map(l => { + const active = l.match.some(m => currentPage === m || currentPage.endsWith(m)); + return ` + ${l.label}`; + }).join(''); +} + +/* ===== State ===== */ +let currentUser = null; + +/* ===== Init ===== */ +function initAuth() { + const cookieToken = _cookieGet('sso_token'); + const localToken = localStorage.getItem('sso_token'); + if (!cookieToken && localToken) { + ['sso_token','sso_user','sso_refresh_token','token','user','access_token', + 'currentUser','current_user','userInfo','userPageAccess'].forEach(k => localStorage.removeItem(k)); + _safeRedirect(); + return false; + } + + const token = getToken(); + if (!token) { _safeRedirect(); return false; } + const decoded = decodeToken(token); + if (!decoded) { _safeRedirect(); return false; } + sessionStorage.removeItem(_REDIRECT_KEY); + if (!localStorage.getItem('sso_token')) localStorage.setItem('sso_token', token); + currentUser = { + id: decoded.user_id || decoded.id, + username: decoded.username || decoded.sub, + name: decoded.name || decoded.full_name, + role: (decoded.role || decoded.access_level || '').toLowerCase() + }; + const dn = currentUser.name || currentUser.username; + const nameEl = document.getElementById('headerUserName'); + const avatarEl = document.getElementById('headerUserAvatar'); + if (nameEl) nameEl.textContent = dn; + if (avatarEl) avatarEl.textContent = dn.charAt(0).toUpperCase(); + renderNavbar(); + + // 알림 벨 로드 + _loadNotificationBell(); + + setTimeout(() => document.querySelector('.fade-in')?.classList.add('visible'), 50); + return true; +} + +/* ===== 알림 벨 ===== */ +function _loadNotificationBell() { + const s = document.createElement('script'); + s.src = (location.hostname.includes('technicalkorea.net') ? 'https://tkfb.technicalkorea.net' : location.protocol + '//' + location.hostname + ':30000') + '/shared/notification-bell.js?v=2'; + document.head.appendChild(s); +} diff --git a/tksupport/web/vacation-approval.html b/tksupport/web/vacation-approval.html new file mode 100644 index 0000000..3ed053e --- /dev/null +++ b/tksupport/web/vacation-approval.html @@ -0,0 +1,388 @@ + + + + + + 휴가 승인 - TK 행정지원 + + + + + +
+
+
+
+ +

TK 행정지원

+
+
+ +
-
+ +
+
+
+
+ +
+
+ + +
+ +
+ + + +
+ + +
+

승인 대기 목록

+
+ + + + + + + + + + + + + + + +
신청자유형기간일수사유신청일처리
로딩 중...
+
+
+ + + + + + +
+
+
+ + + + + + + + diff --git a/tksupport/web/vacation-request.html b/tksupport/web/vacation-request.html new file mode 100644 index 0000000..ad9c6fa --- /dev/null +++ b/tksupport/web/vacation-request.html @@ -0,0 +1,168 @@ + + + + + + 휴가 신청 - TK 행정지원 + + + + + +
+
+
+
+ +

TK 행정지원

+
+
+ +
-
+ +
+
+
+
+ +
+
+ + +
+ +
+

내 잔여일 현황

+ +
+
로딩 중...
+
+
+ + +
+

휴가 신청

+
+
+
+ + +
+
+ + +
+
+ + +
+
+ + +
+
+ + +
+
+
+ 취소 + +
+
+
+
+
+
+ + + + + diff --git a/tksupport/web/vacation-status.html b/tksupport/web/vacation-status.html new file mode 100644 index 0000000..06f1b4e --- /dev/null +++ b/tksupport/web/vacation-status.html @@ -0,0 +1,195 @@ + + + + + + 내 휴가 현황 - TK 행정지원 + + + + + +
+
+
+
+ +

TK 행정지원

+
+
+ +
-
+ +
+
+
+
+ +
+
+ + +
+ +
+

잔여일 현황

+
+
로딩 중...
+
+
+ + +
+
+
+ + +
+ +
+ +
+ + + + + + + + + + + + + + + +
유형기간일수사유상태검토자관리
로딩 중...
+
+
+
+
+
+ + + + + + + +