feat: 3-System 분리 프로젝트 초기 코드 작성

TK-FB(공장관리+신고)와 M-Project(부적합관리)를 3개 독립 시스템으로 분리하기 위한 전체 코드 구조 작성. - SSO 인증 서비스 (bcrypt + pbkdf2 이중 해시 지원) - System 1: 공장관리 (TK-FB 기반, 신고 코드 제거) - System 2: 신고 (TK-FB에서 workIssue 코드 추출) - System 3: 부적합관리 (M-Project 기반) - Gateway 포털 (path-based 라우팅) - 통합 docker-compose.yml 및 배포 스크립트 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-09 14:40:11 +09:00
commit 550633b89d
824 changed files with 1071683 additions and 0 deletions
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -0,0 +1,378 @@
+version: "3.8"
+
+services:
+  # =================================================================
+  # Databases
+  # =================================================================
+
+  mariadb:
+    image: mariadb:10.9
+    container_name: tk-mariadb
+    restart: unless-stopped
+    environment:
+      - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}
+      - MYSQL_DATABASE=${MYSQL_DATABASE:-hyungi}
+      - MYSQL_USER=${MYSQL_USER:-hyungi_user}
+      - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+      - TZ=Asia/Seoul
+    volumes:
+      - mariadb_data:/var/lib/mysql
+      - ./scripts/migrate-users.sql:/docker-entrypoint-initdb.d/99-sso-users.sql
+    ports:
+      - "30306:3306"
+    healthcheck:
+      test: ["CMD", "mysqladmin", "ping", "-h", "localhost"]
+      timeout: 20s
+      retries: 10
+    deploy:
+      resources:
+        limits:
+          memory: 2G
+          cpus: "1.0"
+    networks:
+      - tk-network
+
+  postgres:
+    image: postgres:15-alpine
+    container_name: tk-postgres
+    restart: unless-stopped
+    environment:
+      POSTGRES_USER: ${POSTGRES_USER:-mproject}
+      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
+      POSTGRES_DB: ${POSTGRES_DB:-mproject}
+      TZ: Asia/Seoul
+      PGTZ: Asia/Seoul
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+      - ./system3-nonconformance/api/migrations:/docker-entrypoint-initdb.d
+    ports:
+      - "30432:5432"
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-mproject}"]
+      timeout: 10s
+      retries: 5
+    deploy:
+      resources:
+        limits:
+          memory: 1536M
+          cpus: "0.5"
+    networks:
+      - tk-network
+
+  redis:
+    image: redis:6-alpine
+    container_name: tk-redis
+    restart: unless-stopped
+    command: redis-server --maxmemory 200mb --maxmemory-policy allkeys-lru
+    healthcheck:
+      test: ["CMD", "redis-cli", "ping"]
+      interval: 10s
+      timeout: 5s
+      retries: 3
+    deploy:
+      resources:
+        limits:
+          memory: 256M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # SSO Auth Service
+  # =================================================================
+
+  sso-auth:
+    build:
+      context: ./sso-auth-service
+      dockerfile: Dockerfile
+    container_name: tk-sso-auth
+    restart: unless-stopped
+    ports:
+      - "30050:3000"
+    environment:
+      - NODE_ENV=production
+      - PORT=3000
+      - DB_HOST=mariadb
+      - DB_PORT=3306
+      - DB_USER=${MYSQL_USER:-hyungi_user}
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - DB_NAME=${MYSQL_DATABASE:-hyungi}
+      - SSO_JWT_SECRET=${SSO_JWT_SECRET}
+      - SSO_JWT_EXPIRES_IN=${SSO_JWT_EXPIRES_IN:-7d}
+      - SSO_JWT_REFRESH_SECRET=${SSO_JWT_REFRESH_SECRET}
+      - SSO_JWT_REFRESH_EXPIRES_IN=${SSO_JWT_REFRESH_EXPIRES_IN:-30d}
+      - REDIS_HOST=redis
+      - REDIS_PORT=6379
+    depends_on:
+      mariadb:
+        condition: service_healthy
+      redis:
+        condition: service_healthy
+    deploy:
+      resources:
+        limits:
+          memory: 256M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # System 1 - 공장관리
+  # =================================================================
+
+  system1-api:
+    build:
+      context: ./system1-factory/api
+      dockerfile: Dockerfile
+    container_name: tk-system1-api
+    restart: unless-stopped
+    ports:
+      - "30005:3005"
+    environment:
+      - NODE_ENV=${SYSTEM1_NODE_ENV:-production}
+      - PORT=3005
+      - DB_HOST=mariadb
+      - DB_PORT=3306
+      - DB_USER=${MYSQL_USER:-hyungi_user}
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - DB_NAME=${MYSQL_DATABASE:-hyungi}
+      - DB_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}
+      - JWT_SECRET=${SSO_JWT_SECRET}
+      - JWT_EXPIRES_IN=${SSO_JWT_EXPIRES_IN:-7d}
+      - JWT_REFRESH_SECRET=${SSO_JWT_REFRESH_SECRET}
+      - JWT_REFRESH_EXPIRES_IN=${SSO_JWT_REFRESH_EXPIRES_IN:-30d}
+      - REDIS_HOST=redis
+      - REDIS_PORT=6379
+      - WEATHER_API_URL=${WEATHER_API_URL:-}
+      - WEATHER_API_KEY=${WEATHER_API_KEY:-}
+    volumes:
+      - system1_uploads:/usr/src/app/uploads
+      - system1_logs:/usr/src/app/logs
+    depends_on:
+      mariadb:
+        condition: service_healthy
+      redis:
+        condition: service_healthy
+    deploy:
+      resources:
+        limits:
+          memory: 512M
+          cpus: "0.5"
+    networks:
+      - tk-network
+
+  system1-web:
+    build:
+      context: ./system1-factory/web
+      dockerfile: Dockerfile
+    container_name: tk-system1-web
+    restart: unless-stopped
+    ports:
+      - "30080:80"
+    depends_on:
+      - system1-api
+    deploy:
+      resources:
+        limits:
+          memory: 128M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  system1-fastapi:
+    build:
+      context: ./system1-factory/fastapi-bridge
+      dockerfile: Dockerfile
+    container_name: tk-system1-fastapi
+    restart: unless-stopped
+    ports:
+      - "30008:8000"
+    environment:
+      - API_BASE_URL=http://system1-api:3005
+    depends_on:
+      - system1-api
+    deploy:
+      resources:
+        limits:
+          memory: 256M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # System 2 - 신고
+  # =================================================================
+
+  system2-api:
+    build:
+      context: ./system2-report/api
+      dockerfile: Dockerfile
+    container_name: tk-system2-api
+    restart: unless-stopped
+    ports:
+      - "30105:3005"
+    environment:
+      - NODE_ENV=${SYSTEM2_NODE_ENV:-production}
+      - PORT=3005
+      - DB_HOST=mariadb
+      - DB_PORT=3306
+      - DB_USER=${MYSQL_USER:-hyungi_user}
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - DB_NAME=${MYSQL_DATABASE:-hyungi}
+      - JWT_SECRET=${SSO_JWT_SECRET}
+      - JWT_EXPIRES_IN=${SSO_JWT_EXPIRES_IN:-7d}
+      - REDIS_HOST=redis
+      - REDIS_PORT=6379
+      - M_PROJECT_API_URL=${M_PROJECT_API_URL:-http://system3-api:8000}
+      - M_PROJECT_USERNAME=${M_PROJECT_USERNAME:-api_service}
+      - M_PROJECT_PASSWORD=${M_PROJECT_PASSWORD:-}
+      - M_PROJECT_DEFAULT_PROJECT_ID=${M_PROJECT_DEFAULT_PROJECT_ID:-1}
+    volumes:
+      - system2_uploads:/usr/src/app/uploads
+      - system2_logs:/usr/src/app/logs
+    depends_on:
+      mariadb:
+        condition: service_healthy
+      redis:
+        condition: service_healthy
+    deploy:
+      resources:
+        limits:
+          memory: 384M
+          cpus: "0.5"
+    networks:
+      - tk-network
+
+  system2-web:
+    build:
+      context: ./system2-report/web
+      dockerfile: Dockerfile
+    container_name: tk-system2-web
+    restart: unless-stopped
+    ports:
+      - "30180:80"
+    depends_on:
+      - system2-api
+    deploy:
+      resources:
+        limits:
+          memory: 128M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # System 3 - 부적합관리
+  # =================================================================
+
+  system3-api:
+    build:
+      context: ./system3-nonconformance/api
+      dockerfile: Dockerfile
+    container_name: tk-system3-api
+    restart: unless-stopped
+    ports:
+      - "30200:8000"
+    environment:
+      - DATABASE_URL=${SYSTEM3_DATABASE_URL:-postgresql://mproject:mproject2024@postgres:5432/mproject}
+      - SECRET_KEY=${SSO_JWT_SECRET}
+      - ALGORITHM=HS256
+      - ACCESS_TOKEN_EXPIRE_MINUTES=10080
+      - ADMIN_USERNAME=${SYSTEM3_ADMIN_USERNAME:-hyungi}
+      - ADMIN_PASSWORD=${SYSTEM3_ADMIN_PASSWORD:-123456}
+      - TZ=Asia/Seoul
+    volumes:
+      - system3_uploads:/app/uploads
+    depends_on:
+      postgres:
+        condition: service_healthy
+    deploy:
+      resources:
+        limits:
+          memory: 512M
+          cpus: "0.5"
+    networks:
+      - tk-network
+
+  system3-web:
+    build:
+      context: ./system3-nonconformance/web
+      dockerfile: Dockerfile
+    container_name: tk-system3-web
+    restart: unless-stopped
+    ports:
+      - "30280:80"
+    depends_on:
+      - system3-api
+    deploy:
+      resources:
+        limits:
+          memory: 128M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # Gateway
+  # =================================================================
+
+  gateway:
+    build:
+      context: ./gateway
+      dockerfile: Dockerfile
+    container_name: tk-gateway
+    restart: unless-stopped
+    ports:
+      - "30000:80"
+    depends_on:
+      - sso-auth
+      - system1-web
+      - system2-web
+      - system3-web
+    deploy:
+      resources:
+        limits:
+          memory: 128M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+  # =================================================================
+  # Tools
+  # =================================================================
+
+  phpmyadmin:
+    image: phpmyadmin/phpmyadmin:latest
+    container_name: tk-phpmyadmin
+    restart: unless-stopped
+    ports:
+      - "30880:80"
+    environment:
+      - PMA_HOST=mariadb
+      - PMA_USER=${PMA_USER:-root}
+      - PMA_PASSWORD=${MYSQL_ROOT_PASSWORD}
+      - UPLOAD_LIMIT=${UPLOAD_LIMIT:-50M}
+    depends_on:
+      mariadb:
+        condition: service_healthy
+    deploy:
+      resources:
+        limits:
+          memory: 128M
+          cpus: "0.25"
+    networks:
+      - tk-network
+
+volumes:
+  mariadb_data:
+  postgres_data:
+  system1_uploads:
+  system1_logs:
+  system2_uploads:
+  system2_logs:
+  system3_uploads:
+
+networks:
+  tk-network:
+    driver: bridge
+    name: tk-factory-network