feat: tkuser 통합 관리 서비스 + 전체 시스템 SSO 쿠키 인증 통합

- tkuser 서비스 신규 추가 (API + Web) - 사용자/권한/프로젝트/부서/작업자/작업장/설비/작업/휴가 통합 관리 - 작업장 탭: 공장→작업장 드릴다운 네비게이션 + 구역지도 클릭 연동 - 작업 탭: 공정(work_types)→작업(tasks) 계층 관리 - 휴가 탭: 유형 관리 + 연차 배정(근로기준법 자동계산) - 전 시스템 SSO 쿠키 인증으로 통합 (.technicalkorea.net 공유) - System 2: 작업 이슈 리포트 기능 강화 - System 3: tkuser API 연동, 페이지 권한 체계 적용 - docker-compose에 tkuser-api, tkuser-web 서비스 추가 - ARCHITECTURE.md, DEPLOYMENT.md 문서 작성 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-12 13:45:52 +09:00
parent 6495b8af32
commit 733bb0cb35
96 changed files with 9721 additions and 825 deletions
--- a/system3-nonconformance/api/routers/projects.py
+++ b/system3-nonconformance/api/routers/projects.py
@@ -1,10 +1,9 @@
-from fastapi import APIRouter, Depends, HTTPException, status
-from sqlalchemy.orm import Session
-from typing import List
-from database.database import get_db
-from database.models import Project, User, UserRole
-from database.schemas import ProjectCreate, ProjectUpdate, Project as ProjectSchema
+from fastapi import APIRouter, Depends, HTTPException, Request, status
+from database.models import User, UserRole
+from database.schemas import ProjectCreate, ProjectUpdate
 from routers.auth import get_current_user
+from utils.tkuser_client import get_token_from_request
+import utils.tkuser_client as tkuser_client

 router = APIRouter(
    prefix="/api/projects",
@@ -25,57 +24,36 @@ async def projects_options():
    """OPTIONS preflight 요청 처리"""
    return {"message": "OK"}

-@router.post("/", response_model=ProjectSchema)
+@router.post("/")
 async def create_project(
    project: ProjectCreate,
-    db: Session = Depends(get_db),
+    request: Request,
    current_user: User = Depends(check_admin_permission)
 ):
-    """프로젝트 생성 (관리자만)"""
-    # Job No. 중복 확인
-    existing_project = db.query(Project).filter(Project.job_no == project.job_no).first()
-    if existing_project:
-        raise HTTPException(
-            status_code=status.HTTP_400_BAD_REQUEST,
-            detail="이미 존재하는 Job No.입니다."
-        )
-    
-    # 프로젝트 생성
-    db_project = Project(
-        job_no=project.job_no,
-        project_name=project.project_name,
-        created_by_id=current_user.id
-    )
-    
-    db.add(db_project)
-    db.commit()
-    db.refresh(db_project)
-    
-    return db_project
+    """프로젝트 생성 (관리자만) - tkuser API로 프록시"""
+    token = get_token_from_request(request)
+    return await tkuser_client.create_project(token, project.dict())

-@router.get("/", response_model=List[ProjectSchema])
+@router.get("/")
 async def get_projects(
+    request: Request,
    skip: int = 0,
    limit: int = 100,
    active_only: bool = True,
-    db: Session = Depends(get_db)
 ):
-    """프로젝트 목록 조회"""
-    query = db.query(Project)
-    
-    if active_only:
-        query = query.filter(Project.is_active == True)
-    
-    projects = query.offset(skip).limit(limit).all()
-    return projects
+    """프로젝트 목록 조회 - tkuser API로 프록시"""
+    token = get_token_from_request(request)
+    projects = await tkuser_client.get_projects(token, active_only=active_only)
+    return projects[skip:skip + limit]

-@router.get("/{project_id}", response_model=ProjectSchema)
+@router.get("/{project_id}")
 async def get_project(
    project_id: int,
-    db: Session = Depends(get_db)
+    request: Request,
 ):
-    """특정 프로젝트 조회"""
-    project = db.query(Project).filter(Project.id == project_id).first()
+    """특정 프로젝트 조회 - tkuser API로 프록시"""
+    token = get_token_from_request(request)
+    project = await tkuser_client.get_project(token, project_id)
    if not project:
        raise HTTPException(
            status_code=status.HTTP_404_NOT_FOUND,
@@ -83,47 +61,26 @@ async def get_project(
        )
    return project

-@router.put("/{project_id}", response_model=ProjectSchema)
+@router.put("/{project_id}")
 async def update_project(
    project_id: int,
    project_update: ProjectUpdate,
-    db: Session = Depends(get_db),
+    request: Request,
    current_user: User = Depends(check_admin_permission)
 ):
-    """프로젝트 수정 (관리자만)"""
-    project = db.query(Project).filter(Project.id == project_id).first()
-    if not project:
-        raise HTTPException(
-            status_code=status.HTTP_404_NOT_FOUND,
-            detail="프로젝트를 찾을 수 없습니다."
-        )
-    
-    # 업데이트할 필드만 수정
-    update_data = project_update.dict(exclude_unset=True)
-    for field, value in update_data.items():
-        setattr(project, field, value)
-    
-    db.commit()
-    db.refresh(project)
-    
-    return project
+    """프로젝트 수정 (관리자만) - tkuser API로 프록시"""
+    token = get_token_from_request(request)
+    return await tkuser_client.update_project(
+        token, project_id, project_update.dict(exclude_unset=True)
+    )

@router.delete("/{project_id}")
 async def delete_project(
    project_id: int,
-    db: Session = Depends(get_db),
+    request: Request,
    current_user: User = Depends(check_admin_permission)
 ):
-    """프로젝트 삭제 (비활성화) (관리자만)"""
-    project = db.query(Project).filter(Project.id == project_id).first()
-    if not project:
-        raise HTTPException(
-            status_code=status.HTTP_404_NOT_FOUND,
-            detail="프로젝트를 찾을 수 없습니다."
-        )
-    
-    # 실제 삭제 대신 비활성화
-    project.is_active = False
-    db.commit()
-    
+    """프로젝트 삭제 (비활성화) (관리자만) - tkuser API로 프록시"""
+    token = get_token_from_request(request)
+    await tkuser_client.delete_project(token, project_id)
    return {"message": "프로젝트가 삭제되었습니다."}