hyungi/tk-factory-services
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: 구매/안전 시스템 전면 개편 — tkpurchase 개편 + tksafety 신규 + 권한 보강

Browse Source 
Phase 1: tkuser 협력업체 CRUD 이관 (읽기전용 → 전체 CRUD)
Phase 2: tkpurchase 개편 — 일용공 신청/확정, 작업일정, 업무현황, 계정관리, 협력업체 포털
Phase 3: tksafety 신규 시스템 — 방문관리 + 안전교육 신고
Phase 4: SSO 인증 보강 (partner_company_id JWT, 만료일 체크), 권한 테이블 기반 접근 제어

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Hyungi Ahn
2026-03-12 17:42:59 +09:00
parent a195dd1d50
commit b800792152
63 changed files with 5548 additions and 262 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
user-management/web/static/js/tkuser-core.js
View File

@@ -92,7 +92,16 @@ async function init() {
// 쿠키에서 읽었으면 localStorage에도 백업 (다음 방문 시 쿠키 소실 대비)
if (!localStorage.getItem('sso_token')) localStorage.setItem('sso_token', token);
currentUser = { id: decoded.user_id||decoded.id, username: decoded.username||decoded.sub, name: decoded.name||decoded.full_name, role: (decoded.role||decoded.access_level||'').toLowerCase() };
currentUser = { id: decoded.user_id||decoded.id, username: decoded.username||decoded.sub, name: decoded.name||decoded.full_name, role: (decoded.role||decoded.access_level||'').toLowerCase(), partner_company_id: decoded.partner_company_id || null };
// 협력업체 계정 차단
if (currentUser.partner_company_id) {
location.href = location.hostname.includes('technicalkorea.net')
? 'https://tkpurchase.technicalkorea.net/partner-portal.html'
: location.protocol + '//' + location.hostname + ':30480/partner-portal.html';
return;
}
const dn = currentUser.name || currentUser.username;
document.getElementById('headerUserName').textContent = dn;
document.getElementById('headerUserRole').textContent = currentUser.role === 'admin' ? '관리자' : '사용자';

201
user-management/web/static/js/tkuser-partners.js
View File

@@ -1,11 +1,16 @@
/* ===== tkuser 협력업체 조회 (읽기 전용) ===== */
/* ===== tkuser 협력업체 CRUD ===== */
let partnersLoaded = false;
let partnersList = [];
let partnerWorkersList = [];
let selectedPartnerIdTkuser = null;
let editingWorkerIdTkuser = null;
async function loadPartnersTab() {
if (partnersLoaded) return;
partnersLoaded = true;
if (currentUser && ['admin', 'system'].includes(currentUser.role)) {
document.getElementById('btnAddPartnerTkuser')?.classList.remove('hidden');
}
await loadPartnersList();
}
@@ -30,6 +35,7 @@ function renderPartnersListTkuser() {
c.innerHTML = '<p class="text-gray-400 text-center py-4 text-sm">등록된 협력업체가 없습니다.</p>';
return;
}
const isAdmin = currentUser && ['admin', 'system'].includes(currentUser.role);
c.innerHTML = partnersList.map(p => {
const types = tryParseJsonTkuser(p.business_type) || [];
const typeStr = types.map(t => `<span class="px-1.5 py-0.5 rounded text-xs bg-blue-50 text-blue-600">${escHtml(t)}</span>`).join(' ');
@@ -47,6 +53,10 @@ function renderPartnersListTkuser() {
${typeStr}
</div>
</div>
${isAdmin ? `<div class="flex gap-1 ml-2 flex-shrink-0">
<button onclick="event.stopPropagation(); openEditPartnerTkuser(${p.id})" class="p-1.5 text-slate-500 hover:text-slate-700 hover:bg-slate-200 rounded" title="수정"><i class="fas fa-pen text-xs"></i></button>
${p.is_active ? `<button onclick="event.stopPropagation(); deactivatePartnerTkuser(${p.id}, '${escHtml(p.company_name).replace(/'/g, "\\'")}')" class="p-1.5 text-red-400 hover:text-red-600 hover:bg-red-100 rounded" title="비활성화"><i class="fas fa-ban text-xs"></i></button>` : ''}
</div>` : ''}
</div>`;
}).join('');
}
@@ -57,6 +67,7 @@ async function selectPartnerTkuser(id) {
try {
const r = await api(`/partners/${id}`);
const p = r.data;
partnerWorkersList = p.workers || [];
renderPartnerDetailTkuser(p);
document.getElementById('partnerDetailTkuser').classList.remove('hidden');
document.getElementById('partnerEmptyTkuser').classList.add('hidden');
@@ -68,6 +79,7 @@ async function selectPartnerTkuser(id) {
function renderPartnerDetailTkuser(p) {
const types = tryParseJsonTkuser(p.business_type) || [];
const workers = p.workers || [];
const isAdmin = currentUser && ['admin', 'system'].includes(currentUser.role);
document.getElementById('partnerDetailTkuser').innerHTML = `
<div class="bg-white rounded-xl shadow-sm p-5 mb-4">
<h3 class="text-lg font-semibold text-gray-800 mb-3">${escHtml(p.company_name)}</h3>
@@ -83,7 +95,10 @@ function renderPartnerDetailTkuser(p) {
</div>
</div>
<div class="bg-white rounded-xl shadow-sm p-5">
<h4 class="text-base font-semibold text-gray-800 mb-3"><i class="fas fa-users text-gray-400 mr-2"></i>소속 작업자 (${workers.length}명)</h4>
<div class="flex items-center justify-between mb-3">
<h4 class="text-base font-semibold text-gray-800"><i class="fas fa-users text-gray-400 mr-2"></i>소속 작업자 (${workers.length}명)</h4>
${isAdmin ? `<button onclick="openAddWorkerTkuser()" class="px-3 py-1.5 bg-slate-700 text-white rounded-lg text-xs hover:bg-slate-800"><i class="fas fa-user-plus mr-1"></i>작업자 등록</button>` : ''}
</div>
${workers.length ? workers.map(w => `
<div class="flex items-center justify-between p-2 bg-gray-50 rounded hover:bg-gray-100 mb-1">
<div>
@@ -91,19 +106,178 @@ function renderPartnerDetailTkuser(p) {
${w.is_team_leader ? '<span class="px-1.5 py-0.5 rounded text-xs bg-amber-50 text-amber-600 ml-1">팀장</span>' : ''}
${!w.is_active ? '<span class="px-1.5 py-0.5 rounded text-xs bg-gray-100 text-gray-400 ml-1">비활성</span>' : ''}
</div>
<div class="text-xs text-gray-500 flex gap-2">
${w.position ? `<span>${escHtml(w.position)}</span>` : ''}
${w.phone ? `<span>${escHtml(w.phone)}</span>` : ''}
${w.safety_training_date ? `<span>안전교육: ${formatDate(w.safety_training_date)}</span>` : ''}
<div class="flex items-center gap-2">
<div class="text-xs text-gray-500 flex gap-2">
${w.position ? `<span>${escHtml(w.position)}</span>` : ''}
${w.phone ? `<span>${escHtml(w.phone)}</span>` : ''}
${w.safety_training_date ? `<span>안전교육: ${formatDate(w.safety_training_date)}</span>` : ''}
</div>
${isAdmin ? `<div class="flex gap-1 ml-2">
<button onclick="openEditWorkerTkuser(${w.id})" class="p-1 text-slate-500 hover:text-slate-700 rounded" title="수정"><i class="fas fa-pen text-xs"></i></button>
${w.is_active ? `<button onclick="deactivateWorkerTkuser(${w.id})" class="p-1 text-red-400 hover:text-red-600 rounded" title="비활성화"><i class="fas fa-ban text-xs"></i></button>` : ''}
</div>` : ''}
</div>
</div>`).join('') : '<p class="text-gray-400 text-center py-4 text-sm">등록된 작업자가 없습니다</p>'}
</div>
<div class="mt-3 p-3 bg-emerald-50 rounded-lg text-sm text-emerald-700 flex items-center gap-2">
<i class="fas fa-info-circle"></i>
<span>협력업체 등록/수정은 <a href="https://tkpurchase.technicalkorea.net/partner.html" target="_blank" class="underline font-medium">tkpurchase</a>에서 관리합니다.</span>
</div>`;
}
/* ===== 업체 등록 ===== */
function openAddPartnerTkuser() { document.getElementById('addPartnerModalTkuser').classList.remove('hidden'); }
function closeAddPartnerTkuser() { document.getElementById('addPartnerModalTkuser').classList.add('hidden'); document.getElementById('addPartnerFormTkuser').reset(); }
async function submitAddPartnerTkuser(e) {
e.preventDefault();
const typesRaw = document.getElementById('newPartnerBusinessTypeTkuser').value.trim();
const data = {
company_name: document.getElementById('newPartnerCompanyNameTkuser').value.trim(),
business_number: document.getElementById('newPartnerBusinessNumberTkuser').value.trim() || null,
representative: document.getElementById('newPartnerRepresentativeTkuser').value.trim() || null,
contact_name: document.getElementById('newPartnerContactNameTkuser').value.trim() || null,
contact_phone: document.getElementById('newPartnerContactPhoneTkuser').value.trim() || null,
address: document.getElementById('newPartnerAddressTkuser').value.trim() || null,
business_type: typesRaw ? typesRaw.split(',').map(s => s.trim()).filter(Boolean) : null,
insurance_number: document.getElementById('newPartnerInsuranceNumberTkuser').value.trim() || null,
insurance_expiry: document.getElementById('newPartnerInsuranceExpiryTkuser').value || null,
notes: document.getElementById('newPartnerNotesTkuser').value.trim() || null,
};
if (!data.company_name) { showToast('업체명은 필수입니다', 'error'); return; }
try {
await api('/partners', { method: 'POST', body: JSON.stringify(data) });
showToast('업체가 등록되었습니다');
closeAddPartnerTkuser();
await loadPartnersList();
} catch (e) { showToast(e.message, 'error'); }
}
/* ===== 업체 수정 ===== */
function openEditPartnerTkuser(id) {
const p = partnersList.find(x => x.id === id);
if (!p) return;
const types = tryParseJsonTkuser(p.business_type) || [];
document.getElementById('editPartnerIdTkuser').value = p.id;
document.getElementById('editPartnerCompanyNameTkuser').value = p.company_name;
document.getElementById('editPartnerBusinessNumberTkuser').value = p.business_number || '';
document.getElementById('editPartnerRepresentativeTkuser').value = p.representative || '';
document.getElementById('editPartnerContactNameTkuser').value = p.contact_name || '';
document.getElementById('editPartnerContactPhoneTkuser').value = p.contact_phone || '';
document.getElementById('editPartnerAddressTkuser').value = p.address || '';
document.getElementById('editPartnerBusinessTypeTkuser').value = types.join(', ');
document.getElementById('editPartnerInsuranceNumberTkuser').value = p.insurance_number || '';
document.getElementById('editPartnerInsuranceExpiryTkuser').value = p.insurance_expiry ? formatDate(p.insurance_expiry) : '';
document.getElementById('editPartnerNotesTkuser').value = p.notes || '';
document.getElementById('editPartnerModalTkuser').classList.remove('hidden');
}
function closeEditPartnerTkuser() { document.getElementById('editPartnerModalTkuser').classList.add('hidden'); }
async function submitEditPartnerTkuser(e) {
e.preventDefault();
const id = document.getElementById('editPartnerIdTkuser').value;
const typesRaw = document.getElementById('editPartnerBusinessTypeTkuser').value.trim();
const data = {
company_name: document.getElementById('editPartnerCompanyNameTkuser').value.trim(),
business_number: document.getElementById('editPartnerBusinessNumberTkuser').value.trim() || null,
representative: document.getElementById('editPartnerRepresentativeTkuser').value.trim() || null,
contact_name: document.getElementById('editPartnerContactNameTkuser').value.trim() || null,
contact_phone: document.getElementById('editPartnerContactPhoneTkuser').value.trim() || null,
address: document.getElementById('editPartnerAddressTkuser').value.trim() || null,
business_type: typesRaw ? typesRaw.split(',').map(s => s.trim()).filter(Boolean) : null,
insurance_number: document.getElementById('editPartnerInsuranceNumberTkuser').value.trim() || null,
insurance_expiry: document.getElementById('editPartnerInsuranceExpiryTkuser').value || null,
notes: document.getElementById('editPartnerNotesTkuser').value.trim() || null,
};
try {
await api(`/partners/${id}`, { method: 'PUT', body: JSON.stringify(data) });
showToast('수정되었습니다');
closeEditPartnerTkuser();
await loadPartnersList();
if (selectedPartnerIdTkuser == id) selectPartnerTkuser(id);
} catch (e) { showToast(e.message, 'error'); }
}
/* ===== 업체 비활성화 ===== */
async function deactivatePartnerTkuser(id, name) {
if (!confirm(`"${name}" 업체를 비활성화하시겠습니까?`)) return;
try {
await api(`/partners/${id}`, { method: 'DELETE' });
showToast('비활성화 완료');
await loadPartnersList();
if (selectedPartnerIdTkuser === id) {
document.getElementById('partnerDetailTkuser').classList.add('hidden');
document.getElementById('partnerEmptyTkuser').classList.remove('hidden');
selectedPartnerIdTkuser = null;
}
} catch (e) { showToast(e.message, 'error'); }
}
/* ===== 작업자 등록 ===== */
function openAddWorkerTkuser() {
if (!selectedPartnerIdTkuser) { showToast('업체를 먼저 선택해주세요', 'error'); return; }
document.getElementById('addWorkerModalTkuser').classList.remove('hidden');
}
function closeAddWorkerTkuser() { document.getElementById('addWorkerModalTkuser').classList.add('hidden'); document.getElementById('addWorkerFormTkuser').reset(); }
async function submitAddWorkerTkuser(e) {
e.preventDefault();
const data = {
worker_name: document.getElementById('newWorkerNameTkuser').value.trim(),
position: document.getElementById('newWorkerPositionTkuser').value.trim() || null,
is_team_leader: document.getElementById('newWorkerIsLeaderTkuser').checked,
phone: document.getElementById('newWorkerPhoneTkuser').value.trim() || null,
safety_training_date: document.getElementById('newWorkerSafetyDateTkuser').value || null,
notes: document.getElementById('newWorkerNotesTkuser').value.trim() || null,
};
if (!data.worker_name) { showToast('작업자명은 필수입니다', 'error'); return; }
try {
await api(`/partners/${selectedPartnerIdTkuser}/workers`, { method: 'POST', body: JSON.stringify(data) });
showToast('작업자가 등록되었습니다');
closeAddWorkerTkuser();
await selectPartnerTkuser(selectedPartnerIdTkuser);
} catch (e) { showToast(e.message, 'error'); }
}
/* ===== 작업자 수정 ===== */
function openEditWorkerTkuser(id) {
const w = partnerWorkersList.find(x => x.id === id);
if (!w) return;
editingWorkerIdTkuser = id;
document.getElementById('editWorkerNameTkuser').value = w.worker_name;
document.getElementById('editWorkerPositionTkuser').value = w.position || '';
document.getElementById('editWorkerIsLeaderTkuser').checked = w.is_team_leader;
document.getElementById('editWorkerPhoneTkuser').value = w.phone || '';
document.getElementById('editWorkerSafetyDateTkuser').value = w.safety_training_date ? formatDate(w.safety_training_date) : '';
document.getElementById('editWorkerNotesTkuser').value = w.notes || '';
document.getElementById('editWorkerModalTkuser').classList.remove('hidden');
}
function closeEditWorkerTkuser() { document.getElementById('editWorkerModalTkuser').classList.add('hidden'); editingWorkerIdTkuser = null; }
async function submitEditWorkerTkuser(e) {
e.preventDefault();
if (!editingWorkerIdTkuser) return;
const data = {
worker_name: document.getElementById('editWorkerNameTkuser').value.trim(),
position: document.getElementById('editWorkerPositionTkuser').value.trim() || null,
is_team_leader: document.getElementById('editWorkerIsLeaderTkuser').checked,
phone: document.getElementById('editWorkerPhoneTkuser').value.trim() || null,
safety_training_date: document.getElementById('editWorkerSafetyDateTkuser').value || null,
notes: document.getElementById('editWorkerNotesTkuser').value.trim() || null,
};
try {
await api(`/partners/workers/${editingWorkerIdTkuser}`, { method: 'PUT', body: JSON.stringify(data) });
showToast('수정되었습니다');
closeEditWorkerTkuser();
await selectPartnerTkuser(selectedPartnerIdTkuser);
} catch (e) { showToast(e.message, 'error'); }
}
async function deactivateWorkerTkuser(id) {
if (!confirm('이 작업자를 비활성화하시겠습니까?')) return;
try {
await api(`/partners/workers/${id}`, { method: 'DELETE' });
showToast('비활성화 완료');
await selectPartnerTkuser(selectedPartnerIdTkuser);
} catch (e) { showToast(e.message, 'error'); }
}
function tryParseJsonTkuser(val) {
if (!val) return null;
if (Array.isArray(val)) return val;
@@ -118,7 +292,7 @@ function isInsuranceExpiringSoonTkuser(expiry) {
return diff <= 30 && diff >= 0;
}
// 검색/필터 이벤트
// 검색/필터 이벤트 + 모달 폼 이벤트
document.addEventListener('DOMContentLoaded', () => {
let searchTimeout;
const searchEl = document.getElementById('partnerSearchTkuser');
@@ -128,4 +302,9 @@ document.addEventListener('DOMContentLoaded', () => {
});
const filterEl = document.getElementById('partnerFilterActiveTkuser');
if (filterEl) filterEl.addEventListener('change', loadPartnersList);
document.getElementById('addPartnerFormTkuser')?.addEventListener('submit', submitAddPartnerTkuser);
document.getElementById('editPartnerFormTkuser')?.addEventListener('submit', submitEditPartnerTkuser);
document.getElementById('addWorkerFormTkuser')?.addEventListener('submit', submitAddWorkerTkuser);
document.getElementById('editWorkerFormTkuser')?.addEventListener('submit', submitEditWorkerTkuser);
});

27
user-management/web/static/js/tkuser-users.js
View File

@@ -61,8 +61,21 @@ const SYSTEM3_PAGES = {
const TKPURCHASE_PAGES = {
'구매 관리': [
{ key: 'purchasing_visit', title: '방문 관리', icon: 'fa-door-open', def: false },
{ key: 'purchasing_partner', title: '협력업체 관리', icon: 'fa-building', def: false },
{ key: 'purchasing_daylabor', title: '일용공 관리', icon: 'fa-hard-hat', def: false },
{ key: 'purchasing_schedule', title: '작업일정 관리', icon: 'fa-calendar-alt', def: false },
{ key: 'purchasing_workreport', title: '업무현황 관리', icon: 'fa-clipboard-list', def: false },
{ key: 'purchasing_accounts', title: '협력업체 계정', icon: 'fa-user-shield', def: false },
],
'협력업체': [
{ key: 'purchasing_partner_portal', title: '협력업체 포털', icon: 'fa-building', def: false },
{ key: 'purchasing_partner_checkin', title: '협력업체 체크인', icon: 'fa-check-circle', def: false },
]
};
const TKSAFETY_PAGES = {
'안전 관리': [
{ key: 'safety_visit', title: '방문 관리', icon: 'fa-door-open', def: false },
{ key: 'safety_education', title: '안전교육 관리', icon: 'fa-graduation-cap', def: false },
]
};
@@ -191,7 +204,7 @@ document.getElementById('permissionUserSelect').addEventListener('change', async
async function loadUserPermissions(userId) {
currentPermissions = {};
currentPermSources = {};
const allDefs = { ...SYSTEM1_PAGES, ...SYSTEM3_PAGES, ...TKPURCHASE_PAGES };
const allDefs = { ...SYSTEM1_PAGES, ...SYSTEM3_PAGES, ...TKPURCHASE_PAGES, ...TKSAFETY_PAGES };
Object.values(allDefs).flat().forEach(p => { currentPermissions[p.key] = p.def; currentPermSources[p.key] = 'default'; });
try {
const result = await api(`/permissions/users/${userId}/effective-permissions`);
@@ -208,6 +221,7 @@ function renderPermissionGrid() {
renderSystemPerms('s1-perms', SYSTEM1_PAGES, 'blue');
renderSystemPerms('s3-perms', SYSTEM3_PAGES, 'purple');
renderSystemPerms('tkpurchase-perms', TKPURCHASE_PAGES, 'green');
renderSystemPerms('tksafety-perms', TKSAFETY_PAGES, 'orange');
}
function sourceLabel(src) {
@@ -303,7 +317,7 @@ document.getElementById('savePermissionsBtn').addEventListener('click', async ()
btn.disabled = true; btn.innerHTML = '<i class="fas fa-spinner fa-spin mr-2"></i>저장 중...';
try {
const allPages = [...Object.values(SYSTEM1_PAGES).flat(), ...Object.values(SYSTEM3_PAGES).flat(), ...Object.values(TKPURCHASE_PAGES).flat()];
const allPages = [...Object.values(SYSTEM1_PAGES).flat(), ...Object.values(SYSTEM3_PAGES).flat(), ...Object.values(TKPURCHASE_PAGES).flat(), ...Object.values(TKSAFETY_PAGES).flat()];
const permissions = allPages.map(p => {
const cb = document.getElementById('perm_' + p.key);
return { page_name: p.key, can_access: cb ? cb.checked : false };
@@ -351,7 +365,7 @@ document.addEventListener('DOMContentLoaded', () => {
async function loadDeptPermissions(deptId) {
deptPermissions = {};
const allDefs = { ...SYSTEM1_PAGES, ...SYSTEM3_PAGES, ...TKPURCHASE_PAGES };
const allDefs = { ...SYSTEM1_PAGES, ...SYSTEM3_PAGES, ...TKPURCHASE_PAGES, ...TKSAFETY_PAGES };
Object.values(allDefs).flat().forEach(p => { deptPermissions[p.key] = p.def; });
try {
const result = await api(`/permissions/departments/${deptId}/permissions`);
@@ -363,6 +377,7 @@ function renderDeptPermissionGrid() {
renderDeptSystemPerms('dept-s1-perms', SYSTEM1_PAGES, 'blue');
renderDeptSystemPerms('dept-s3-perms', SYSTEM3_PAGES, 'purple');
renderDeptSystemPerms('dept-tkpurchase-perms', TKPURCHASE_PAGES, 'green');
renderDeptSystemPerms('dept-tksafety-perms', TKSAFETY_PAGES, 'orange');
}
function renderDeptSystemPerms(containerId, pageDef, color) {
@@ -441,7 +456,7 @@ async function saveDeptPermissions() {
btn.disabled = true; btn.innerHTML = '<i class="fas fa-spinner fa-spin mr-2"></i>저장 중...';
try {
const allPages = [...Object.values(SYSTEM1_PAGES).flat(), ...Object.values(SYSTEM3_PAGES).flat(), ...Object.values(TKPURCHASE_PAGES).flat()];
const allPages = [...Object.values(SYSTEM1_PAGES).flat(), ...Object.values(SYSTEM3_PAGES).flat(), ...Object.values(TKPURCHASE_PAGES).flat(), ...Object.values(TKSAFETY_PAGES).flat()];
const permissions = allPages.map(p => {
const cb = document.getElementById('dperm_' + p.key);
return { page_name: p.key, can_access: cb ? cb.checked : false };