diff --git a/app/Http/Controllers/Sales/TenantProspectController.php b/app/Http/Controllers/Sales/TenantProspectController.php index b0f7c30a..1a707b45 100644 --- a/app/Http/Controllers/Sales/TenantProspectController.php +++ b/app/Http/Controllers/Sales/TenantProspectController.php @@ -171,9 +171,10 @@ public function destroy(int $id) ->with('error', '이미 테넌트로 전환된 영업권은 삭제할 수 없습니다.'); } - // 본인 또는 관리자만 삭제 가능 - if ($prospect->registered_by !== auth()->id()) { - // TODO: 관리자 권한 체크 추가 + // 관리자만 삭제 가능 + if (!auth()->user()->isAdmin()) { + return redirect()->route('sales.prospects.index') + ->with('error', '삭제 권한이 없습니다. 본사 운영팀에 문의하세요.'); } $prospect->delete(); diff --git a/resources/views/sales/prospects/index.blade.php b/resources/views/sales/prospects/index.blade.php index d36c66ba..02f7a34d 100644 --- a/resources/views/sales/prospects/index.blade.php +++ b/resources/views/sales/prospects/index.blade.php @@ -117,6 +117,7 @@ class="w-full px-4 py-2 border border-gray-300 rounded-lg focus:outline-none foc @if(!$prospect->isConverted()) + @if(auth()->user()->isAdmin())
@csrf @@ -124,6 +125,7 @@ class="w-full px-4 py-2 border border-gray-300 rounded-lg focus:outline-none foc
@endif + @endif @empty