SamProject/sam-sales
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

운영팀 등록 테넌트 수정 및 삭제 금지 기능 구현

Browse Source
This commit is contained in:
김보곤
2026-01-04 17:52:14 +09:00
parent bed13dc633
commit abf13b7a2a
2 changed files with 44 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
salesmanagement/api/sales_tenants.php
View File

@@ -150,7 +150,7 @@ try {
// 운영자는 모든 테넌트, 영업관리/매니저는 본인 소속 테넌트만
if ($currentUser['role'] === 'operator') {
$stmt = $pdo->prepare("
SELECT t.*, m.name as register_name, m2.name as manager_name, m2.role as manager_role
SELECT t.*, m.name as register_name, m.role as register_role, m2.name as manager_name, m2.role as manager_role
FROM sales_tenants t
JOIN sales_member m ON t.manager_id = m.id
LEFT JOIN sales_member m2 ON t.sales_manager_id = m2.id
@@ -161,7 +161,7 @@ try {
if ($currentUser['role'] === 'manager') {
// 매니저는 본인이 담당 매니저로 배정된 테넌트만 조회
$stmt = $pdo->prepare("
SELECT t.*, m.name as register_name, m2.name as manager_name, m2.role as manager_role
SELECT t.*, m.name as register_name, m.role as register_role, m2.name as manager_name, m2.role as manager_role
FROM sales_tenants t
JOIN sales_member m ON t.manager_id = m.id
LEFT JOIN sales_member m2 ON t.sales_manager_id = m2.id
@@ -172,7 +172,7 @@ try {
} else {
// 영업관리자는 본인이 영업했거나, 본인이 매니저로 배정된 테넌트 조회
$stmt = $pdo->prepare("
SELECT t.*, m.name as register_name, m2.name as manager_name, m2.role as manager_role
SELECT t.*, m.name as register_name, m.role as register_role, m2.name as manager_name, m2.role as manager_role
FROM sales_tenants t
JOIN sales_member m ON t.manager_id = m.id
LEFT JOIN sales_member m2 ON t.sales_manager_id = m2.id
@@ -509,6 +509,14 @@ try {
$tenant_id = $data['id'] ?? null;
if (!checkTenantPermission($pdo, $tenant_id, $currentUser)) throw new Exception("권한이 없습니다.");
// 운영팀 등록 여부 확인
$stmtCheck = $pdo->prepare("SELECT m.role FROM sales_tenants t JOIN sales_member m ON t.manager_id = m.id WHERE t.id = ?");
$stmtCheck->execute([$tenant_id]);
$reg = $stmtCheck->fetch();
if ($reg && $reg['role'] === 'operator' && $currentUser['role'] !== 'operator') {
throw new Exception("운영팀에서 등록한 테넌트는 수정할 수 없습니다.");
}
$tenant_name = $data['tenant_name'] ?? '';
$representative = $data['representative'] ?? '';
$business_no = $data['business_no'] ?? '';
@@ -527,6 +535,14 @@ try {
} elseif ($action === 'delete_tenant') {
$tenant_id = $data['id'] ?? null;
if (!checkTenantPermission($pdo, $tenant_id, $currentUser)) throw new Exception("권한이 없습니다.");
// 운영팀 등록 여부 확인
$stmtCheck = $pdo->prepare("SELECT m.role FROM sales_tenants t JOIN sales_member m ON t.manager_id = m.id WHERE t.id = ?");
$stmtCheck->execute([$tenant_id]);
$reg = $stmtCheck->fetch();
if ($reg && $reg['role'] === 'operator' && $currentUser['role'] !== 'operator') {
throw new Exception("운영팀에서 등록한 테넌트는 삭제할 수 없습니다.");
}
// 관련 데이터 삭제 (계약, 시나리오, 상담기록)
$pdo->prepare("DELETE FROM sales_tenant_products WHERE tenant_id = ?")->execute([$tenant_id]);