feat: enhance audit logging and add company name to audit entries

- Integrated detailed audit logging for update and delete actions in the CommonCodeController and DDLController. - Added company name retrieval to the audit log entries for better traceability. - Updated the audit log service to include company name in the log entries. - Modified the frontend audit log page to display company names alongside company codes for improved clarity. Made-with: Cursor
2026-03-12 05:14:27 +09:00
parent fd90e3d761
commit b1e50f2e0a
14 changed files with 462 additions and 142 deletions
--- a/backend-node/src/services/auditLogService.ts
+++ b/backend-node/src/services/auditLogService.ts
@@ -66,6 +66,7 @@ export interface AuditLogParams {
 export interface AuditLogEntry {
  id: number;
  company_code: string;
+  company_name: string | null;
  user_id: string;
  user_name: string | null;
  action: string;
@@ -107,6 +108,7 @@ class AuditLogService {
   */
  async log(params: AuditLogParams): Promise<void> {
    try {
+      logger.info(`[AuditLog] 기록 시도: ${params.resourceType} / ${params.action} / ${params.resourceName || params.resourceId || "N/A"}`);
      await query(
        `INSERT INTO system_audit_log 
          (company_code, user_id, user_name, action, resource_type, 
@@ -128,8 +130,9 @@ class AuditLogService {
          params.requestPath || null,
        ]
      );
-    } catch (error) {
-      logger.error("감사 로그 기록 실패 (무시됨)", { error, params });
+      logger.info(`[AuditLog] 기록 성공: ${params.resourceType} / ${params.action}`);
+    } catch (error: any) {
+      logger.error(`[AuditLog] 기록 실패: ${params.resourceType} / ${params.action} - ${error?.message}`, { error, params });
    }
  }

@@ -186,40 +189,40 @@ class AuditLogService {
    let paramIndex = 1;

    if (!isSuperAdmin && filters.companyCode) {
-      conditions.push(`company_code = $${paramIndex++}`);
+      conditions.push(`sal.company_code = $${paramIndex++}`);
      params.push(filters.companyCode);
    } else if (isSuperAdmin && filters.companyCode) {
-      conditions.push(`company_code = $${paramIndex++}`);
+      conditions.push(`sal.company_code = $${paramIndex++}`);
      params.push(filters.companyCode);
    }

    if (filters.userId) {
-      conditions.push(`user_id = $${paramIndex++}`);
+      conditions.push(`sal.user_id = $${paramIndex++}`);
      params.push(filters.userId);
    }
    if (filters.resourceType) {
-      conditions.push(`resource_type = $${paramIndex++}`);
+      conditions.push(`sal.resource_type = $${paramIndex++}`);
      params.push(filters.resourceType);
    }
    if (filters.action) {
-      conditions.push(`action = $${paramIndex++}`);
+      conditions.push(`sal.action = $${paramIndex++}`);
      params.push(filters.action);
    }
    if (filters.tableName) {
-      conditions.push(`table_name = $${paramIndex++}`);
+      conditions.push(`sal.table_name = $${paramIndex++}`);
      params.push(filters.tableName);
    }
    if (filters.dateFrom) {
-      conditions.push(`created_at >= $${paramIndex++}::timestamptz`);
+      conditions.push(`sal.created_at >= $${paramIndex++}::timestamptz`);
      params.push(filters.dateFrom);
    }
    if (filters.dateTo) {
-      conditions.push(`created_at <= $${paramIndex++}::timestamptz`);
+      conditions.push(`sal.created_at <= $${paramIndex++}::timestamptz`);
      params.push(filters.dateTo);
    }
    if (filters.search) {
      conditions.push(
-        `(summary ILIKE $${paramIndex} OR resource_name ILIKE $${paramIndex} OR user_name ILIKE $${paramIndex})`
+        `(sal.summary ILIKE $${paramIndex} OR sal.resource_name ILIKE $${paramIndex} OR sal.user_name ILIKE $${paramIndex})`
      );
      params.push(`%${filters.search}%`);
      paramIndex++;
@@ -233,14 +236,17 @@ class AuditLogService {
    const offset = (page - 1) * limit;

    const countResult = await query<{ count: string }>(
-      `SELECT COUNT(*) as count FROM system_audit_log ${whereClause}`,
+      `SELECT COUNT(*) as count FROM system_audit_log sal ${whereClause}`,
      params
    );
    const total = parseInt(countResult[0].count, 10);

    const data = await query<AuditLogEntry>(
-      `SELECT * FROM system_audit_log ${whereClause} 
-       ORDER BY created_at DESC 
+      `SELECT sal.*, ci.company_name
+       FROM system_audit_log sal
+       LEFT JOIN company_mng ci ON sal.company_code = ci.company_code
+       ${whereClause} 
+       ORDER BY sal.created_at DESC 
       LIMIT $${paramIndex++} OFFSET $${paramIndex++}`,
      [...params, limit, offset]
    );