배치 수정 페이지 버그 수정 및 멀티테넌시 보안 강화

2025-12-05 10:36:52 +09:00
parent b6a7b4a93b
commit 7c06b98f86
3 changed files with 88 additions and 27 deletions
--- a/backend-node/src/services/batchSchedulerService.ts
+++ b/backend-node/src/services/batchSchedulerService.ts
@@ -260,14 +260,29 @@ export class BatchSchedulerService {
            "./batchExternalDbService"
          );

-          // auth_service_name이 설정된 경우 auth_tokens에서 토큰 조회
+          // auth_service_name이 설정된 경우 auth_tokens에서 토큰 조회 (멀티테넌시 적용)
          let apiKey = firstMapping.from_api_key || "";
          if (config.auth_service_name) {
+            let tokenQuery: string;
+            let tokenParams: any[];
+
+            if (config.company_code === "*") {
+              // 최고 관리자 배치: 모든 회사 토큰 조회 가능
+              tokenQuery = `SELECT access_token FROM auth_tokens 
+                            WHERE service_name = $1 
+                            ORDER BY created_date DESC LIMIT 1`;
+              tokenParams = [config.auth_service_name];
+            } else {
+              // 일반 회사 배치: 자신의 회사 토큰만 조회
+              tokenQuery = `SELECT access_token FROM auth_tokens 
+                            WHERE service_name = $1 AND company_code = $2
+                            ORDER BY created_date DESC LIMIT 1`;
+              tokenParams = [config.auth_service_name, config.company_code];
+            }
+
            const tokenResult = await query<{ access_token: string }>(
-              `SELECT access_token FROM auth_tokens 
-               WHERE service_name = $1 
-               ORDER BY created_date DESC LIMIT 1`,
-              [config.auth_service_name]
+              tokenQuery,
+              tokenParams
            );
            if (tokenResult.length > 0 && tokenResult[0].access_token) {
              apiKey = tokenResult[0].access_token;