feat: scaffold Django multi-tenant project with 5 of 9 apps

Phase 1 scaffolding: config/, core/, base models, AES-256-GCM phone encryption, enums mirror apps.tenant: Tenant + Domain (django-tenants) apps.org: 11 models (OrgUnit hierarchy, Staff, audit logs) apps.account: 4 models (UserAccount as AUTH_USER_MODEL, login/password tracking) apps.permission: 7 models (RBAC + overrides + datascope + append-only changelog) apps.region: 5 models (District, BusinessArea, MetroLine, MetroStation, School) All migrations generated, manage.py check passes
2026-04-29 17:01:55 +08:00
parent 61535a53c2
commit 9a7d06b34e
116 changed files with 3411 additions and 0 deletions
--- a/apps/org/models/init.py
+++ b/apps/org/models/init.py
@@ -0,0 +1,26 @@
+from apps.org.models.org_unit import OrgUnit
+from apps.org.models.staff import Staff, StaffPersonalInfo
+from apps.org.models.staff_logs import (
+    StaffAccount,
+    StaffEducation,
+    StaffFamilyMember,
+    StaffRemark,
+    StaffRewardPunish,
+    StaffTraining,
+    StaffTransferLog,
+    StaffWorkExperience,
+)
+
+__all__ = [
+    "OrgUnit",
+    "Staff",
+    "StaffPersonalInfo",
+    "StaffAccount",
+    "StaffEducation",
+    "StaffFamilyMember",
+    "StaffRemark",
+    "StaffRewardPunish",
+    "StaffTraining",
+    "StaffTransferLog",
+    "StaffWorkExperience",
+]
--- a/apps/org/models/org_unit.py
+++ b/apps/org/models/org_unit.py
@@ -0,0 +1,57 @@
+from django.db import models
+
+from core.enums import OrgUnitAttribute, OrgUnitType
+from core.models.base import SoftDeleteModel
+
+
+class OrgUnit(SoftDeleteModel):
+    name = models.CharField(max_length=100)
+    type = models.CharField(max_length=20, choices=OrgUnitType.choices)
+    parent = models.ForeignKey(
+        "self",
+        null=True,
+        blank=True,
+        on_delete=models.RESTRICT,
+        related_name="children",
+        db_index=True,
+    )
+    path = models.TextField(
+        help_text="Materialized path: /root_id/.../self_id/ for subtree queries.",
+    )
+    depth = models.SmallIntegerField(default=0)
+    sort_order = models.IntegerField(default=0)
+    attribute = models.CharField(
+        max_length=10,
+        choices=OrgUnitAttribute.choices,
+        null=True,
+        blank=True,
+    )
+    address_city = models.CharField(max_length=50, blank=True, default="")
+    address_district = models.CharField(max_length=50, blank=True, default="")
+    address_detail = models.CharField(max_length=200, blank=True, default="")
+    latitude = models.DecimalField(max_digits=10, decimal_places=7, null=True, blank=True)
+    longitude = models.DecimalField(max_digits=10, decimal_places=7, null=True, blank=True)
+    manager = models.ForeignKey(
+        "org.Staff",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="managed_org_units",
+    )
+    established_at = models.DateField(null=True, blank=True)
+    phone = models.CharField(max_length=30, blank=True, default="")
+    ext_start = models.IntegerField(null=True, blank=True)
+    ext_end = models.IntegerField(null=True, blank=True)
+    is_active = models.BooleanField(default=True)
+
+    class Meta:
+        db_table = "org_units"
+        indexes = [
+            models.Index(fields=["parent"], name="idx_org_units_parent"),
+            models.Index(fields=["type"], name="idx_org_units_type"),
+            models.Index(fields=["path"], name="idx_org_units_path"),
+        ]
+        ordering = ["sort_order", "name"]
+
+    def __str__(self) -> str:
+        return f"{self.name} ({self.type})"
--- a/apps/org/models/staff.py
+++ b/apps/org/models/staff.py
@@ -0,0 +1,138 @@
+from django.conf import settings
+from django.db import models
+
+from core.enums import StaffGender, StaffIdType, StaffRole, StaffStatus
+from core.models.base import SoftDeleteModel
+
+
+class Staff(SoftDeleteModel):
+    org_unit = models.ForeignKey(
+        "org.OrgUnit",
+        on_delete=models.RESTRICT,
+        related_name="staff_members",
+        db_index=True,
+    )
+    user = models.OneToOneField(
+        settings.AUTH_USER_MODEL,
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="staff_profile",
+    )
+    name = models.CharField(max_length=50)
+    nickname = models.CharField(max_length=50, blank=True, default="")
+    employee_no = models.CharField(max_length=30, null=True, blank=True, unique=True)
+    role = models.CharField(max_length=30, choices=StaffRole.choices)
+    job_title = models.CharField(max_length=100, blank=True, default="")
+    job_category = models.CharField(
+        max_length=50,
+        blank=True,
+        default="",
+        help_text="Job classification (e.g. '置业顾问' = agent qualification flag).",
+    )
+    job_level = models.SmallIntegerField(null=True, blank=True)
+    supervisor = models.ForeignKey(
+        "self",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="subordinates",
+    )
+    status = models.CharField(
+        max_length=20,
+        choices=StaffStatus.choices,
+        default=StaffStatus.ACTIVE,
+    )
+    phone_enc = models.BinaryField(
+        null=True,
+        blank=True,
+        help_text="AES-256-GCM encrypted phone (DATA_MODEL_ORG §3.2).",
+    )
+    phone_hash = models.CharField(max_length=64, null=True, blank=True, db_index=True)
+    phone_hide = models.BooleanField(default=False)
+    email = models.EmailField(max_length=255, blank=True, default="")
+    extension = models.CharField(max_length=20, blank=True, default="")
+    avatar_key = models.TextField(blank=True, default="")
+    is_active = models.BooleanField(default=True)
+    is_system_admin = models.BooleanField(default=False)
+    first_joined_at = models.DateField(null=True, blank=True)
+    rejoined_at = models.DateField(null=True, blank=True)
+    resigned_at = models.DateField(null=True, blank=True)
+    joined_count = models.SmallIntegerField(default=1)
+    industry_exp_years = models.SmallIntegerField(null=True, blank=True)
+    mentor = models.ForeignKey(
+        "self",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="mentees",
+    )
+    business_type = models.CharField(max_length=50, blank=True, default="")
+    bank_name = models.CharField(max_length=100, blank=True, default="")
+    bank_account = models.CharField(max_length=50, blank=True, default="")
+    partner_no = models.CharField(max_length=50, blank=True, default="")
+    recruit_by = models.ForeignKey(
+        "self",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="recruited_staff",
+    )
+    recruit_source = models.CharField(max_length=50, blank=True, default="")
+    referrer = models.ForeignKey(
+        "self",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="referred_staff",
+    )
+
+    class Meta:
+        db_table = "staff"
+        indexes = [
+            models.Index(fields=["org_unit"], name="idx_staff_org_unit"),
+            models.Index(fields=["supervisor"], name="idx_staff_supervisor"),
+            models.Index(fields=["status"], name="idx_staff_status"),
+        ]
+
+    def __str__(self) -> str:
+        return self.name
+
+
+class StaffPersonalInfo(models.Model):
+    staff = models.OneToOneField(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="personal_info",
+        primary_key=True,
+    )
+    gender = models.CharField(max_length=10, choices=StaffGender.choices, blank=True, default="")
+    id_type = models.CharField(max_length=20, choices=StaffIdType.choices, blank=True, default="")
+    id_number_enc = models.BinaryField(null=True, blank=True)
+    id_number_hash = models.CharField(max_length=64, null=True, blank=True, db_index=True)
+    id_verified = models.BooleanField(default=False)
+    id_verified_at = models.DateTimeField(null=True, blank=True)
+    birthdate = models.DateField(null=True, blank=True)
+    native_place = models.CharField(max_length=100, blank=True, default="")
+    domicile_type = models.CharField(max_length=20, blank=True, default="")
+    marital_status = models.CharField(max_length=20, blank=True, default="")
+    political_status = models.CharField(max_length=20, blank=True, default="")
+    has_children = models.BooleanField(null=True, blank=True)
+    education_level = models.CharField(max_length=20, blank=True, default="")
+    ethnicity = models.CharField(max_length=20, blank=True, default="")
+    domicile_address = models.CharField(max_length=200, blank=True, default="")
+    residence_address = models.CharField(max_length=200, blank=True, default="")
+    work_start_date = models.DateField(null=True, blank=True)
+    emergency_contact = models.CharField(max_length=50, blank=True, default="")
+    emergency_phone_enc = models.BinaryField(null=True, blank=True)
+    updated_at = models.DateTimeField(auto_now=True)
+    updated_by = models.ForeignKey(
+        "org.Staff",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="updated_personal_info",
+    )
+
+    class Meta:
+        db_table = "staff_personal_info"
--- a/apps/org/models/staff_logs.py
+++ b/apps/org/models/staff_logs.py
@@ -0,0 +1,164 @@
+from django.db import models
+
+from core.enums import StaffAccountPlatform, StaffTransferType
+from core.models.base import SoftDeleteModel, TimeStampedModel
+
+
+class StaffTransferLog(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.RESTRICT,
+        related_name="transfer_logs",
+    )
+    transfer_type = models.CharField(max_length=30, choices=StaffTransferType.choices)
+    old_value = models.JSONField(null=True, blank=True)
+    new_value = models.JSONField(null=True, blank=True)
+    transfer_date = models.DateField()
+    remarks = models.CharField(max_length=50, blank=True, default="")
+    operator = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.RESTRICT,
+        related_name="operated_transfers",
+    )
+    operated_at = models.DateTimeField(auto_now_add=True)
+
+    class Meta:
+        db_table = "staff_transfer_logs"
+        indexes = [
+            models.Index(fields=["staff", "-transfer_date"], name="idx_transfer_logs_staff"),
+            models.Index(fields=["transfer_type", "-operated_at"], name="idx_transfer_logs_type"),
+            models.Index(fields=["operator"], name="idx_transfer_logs_operator"),
+        ]
+
+
+class StaffRewardPunish(SoftDeleteModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="reward_punish_records",
+    )
+    rp_date = models.DateField()
+    category = models.CharField(
+        max_length=50,
+        help_text="Configurable lookup_items domain: org.reward_punish_category.",
+    )
+    name = models.CharField(max_length=100)
+    remarks = models.TextField(blank=True, default="")
+    created_by = models.ForeignKey(
+        "org.Staff",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="created_reward_punish",
+    )
+
+    class Meta:
+        db_table = "staff_reward_punish"
+
+
+class StaffAccount(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="external_accounts",
+    )
+    platform = models.CharField(max_length=30, choices=StaffAccountPlatform.choices)
+    account_no = models.CharField(max_length=100, blank=True, default="")
+    is_real_name_match = models.BooleanField(null=True, blank=True)
+    is_bound = models.BooleanField(default=False)
+    bound_at = models.DateTimeField(null=True, blank=True)
+
+    class Meta:
+        db_table = "staff_accounts"
+        constraints = [
+            models.UniqueConstraint(
+                fields=["staff", "platform"],
+                name="uq_staff_accounts_staff_platform",
+            ),
+        ]
+
+
+class StaffWorkExperience(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="work_experiences",
+    )
+    company = models.CharField(max_length=200)
+    job_title = models.CharField(max_length=100, blank=True, default="")
+    start_date = models.DateField(null=True, blank=True)
+    end_date = models.DateField(null=True, blank=True)
+    reason = models.CharField(max_length=200, blank=True, default="")
+    reference_name = models.CharField(max_length=50, blank=True, default="")
+    reference_phone = models.CharField(max_length=30, blank=True, default="")
+
+    class Meta:
+        db_table = "staff_work_experiences"
+
+
+class StaffEducation(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="educations",
+    )
+    stage = models.CharField(max_length=30, blank=True, default="")
+    school = models.CharField(max_length=200)
+    major = models.CharField(max_length=100, blank=True, default="")
+    start_date = models.DateField(null=True, blank=True)
+    end_date = models.DateField(null=True, blank=True)
+    enrollment_status = models.CharField(max_length=30, blank=True, default="")
+    degree = models.CharField(max_length=30, blank=True, default="")
+
+    class Meta:
+        db_table = "staff_educations"
+
+
+class StaffTraining(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="trainings",
+    )
+    training_name = models.CharField(max_length=200)
+    training_date = models.DateField(null=True, blank=True)
+    certificate = models.CharField(max_length=200, blank=True, default="")
+
+    class Meta:
+        db_table = "staff_trainings"
+
+
+class StaffFamilyMember(TimeStampedModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="family_members",
+    )
+    relation = models.CharField(max_length=30)
+    name = models.CharField(max_length=50)
+    birthdate = models.DateField(null=True, blank=True)
+    occupation = models.CharField(max_length=100, blank=True, default="")
+    work_unit = models.CharField(max_length=200, blank=True, default="")
+    phone_enc = models.BinaryField(null=True, blank=True)
+
+    class Meta:
+        db_table = "staff_family_members"
+
+
+class StaffRemark(SoftDeleteModel):
+    staff = models.ForeignKey(
+        "org.Staff",
+        on_delete=models.CASCADE,
+        related_name="remarks",
+    )
+    content = models.TextField()
+    created_by = models.ForeignKey(
+        "org.Staff",
+        null=True,
+        blank=True,
+        on_delete=models.SET_NULL,
+        related_name="created_remarks",
+    )
+
+    class Meta:
+        db_table = "staff_remarks"