-
- UserPrincipal record + JwtAuthenticationFilter 注入用户上下文 - SecurityConfig 补充 authenticationEntryPoint 返回 401 - UserService/UserServiceImpl: 创建用户、获取员工列表、获取权限组 - UserController: POST /users、GET /users/staffs、GET /users/permission-groups - UserServiceTest (6 cases) + UserControllerTest (5 cases) 全部通过
-
- JwtProperties: @ConfigurationProperties("jwt") with secret/expiry - JwtUtil: generateAccessToken/generateRefreshToken/parseAccessToken/parseRefreshToken - parseRefreshToken validates type=refresh claim, throws 40103 if mismatch - JwtUtilTest: 3 tests PASS -
- Result<T>: ok()/fail() with code/message/data/timestamp - BizException: carries int code - AuthErrorCode: 40100/40101/40102/40103 constants - GlobalExceptionHandler: BizException, validation, fallback 99000
