2026-04-11 23:28:23 +08:00
|
|
|
|
# API Service
|
|
|
|
|
|
|
2026-04-12 00:03:30 +08:00
|
|
|
|
FastAPI 后端服务,包含用户认证和 RBAC 权限控制。
|
|
|
|
|
|
|
|
|
|
|
|
## 核心能力
|
|
|
|
|
|
|
|
|
|
|
|
- JWT Access Token(默认 15 分钟)
|
|
|
|
|
|
- Refresh Session(HttpOnly Cookie,默认 30 天,刷新轮换)
|
|
|
|
|
|
- RBAC(用户-角色-权限)
|
|
|
|
|
|
- 用户管理接口(需 `user.manage`)
|
2026-04-11 23:28:23 +08:00
|
|
|
|
|
|
|
|
|
|
## 本地开发
|
|
|
|
|
|
|
|
|
|
|
|
```bash
|
|
|
|
|
|
python3 -m venv .venv
|
|
|
|
|
|
source .venv/bin/activate
|
|
|
|
|
|
python -m pip install -r api/requirements.txt
|
|
|
|
|
|
python -m uvicorn api.app.main:app --reload --host 0.0.0.0 --port 8000
|
|
|
|
|
|
```
|
|
|
|
|
|
|
2026-04-12 00:03:30 +08:00
|
|
|
|
## 主要接口
|
2026-04-11 23:28:23 +08:00
|
|
|
|
|
|
|
|
|
|
- `GET /health`
|
|
|
|
|
|
- `GET /api/v1/ping`
|
2026-04-12 00:03:30 +08:00
|
|
|
|
- `POST /api/v1/auth/register`
|
|
|
|
|
|
- `POST /api/v1/auth/login`
|
|
|
|
|
|
- `POST /api/v1/auth/refresh`
|
|
|
|
|
|
- `POST /api/v1/auth/logout`
|
|
|
|
|
|
- `GET /api/v1/auth/me`
|
|
|
|
|
|
- `GET /api/v1/users`
|