feat: add rag backend and review access fixes

This commit is contained in:
wren
2026-05-08 10:58:24 +08:00
parent 1c84209f38
commit 9c86bf59e5
32 changed files with 3877 additions and 23 deletions
@@ -61,6 +61,8 @@ class JwtService:
jti = str(uuid.uuid4())
# Access Token
# Token 只保留鉴权链路真正需要的最小字段,避免省局/管理员权限过多时
# 把 permissions / roles 全塞进 JWT,最终导致前端 Cookie Session 超过 4KB。
accessPayload = {
"jti": jti,
"user_id": userId,
@@ -68,8 +70,6 @@ class JwtService:
"nick_name": nickName,
"ou_id": ouId,
"ou_name": ouName,
"roles": roles or [],
"permissions": permissions or [],
"area": area,
"user_role": userRole,
"iat": now,