完善Token刷新架构：后端实现refreshToken轮转机制

后端： - JwtUtil: accessToken 2h + refreshToken 30d，区分type - AuthController: POST /api/auth/refresh 接口 - AuthService: 验证refreshToken → 轮转生成新token对 - UserService: 登录/注册返回refreshToken - User entity: 添加refreshToken字段 - TokenFilter: 排除/api/auth/refresh路径 - SQL: sys_user添加refresh_token列前端： - DioClient: 刷新成功后同时保存新的refreshToken
2026-04-16 13:02:16 +08:00
parent 5c7aa09207
commit 8d0ce203ef
10 changed files with 8398 additions and 8221 deletions
--- a/sql/add_refresh_token.sql
+++ b/sql/add_refresh_token.sql
@@ -0,0 +1,2 @@
+-- 添加 refreshToken 字段
+ALTER TABLE sys_user ADD COLUMN refresh_token VARCHAR(512) DEFAULT NULL COMMENT '刷新Token' AFTER token;