feat(auth): replace internal auth with JWT token service

- Replace InternalAuthService with TokenService using JWT tokens
- Add support for token issuance, refresh, verification and revocation
- Implement automatic signing key rotation with Redis storage
- Add database migration checks for indexes and foreign key constraints
- Update gRPC endpoints to use token-based authentication
- Remove deprecated API key based authentication system
- Add JSON Web Token support with HMAC-SHA256 signing
- Implement refresh token handling with automatic rotation
- Add token revocation by JTI and user ID
- Update build configuration to include core proto files
- Migrate database schema to handle token-based authentication
- Add comprehensive token validation and verification logic

This commit is contained in:

zhenyi

2026-06-11 15:08:13 +08:00

parent a0bea36041

commit dbbfb747a4

16 changed files with 833 additions and 186 deletions

									
										Cargo.toml
									
		+2
		
												View File
												
				@@ -37,6 +37,8 @@ hkdf = "0.12"

				sha2 = "0.10"

				sha1 = "0.10"

				hmac = "0.12"

				jsonwebtoken = "9"

				arc-swap = "1"

				base64 = "0.22"

				rand = "0.8"

				captcha-rs = "0.5"