初步实现数据加密、权限管理、日志审计等功能

2026-02-02 10:09:28 +08:00
parent b6b37a453b
commit 807e634318
27 changed files with 3787 additions and 59 deletions
--- a/app/core/config.py
+++ b/app/core/config.py
@@ -3,9 +3,15 @@ from pydantic_settings import BaseSettings
 class Settings(BaseSettings):
    PROJECT_NAME: str = "TJWater Server"
    API_V1_STR: str = "/api/v1"
-    SECRET_KEY: str = "your-secret-key-here" # Change in production
+    
+    # JWT 配置
+    SECRET_KEY: str = "your-secret-key-here-change-in-production-use-openssl-rand-hex-32"
    ALGORITHM: str = "HS256"
    ACCESS_TOKEN_EXPIRE_MINUTES: int = 30
+    REFRESH_TOKEN_EXPIRE_DAYS: int = 7
+    
+    # 数据加密密钥 (使用 Fernet)
+    ENCRYPTION_KEY: str = ""  # 必须从环境变量设置
    
    # Database Config (PostgreSQL)
    DB_NAME: str = "tjwater"