refactor(backend): 重命名后端项目为 gym-manage-api，修改包名为 cn.novalon.gym.manage

2026-04-17 18:35:50 +08:00
parent 666189b676
commit deb961c427
916 changed files with 108360 additions and 38328 deletions
@@ -0,0 +1,44 @@
+#!/usr/bin/env python3
+"""
+测试Token生成和验证
+"""
+
+import base64
+import json
+
+# 从测试中获取的Token
+token = "eyJhbGciOiJIUzM4NCJ9.eyJyb2xlcyI6W10sInVzZXJJZCI6MTA2NCwidXNlcm5hbWUiOiJhZG1pbiIsInN1YiI6ImFkbWluIiwiaWF0IjoxNzc1MDkxNzg4LCJleHAiOjE3NzUxNzgxODh9"
+
+# 解析Token header
+def decode_jwt_header(token):
+    parts = token.split('.')
+    if len(parts) < 1:
+        return None
+    
+    header = parts[0]
+    # 添加padding
+    padding = len(header) % 4
+    if padding:
+        header += '=' * (4 - padding)
+    
+    decoded = base64.b64decode(header)
+    return json.loads(decoded)
+
+header = decode_jwt_header(token)
+print("Token Header:")
+print(json.dumps(header, indent=2))
+
+print("\n算法: " + header.get('alg', 'Unknown'))
+
+# Gateway secret
+gateway_secret = "U2FsdGVkX1+vZ5Y9QmKxL8nN3rP7tW2jH4fG6dA8sB1cE5yN0zX3qV7wM4"
+print(f"\nGateway secret长度: {len(gateway_secret)} bytes")
+print(f"Gateway secret支持算法: HS384 (因为长度 >= 48 bytes)")
+
+print("\n问题分析:")
+print("1. manage-app使用JwtTokenProvider生成Token")
+print("2. JwtTokenProvider使用Keys.hmacShaKeyFor()自动选择算法")
+print("3. Gateway secret长度58 bytes，自动选择HS384算法")
+print("4. Gateway使用JwtUtil验证Token")
+print("5. JwtUtil使用new SecretKeySpec()创建密钥")
+print("6. 需要确保JwtUtil也使用相同的算法")