hailin
/
rwadurian
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(pending-actions): add @Public() decorator to AdminPendingActionController 

Skip JWT auth for admin pending-actions endpoints since admin-web
authenticates through a different mechanism (admin-service tokens).

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
hailin 2026-01-02 19:00:24 -08:00
parent ff038f31f9
commit 582e80b750
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
backend/services/identity-service/src/api/controllers/pending-action.controller.ts
View File

@ -21,6 +21,7 @@ import {
JwtAuthGuard,
CurrentUser,
CurrentUserData,
Public,
} from '@/shared/guards/jwt-auth.guard';
import {
CreatePendingActionDto,
@ -110,6 +111,7 @@ export class PendingActionController {
@ApiTags('用户待办操作 - 后台管理')
@Controller('admin/pending-actions')
@Public() // 管理后台通过 admin-service 验证身份,此处跳过 JWT 验证
export class AdminPendingActionController {
constructor(private readonly pendingActionService: PendingActionService) {}