From 582e80b750f360e5ac04b455140c47eff1023e59 Mon Sep 17 00:00:00 2001
From: hailin <hailin.zhao@gdzx.xyz>
Date: Fri, 2 Jan 2026 19:00:24 -0800
Subject: [PATCH] fix(pending-actions): add @Public() decorator to
 AdminPendingActionController
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Skip JWT auth for admin pending-actions endpoints since admin-web
authenticates through a different mechanism (admin-service tokens).

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 .../src/api/controllers/pending-action.controller.ts            | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/backend/services/identity-service/src/api/controllers/pending-action.controller.ts b/backend/services/identity-service/src/api/controllers/pending-action.controller.ts
index 306b528a..fb96ae13 100644
--- a/backend/services/identity-service/src/api/controllers/pending-action.controller.ts
+++ b/backend/services/identity-service/src/api/controllers/pending-action.controller.ts
@@ -21,6 +21,7 @@ import {
   JwtAuthGuard,
   CurrentUser,
   CurrentUserData,
+  Public,
 } from '@/shared/guards/jwt-auth.guard';
 import {
   CreatePendingActionDto,
@@ -110,6 +111,7 @@ export class PendingActionController {
 
 @ApiTags('用户待办操作 - 后台管理')
 @Controller('admin/pending-actions')
+@Public()  // 管理后台通过 admin-service 验证身份，此处跳过 JWT 验证
 export class AdminPendingActionController {
   constructor(private readonly pendingActionService: PendingActionService) {}