chore(debug): 本地开发跳过权限验证

前端 AuthProvider 注入测试用户（BI-SCHEDULE-OPT），后端 middleware BYPASS_AUTH=true。仅用于本地调试，禁止合并回 main。 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-14 16:06:56 +08:00
2 changed files with 15 additions and 2 deletions
--- a/src/auth/AuthProvider.tsx
+++ b/src/auth/AuthProvider.tsx
@@ -82,7 +82,19 @@ export default function AuthProvider({ children }: { children: ReactNode }) {
    const jumpToken = params.get('jumpToken');

    if (!jumpToken) {
-      setState({ isLoading: false, isAuthenticated: false, user: null, error: '请从业务系统跳转访问' });
+      // 临时：本地开发免登录，含智能调度权限
+      setState({
+        isLoading: false,
+        isAuthenticated: true,
+        user: {
+          userId: '1105261382487539712',
+          userName: '本地调试',
+          permissionLevel: 'full',
+          depName: '',
+          roles: ['BI-SCHEDULE-OPT'],
+        },
+        error: null,
+      });
      return;
    }

--- a/src/server/auth/middleware.ts
+++ b/src/server/auth/middleware.ts
@@ -5,7 +5,8 @@ import type { JwtPayload, AuthUser } from './types.js';
 const JWT_SECRET = process.env.JWT_SECRET || 'ln-bi-default-secret';

 // 临时：跳过所有认证（保留完整逻辑便于快速恢复）
-const BYPASS_AUTH = false;
+// 临时：本地开发跳过认证
+const BYPASS_AUTH = true;

 export async function authMiddleware(c: Context, next: Next) {
  const path = c.req.path;