From 9bb4b8cb27d6eba577966ae0b0ab59786a7c7253 Mon Sep 17 00:00:00 2001
From: slience-me <slienceme.cn@gmail.com>
Date: Tue, 15 Apr 2025 16:49:50 +0800
Subject: [PATCH] =?UTF-8?q?=E5=88=B7=E6=96=B0Token=E8=A1=A5=E5=85=85?=
 =?UTF-8?q?=E6=9B=B4=E6=96=B0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../com/youlai/boot/core/security/token/JwtTokenManager.java | 5 ++---
 src/main/resources/application-dev.yml                       | 3 ++-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/main/java/com/youlai/boot/core/security/token/JwtTokenManager.java b/src/main/java/com/youlai/boot/core/security/token/JwtTokenManager.java
index 2f029eea..9df71182 100644
--- a/src/main/java/com/youlai/boot/core/security/token/JwtTokenManager.java
+++ b/src/main/java/com/youlai/boot/core/security/token/JwtTokenManager.java
@@ -128,8 +128,7 @@ public class JwtTokenManager implements TokenManager {
 
     @Override
     public boolean validateRefreshToken(String refreshToken) {
-        // TODO 刷新令牌逻辑
-        return false;
+        return this.validateToken(refreshToken);
     }
 
     /**
@@ -182,7 +181,7 @@ public class JwtTokenManager implements TokenManager {
         }
 
         Authentication authentication = parseToken(refreshToken);
-        int accessTokenExpiration = securityProperties.getSession().getRefreshTokenTimeToLive();
+        int accessTokenExpiration = securityProperties.getSession().getAccessTokenTimeToLive();
         String newAccessToken = generateToken(authentication, accessTokenExpiration);
 
         return AuthenticationToken.builder()
diff --git a/src/main/resources/application-dev.yml b/src/main/resources/application-dev.yml
index 6b2fa47d..b1983a4e 100644
--- a/src/main/resources/application-dev.yml
+++ b/src/main/resources/application-dev.yml
@@ -85,6 +85,7 @@ security:
     - /api/v1/auth/login/**       # 登录接口(账号密码登录、手机验证码登录和微信登录)
     - /api/v1/auth/captcha        # 验证码获取接口
     - /api/v1/auth/refresh-token  # 刷新令牌接口
+    - /api/v1/auth/logout         # 开放退出登录
     - /ws/**                      # WebSocket接口
   # 非安全端点路径（允许匿名访问的API）
   unsecured-urls:
@@ -220,4 +221,4 @@ captcha:
 wx:
   miniapp:
     app-id: xxxxxx
-    app-secret: xxxxxx
\ No newline at end of file
+    app-secret: xxxxxx