chore: 调整登录策略，dev模式下api文档登录不校验验证码以适应开发调试需要

Author: insistence

dash-fastapi-backend/module_admin/service/login_service.py

@@ -11,7 +11,7 @@
 from module_admin.dao.login_dao import *
 from module_admin.service.user_service import UserService
 from module_admin.dao.user_dao import *
-from config.env import JwtConfig, RedisInitKeyConfig
+from config.env import AppConfig, JwtConfig, RedisInitKeyConfig
 from utils.pwd_util import *
 from utils.response_util import *
 from utils.message_util import *
@@ -201,8 +201,13 @@ async def authenticate_user(request: Request, query_db: Session, login_user: Use
     if login_user.user_name == account_lock:
         logger.warning("账号已锁定，请稍后再试")
         raise LoginException(data="", message="账号已锁定，请稍后再试")
-    # 判断是否开启验证码，开启则验证，否则不验证
-    if login_user.captcha_enabled:
+    # 判断请求是否来自于api文档
+    request_from_swagger = request.headers.get('referer').endswith('docs') if request.headers.get('referer') else False
+    request_from_redoc = request.headers.get('referer').endswith('redoc') if request.headers.get('referer') else False
+    # 判断是否开启验证码，开启则验证，否则不验证（dev模式下来自API文档的登录请求不检验）
+    if not login_user.captcha_enabled or ((request_from_swagger or request_from_redoc) and AppConfig.app_env == 'dev'):
+        pass
+    else:
         await check_login_captcha(request, login_user)
     user = login_by_account(query_db, login_user.user_name)
     if not user: