fix: resolve #351 - API Token 明文存储，备份含敏感信息未脱敏加密

[awsl233777]

Closes #351

[coderabbitai]

Warning

Rate limit exceeded

@dreamhunter2333 has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 25 minutes and 9 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 39c94fa9-3166-4b79-ace7-9a69a8f7b1ba

📥 Commits

Reviewing files that changed from the base of the PR and between 6cd6fd6 and 47a50e3.

📒 Files selected for processing (18)

• internal/domain/api_token_secret.go
• internal/domain/backup.go
• internal/domain/model.go
• internal/handler/token_auth.go
• internal/repository/cached/api_token.go
• internal/repository/sqlite/api_token.go
• internal/repository/sqlite/api_token_test.go
• internal/repository/sqlite/migrations.go
• internal/service/admin.go
• internal/service/backup.go
• internal/service/backup_test.go
• tests/e2e/api_tokens_test.go
• tests/e2e/backup_test.go
• web/src/components/auth/admin-route.tsx
• web/src/lib/transport/types.ts
• web/src/locales/en.json
• web/src/locales/zh.json
• web/src/pages/api-tokens/index.tsx

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/issue-351

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[awsl233777]

Automated Test Report

PR: #380 | Branch: fix/issue-351 | Issue: #351

Suite	Total	Passed	Failed	Skipped	Status
E2E	0	0	0	0	BLOCKED
Unit	0	0	0	0	BLOCKED

Overall: TESTS NOT RUN

Worktree setup was blocked by sandbox permissions, so no Go tests were executed.

Setup failure details

$ git fetch origin fix/issue-351
error: cannot open '.git/FETCH_HEAD': Operation not permitted

$ git show-ref --verify refs/remotes/origin/fix/issue-351
fatal: 'refs/remotes/origin/fix/issue-351' - not a valid ref

$ git fetch --no-write-fetch-head origin fix/issue-351
error: unable to create temporary file: Operation not permitted
fatal: failed to write object
fatal: unpack-objects failed

Because the branch could not be fetched into the local repo, the required test worktree could not be created.