feat: add platform auth jwt adapter

backend-rewrite-tasklist/01_M0_M2_FOUNDATION_AND_AUTH.md

@@ -77,7 +77,7 @@
   交付物：[../server-rs/crates/shared-contracts/README.md](../server-rs/crates/shared-contracts/README.md)
 - [x] 创建 `crates/shared-kernel`
   交付物：[../server-rs/crates/shared-kernel/README.md](../server-rs/crates/shared-kernel/README.md)
-- [ ] 创建 `crates/shared-logging`
+- [x] 创建 `crates/shared-logging`
   交付物：[../server-rs/crates/shared-logging/README.md](../server-rs/crates/shared-logging/README.md)
 - [x] 创建 `crates/platform-auth`
   交付物：[../server-rs/crates/platform-auth/README.md](../server-rs/crates/platform-auth/README.md)
@@ -161,7 +161,8 @@
 
 - [ ] 实现密码登录
 - [ ] 实现账号自动创建 / 幂等登录兼容策略
-- [ ] 实现 Bearer JWT 校验
+- [x] 实现 Bearer JWT 校验
+  交付物：[../docs/technical/PLATFORM_AUTH_JWT_ADAPTER_DESIGN_2026-04-21.md](../docs/technical/PLATFORM_AUTH_JWT_ADAPTER_DESIGN_2026-04-21.md)、[../server-rs/crates/platform-auth/src/lib.rs](../server-rs/crates/platform-auth/src/lib.rs)、[../server-rs/crates/api-server/src/auth.rs](../server-rs/crates/api-server/src/auth.rs)、[../server-rs/crates/api-server/src/app.rs](../server-rs/crates/api-server/src/app.rs)
 - [ ] 实现 refresh cookie 读取
 - [ ] 实现 refresh token 轮换
 - [ ] 实现会话吊销
@@ -195,7 +196,8 @@
   交付物：[../docs/technical/OIDC_JWT_CLAIMS_DESIGN_2026-04-21.md](../docs/technical/OIDC_JWT_CLAIMS_DESIGN_2026-04-21.md)
 - [x] 确认 `iss/sub/sid/provider/roles` 字段
   交付物：[../docs/technical/OIDC_JWT_CLAIMS_DESIGN_2026-04-21.md](../docs/technical/OIDC_JWT_CLAIMS_DESIGN_2026-04-21.md)
-- [ ] 让 Axum 自身可校验 JWT
+- [x] 让 Axum 自身可校验 JWT
+  交付物：[../docs/technical/PLATFORM_AUTH_JWT_ADAPTER_DESIGN_2026-04-21.md](../docs/technical/PLATFORM_AUTH_JWT_ADAPTER_DESIGN_2026-04-21.md)、[../server-rs/crates/platform-auth/README.md](../server-rs/crates/platform-auth/README.md)、[../server-rs/crates/api-server/src/auth.rs](../server-rs/crates/api-server/src/auth.rs)
 - [ ] 让 SpacetimeDB 可识别 Axum 签发的身份令牌
 - [ ] 验证 reducer / view 可读取用户身份上下文