feat: Airwallex 发卡管理后台完整实现

- 后端: FastAPI + SQLAlchemy + SQLite, JWT认证, 代理支持的AirwallexClient
- 前端: React 18 + Vite + Ant Design 5, 中文界面
- 功能: 卡片管理, 持卡人管理, 交易记录, API令牌, 系统设置, 审计日志
- 第三方API: X-API-Key认证, 权限控制
- Docker部署: docker-compose编排前后端

backend/app/routers/cardholders.py

@@ -0,0 +1,47 @@
+"""Cardholders management router."""
+import json
+
+from fastapi import APIRouter, Depends, HTTPException, Query, Request
+from sqlalchemy.orm import Session
+
+from app.auth import get_current_user, AdminUser
+from app.database import get_db
+from app.services import airwallex_service
+from app.services.audit_log import create_audit_log
+
+router = APIRouter(prefix="/api/cardholders", tags=["cardholders"])
+
+
+@router.get("")
+def list_cardholders(
+    page_num: int = Query(0, ge=0),
+    page_size: int = Query(20, ge=1, le=100),
+    db: Session = Depends(get_db),
+    user: AdminUser = Depends(get_current_user),
+):
+    """List cardholders."""
+    return airwallex_service.list_cardholders(db, page_num, page_size)
+
+
+@router.post("")
+def create_cardholder(
+    cardholder_data: dict,
+    request: Request,
+    db: Session = Depends(get_db),
+    user: AdminUser = Depends(get_current_user),
+):
+    """Create a new cardholder."""
+    try:
+        result = airwallex_service.create_cardholder(db, cardholder_data)
+        create_audit_log(
+            db,
+            action="create_cardholder",
+            resource_type="cardholder",
+            resource_id=result.get("cardholder_id", result.get("id", "")),
+            operator=user.username,
+            ip_address=request.client.host if request.client else "",
+            details=f"Created cardholder {cardholder_data.get('email', '')}",
+        )
+        return result
+    except Exception as e:
+        raise HTTPException(status_code=400, detail=str(e))