feat: 提交后端其余改动

src/Infrastructure/TakeoutSaaS.Infrastructure/Common/Persistence/TenantAwareDbContext.cs

@@ -1,9 +1,11 @@
 using Microsoft.EntityFrameworkCore;
 using System.Reflection;
+using System.Linq;
 using TakeoutSaaS.Shared.Abstractions.Entities;
 using TakeoutSaaS.Shared.Abstractions.Ids;
 using TakeoutSaaS.Shared.Abstractions.Security;
 using TakeoutSaaS.Shared.Abstractions.Tenancy;
+using Microsoft.AspNetCore.Http;
 
 namespace TakeoutSaaS.Infrastructure.Common.Persistence;
 
@@ -14,9 +16,18 @@ public abstract class TenantAwareDbContext(
     DbContextOptions options,
     ITenantProvider tenantProvider,
     ICurrentUserAccessor? currentUserAccessor = null,
-    IIdGenerator? idGenerator = null) : AppDbContext(options, currentUserAccessor, idGenerator)
+    IIdGenerator? idGenerator = null,
+    IHttpContextAccessor? httpContextAccessor = null) : AppDbContext(options, currentUserAccessor, idGenerator)
 {
     private readonly ITenantProvider _tenantProvider = tenantProvider ?? throw new ArgumentNullException(nameof(tenantProvider));
+    private readonly IHttpContextAccessor? _httpContextAccessor = httpContextAccessor;
+    private static readonly string[] PlatformRoleCodes =
+    {
+        "super-admin",
+        "SUPER_ADMIN",
+        "PlatformAdmin",
+        "platform-admin"
+    };
 
     /// <summary>
     /// 当前请求租户 ID。
@@ -75,8 +86,22 @@ public abstract class TenantAwareDbContext(
         {
             if (entry.State == EntityState.Added && entry.Entity.TenantId == 0 && tenantId != 0)
             {
-                entry.Entity.TenantId = tenantId;
+                if (!IsPlatformAdmin())
+                {
+                    entry.Entity.TenantId = tenantId;
+                }
             }
         }
     }
+
+    private bool IsPlatformAdmin()
+    {
+        var user = _httpContextAccessor?.HttpContext?.User;
+        if (user?.Identity?.IsAuthenticated != true)
+        {
+            return false;
+        }
+
+        return PlatformRoleCodes.Any(user.IsInRole);
+    }
 }