feat: 新增租户管理端 TenantApi 并移除旧 API

2026-01-29 11:39:57 +00:00
parent 17dc73c61d
commit 86ef0d6033
60 changed files with 450 additions and 1368 deletions
--- a/src/Application/TakeoutSaaS.Application/Identity/Handlers/UpdateIdentityUserCommandHandler.cs
+++ b/src/Application/TakeoutSaaS.Application/Identity/Handlers/UpdateIdentityUserCommandHandler.cs
@@ -31,27 +31,24 @@ public sealed class UpdateIdentityUserCommandHandler(
    /// <inheritdoc />
    public async Task<UserDetailDto?> Handle(UpdateIdentityUserCommand request, CancellationToken cancellationToken)
    {
-        // 1. 获取操作者档案并判断权限
+        // 1. 获取当前租户与操作者档案
        var currentTenantId = tenantProvider.GetCurrentTenantId();
        var operatorProfile = await adminAuthService.GetProfileAsync(currentUserAccessor.UserId, cancellationToken);
-        var isSuperAdmin = IdentityUserAccess.IsSuperAdmin(operatorProfile);

-        // 2. 校验跨租户访问权限
-        if (!isSuperAdmin && request.TenantId.HasValue && request.TenantId.Value != currentTenantId)
+        // 2. 校验跨租户访问
+        if (request.TenantId.HasValue && request.TenantId.Value != currentTenantId)
        {
            throw new BusinessException(ErrorCodes.Forbidden, "禁止跨租户更新用户");
        }

        // 3. 获取用户实体
-        var user = isSuperAdmin
-            ? await identityUserRepository.GetForUpdateIgnoringTenantAsync(request.UserId, cancellationToken)
-            : await identityUserRepository.GetForUpdateAsync(request.UserId, cancellationToken);
+        var user = await identityUserRepository.GetForUpdateAsync(request.UserId, cancellationToken);
        if (user == null)
        {
            return null;
        }

-        if (!isSuperAdmin && user.TenantId != currentTenantId)
+        if (user.TenantId != currentTenantId)
        {
            return null;
        }