fix: allow super admin tenant-scoped role ops

src/Application/TakeoutSaaS.Application/Identity/Commands/BindRolePermissionsCommand.cs

@@ -8,5 +8,6 @@ namespace TakeoutSaaS.Application.Identity.Commands;
 public sealed record BindRolePermissionsCommand : IRequest<bool>
 {
     public long RoleId { get; init; }
+    public long? TenantId { get; init; }
     public long[] PermissionIds { get; init; } = Array.Empty<long>();
 }

src/Application/TakeoutSaaS.Application/Identity/Commands/CreateRoleCommand.cs

@@ -8,6 +8,11 @@ namespace TakeoutSaaS.Application.Identity.Commands;
 /// </summary>
 public sealed record CreateRoleCommand : IRequest<RoleDto>
 {
+    /// <summary>
+    /// 租户 ID（空则取当前上下文）。
+    /// </summary>
+    public long? TenantId { get; init; }
+
     public string Name { get; init; } = string.Empty;
     public string Code { get; init; } = string.Empty;
     public string? Description { get; init; }

src/Application/TakeoutSaaS.Application/Identity/Commands/DeleteRoleCommand.cs

@@ -8,4 +8,9 @@ namespace TakeoutSaaS.Application.Identity.Commands;
 public sealed record DeleteRoleCommand : IRequest<bool>
 {
     public long RoleId { get; init; }
+
+    /// <summary>
+    /// 租户 ID（空则取当前上下文）。
+    /// </summary>
+    public long? TenantId { get; init; }
 }

src/Application/TakeoutSaaS.Application/Identity/Commands/UpdateRoleCommand.cs

@@ -9,6 +9,12 @@ namespace TakeoutSaaS.Application.Identity.Commands;
 public sealed record UpdateRoleCommand : IRequest<RoleDto?>
 {
     public long RoleId { get; init; }
+
+    /// <summary>
+    /// 租户 ID（空则取当前上下文）。
+    /// </summary>
+    public long? TenantId { get; init; }
+
     public string Name { get; init; } = string.Empty;
     public string? Description { get; init; }
 }