refactor(account): 统一账号管理API、完善权限检查和操作审计

- 合并 customer_account 和 shop_account 路由到统一的 account 接口
- 新增统一认证接口 (auth handler)
- 实现越权防护中间件和权限检查工具函数
- 新增操作审计日志模型和服务
- 更新数据库迁移 (版本 39: account_operation_log 表)
- 补充集成测试覆盖权限检查和审计日志场景

internal/routes/shop.go

@@ -45,51 +45,6 @@ func registerShopRoutes(router fiber.Router, handler *admin.ShopHandler, doc *op
 	})
 }
 
-func registerShopAccountRoutes(router fiber.Router, handler *admin.ShopAccountHandler, doc *openapi.Generator, basePath string) {
-	shopAccounts := router.Group("/shop-accounts")
-	groupPath := basePath + "/shop-accounts"
-
-	Register(shopAccounts, doc, groupPath, "GET", "", handler.List, RouteSpec{
-		Summary: "代理账号列表",
-		Tags:    []string{"代理账号管理"},
-		Input:   new(dto.ShopAccountListRequest),
-		Output:  new(dto.ShopAccountPageResult),
-		Auth:    true,
-	})
-
-	Register(shopAccounts, doc, groupPath, "POST", "", handler.Create, RouteSpec{
-		Summary: "创建代理账号",
-		Tags:    []string{"代理账号管理"},
-		Input:   new(dto.CreateShopAccountRequest),
-		Output:  new(dto.ShopAccountResponse),
-		Auth:    true,
-	})
-
-	Register(shopAccounts, doc, groupPath, "PUT", "/:id", handler.Update, RouteSpec{
-		Summary: "更新代理账号",
-		Tags:    []string{"代理账号管理"},
-		Input:   new(dto.UpdateShopAccountParams),
-		Output:  new(dto.ShopAccountResponse),
-		Auth:    true,
-	})
-
-	Register(shopAccounts, doc, groupPath, "PUT", "/:id/password", handler.UpdatePassword, RouteSpec{
-		Summary: "重置代理账号密码",
-		Tags:    []string{"代理账号管理"},
-		Input:   new(dto.UpdateShopAccountPasswordParams),
-		Output:  nil,
-		Auth:    true,
-	})
-
-	Register(shopAccounts, doc, groupPath, "PUT", "/:id/status", handler.UpdateStatus, RouteSpec{
-		Summary: "启用/禁用代理账号",
-		Tags:    []string{"代理账号管理"},
-		Input:   new(dto.UpdateShopAccountStatusParams),
-		Output:  nil,
-		Auth:    true,
-	})
-}
-
 func registerShopCommissionRoutes(router fiber.Router, handler *admin.ShopCommissionHandler, doc *openapi.Generator, basePath string) {
 	shops := router.Group("/shops")
 	groupPath := basePath + "/shops"