refactor：拆分 API 路由与请求校验，统一 final 类和代码风格

app/Http/Controllers/Api/V1/Admin/User/AdminUserPermissionSyncController.php

@@ -2,27 +2,20 @@
 
 namespace App\Http\Controllers\Api\V1\Admin\User;
 
-use App\Http\Controllers\Controller;
 use App\Models\AdminUser;
-use App\Support\AdminPermissionBridge;
 use App\Support\ApiResponse;
 use Illuminate\Http\JsonResponse;
-use Illuminate\Http\Request;
 use Illuminate\Support\Facades\DB;
-use Illuminate\Validation\Rule;
+use App\Http\Controllers\Controller;
+use App\Support\AdminPermissionBridge;
+use App\Http\Requests\Admin\AdminUserPermissionSyncRequest;
 
 /** PUT /api/v1/admin/admin-users/{admin_user}/permissions */
 final class AdminUserPermissionSyncController extends Controller
 {
-    public function __invoke(Request $request, AdminUser $admin_user): JsonResponse
+    public function __invoke(AdminUserPermissionSyncRequest $request, AdminUser $admin_user): JsonResponse
     {
-        /** @var array{permission_slugs:list<string>} $data */
-        $data = validator($request->all(), [
-            'permission_slugs' => ['required', 'array'],
-            'permission_slugs.*' => ['string', 'max:128', 'distinct', Rule::in(AdminPermissionBridge::allLegacySlugs())],
-        ])->validate();
-
-        $slugs = array_values(array_unique($data['permission_slugs']));
+        $slugs = array_values(array_unique($request->validated('permissions')));
         $siteId = AdminUser::defaultAdminSiteId();
 
         $codes = [];