feat(admin-roles): add HWID policy inheritance and update role terminology

- Update role terminology from "built-in role" to "owner role" in all locale files (en, fa, ru, zh)
- Add HWID policy configuration with inheritance support for admin roles
- Add new locale strings: inherit, hwidPolicy, hwidPolicyHint, hwidEnabledDescription
- Update admin role form to distinguish between protected and read-only roles
- Refactor admin role actions menu to use isReadOnlyRole instead of isProtectedRole
- Update admin role modal and form components to support HWID policy settings
- Add HWID policy field to admin role API schema and service layer
- Improve role permission UI to display HWID policy status alongside other role configurations

Author: x0sina

dashboard/public/statics/locales/en.json

@@ -746,7 +746,7 @@
     "createRole": "Create role",
     "editRole": "Edit role",
     "viewRole": "View role",
-    "readOnlyHint": "This is a built-in role. You can review its configuration but cannot modify it.",
+    "readOnlyHint": "This is the owner role. You can review its configuration but cannot modify it.",
     "modalDescription": "Configure permissions, limits, features and access for this role.",
     "currentRoleUnavailable": "Current role unavailable",
     "loadFallback": "Using built-in roles",
@@ -767,6 +767,10 @@
     "permissionCount": "{{count}} permissions",
     "limitFeatureCount": "{{limits}} limits, {{features}} feature flags",
     "unlimited": "Unlimited",
+    "inherit": "Inherit",
+    "hwidPolicy": "HWID policy",
+    "hwidPolicyHint": "When enabled, empty limits inherit the global HWID settings. Turn it off to disable HWID checks for admins with this role.",
+    "hwidEnabledDescription": "Apply HWID registration and limits to users created or modified by this role.",
     "empty": "No roles",
     "emptyDescription": "Create a role to assign granular permissions, limits, features, and access restrictions to admins.",
     "noSearchResults": "No roles match your search.",

dashboard/public/statics/locales/fa.json

@@ -613,7 +613,7 @@
     "createRole": "ایجاد نقش",
     "editRole": "ویرایش نقش",
     "viewRole": "مشاهده نقش",
-    "readOnlyHint": "این یک نقش داخلی است. می‌توانید پیکربندی آن را مشاهده کنید اما قابل ویرایش نیست.",
+    "readOnlyHint": "این نقش مالک است. می‌توانید پیکربندی آن را مشاهده کنید اما قابل ویرایش نیست.",
     "modalDescription": "مجوزها، محدودیت‌ها، قابلیت‌ها و دسترسی‌های این نقش را پیکربندی کنید.",
     "currentRoleUnavailable": "نقش فعلی در دسترس نیست",
     "loadFallback": "استفاده از نقش‌های داخلی",
@@ -634,6 +634,10 @@
     "permissionCount": "{{count}} مجوز",
     "limitFeatureCount": "{{limits}} محدودیت، {{features}} پرچم قابلیت",
     "unlimited": "نامحدود",
+    "inherit": "ارث‌بری",
+    "hwidPolicy": "سیاست HWID",
+    "hwidPolicyHint": "وقتی فعال باشد، محدودیت‌های خالی از تنظیمات سراسری HWID ارث‌بری می‌کنند. برای غیرفعال کردن بررسی HWID برای مدیران این نقش، آن را خاموش کنید.",
+    "hwidEnabledDescription": "ثبت HWID و محدودیت‌ها را برای کاربرانی که با این نقش ایجاد یا ویرایش می‌شوند اعمال می‌کند.",
     "empty": "نقشی وجود ندارد",
     "emptyDescription": "نقش جدیدی بسازید تا مجوزها، محدودیت‌ها، قابلیت‌ها و دسترسی‌های دقیق به مدیران اختصاص دهید.",
     "noSearchResults": "نقشی با جستجوی شما مطابقت ندارد.",

dashboard/public/statics/locales/ru.json

@@ -732,7 +732,7 @@
     "createRole": "Создать роль",
     "editRole": "Изменить роль",
     "viewRole": "Просмотр роли",
-    "readOnlyHint": "Это встроенная роль. Вы можете просмотреть её настройки, но не можете изменить.",
+    "readOnlyHint": "Это роль владельца. Вы можете просмотреть её настройки, но не можете изменить.",
     "modalDescription": "Настройте права, лимиты, функции и доступ для этой роли.",
     "currentRoleUnavailable": "Текущая роль недоступна",
     "loadFallback": "Используются встроенные роли",
@@ -753,6 +753,10 @@
     "permissionCount": "{{count}} прав",
     "limitFeatureCount": "{{limits}} лимитов, {{features}} флагов функций",
     "unlimited": "Без ограничений",
+    "inherit": "Наследовать",
+    "hwidPolicy": "Политика HWID",
+    "hwidPolicyHint": "Если включено, пустые лимиты наследуют глобальные настройки HWID. Отключите, чтобы выключить проверки HWID для администраторов с этой ролью.",
+    "hwidEnabledDescription": "Применять регистрацию HWID и лимиты к пользователям, созданным или измененным этой ролью.",
     "empty": "Ролей нет",
     "emptyDescription": "Создайте роль, чтобы назначать админам детальные права, лимиты, функции и ограничения доступа.",
     "noSearchResults": "Нет ролей по вашему запросу.",

dashboard/public/statics/locales/zh.json

@@ -746,7 +746,7 @@
     "createRole": "创建角色",
     "editRole": "编辑角色",
     "viewRole": "查看角色",
-    "readOnlyHint": "这是内置角色。您可以查看其配置，但无法修改。",
+    "readOnlyHint": "这是所有者角色。您可以查看其配置，但无法修改。",
     "modalDescription": "为此角色配置权限、限制、功能和访问。",
     "currentRoleUnavailable": "当前角色不可用",
     "loadFallback": "使用内置角色",
@@ -767,6 +767,10 @@
     "permissionCount": "{{count}} 项权限",
     "limitFeatureCount": "{{limits}} 个限制，{{features}} 个功能标记",
     "unlimited": "无限制",
+    "inherit": "继承",
+    "hwidPolicy": "HWID 策略",
+    "hwidPolicyHint": "启用后，空限制会继承全局 HWID 设置。关闭后，此角色的管理员将不进行 HWID 检查。",
+    "hwidEnabledDescription": "将 HWID 注册和限制应用于由此角色创建或修改的用户。",
     "empty": "暂无角色",
     "emptyDescription": "创建角色以为管理员分配精细的权限、限制、功能和访问限制。",
     "noSearchResults": "没有匹配的角色。",

dashboard/src/features/admin-roles/components/admin-role-actions-menu.tsx

@@ -12,7 +12,7 @@ import { cn } from '@/lib/utils'
 import { queryClient } from '@/utils/query-client'
 import { AdminRoleResponse, getGetRolesQueryKey, getGetRolesSimpleQueryKey, useDeleteRole } from '@/service/api'
 
-import { isProtectedRole } from '@/features/admin-roles/forms/admin-role-form'
+import { isProtectedRole, isReadOnlyRole } from '@/features/admin-roles/forms/admin-role-form'
 
 interface AdminRoleActionsMenuProps {
   role: AdminRoleResponse
@@ -26,6 +26,7 @@ export default function AdminRoleActionsMenu({ role, onEdit, className }: AdminR
   const [isDeleteDialogOpen, setDeleteDialogOpen] = useState(false)
   const deleteRole = useDeleteRole()
   const protectedRole = isProtectedRole(role)
+  const readOnlyRole = isReadOnlyRole(role)
 
   const handleDeleteClick = (event: Event) => {
     event.stopPropagation()
@@ -66,13 +67,13 @@ export default function AdminRoleActionsMenu({ role, onEdit, className }: AdminR
                 onEdit(role)
               }}
             >
-              {protectedRole ? (
+              {readOnlyRole ? (
                 <Eye className={cn('h-4 w-4 shrink-0', dir === 'rtl' ? 'ml-2' : 'mr-2')} />
               ) : (
                 <Pencil className={cn('h-4 w-4 shrink-0', dir === 'rtl' ? 'ml-2' : 'mr-2')} />
               )}
               <span className="min-w-0 truncate">
-                {protectedRole ? t('view', { defaultValue: 'View' }) : t('edit', { defaultValue: 'Edit' })}
+                {readOnlyRole ? t('view', { defaultValue: 'View' }) : t('edit', { defaultValue: 'Edit' })}
               </span>
             </DropdownMenuItem>
             <DropdownMenuSeparator />

dashboard/src/features/admin-roles/components/admin-roles-list.tsx

@@ -36,6 +36,7 @@ import {
   adminRoleFormFromResponse,
   adminRoleFormSchema,
   isProtectedRole,
+  isReadOnlyRole,
 } from '@/features/admin-roles/forms/admin-role-form'
 import AdminRoleCard from '@/features/admin-roles/components/admin-role-card'
 import { useAdminRolesListColumns } from '@/features/admin-roles/components/use-admin-roles-list-columns'
@@ -66,7 +67,7 @@ export default function AdminRolesList({ isDialogOpen, onOpenChange }: AdminRole
 
   const handleEdit = (role: AdminRoleResponse) => {
     setEditingRole(role)
-    setIsReadOnly(isProtectedRole(role))
+    setIsReadOnly(isReadOnlyRole(role))
     form.reset(adminRoleFormFromResponse(role))
     onOpenChange(true)
   }