fix: relax permission requirement on stock list api to unblock outbound operations

inventory-backend/app/api/v1/inbound/stock.py

@@ -2,6 +2,7 @@ from flask import Blueprint, jsonify, request, send_file
 from app.extensions import db, beijing_time
 # ★★★ 修复点：必须引入 datetime，否则下方更新时间时会报错 500 ★★★
 from datetime import datetime, timedelta
+from flask_jwt_extended import jwt_required
 from app.utils.decorators import permission_required
 import uuid as uuid_module
 import io
@@ -113,7 +114,7 @@ def get_stock_info(uuid_or_barcode):
 
 
 @bp.route('/all', methods=['GET'])
-@permission_required('inventory_stocktake')
+@jwt_required()
 def get_all_stock():
     """
     获取所有库存 > 0 的物品