fix(tenant): correct import endpoint path in SecurityConfig

/api/private/migrate/import → /api/private/deployment/migrate/import
to match PrivateDeploymentController's @RequestMapping("/api/private/deployment")

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

tenant-service/src/main/java/com/xuqm/tenant/config/SecurityConfig.java

@@ -39,7 +39,7 @@ public class SecurityConfig {
                     "/api/internal/im/**",
                     "/api/private/deployment/status",
                     "/api/migrate/export",          // key-based auth, no JWT
-                    "/api/private/migrate/import",  // private deployment only, no JWT
+                    "/api/private/deployment/migrate/import",  // private deployment only, no JWT
                     "/actuator/health",
                     "/actuator/info"
                 ).permitAll()