commit 014aca8619faf86020177519a9c340ad102993cf
Author: admin <572701190@qq.com>
Date:   Sat May 2 01:37:20 2026 +0800

    Initialize backendized SurClaw report system
    
    - Add React/Vite frontend for login, dashboard, reports, templates, users, settings, AI, speech, and media workflows.
    
    - Add NestJS/Prisma/PostgreSQL backend with auth, dashboard stats, reports, templates, users, departments, settings, files, AI, speech, audit logs, and HTML sanitization.
    
    - Add Prisma schema, migrations, seed data, persistent app sessions, Docker/Nginx deployment files, and upload volume configuration.
    
    - Add Vitest, Playwright, backend integration tests, and project documentation for requirements, design, permissions, API contracts, testing, deployment, security, and progress.
    
    - Configure production local fallback switch and remove unused Gemini direct dependency/env wiring.

diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 0000000..116b6ba
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1,11 @@
+node_modules
+dist
+server/dist
+coverage
+test-results
+playwright-report
+.git
+.env
+.env.*
+!.env.example
+*.log
diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..ec90097
--- /dev/null
+++ b/.env.example
@@ -0,0 +1,9 @@
+# Backend API development defaults.
+API_PORT=3000
+CORS_ORIGIN="http://localhost:3001"
+DATABASE_URL="postgresql://surclaw:surclaw_dev_password@localhost:5433/surclaw?schema=public"
+SESSION_SECRET="change-me-in-production"
+SESSION_COOKIE_SECURE="false"
+FILE_STORAGE_DIR="./uploads"
+VITE_API_PROXY_TARGET="http://localhost:3000"
+VITE_ENABLE_LOCAL_FALLBACK="true"
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..038eff0
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,11 @@
+node_modules/
+build/
+dist/
+server/dist/
+coverage/
+test-results/
+playwright-report/
+.DS_Store
+*.log
+.env*
+!.env.example
diff --git a/AGENTS.md b/AGENTS.md
new file mode 100644
index 0000000..e80852e
--- /dev/null
+++ b/AGENTS.md
@@ -0,0 +1,369 @@
+# AI 编码助手项目说明
+
+本文件面向 AI 编码助手。阅读者应假设对该项目一无所知。以下信息基于当前仓库实际文件、脚本和源码；不要把早期设计目标当作已实现事实。任何代码和功能修改都要落实到文档和测试上。如果生成 git commit 信息，要逐个列点把所有修改都列上，重要的、大的修改放前面，不重要的、小的修改列在后面。
+
+## 项目一句话
+
+这是一个“手术图文病历报告系统”。当前登录认证已接入 NestJS Session API、PostgreSQL 用户表和数据库 Session Store；工作台统计、报告、报告媒体、模板、字段库、模板图片资源、视频/关键帧文件、用户、部门权限、系统设置、签名文件、AI 对话和讯飞语音听写已优先接入后端 API/代理。开发模式仍保留本地兼容回退，不能把前端权限和本地缓存当作生产安全边界。
+
+## 当前技术栈
+
+- React 19
+- TypeScript 5.8
+- Vite 6
+- Tailwind CSS 4
+- React Router DOM 7
+- Lucide React
+- Vitest + jsdom + Testing Library
+- Playwright
+- NestJS + Prisma + PostgreSQL 后端骨架
+- Docker + Nginx
+
+## 运行脚本
+
+```bash
+npm install
+npm run dev      # Vite dev server, 0.0.0.0:3001
+npm run server:dev   # NestJS API dev server, 0.0.0.0:3000
+npm run server:build # tsc -p server/tsconfig.json
+npm run lint     # tsc --noEmit
+npm run test     # vitest run
+npm run test:e2e # playwright test
+npm run build    # vite build
+npm run prisma:generate
+npm run prisma:migrate
+npm run prisma:seed
+```
+
+修改代码后至少运行：
+
+```bash
+npm run lint
+npm run test
+```
+
+如果改动构建、依赖、路由、样式或部署相关内容，也运行：
+
+```bash
+npm run build
+```
+
+如果改动后端源码、Prisma schema、认证、权限或 API 契约，也运行：
+
+```bash
+npm run server:build
+npm run prisma:generate
+```
+
+后端化、权限或关键用户流程变更时也运行：
+
+```bash
+npm run test:e2e
+```
+
+## 默认账号
+
+| 用户ID | 密码 | 角色 |
+| --- | --- | --- |
+| `admin` | `123456` | 超级管理员 |
+| `manager` | `123456` | 管理员 |
+| `0001` | `123456` | 医生 |
+
+默认数据由 `src/pages/Login.tsx` 首次进入时初始化。
+
+## 主要业务脉络
+
+1. 用户进入 `/` 登录页。
+2. 登录页初始化默认用户、模板、字段、图片资源和系统设置。
+3. 登录页通过 `AuthContext` 调用后端 `/api/auth/login`，后端写入 HttpOnly Session Cookie。
+4. 登录成功后前端把后端安全用户 DTO 映射成兼容 `User`，写入 `localStorage.currentUser`，跳转到 `/dashboard`。
+5. `AuthProvider` 启动时通过 `/api/auth/me` 恢复会话；侧边栏优先读取 Auth Context，回退 `currentUser.role` 展示不同菜单。
+6. 报告编辑器使用模板 HTML 生成报告正文，通过 `data-bind` 字段把侧边表单和正文智能字段同步。
+7. 视频上传后使用浏览器 `<video>` 和 `<canvas>` 预览/抽帧，同时优先通过 `/api/files` 上传视频和关键帧文件，关键帧可插入报告图片占位符。
+8. AI 面板把消息和图片上下文发送到 `/api/ai/chat`，后端读取系统设置中的共用 OpenAI 兼容 Provider 并代理调用 `/chat/completions`，返回内容可注入 AI 可编辑区域。
+9. 语音听写把麦克风音频发送到 `/api/speech/iat` WebSocket，后端读取系统设置中的讯飞配置、生成鉴权 URL 并转发讯飞 IAT 结果。
+10. 报告保存优先调用 `POST/PATCH /api/reports`，后端保存到 PostgreSQL；仅开发/显式回退模式下 API 不可用时回退 `localStorage.reports`。
+11. 报告管理页优先调用 `GET /api/reports`，后端按角色过滤报告；前端支持搜索、筛选、历史恢复、打印和 JSON 导出。
+12. 模板管理页优先调用 `GET/POST/PATCH/DELETE /api/templates` 管理模板 HTML，调用 `/api/library/fields` 维护字段库，并通过 `/api/files` 上传模板图片资源。
+13. 用户管理页优先调用 `GET/PATCH /api/users` 等接口维护用户、角色、部门和模板授权；签名图片通过 `/api/users/:id/signature` 上传为后端文件资源。
+14. 系统设置页优先调用 `GET/PATCH /api/settings/system` 维护抽帧策略、默认模板、AI Provider 和讯飞语音配置。
+
+## 功能真实性判断
+
+详细清单见 `docs/features.md`。处理需求时应区分：
+
+- 真实可用：本地初始化、字段绑定、JSON 导出等。
+- 真实集成：后端 Session 登录、Dashboard API、报告 API、模板 API、用户/部门 API、设置 API、签名文件 API、AI 代理、讯飞语音代理、浏览器打印/PDF、视频抽帧。它们有真实代码路径，但依赖后端服务、浏览器能力、权限、有效密钥、网络或人工保存。
+- 前端演示：页面权限仍以体验控制为主，不能作为生产安全边界。
+
+## 当前安全边界
+
+本项目不能按生产安全系统理解：
+
+- 后端账号使用 Argon2 哈希；开发回退模式下 `localStorage.users` 仍保留兼容缓存和旧演示密码字段。
+- 权限判断在前端，不能抵御绕过。
+- 报告和模板 HTML 保存时已做服务端白名单清洗；前端仍使用 HTML 渲染，继续修改时要留意 XSS 和打印兼容。
+- AI Key 和讯飞语音密钥已由后端代理使用，普通用户读取系统设置时不会返回真实密钥。
+- 视频和关键帧文件已优先进入后端文件资源；报告保存时通过 `ReportMedia` 关系表关联，新建报告保存前仍依赖浏览器对象 URL 预览。
+- `VITE_ENABLE_LOCAL_FALLBACK` 控制生产构建是否允许本地兼容回退；开发模式默认允许，生产默认关闭。
+
+涉及生产化、后端化、用户化时，优先阅读 `docs/backendization-plan.md` 和 `docs/security.md`。
+
+## 文件结构
+
+```text
+.
+├── AGENTS.md                 # AI 编码助手上下文和协作约定
+├── README.md                 # 面向开发者的项目说明
+├── package.json              # 依赖与 npm scripts
+├── package-lock.json         # npm 锁文件
+├── prisma.config.ts          # Prisma 7 CLI 配置
+├── vite.config.ts            # Vite/Tailwind/React/Vitest 配置
+├── playwright.config.ts      # Playwright E2E 配置，默认复用/启动 3001 端口
+├── tsconfig.json             # TypeScript 配置
+├── index.html                # Vite HTML 入口
+├── e2e/
+│   ├── helpers.ts            # E2E localStorage 种子数据工具
+│   ├── login.spec.ts
+│   ├── report-permissions.spec.ts
+│   ├── report-revision.spec.ts
+│   └── personal-template.spec.ts
+├── public/
+│   ├── favicon.ico
+│   └── logo_square.png
+├── src/
+│   ├── App.tsx               # 路由表
+│   ├── main.tsx              # React 挂载入口
+│   ├── index.css             # 全局样式、Tailwind 主题和组件类
+│   ├── types.ts              # User/Report/Template/SystemSettings/FormField 等类型和默认配置
+│   ├── api/
+│   │   ├── client.ts         # 前端 API client，统一 envelope/错误/Cookie
+│   │   ├── dashboard.ts      # 工作台统计 API 封装
+│   │   ├── reports.ts        # 报告列表、详情、保存、删除 API 封装
+│   │   ├── templates.ts      # 模板列表、详情、保存、删除 API 封装
+│   │   ├── users.ts          # 用户、部门和模板授权 API 封装
+│   │   ├── settings.ts       # 系统设置 API 封装
+│   │   ├── files.ts          # 签名文件 API 封装
+│   │   ├── library.ts        # 字段库 API 封装
+│   │   ├── ai.ts             # AI 模型列表和对话代理 API 封装
+│   │   ├── speech.ts         # 讯飞语音 WebSocket 代理地址封装
+│   │   └── client.test.ts
+│   ├── auth/
+│   │   ├── AuthContext.tsx   # 登录态、login/logout/me、currentUser 兼容同步
+│   │   ├── backendUser.ts    # 后端安全用户 DTO 到前端 User 的映射
+│   │   └── backendUser.test.ts
+│   ├── config/
+│   │   └── runtime.ts        # 本地兼容回退开关
+│   ├── components/
+│   │   ├── Sidebar.tsx
+│   │   └── Sidebar.test.tsx
+│   ├── pages/
+│   │   ├── Login.tsx         # 登录和默认数据初始化
+│   │   ├── Dashboard.tsx     # 工作台统计和快捷入口
+│   │   ├── ReportEditor.tsx  # 核心报告编辑器、抽帧、AI、语音、保存
+│   │   ├── ReportManage.tsx  # 报告列表、筛选、历史、导出、删除
+│   │   ├── ReportView.tsx    # 报告查看和打印
+│   │   ├── TemplateManage.tsx# 模板、字段库、图片资源、导入导出
+│   │   ├── UserManage.tsx    # 用户、角色、部门、模板权限、签名
+│   │   ├── SystemSettings.tsx# 抽帧、AI、语音、默认模板设置
+│   │   ├── Login.test.tsx
+│   │   └── ReportManage.test.tsx
+│   ├── utils/
+│   │   ├── storage.ts        # localStorage/sessionStorage 封装
+│   │   ├── permissions.ts    # 前端角色/报告/模板可见性判断
+│   │   ├── defaultContent.ts # 默认手术记录 HTML 模板
+│   │   ├── print.ts          # iframe 打印工具
+│   │   ├── storage.test.ts
+│   │   ├── permissions.test.ts
+│   │   ├── defaultContent.test.ts
+│   │   └── print.test.ts
+│   └── test/
+│       └── setup.ts          # Vitest/jsdom 全局 mock
+├── server/
+│   ├── prisma/
+│   │   ├── schema.prisma     # PostgreSQL 数据模型
+│   │   └── seed.ts           # 默认医院、部门和账号 seed
+│   ├── src/
+│   │   ├── main.ts           # NestJS API 启动入口
+│   │   ├── app.module.ts
+│   │   ├── audit/            # 审计日志写入服务
+│   │   ├── auth/             # 登录、me、logout 接口
+│   │   ├── dashboard/        # 工作台统计 API
+│   │   ├── reports/          # 报告 API、DTO、metadata 映射和测试
+│   │   ├── templates/        # 模板 API、DTO、权限映射和测试
+│   │   ├── users/            # 用户、部门和模板授权 API、DTO 映射和测试
+│   │   ├── settings/         # 系统设置 API 和 schema 测试
+│   │   ├── files/            # 签名文件上传和受控读取 API
+│   │   ├── library/          # 字段库 API、schema 和测试
+│   │   ├── ai/               # OpenAI 兼容模型列表和对话代理 API
+│   │   ├── speech/           # 讯飞 IAT WebSocket 代理和帧处理测试
+│   │   ├── health/           # GET /api/health
+│   │   ├── permissions/      # 后端权限策略和测试
+│   │   ├── prisma/           # PrismaService
+│   │   └── session/          # express-session 的 Prisma Store
+│   └── tsconfig.json
+├── docs/
+│   ├── README.md
+│   ├── requirements.md
+│   ├── design.md
+│   ├── permissions.md
+│   ├── api-contract.md
+│   ├── features.md
+│   ├── testing.md
+│   ├── data-storage.md
+│   ├── deployment.md
+│   ├── security.md
+│   ├── progress.md
+│   ├── backendization-plan.md
+│   └── modules/
+│       ├── auth-and-users.md
+│       ├── report-editor.md
+│       ├── report-management.md
+│       ├── template-management.md
+│       └── system-settings.md
+├── Dockerfile
+├── Dockerfile.server
+├── docker-compose.yaml
+└── nginx.conf
+```
+
+`node_modules/`、`dist/` 是生成物或依赖目录，不应作为源码结构维护。
+
+## 关键源码说明
+
+### `src/types.ts`
+
+定义核心数据结构：
+
+- `User`
+- `Report`
+- `CapturedFrame`
+- `Template`
+- `SystemSettings`
+- `AiProviderConfig`
+- `XfSpeechConfig`
+- `FormField`
+
+也包含默认字段、默认 AI Provider 和默认讯飞配置。
+
+### `src/utils/storage.ts`
+
+封装浏览器存储。常规键使用 JSON；`systemSettings` 做 XOR + Base64 混淆并兼容历史明文 JSON。注意：这不是安全加密。
+
+### `src/utils/permissions.ts`
+
+集中封装当前前端权限判断。报告范围规则为：医生看本人报告，管理员看本部门报告，超级管理员和超时管理员看全部报告。模板范围规则为：超级管理员/超时管理员可见全部模板，医生和管理员可见本部门模板以及本人个人模板。
+
+### `src/utils/defaultContent.ts`
+
+默认报告模板 HTML。包含：
+
+- `.field-value[data-bind]` 智能字段
+- `.image-placeholder` 图片占位符
+- `.ai-region[data-ai-id]` AI 可编辑区域
+
+### `src/pages/ReportEditor.tsx`
+
+最大、最复杂的文件。包含：
+
+- 报告表单状态
+- `contentEditable` 富文本正文
+- 字段双向同步
+- 图片占位符填充
+- 视频上传、自动抽帧、手动截帧
+- AI 对话和 AI 区域改写
+- 讯飞语音听写
+- 草稿保存和恢复
+- 报告保存、完成、历史记录
+- 打印和导出
+
+修改它时要非常小心，优先补测试或文档说明。
+
+### `src/api/client.ts`
+
+统一前端 API 请求封装：
+
+- 默认请求相对路径 `/api/...`。
+- Vite 开发模式通过 `VITE_API_PROXY_TARGET` 代理 API，默认 `http://localhost:3000`。
+- 请求带 `credentials: 'include'`，用于后端 HttpOnly Session Cookie。
+- 解包后端 `{ data }` 响应，错误时抛出 `ApiError`。
+
+### `src/auth/AuthContext.tsx` 和 `src/auth/backendUser.ts`
+
+前端认证入口。`AuthProvider` 提供 `login`、`logout`、`refresh`，并在登录或恢复会话后把后端用户同步成当前前端 `User`：
+
+- 后端 `doctor` 映射为前端 `user`。
+- 后端 `departmentName` 映射为前端 `department`。
+- 保留本地签名等迁移期字段；模板授权优先来自后端部门权限。
+
+### `server/src`
+
+后端第一阶段骨架。当前已实现健康检查、认证接口、报告 API、报告媒体关系、模板 API、字段库 API、用户/部门 API、设置 API、通用文件/签名文件 API、AI 代理、讯飞语音代理、PrismaService 和权限策略；前端登录、报告、模板、字段库、模板图片资源、用户管理、系统设置、签名上传、AI 对话和语音听写已接入后端接口/代理。新增后端功能时优先按模块拆分：`auth`、`reports`、`templates`、`library`、`users`、`files`、`settings`、`ai`、`speech`。
+
+### `server/prisma/schema.prisma`
+
+PostgreSQL 数据模型。当前覆盖 `Tenant`、`Department`、`User`、`UserSession`、`AppSession`、`Report`、`ReportMedia`、`ReportHistory`、`Template`、模板部门授权、`FileResource`、`SystemSetting` 和 `AuditLog`。Prisma 7 连接配置在根目录 `prisma.config.ts` 中。
+
+## 数据存储键
+
+详见 `docs/data-storage.md`。常见键：
+
+- `currentUser`
+- `users`
+- `templates`
+- `reports`
+- `systemSettings`
+- `formFieldsConfig`
+- `imageAssets`
+- `customTimeFormats`
+- `multiSelectOptions`
+- `anesthesiaOptions`
+- `reportEditorDraft_${username}`
+- `sessionStorage.restore_${reportId}`
+
+## 测试现状
+
+当前测试覆盖：
+
+- 登录默认初始化和后端禁用账号错误展示
+- 前端 API client 响应/错误处理、Dashboard API 封装和语音代理地址生成
+- 后端用户 DTO 到前端兼容用户映射
+- 角色菜单过滤
+- 报告管理按角色过滤
+- 管理员本部门报告范围和医生本人报告范围
+- 模板可用范围，含部门模板和医生个人模板
+- Playwright E2E 覆盖登录、报告权限、报告修订版本和医生个人模板
+- 后端权限策略覆盖报告、模板、用户管理和管理员创建规则
+- 后端 Dashboard 统计按角色范围过滤
+- 后端报告 metadata 兼容映射和 `ReportMedia` 视频/关键帧组装
+- 后端模板 DTO 和权限资源映射
+- 后端用户 DTO 和部门模板授权映射
+- 后端系统设置 schema 校验
+- 后端 AI 入参和讯飞语音代理帧处理
+- 后端 HTTP 集成测试覆盖 API prefix、登录 session、受保护 API actor 传递
+- 后端真实 PostgreSQL 集成测试覆盖 Auth、Dashboard、Reports、ReportMedia、Templates、Files、HTML 清洗和审计核心服务
+- 存储封装
+- 默认模板结构和字段契约
+- 打印入口
+
+测试文档见 `docs/testing.md`。
+
+## 文档维护规则
+
+如果改动功能、数据结构、脚本、部署、安全边界或测试：
+
+- 更新对应 `docs/` 文档。
+- 如功能真实性变化，更新 `docs/features.md`。
+- 如后端化方向变化，更新 `docs/backendization-plan.md`。
+- 如新增/修改测试，更新 `docs/testing.md`。
+- 如运行方式、端口、账号、部署变化，更新 `README.md`。
+
+## 开发注意事项
+
+- 优先使用现有风格和现有工具，不要引入大框架替换，除非任务明确需要。
+- 不要把前端权限当作安全边界。
+- 不要继续扩大前端内置密钥的使用面。
+- 不要把大量 Base64 图片或视频数据长期作为生产方案。
+- 报告/模板 HTML 改动要考虑 XSS、打印样式、字段绑定和历史兼容。
+- 当前 `document.execCommand` 虽然过时，但编辑器依赖它；替换编辑器需要单独规划。
+- 生成物 `dist/` 和依赖目录 `node_modules/` 不要手工维护。
diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 0000000..a99ff75
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,14 @@
+# Build stage
+FROM node:20-alpine AS builder
+WORKDIR /app
+COPY package*.json ./
+RUN npm ci
+COPY . .
+RUN npm run build
+
+# Production stage
+FROM nginx:alpine
+COPY --from=builder /app/dist /usr/share/nginx/html
+COPY nginx.conf /etc/nginx/conf.d/default.conf
+EXPOSE 80
+CMD ["nginx", "-g", "daemon off;"]
diff --git a/Dockerfile.server b/Dockerfile.server
new file mode 100644
index 0000000..1af5c7f
--- /dev/null
+++ b/Dockerfile.server
@@ -0,0 +1,21 @@
+# Build stage
+FROM node:20-alpine AS builder
+WORKDIR /app
+COPY package*.json ./
+RUN npm ci
+COPY . .
+RUN npm run prisma:generate
+RUN npm run server:build
+
+# Production stage
+FROM node:20-alpine
+WORKDIR /app
+ENV NODE_ENV=production
+COPY package*.json ./
+RUN npm ci --omit=dev
+COPY --from=builder /app/server/dist ./server/dist
+COPY --from=builder /app/server/prisma ./server/prisma
+COPY --from=builder /app/prisma.config.ts ./prisma.config.ts
+COPY --from=builder /app/node_modules/.prisma ./node_modules/.prisma
+EXPOSE 3000
+CMD ["node", "server/dist/main.js"]
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..4602e85
--- /dev/null
+++ b/README.md
@@ -0,0 +1,257 @@
+# 手术图文病历报告系统
+
+手术图文病历报告系统是一个面向医院/科室场景的前端应用，用于撰写手术图文报告、管理报告模板、维护用户权限、从手术视频抽取关键帧，并通过 AI 辅助生成或改写报告内容。
+
+当前系统已开始后端化：登录认证已接入 NestJS Session API 和数据库 Session Store，工作台统计、报告、报告媒体、模板、字段库、模板图片资源、视频/关键帧文件、用户、部门权限、系统设置、签名文件、AI 对话和讯飞语音听写已优先接入后端 API/代理。开发模式仍保留 `localStorage` 兼容回退，生产构建默认关闭本地回退。
+
+## 功能概览
+
+- 登录和角色导航：后端 Session 登录，前端按超级管理员、管理员、医生三类角色展示入口。
+- 工作台：后端统计报告数量、用户数量、模板数量和近期报告趋势。
+- 图文报告生成：模板化报告正文、智能字段绑定、富文本编辑、图片占位符、报告草稿、完成报告。
+- 视频关键帧：本地预览视频、按百分比自动抽帧、手动截帧，视频和关键帧优先上传为后端文件资源后插入报告。
+- AI 辅助撰写：通过后端 `/api/ai/chat` 代理 OpenAI 兼容接口，对报告内容进行对话或指定区域改写。
+- 语音输入：通过后端 `/api/speech/iat` WebSocket 代理讯飞 IAT 听写，把识别文本写入 AI 输入框。
+- 报告管理：后端权限过滤的列表/详情/保存/删除，支持搜索、筛选、查看、编辑、历史恢复、打印、JSON 导出。
+- 模板管理：后端权限过滤的模板新增/编辑/删除，字段库和模板图片资源优先走后端 API，支持 AI 可编辑区域、导入导出。
+- 用户管理：后端用户/部门权限 API，支持用户、角色、部门、模板授权、账号状态和电子签名文件。
+- 系统设置：后端 Settings API，支持抽帧策略、默认模板、AI Provider、讯飞语音配置。
+
+更细的功能真实性判断见 [docs/features.md](./docs/features.md)。
+
+## 技术栈
+
+- React 19
+- TypeScript 5.8
+- Vite 6
+- Tailwind CSS 4
+- React Router DOM 7
+- Lucide React
+- Vitest + jsdom + Testing Library
+- Playwright
+- NestJS + Prisma + PostgreSQL 后端骨架
+- Docker + Nginx
+
+## 快速开始
+
+```bash
+npm install
+cp .env.example .env
+npm run prisma:generate
+npm run prisma:migrate
+npm run prisma:seed
+npm run server:dev
+npm run dev
+```
+
+开发服务默认监听：
+
+```text
+http://localhost:3001
+```
+
+`npm run dev` 实际使用 `vite --port=3001 --host=0.0.0.0`，局域网内也可以通过机器 IP 访问。
+开发模式下 Vite 会把 `/api` 代理到 `VITE_API_PROXY_TARGET`，默认是 `http://localhost:3000`。如果只启动 Docker Compose 中的 API，再用本机 Vite 前端调试，可把该变量改成 `http://localhost:3002`。
+
+后端 API 开发服务默认监听：
+
+```bash
+cp .env.example .env
+npm run prisma:generate
+npm run server:dev
+```
+
+```text
+http://localhost:3000/api/health
+```
+
+如果需要真实数据库，先启动 PostgreSQL 并配置 `DATABASE_URL`，再执行：
+
+```bash
+npm run prisma:migrate
+npm run prisma:seed
+```
+
+## 默认测试账号
+
+| 用户ID | 密码 | 角色 |
+| --- | --- | --- |
+| `admin` | `123456` | 超级管理员 |
+| `manager` | `123456` | 管理员 |
+| `0001` | `123456` | 医生 |
+
+开发模式下，默认数据会在首次进入登录页时初始化到浏览器 `localStorage`，用于离线回退和旧 E2E 基线。
+账号认证由后端 `POST /api/auth/login` 完成；登录成功后前端会同步一份 `currentUser` 到 `localStorage`，供迁移期页面继续读取角色、部门和模板权限。生产构建默认不通过本地缓存恢复登录态。
+
+## 常用命令
+
+```bash
+npm run dev      # 启动开发服务器，端口 3001
+npm run server:dev   # 启动 NestJS API，端口 3000
+npm run server:build # 构建后端 TypeScript
+npm run lint     # TypeScript 类型检查
+npm run test     # Vitest 测试
+npm run test:e2e # Playwright 端到端测试
+npm run build    # 生产构建
+npm run preview  # 预览构建产物
+npm run clean    # 删除 dist
+npm run prisma:generate # 生成 Prisma Client
+npm run prisma:migrate  # 执行 Prisma 开发迁移
+npm run prisma:seed     # 写入默认医院、部门和账号
+```
+
+建议提交前运行：
+
+```bash
+npm run lint
+npm run test
+npm run build
+```
+
+## 环境变量
+
+复制示例文件：
+
+```bash
+cp .env.example .env.local
+```
+
+当前环境变量：
+
+- `API_PORT`：NestJS API 监听端口，本地直接运行默认 `3000`；Docker Compose 暴露到宿主机的默认端口是 `3002`。
+- `CORS_ORIGIN`：允许携带 Cookie 访问 API 的前端来源。
+- `DATABASE_URL`：PostgreSQL 连接串。Docker Compose 暴露到宿主机的默认端口是 `5433`，容器内部仍使用 `db:5432`。
+- `SESSION_SECRET`：后端 Session Cookie 签名密钥，生产环境必须替换。
+- `SESSION_COOKIE_SECURE`：是否只通过 HTTPS 发送 Session Cookie。本地 HTTP/Compose 默认 `false`。
+- `FILE_STORAGE_DIR`：后端文件存储目录。Docker Compose 默认挂载到 `/app/uploads`。
+- `VITE_API_PROXY_TARGET`：Vite 开发服务器的 `/api` 代理目标。直接运行 `npm run server:dev` 时用 `http://localhost:3000`；连接 Docker Compose API 时用 `http://localhost:3002`。
+- `VITE_ENABLE_LOCAL_FALLBACK`：是否允许生产构建继续使用浏览器本地兼容回退。开发模式默认启用，生产默认关闭。
+
+注意：当前 AI/语音密钥由后端设置读取并在代理中使用，普通用户读取设置时不返回真实密钥。视频和关键帧文件已优先写入后端，报告内媒体引用通过 `ReportMedia` 关系表保存。
+
+## 项目结构
+
+```text
+.
+├── AGENTS.md                 # AI 编码助手项目上下文
+├── README.md                 # 项目入口说明
+├── package.json              # 依赖和脚本
+├── vite.config.ts            # Vite、React、Tailwind、Vitest 配置
+├── prisma.config.ts          # Prisma 7 CLI 配置
+├── playwright.config.ts      # Playwright E2E 配置
+├── tsconfig.json             # TypeScript 配置
+├── index.html                # Vite HTML 入口
+├── e2e/                      # Playwright 端到端测试
+├── public/                   # favicon、Logo 等静态资源
+├── src/
+│   ├── App.tsx               # 路由定义
+│   ├── main.tsx              # React 入口
+│   ├── index.css             # 全局样式和 Tailwind 主题
+│   ├── types.ts              # 核心类型和默认配置
+│   ├── components/           # 公共组件
+│   ├── pages/                # 页面模块
+│   ├── utils/                # 存储、打印、默认模板等工具
+│   └── test/                 # 测试初始化
+├── server/
+│   ├── prisma/               # Prisma schema 和 seed
+│   ├── src/                  # NestJS API 源码
+│   └── tsconfig.json         # 后端构建配置
+├── docs/                     # 需求、设计、功能盘点、测试、后端化方案等文档
+├── Dockerfile
+├── Dockerfile.server
+├── docker-compose.yaml
+└── nginx.conf
+```
+
+核心页面：
+
+- `src/pages/Login.tsx`：登录和默认数据初始化。
+- `src/pages/Dashboard.tsx`：工作台。
+- `src/pages/ReportEditor.tsx`：报告编辑器、抽帧、AI、语音、保存。
+- `src/pages/ReportManage.tsx`：报告列表、筛选、历史和导出。
+- `src/pages/ReportView.tsx`：报告查看和打印。
+- `src/pages/TemplateManage.tsx`：模板和字段库管理。
+- `src/pages/UserManage.tsx`：用户、角色、部门和模板权限。
+- `src/pages/SystemSettings.tsx`：抽帧、AI、语音和默认模板设置。
+
+## 文档
+
+- [docs/README.md](./docs/README.md)：文档入口。
+- [docs/requirements.md](./docs/requirements.md)：需求文档。
+- [docs/design.md](./docs/design.md)：设计文档。
+- [docs/features.md](./docs/features.md)：功能真实性盘点。
+- [docs/testing.md](./docs/testing.md)：测试文档。
+- [docs/data-storage.md](./docs/data-storage.md)：本地数据存储说明。
+- [docs/security.md](./docs/security.md)：安全边界和风险。
+- [docs/backendization-plan.md](./docs/backendization-plan.md)：后端化、用户化改造方案。
+
+## 测试
+
+当前测试使用 Vitest，已覆盖：
+
+- 登录页默认数据初始化和后端禁用账号错误展示。
+- API client、语音代理地址和后端用户映射。
+- 侧边栏角色菜单过滤。
+- 报告管理按角色过滤报告。
+- 本地存储封装和系统设置兼容。
+- 默认报告模板结构和字段配置。
+- 打印导出入口。
+- 后端权限策略、AI 入参和语音代理帧处理。
+
+运行：
+
+```bash
+npm run test
+```
+
+更多说明见 [docs/testing.md](./docs/testing.md)。
+
+## Docker 部署
+
+项目内置静态部署配置：
+
+```bash
+docker-compose up -d --build
+```
+
+默认访问：
+
+```text
+前端: http://localhost:4002
+API:  http://localhost:3002/api/health
+数据库: localhost:5433
+```
+
+停止：
+
+```bash
+docker-compose down
+```
+
+部署说明：
+
+- `web` 服务使用 Nginx 托管前端 `dist/`。
+- `api` 服务运行 NestJS 后端，并把上传文件目录挂载到 `uploads_data` volume。
+- `db` 服务运行 PostgreSQL 16。
+- `nginx.conf` 已配置 SPA 路由回退和 `/api` 反向代理。
+- `nginx.conf` 已支持 `/api/speech/iat` WebSocket upgrade。
+
+## 当前限制
+
+- 前端登录、工作台统计、报告读写、报告媒体引用、模板读写、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置、签名文件、AI 对话和语音听写已接入真实后端 Session/API/代理。
+- 当前后端已有认证、数据库 Session、健康检查、Dashboard API、报告 API、模板 API、字段库 API、通用文件 API、用户/部门 API、设置 API、签名文件 API、AI 代理、语音代理、权限策略、HTML 清洗、审计日志和数据模型。
+- 后端账号使用 Argon2 哈希；开发模式前端仍会初始化 `localStorage.users`，其中保留演示密码字段供旧页面兼容。
+- 权限判断主要在前端，不能作为生产安全边界。
+- 报告和模板 HTML 保存时已做服务端白名单清洗，但渲染仍使用 HTML，需要继续做安全评审。
+- AI Key 和讯飞语音密钥已由后端代理使用；普通用户读取设置时不会拿到真实密钥。
+- 视频和关键帧已优先上传后端文件资源，报告保存时通过 `ReportMedia` 关系表关联；新建报告保存前仍依赖本地预览对象。
+
+生产化方向见 [docs/backendization-plan.md](./docs/backendization-plan.md)。
+
+## 后续方向
+
+项目下一阶段建议后端化和用户化：
+
+- 继续增强报告媒体模型，例如断点续传、转码、后端抽帧和独立媒体审计。
+- 查看日志、第三方代理调用摘要、错误追踪和更细粒度操作审计。报告导出按权限控制，不要求专门导出审计。
+- 后端 PDF/JSON 导出、对象存储、限流和备份恢复。
diff --git a/docker-compose.yaml b/docker-compose.yaml
new file mode 100644
index 0000000..e2665a1
--- /dev/null
+++ b/docker-compose.yaml
@@ -0,0 +1,48 @@
+services:
+  db:
+    image: postgres:16-alpine
+    container_name: tuwen_db
+    restart: unless-stopped
+    environment:
+      POSTGRES_DB: surclaw
+      POSTGRES_USER: surclaw
+      POSTGRES_PASSWORD: surclaw_dev_password
+    ports:
+      - "5433:5432"
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+
+  api:
+    build:
+      context: .
+      dockerfile: Dockerfile.server
+    container_name: tuwen_api
+    restart: unless-stopped
+    environment:
+      API_PORT: 3000
+      CORS_ORIGIN: http://localhost:4002,http://localhost:3001
+      DATABASE_URL: postgresql://surclaw:surclaw_dev_password@db:5432/surclaw?schema=public
+      SESSION_SECRET: change-me-in-production
+      SESSION_COOKIE_SECURE: "false"
+      FILE_STORAGE_DIR: /app/uploads
+    ports:
+      - "3002:3000"
+    depends_on:
+      - db
+    volumes:
+      - uploads_data:/app/uploads
+
+  web:
+    build:
+      context: .
+      dockerfile: Dockerfile
+    container_name: tuwen_web
+    restart: unless-stopped
+    ports:
+      - "4002:80"
+    depends_on:
+      - api
+
+volumes:
+  postgres_data:
+  uploads_data:
diff --git a/docs/README.md b/docs/README.md
new file mode 100644
index 0000000..1bc3796
--- /dev/null
+++ b/docs/README.md
@@ -0,0 +1,34 @@
+# 项目文档入口
+
+本文档目录基于当前仓库源码整理，目标是帮助新接手者快速理解系统边界、核心流程和后续维护重点。本文档只描述已经在代码中能看到的事实；规划项会明确标为待办。
+
+## 文档结构
+
+- [需求文档](./requirements.md)：业务目标、用户角色、功能需求和非功能约束。
+- [设计文档](./design.md)：前端架构、路由、状态、数据模型和关键设计取舍。
+- [权限设计](./permissions.md)：已确定的角色、部门、报告、模板和 AI 上下文权限规则。
+- [进度文档](./progress.md)：当前完成度、已知风险和下一步建议。
+- [功能盘点](./features.md)：逐项区分真实可用、外部真实集成、前端演示和预留功能。
+- [测试文档](./testing.md)：测试命令、覆盖范围和待补端到端测试。
+- [API 契约草案](./api-contract.md)：后端化前的接口语义、权限过滤和响应格式约定。
+- [后端化与用户化改造方案](./backendization-plan.md)：前后端拆分、数据模型、API、权限、安全和迁移阶段。
+- [数据与存储](./data-storage.md)：`localStorage` / `sessionStorage` 键、数据生命周期和迁移点。
+- [部署运行](./deployment.md)：本地开发、后端 API、构建、Docker Compose 和 Nginx 部署方式。
+- [安全说明](./security.md)：当前安全边界、敏感信息风险和生产化建议。
+
+## 模块文档
+
+- [认证与用户权限](./modules/auth-and-users.md)
+- [报告编辑器](./modules/report-editor.md)
+- [报告管理与查看](./modules/report-management.md)
+- [模板管理](./modules/template-management.md)
+- [系统设置](./modules/system-settings.md)
+
+## 快速事实
+
+- 技术栈：React 19、TypeScript、Vite 6、Tailwind CSS 4、React Router DOM 7、NestJS、Prisma、PostgreSQL。
+- 应用类型：前端 SPA + NestJS API。登录、报告、模板、用户管理、部门模板授权、系统设置和签名文件已接入后端，其余主业务页面仍处于迁移期。
+- 数据层：认证用户、报告、报告媒体关系、模板、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置和签名文件来自 PostgreSQL/后端文件目录。
+- 本地开发端口：前端 `3001`，后端 API `3000`；Docker Compose 暴露 API 到宿主机 `3002`。
+- 默认账号：`admin / 123456`、`manager / 123456`、`0001 / 123456`。
+- 核心代码目录：`src/pages`、`src/components`、`src/utils`、`src/types.ts`。
diff --git a/docs/api-contract.md b/docs/api-contract.md
new file mode 100644
index 0000000..1444546
--- /dev/null
+++ b/docs/api-contract.md
@@ -0,0 +1,660 @@
+# API 契约草案
+
+本文档定义后端化时的接口语义和权限边界。当前项目已实现认证、报告、模板、用户/部门、设置和签名文件接口，其余接口仍用于指导后续后端化。
+
+当前后端骨架已实现：
+
+- `GET /api/health`
+- `POST /api/auth/login`
+- `GET /api/auth/me`
+- `POST /api/auth/logout`
+- `GET /api/reports`
+- `POST /api/reports`
+- `GET /api/reports/:id`
+- `PATCH /api/reports/:id`
+- `DELETE /api/reports/:id`
+- `GET /api/templates`
+- `POST /api/templates`
+- `GET /api/templates/:id`
+- `PATCH /api/templates/:id`
+- `DELETE /api/templates/:id`
+- `GET /api/users`
+- `POST /api/users`
+- `GET /api/users/:id`
+- `PATCH /api/users/:id`
+- `DELETE /api/users/:id`
+- `GET /api/departments`
+- `POST /api/departments`
+- `PATCH /api/departments/:id`
+- `DELETE /api/departments/:id`
+- `PATCH /api/departments/:id/template-permissions`
+- `GET /api/settings/system`
+- `PATCH /api/settings/system`
+- `POST /api/settings/system/reset`
+- `POST /api/users/:id/signature`
+- `DELETE /api/users/:id/signature`
+- `GET /api/files/:id/content`
+- `GET /api/ai/models`
+- `POST /api/ai/chat`
+- `GET /api/speech/iat` WebSocket
+- `GET /api/library/fields`
+- `PATCH /api/library/fields`
+- `GET /api/files`
+- `POST /api/files`
+- `DELETE /api/files/:id`
+
+报告媒体关系表、数据库 Session 和第一版审计日志已实现；查看日志、第三方调用摘要和后端导出接口仍是后续项。
+
+## 通用约定
+
+### Base URL
+
+```text
+/api
+```
+
+### 认证
+
+建议使用短期 Access Token + HttpOnly Refresh Cookie，或完整 HttpOnly Session Cookie。前端不应保存密码、完整用户列表或第三方服务密钥。
+
+### 响应格式
+
+成功：
+
+```json
+{
+  "data": {},
+  "requestId": "req_xxx"
+}
+```
+
+失败：
+
+```json
+{
+  "error": {
+    "code": "FORBIDDEN",
+    "message": "无权访问该资源"
+  },
+  "requestId": "req_xxx"
+}
+```
+
+### 常用状态码
+
+| 状态码 | 含义 |
+| --- | --- |
+| `200` | 请求成功。 |
+| `201` | 创建成功。 |
+| `204` | 删除或无响应体操作成功。 |
+| `400` | 请求参数错误。 |
+| `401` | 未登录或登录态失效。 |
+| `403` | 已登录但无权限。 |
+| `404` | 资源不存在，或当前用户无权感知该资源。 |
+| `409` | 唯一约束或状态冲突。 |
+| `422` | 业务校验失败。 |
+
+## 核心类型
+
+### User
+
+```ts
+type UserRole = 'super' | 'admin' | 'doctor';
+
+interface UserDTO {
+  id: string;
+  username: string;
+  role: UserRole;
+  name: string;
+  departmentId: string;
+  departmentName?: string;
+  department?: string;
+  status: 'active' | 'inactive';
+  phone?: string;
+  email?: string;
+  signatureFileId?: string;
+  signature?: string;
+  visibleTemplates?: string[];
+  manageableTemplates?: string[];
+  createdAt: string;
+  updatedAt: string;
+}
+```
+
+后端不得返回 `password_hash`。
+
+### Report
+
+```ts
+interface ReportDTO {
+  id: string;
+  title: string;
+  patientName: string;
+  hospitalId: string;
+  departmentId: string;
+  departmentName: string;
+  authorId: string;
+  authorName: string;
+  status: 'draft' | 'completed';
+  revision: number;
+  content: string;
+  videos?: Array<{
+    id: string;
+    name: string;
+    url: string;
+    duration: number;
+    fileId?: string;
+  }>;
+  capturedFrames?: Array<{
+    id: number;
+    videoIndex: number;
+    videoName: string;
+    time: number;
+    timeFormatted: string;
+    dataUrl: string;
+    fileId?: string;
+  }>;
+  createdAt: string;
+  updatedAt: string;
+}
+```
+
+已完成报告再次修改时，后端必须递增 `revision` 并创建历史版本。`videos` 和 `capturedFrames` 是前端兼容 DTO 字段，后端持久化到 `ReportMedia` 并关联 `FileResource`。
+
+### Template
+
+```ts
+interface TemplateDTO {
+  id: string;
+  name: string;
+  description?: string;
+  scope: 'department' | 'personal';
+  departmentId?: string;
+  ownerUserId?: string;
+  content: string;
+  fields: FormFieldDTO[];
+  canUse: boolean;
+  canManage: boolean;
+  createdAt: string;
+  updatedAt: string;
+}
+```
+
+医生个人模板必须只对本人可见和可用。
+
+## Auth API
+
+### `POST /api/auth/login`
+
+请求：
+
+```json
+{
+  "username": "0001",
+  "password": "123456"
+}
+```
+
+响应：
+
+```json
+{
+  "data": {
+    "user": {
+      "id": "usr_0001",
+      "username": "0001",
+      "role": "doctor",
+      "name": "张医生",
+      "departmentId": "dept_surgery",
+      "departmentName": "外科",
+      "status": "active"
+    }
+  }
+}
+```
+
+规则：
+
+- 禁用用户返回 `403 FORBIDDEN`。
+- 用户名或密码错误返回 `401 UNAUTHORIZED`。
+- 前端通过 HttpOnly Session Cookie 维持登录态，不保存 access token。
+
+### `GET /api/auth/me`
+
+返回当前登录用户。前端启动后用它恢复登录态，并把后端 `doctor` 角色映射为当前前端兼容类型 `user`。
+
+### `POST /api/auth/logout`
+
+清除服务端会话或 refresh cookie。
+
+## Reports API
+
+### `GET /api/reports`
+
+查询参数：
+
+```text
+q?: string
+status?: draft | completed
+dateRange?: today | week | month
+page?: number
+pageSize?: number
+```
+
+权限过滤：
+
+- 超级管理员：返回全部报告。
+- 管理员：只返回本部门报告。
+- 医生：只返回本人报告。
+
+响应：
+
+```json
+{
+  "data": {
+    "items": [],
+    "total": 0,
+    "page": 1,
+    "pageSize": 20
+  }
+}
+```
+
+### `POST /api/reports`
+
+创建报告。后端写入 `authorId`、`departmentId`、`revision = 1`。
+当前实现接收前端兼容 Report 对象，核心字段进入 `Report` 表，视频/关键帧引用进入 `ReportMedia` 表，其他扩展字段进入 `metadata`。
+
+### `GET /api/reports/:id`
+
+权限：
+
+- 超级管理员可读所有报告。
+- 管理员可读本部门报告。
+- 医生可读本人报告。
+
+无权限当前返回 `403`。
+
+### `PATCH /api/reports/:id`
+
+规则：
+
+- 超级管理员可编辑任何报告。
+- 管理员可编辑本部门报告。
+- 医生可编辑本人报告。
+- 如果原报告状态为 `completed`，每次保存递增 `revision`。
+- 每次保存创建历史版本。
+
+### `POST /api/reports/:id/complete`
+
+把报告标记为完成。完成前必须校验患者姓名、住院号等必填字段。
+当前实现暂未单独开放该接口，前端通过 `PATCH /api/reports/:id` 传入 `status = completed` 完成报告。
+
+### `DELETE /api/reports/:id`
+
+规则：
+
+- 超级管理员可删除全部报告。
+- 管理员可删除本部门报告。
+- 医生可删除本人报告，包括已完成报告。
+
+建议先做软删除。
+当前实现已做软删除，写入 `deletedAt` 和 `deletedBy`。
+
+### `GET /api/reports/:id/history`
+
+返回报告历史版本：
+
+```json
+{
+  "data": [
+    {
+      "id": "hist_1",
+      "revision": 1,
+      "content": "<p>旧内容</p>",
+      "updatedBy": "张医生",
+      "updatedAt": "2026-05-01T08:00:00.000Z",
+      "action": "complete_report"
+    }
+  ]
+}
+```
+
+### `GET /api/reports/:id/export.json`
+
+返回结构化报告 JSON。权限与查看报告一致。当前确定不需要水印、导出原因、审批或专门导出审计；现阶段仍主要由前端 Blob 导出。
+
+## Templates API
+
+### `GET /api/templates`
+
+权限过滤：
+
+- 超级管理员：全部模板。
+- 管理员：本部门模板和被授权模板。
+- 医生：本部门授权模板和自己的个人模板。
+
+当前实现支持查询参数 `access=use | manage`，分别返回当前用户可使用或可管理的模板。
+
+### `POST /api/templates`
+
+创建模板。
+
+规则：
+
+- 超级管理员可创建部门模板并授权给部门。
+- 管理员可创建或修改本部门模板。
+- 医生只能创建个人模板，`scope` 必须为 `personal`，`ownerUserId` 必须是本人。
+
+当前实现由后端根据 Session 用户写入归属部门或归属用户；前端不能伪造 `ownerUserId`。
+
+### `PATCH /api/templates/:id`
+
+规则：
+
+- 超级管理员可编辑任何模板。
+- 管理员可编辑本部门模板。
+- 医生只能编辑自己的个人模板。
+
+### `DELETE /api/templates/:id`
+
+规则同编辑模板。删除部门模板时需确认是否已有报告引用；建议软删除。
+当前实现会先把引用该模板的报告 `templateId` 置空，再删除模板。
+
+### `POST /api/templates/:id/copy`
+
+医生复制部门模板为个人模板。
+
+请求：
+
+```json
+{
+  "name": "我的腹腔镜模板"
+}
+```
+
+响应返回新的 `TemplateDTO`，`scope = personal`。
+
+## Users API
+
+### `GET /api/users`
+
+权限：
+
+- 超级管理员：全部用户。
+- 管理员：自己和本部门医生。
+- 医生：只返回自己。
+
+当前实现返回前端兼容 `User` 结构，其中后端 `doctor` 会映射为前端历史角色 `user`，并带上由部门模板授权计算出来的 `visibleTemplates/manageableTemplates`。
+
+### `POST /api/users`
+
+规则：
+
+- 只有超级管理员可创建管理员。
+- 一个部门只能有一个管理员，冲突返回 `409`。
+- 管理员只能创建本部门医生。
+- 创建医生前，该部门必须已有启用管理员。
+- 后端使用 Argon2 保存密码哈希，不返回明文密码。
+
+### `PATCH /api/users/:id`
+
+规则：
+
+- 超级管理员可改任何用户。
+- 管理员可改本部门医生的基础信息、密码和状态。
+- 医生只能改自己的基础资料。
+- 只有超级管理员可修改角色、部门和管理员模板授权。
+
+### `DELETE /api/users/:id`
+
+规则：
+
+- 禁止删除当前登录用户。
+- 禁止删除默认超级管理员 `admin`。
+- 有报告、模板、审计等业务关联时返回 `409`，建议改为禁用账号。
+
+## Departments API
+
+### `GET /api/departments`
+
+权限：
+
+- 超级管理员：全部部门。
+- 管理员和医生：本人所在部门。
+
+### `POST /api/departments`
+
+只有超级管理员可创建部门。
+
+### `PATCH /api/departments/:id`
+
+只有超级管理员可修改部门名称或编码。
+
+### `DELETE /api/departments/:id`
+
+只有超级管理员可删除无业务关联的部门；不能删除当前登录用户所在部门。
+
+### `PATCH /api/departments/:id/template-permissions`
+
+请求：
+
+```json
+{
+  "visibleTemplates": ["tpl_a"],
+  "manageableTemplates": ["tpl_b"]
+}
+```
+
+规则：
+
+- 只有超级管理员可维护部门模板授权。
+- `manageableTemplates` 会自动包含使用权。
+- 后端写入 `template_department_permissions.canUse/canManage`。
+
+## Settings API
+
+### `GET /api/settings/system`
+
+返回当前用户可用的系统设置。当前实现会合并全局设置和个人默认模板，并返回前端兼容 `SystemSettings` 对象。
+
+注意：AI 对话和讯飞语音均已改为后端代理。普通用户读取设置时不返回 AI Key、讯飞 APIKey 或讯飞 APISecret；超级管理员仍可在设置页维护全局共用 Provider Key 和语音配置。
+
+### `PATCH /api/settings/system`
+
+规则：
+
+- 超级管理员可修改全局设置、AI Provider、语音配置。
+- 医生可修改个人默认模板。
+- 管理员可修改个人默认模板。
+- 非超级管理员提交的其他字段会被忽略或拒绝，只保留个人默认模板。
+
+### `POST /api/settings/system/reset`
+
+只有超级管理员可重置全局系统设置。
+
+## Signature Files API
+
+### `POST /api/users/:id/signature`
+
+请求：
+
+```json
+{
+  "dataUrl": "data:image/jpeg;base64,...",
+  "filename": "signature.jpg"
+}
+```
+
+规则：
+
+- 用户本人、本部门管理员、超级管理员可上传或替换签名。
+- 当前支持 JPG、PNG、WebP，大小限制 1MB。
+- 后端写入 `FileResource.kind = SIGNATURE`，并把 `User.signatureFileId` 指向新文件。
+
+响应：
+
+```json
+{
+  "data": {
+    "file": {
+      "id": "file_xxx",
+      "url": "/api/files/file_xxx/content",
+      "mimeType": "image/jpeg",
+      "size": 12345
+    }
+  }
+}
+```
+
+### `DELETE /api/users/:id/signature`
+
+清除用户签名并删除后端文件资源。权限同上传。
+
+### `GET /api/files/:id/content`
+
+返回文件二进制内容。当前已实现签名文件读取权限：
+
+- 本人可读自己的签名。
+- 本部门管理员可读本部门用户签名。
+- 超级管理员可读全部签名。
+- 报告相关文件预留继承报告权限。
+
+## AI API
+
+### `GET /api/ai/models`
+
+后端读取全局共用 AI Provider 配置，请求 OpenAI 兼容 `/models` 并返回模型 ID 列表。前端“测试连接”使用该接口，不再直接携带 API Key 请求第三方服务。
+
+### `POST /api/ai/chat`
+
+规则：
+
+- 后端托管第三方模型密钥。
+- 请求上下文只能包含当前报告内容和当前报告内用户有权访问的图片/关键帧。
+- 不允许跨部门检索报告作为上下文。
+- 当前实现接收 OpenAI 兼容 `messages`、温度等参数，后端会用全局 Provider 的 `modelName` 覆盖请求中的 `model`，所有用户共用同一套 key。
+
+## Speech API
+
+### `GET /api/speech/iat` WebSocket
+
+浏览器通过当前登录 Session Cookie 发起 WebSocket upgrade。后端使用同一套 Session 中间件校验登录态，读取 Settings API 中的 `xfSpeechConfig`，连接讯飞 IAT WebSocket 并转发音频帧和识别结果。
+
+客户端发送的首帧只需要包含音频 `data`：
+
+```json
+{
+  "data": {
+    "status": 0,
+    "format": "audio/L16;rate=16000",
+    "encoding": "raw",
+    "audio": "base64-pcm"
+  }
+}
+```
+
+后端会在首帧补齐：
+
+```json
+{
+  "common": { "app_id": "server-side-app-id" },
+  "business": { "language": "zh_cn", "domain": "iat", "accent": "mandarin" }
+}
+```
+
+规则：
+
+- 未登录的 upgrade 返回 `401`。
+- 未配置 APPID/APIKey/APISecret 时，代理向客户端返回错误消息并关闭连接。
+- 前端不得保存或拼接讯飞鉴权 URL。
+- 上游讯飞返回的识别消息原样转发给客户端。
+
+## Files API
+
+### `GET /api/files`
+
+查询参数：
+
+```text
+kind?: TEMPLATE_ASSET | VIDEO | FRAME | REPORT_EXPORT
+```
+
+返回当前租户内可读文件。`TEMPLATE_ASSET` 当前作为模板图片资源，登录用户可读取。
+
+### `POST /api/files`
+
+通用文件上传接口。当前已用于模板图片资源、视频和关键帧，后续继续承载报告图片和导出文件。
+
+请求：
+
+```json
+{
+  "kind": "TEMPLATE_ASSET",
+  "filename": "logo.png",
+  "dataUrl": "data:image/png;base64,...",
+  "reportId": "optional_report_id"
+}
+```
+
+返回：
+
+```json
+{
+  "data": {
+    "file": {
+      "id": "file_xxx",
+      "filename": "logo.png",
+      "mimeType": "image/png",
+      "size": 1234,
+      "url": "/api/files/file_xxx/content",
+      "createdAt": "2026-05-02T00:00:00.000Z"
+    }
+  }
+}
+```
+
+### `DELETE /api/files/:id`
+
+删除当前用户可管理的文件。超级管理员可删全部，同 owner 可删自己的文件，管理员可删除模板图片资源。
+
+## Library API
+
+### `GET /api/library/fields`
+
+返回字段库：
+
+```ts
+interface FieldLibraryDTO {
+  formFields: FormField[];
+  customTimeFormats: string[];
+  multiSelectOptions: Record<string, string[]>;
+  anesthesiaOptions: string[];
+}
+```
+
+### `PATCH /api/library/fields`
+
+保存字段库。当前第一版保存为租户全局 `SystemSetting.key = fieldLibrary`，前端仍会同步本地兼容缓存。
+
+文件权限继承业务对象：
+
+- 报告文件继承报告权限。
+- 模板图片资源当前登录用户可读取，删除权限限制为超级管理员、管理员或 owner。
+- 签名文件已先行通过 `POST /api/users/:id/signature` 实现。
+
+## 后续测试落点
+
+后端骨架建立后，应把本文档转为真实测试：
+
+- Auth/HTTP 集成测试。
+- RBAC policy 单元测试。
+- Reports API 按角色过滤测试。
+- Report revision 递增测试。
+- Templates API 部门模板和个人模板测试。
+- Settings API 保存和默认模板测试。
+- Signature Files API 上传和读取权限测试。
+- Library API 字段库保存测试。
+- Generic Files API 上传、列表和删除测试。
+- AI 代理上下文隔离测试。
+- Speech WebSocket 未登录拒绝、首帧注入和上游错误转发测试。
diff --git a/docs/backendization-plan.md b/docs/backendization-plan.md
new file mode 100644
index 0000000..dd7665c
--- /dev/null
+++ b/docs/backendization-plan.md
@@ -0,0 +1,461 @@
+# 后端化与用户化改造方案
+
+本文基于当前迁移期版本整理需要改动的范围。当前系统已完成主业务后端化，目标是继续把开发回退、审计、安全、部署和运维能力收紧为“多用户、可审计、可部署、可维护”的前后端系统。
+
+## 改造目标
+
+当前系统已经有较完整的页面、业务流程和后端 API。仍需关注的迁移期边界包括：
+
+- 用户、密码、权限、工作台统计、报告、报告媒体关系、模板、字段库、模板图片、用户和部门权限已优先接入后端 API；`localStorage.users` 仅作为开发回退兼容缓存存在。
+- 设置和部分兼容缓存仍存在 `localStorage`；生产构建默认关闭本地回退。
+- 签名、模板图片资源、视频和关键帧文件已优先进入后端文件资源；报告媒体引用已通过 `ReportMedia` 关系表保存。
+- AI Key 和讯飞语音密钥已进入后端代理链路。
+- 权限判断主要在前端页面里完成。
+
+后端化后应达到：
+
+- 登录认证由后端完成。
+- 所有数据以用户、部门、医院/租户为边界存储。
+- 权限在后端强校验，前端只做展示控制。
+- 文件和图片从 Base64 本地存储迁移到后端文件服务或对象存储。
+- AI 与语音等密钥由后端托管，前端不接触真实密钥。
+- 报告查看、编辑、删除等关键行为有审计记录；报告导出按权限控制，不要求专门导出审计。
+
+## 技术栈决策
+
+后端化第一阶段建议采用 TypeScript 全栈方案，优先保证权限边界、模块结构、数据迁移和测试可维护。
+
+| 层级 | 选择 | 说明 |
+| --- | --- | --- |
+| 前端 | React 19 + TypeScript + Vite + Tailwind CSS | 保留现有页面主体，逐步把 `localStorage` 读写替换为 API 调用。 |
+| 后端框架 | NestJS + TypeScript | 适合按认证、报告、模板、用户、设置、文件、AI 等模块拆分；Guard/Interceptor/Service 结构适合集中权限控制和审计。 |
+| 数据库 | PostgreSQL | 适合报告、历史版本、权限关系、审计日志等关系型数据；支持事务、索引和后续统计。 |
+| ORM/迁移 | Prisma | 类型生成清晰，迁移和 seed 成本低，便于前后端共享 DTO 思路。 |
+| 认证 | HttpOnly Cookie Session，Access Token 仅作为可选扩展 | 前端不直接持久化敏感 token；后端维护会话、退出和失效。第一阶段可用数据库会话表，后续再引入 Redis。 |
+| 密码 | Argon2 哈希 | 禁止明文密码进入前端或日志。 |
+| 文件存储 | 本地文件目录 + `files` 表，预留 MinIO/S3 兼容接口 | 开发和院内部署先降低成本；生产可切换对象存储。 |
+| 输入校验 | Zod 或 NestJS DTO 校验 | 所有 API 入参都必须校验，尤其是 HTML、文件、权限相关参数。 |
+| 测试 | Vitest/Testing Library + Playwright + 后端单元/集成测试 | 保留现有前端测试；新增后端 policy/service/API 测试；E2E 后续从 localStorage seed 改为 API/test DB seed。 |
+| 部署 | Docker Compose | 前端静态资源、NestJS API、PostgreSQL、可选 Redis/MinIO 分服务部署。 |
+
+暂不建议第一阶段使用微服务、复杂租户系统或后端抽帧服务。抽帧可以先继续留在前端 canvas，生成关键帧后上传后端文件接口。
+
+## 当前后端骨架
+
+已新增 `server/` 目录作为后端化第一阶段基础：
+
+- `server/src/main.ts`：NestJS 启动入口，设置 `/api` 前缀、CORS、Cookie Session、数据库 Session Store 和统一错误响应。
+- `server/src/dashboard`：`GET /api/dashboard/stats`，按角色范围统计报告、模板、用户和趋势。
+- `server/src/audit`：第一版审计服务，记录登录、报告、模板、用户、设置和文件修改。
+- `server/src/health`：`GET /api/health` 健康检查。
+- `server/src/auth`：`POST /api/auth/login`、`GET /api/auth/me`、`POST /api/auth/logout` 认证接口。
+- `server/src/reports`：`GET/POST/PATCH/DELETE /api/reports` 报告接口，含角色范围过滤、历史版本、软删除和报告媒体关系同步。
+- `server/src/templates`：`GET/POST/PATCH/DELETE /api/templates` 模板接口，含 `access=use/manage`、部门模板、部门授权和个人模板。
+- `server/src/users`：`GET/POST/PATCH/DELETE /api/users` 与 `/api/departments` 接口，含用户范围过滤、管理员唯一性、医生创建约束和部门模板授权。
+- `server/src/settings`：`GET/PATCH /api/settings/system` 和重置接口，保存全局设置与个人默认模板。
+- `server/src/files`：通用文件上传、列表、删除、受控读取接口；签名文件会额外关联 `User.signatureFileId`。
+- `server/src/library`：`GET/PATCH /api/library/fields` 字段库接口，保存字段、时间格式和选项库。
+- `server/src/ai`：`GET /api/ai/models` 和 `POST /api/ai/chat`，使用全局共用 Provider Key 代理 OpenAI 兼容接口。
+- `server/src/speech`：`GET /api/speech/iat` WebSocket 代理，使用 Session 校验用户，后端生成讯飞鉴权 URL 并转发音频帧和识别结果。
+- `server/src/prisma`：PrismaService，使用 Prisma 7 的 PostgreSQL driver adapter。
+- `server/src/permissions`：报告、模板、用户和管理员创建权限策略，已配套单元测试。
+- `server/prisma/schema.prisma`：PostgreSQL 数据模型，覆盖租户、部门、用户、业务 Session、`AppSession`、报告、报告媒体、历史、模板、文件、设置和审计日志。
+- `server/prisma/seed.ts`：写入默认医院、部门和 `admin`、`manager`、`0001` 三个账号。
+
+当前前端登录、Dashboard、报告读写、报告媒体关系、模板读写、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置、签名文件、AI 对话代理和语音听写代理已接入后端认证/API。真实 PostgreSQL 服务集成测试已覆盖 Auth、Dashboard、Reports、ReportMedia、Templates 和 Files 核心服务，下一步应逐步替换剩余开发回退数据访问。
+
+## 总体架构建议
+
+### 前端
+
+保留当前 React + Vite 页面主体，逐步把 `storage.get/set` 替换成 API 调用。
+
+建议新增：
+
+- `src/api/`：统一 API client。
+- `src/auth/`：登录态、Token、权限上下文。
+- `src/hooks/`：数据获取和变更 hook。
+- `src/services/`：报告、模板、用户、系统设置、文件、AI 服务封装。
+
+### 后端
+
+建议先采用 NestJS 单体后端，避免一开始拆太复杂：
+
+- Node.js + NestJS + TypeScript。
+- PostgreSQL + Prisma。
+- Redis 可选，用于会话、限流、任务状态。
+- 对象存储可选，院内部署可先用本地文件目录，生产建议 MinIO/S3 兼容存储。
+
+### 数据边界
+
+后端需要引入明确的组织边界：
+
+- `tenant`：医院或部署实例。
+- `department`：科室。
+- `user`：用户账号。
+- `role`：超级管理员、管理员、医生。
+- `permission`：模板权限、报告权限、系统配置权限。
+
+如果项目只给单医院内网使用，可以先不做复杂租户模型，但数据库字段建议预留 `tenant_id`。
+
+## 数据模型改造
+
+### 用户与认证
+
+新增表：
+
+- `users`
+- `departments`
+- `roles` 或直接使用枚举字段
+- `user_sessions` 或使用 JWT + refresh token
+- `user_template_permissions`
+
+当前 `User` 需要变化：
+
+- `password` 改为 `password_hash`，禁止前端返回。
+- `signature` 从 Base64 改为 `signature_file_id` 或 `signature_url`。
+- `visibleTemplates/manageableTemplates` 拆成权限关联表。
+- `status` 保留。
+- 增加 `last_login_at`、`created_by`、`updated_by`。
+
+### 报告
+
+新增表：
+
+- `reports`
+- `report_histories`
+- `report_media`
+- `report_exports` 可选
+
+当前 `Report` 需要变化：
+
+- `content` 仍可保存 HTML，但必须后端清洗。
+- `videos.url` 不再长期依赖浏览器对象 URL，后端保存 `ReportMedia.fileId/url` 并返回受控文件 URL。
+- `capturedFrames.dataUrl` 改成 `ReportMedia.fileId/url` 派生出的图片 URL。
+- `author/authorName` 改成 `author_id`，展示时 join 用户表。
+- `createdAt/updatedAt` 统一为 ISO 时间戳。
+- `status` 保留 `draft/completed`。
+- `history` 拆到 `report_histories`。
+
+### 模板与字段
+
+新增表：
+
+- `templates`
+- `template_versions` 可选
+- `form_fields`
+- `template_fields` 可选
+- `image_assets`
+
+当前 `Template` 需要变化：
+
+- `content` 保存 HTML，但导入和保存时后端清洗。
+- `fields` 不建议长期嵌在模板对象里，可拆出字段配置版本。
+- `author` 改成 `author_id`。
+- 增加 `department_id`、`tenant_id`、`is_global`、`status`。
+
+### 系统设置
+
+新增表：
+
+- `system_settings`
+- `ai_provider_configs`
+- `speech_provider_configs`
+
+当前 `SystemSettings` 需要变化：
+
+- AI Key、讯飞密钥只存后端，前端只看到是否已配置和脱敏信息；普通用户请求设置时不返回真实密钥。
+- 抽帧设置可以按全局、科室或用户默认值分层。
+- 默认模板可以改成用户级配置 `user_preferences.default_template_id`。
+
+### 文件资源
+
+新增表：
+
+- `files`
+
+字段建议：
+
+- `id`
+- `tenant_id`
+- `owner_id`
+- `kind`：`signature`、`template_asset`、`video`、`frame`、`report_export`
+- `filename`
+- `mime_type`
+- `size`
+- `storage_key`
+- `checksum`
+- `created_at`
+
+## API 改造清单
+
+### 认证
+
+- `POST /api/auth/login`
+- `POST /api/auth/logout`
+- `POST /api/auth/refresh`
+- `GET /api/auth/me`
+- `PATCH /api/auth/password`
+
+### 用户
+
+- `GET /api/users`
+- `POST /api/users`
+- `GET /api/users/:id`
+- `PATCH /api/users/:id`
+- `DELETE /api/users/:id`
+- `POST /api/users/:id/signature`（待实现）
+- `GET /api/departments`
+- `POST /api/departments`
+- `PATCH /api/departments/:id`
+- `DELETE /api/departments/:id`
+- `PATCH /api/departments/:id/template-permissions`
+
+### 模板
+
+- `GET /api/templates`
+- `POST /api/templates`
+- `GET /api/templates/:id`
+- `PATCH /api/templates/:id`
+- `DELETE /api/templates/:id`
+- `POST /api/templates/import`
+- `GET /api/templates/:id/export`
+- `POST /api/templates/batch-export`
+- `GET /api/form-fields`
+- `PUT /api/form-fields`
+
+### 报告
+
+- `GET /api/reports`
+- `POST /api/reports`
+- `GET /api/reports/:id`
+- `PATCH /api/reports/:id`
+- `DELETE /api/reports/:id`
+- `POST /api/reports/:id/complete`
+- `GET /api/reports/:id/history`
+- `POST /api/reports/:id/restore`
+- `GET /api/reports/:id/export.json`
+- `POST /api/reports/export`
+
+### 文件与视频
+
+- `POST /api/files`
+- `GET /api/files`
+- `GET /api/files/:id`
+- `DELETE /api/files/:id`
+
+当前第一版已经保留前端 canvas 抽帧，并把视频和生成的关键帧通过通用文件 API 上传为 `VIDEO` / `FRAME` 文件资源。后续如果要做后端视频服务，再新增专用 `videos` 模块，用于转码、异步抽帧、断点续传和媒体引用关系维护。
+
+### AI 与语音
+
+- `POST /api/ai/chat`
+- `GET /api/ai/providers`
+- `PATCH /api/ai/providers/:id`
+- `POST /api/ai/providers/:id/test`
+- `GET /api/speech/config`
+- `PATCH /api/speech/config`
+- `POST /api/speech/token` 或 `GET /api/speech/ws-auth`
+
+前端不再直接调用第三方 AI 接口，不再保存真实 API Key。
+
+### 系统设置
+
+- `GET /api/settings`
+- `PATCH /api/settings`
+- `POST /api/settings/reset`
+
+清空浏览器本地数据只作为开发/显式回退模式能力；如果未来需要“重置全部后端数据”，应作为独立维护接口谨慎保留，只允许超级管理员在维护模式下执行，并写审计日志。
+
+## 前端改造清单
+
+### 第一批必须改
+
+1. 新增 API Client
+   - 统一 base URL、认证头、错误处理、401 刷新或跳登录。
+   - 当前已新增 `src/api/client.ts`，支持 `{ data }` envelope 解包、Cookie credentials 和错误 envelope。
+
+2. 替换登录逻辑
+   - 登录调用 `/api/auth/login`。
+   - 当前用户来自 `/api/auth/me`。
+   - 当前已完成登录 API 接入；默认模板、字段、图片和本地用户初始化仍暂时保留，供未迁移页面使用。
+
+3. 替换 `currentUser`
+   - 从 `localStorage.currentUser` 改成 Auth Context 或全局 store。
+   - 本地只保存 token 或 session 标识。
+   - 当前已新增 Auth Context，但仍会同步 `currentUser` 兼容旧页面；后续页面完成 API 迁移后再移除该缓存依赖。
+
+4. 替换报告数据
+   - `ReportManage` 用 `GET /api/reports`。
+   - `ReportView` 用 `GET /api/reports/:id`。
+   - `ReportEditor` 保存用 `POST/PATCH /api/reports`。
+   - 历史恢复用后端历史 API。
+   - 当前前三项已接入；历史恢复仍通过返回的兼容 `history` 和 `sessionStorage.restore_${reportId}` 进入编辑器。
+
+5. 替换模板数据
+   - `TemplateManage` 全部从 API 获取和保存。
+   - 模板权限由后端返回可见/可管理范围。
+   - 当前已接入模板列表、创建、编辑、保存内容、删除、医生个人模板、字段库和模板图片资源。
+
+6. 替换用户管理
+   - `UserManage` 调用用户 API。
+   - 密码不再回显，也不进入前端用户对象。
+   - 当前已接入用户列表、新增、编辑、删除、部门模板授权和签名文件上传。
+
+7. 替换系统设置
+   - 当前已接入 Settings API，保存全局设置和个人默认模板。
+   - 后续应只展示脱敏密钥；保存时发送新密钥，后端加密存储并由代理使用。
+
+### 第二批建议改
+
+1. 文件上传
+   - 签名、模板图片、视频和关键帧已完成第一版文件 API；报告媒体引用已通过 `ReportMedia` 正规化，报告正文内手动插入图片仍需改为上传文件。
+   - 报告 HTML 中引用文件 URL 或受控下载 URL。
+
+2. 报告内容清洗
+   - 前端仍可编辑 HTML。
+   - 保存前后端做白名单清洗。
+   - 渲染时避免直接信任历史 HTML。
+
+3. 草稿同步
+   - 当前草稿在本地，可改成服务端 draft autosave。
+   - 防止换浏览器或清缓存丢草稿。
+
+4. AI 代理
+   - `ReportEditor` 的 `fetch(chat/completions)` 改成 `/api/ai/chat`。
+   - 后端记录请求摘要和错误，避免前端暴露密钥。
+   - 当前已接入 `/api/ai/models` 和 `/api/ai/chat`，所有用户共用全局 Provider Key；仍待第三方调用摘要和错误追踪落库。
+
+5. 审计日志
+   - 登录、编辑、完成、删除、重置、权限变更等关键操作写日志。
+   - 报告导出不要求水印、导出原因、审批或专门导出审计。
+
+## 权限模型建议
+
+### 角色能力
+
+| 能力 | 超级管理员 | 管理员 | 医生 |
+| --- | --- | --- | --- |
+| 管理全局设置 | 是 | 否 | 否 |
+| 管理 AI/语音密钥 | 是 | 否 | 否 |
+| 管理全部用户 | 是 | 否 | 否 |
+| 管理同部门医生 | 是 | 是 | 否 |
+| 管理模板 | 全部 | 授权模板 | 否 |
+| 使用模板 | 全部 | 可见模板 | 可见模板 |
+| 查看报告 | 全部 | 本部门 | 本人 |
+| 编辑报告 | 全部 | 本部门 | 本人，包括已完成报告 |
+| 删除报告 | 全部 | 本部门，包括已完成报告 | 本人，包括已完成报告 |
+| 导出报告 | 全部 | 本部门 | 本人 |
+
+已确定权限规则以 [权限设计](./permissions.md) 为准：
+
+- 超级管理员全权限，可修改任何数据。
+- 超级管理员默认属于 `admin` 部门。
+- 管理员只能看、改、删本部门报告。
+- 医生完成报告后可以继续修改，也可以删除本人已完成报告。
+- 完成报告后的每次修改必须增加修订版本号。
+- 模板按部门授权；管理员可修改本部门模板；医生可复制/新建个人模板。
+- 一个部门只能有一个管理员，且只有超级管理员能创建或授权管理员。
+- AI 只能接收当前报告内容作为上下文。
+
+### 后端强校验
+
+每个 API 都必须根据当前用户进行后端权限判断。前端菜单隐藏只是体验优化，不能作为安全依据。
+
+## 安全改造清单
+
+- 密码使用 bcrypt/argon2 哈希。
+- Token 使用 HttpOnly Cookie 或短期 access token + refresh token。
+- API 增加 CSRF 或 SameSite 策略。
+- HTML 内容用 DOMPurify 或服务端白名单清洗。
+- 文件上传限制 MIME、大小、扩展名，并做病毒扫描或隔离策略。
+- AI/语音密钥后端加密存储。
+- 敏感日志脱敏，禁止记录完整病历到普通日志。
+- 报告导出当前不要求水印、原因、审批或专门审计；后续重点是权限控制、错误追踪和后端导出能力。
+- 对报告、模板、用户操作增加审计日志。
+- 增加数据库备份和恢复策略。
+
+## 测试改造清单
+
+### 后端测试
+
+- Auth：登录、登出、刷新、密码错误、禁用用户。
+- RBAC：不同角色访问用户、模板、报告、设置 API。
+- Reports：新增、编辑、完成、历史、删除、导出。
+- Templates：新增、导入、导出、权限过滤、字段配置。
+- Files：上传、读取、权限、大小限制。
+- Settings：密钥脱敏、配置保存、抽帧设置。
+- AI Proxy：请求构造、错误处理、密钥不下发。
+
+### 前端测试
+
+保留现有 Vitest 测试，并新增：
+
+- API client 401/错误处理。
+- Auth Context 登录态恢复。
+- 报告列表 API 数据渲染。
+- 模板权限数据渲染。
+- 用户管理表单 API 提交。
+
+### E2E 测试
+
+建议新增 Playwright：
+
+- 管理员登录、创建医生、分配模板。
+- 医生登录、新建报告、保存草稿、完成报告。
+- 报告管理搜索、查看、导出。
+- 模板新增、字段插入、报告套用模板。
+- 视频上传和抽帧可用性。
+
+## 迁移步骤建议
+
+### 阶段 0：冻结当前功能
+
+- 保留现有 `localStorage` 版本作为 baseline。
+- 当前 Vitest 测试继续作为前端契约测试。
+- 增加功能验收清单，避免后端化时漏功能。
+
+### 阶段 1：后端骨架
+
+- 建后端项目、数据库迁移、基础表结构。
+- 实现登录、当前用户、用户列表、模板列表、报告列表。
+- 前端新增 API client，但先不大规模替换页面。
+
+### 阶段 2：认证和用户后端化
+
+- 替换 `Login`、`Sidebar`、`UserManage`。
+- 移除前端默认账号初始化。
+- 前端不再保存密码和完整用户列表。
+
+### 阶段 3：模板和报告后端化
+
+- 替换 `TemplateManage`、`ReportManage`、`ReportView`、`ReportEditor` 保存逻辑。
+- 报告历史改为后端历史表。
+- 字段配置由后端提供。
+
+### 阶段 4：文件和关键帧后端化
+
+- 签名、图片资源、关键帧、视频统一上传。
+- 报告 HTML 中从 Data URL 改为文件 URL 或受控资源地址。
+
+### 阶段 5：AI/语音代理与审计
+
+- 前端调用后端 AI API。
+- 后端托管 AI 密钥；语音密钥仍待代理化。
+- 增加查看日志、第三方代理调用摘要和错误追踪；报告导出不要求专门审计，后端导出能力另行实现。
+
+### 阶段 6：生产化
+
+- 部署数据库、对象存储、后端服务。
+- 配置备份、监控、日志、权限审计。
+- 做安全扫描、数据迁移演练和院内验收。
+
+## 需要优先决策的问题
+
+1. 后端技术栈：Express、NestJS、Fastify，还是已有院内后端技术？
+2. 数据库：PostgreSQL、MySQL，还是院内指定数据库？
+3. 部署方式：单机 Docker Compose，还是院内 Kubernetes/服务器？
+4. 文件存储：本地磁盘、MinIO、S3 兼容，还是院内文件系统？
+5. 租户模型：只支持单医院，还是要支持多医院/多院区？
+6. 报告权限：管理员是否只能看同部门，还是可以按模板/患者/手术组授权？
+7. 完成报告后是否允许医生修改？是否需要审批或留痕版本？
+8. AI 和语音是否必须在院内网代理，是否允许公网访问第三方模型？
diff --git a/docs/data-storage.md b/docs/data-storage.md
new file mode 100644
index 0000000..5524013
--- /dev/null
+++ b/docs/data-storage.md
@@ -0,0 +1,67 @@
+# 数据与存储
+
+## 存储封装
+
+`src/utils/storage.ts` 提供统一读写：
+
+- `storage.get<T>(key, fallback)`：从 `localStorage` 读取 JSON。
+- `storage.set<T>(key, value)`：写入 JSON。
+- `storage.remove(key)`：删除本地键。
+- `storage.getSession/setSession/removeSession`：读写 `sessionStorage`。
+
+`systemSettings` 会经过简单 XOR + Base64 混淆，并兼容读取历史明文 JSON。当前系统设置已优先写入后端 `SystemSetting` 表。本地兼容回退由 `VITE_ENABLE_LOCAL_FALLBACK` 控制，开发模式默认启用，生产构建默认关闭。
+
+## localStorage 键
+
+| 键 | 数据 | 来源/用途 |
+| --- | --- | --- |
+| `currentUser` | `User` | 当前登录用户兼容缓存。登录认证来自后端 Session，缓存用于尚未后端化的页面。 |
+| `users` | `User[]` | 用户兼容缓存。登录成功和用户管理页会用后端用户信息同步用户、角色、部门、模板授权和签名 URL；旧签名 Data URL 和旧演示密码字段可能仍暂存在本地。 |
+| `templates` | `Template[]` | 模板兼容缓存。模板读写已优先走后端 Templates API，缓存用于离线回退、旧数据和未迁移页面。 |
+| `reports` | `Report[]` | 报告兼容缓存。报告读写已优先走后端 Reports API，缓存用于离线回退、旧数据和未迁移页面。 |
+| `systemSettings` | `SystemSettings` | 抽帧、AI、语音和默认模板配置的兼容缓存；主路径优先走 `/api/settings/system`。 |
+| `formFieldsConfig` | `FormField[]` | 字段库兼容缓存；主路径优先走 `/api/library/fields`。 |
+| `imageAssets` | `{ id; name; dataUrl }[]` | 模板/报告可插入图片资源兼容缓存；模板图片主路径优先走 `/api/files?kind=TEMPLATE_ASSET`。 |
+| `customTimeFormats` | `string[]` | 模板字段可选时间格式兼容缓存；主路径优先走 `/api/library/fields`。 |
+| `multiSelectOptions` | `Record<string, string[]>` | 医生、助手、麻醉师等多选字段选项兼容缓存；主路径优先走 `/api/library/fields`。 |
+| `anesthesiaOptions` | `string[]` | 麻醉方式选项兼容缓存；主路径优先走 `/api/library/fields`。 |
+| `reportEditorDraft_${username}` | 草稿对象 | 某用户当前未提交编辑器草稿。 |
+
+## sessionStorage 键
+
+| 键 | 数据 | 用途 |
+| --- | --- | --- |
+| `restore_${reportId}` | HTML 字符串 | 从历史版本恢复时临时传递内容给编辑器。 |
+
+## 初始化流程
+
+开发模式下，登录页 `Login` 首次加载时会补齐以下迁移期数据：
+
+- 默认模板 `surgery`。
+- 默认用户：`admin`、`manager`、`0001`。
+- 默认表单字段 `DEFAULT_FORM_FIELDS`。
+- 默认图片资源 `logo_square.png`。
+- 默认系统设置，包括抽帧位置、AI Provider、自动插入策略和语音配置。
+
+真实账号认证不再读取 `users.password`，而是调用后端 `/api/auth/login`。用户管理页已优先调用 `/api/users`，但 `users.password` 字段仍可能存在于旧本地缓存和开发回退数据中，后续应随迁移脚本移除。
+
+## 数据生命周期
+
+- 报告保存为草稿或完成态时优先写入后端；开发回退开启时会同步 `reports` 缓存，API 不可用时才写入本地 `reports`。
+- 新建报告成功保存后会清理当前用户草稿。
+- 编辑已有报告时会把旧内容推入 `history`。
+- 开发回退模式下，系统设置页“重置全部数据”会执行 `localStorage.clear()` 并刷新页面；生产构建默认阻止把该操作误认为后端数据重置。
+
+## 迁移注意
+
+- 旧版 AI 设置可能是扁平字段，`SystemSettings` 页面会迁移到 `aiProviders` 结构。
+- 个人模板通过 `Template.scope = "personal"` 和 `Template.ownerUser` 归属医生本人；部门模板通过 `Template.scope = "department"` 和 `Template.department` 标记部门。
+- 后端模板使用 `templates.scope`、`owner_department_id`、`owner_user_id` 和 `template_department_permissions` 表达同样权限；前端字段作为兼容 DTO 返回。
+- 后端用户使用 `users.department_id`、`users.role` 和 `template_department_permissions` 计算前端兼容的 `visibleTemplates/manageableTemplates`。
+- 后端设置使用 `SystemSetting.scope = global` 保存全局设置，使用 `scope = user:<id>` 保存个人默认模板。
+- 后端字段库使用 `SystemSetting.scope = global` 和 `key = fieldLibrary` 保存字段、时间格式和选项库。
+- 后端签名文件使用 `FileResource.kind = SIGNATURE` 和 `User.signatureFileId` 关联，文件内容由 `/api/files/:id/content` 受控读取。
+- 后端模板图片资源通过 `POST /api/files` 以 `kind = TEMPLATE_ASSET` 写入 `FileResource`，模板和报告编辑器优先读取 `/api/files?kind=TEMPLATE_ASSET`。
+- 报告修订版本通过 `Report.revision` 保存；已完成报告每次再次保存会递增版本，并把旧版本写入 `Report.history`。
+- 后端视频和关键帧文件通过 `POST /api/files` 以 `kind = VIDEO/FRAME` 写入 `FileResource`；报告保存时通过 `ReportMedia` 关系表保存视频/关键帧的 `fileId/url`、排序和抽帧信息。`Report.metadata` 只保留患者等前端扩展字段，旧数据里的媒体数组仍可作为兼容回退读取。
+- 报告日期目前部分逻辑使用 `createdAt` 的日期字符串，部分逻辑会按 `Date` 解析 ISO 字符串，后续建议统一为 ISO 时间戳加展示格式化。
diff --git a/docs/deployment.md b/docs/deployment.md
new file mode 100644
index 0000000..1b6e0f1
--- /dev/null
+++ b/docs/deployment.md
@@ -0,0 +1,92 @@
+# 部署运行
+
+## 本地开发
+
+前端：
+
+```bash
+npm install
+npm run dev
+```
+
+开发服务监听 `0.0.0.0:3001`。
+开发模式下 Vite 会把 `/api` 代理到 `VITE_API_PROXY_TARGET`，默认 `http://localhost:3000`。
+
+后端：
+
+```bash
+cp .env.example .env
+npm run prisma:generate
+npm run server:dev
+```
+
+本地直接运行 API 默认监听 `0.0.0.0:3000`，健康检查为：
+
+```text
+http://localhost:3000/api/health
+```
+
+如需连接真实 PostgreSQL：
+
+```bash
+npm run prisma:migrate
+npm run prisma:seed
+```
+
+## 质量检查
+
+```bash
+npm run lint
+npm run test
+npm run server:build
+npm run build
+```
+
+当前 `lint` 实际执行 `tsc --noEmit`，用于 TypeScript 类型检查。
+
+## 环境变量
+
+复制示例文件：
+
+```bash
+cp .env.example .env.local
+```
+
+AI 和语音密钥由后端 Settings API 保存并由代理使用，前端不再注入 Gemini 旧环境变量。
+
+后端新增变量：
+
+- `API_PORT`：API 监听端口。本地直接运行默认 `3000`；Docker Compose 暴露到宿主机的默认端口是 `3002`。
+- `CORS_ORIGIN`：允许跨域携带 Cookie 的前端来源。
+- `DATABASE_URL`：PostgreSQL 连接串。Docker Compose 暴露到宿主机的默认端口是 `5433`，容器内部仍使用 `db:5432`。
+- `SESSION_SECRET`：Session Cookie 签名密钥。
+- `SESSION_COOKIE_SECURE`：是否只通过 HTTPS 发送 Session Cookie。本地 HTTP/Compose 默认 `false`，生产 HTTPS 应设为 `true`。
+- `FILE_STORAGE_DIR`：后端文件目录。Docker Compose 默认 `/app/uploads`，并挂载到 `uploads_data` volume。
+- `VITE_API_PROXY_TARGET`：前端开发服务器 `/api` 代理目标。直接运行后端用 `http://localhost:3000`；连接 Docker Compose API 用 `http://localhost:3002`。
+- `VITE_ENABLE_LOCAL_FALLBACK`：生产构建是否允许本地兼容回退。开发模式默认启用，生产默认关闭。
+
+## Docker 部署
+
+```bash
+docker-compose up -d --build
+```
+
+默认通过 Nginx 暴露 `http://localhost:4002`。
+
+当前 Compose 服务：
+
+- `web`：前端静态站点，暴露 `http://localhost:4002`。
+- `api`：NestJS API，暴露 `http://localhost:3002`。
+- `db`：PostgreSQL 16，暴露 `localhost:5433`。
+- `uploads_data`：后端文件持久化 volume。
+
+构建流程：
+
+- `Dockerfile` 使用 Node 构建 `dist/`。
+- 运行阶段使用 `nginx:alpine` 托管静态文件。
+- `Dockerfile.server` 构建并运行 NestJS API。
+- `nginx.conf` 已配置 SPA 路由回退和 `/api` 反向代理。
+
+## 部署边界
+
+当前后端已承载登录认证、数据库 Session、Dashboard、报告、报告媒体关系、模板、字段库、通用文件/签名文件、视频/关键帧文件、用户管理、部门模板授权、系统设置、AI 代理、语音代理、HTML 清洗和第一版审计。生产化前还需要补齐查看日志、第三方代理调用摘要、限流、备份恢复、对象存储和更完整的旧数据迁移。
diff --git a/docs/design.md b/docs/design.md
new file mode 100644
index 0000000..d53c0f3
--- /dev/null
+++ b/docs/design.md
@@ -0,0 +1,105 @@
+# 设计文档
+
+## 总体架构
+
+应用是一个 Vite 构建的 React SPA。入口文件为 `src/main.tsx`，路由集中在 `src/App.tsx`。页面级功能位于 `src/pages`，公共侧边栏位于 `src/components/Sidebar.tsx`，数据类型集中在 `src/types.ts`，浏览器存储封装在 `src/utils/storage.ts`。
+
+```text
+src/
+  App.tsx                 路由定义
+  main.tsx                React 挂载入口
+  index.css               Tailwind 与全局样式
+  api/                    前端 API client
+  auth/                   登录态、后端用户兼容映射
+  types.ts                核心数据类型和默认配置
+  components/Sidebar.tsx  主导航与登出
+  pages/                  业务页面
+  utils/                  存储、打印、默认模板内容
+```
+
+## 路由设计
+
+| 路由 | 页面 | 用途 |
+| --- | --- | --- |
+| `/` | `Login` | 登录和首次数据初始化。 |
+| `/dashboard` | `Dashboard` | 工作台统计和快捷入口。 |
+| `/report-editor` | `ReportEditor` | 新建报告，或通过 `?id=` 编辑报告。 |
+| `/report-manage` | `ReportManage` | 报告检索、历史、导出和删除。 |
+| `/report-view/:id` | `ReportView` | 报告只读查看和打印。 |
+| `/template-manage` | `TemplateManage` | 模板和字段库维护。 |
+| `/user-manage` | `UserManage` | 用户、角色、部门和模板权限管理。 |
+| `/system-settings` | `SystemSettings` | 抽帧、AI、语音和默认模板设置。 |
+
+未匹配路由会重定向到登录页。除登录页外，其余路由由 `RequireAuth` 包裹：优先等待 `AuthProvider` 从后端 `/api/auth/me` 恢复会话；没有后端会话和本地兼容缓存时回到 `/`。
+
+## 数据设计
+
+核心类型在 `src/types.ts`：
+
+- `User`：用户账号、角色、部门、状态、模板权限和签名。
+- `Report`：报告元信息、患者信息、HTML 正文、视频、关键帧、作者、状态和历史版本。
+- `Template`：模板名称、描述、HTML 内容、作者和字段配置。
+- `FormField`：表单字段定义，支持文本、单选、多选、日期、时间、签名、图片等类型。
+- `SystemSettings`：抽帧策略、默认模板、AI Provider、语音配置和自动插入设置。
+
+登录认证、报告读写、报告媒体引用、模板读写、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置和签名文件已有服务端校验。报告媒体通过 `ReportMedia` 关系表关联 `FileResource`，页面逻辑仍承担一部分迁移期回退约束。
+
+## 状态与持久化
+
+应用使用 React 本地状态管理页面交互。认证态由后端 Session Cookie 维持，前端 `AuthProvider` 会把当前用户同步到 `localStorage.currentUser` 作为迁移期兼容缓存。报告读写已优先走后端 Reports API，并同步 `localStorage.reports` 作为开发/显式回退缓存；模板读写已优先走后端 Templates API，并同步 `localStorage.templates` 作为开发/显式回退缓存；字段库已优先走 Library API，并同步 `formFieldsConfig` 等兼容缓存；模板图片资源已优先走 Files API，并同步 `imageAssets` 兼容缓存；用户和部门模板授权已优先走 Users/Departments API，并同步 `localStorage.users` 作为兼容缓存；系统设置已优先走 Settings API，并同步 `localStorage.systemSettings` 作为开发/显式回退缓存。`storage.get/set` 对常规键做 JSON 读写，对 `systemSettings` 做简单 XOR + Base64 存储；这不是安全加密，只能降低直接可读性。生产构建默认关闭本地回退。
+
+报告编辑器额外使用 `reportEditorDraft_${username}` 保存未提交草稿，使用 `sessionStorage` 的 `restore_${reportId}` 暂存历史版本恢复内容。
+
+## 权限设计
+
+当前迁移期权限检查分两层：登录、报告、模板、用户和部门模板授权由后端校验；页面入口和部分业务按钮权限仍保留前端 UI 展示层：
+
+- 未登录用户跳回 `/`。
+- 医生在报告管理和查看页只能访问本人报告。
+- 模板管理不允许医生进入。
+- 用户管理只允许超级管理员和管理员进入；后端再次校验可管理范围。
+- 管理员只能管理同部门医生或自己，不能创建管理员或跨部门修改用户。
+
+前端入口隐藏不能作为生产级安全边界，所有已后端化 API 都必须以服务端校验为准。
+
+后端化后的目标权限模型以“角色 + 部门 + 模板授权”为主，详细规则见 [权限设计](./permissions.md)。当前已确定规则：
+
+- 超级管理员拥有全权限，可以查看和修改所有用户、报告、模板、系统配置和权限配置。
+- 管理员只能查看、编辑和删除本部门报告。
+- 医生默认只能查看本人报告。
+- 医生完成报告后仍允许修改，也可以删除本人已完成报告；完成后的每次修改必须保留历史版本并递增修订版本号。
+- 模板按部门授权；管理员可以修改本部门模板；医生不可修改部门模板，但可以复制/新建个人模板。
+- 一个部门只能有一个管理员，且只有超级管理员能创建或授权管理员。
+- AI 只能接收当前报告内容作为上下文，不读取跨部门报告。
+- 后端必须对每个 API 做强权限校验，前端菜单隐藏只作为体验优化。
+
+后端查询层需要把权限规则落到数据过滤：
+
+- 报告列表：超级管理员不加部门限制；管理员按 `department_id` 过滤；医生按 `author_id` 过滤。
+- 报告详情/编辑/删除：读取报告后再次校验角色、部门和作者关系。
+- 模板列表：超级管理员返回全部模板；管理员返回本部门模板和被授权模板；医生返回本部门授权模板和个人模板。
+- 用户列表：超级管理员返回全部用户；管理员返回自己和本部门医生；医生只能读取自己。
+- 部门模板授权：超级管理员维护部门可用/可管理模板；管理员和医生只读取本人部门。
+
+## 报告编辑设计
+
+报告正文是一个 `contentEditable` HTML 编辑器。模板中通过 `.field-value[data-bind="fieldKey"]` 标记智能字段，侧边表单更新时同步到正文；正文内字段被编辑时也会反向更新表单状态。
+
+图片占位符通过 `.image-placeholder` 表示：
+
+- `data-mode="frame"` 或无 `manual` 标记的占位符可接收关键帧。
+- `data-mode="manual"` 用于 Logo、签名等静态图片，不接收视频关键帧拖入。
+
+AI 可编辑区域通过 `.ai-region[data-ai-id]` 和内部 `.ai-content` 定位。AI 返回 `updatedHtml` 后，系统先显示差异确认，再注入目标区域。
+
+## 打印导出设计
+
+`src/utils/print.ts` 通过隐藏 iframe 写入报告 HTML 和打印样式，然后调用浏览器打印。PDF 导出依赖浏览器“另存为 PDF”，不是服务端生成 PDF。
+
+JSON 导出使用 Blob 下载，报告导出主要包含元信息和 `DEFAULT_FORM_FIELDS` 中定义的字段。
+
+## 外部服务设计
+
+- AI 服务通过后端 `/api/ai/chat` 和 `/api/ai/models` 代理到 OpenAI 兼容 `/chat/completions` 和 `/models` 接口。
+- 语音听写通过后端 `/api/speech/iat` WebSocket 代理到讯飞 IAT 接口，前端只采集 PCM 音频并发送到本系统。
+- 当前 AI Key 和讯飞语音密钥均由后端代理使用；普通用户读取系统设置时不会返回真实密钥。
diff --git a/docs/features.md b/docs/features.md
new file mode 100644
index 0000000..17795c9
--- /dev/null
+++ b/docs/features.md
@@ -0,0 +1,79 @@
+# 功能盘点
+
+本文按当前源码筛选功能状态，区分“真实可用”“真实集成但依赖外部条件”“前端演示/非生产安全”和“预留或未使用”。
+
+## 状态定义
+
+| 状态 | 含义 |
+| --- | --- |
+| 真实可用 | 在当前应用内已有完整交互和持久化；可能是本地存储或已接入后端。 |
+| 真实集成 | 已调用浏览器能力或第三方接口，但需要浏览器权限、有效密钥、网络或用户手动操作。 |
+| 前端演示 | UI 和流程存在，但安全边界或数据层只是浏览器本地模拟，不等于生产实现。 |
+| 后端骨架 | 服务入口、数据模型或策略已存在，但尚未接入前端主流程或补齐完整业务 API。 |
+| 预留/未使用 | 依赖、环境变量或字段存在，但当前功能链路未实际使用或命名未统一。 |
+
+## 功能矩阵
+
+| 功能 | 状态 | 证据/说明 |
+| --- | --- | --- |
+| 登录 | 真实集成 | `Login` 通过 `AuthContext` 调用 `POST /api/auth/login`，后端用 Session Cookie 维持登录态；成功后同步 `currentUser` 兼容旧页面。 |
+| 默认数据初始化 | 真实可用 | 登录页初始化默认用户、模板、字段、图片资源和系统设置。 |
+| 登录态恢复/退出 | 真实集成 | `AuthProvider` 调用 `GET /api/auth/me` 恢复会话，`POST /api/auth/logout` 退出；后端 Session 已持久化到 `AppSession` 表，生产构建默认不再用本地缓存恢复。 |
+| 角色导航 | 真实可用 | `Sidebar` 优先读取 Auth Context，回退 `currentUser.role` 显示菜单。 |
+| 页面级权限跳转 | 前端演示 | 页面读取 `currentUser` 后跳转或隐藏功能；可被浏览器侧数据修改绕过。 |
+| 工作台统计 | 真实集成 | `Dashboard` 调用 `GET /api/dashboard/stats`，后端按角色范围统计报告、模板、用户和趋势；只有开发/显式回退模式下 API 不可用才回退本地统计。 |
+| 报告基本信息表单 | 真实可用 | `ReportEditor` 管理 `reportData`，支持文本、日期、时间、单选、多选。 |
+| 正文智能字段绑定 | 真实可用 | 模板 HTML 的 `data-bind` 字段与表单双向同步。 |
+| 富文本编辑 | 真实可用 | 使用 `contentEditable` 和 `document.execCommand`。实现可用，但 API 过时。 |
+| 报告草稿 | 真实可用 | 保存到 `reportEditorDraft_${username}`。 |
+| 保存/完成报告 | 真实集成 | `ReportEditor` 优先调用 `POST/PATCH /api/reports`，后端写入 PostgreSQL、清洗 HTML、保留历史版本、写审计，并在已完成报告再次修改时递增 `revision`；只有开发/显式回退模式下 API 不可用才回退本地保存。 |
+| 报告历史恢复 | 真实可用 | 管理页写 `sessionStorage.restore_${reportId}`，编辑器读取恢复。 |
+| 报告管理筛选 | 真实集成 | `ReportManage` 优先调用 `GET /api/reports`，后端按超级管理员/管理员/医生过滤；前端继续支持搜索、状态和时间筛选；只有开发/显式回退模式下 API 不可用才回退本地报告。 |
+| 报告查看 | 真实集成 | `ReportView` 优先调用 `GET /api/reports/:id`，后端校验查看权限；页面渲染报告 HTML；只有开发/显式回退模式下 API 不可用才回退本地权限检查。 |
+| PDF 导出 | 真实集成 | 通过隐藏 iframe 或 `window.print()` 调用浏览器打印，用户手动保存为 PDF；不是后端 PDF 生成。 |
+| JSON 导出 | 真实可用 | Blob 下载结构化报告字段或模板包。 |
+| 模板管理 | 真实集成 | `TemplateManage` 优先调用 `/api/templates?access=manage`，新增/编辑/删除会写后端并清洗 HTML；字段库优先调用 `/api/library/fields`，模板图片资源优先调用 `/api/files`。导入导出仍主要在前端处理。 |
+| 模板权限 | 真实集成 | 后端按部门模板、部门授权和个人模板过滤 `access=use/manage`；迁移期仍同步 `localStorage.templates`，仅在开发/显式回退模式下作为回退。 |
+| 我的个人模板 | 真实集成 | 医生在报告编辑器中保存个人模板时优先调用 `POST /api/templates`，后端把模板归属当前用户；只有开发/显式回退模式下 API 不可用才回退本地模板。 |
+| 用户管理 | 真实集成 | `UserManage` 优先调用 `/api/users` 增删改查，后端校验超级管理员/管理员范围、管理员唯一性和医生创建约束；只有开发/显式回退模式下 API 不可用才保留本地回退。 |
+| 部门模板授权 | 真实集成 | 后端提供 `/api/departments` 和 `/api/departments/:id/template-permissions`，超级管理员可通过管理员模板权限更新部门授权。 |
+| 电子签名 | 真实集成 | 用户管理页上传后压缩为 Data URL，再调用 `/api/users/:id/signature` 写入后端文件资源；报告中有对应绑定字段时通过受控文件 URL 展示。只有开发/显式回退模式下 API 不可用才保留本地签名回退。 |
+| 视频上传 | 真实集成 | 使用浏览器 File API 和对象 URL即时预览，并优先通过 `/api/files` 以 `kind = VIDEO` 写入后端文件资源。 |
+| 自动抽帧 | 真实集成 | 使用 `<video>` + `<canvas>` 按百分比截取 JPEG，关键帧优先通过 `/api/files` 以 `kind = FRAME` 写入后端文件资源。 |
+| 关键帧插入 | 真实集成 | 关键帧可点击插入或拖入图片占位符；上传成功后编辑器会把插入图片从 Data URL 替换为受控文件 URL。 |
+| AI 辅助撰写 | 真实集成 | 前端调用 `/api/ai/chat`，后端使用全局共用 Provider Key 代理 OpenAI 兼容 `/chat/completions`；需要有效 Provider 配置、模型和网络。 |
+| AI 差异确认 | 真实可用 | 使用 `diff` 生成左右差异，确认后写入 AI 区域。 |
+| 讯飞语音听写 | 真实集成 | 前端使用麦克风采集音频并连接 `/api/speech/iat`；后端读取讯飞配置、生成鉴权 URL、补齐首帧 APPID/业务参数并转发 IAT 结果。需要浏览器权限、有效配置和网络。 |
+| AI/语音密钥管理 | 真实集成 | AI Key 和讯飞 APIKey/APISecret 均由后端代理读取和使用；普通用户读取设置时不返回真实密钥。 |
+| 系统设置 | 真实集成 | `SystemSettings` 优先调用 `/api/settings/system` 读取、保存和重置抽帧、默认模板、AI Provider、语音配置；只有开发/显式回退模式下 API 不可用才回退本地缓存。 |
+| Docker/Nginx 静态部署 | 真实可用 | 可构建静态文件并用 Nginx 托管 SPA。 |
+| 后端服务 | 后端骨架 | 已新增 NestJS API：健康检查、认证接口、数据库 Session、Dashboard API、报告 API、报告媒体关系、模板 API、字段库 API、用户/部门 API、设置 API、通用文件/签名文件 API、视频/关键帧文件上传、AI 代理、讯飞语音代理、HTML 清洗、审计日志、Prisma/PostgreSQL 数据模型、默认 seed 和权限策略。 |
+| 讯飞语音配置字段 | 真实可用 | 初始化、类型和系统设置统一使用 `xfSpeechConfig`。 |
+
+## 测试覆盖对应
+
+| 测试文件 | 覆盖范围 |
+| --- | --- |
+| `src/pages/Login.test.tsx` | 默认数据初始化、默认账号展示、后端禁用账号错误展示。 |
+| `src/components/Sidebar.test.tsx` | 角色导航过滤。 |
+| `src/api/client.test.ts` | API envelope 解包、Cookie credentials 和错误 envelope。 |
+| `src/api/dashboard.test.ts` | Dashboard 统计 API 封装和响应校验。 |
+| `src/api/speech.test.ts` | 语音 WebSocket 代理地址生成，含同源和显式 API Base URL。 |
+| `src/api/library.test.ts` | 字段库 API 读取和更新封装。 |
+| `src/api/files.test.ts` | 通用文件列表和上传 API 封装。 |
+| `src/auth/backendUser.test.ts` | 后端用户 DTO 到前端兼容用户的角色和模板权限映射。 |
+| `src/pages/ReportManage.test.tsx` | 医生/管理员报告可见范围。 |
+| `src/utils/permissions.test.ts` | 报告权限、管理员本部门范围、医生个人模板和部门模板范围。 |
+| `src/utils/storage.test.ts` | 本地存储、系统设置混淆兼容、会话恢复键、默认 Provider 不携带内置 Key 的契约。 |
+| `src/utils/defaultContent.test.ts` | 默认模板结构、智能字段、图片占位符、AI 区域、字段和 Provider 配置。 |
+| `src/utils/print.test.ts` | 浏览器打印导出入口。 |
+| `server/src/permissions/permissions.policy.test.ts` | 后端报告、模板、用户管理和管理员创建权限策略。 |
+| `server/src/reports/report.mapper.test.ts` | 后端 Report 与前端兼容 Report 对象的 metadata、ReportMedia 和历史输出。 |
+| `server/src/templates/template.mapper.test.ts` | 后端 Template 与前端兼容 Template 对象、模板权限资源的映射。 |
+| `server/src/users/users.mapper.test.ts` | 后端 User 与前端兼容 User 对象、部门模板授权字段的映射。 |
+| `server/src/settings/settings.schemas.test.ts` | 后端系统设置 schema 默认值和非法抽帧参数校验。 |
+| `server/src/ai/ai.schemas.test.ts` | 后端 AI 代理入参 schema，含多模态消息与空消息校验。 |
+| `server/src/speech/xf-frame.test.ts` | 后端讯飞代理首帧补齐 APPID/业务参数，后续帧和异常 payload 保持兼容。 |
+| `server/src/http.integration.test.ts` | Nest HTTP 层集成测试，覆盖 API prefix、登录会话、未登录保护、受保护接口 actor 传递。 |
+
+外部 AI、讯飞语音上游、真实浏览器视频抽帧和打印成 PDF 属于浏览器/第三方边界，单元测试中不直连外部服务；AI/语音代理已有 schema 或帧处理测试，后续需要 HTTP/WebSocket 集成测试和人工验收补充端到端验证。
diff --git a/docs/modules/auth-and-users.md b/docs/modules/auth-and-users.md
new file mode 100644
index 0000000..a14f066
--- /dev/null
+++ b/docs/modules/auth-and-users.md
@@ -0,0 +1,74 @@
+# 模块文档：认证与用户权限
+
+## 涉及文件
+
+- `src/pages/Login.tsx`
+- `src/api/client.ts`
+- `src/api/users.ts`
+- `src/api/files.ts`
+- `src/auth/AuthContext.tsx`
+- `src/auth/backendUser.ts`
+- `src/pages/UserManage.tsx`
+- `src/components/Sidebar.tsx`
+- `src/types.ts`
+- `src/utils/storage.ts`
+- `server/src/users`
+- `server/src/files`
+
+## 登录流程
+
+`Login` 页面挂载时仍执行迁移期初始化，补齐默认模板、默认用户、字段库、图片资源和系统设置。提交登录表单后，前端通过 `AuthContext.login` 调用 `POST /api/auth/login`，后端验证 Argon2 密码哈希并写入 HttpOnly Session Cookie。
+
+登录成功后，`AuthContext` 会把后端返回的安全用户 DTO 转成当前前端 `User` 结构，并同步到 `localStorage.currentUser` 和 `localStorage.users`。这是为了兼容字段、设置、用户管理和开发回退逻辑；生产构建默认不会用本地缓存恢复登录态。
+
+`AuthProvider` 启动时会调用 `GET /api/auth/me` 恢复后端会话，退出登录调用 `POST /api/auth/logout` 并清理本地 `currentUser`。
+
+后端角色 `doctor` 会映射为当前前端历史类型中的 `user`。前端会保留本地签名和已有模板授权字段，避免迁移期丢失医生个人模板或签名。
+
+## 默认账号
+
+| 用户ID | 密码 | 角色 | 说明 |
+| --- | --- | --- | --- |
+| `admin` | `123456` | 超级管理员 | 初始最高权限。 |
+| `manager` | `123456` | 管理员 | 外科管理员。 |
+| `0001` | `123456` | 医生 | 外科医生账号。 |
+
+## 权限规则
+
+- `super`：可查看和管理全部用户、模板、报告、系统配置。
+- `admin`：可管理同部门医生或自己；不可创建超级管理员；新增用户默认是医生。
+- `user`：只能管理本人报告；不能进入模板管理和用户管理。
+
+用户管理中还有这些约束：
+
+- 不允许删除默认超级管理员 `admin`。
+- 不允许删除当前登录用户。
+- 一个部门只能存在一个管理员。
+- 创建医生前，该部门必须已有管理员。
+- 禁用管理员类账号需要授权密钥。
+
+`UserManage` 页面当前优先调用后端 `Users/Departments` API。只有开发模式或显式开启 `VITE_ENABLE_LOCAL_FALLBACK=true` 时，API 不可用才保留本地列表回退，便于迁移期演示和离线开发；生产安全边界以服务端校验为准。
+
+## 用户与部门 API
+
+- `GET /api/users`：超级管理员返回全部用户；管理员返回自己和本部门医生；医生只返回自己。
+- `POST /api/users`：超级管理员可创建管理员或医生；管理员只能创建本部门医生；后端校验一个部门只能有一个管理员，且创建医生前部门必须已有管理员。
+- `PATCH /api/users/:id`：超级管理员可改角色、部门、状态和模板授权；管理员只能改本部门医生的基础信息、密码和状态；医生只能改自己的基础资料。
+- `DELETE /api/users/:id`：禁止删除当前账号和默认超级管理员；有业务数据关联时返回冲突，建议改为禁用。
+- `GET /api/departments`：超级管理员返回全部部门；管理员/医生返回本人部门。
+- `PATCH /api/departments/:id/template-permissions`：超级管理员维护部门可用和可管理模板授权。
+
+## 模板权限
+
+用户有两个模板权限字段：
+
+- `manageableTemplates`：可管理的模板 ID。
+- `visibleTemplates`：新建报告时可使用的模板 ID。
+
+超级管理员拥有全部模板。管理员可被超级管理员分配部门可管理模板；医生可见模板来自本部门可用模板和自己的个人模板。当前前端仍沿用 `visibleTemplates/manageableTemplates` 字段展示，但后端数据来源是 `TemplateDepartmentPermission`。
+
+## 签名
+
+用户管理支持上传签名图片，前端会压缩为 JPEG Data URL，再调用 `POST /api/users/:id/signature` 写入后端 `FileResource` 和本地文件目录。后端把 `signatureFileId` 写回用户表，并通过 `/api/files/:id/content` 提供受控读取。报告模板中若存在 `surgeonSignature` 绑定字段，报告编辑器会尝试用当前用户签名 URL 渲染。
+
+只有本地回退开启时，API 不可用才会保留本地 `User.signature` 作为迁移期回退；模板图片、关键帧和视频已迁移到同一文件资源体系，后续应继续正规化报告媒体关系。
diff --git a/docs/modules/report-editor.md b/docs/modules/report-editor.md
new file mode 100644
index 0000000..e23e970
--- /dev/null
+++ b/docs/modules/report-editor.md
@@ -0,0 +1,98 @@
+# 模块文档：报告编辑器
+
+## 涉及文件
+
+- `src/pages/ReportEditor.tsx`
+- `src/api/reports.ts`
+- `src/api/ai.ts`
+- `src/api/speech.ts`
+- `src/api/library.ts`
+- `src/api/files.ts`
+- `src/utils/defaultContent.ts`
+- `src/utils/print.ts`
+- `src/types.ts`
+
+## 模块职责
+
+报告编辑器是系统核心模块，负责新建/编辑报告、字段同步、富文本排版、视频关键帧处理、AI 辅助撰写、语音输入、草稿恢复和报告保存。
+
+## 页面模式
+
+- `/report-editor`：新建报告。
+- `/report-editor?id=RPT_xxx`：编辑已有报告。
+- `/report-editor?id=RPT_xxx&restore=1`：从历史版本恢复内容后进入编辑器。
+
+## 草稿机制
+
+编辑器会在卸载、页面隐藏和部分操作后写入 `reportEditorDraft_${username}`。草稿包含正文 HTML、表单数据、视频列表、关键帧、当前标签页、模板 ID 和 AI 聊天上下文。
+
+保存报告后会清理草稿。
+
+## 智能字段
+
+模板中的智能字段形如：
+
+```html
+<span class="field-value" data-bind="patientName" contenteditable="true"></span>
+```
+
+编辑器会把侧边表单状态同步到正文，也会在用户直接编辑正文中的绑定字段时反向更新表单。日期和时间字段会按字段配置做格式化和解析。
+
+字段库优先从 `/api/library/fields` 读取，成功后同步 `formFieldsConfig`、`multiSelectOptions` 和 `anesthesiaOptions` 兼容缓存；只有开发模式或显式开启 `VITE_ENABLE_LOCAL_FALLBACK=true` 时，API 不可用才继续读取本地缓存。
+
+## 图片占位符
+
+`.image-placeholder` 用于在模板或报告中保留图片位置。
+
+- 普通占位符可点击选择图片，也可接收视频关键帧。
+- `data-mode="manual"` 用于 Logo、签名等静态位置，不允许拖入关键帧。
+- 已填充图片后会增加 `.has-image`。
+
+模板图片资源优先从 `/api/files?kind=TEMPLATE_ASSET` 读取；只有本地回退开启时，API 不可用才继续读取本地 `imageAssets`。
+
+## 视频与抽帧
+
+用户上传视频后，系统使用浏览器对象 URL 进行即时预览，同时优先通过 `POST /api/files` 以 `kind = VIDEO` 上传后端文件资源。抽帧逻辑按系统设置中的 `framePositions` 百分比定位视频时间，绘制到 canvas 后转为 JPEG，并优先以 `kind = FRAME` 上传后端文件资源。
+
+支持：
+
+- 自动抽帧。
+- 手动截帧。
+- 点击关键帧跳转视频时间。
+- 拖拽关键帧到报告占位符。
+- 自动把选中的抽帧序号插入空置图片占位符。
+
+报告保存前会等待当前视频和关键帧上传完成，并把 `fileId/url`、排序和抽帧信息通过 Reports API 同步到后端 `ReportMedia` 关系表。只有本地回退开启时，API 不可用才保留本地对象 URL/Data URL 回退。
+
+## AI 撰写
+
+AI 面板支持两种模式：
+
+- 对话模式：根据当前报告内容和图片上下文回答问题。
+- 修改模式：选中 `.ai-region` 后要求模型返回 JSON，其中包含 `reply` 和 `updatedHtml`。
+
+模型返回 HTML 后，系统会清理换行和 `<br>`，生成差异预览。用户确认后才写入目标 `.ai-content`。
+
+当前 AI 调用使用后端代理：
+
+- `/api/ai/chat`
+- 后端读取全局共用 Provider Key 并代理到 OpenAI 兼容 `/chat/completions`
+- 支持图片以 `image_url` 内容传入
+
+## 语音输入
+
+讯飞听写通过后端 WebSocket 代理：
+
+- 前端连接 `/api/speech/iat`，不再生成讯飞鉴权 URL，也不读取 APPID/APIKey/APISecret。
+- 浏览器采集麦克风音频，转换为 16k PCM 后发送音频帧。
+- 后端读取 Settings API 中的 `xfSpeechConfig`，连接讯飞 IAT，上游首帧由后端补齐 `common.app_id` 和默认 `business` 参数。
+- 识别结果由后端转发回前端，并追加到 AI 输入框。
+
+## 保存规则
+
+- 保存草稿不强制患者姓名和住院号。
+- 完成报告要求患者姓名和住院号。
+- 保存时优先调用 `POST /api/reports` 或 `PATCH /api/reports/:id`；后端会先做 HTML 白名单清洗，再写入 PostgreSQL 并维护历史版本。
+- 编辑已有已完成报告时，后端会把旧内容追加到历史记录并递增 `revision`。
+- 只有本地回退开启时，API 不可用才保留原有本地 `localStorage.reports` 保存逻辑；生产构建默认关闭这条路径。
+- 完成报告后跳转到报告管理页。
diff --git a/docs/modules/report-management.md b/docs/modules/report-management.md
new file mode 100644
index 0000000..bb9042b
--- /dev/null
+++ b/docs/modules/report-management.md
@@ -0,0 +1,53 @@
+# 模块文档：报告管理与查看
+
+## 涉及文件
+
+- `src/pages/ReportManage.tsx`
+- `src/pages/ReportView.tsx`
+- `src/api/reports.ts`
+- `server/src/reports/*`
+- `src/utils/print.ts`
+- `src/types.ts`
+
+## 报告管理
+
+`ReportManage` 优先通过 `src/api/reports.ts` 调用 `GET /api/reports` 读取报告列表，后端根据当前 Session 用户做权限过滤：
+
+- 医生只显示本人创建的报告。
+- 管理员只显示本部门报告。
+- 超级管理员显示全部报告。
+
+前端仍支持按标题、患者姓名、住院号搜索，按状态和时间筛选。只有开发模式或显式开启 `VITE_ENABLE_LOCAL_FALLBACK=true` 时，API 不可用才会回退读取 `localStorage.reports`，用于迁移期旧数据和离线测试。
+
+## 操作能力
+
+- 查看：进入 `/report-view/:id`。
+- 编辑：进入 `/report-editor?id=...`。
+- 删除：优先调用 `DELETE /api/reports/:id` 做后端软删除，再同步本地兼容缓存；只有本地回退开启时，API 不可用才会从本地 `reports` 中移除。
+- 历史版本：查看 `Report.history`，可恢复某个历史内容到编辑器。
+- 导出 PDF：调用浏览器打印。
+- 导出 JSON：下载结构化字段数据。
+- 批量导出和批量删除：基于表格选中项操作。
+
+医生只能编辑或删除自己的报告。
+
+## 历史恢复
+
+历史版本恢复时，管理页把目标 HTML 写入 `sessionStorage.restore_${reportId}`，再跳转到编辑器。编辑器读取后填入正文并移除 session 键。
+
+## 报告查看
+
+`ReportView` 优先通过 `GET /api/reports/:id` 获取报告，后端检查查看权限。只有本地回退开启时，失败才会回退本地报告和前端权限判断。报告正文通过 `dangerouslySetInnerHTML` 渲染，保存侧已由后端做第一版 HTML 白名单清洗，页面提供浏览器打印入口。
+
+## 后端报告模型
+
+后端 `Report` 表保存标题、患者姓名、住院号、HTML 正文、作者、部门、状态和修订版本。`Report.metadata` 暂存患者扩展字段；视频和关键帧文件内容写入 `FileResource`，报告中的媒体引用、排序和抽帧信息写入 `ReportMedia` 关系表。Reports API 返回时仍组装成前端兼容的 `videos` 和 `capturedFrames` 字段。
+
+## 导出 JSON 内容
+
+当前报告 JSON 导出主要包含：
+
+- `meta`：报告 ID、标题、创建/更新时间、作者和状态。
+- `fields`：按 `DEFAULT_FORM_FIELDS` 提取的报告字段。
+
+报告正文 HTML 和视频帧数据不在这个结构化字段导出范围内。
diff --git a/docs/modules/system-settings.md b/docs/modules/system-settings.md
new file mode 100644
index 0000000..f5abaac
--- /dev/null
+++ b/docs/modules/system-settings.md
@@ -0,0 +1,60 @@
+# 模块文档：系统设置
+
+## 涉及文件
+
+- `src/pages/SystemSettings.tsx`
+- `src/api/settings.ts`
+- `src/types.ts`
+- `src/utils/storage.ts`
+- `server/src/settings`
+
+## 模块职责
+
+系统设置负责维护视频抽帧、AI 接口、讯飞语音和默认模板配置。超级管理员可以看到全部设置；其他用户主要配置默认报告模板。
+
+页面优先调用 `GET /api/settings/system` 读取设置，保存时调用 `PATCH /api/settings/system`。只有开发模式或显式开启 `VITE_ENABLE_LOCAL_FALLBACK=true` 时，API 不可用才保留 `localStorage.systemSettings` 回退。后端使用 `SystemSetting` 表保存全局设置，并用 `scope = user:<id>` 保存个人默认模板。
+
+## 视频抽帧配置
+
+配置字段包括：
+
+- `frameCount`：抽取帧数。
+- `framePositions`：每帧对应的视频进度百分比。
+- `frameMode`：调整帧数时使用整体均匀抽取或保持当前抽帧。
+- `autoInsertFrames`：是否自动插入关键帧。
+- `autoInsertDelay`：自动插入延迟。
+- `autoInsertFrameIndices`：哪些抽帧序号参与自动插入。
+
+保存时会对 `framePositions` 排序，并把 `frameCount` 同步为位置数组长度。
+
+## AI 接口配置
+
+`activeAiProvider` 指向当前服务商，`aiProviders` 保存各服务商配置。默认服务商包括：
+
+- Kimi
+- DeepSeek
+- OpenAI
+- Custom
+
+系统通过后端 `/api/ai/models` 测试连接和获取模型列表，通过 `/api/ai/chat` 在报告编辑器中生成内容。后端读取全局共用 Provider Key 并代理 OpenAI 兼容 `/models` 与 `/chat/completions`，普通用户读取设置时不会拿到 AI Key。
+
+## 讯飞语音配置
+
+`xfSpeechConfig` 保存讯飞 WebSocket IAT 所需的 APPID、APIKey 和 APISecret。报告编辑器只连接本系统 `/api/speech/iat`，由后端读取这些配置、生成讯飞鉴权 URL 并转发音频和识别结果。普通用户读取设置时不会拿到 APIKey/APISecret。
+
+## 默认模板
+
+`defaultTemplate` 指向模板 ID。新建报告时，如果当前用户可见该模板，编辑器会自动加载对应模板内容；否则回退到默认内置报告内容。
+
+## 重置能力
+
+超级管理员可执行：
+
+- 恢复系统设置出厂设置：优先调用 `POST /api/settings/system/reset`，只有本地回退开启时失败才重置本地 `systemSettings`。
+- 重置全部数据：仅本地回退开启时执行 `localStorage.clear()` 并刷新；生产构建默认阻止把本地清空误认为后端数据重置。
+
+## 注意事项
+
+- `systemSettings` 的本地混淆不等于安全加密；当前仅作为开发/显式本地回退模式下 API 不可用时的兼容缓存。
+- 初始化、类型和系统设置页面已统一使用 `xfSpeechConfig`；当前由后端语音代理使用。
+- 默认 API Key 或语音密钥不应留在生产前端代码中。
diff --git a/docs/modules/template-management.md b/docs/modules/template-management.md
new file mode 100644
index 0000000..ca1d62d
--- /dev/null
+++ b/docs/modules/template-management.md
@@ -0,0 +1,88 @@
+# 模块文档：模板管理
+
+## 涉及文件
+
+- `src/pages/TemplateManage.tsx`
+- `src/api/templates.ts`
+- `src/api/library.ts`
+- `src/api/files.ts`
+- `server/src/templates/*`
+- `server/src/library/*`
+- `server/src/files/*`
+- `src/utils/defaultContent.ts`
+- `src/utils/print.ts`
+- `src/types.ts`
+
+## 模块职责
+
+模板管理用于维护报告模板 HTML、字段库、图片资源、AI 可编辑区域和模板导入导出。医生不可进入该模块。
+
+## 模板列表
+
+模板列表优先通过 `GET /api/templates?access=manage` 读取，后端根据当前 Session 用户过滤可管理模板：
+
+- 超级管理员可管理全部模板。
+- 管理员可管理本部门模板或被授权可管理模板。
+- 医生不能进入模板管理页，但可以通过报告编辑器新建自己的个人模板。
+
+只有开发模式或显式开启 `VITE_ENABLE_LOCAL_FALLBACK=true` 时，API 不可用才回退读取 `localStorage.templates`，用于迁移期旧数据和离线测试。API 返回空列表会按真实空数据展示，不再自动把本地模板当作生产数据。
+
+支持：
+
+- 新增模板。
+- 编辑模板名称和描述。
+- 删除或批量删除模板。
+- 保存当前模板内容。
+- 打印模板预览。
+- 单个导出和批量导出 JSON。
+- 从 JSON 模板包导入。
+
+新增、编辑、保存内容和删除模板会优先调用后端 `POST/PATCH/DELETE /api/templates`，后端会对模板 HTML 做白名单清洗；成功后同步 `localStorage.templates` 作为兼容缓存。只有本地回退开启时，API 失败才允许写本地模板。
+
+## 模板内容编辑
+
+模板正文是 `contentEditable` HTML。工具栏支持常见富文本命令、表格、图片占位符和 AI 区域插入。编辑器内部维护 undo/redo 栈，并根据内容高度扩展 A4 页面高度。
+
+## 字段库
+
+字段定义优先通过 `GET/PATCH /api/library/fields` 读写，后端保存到 `SystemSetting.key = fieldLibrary`；`formFieldsConfig` 继续作为迁移期兼容缓存，并仅在本地回退开启且 API 不可用时作为回退。字段支持：
+
+- 显示/隐藏。
+- 系统锁定字段保护。
+- 文本、单选、多选、日期、时间、签名、图片等类型。
+- 选项维护。
+- 时间格式和默认值。
+- 下划线样式。
+
+插入字段时，模板会写入带 `data-bind` 的 `.field-value`，报告编辑器按该 key 进行表单同步。
+
+## 图片资源
+
+模板图片资源优先通过通用文件 API 上传和读取：
+
+- `GET /api/files?kind=TEMPLATE_ASSET`
+- `POST /api/files`
+- `DELETE /api/files/:id`
+
+页面仍把资源同步到 `imageAssets` 作为迁移期兼容缓存。只有本地回退开启时，API 不可用的上传图片才会回退为本地 Data URL。
+
+## 后端模板模型
+
+后端 `Template` 表保存模板名称、描述、HTML 正文、字段 JSON、模板范围、归属部门或归属用户。部门授权由 `TemplateDepartmentPermission` 表维护，支持 `canUse` 和 `canManage`。医生个人模板使用 `scope = PERSONAL` 和 `ownerUserId` 归属本人。
+
+## 导入导出格式
+
+单模板导出大致结构：
+
+```json
+{
+  "version": "1.0",
+  "type": "surclaw_template_package",
+  "title": "模板名称",
+  "description": "模板描述",
+  "content": "模板 HTML",
+  "fields": []
+}
+```
+
+批量导出使用 `type: "surclaw_template_package_batch"`，包含 `templates` 数组。当前导入逻辑只接受单模板包。
diff --git a/docs/permissions.md b/docs/permissions.md
new file mode 100644
index 0000000..864ed02
--- /dev/null
+++ b/docs/permissions.md
@@ -0,0 +1,280 @@
+# 权限设计
+
+本文档描述后端化后的目标权限模型。当前版本登录认证已接入后端，但角色和部分页面级过滤仍主要在前端执行，不能作为生产安全边界；后端化后必须由服务端统一鉴权和授权。
+
+## 已确定规则
+
+- 超级管理员拥有全权限，可以查看和修改系统内任何数据。
+- 超级管理员默认属于 `admin` 部门，但查询、管理和授权不受部门限制。
+- 管理员只能查看、编辑和删除本部门报告。
+- 医生默认只能查看、编辑和删除本人报告。
+- 医生完成报告后仍允许修改，也允许删除本人已完成报告。
+- 完成报告后的每次修改都需要增加修订版本号，方便医疗文书追踪。
+- 模板按部门授权。
+- 管理员可以修改本部门模板，也可以使用被授权模板。
+- 医生不可以直接修改部门模板，但可以复制/新建自己的模板并修改。
+- 只有超级管理员能创建或授权管理员。
+- 一个部门只能有一个管理员。
+- 不设置患者维度权限。
+- 部门之间不存在上级/下级关系。
+- 不需要临时授权或会诊授权。
+- 不允许同一用户属于多个部门。
+- AI 代理只能接收当前报告内容作为上下文，不能读取跨部门报告。
+- 报告导出不需要水印、导出原因、审批或专门导出审计。
+- 前端菜单隐藏只是体验优化，所有权限必须在后端 API 层强校验。
+
+## 角色定义
+
+| 角色 | 代码建议 | 权限定位 |
+| --- | --- | --- |
+| 超级管理员 | `super` | 系统最高权限，跨部门、跨模板、跨用户管理。 |
+| 管理员 | `admin` | 部门级管理者，只管理本部门业务数据；每个部门最多一个管理员。 |
+| 医生 | `doctor` 或沿用 `user` | 普通报告创建者，主要管理本人报告，可复制或新建个人模板。 |
+
+当前前端代码使用 `user` 表示医生。后端化时可以继续沿用 `user`，也可以迁移为更清晰的 `doctor`。如果迁移，需要同步前端类型、接口返回和历史数据。
+
+## 数据边界
+
+后端数据至少需要以下边界字段：
+
+- `tenant_id`：医院或部署实例。单医院也建议预留。
+- `department_id`：科室。
+- `user_id`：用户。
+- `role`：用户角色。
+
+报告、模板、用户、文件、操作日志都应带上 `tenant_id`。报告必须带 `department_id`。模板可以带拥有部门，也可以通过授权表关联部门。
+
+组织规则：
+
+- 每个用户只能属于一个部门。
+- 超级管理员默认部门为 `admin`。
+- 部门没有上下级层级。
+- 一个部门最多一个管理员，后端创建/修改管理员时必须校验唯一性。
+
+## 报告权限
+
+### 查看报告
+
+| 角色 | 规则 |
+| --- | --- |
+| 超级管理员 | 可查看所有报告。 |
+| 管理员 | 只能查看本部门报告。 |
+| 医生 | 只能查看本人报告。 |
+
+建议后端查询规则：
+
+```text
+super:  WHERE tenant_id = current.tenant_id
+admin:  WHERE tenant_id = current.tenant_id AND department_id = current.department_id
+doctor: WHERE tenant_id = current.tenant_id AND author_id = current.user_id
+```
+
+### 新建报告
+
+| 角色 | 规则 |
+| --- | --- |
+| 超级管理员 | 可为任意部门创建报告，默认部门为 `admin`，也可在表单中选择目标部门。 |
+| 管理员 | 可在本部门创建报告。 |
+| 医生 | 可为自己创建报告，部门取当前用户部门。 |
+
+建议新建报告时由后端写入 `author_id`、`department_id`、`tenant_id`，不要完全信任前端传入。
+
+### 编辑报告
+
+| 角色 | 规则 |
+| --- | --- |
+| 超级管理员 | 可编辑任何报告。 |
+| 管理员 | 可编辑本部门报告。 |
+| 医生 | 可编辑本人报告，包括已完成报告。 |
+
+完成报告后仍允许修改。后端必须：
+
+- 每次保存创建 `report_histories` 记录。
+- 已完成报告每次修改递增修订版本号。
+- 记录修改人、修改时间、修改动作和旧版本内容或旧版本引用。
+
+### 删除报告
+
+| 角色 | 规则 |
+| --- | --- |
+| 超级管理员 | 可删除任何报告。 |
+| 管理员 | 可删除本部门报告，包括已完成报告。 |
+| 医生 | 可删除本人报告，包括已完成报告。 |
+
+实现建议：
+
+- 后端可以先做软删除，保留 `deleted_at`、`deleted_by`，避免误删后无法恢复。
+- 如果未来接入正式病历归档流程，再考虑把“删除”改为“作废/归档”。
+
+### 导出报告
+
+| 角色 | 规则 |
+| --- | --- |
+| 超级管理员 | 可导出所有报告。 |
+| 管理员 | 可导出本部门报告。 |
+| 医生 | 可导出本人报告。 |
+
+当前确定：报告导出不需要水印、导出原因、审批或专门导出审计。
+
+## 模板权限
+
+已确定：模板按部门授权。
+
+建议数据模型：
+
+- `templates`：模板主体。
+- `departments`：部门。
+- `template_department_permissions`：模板与部门授权关系。
+- `user_templates` 或在 `templates` 中增加 `owner_user_id`：医生复制/新建的个人模板。
+
+建议权限规则：
+
+| 角色 | 查看/使用模板 | 管理模板 |
+| --- | --- | --- |
+| 超级管理员 | 全部模板 | 全部模板，可授权给部门。 |
+| 管理员 | 本部门模板和被授权模板 | 可修改本部门模板，可使用被授权模板。 |
+| 医生 | 本部门被授权模板、自己的个人模板 | 不可修改部门模板；可复制/新建并修改自己的个人模板。 |
+
+新建报告时，后端必须校验当前用户是否有权使用该模板。
+
+模板授权粒度建议：
+
+- 部门授权模板用于“部门可见/可使用”。
+- 模板归属部门用于判断管理员是否可以管理。
+- 医生个人模板只归属创建医生本人，不自动成为部门模板。
+
+## 用户权限
+
+| 角色 | 用户管理权限 |
+| --- | --- |
+| 超级管理员 | 创建、编辑、禁用、删除所有用户，分配部门和角色，创建或授权管理员。 |
+| 管理员 | 管理本部门医生；不能创建管理员；不能跨部门管理用户。 |
+| 医生 | 只能查看和修改自己的基础资料，密码修改走单独接口。 |
+
+管理员规则：
+
+- 只有超级管理员能创建或授权管理员。
+- 一个部门只能有一个管理员。
+- 管理员不能创建超级管理员。
+
+## 系统设置权限
+
+| 设置项 | 超级管理员 | 管理员 | 医生 |
+| --- | --- | --- | --- |
+| AI Provider 和密钥 | 可管理 | 不可管理 | 不可管理 |
+| 讯飞语音密钥 | 可管理 | 不可管理 | 不可管理 |
+| 全局抽帧策略 | 可管理 | 不可管理 | 不可管理 |
+| 部门默认模板 | 可管理全部部门 | 可管理本部门 | 不可管理 |
+| 个人默认模板 | 可配置自己默认值 | 可配置自己默认值 | 可配置自己默认值 |
+
+建议把设置拆为：
+
+- 全局设置：超级管理员维护。
+- 部门设置：超级管理员或本部门管理员维护。
+- 用户偏好：每个用户自己维护。
+
+## 文件权限
+
+文件包括签名、模板图片、报告图片、视频、关键帧、导出文件。
+
+建议规则：
+
+- 签名文件：用户本人、本部门管理员、超级管理员可访问。
+- 报告相关文件：继承报告权限。
+- 模板图片：继承模板权限。
+- 视频文件：继承报告权限，且建议限制下载或设置过期访问 URL。
+- 导出文件：继承报告导出权限；不要求专门导出审计。
+
+## 操作记录与历史
+
+虽然报告导出不需要专门审计，但以下写操作仍建议记录基础操作日志，便于排查和追踪：
+
+- 登录成功/失败。
+- 新建、保存、完成、修改已完成报告。
+- 删除报告。
+- 新建、修改、删除模板。
+- 模板部门授权变更。
+- 新建、禁用、删除、改角色用户。
+- 修改 AI/语音密钥。
+- 修改系统设置。
+
+报告历史是业务必需项：
+
+- 报告每次保存保留历史版本。
+- 已完成报告每次修改递增修订版本号。
+- 历史记录应包含修改人、修改时间、修改动作、旧内容或旧内容引用。
+
+日志建议包含：
+
+- `tenant_id`
+- `actor_user_id`
+- `actor_role`
+- `action`
+- `target_type`
+- `target_id`
+- `department_id`
+- `ip`
+- `user_agent`
+- `created_at`
+- `metadata`
+
+敏感病历正文和完整密钥不应写入普通日志；报告正文版本应放在报告历史表或对象存储中。
+
+## AI 权限
+
+AI 代理只能接收当前报告内容作为上下文：
+
+- 不允许读取跨部门报告。
+- 不允许自动检索其他报告作为上下文。
+- 不需要患者维度权限。
+- AI 请求由后端代理发出，前端不接触真实 API Key。
+
+如果用户在当前报告中选择了图片、关键帧或正文片段，这些内容必须先通过当前报告权限校验。
+
+## API 权限落点
+
+后端每个接口都要做权限校验。建议先在服务层写统一 guard/policy：
+
+- `canViewReport(user, report)`
+- `canCreateReport(user, departmentId)`
+- `canEditReport(user, report)`
+- `canDeleteReport(user, report)`
+- `canExportReport(user, report)`
+- `canUseTemplate(user, template)`
+- `canManageTemplate(user, template)`
+- `canCreatePersonalTemplate(user)`
+- `canManageUser(actor, targetUser)`
+- `canCreateAdmin(actor, departmentId)`
+- `canManageSettings(user, scope, departmentId?)`
+
+列表接口不能只在前端过滤，必须在数据库查询条件中限制可见范围。
+
+## 已关闭问题
+
+以下问题已经确认，不再作为阻塞项：
+
+| 问题 | 结论 |
+| --- | --- |
+| 管理员是否可以编辑本部门医生创建的报告？ | 可以。 |
+| 管理员是否可以删除本部门已完成报告？ | 可以。 |
+| 医生是否可以删除本人已完成报告？ | 可以。 |
+| 管理员是否可以创建其他管理员？ | 不可以，只有超级管理员能创建/授权管理员。 |
+| 一个部门是否只能有一个管理员？ | 是。 |
+| 管理员是否可以管理本部门模板内容？ | 可以修改本部门模板，也可以使用被授权模板。 |
+| 模板授权粒度如何处理？ | 部门模板按部门授权；医生不可改部门模板，但可复制/新建个人模板。 |
+| 超级管理员是否属于某个部门？ | 默认属于 `admin` 部门。 |
+| 是否需要患者维度权限？ | 不需要。 |
+| 报告完成后修改是否需要修订版本号？ | 需要。 |
+| 报告导出是否需要水印、原因、审批或专门审计？ | 不需要。 |
+| AI 能否读取跨部门报告作为上下文？ | 不能，只能接收当前报告内容。 |
+| 部门是否有上下级关系？ | 没有。 |
+| 是否需要临时授权或会诊授权？ | 不需要。 |
+| 是否允许同一用户属于多个部门？ | 不允许。 |
+
+## 后续实现注意
+
+- 数据库应对“一个部门一个管理员”设置唯一约束或事务校验。
+- 报告列表、模板列表、用户列表必须在 SQL 查询层过滤权限。
+- 医生个人模板和部门模板需要在数据模型上区分。
+- 已完成报告的修改需要版本号和历史记录，不应只覆盖最新内容。
+- 删除报告建议先做软删除，后续如有病历归档要求再调整为作废流程。
diff --git a/docs/progress.md b/docs/progress.md
new file mode 100644
index 0000000..4248a8b
--- /dev/null
+++ b/docs/progress.md
@@ -0,0 +1,74 @@
+# 进度文档
+
+## 当前状态
+
+项目已具备一套可运行的迁移期闭环：登录认证、数据库 Session、工作台统计、报告读写、报告媒体关系、模板读写、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置、签名文件、AI 对话代理和讯飞语音代理已接入后端。
+
+- 登录已接入后端 Session API；Session 已持久化到 `AppSession` 表；默认业务数据初始化仅作为开发本地回退存在。
+- 工作台统计已接入 `GET /api/dashboard/stats`。
+- 报告编辑、模板选择、字段绑定、富文本编辑已实现。
+- 视频上传、自动抽帧、手动截帧、关键帧插入已实现；视频和关键帧优先上传到后端 Files API。
+- AI 对话、AI 区域改写、差异确认和调用日志已实现；AI 对话已改为后端 `/api/ai/chat` 代理。
+- 讯飞语音听写入口已实现，并已改为后端 `/api/speech/iat` WebSocket 代理。
+- 报告管理、查看、历史恢复、打印、JSON/PDF 导出已实现。
+- 报告 API 已实现列表、详情、创建、保存、完成修订、历史记录和软删除；`ReportManage`、`ReportView`、`ReportEditor` 已优先调用后端，只有开发/显式回退模式下才保留本地回退。
+- 模板管理、字段库、模板导入导出已实现；模板 API 已支持可用/可管理列表、详情、创建、更新、删除和个人模板；字段库已优先接入 `/api/library/fields`。
+- 用户管理、部门管理员约束和部门模板授权已优先接入后端 Users/Departments API；签名上传和模板图片资源已通过 Files API 写入后端文件资源。
+- 系统设置、抽帧策略、AI Provider、语音参数和默认模板已优先接入 Settings API，只有开发/显式回退模式下才保留本地缓存回退。
+- Docker/Nginx 静态部署配置已存在。
+- 开发端口已调整为 `3001`。
+- 已补充 Vitest 测试框架和核心功能单元/组件测试。
+- 已补充功能盘点，区分真实功能、外部集成、前端演示和预留项。
+- 前端权限 mock 已对齐目标规则：超级管理员全部、管理员本部门、医生本人。
+- 报告已增加修订版本号，已完成报告再次保存会递增版本。
+- 报告编辑器已支持医生保存“我的个人模板”。
+- 讯飞语音配置初始化字段已统一为 `xfSpeechConfig`。
+- 已新增 Playwright E2E，用 localStorage 种子锁定登录、报告权限、报告修订版本和医生个人模板流程。
+- 已新增 API 契约草案，为后端化接口、权限过滤和响应格式提供基线。
+- 已启动后端化第一阶段：新增 NestJS API 骨架、Prisma/PostgreSQL 数据模型、默认 seed、健康检查、认证接口和后端权限策略测试。
+- 已完成前端认证闭环第一步：新增 API client、Auth Context、后端用户兼容映射，`Login`/`Sidebar` 已接入后端认证并同步 `currentUser`。
+
+## 已知风险
+
+- 前端仍有部分体验控制和兼容缓存依赖浏览器本地数据；后端已经承载主业务数据和第一版审计。
+- 后端认证、Dashboard API、报告 API、报告媒体关系、模板 API、字段库 API、用户/部门 API、设置 API、通用文件/签名文件 API、AI 代理和语音代理已可用；审计和 HTML 清洗已有第一版，导出/查看审计仍待加强。
+- 本地存储仍可能包含病历兼容缓存、旧演示密码字段、模板图片和关键帧，不适合生产；历史浏览器数据中也可能残留旧版语音服务密钥。
+- `systemSettings` 的混淆存储不是加密。
+- 旧版本曾在前端默认配置中包含服务密钥痕迹；当前源码默认值已清空，但生产化前仍应轮换曾经暴露过的第三方密钥。
+- 报告正文和模板正文保存时已做服务端白名单清洗，但仍以 HTML 字符串存储并通过 `dangerouslySetInnerHTML` 渲染，需要持续安全测试。
+- 大视频和大量 Base64 图片会快速占满浏览器存储空间。
+- `document.execCommand` 已是过时 API，但当前编辑器大量依赖它。
+- README 曾与源码账号不一致，当前已同步为 `0001 / 123456`。
+
+## 建议下一步
+
+1. 补后端认证自动化集成测试：健康检查、登录、me、logout、密码错误、禁用账号。
+2. 补报告 API 自动化集成测试：按角色列表过滤、无权详情、创建、完成修订、软删除。
+3. 补模板 API 自动化集成测试：按 `access=use/manage` 过滤、管理员创建部门模板、医生创建个人模板、无权删除。
+4. 补用户/部门 API 自动化集成测试：用户列表范围、管理员唯一性、医生创建约束、部门模板授权。
+5. 补设置/签名文件 API 自动化集成测试：设置保存、非超级管理员默认模板、签名上传和受控读取。
+6. 逐步替换前端数据流：继续减少字段库、模板图片和报告编辑器草稿之外的本地回退依赖。
+7. 补查看日志、第三方代理调用摘要、后端导出 API 和限流；报告导出不要求专门导出审计。
+8. 增加数据迁移：为 `localStorage` 或后端数据增加版本号和迁移脚本。
+
+## 维护记录
+
+| 日期 | 事项 |
+| --- | --- |
+| 2026-05-01 | 新增 `docs/` 文档结构，梳理当前需求、设计、模块和风险。 |
+| 2026-05-01 | 本地开发端口从 `3000` 调整为 `3001`。 |
+| 2026-05-01 | 新增功能盘点和测试文档，补充 Vitest 测试覆盖核心功能契约。 |
+| 2026-05-01 | 对齐前端权限 mock、报告修订版本和医生个人模板，统一 `xfSpeechConfig` 字段。 |
+| 2026-05-01 | 新增 Playwright E2E 和 API 契约草案，锁定后端化前的关键前端行为。 |
+| 2026-05-01 | 新增 NestJS + Prisma 后端骨架、PostgreSQL schema、默认 seed、健康检查、认证接口和后端权限策略测试。 |
+| 2026-05-01 | 前端新增 API client、Auth Context 和后端用户兼容映射，登录/退出/恢复会话接入后端认证。 |
+| 2026-05-01 | 新增后端 Reports API、`Report.metadata` 兼容字段和报告前端 API 接入，报告读写优先走后端。 |
+| 2026-05-01 | 新增后端 Templates API、默认模板 seed 和模板前端 API 接入，模板读写优先走后端。 |
+| 2026-05-01 | 新增后端 Users/Departments API 和用户管理页 API 接入，部门模板授权优先由后端维护。 |
+| 2026-05-02 | 新增后端 Settings API、签名文件 API 和前端接入，系统设置与电子签名优先走后端。 |
+| 2026-05-02 | 新增后端 AI Proxy，报告编辑器和模型测试改为调用 `/api/ai/chat` 与 `/api/ai/models`。 |
+| 2026-05-02 | 新增后端讯飞语音 WebSocket Proxy，报告编辑器改为调用 `/api/speech/iat`，普通用户读取设置时不返回语音密钥。 |
+| 2026-05-02 | 新增后端字段库 API、通用文件 API 和 HTTP 集成测试，模板图片资源优先写入后端文件资源。 |
+| 2026-05-02 | 报告编辑器视频和关键帧优先上传 Files API，新增真实 PostgreSQL 服务集成测试。 |
+| 2026-05-02 | 新增 `ReportMedia` 表和迁移，报告视频/关键帧引用从 `Report.metadata` 拆出。 |
+| 2026-05-02 | 新增 Dashboard API、数据库 Session Store、审计服务、HTML 白名单清洗、本地回退开关和 Docker 上传目录 volume，清理 Gemini 旧依赖。 |
diff --git a/docs/requirements.md b/docs/requirements.md
new file mode 100644
index 0000000..17629b7
--- /dev/null
+++ b/docs/requirements.md
@@ -0,0 +1,75 @@
+# 需求文档
+
+## 项目目标
+
+手术图文病历报告系统用于医院或科室内网场景，提供手术记录的图文报告撰写、模板维护、报告管理、用户权限控制、视频关键帧抽取和 AI 辅助撰写能力。
+
+当前实现处于后端化迁移期：登录认证、数据库 Session、工作台统计、报告、模板、字段库、模板图片资源、视频/关键帧文件、用户管理、部门模板授权、系统设置、签名文件、AI 对话和语音听写已接入后端，并已有第一版写操作审计。它适合演示、单机试用或迁移期验证，尚未具备完整生产运维能力。
+
+## 用户角色
+
+| 角色 | 代码值 | 当前能力 |
+| --- | --- | --- |
+| 超级管理员 | `super` | 管理全部用户、模板、系统设置和全部报告。 |
+| 管理员 | `admin` | 管理同部门医生、管理授权模板、查看管理范围内功能。 |
+| 医生 | `user` | 新建和管理本人报告，使用授权模板，配置默认模板。 |
+
+## 功能需求
+
+### 登录与初始化
+
+- 首次进入登录页时初始化默认模板、默认用户、表单字段配置、图片资源和系统设置。
+- 支持默认测试账号快捷登录。
+- 登录调用后端 `/api/auth/login`，后端通过 Session Cookie 维持登录态。
+- 用户状态为 `inactive` 时后端禁止登录，前端展示禁用提示。
+
+### 图文报告生成
+
+- 支持选择默认或可见模板创建报告。
+- 支持基本信息表单与正文中的 `data-bind` 智能字段双向同步。
+- 支持富文本编辑、表格、图片占位符和 AI 可编辑区域。
+- 支持上传视频，按系统设置的百分比位置自动抽帧。
+- 支持手动截帧、拖拽关键帧到报告占位符、自动插入选定关键帧。
+- 支持 AI 对话和 AI 区域改写，改写前显示差异确认。
+- 支持通过后端代理进行讯飞语音听写，把识别文本追加到 AI 输入框。
+- 支持保存草稿、完成报告、打印和导出。
+
+### 报告管理
+
+- 支持按标题、患者姓名、住院号搜索。
+- 支持按状态和时间范围筛选。
+- 医生只能看到本人报告；管理员和超级管理员可看到更多报告。
+- 支持查看、编辑、删除、历史版本恢复。
+- 支持单份或批量导出 PDF/JSON。
+
+### 模板管理
+
+- 支持模板新增、编辑、删除、批量删除。
+- 支持模板内容富文本编辑、智能字段插入、图片占位符、AI 可编辑区域。
+- 支持模板导入导出 JSON 包。
+- 支持表单字段库维护，包括字段显示、选项、时间格式、默认值和下划线样式。
+- 新增模板后会同步当前用户或部门用户的模板权限。
+
+### 用户管理
+
+- 超级管理员可管理系统用户，并给管理员分配可管理模板。
+- 管理员只能管理同部门医生或自己。
+- 同一部门只能存在一个管理员，后端创建或修改管理员时会校验。
+- 支持上传用户签名图片到后端文件资源，报告中可通过 `surgeonSignature` 字段展示。
+- 禁用管理员类账号需要授权密钥。
+
+### 系统设置
+
+- 超级管理员可配置抽帧数量、抽帧百分比、抽帧计算模式和自动插入策略。
+- 超级管理员可配置 AI 服务商、接口地址、API Key 和模型名。
+- 超级管理员可配置讯飞语音听写参数。
+- 所有角色可设置默认报告模板。
+- 超级管理员可恢复系统设置；清空全部本地数据仅作为开发/显式本地回退模式下的浏览器缓存操作，不代表清空后端业务数据。
+
+## 非功能需求与约束
+
+- 当前版本对报告、报告媒体引用、模板、字段库、模板图片、视频/关键帧文件、用户、部门权限、系统设置和签名支持多端后端同步。
+- 视频仍以对象 URL 方式在浏览器内即时预览，同时后台优先上传服务器；大文件上传、断点续传和独立媒体关系表尚未完成。
+- 报告内容使用 HTML 字符串存储，存在 XSS 和内容污染风险。
+- 后端账号密码已使用哈希存储，AI/语音密钥已由后端代理使用；但开发回退模式和历史浏览器缓存中仍可能存在 `localStorage.users` 演示密码字段或旧版密钥，不满足生产安全要求。
+- 医疗病历属于敏感数据，生产化前必须补齐完整服务端授权、审计、加密、备份和文件存储。
diff --git a/docs/security.md b/docs/security.md
new file mode 100644
index 0000000..c432328
--- /dev/null
+++ b/docs/security.md
@@ -0,0 +1,24 @@
+# 安全说明
+
+## 当前安全边界
+
+本项目当前处于后端化迁移期。登录认证、数据库 Session、工作台统计、报告、报告媒体关系、模板、字段库、模板图片资源、视频/关键帧文件、用户、部门模板授权、系统设置、签名文件、AI 对话和讯飞语音听写已接入后端 Session/API/代理，后端账号密码使用 Argon2 哈希。客户端权限只能防止普通误操作，不能抵御有意绕过。
+
+## 主要风险
+
+- 开发模式 `localStorage.users` 仍保留兼容缓存和旧演示密码字段；生产构建默认关闭本地回退。
+- AI Key 和讯飞语音密钥已由后端代理使用；普通用户读取系统设置时不会返回真实密钥。超级管理员仍可维护全局密钥，应避免把密钥写入源码、日志或文档。
+- 旧版本源码中存在默认服务密钥痕迹，应视为已暴露；当前默认值已清空，但生产化前仍需轮换曾经暴露过的第三方密钥。
+- 报告和模板 HTML 保存时已做服务端白名单清洗，但仍直接渲染 HTML，需要继续做绕过测试和打印兼容测试。
+- 浏览器存储没有审计、备份、权限隔离和加密能力。
+- 医疗病历数据属于敏感数据，不能直接用于公网生产。
+
+## 生产化建议
+
+1. 完善服务端权限校验：报告、模板、用户、设置和文件 API 必须全部按角色、部门和作者强校验。
+2. 增加服务端数据层：视频和关键帧文件已完成第一版 Files API，报告媒体引用已拆到 `ReportMedia`；字段库和模板图片资源已完成第一版 API。
+3. 增加文件服务：报告图片、视频和关键帧后续可切换对象存储或院内文件服务；签名、模板图片、视频和关键帧已完成第一版后端文件资源。
+4. 完善 API 代理：AI 和语音已完成第一版后端代理，后续应补限流、审计、错误分级和第三方调用隔离测试。
+5. 增强 HTML 清洗：当前报告和模板保存已有第一版白名单过滤，后续需覆盖 AI 返回、导入文件、旧数据迁移和绕过测试。
+6. 增加审计日志：当前登录、报告/模板/用户/设置/文件修改已有第一版审计，后续补查看日志、打印/导出错误追踪和第三方代理调用摘要；报告导出不要求专门导出审计。
+7. 增加数据备份与恢复：避免浏览器清理缓存造成业务数据丢失。
diff --git a/docs/testing.md b/docs/testing.md
new file mode 100644
index 0000000..83bd37b
--- /dev/null
+++ b/docs/testing.md
@@ -0,0 +1,110 @@
+# 测试文档
+
+## 测试命令
+
+```bash
+npm run lint
+npm run test
+npm run test:e2e
+npm run server:build
+npm run build
+```
+
+当前单元/组件测试框架为 Vitest，运行环境为 jsdom。React 页面测试使用 Testing Library。端到端测试使用 Playwright，当前仍以 localStorage 种子数据锁定迁移期前端基线行为；登录相关测试会 mock Auth API。后端使用 Vitest 覆盖权限策略、schema、DTO 映射、Nest HTTP 层集成测试和真实 PostgreSQL 服务集成测试，NestJS API 构建用 `npm run server:build` 验证。
+
+## 测试范围
+
+| 范围 | 当前覆盖 |
+| --- | --- |
+| 数据初始化 | 登录页首次加载会创建默认用户、模板、字段和系统设置。 |
+| 前端 API client | 统一解包 `{ data }` 响应、携带 Cookie credentials、识别后端错误 envelope。 |
+| 前端 Dashboard API | 工作台统计封装会请求 `/api/dashboard/stats` 并校验响应结构。 |
+| 前端语音代理地址 | 根据当前页面来源或 `VITE_API_BASE_URL` 生成 `/api/speech/iat` WebSocket 地址。 |
+| 前端字段库和文件 API | 字段库读取/更新、通用文件列表/上传封装。 |
+| Auth 兼容映射 | 后端 `doctor` 角色会映射为当前前端使用的 `user`，并保留本地签名和模板授权。 |
+| 权限展示 | 侧边栏会按角色显示或隐藏模板管理、用户管理等入口。 |
+| 报告权限 | 医生只看到本人报告，管理员看到本部门报告，超级管理员看到全部本地报告。 |
+| 后端报告映射 | Report API 使用 `metadata` 兼容前端扩展字段，使用 `ReportMedia` 组装视频/关键帧兼容字段。 |
+| 模板权限 | 医生可使用本部门授权模板和个人模板，不能使用他人个人模板。 |
+| 后端模板映射 | Template API 返回前端可消费的 `Template` 结构，并生成权限策略资源。 |
+| 后端用户映射 | Users API 返回前端可消费的 `User` 结构，并把部门模板授权映射成 `visibleTemplates/manageableTemplates`。 |
+| 后端设置校验 | Settings API 使用 schema 校验抽帧、AI Provider 和语音配置。 |
+| 后端 AI 代理入参 | AI Proxy 使用 schema 校验 OpenAI 兼容消息和多模态内容。 |
+| 后端语音代理帧处理 | Speech Proxy 对首个讯飞 IAT 音频帧补齐 APPID 和默认业务参数，后续帧保持兼容。 |
+| 后端字段库和文件 schema | Library/Files API 校验字段库和通用文件上传 payload。 |
+| 后端 HTTP 集成 | Nest HTTP 层覆盖 API prefix、登录会话、未登录保护、受保护接口 actor 传递。 |
+| 后端真实数据库集成 | 使用 Prisma/PostgreSQL 覆盖 Auth、Dashboard、Reports、ReportMedia、Templates、Files、HTML 清洗和审计核心服务。 |
+| 存储封装 | 常规 JSON 存储、`systemSettings` 混淆、历史明文兼容、session 恢复键。 |
+| 默认模板契约 | 智能字段、图片占位符、AI 区域、默认字段和 AI Provider 配置。 |
+| 打印入口 | `printDocument` 会创建隐藏 iframe、写入报告 HTML 并调用浏览器打印。 |
+| E2E 登录流程 | Playwright 验证默认快捷登录进入工作台。 |
+| E2E 权限过滤 | Playwright 验证超级管理员、管理员、医生在报告管理页的可见范围。 |
+| E2E 报告修订 | Playwright 验证已完成报告再次完成保存后 `revision` 递增并保留历史。 |
+| E2E 个人模板 | Playwright 验证医生可保存个人模板且模板仅归属本人。 |
+| 后端权限策略 | Vitest 验证报告、模板、用户和管理员创建权限策略。 |
+
+## Mock 边界
+
+测试中 mock 了以下浏览器或外部边界：
+
+- `fetch('/logo_square.png')`：用于登录初始化图片资源。
+- `/api/auth/me`、`/api/auth/login`：组件测试和登录 E2E 中使用 mock，避免单元/E2E 依赖真实数据库。
+- `window.alert` / `window.confirm`：避免测试阻塞。
+- `document.execCommand`：当前富文本编辑依赖浏览器命令。
+- `URL.createObjectURL` / `URL.revokeObjectURL`：用于文件、视频和导出。
+- iframe `contentWindow.print`：用于验证打印入口，不生成真实 PDF。
+
+AI 第三方接口、讯飞语音上游 WebSocket、麦克风权限和真实视频 canvas 抽帧没有在自动化测试中直连，原因是它们依赖第三方服务、硬件权限或真实媒体解码。AI 代理已有 schema 测试，语音代理已有首帧处理测试，后续应增加隔离测试密钥的 HTTP/WebSocket 集成测试。
+
+## 测试清单
+
+| 功能 | 测试状态 | 说明 |
+| --- | --- | --- |
+| 登录默认数据初始化 | 已覆盖 | `Login.test.tsx` |
+| 后端登录禁用账号错误 | 已覆盖 | `Login.test.tsx` |
+| API client 响应/错误处理 | 已覆盖 | `api/client.test.ts` |
+| Dashboard API 封装 | 已覆盖 | `api/dashboard.test.ts` |
+| 语音 WebSocket 代理地址 | 已覆盖 | `api/speech.test.ts` |
+| 字段库 API 封装 | 已覆盖 | `api/library.test.ts` |
+| 通用文件 API 封装 | 已覆盖 | `api/files.test.ts` |
+| 后端用户到前端用户映射 | 已覆盖 | `auth/backendUser.test.ts` |
+| 角色菜单权限 | 已覆盖 | `Sidebar.test.tsx` |
+| 报告列表角色过滤 | 已覆盖 | `ReportManage.test.tsx` |
+| 报告权限工具 | 已覆盖 | `permissions.test.ts` |
+| 模板权限和个人模板 | 已覆盖 | `permissions.test.ts` |
+| 本地存储读写与容错 | 已覆盖 | `storage.test.ts` |
+| 系统设置混淆兼容 | 已覆盖 | `storage.test.ts` |
+| 默认报告模板结构 | 已覆盖 | `defaultContent.test.ts` |
+| 默认字段和 AI Provider | 已覆盖 | `defaultContent.test.ts` |
+| 打印导出入口 | 已覆盖 | `print.test.ts` |
+| 默认快捷登录 | 已覆盖 | `e2e/login.spec.ts` |
+| 报告权限 E2E | 已覆盖 | `e2e/report-permissions.spec.ts` |
+| 报告修订版本 E2E | 已覆盖 | `e2e/report-revision.spec.ts` |
+| 医生个人模板 E2E | 已覆盖 | `e2e/personal-template.spec.ts` |
+| 后端报告/模板/用户权限策略 | 已覆盖 | `server/src/permissions/permissions.policy.test.ts` |
+| 后端报告兼容映射 | 已覆盖 | `server/src/reports/report.mapper.test.ts` |
+| 后端模板兼容映射 | 已覆盖 | `server/src/templates/template.mapper.test.ts` |
+| 后端用户兼容映射 | 已覆盖 | `server/src/users/users.mapper.test.ts` |
+| 后端系统设置 schema | 已覆盖 | `server/src/settings/settings.schemas.test.ts` |
+| 后端 AI 代理 schema | 已覆盖 | `server/src/ai/ai.schemas.test.ts` |
+| 后端语音代理首帧处理 | 已覆盖 | `server/src/speech/xf-frame.test.ts` |
+| 后端字段库 schema | 已覆盖 | `server/src/library/library.schemas.test.ts` |
+| 后端文件 schema | 已覆盖 | `server/src/files/files.schemas.test.ts` |
+| 后端 HTTP 集成 | 已覆盖 | `server/src/http.integration.test.ts` |
+| 后端真实数据库集成 | 已覆盖 | `server/src/database.integration.test.ts`，含 Dashboard 角色范围、报告媒体关系表同步、报告 HTML 清洗和审计写入。 |
+| 后端健康检查和认证 API | 已覆盖 | HTTP 集成测试覆盖健康检查、登录 session 和未登录保护；真实数据库集成覆盖 Argon2 登录、禁用账号和数据库 Session Store。 |
+| 模板编辑器深度交互 | 待 E2E | 依赖 contentEditable 和 execCommand。 |
+| 报告编辑器完整流程 | 部分覆盖 | 已覆盖保存修订版本和个人模板；模板切换、字段同步仍待补。 |
+| 视频抽帧 | 待 E2E/人工 | 依赖真实视频解码和 canvas。 |
+| AI 撰写 | 待集成测试 | 需要隔离外部模型服务。 |
+| 讯飞语音听写 | 部分覆盖/待集成测试 | 已覆盖后端首帧处理；完整链路仍需要 WebSocket 集成测试、麦克风权限和测试凭证。 |
+
+## Playwright 说明
+
+首次运行如果提示浏览器缺失，执行：
+
+```bash
+npx playwright install chromium
+```
+
+当前 E2E 测试不会依赖真实后端数据库：登录 E2E mock 认证 API，其余业务 E2E 通过 `e2e/helpers.ts` 写入 localStorage 种子数据。后端化后应保留这些用户流程测试，并逐步把数据准备方式从 localStorage seed 改为 API seed 或测试数据库 seed。
diff --git a/e2e/helpers.ts b/e2e/helpers.ts
new file mode 100644
index 0000000..26a0720
--- /dev/null
+++ b/e2e/helpers.ts
@@ -0,0 +1,77 @@
+import { Page } from '@playwright/test';
+
+export const baseUsers = [
+  {
+    username: 'admin',
+    password: '123456',
+    role: 'super',
+    name: '超级管理员',
+    department: 'admin',
+    status: 'active',
+    visibleTemplates: ['dept_surgery'],
+    manageableTemplates: ['dept_surgery'],
+  },
+  {
+    username: 'manager',
+    password: '123456',
+    role: 'admin',
+    name: '管理员',
+    department: '外科',
+    status: 'active',
+    visibleTemplates: ['dept_surgery'],
+    manageableTemplates: ['dept_surgery'],
+  },
+  {
+    username: '0001',
+    password: '123456',
+    role: 'user',
+    name: '张医生',
+    department: '外科',
+    status: 'active',
+    visibleTemplates: ['dept_surgery'],
+    manageableTemplates: [],
+  },
+  {
+    username: '0002',
+    password: '123456',
+    role: 'user',
+    name: '李医生',
+    department: '内科',
+    status: 'active',
+    visibleTemplates: ['dept_internal'],
+    manageableTemplates: [],
+  },
+];
+
+export const baseTemplates = [
+  {
+    id: 'dept_surgery',
+    name: '外科部门模板',
+    desc: 'E2E 外科模板',
+    content: '<p><span class="field-value" data-bind="patientName" contenteditable="true"></span></p><div class="ai-region" data-ai-id="手术步骤"><div class="ai-content"><p>默认内容</p></div></div>',
+    createdAt: '2026-05-01T00:00:00.000Z',
+    author: 'admin',
+    scope: 'department',
+    department: '外科',
+  },
+  {
+    id: 'dept_internal',
+    name: '内科部门模板',
+    desc: 'E2E 内科模板',
+    content: '<p>内科模板</p>',
+    createdAt: '2026-05-01T00:00:00.000Z',
+    author: 'admin',
+    scope: 'department',
+    department: '内科',
+  },
+];
+
+export const seedLocalStorage = async (page: Page, data: Record<string, unknown>) => {
+  await page.addInitScript((seed) => {
+    window.localStorage.clear();
+    window.sessionStorage.clear();
+    for (const [key, value] of Object.entries(seed)) {
+      window.localStorage.setItem(key, JSON.stringify(value));
+    }
+  }, data);
+};
diff --git a/e2e/login.spec.ts b/e2e/login.spec.ts
new file mode 100644
index 0000000..84235b0
--- /dev/null
+++ b/e2e/login.spec.ts
@@ -0,0 +1,40 @@
+import { expect, test } from '@playwright/test';
+
+test('default quick login enters dashboard', async ({ page }) => {
+  await page.route('**/api/auth/me', async (route) => {
+    await route.fulfill({
+      status: 401,
+      contentType: 'application/json',
+      body: JSON.stringify({ error: { code: 'UNAUTHORIZED', message: '未登录' } }),
+    });
+  });
+  await page.route('**/api/auth/login', async (route) => {
+    await route.fulfill({
+      status: 200,
+      contentType: 'application/json',
+      body: JSON.stringify({
+        data: {
+          user: {
+            id: 'u-admin',
+            username: 'admin',
+            role: 'super',
+            name: '超级管理员',
+            tenantId: 'tenant-demo',
+            departmentId: 'dept-admin',
+            departmentName: 'admin',
+            status: 'active',
+            createdAt: '2026-05-01T00:00:00.000Z',
+            updatedAt: '2026-05-01T00:00:00.000Z',
+          },
+        },
+      }),
+    });
+  });
+
+  await page.goto('/');
+
+  await page.getByText('admin / 123456').click();
+
+  await expect(page.getByRole('heading', { name: '工作台概览' })).toBeVisible();
+  await expect(page.getByText('超级管理员')).toBeVisible();
+});
diff --git a/e2e/personal-template.spec.ts b/e2e/personal-template.spec.ts
new file mode 100644
index 0000000..64dbeea
--- /dev/null
+++ b/e2e/personal-template.spec.ts
@@ -0,0 +1,32 @@
+import { expect, test } from '@playwright/test';
+import { baseTemplates, baseUsers, seedLocalStorage } from './helpers';
+
+test('doctor can save current report as a personal template visible only to self', async ({ page }) => {
+  await seedLocalStorage(page, {
+    users: baseUsers,
+    templates: baseTemplates,
+    currentUser: baseUsers[2],
+    reports: [],
+  });
+
+  page.on('dialog', async (dialog) => {
+    if (dialog.type() === 'prompt') {
+      await dialog.accept('我的测试模板');
+      return;
+    }
+    await dialog.accept();
+  });
+
+  await page.goto('/report-editor');
+  await expect(page.getByRole('button', { name: '保存为我的模板' })).toBeVisible();
+  await page.getByRole('button', { name: '保存为我的模板' }).click();
+
+  await expect.poll(async () => {
+    return page.evaluate(() => {
+      const templates = JSON.parse(window.localStorage.getItem('templates') || '[]');
+      return templates.some((template: any) => template.name === '我的测试模板' && template.scope === 'personal' && template.ownerUser === '0001');
+    });
+  }).toBe(true);
+
+  await expect(page.locator('option:not([disabled])', { hasText: '我的测试模板' })).toHaveCount(1);
+});
diff --git a/e2e/report-permissions.spec.ts b/e2e/report-permissions.spec.ts
new file mode 100644
index 0000000..8d0eff7
--- /dev/null
+++ b/e2e/report-permissions.spec.ts
@@ -0,0 +1,82 @@
+import { expect, test } from '@playwright/test';
+import { baseTemplates, baseUsers, seedLocalStorage } from './helpers';
+
+const reports = [
+  {
+    id: 'RPT_SURGERY_SELF',
+    title: '外科本人报告',
+    patientName: '患者甲',
+    hospitalId: 'H001',
+    department: '外科',
+    content: '<p>外科本人报告</p>',
+    author: '0001',
+    authorName: '张医生',
+    createdAt: '2026-05-01',
+    status: 'completed',
+    revision: 1,
+  },
+  {
+    id: 'RPT_SURGERY_OTHER',
+    title: '外科他人报告',
+    patientName: '患者乙',
+    hospitalId: 'H002',
+    department: '外科',
+    content: '<p>外科他人报告</p>',
+    author: '0003',
+    authorName: '王医生',
+    createdAt: '2026-05-01',
+    status: 'completed',
+    revision: 1,
+  },
+  {
+    id: 'RPT_INTERNAL',
+    title: '内科报告',
+    patientName: '患者丙',
+    hospitalId: 'H003',
+    department: '内科',
+    content: '<p>内科报告</p>',
+    author: '0002',
+    authorName: '李医生',
+    createdAt: '2026-05-01',
+    status: 'completed',
+    revision: 1,
+  },
+];
+
+test('admin only sees department reports, doctor only sees own reports, super sees all', async ({ page }) => {
+  await seedLocalStorage(page, {
+    users: baseUsers,
+    templates: baseTemplates,
+    reports,
+    currentUser: baseUsers[1],
+  });
+  await page.goto('/report-manage');
+
+  await expect(page.getByText('外科本人报告')).toBeVisible();
+  await expect(page.getByText('外科他人报告')).toBeVisible();
+  await expect(page.getByText('内科报告')).not.toBeVisible();
+
+  await seedLocalStorage(page, {
+    users: baseUsers,
+    templates: baseTemplates,
+    reports,
+    currentUser: baseUsers[2],
+  });
+  await page.goto('/report-manage');
+
+  await expect(page.getByText('外科本人报告')).toBeVisible();
+  await expect(page.getByText('外科他人报告')).not.toBeVisible();
+  await expect(page.getByText('内科报告')).not.toBeVisible();
+
+  await seedLocalStorage(page, {
+    users: baseUsers,
+    templates: baseTemplates,
+    reports,
+    currentUser: baseUsers[0],
+  });
+  await page.goto('/report-manage');
+
+  await expect(page.getByText('外科本人报告')).toBeVisible();
+  await expect(page.getByText('外科他人报告')).toBeVisible();
+  await expect(page.getByText('内科报告')).toBeVisible();
+});
diff --git a/e2e/report-revision.spec.ts b/e2e/report-revision.spec.ts
new file mode 100644
index 0000000..963a324
--- /dev/null
+++ b/e2e/report-revision.spec.ts
@@ -0,0 +1,41 @@
+import { expect, test } from '@playwright/test';
+import { baseTemplates, baseUsers, seedLocalStorage } from './helpers';
+
+test('editing a completed report increments revision and preserves history', async ({ page }) => {
+  await seedLocalStorage(page, {
+    users: baseUsers,
+    templates: baseTemplates,
+    currentUser: baseUsers[2],
+    reports: [
+      {
+        id: 'RPT_DONE',
+        title: '已完成报告',
+        patientName: '患者甲',
+        hospitalId: 'H001',
+        department: '外科',
+        content: '<p>旧报告内容</p>',
+        author: '0001',
+        authorName: '张医生',
+        createdAt: '2026-05-01',
+        updatedAt: '2026-05-01T08:00:00.000Z',
+        status: 'completed',
+        revision: 1,
+        history: [],
+      },
+    ],
+  });
+
+  await page.goto('/report-editor?id=RPT_DONE');
+  await expect(page.getByText('编辑报告: RPT_DONE')).toBeVisible();
+
+  await page.getByRole('button', { name: '完成报告' }).click();
+  await page.waitForURL('**/report-manage');
+
+  const report = await page.evaluate(() => {
+    return JSON.parse(window.localStorage.getItem('reports') || '[]')[0];
+  });
+
+  expect(report.revision).toBe(2);
+  expect(report.history).toHaveLength(1);
+  expect(report.history[0].revision).toBe(1);
+});
diff --git a/index.html b/index.html
new file mode 100644
index 0000000..21dfe69
--- /dev/null
+++ b/index.html
@@ -0,0 +1,13 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>My Google AI Studio App</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>
+
diff --git a/nginx.conf b/nginx.conf
new file mode 100644
index 0000000..7ef7085
--- /dev/null
+++ b/nginx.conf
@@ -0,0 +1,34 @@
+map $http_upgrade $connection_upgrade {
+    default upgrade;
+    '' close;
+}
+
+server {
+    listen 80;
+    server_name localhost;
+    root /usr/share/nginx/html;
+    index index.html;
+
+    gzip on;
+    gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
+
+    location / {
+        try_files $uri $uri/ /index.html;
+    }
+
+    location /api/ {
+        proxy_pass http://api:3000/api/;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $connection_upgrade;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
+    location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|woff|woff2|ttf|eot)$ {
+        expires 1y;
+        add_header Cache-Control "public, immutable";
+    }
+}
diff --git a/package-lock.json b/package-lock.json
new file mode 100644
index 0000000..75b50da
--- /dev/null
+++ b/package-lock.json
@@ -0,0 +1,7929 @@
+{
+  "name": "react-example",
+  "version": "0.0.0",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "": {
+      "name": "react-example",
+      "version": "0.0.0",
+      "dependencies": {
+        "@nestjs/common": "^11.1.19",
+        "@nestjs/config": "^4.0.4",
+        "@nestjs/core": "^11.1.19",
+        "@nestjs/platform-express": "^11.1.19",
+        "@prisma/adapter-pg": "^7.8.0",
+        "@prisma/client": "^7.8.0",
+        "@tailwindcss/vite": "^4.1.14",
+        "@vitejs/plugin-react": "^5.0.4",
+        "argon2": "^0.44.0",
+        "cookie-parser": "^1.4.7",
+        "diff": "^9.0.0",
+        "express": "^4.21.2",
+        "express-session": "^1.19.0",
+        "lucide-react": "^0.546.0",
+        "motion": "^12.23.24",
+        "pg": "^8.20.0",
+        "react": "^19.0.0",
+        "react-dom": "^19.0.0",
+        "react-router-dom": "^7.14.1",
+        "reflect-metadata": "^0.2.2",
+        "rxjs": "^7.8.2",
+        "sanitize-html": "^2.17.3",
+        "vite": "^6.2.0",
+        "ws": "^8.20.0",
+        "zod": "^4.4.1"
+      },
+      "devDependencies": {
+        "@nestjs/testing": "^11.1.19",
+        "@playwright/test": "^1.59.1",
+        "@testing-library/jest-dom": "^6.9.1",
+        "@testing-library/react": "^16.3.2",
+        "@types/cookie-parser": "^1.4.10",
+        "@types/express": "^4.17.21",
+        "@types/express-session": "^1.19.0",
+        "@types/node": "^22.14.0",
+        "@types/pg": "^8.20.0",
+        "@types/sanitize-html": "^2.16.1",
+        "@types/supertest": "^7.2.0",
+        "@types/ws": "^8.18.1",
+        "autoprefixer": "^10.4.21",
+        "jsdom": "^29.1.1",
+        "prisma": "^7.8.0",
+        "supertest": "^7.2.2",
+        "tailwindcss": "^4.1.14",
+        "tsx": "^4.21.0",
+        "typescript": "~5.8.2",
+        "vite": "^6.2.0",
+        "vitest": "^4.1.5"
+      }
+    },
+    "node_modules/@adobe/css-tools": {
+      "version": "4.4.4",
+      "resolved": "https://registry.npmjs.org/@adobe/css-tools/-/css-tools-4.4.4.tgz",
+      "integrity": "sha512-Elp+iwUx5rN5+Y8xLt5/GRoG20WGoDCQ/1Fb+1LiGtvwbDavuSk0jhD/eZdckHAuzcDzccnkv+rEjyWfRx18gg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@asamuzakjp/css-color": {
+      "version": "5.1.11",
+      "resolved": "https://registry.npmjs.org/@asamuzakjp/css-color/-/css-color-5.1.11.tgz",
+      "integrity": "sha512-KVw6qIiCTUQhByfTd78h2yD1/00waTmm9uy/R7Ck/ctUyAPj+AEDLkQIdJW0T8+qGgj3j5bpNKK7Q3G+LedJWg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@asamuzakjp/generational-cache": "^1.0.1",
+        "@csstools/css-calc": "^3.2.0",
+        "@csstools/css-color-parser": "^4.1.0",
+        "@csstools/css-parser-algorithms": "^4.0.0",
+        "@csstools/css-tokenizer": "^4.0.0"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/@asamuzakjp/dom-selector": {
+      "version": "7.1.1",
+      "resolved": "https://registry.npmjs.org/@asamuzakjp/dom-selector/-/dom-selector-7.1.1.tgz",
+      "integrity": "sha512-67RZDnYRc8H/8MLDgQCDE//zoqVFwajkepHZgmXrbwybzXOEwOWGPYGmALYl9J2DOLfFPPs6kKCqmbzV895hTQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@asamuzakjp/generational-cache": "^1.0.1",
+        "@asamuzakjp/nwsapi": "^2.3.9",
+        "bidi-js": "^1.0.3",
+        "css-tree": "^3.2.1",
+        "is-potential-custom-element-name": "^1.0.1"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/@asamuzakjp/generational-cache": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/@asamuzakjp/generational-cache/-/generational-cache-1.0.1.tgz",
+      "integrity": "sha512-wajfB8KqzMCN2KGNFdLkReeHncd0AslUSrvHVvvYWuU8ghncRJoA50kT3zP9MVL0+9g4/67H+cdvBskj9THPzg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/@asamuzakjp/nwsapi": {
+      "version": "2.3.9",
+      "resolved": "https://registry.npmjs.org/@asamuzakjp/nwsapi/-/nwsapi-2.3.9.tgz",
+      "integrity": "sha512-n8GuYSrI9bF7FFZ/SjhwevlHc8xaVlb/7HmHelnc/PZXBD2ZR49NnN9sMMuDdEGPeeRQ5d0hqlSlEpgCX3Wl0Q==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@babel/code-frame": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.29.0.tgz",
+      "integrity": "sha512-9NhCeYjq9+3uxgdtp20LSiJXJvN0FeCtNGpJxuMFZ1Kv3cWUNb6DOhJwUvcVCzKGR66cw4njwM6hrJLqgOwbcw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "js-tokens": "^4.0.0",
+        "picocolors": "^1.1.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/compat-data": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/compat-data/-/compat-data-7.29.0.tgz",
+      "integrity": "sha512-T1NCJqT/j9+cn8fvkt7jtwbLBfLC/1y1c7NtCeXFRgzGTsafi68MRv8yzkYSapBnFA6L3U2VSc02ciDzoAJhJg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/core/-/core-7.29.0.tgz",
+      "integrity": "sha512-CGOfOJqWjg2qW/Mb6zNsDm+u5vFQ8DxXfbM09z69p5Z6+mE1ikP2jUXw+j42Pf1XTYED2Rni5f95npYeuwMDQA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.0",
+        "@babel/generator": "^7.29.0",
+        "@babel/helper-compilation-targets": "^7.28.6",
+        "@babel/helper-module-transforms": "^7.28.6",
+        "@babel/helpers": "^7.28.6",
+        "@babel/parser": "^7.29.0",
+        "@babel/template": "^7.28.6",
+        "@babel/traverse": "^7.29.0",
+        "@babel/types": "^7.29.0",
+        "@jridgewell/remapping": "^2.3.5",
+        "convert-source-map": "^2.0.0",
+        "debug": "^4.1.0",
+        "gensync": "^1.0.0-beta.2",
+        "json5": "^2.2.3",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/babel"
+      }
+    },
+    "node_modules/@babel/generator": {
+      "version": "7.29.1",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.29.1.tgz",
+      "integrity": "sha512-qsaF+9Qcm2Qv8SRIMMscAvG4O3lJ0F1GuMo5HR/Bp02LopNgnZBC/EkbevHFeGs4ls/oPz9v+Bsmzbkbe+0dUw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.29.0",
+        "@babel/types": "^7.29.0",
+        "@jridgewell/gen-mapping": "^0.3.12",
+        "@jridgewell/trace-mapping": "^0.3.28",
+        "jsesc": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-compilation-targets": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-compilation-targets/-/helper-compilation-targets-7.28.6.tgz",
+      "integrity": "sha512-JYtls3hqi15fcx5GaSNL7SCTJ2MNmjrkHXg4FSpOA/grxK8KwyZ5bubHsCq8FXCkua6xhuaaBit+3b7+VZRfcA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/compat-data": "^7.28.6",
+        "@babel/helper-validator-option": "^7.27.1",
+        "browserslist": "^4.24.0",
+        "lru-cache": "^5.1.1",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-globals": {
+      "version": "7.28.0",
+      "resolved": "https://registry.npmjs.org/@babel/helper-globals/-/helper-globals-7.28.0.tgz",
+      "integrity": "sha512-+W6cISkXFa1jXsDEdYA8HeevQT/FULhxzR99pxphltZcVaugps53THCeiWA8SguxxpSp3gKPiuYfSWopkLQ4hw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-imports": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.28.6.tgz",
+      "integrity": "sha512-l5XkZK7r7wa9LucGw9LwZyyCUscb4x37JWTPz7swwFE/0FMQAGpiWUZn8u9DzkSBWEcK25jmvubfpw2dnAMdbw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/traverse": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-transforms": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.28.6.tgz",
+      "integrity": "sha512-67oXFAYr2cDLDVGLXTEABjdBJZ6drElUSI7WKp70NrpyISso3plG9SAGEF6y7zbha/wOzUByWWTJvEDVNIUGcA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-module-imports": "^7.28.6",
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "@babel/traverse": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0"
+      }
+    },
+    "node_modules/@babel/helper-plugin-utils": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-plugin-utils/-/helper-plugin-utils-7.28.6.tgz",
+      "integrity": "sha512-S9gzZ/bz83GRysI7gAD4wPT/AI3uCnY+9xn+Mx/KPs2JwHJIz1W8PZkg2cqyt3RNOBM8ejcXhV6y8Og7ly/Dug==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-string-parser": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.27.1.tgz",
+      "integrity": "sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-identifier": {
+      "version": "7.28.5",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.28.5.tgz",
+      "integrity": "sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-option": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-option/-/helper-validator-option-7.27.1.tgz",
+      "integrity": "sha512-YvjJow9FxbhFFKDSuFnVCe2WxXk1zWc22fFePVNEaWJEu8IrZVlda6N0uHwzZrUM1il7NC9Mlp4MaJYbYd9JSg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helpers": {
+      "version": "7.29.2",
+      "resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.29.2.tgz",
+      "integrity": "sha512-HoGuUs4sCZNezVEKdVcwqmZN8GoHirLUcLaYVNBK2J0DadGtdcqgr3BCbvH8+XUo4NGjNl3VOtSjEKNzqfFgKw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.29.0"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/parser": {
+      "version": "7.29.2",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.29.2.tgz",
+      "integrity": "sha512-4GgRzy/+fsBa72/RZVJmGKPmZu9Byn8o4MoLpmNe1m8ZfYnz5emHLQz3U4gLud6Zwl0RZIcgiLD7Uq7ySFuDLA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.29.0"
+      },
+      "bin": {
+        "parser": "bin/babel-parser.js"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-react-jsx-self": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-self/-/plugin-transform-react-jsx-self-7.27.1.tgz",
+      "integrity": "sha512-6UzkCs+ejGdZ5mFFC/OCUrv028ab2fp1znZmCZjAOBKiBK2jXD1O+BPSfX8X2qjJ75fZBMSnQn3Rq2mrBJK2mw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.27.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-react-jsx-source": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-source/-/plugin-transform-react-jsx-source-7.27.1.tgz",
+      "integrity": "sha512-zbwoTsBruTeKB9hSq73ha66iFeJHuaFkUbwvqElnygoNbj/jHRsSeokowZFN3CZ64IvEqcmmkVe89OPXc7ldAw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.27.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@babel/runtime": {
+      "version": "7.29.2",
+      "resolved": "https://registry.npmjs.org/@babel/runtime/-/runtime-7.29.2.tgz",
+      "integrity": "sha512-JiDShH45zKHWyGe4ZNVRrCjBz8Nh9TMmZG1kh4QTK8hCBTWBi8Da+i7s1fJw7/lYpM4ccepSNfqzZ/QvABBi5g==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/template": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.28.6.tgz",
+      "integrity": "sha512-YA6Ma2KsCdGb+WC6UpBVFJGXL58MDA6oyONbjyF/+5sBgxY/dwkhLogbMT2GXXyU84/IhRw/2D1Os1B/giz+BQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.28.6",
+        "@babel/parser": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/traverse": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.29.0.tgz",
+      "integrity": "sha512-4HPiQr0X7+waHfyXPZpWPfWL/J7dcN1mx9gL6WdQVMbPnF3+ZhSMs8tCxN7oHddJE9fhNE7+lxdnlyemKfJRuA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.0",
+        "@babel/generator": "^7.29.0",
+        "@babel/helper-globals": "^7.28.0",
+        "@babel/parser": "^7.29.0",
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.29.0",
+        "debug": "^4.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/types": {
+      "version": "7.29.0",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.29.0.tgz",
+      "integrity": "sha512-LwdZHpScM4Qz8Xw2iKSzS+cfglZzJGvofQICy7W7v4caru4EaAmyUuO6BGrbyQ2mYV11W0U8j5mBhd14dd3B0A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-string-parser": "^7.27.1",
+        "@babel/helper-validator-identifier": "^7.28.5"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@borewit/text-codec": {
+      "version": "0.2.2",
+      "resolved": "https://registry.npmjs.org/@borewit/text-codec/-/text-codec-0.2.2.tgz",
+      "integrity": "sha512-DDaRehssg1aNrH4+2hnj1B7vnUGEjU6OIlyRdkMd0aUdIUvKXrJfXsy8LVtXAy7DRvYVluWbMspsRhz2lcW0mQ==",
+      "license": "MIT",
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/Borewit"
+      }
+    },
+    "node_modules/@bramus/specificity": {
+      "version": "2.4.2",
+      "resolved": "https://registry.npmjs.org/@bramus/specificity/-/specificity-2.4.2.tgz",
+      "integrity": "sha512-ctxtJ/eA+t+6q2++vj5j7FYX3nRu311q1wfYH3xjlLOsczhlhxAg2FWNUXhpGvAw3BWo1xBcvOV6/YLc2r5FJw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "css-tree": "^3.0.0"
+      },
+      "bin": {
+        "specificity": "bin/cli.js"
+      }
+    },
+    "node_modules/@csstools/color-helpers": {
+      "version": "6.0.2",
+      "resolved": "https://registry.npmjs.org/@csstools/color-helpers/-/color-helpers-6.0.2.tgz",
+      "integrity": "sha512-LMGQLS9EuADloEFkcTBR3BwV/CGHV7zyDxVRtVDTwdI2Ca4it0CCVTT9wCkxSgokjE5Ho41hEPgb8OEUwoXr6Q==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT-0",
+      "engines": {
+        "node": ">=20.19.0"
+      }
+    },
+    "node_modules/@csstools/css-calc": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/@csstools/css-calc/-/css-calc-3.2.0.tgz",
+      "integrity": "sha512-bR9e6o2BDB12jzN/gIbjHa5wLJ4UjD1CB9pM7ehlc0ddk6EBz+yYS1EV2MF55/HUxrHcB/hehAyt5vhsA3hx7w==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=20.19.0"
+      },
+      "peerDependencies": {
+        "@csstools/css-parser-algorithms": "^4.0.0",
+        "@csstools/css-tokenizer": "^4.0.0"
+      }
+    },
+    "node_modules/@csstools/css-color-parser": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/@csstools/css-color-parser/-/css-color-parser-4.1.0.tgz",
+      "integrity": "sha512-U0KhLYmy2GVj6q4T3WaAe6NPuFYCPQoE3b0dRGxejWDgcPp8TP7S5rVdM5ZrFaqu4N67X8YaPBw14dQSYx3IyQ==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "@csstools/color-helpers": "^6.0.2",
+        "@csstools/css-calc": "^3.2.0"
+      },
+      "engines": {
+        "node": ">=20.19.0"
+      },
+      "peerDependencies": {
+        "@csstools/css-parser-algorithms": "^4.0.0",
+        "@csstools/css-tokenizer": "^4.0.0"
+      }
+    },
+    "node_modules/@csstools/css-parser-algorithms": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/@csstools/css-parser-algorithms/-/css-parser-algorithms-4.0.0.tgz",
+      "integrity": "sha512-+B87qS7fIG3L5h3qwJ/IFbjoVoOe/bpOdh9hAjXbvx0o8ImEmUsGXN0inFOnk2ChCFgqkkGFQ+TpM5rbhkKe4w==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=20.19.0"
+      },
+      "peerDependencies": {
+        "@csstools/css-tokenizer": "^4.0.0"
+      }
+    },
+    "node_modules/@csstools/css-syntax-patches-for-csstree": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@csstools/css-syntax-patches-for-csstree/-/css-syntax-patches-for-csstree-1.1.3.tgz",
+      "integrity": "sha512-SH60bMfrRCJF3morcdk57WklujF4Jr/EsQUzqkarfHXEFcAR1gg7fS/chAE922Sehgzc1/+Tz5H3Ypa1HiEKrg==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT-0",
+      "peerDependencies": {
+        "css-tree": "^3.2.1"
+      },
+      "peerDependenciesMeta": {
+        "css-tree": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@csstools/css-tokenizer": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/@csstools/css-tokenizer/-/css-tokenizer-4.0.0.tgz",
+      "integrity": "sha512-QxULHAm7cNu72w97JUNCBFODFaXpbDg+dP8b/oWFAZ2MTRppA3U00Y2L1HqaS4J6yBqxwa/Y3nMBaxVKbB/NsA==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/csstools"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/csstools"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=20.19.0"
+      }
+    },
+    "node_modules/@electric-sql/pglite": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/@electric-sql/pglite/-/pglite-0.4.1.tgz",
+      "integrity": "sha512-mZ9NzzUSYPOCnxHH1oAHPRzoMFJHY472raDKwXl/+6oPbpdJ7g8LsCN4FSaIIfkiCKHhb3iF/Zqo3NYxaIhU7Q==",
+      "devOptional": true,
+      "license": "Apache-2.0"
+    },
+    "node_modules/@electric-sql/pglite-socket": {
+      "version": "0.1.1",
+      "resolved": "https://registry.npmjs.org/@electric-sql/pglite-socket/-/pglite-socket-0.1.1.tgz",
+      "integrity": "sha512-p2hoXw3Z3LQHwTeikdZNsFBOvXGqKY2hk51BBw+8NKND8eoH+8LFOtW9Z8CQKmTJ2qqGYu82ipqiyFZOTTXNfw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "pglite-server": "dist/scripts/server.js"
+      },
+      "peerDependencies": {
+        "@electric-sql/pglite": "0.4.1"
+      }
+    },
+    "node_modules/@electric-sql/pglite-tools": {
+      "version": "0.3.1",
+      "resolved": "https://registry.npmjs.org/@electric-sql/pglite-tools/-/pglite-tools-0.3.1.tgz",
+      "integrity": "sha512-C+T3oivmy9bpQvSxVqXA1UDY8cB9Eb9vZHL9zxWwEUfDixbXv4G3r2LjoTdR33LD8aomR3O9ZXEO3XEwr/cUCA==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "peerDependencies": {
+        "@electric-sql/pglite": "0.4.1"
+      }
+    },
+    "node_modules/@epic-web/invariant": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/@epic-web/invariant/-/invariant-1.0.0.tgz",
+      "integrity": "sha512-lrTPqgvfFQtR/eY/qkIzp98OGdNJu0m5ji3q/nJI8v3SXkRKEnWiOxMmbvcSoAIzv/cGiuvRy57k4suKQSAdwA==",
+      "license": "MIT"
+    },
+    "node_modules/@esbuild/aix-ppc64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/aix-ppc64/-/aix-ppc64-0.27.7.tgz",
+      "integrity": "sha512-EKX3Qwmhz1eMdEJokhALr0YiD0lhQNwDqkPYyPhiSwKrh7/4KRjQc04sZ8db+5DVVnZ1LmbNDI1uAMPEUBnQPg==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "aix"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-arm": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.27.7.tgz",
+      "integrity": "sha512-jbPXvB4Yj2yBV7HUfE2KHe4GJX51QplCN1pGbYjvsyCZbQmies29EoJbkEc+vYuU5o45AfQn37vZlyXy4YJ8RQ==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.27.7.tgz",
+      "integrity": "sha512-62dPZHpIXzvChfvfLJow3q5dDtiNMkwiRzPylSCfriLvZeq0a1bWChrGx/BbUbPwOrsWKMn8idSllklzBy+dgQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.27.7.tgz",
+      "integrity": "sha512-x5VpMODneVDb70PYV2VQOmIUUiBtY3D3mPBG8NxVk5CogneYhkR7MmM3yR/uMdITLrC1ml/NV1rj4bMJuy9MCg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/darwin-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.27.7.tgz",
+      "integrity": "sha512-5lckdqeuBPlKUwvoCXIgI2D9/ABmPq3Rdp7IfL70393YgaASt7tbju3Ac+ePVi3KDH6N2RqePfHnXkaDtY9fkw==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/darwin-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.27.7.tgz",
+      "integrity": "sha512-rYnXrKcXuT7Z+WL5K980jVFdvVKhCHhUwid+dDYQpH+qu+TefcomiMAJpIiC2EM3Rjtq0sO3StMV/+3w3MyyqQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/freebsd-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.27.7.tgz",
+      "integrity": "sha512-B48PqeCsEgOtzME2GbNM2roU29AMTuOIN91dsMO30t+Ydis3z/3Ngoj5hhnsOSSwNzS+6JppqWsuhTp6E82l2w==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/freebsd-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.27.7.tgz",
+      "integrity": "sha512-jOBDK5XEjA4m5IJK3bpAQF9/Lelu/Z9ZcdhTRLf4cajlB+8VEhFFRjWgfy3M1O4rO2GQ/b2dLwCUGpiF/eATNQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-arm": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.27.7.tgz",
+      "integrity": "sha512-RkT/YXYBTSULo3+af8Ib0ykH8u2MBh57o7q/DAs3lTJlyVQkgQvlrPTnjIzzRPQyavxtPtfg0EopvDyIt0j1rA==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.27.7.tgz",
+      "integrity": "sha512-RZPHBoxXuNnPQO9rvjh5jdkRmVizktkT7TCDkDmQ0W2SwHInKCAV95GRuvdSvA7w4VMwfCjUiPwDi0ZO6Nfe9A==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-ia32": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.27.7.tgz",
+      "integrity": "sha512-GA48aKNkyQDbd3KtkplYWT102C5sn/EZTY4XROkxONgruHPU72l+gW+FfF8tf2cFjeHaRbWpOYa/uRBz/Xq1Pg==",
+      "cpu": [
+        "ia32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-loong64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.27.7.tgz",
+      "integrity": "sha512-a4POruNM2oWsD4WKvBSEKGIiWQF8fZOAsycHOt6JBpZ+JN2n2JH9WAv56SOyu9X5IqAjqSIPTaJkqN8F7XOQ5Q==",
+      "cpu": [
+        "loong64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-mips64el": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.27.7.tgz",
+      "integrity": "sha512-KabT5I6StirGfIz0FMgl1I+R1H73Gp0ofL9A3nG3i/cYFJzKHhouBV5VWK1CSgKvVaG4q1RNpCTR2LuTVB3fIw==",
+      "cpu": [
+        "mips64el"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-ppc64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.27.7.tgz",
+      "integrity": "sha512-gRsL4x6wsGHGRqhtI+ifpN/vpOFTQtnbsupUF5R5YTAg+y/lKelYR1hXbnBdzDjGbMYjVJLJTd2OFmMewAgwlQ==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-riscv64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.27.7.tgz",
+      "integrity": "sha512-hL25LbxO1QOngGzu2U5xeXtxXcW+/GvMN3ejANqXkxZ/opySAZMrc+9LY/WyjAan41unrR3YrmtTsUpwT66InQ==",
+      "cpu": [
+        "riscv64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-s390x": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.27.7.tgz",
+      "integrity": "sha512-2k8go8Ycu1Kb46vEelhu1vqEP+UeRVj2zY1pSuPdgvbd5ykAw82Lrro28vXUrRmzEsUV0NzCf54yARIK8r0fdw==",
+      "cpu": [
+        "s390x"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.27.7.tgz",
+      "integrity": "sha512-hzznmADPt+OmsYzw1EE33ccA+HPdIqiCRq7cQeL1Jlq2gb1+OyWBkMCrYGBJ+sxVzve2ZJEVeePbLM2iEIZSxA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/netbsd-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-arm64/-/netbsd-arm64-0.27.7.tgz",
+      "integrity": "sha512-b6pqtrQdigZBwZxAn1UpazEisvwaIDvdbMbmrly7cDTMFnw/+3lVxxCTGOrkPVnsYIosJJXAsILG9XcQS+Yu6w==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/netbsd-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.27.7.tgz",
+      "integrity": "sha512-OfatkLojr6U+WN5EDYuoQhtM+1xco+/6FSzJJnuWiUw5eVcicbyK3dq5EeV/QHT1uy6GoDhGbFpprUiHUYggrw==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openbsd-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-arm64/-/openbsd-arm64-0.27.7.tgz",
+      "integrity": "sha512-AFuojMQTxAz75Fo8idVcqoQWEHIXFRbOc1TrVcFSgCZtQfSdc1RXgB3tjOn/krRHENUB4j00bfGjyl2mJrU37A==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openbsd-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.27.7.tgz",
+      "integrity": "sha512-+A1NJmfM8WNDv5CLVQYJ5PshuRm/4cI6WMZRg1by1GwPIQPCTs1GLEUHwiiQGT5zDdyLiRM/l1G0Pv54gvtKIg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openharmony-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/openharmony-arm64/-/openharmony-arm64-0.27.7.tgz",
+      "integrity": "sha512-+KrvYb/C8zA9CU/g0sR6w2RBw7IGc5J2BPnc3dYc5VJxHCSF1yNMxTV5LQ7GuKteQXZtspjFbiuW5/dOj7H4Yw==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openharmony"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/sunos-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.27.7.tgz",
+      "integrity": "sha512-ikktIhFBzQNt/QDyOL580ti9+5mL/YZeUPKU2ivGtGjdTYoqz6jObj6nOMfhASpS4GU4Q/Clh1QtxWAvcYKamA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "sunos"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-arm64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.27.7.tgz",
+      "integrity": "sha512-7yRhbHvPqSpRUV7Q20VuDwbjW5kIMwTHpptuUzV+AA46kiPze5Z7qgt6CLCK3pWFrHeNfDd1VKgyP4O+ng17CA==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-ia32": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.27.7.tgz",
+      "integrity": "sha512-SmwKXe6VHIyZYbBLJrhOoCJRB/Z1tckzmgTLfFYOfpMAx63BJEaL9ExI8x7v0oAO3Zh6D/Oi1gVxEYr5oUCFhw==",
+      "cpu": [
+        "ia32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-x64": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.27.7.tgz",
+      "integrity": "sha512-56hiAJPhwQ1R4i+21FVF7V8kSD5zZTdHcVuRFMW0hn753vVfQN8xlx4uOPT4xoGH0Z/oVATuR82AiqSTDIpaHg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@exodus/bytes": {
+      "version": "1.15.0",
+      "resolved": "https://registry.npmjs.org/@exodus/bytes/-/bytes-1.15.0.tgz",
+      "integrity": "sha512-UY0nlA+feH81UGSHv92sLEPLCeZFjXOuHhrIo0HQydScuQc8s0A7kL/UdgwgDq8g8ilksmuoF35YVTNphV2aBQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      },
+      "peerDependencies": {
+        "@noble/hashes": "^1.8.0 || ^2.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@noble/hashes": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@hono/node-server": {
+      "version": "1.19.11",
+      "resolved": "https://registry.npmjs.org/@hono/node-server/-/node-server-1.19.11.tgz",
+      "integrity": "sha512-dr8/3zEaB+p0D2n/IUrlPF1HZm586qgJNXK1a9fhg/PzdtkK7Ksd5l312tJX2yBuALqDYBlG20QEbayqPyxn+g==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=18.14.1"
+      },
+      "peerDependencies": {
+        "hono": "^4"
+      }
+    },
+    "node_modules/@jridgewell/gen-mapping": {
+      "version": "0.3.13",
+      "resolved": "https://registry.npmjs.org/@jridgewell/gen-mapping/-/gen-mapping-0.3.13.tgz",
+      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.0",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/remapping": {
+      "version": "2.3.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/remapping/-/remapping-2.3.5.tgz",
+      "integrity": "sha512-LI9u/+laYG4Ds1TDKSJW2YPrIlcVYOwi2fUC6xB43lueCjgxV4lffOCZCtYFiH6TNOX+tQKXx97T4IKHbhyHEQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/gen-mapping": "^0.3.5",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/resolve-uri": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/@jridgewell/resolve-uri/-/resolve-uri-3.1.2.tgz",
+      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@jridgewell/sourcemap-codec": {
+      "version": "1.5.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/sourcemap-codec/-/sourcemap-codec-1.5.5.tgz",
+      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og==",
+      "license": "MIT"
+    },
+    "node_modules/@jridgewell/trace-mapping": {
+      "version": "0.3.31",
+      "resolved": "https://registry.npmjs.org/@jridgewell/trace-mapping/-/trace-mapping-0.3.31.tgz",
+      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/resolve-uri": "^3.1.0",
+        "@jridgewell/sourcemap-codec": "^1.4.14"
+      }
+    },
+    "node_modules/@kurkle/color": {
+      "version": "0.3.4",
+      "resolved": "https://registry.npmjs.org/@kurkle/color/-/color-0.3.4.tgz",
+      "integrity": "sha512-M5UknZPHRu3DEDWoipU6sE8PdkZ6Z/S+v4dD+Ke8IaNlpdSQah50lz1KtcFBa2vsdOnwbbnxJwVM4wty6udA5w==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/@lukeed/csprng": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@lukeed/csprng/-/csprng-1.1.0.tgz",
+      "integrity": "sha512-Z7C/xXCiGWsg0KuKsHTKJxbWhpI3Vs5GwLfOean7MGyVFGqdRgBbAjOCh6u4bbjPc/8MJ2pZmK/0DLdCbivLDA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/@nestjs/common": {
+      "version": "11.1.19",
+      "resolved": "https://registry.npmjs.org/@nestjs/common/-/common-11.1.19.tgz",
+      "integrity": "sha512-qeiTt2tv+e5QyDKqG8HlVZb2wx64FEaSGFJouqTSRs+kG44iTfl3xlz1XqVped+rihx4hmjWgL5gkhtdK3E6+Q==",
+      "license": "MIT",
+      "dependencies": {
+        "file-type": "21.3.4",
+        "iterare": "1.2.1",
+        "load-esm": "1.0.3",
+        "tslib": "2.8.1",
+        "uid": "2.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/nest"
+      },
+      "peerDependencies": {
+        "class-transformer": ">=0.4.1",
+        "class-validator": ">=0.13.2",
+        "reflect-metadata": "^0.1.12 || ^0.2.0",
+        "rxjs": "^7.1.0"
+      },
+      "peerDependenciesMeta": {
+        "class-transformer": {
+          "optional": true
+        },
+        "class-validator": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@nestjs/config": {
+      "version": "4.0.4",
+      "resolved": "https://registry.npmjs.org/@nestjs/config/-/config-4.0.4.tgz",
+      "integrity": "sha512-CJPjNitr0bAufSEnRe2N+JbnVmMmDoo6hvKCPzXgZoGwJSmp/dZPk9f/RMbuD/+Q1ZJPjwsRpq0vxna++Knwow==",
+      "license": "MIT",
+      "dependencies": {
+        "dotenv": "17.4.1",
+        "dotenv-expand": "12.0.3",
+        "lodash": "4.18.1"
+      },
+      "peerDependencies": {
+        "@nestjs/common": "^10.0.0 || ^11.0.0",
+        "rxjs": "^7.1.0"
+      }
+    },
+    "node_modules/@nestjs/config/node_modules/dotenv": {
+      "version": "17.4.1",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-17.4.1.tgz",
+      "integrity": "sha512-k8DaKGP6r1G30Lx8V4+pCsLzKr8vLmV2paqEj1Y55GdAgJuIqpRp5FfajGF8KtwMxCz9qJc6wUIJnm053d/WCw==",
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
+    "node_modules/@nestjs/core": {
+      "version": "11.1.19",
+      "resolved": "https://registry.npmjs.org/@nestjs/core/-/core-11.1.19.tgz",
+      "integrity": "sha512-6nJkWa2efrYi+XlU686J9y5L7OvxpLVjT0T/sxRKE7Jvpffiihelup4WSvLvRhdHDjj/5SuoWEwqReXAaaeHmw==",
+      "hasInstallScript": true,
+      "license": "MIT",
+      "dependencies": {
+        "@nuxt/opencollective": "0.4.1",
+        "fast-safe-stringify": "2.1.1",
+        "iterare": "1.2.1",
+        "path-to-regexp": "8.4.2",
+        "tslib": "2.8.1",
+        "uid": "2.0.2"
+      },
+      "engines": {
+        "node": ">= 20"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/nest"
+      },
+      "peerDependencies": {
+        "@nestjs/common": "^11.0.0",
+        "@nestjs/microservices": "^11.0.0",
+        "@nestjs/platform-express": "^11.0.0",
+        "@nestjs/websockets": "^11.0.0",
+        "reflect-metadata": "^0.1.12 || ^0.2.0",
+        "rxjs": "^7.1.0"
+      },
+      "peerDependenciesMeta": {
+        "@nestjs/microservices": {
+          "optional": true
+        },
+        "@nestjs/platform-express": {
+          "optional": true
+        },
+        "@nestjs/websockets": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@nestjs/core/node_modules/path-to-regexp": {
+      "version": "8.4.2",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-8.4.2.tgz",
+      "integrity": "sha512-qRcuIdP69NPm4qbACK+aDogI5CBDMi1jKe0ry5rSQJz8JVLsC7jV8XpiJjGRLLol3N+R5ihGYcrPLTno6pAdBA==",
+      "license": "MIT",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express": {
+      "version": "11.1.19",
+      "resolved": "https://registry.npmjs.org/@nestjs/platform-express/-/platform-express-11.1.19.tgz",
+      "integrity": "sha512-Vpdv8jyCQdThfoTx+UTn+DRYr6H6X02YUqcpZ3qP6G3ZUwtVp7eS+hoQPGd4UuCnlnFG8Wqr2J9bGEzQdi1rIg==",
+      "license": "MIT",
+      "dependencies": {
+        "cors": "2.8.6",
+        "express": "5.2.1",
+        "multer": "2.1.1",
+        "path-to-regexp": "8.4.2",
+        "tslib": "2.8.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/nest"
+      },
+      "peerDependencies": {
+        "@nestjs/common": "^11.0.0",
+        "@nestjs/core": "^11.0.0"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/accepts": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/accepts/-/accepts-2.0.0.tgz",
+      "integrity": "sha512-5cvg6CtKwfgdmVqY1WIiXKc3Q1bkRqGLi+2W/6ao+6Y7gu/RCwRuAhGEzh5B4KlszSuTLgZYuqFqo5bImjNKng==",
+      "license": "MIT",
+      "dependencies": {
+        "mime-types": "^3.0.0",
+        "negotiator": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/body-parser": {
+      "version": "2.2.2",
+      "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-2.2.2.tgz",
+      "integrity": "sha512-oP5VkATKlNwcgvxi0vM0p/D3n2C3EReYVX+DNYs5TjZFn/oQt2j+4sVJtSMr18pdRr8wjTcBl6LoV+FUwzPmNA==",
+      "license": "MIT",
+      "dependencies": {
+        "bytes": "^3.1.2",
+        "content-type": "^1.0.5",
+        "debug": "^4.4.3",
+        "http-errors": "^2.0.0",
+        "iconv-lite": "^0.7.0",
+        "on-finished": "^2.4.1",
+        "qs": "^6.14.1",
+        "raw-body": "^3.0.1",
+        "type-is": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/content-disposition": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/content-disposition/-/content-disposition-1.1.0.tgz",
+      "integrity": "sha512-5jRCH9Z/+DRP7rkvY83B+yGIGX96OYdJmzngqnw2SBSxqCFPd0w2km3s5iawpGX8krnwSGmF0FW5Nhr0Hfai3g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/cookie-signature": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.2.2.tgz",
+      "integrity": "sha512-D76uU73ulSXrD1UXF4KE2TMxVVwhsnCgfAyTg9k8P6KGZjlXKrOLe4dJQKI3Bxi5wjesZoFXJWElNWBjPZMbhg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.6.0"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/express": {
+      "version": "5.2.1",
+      "resolved": "https://registry.npmjs.org/express/-/express-5.2.1.tgz",
+      "integrity": "sha512-hIS4idWWai69NezIdRt2xFVofaF4j+6INOpJlVOLDO8zXGpUVEVzIYk12UUi2JzjEzWL3IOAxcTubgz9Po0yXw==",
+      "license": "MIT",
+      "dependencies": {
+        "accepts": "^2.0.0",
+        "body-parser": "^2.2.1",
+        "content-disposition": "^1.0.0",
+        "content-type": "^1.0.5",
+        "cookie": "^0.7.1",
+        "cookie-signature": "^1.2.1",
+        "debug": "^4.4.0",
+        "depd": "^2.0.0",
+        "encodeurl": "^2.0.0",
+        "escape-html": "^1.0.3",
+        "etag": "^1.8.1",
+        "finalhandler": "^2.1.0",
+        "fresh": "^2.0.0",
+        "http-errors": "^2.0.0",
+        "merge-descriptors": "^2.0.0",
+        "mime-types": "^3.0.0",
+        "on-finished": "^2.4.1",
+        "once": "^1.4.0",
+        "parseurl": "^1.3.3",
+        "proxy-addr": "^2.0.7",
+        "qs": "^6.14.0",
+        "range-parser": "^1.2.1",
+        "router": "^2.2.0",
+        "send": "^1.1.0",
+        "serve-static": "^2.2.0",
+        "statuses": "^2.0.1",
+        "type-is": "^2.0.1",
+        "vary": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/finalhandler": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-2.1.1.tgz",
+      "integrity": "sha512-S8KoZgRZN+a5rNwqTxlZZePjT/4cnm0ROV70LedRHZ0p8u9fRID0hJUZQpkKLzro8LfmC8sx23bY6tVNxv8pQA==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "^4.4.0",
+        "encodeurl": "^2.0.0",
+        "escape-html": "^1.0.3",
+        "on-finished": "^2.4.1",
+        "parseurl": "^1.3.3",
+        "statuses": "^2.0.1"
+      },
+      "engines": {
+        "node": ">= 18.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/fresh": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/fresh/-/fresh-2.0.0.tgz",
+      "integrity": "sha512-Rx/WycZ60HOaqLKAi6cHRKKI7zxWbJ31MhntmtwMoaTeF7XFH9hhBp8vITaMidfljRQ6eYWCKkaTK+ykVJHP2A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/iconv-lite": {
+      "version": "0.7.2",
+      "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.7.2.tgz",
+      "integrity": "sha512-im9DjEDQ55s9fL4EYzOAv0yMqmMBSZp6G0VvFyTMPKWxiSBHUj9NW/qqLmXUwXrrM7AvqSlTCfvqRb0cM8yYqw==",
+      "license": "MIT",
+      "dependencies": {
+        "safer-buffer": ">= 2.1.2 < 3.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/media-typer": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/media-typer/-/media-typer-1.1.0.tgz",
+      "integrity": "sha512-aisnrDP4GNe06UcKFnV5bfMNPBUw4jsLGaWwWfnH3v02GnBuXX2MCVn5RbrWo0j3pczUilYblq7fQ7Nw2t5XKw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/merge-descriptors": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/merge-descriptors/-/merge-descriptors-2.0.0.tgz",
+      "integrity": "sha512-Snk314V5ayFLhp3fkUREub6WtjBfPdCPY1Ln8/8munuLuiYhsABgBVWsozAG+MWMbVEvcdcpbi9R7ww22l9Q3g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/mime-db": {
+      "version": "1.54.0",
+      "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.54.0.tgz",
+      "integrity": "sha512-aU5EJuIN2WDemCcAp2vFBfp/m4EAhWJnUNSSw0ixs7/kXbd6Pg64EmwJkNdFhB8aWt1sH2CTXrLxo/iAGV3oPQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/mime-types": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/mime-types/-/mime-types-3.0.2.tgz",
+      "integrity": "sha512-Lbgzdk0h4juoQ9fCKXW4by0UJqj+nOOrI9MJ1sSj4nI8aI2eo1qmvQEie4VD1glsS250n15LsWsYtCugiStS5A==",
+      "license": "MIT",
+      "dependencies": {
+        "mime-db": "^1.54.0"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/negotiator": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/negotiator/-/negotiator-1.0.0.tgz",
+      "integrity": "sha512-8Ofs/AUQh8MaEcrlq5xOX0CQ9ypTF5dl78mjlMNfOK08fzpgTHQRQPBxcPlEtIw0yRpws+Zo/3r+5WRby7u3Gg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/path-to-regexp": {
+      "version": "8.4.2",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-8.4.2.tgz",
+      "integrity": "sha512-qRcuIdP69NPm4qbACK+aDogI5CBDMi1jKe0ry5rSQJz8JVLsC7jV8XpiJjGRLLol3N+R5ihGYcrPLTno6pAdBA==",
+      "license": "MIT",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/raw-body": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-3.0.2.tgz",
+      "integrity": "sha512-K5zQjDllxWkf7Z5xJdV0/B0WTNqx6vxG70zJE4N0kBs4LovmEYWJzQGxC9bS9RAKu3bgM40lrd5zoLJ12MQ5BA==",
+      "license": "MIT",
+      "dependencies": {
+        "bytes": "~3.1.2",
+        "http-errors": "~2.0.1",
+        "iconv-lite": "~0.7.0",
+        "unpipe": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/send": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/send/-/send-1.2.1.tgz",
+      "integrity": "sha512-1gnZf7DFcoIcajTjTwjwuDjzuz4PPcY2StKPlsGAQ1+YH20IRVrBaXSWmdjowTJ6u8Rc01PoYOGHXfP1mYcZNQ==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "^4.4.3",
+        "encodeurl": "^2.0.0",
+        "escape-html": "^1.0.3",
+        "etag": "^1.8.1",
+        "fresh": "^2.0.0",
+        "http-errors": "^2.0.1",
+        "mime-types": "^3.0.2",
+        "ms": "^2.1.3",
+        "on-finished": "^2.4.1",
+        "range-parser": "^1.2.1",
+        "statuses": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/serve-static": {
+      "version": "2.2.1",
+      "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-2.2.1.tgz",
+      "integrity": "sha512-xRXBn0pPqQTVQiC8wyQrKs2MOlX24zQ0POGaj0kultvoOCstBQM5yvOhAVSUwOMjQtTvsPWoNCHfPGwaaQJhTw==",
+      "license": "MIT",
+      "dependencies": {
+        "encodeurl": "^2.0.0",
+        "escape-html": "^1.0.3",
+        "parseurl": "^1.3.3",
+        "send": "^1.2.0"
+      },
+      "engines": {
+        "node": ">= 18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/@nestjs/platform-express/node_modules/type-is": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/type-is/-/type-is-2.0.1.tgz",
+      "integrity": "sha512-OZs6gsjF4vMp32qrCbiVSkrFmXtG/AZhY3t0iAMrMBiAZyV9oALtXO8hsrHbMXF9x6L3grlFuwW2oAz7cav+Gw==",
+      "license": "MIT",
+      "dependencies": {
+        "content-type": "^1.0.5",
+        "media-typer": "^1.1.0",
+        "mime-types": "^3.0.0"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/@nestjs/testing": {
+      "version": "11.1.19",
+      "resolved": "https://registry.npmjs.org/@nestjs/testing/-/testing-11.1.19.tgz",
+      "integrity": "sha512-/UFNWXvPEdu4v4DlC5oWLbGKmD27LehLK06b8oLzs6D6lf4vAQTdST8LRAXBadyMUQnVEQWMuBo3CtAVtlfXtQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "tslib": "2.8.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/nest"
+      },
+      "peerDependencies": {
+        "@nestjs/common": "^11.0.0",
+        "@nestjs/core": "^11.0.0",
+        "@nestjs/microservices": "^11.0.0",
+        "@nestjs/platform-express": "^11.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@nestjs/microservices": {
+          "optional": true
+        },
+        "@nestjs/platform-express": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@noble/hashes": {
+      "version": "1.8.0",
+      "resolved": "https://registry.npmjs.org/@noble/hashes/-/hashes-1.8.0.tgz",
+      "integrity": "sha512-jCs9ldd7NwzpgXDIf6P3+NrHh9/sD6CQdxHyjQI+h/6rDNo88ypBxxz45UDuZHz9r3tNz7N/VInSVoVdtXEI4A==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^14.21.3 || >=16"
+      },
+      "funding": {
+        "url": "https://paulmillr.com/funding/"
+      }
+    },
+    "node_modules/@nuxt/opencollective": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/@nuxt/opencollective/-/opencollective-0.4.1.tgz",
+      "integrity": "sha512-GXD3wy50qYbxCJ652bDrDzgMr3NFEkIS374+IgFQKkCvk9yiYcLvX2XDYr7UyQxf4wK0e+yqDYRubZ0DtOxnmQ==",
+      "license": "MIT",
+      "dependencies": {
+        "consola": "^3.2.3"
+      },
+      "bin": {
+        "opencollective": "bin/opencollective.js"
+      },
+      "engines": {
+        "node": "^14.18.0 || >=16.10.0",
+        "npm": ">=5.10.0"
+      }
+    },
+    "node_modules/@paralleldrive/cuid2": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/@paralleldrive/cuid2/-/cuid2-2.3.1.tgz",
+      "integrity": "sha512-XO7cAxhnTZl0Yggq6jOgjiOHhbgcO4NqFqwSmQpjK3b6TEE6Uj/jfSk6wzYyemh3+I0sHirKSetjQwn5cZktFw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@noble/hashes": "^1.1.5"
+      }
+    },
+    "node_modules/@phc/format": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/@phc/format/-/format-1.0.0.tgz",
+      "integrity": "sha512-m7X9U6BG2+J+R1lSOdCiITLLrxm+cWlNI3HUFA92oLO77ObGNzaKdh8pMLqdZcshtkKuV84olNNXDfMc4FezBQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/@playwright/test": {
+      "version": "1.59.1",
+      "resolved": "https://registry.npmjs.org/@playwright/test/-/test-1.59.1.tgz",
+      "integrity": "sha512-PG6q63nQg5c9rIi4/Z5lR5IVF7yU5MqmKaPOe0HSc0O2cX1fPi96sUQu5j7eo4gKCkB2AnNGoWt7y4/Xx3Kcqg==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "playwright": "1.59.1"
+      },
+      "bin": {
+        "playwright": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@prisma/adapter-pg": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/adapter-pg/-/adapter-pg-7.8.0.tgz",
+      "integrity": "sha512-ygb3UkerK3v8MDpXVgCISdRNDozpxh6+JVJgiIGbSr5KBgz10LLf5ejUskPGoXlsIjxsOu6nuy1JVQr2EKGSlg==",
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/driver-adapter-utils": "7.8.0",
+        "@types/pg": "^8.16.0",
+        "pg": "^8.16.3",
+        "postgres-array": "3.0.4"
+      }
+    },
+    "node_modules/@prisma/client": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/client/-/client-7.8.0.tgz",
+      "integrity": "sha512-HFp3Dawv/3sU3JtlPha90IB+48lS7zHiH4LKZPjmcE8YH5P9DOXGPvo8dqOtO7MqLDd1p2hOWMcFlRT1DMblHw==",
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/client-runtime-utils": "7.8.0"
+      },
+      "engines": {
+        "node": "^20.19 || ^22.12 || >=24.0"
+      },
+      "peerDependencies": {
+        "prisma": "*",
+        "typescript": ">=5.4.0"
+      },
+      "peerDependenciesMeta": {
+        "prisma": {
+          "optional": true
+        },
+        "typescript": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@prisma/client-runtime-utils": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/client-runtime-utils/-/client-runtime-utils-7.8.0.tgz",
+      "integrity": "sha512-5NQZztQ0oY/ADFkmd9gPuweH5A1/CCY8YQPorLLO0Mu6a87mY5gsnDkzmFmIHs9NFaLnZojzgddFVN4RpKYrdw==",
+      "license": "Apache-2.0"
+    },
+    "node_modules/@prisma/config": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/config/-/config-7.8.0.tgz",
+      "integrity": "sha512-HFESzd9rx2ZQxlK+TL7tu1HPvCqrHiL6LCxYykI2c34mvaUuIVVl3lYuicJD/MNnzgPnyeBEMlK4WTomJCV5jw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "c12": "3.3.4",
+        "deepmerge-ts": "7.1.5",
+        "effect": "3.20.0",
+        "empathic": "2.0.0"
+      }
+    },
+    "node_modules/@prisma/debug": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/debug/-/debug-7.8.0.tgz",
+      "integrity": "sha512-p+QZReysDUqXC+mk17q9a+Y/qzh4c2KYliDK30buYUyfrGeTGSyfmc0AIrJRhZJrLHhRiJa9Au/J72h3C+szvA==",
+      "license": "Apache-2.0"
+    },
+    "node_modules/@prisma/dev": {
+      "version": "0.24.3",
+      "resolved": "https://registry.npmjs.org/@prisma/dev/-/dev-0.24.3.tgz",
+      "integrity": "sha512-ffHlQuKXZiaDt9Go0OnCTdJZrHxK0k7omJKNV86/VjpsXu5EIHZLK0T7JSWgvNlJwh56kW9JFu9v0qJciFzepg==",
+      "devOptional": true,
+      "license": "ISC",
+      "dependencies": {
+        "@electric-sql/pglite": "0.4.1",
+        "@electric-sql/pglite-socket": "0.1.1",
+        "@electric-sql/pglite-tools": "0.3.1",
+        "@hono/node-server": "1.19.11",
+        "@prisma/get-platform": "7.2.0",
+        "@prisma/query-plan-executor": "7.2.0",
+        "@prisma/streams-local": "0.1.2",
+        "foreground-child": "3.3.1",
+        "get-port-please": "3.2.0",
+        "hono": "^4.12.8",
+        "http-status-codes": "2.3.0",
+        "pathe": "2.0.3",
+        "proper-lockfile": "4.1.2",
+        "remeda": "2.33.4",
+        "std-env": "3.10.0",
+        "valibot": "1.2.0",
+        "zeptomatch": "2.1.0"
+      }
+    },
+    "node_modules/@prisma/dev/node_modules/std-env": {
+      "version": "3.10.0",
+      "resolved": "https://registry.npmjs.org/std-env/-/std-env-3.10.0.tgz",
+      "integrity": "sha512-5GS12FdOZNliM5mAOxFRg7Ir0pWz8MdpYm6AY6VPkGpbA7ZzmbzNcBJQ0GPvvyWgcY7QAhCgf9Uy89I03faLkg==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/@prisma/driver-adapter-utils": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/driver-adapter-utils/-/driver-adapter-utils-7.8.0.tgz",
+      "integrity": "sha512-/Q13o0ZT0rjc1Xk0Q9KhZYwuq2EW/vSbWUBKfgEKkaCuB/Sg6bqnjmTZqC5cD4d6y1vfFAEwBRzfzoSMIVJ55A==",
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.8.0"
+      }
+    },
+    "node_modules/@prisma/engines": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/engines/-/engines-7.8.0.tgz",
+      "integrity": "sha512-jx3rCnNNrt5uzbkKlegtQ2GZHxSlihMCzutgT/BP6UIDF1r9tDI39hV/0T/cHZgzJ3ELbuQPXlVZy+Y1n0pcgw==",
+      "devOptional": true,
+      "hasInstallScript": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.8.0",
+        "@prisma/engines-version": "7.8.0-6.3c6e192761c0362d496ed980de936e2f3cebcd3a",
+        "@prisma/fetch-engine": "7.8.0",
+        "@prisma/get-platform": "7.8.0"
+      }
+    },
+    "node_modules/@prisma/engines-version": {
+      "version": "7.8.0-6.3c6e192761c0362d496ed980de936e2f3cebcd3a",
+      "resolved": "https://registry.npmjs.org/@prisma/engines-version/-/engines-version-7.8.0-6.3c6e192761c0362d496ed980de936e2f3cebcd3a.tgz",
+      "integrity": "sha512-fJPQxCkLgA5EayWaW8eArgCvjJ+N+Kz3VyeNKMEeYiQC4alNkxRKFVAGxv/ZUzuJISKqdw+zGeDbS6mn6RCPOA==",
+      "devOptional": true,
+      "license": "Apache-2.0"
+    },
+    "node_modules/@prisma/engines/node_modules/@prisma/get-platform": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/get-platform/-/get-platform-7.8.0.tgz",
+      "integrity": "sha512-WlxgRGnolL8VH2EmkH1R/DkKNr/mVdS3G2h42IZFFZ3eUrH9OT6t73kIOSlkkrv50wG123Iq8d96ufv5LlZktw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.8.0"
+      }
+    },
+    "node_modules/@prisma/fetch-engine": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/fetch-engine/-/fetch-engine-7.8.0.tgz",
+      "integrity": "sha512-gwB0Euiz/DDRyxFRpLXYlK3RfaZUj1c5dAYMuhZYfApg7arknJlcb9bIsOHDppJmbqYaVA+yBIiFMDBfprsNPQ==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.8.0",
+        "@prisma/engines-version": "7.8.0-6.3c6e192761c0362d496ed980de936e2f3cebcd3a",
+        "@prisma/get-platform": "7.8.0"
+      }
+    },
+    "node_modules/@prisma/fetch-engine/node_modules/@prisma/get-platform": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/@prisma/get-platform/-/get-platform-7.8.0.tgz",
+      "integrity": "sha512-WlxgRGnolL8VH2EmkH1R/DkKNr/mVdS3G2h42IZFFZ3eUrH9OT6t73kIOSlkkrv50wG123Iq8d96ufv5LlZktw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.8.0"
+      }
+    },
+    "node_modules/@prisma/get-platform": {
+      "version": "7.2.0",
+      "resolved": "https://registry.npmjs.org/@prisma/get-platform/-/get-platform-7.2.0.tgz",
+      "integrity": "sha512-k1V0l0Td1732EHpAfi2eySTezyllok9dXb6UQanajkJQzPUGi3vO2z7jdkz67SypFTdmbnyGYxvEvYZdZsMAVA==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/debug": "7.2.0"
+      }
+    },
+    "node_modules/@prisma/get-platform/node_modules/@prisma/debug": {
+      "version": "7.2.0",
+      "resolved": "https://registry.npmjs.org/@prisma/debug/-/debug-7.2.0.tgz",
+      "integrity": "sha512-YSGTiSlBAVJPzX4ONZmMotL+ozJwQjRmZweQNIq/ER0tQJKJynNkRB3kyvt37eOfsbMCXk3gnLF6J9OJ4QWftw==",
+      "devOptional": true,
+      "license": "Apache-2.0"
+    },
+    "node_modules/@prisma/query-plan-executor": {
+      "version": "7.2.0",
+      "resolved": "https://registry.npmjs.org/@prisma/query-plan-executor/-/query-plan-executor-7.2.0.tgz",
+      "integrity": "sha512-EOZmNzcV8uJ0mae3DhTsiHgoNCuu1J9mULQpGCh62zN3PxPTd+qI9tJvk5jOst8WHKQNwJWR3b39t0XvfBB0WQ==",
+      "devOptional": true,
+      "license": "Apache-2.0"
+    },
+    "node_modules/@prisma/streams-local": {
+      "version": "0.1.2",
+      "resolved": "https://registry.npmjs.org/@prisma/streams-local/-/streams-local-0.1.2.tgz",
+      "integrity": "sha512-l49yTxKKF2odFxaAXTmwmkBKL3+bVQ1tFOooGifu4xkdb9NMNLxHj27XAhTylWZod8I+ISGM5erU1xcl/oBCtg==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "ajv": "^8.12.0",
+        "better-result": "^2.7.0",
+        "env-paths": "^3.0.0",
+        "proper-lockfile": "^4.1.2"
+      },
+      "engines": {
+        "bun": ">=1.3.6",
+        "node": ">=22.0.0"
+      }
+    },
+    "node_modules/@prisma/studio-core": {
+      "version": "0.27.3",
+      "resolved": "https://registry.npmjs.org/@prisma/studio-core/-/studio-core-0.27.3.tgz",
+      "integrity": "sha512-AADjNFPdsrglxHQVTmHFqv6DuKQZ5WY4p5/gVFY017twvNrSwpLJ9lqUbYYxEu2W7nbvVxTZA8deJ8LseNALsw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@radix-ui/react-toggle": "1.1.10",
+        "chart.js": "4.5.1"
+      },
+      "engines": {
+        "node": "^20.19 || ^22.12 || >=24.0",
+        "pnpm": "8"
+      },
+      "peerDependencies": {
+        "@types/react": "^18.0.0 || ^19.0.0",
+        "react": "^18.0.0 || ^19.0.0",
+        "react-dom": "^18.0.0 || ^19.0.0"
+      }
+    },
+    "node_modules/@radix-ui/primitive": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@radix-ui/primitive/-/primitive-1.1.3.tgz",
+      "integrity": "sha512-JTF99U/6XIjCBo0wqkU5sK10glYe27MRRsfwoiq5zzOEZLHU3A3KCMa5X/azekYRCJ0HlwI0crAXS/5dEHTzDg==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/@radix-ui/react-compose-refs": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-compose-refs/-/react-compose-refs-1.1.2.tgz",
+      "integrity": "sha512-z4eqJvfiNnFMHIIvXP3CY57y2WJs5g2v3X0zm9mEJkrkNv4rDxu+sg9Jh8EkXyeqBkB7SOcboo9dMVqhyrACIg==",
+      "devOptional": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "@types/react": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-primitive": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-primitive/-/react-primitive-2.1.3.tgz",
+      "integrity": "sha512-m9gTwRkhy2lvCPe6QJp4d3G1TYEUHn/FzJUtq9MjH46an1wJU+GdoGC5VLof8RX8Ft/DlpshApkhswDLZzHIcQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@radix-ui/react-slot": "1.2.3"
+      },
+      "peerDependencies": {
+        "@types/react": "*",
+        "@types/react-dom": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc",
+        "react-dom": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "@types/react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-slot": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-slot/-/react-slot-1.2.3.tgz",
+      "integrity": "sha512-aeNmHnBxbi2St0au6VBVC7JXFlhLlOnvIIlePNniyUNAClzmtAUEY8/pBiK3iHjufOlwA+c20/8jngo7xcrg8A==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@radix-ui/react-compose-refs": "1.1.2"
+      },
+      "peerDependencies": {
+        "@types/react": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-toggle": {
+      "version": "1.1.10",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-toggle/-/react-toggle-1.1.10.tgz",
+      "integrity": "sha512-lS1odchhFTeZv3xwHH31YPObmJn8gOg7Lq12inrr0+BH/l3Tsq32VfjqH1oh80ARM3mlkfMic15n0kg4sD1poQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@radix-ui/primitive": "1.1.3",
+        "@radix-ui/react-primitive": "2.1.3",
+        "@radix-ui/react-use-controllable-state": "1.2.2"
+      },
+      "peerDependencies": {
+        "@types/react": "*",
+        "@types/react-dom": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc",
+        "react-dom": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "@types/react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-use-controllable-state": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-use-controllable-state/-/react-use-controllable-state-1.2.2.tgz",
+      "integrity": "sha512-BjasUjixPFdS+NKkypcyyN5Pmg83Olst0+c6vGov0diwTEo6mgdqVR6hxcEgFuh4QrAs7Rc+9KuGJ9TVCj0Zzg==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@radix-ui/react-use-effect-event": "0.0.2",
+        "@radix-ui/react-use-layout-effect": "1.1.1"
+      },
+      "peerDependencies": {
+        "@types/react": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-use-effect-event": {
+      "version": "0.0.2",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-use-effect-event/-/react-use-effect-event-0.0.2.tgz",
+      "integrity": "sha512-Qp8WbZOBe+blgpuUT+lw2xheLP8q0oatc9UpmiemEICxGvFLYmHm9QowVZGHtJlGbS6A6yJ3iViad/2cVjnOiA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@radix-ui/react-use-layout-effect": "1.1.1"
+      },
+      "peerDependencies": {
+        "@types/react": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@radix-ui/react-use-layout-effect": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/@radix-ui/react-use-layout-effect/-/react-use-layout-effect-1.1.1.tgz",
+      "integrity": "sha512-RbJRS4UWQFkzHTTwVymMTUv8EqYhOp8dOOviLj2ugtTiXRaRQS7GLGxZTLL1jWhMeoSCf5zmcZkqTl9IiYfXcQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "@types/react": "*",
+        "react": "^16.8 || ^17.0 || ^18.0 || ^19.0 || ^19.0.0-rc"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@rolldown/pluginutils": {
+      "version": "1.0.0-rc.3",
+      "resolved": "https://registry.npmjs.org/@rolldown/pluginutils/-/pluginutils-1.0.0-rc.3.tgz",
+      "integrity": "sha512-eybk3TjzzzV97Dlj5c+XrBFW57eTNhzod66y9HrBlzJ6NsCrWCp/2kaPS3K9wJmurBC0Tdw4yPjXKZqlznim3Q==",
+      "license": "MIT"
+    },
+    "node_modules/@rollup/rollup-android-arm-eabi": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm-eabi/-/rollup-android-arm-eabi-4.60.1.tgz",
+      "integrity": "sha512-d6FinEBLdIiK+1uACUttJKfgZREXrF0Qc2SmLII7W2AD8FfiZ9Wjd+rD/iRuf5s5dWrr1GgwXCvPqOuDquOowA==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@rollup/rollup-android-arm64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-android-arm64/-/rollup-android-arm64-4.60.1.tgz",
+      "integrity": "sha512-YjG/EwIDvvYI1YvYbHvDz/BYHtkY4ygUIXHnTdLhG+hKIQFBiosfWiACWortsKPKU/+dUwQQCKQM3qrDe8c9BA==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@rollup/rollup-darwin-arm64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-arm64/-/rollup-darwin-arm64-4.60.1.tgz",
+      "integrity": "sha512-mjCpF7GmkRtSJwon+Rq1N8+pI+8l7w5g9Z3vWj4T7abguC4Czwi3Yu/pFaLvA3TTeMVjnu3ctigusqWUfjZzvw==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@rollup/rollup-darwin-x64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-darwin-x64/-/rollup-darwin-x64-4.60.1.tgz",
+      "integrity": "sha512-haZ7hJ1JT4e9hqkoT9R/19XW2QKqjfJVv+i5AGg57S+nLk9lQnJ1F/eZloRO3o9Scy9CM3wQ9l+dkXtcBgN5Ew==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@rollup/rollup-freebsd-arm64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-arm64/-/rollup-freebsd-arm64-4.60.1.tgz",
+      "integrity": "sha512-czw90wpQq3ZsAVBlinZjAYTKduOjTywlG7fEeWKUA7oCmpA8xdTkxZZlwNJKWqILlq0wehoZcJYfBvOyhPTQ6w==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-freebsd-x64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-freebsd-x64/-/rollup-freebsd-x64-4.60.1.tgz",
+      "integrity": "sha512-KVB2rqsxTHuBtfOeySEyzEOB7ltlB/ux38iu2rBQzkjbwRVlkhAGIEDiiYnO2kFOkJp+Z7pUXKyrRRFuFUKt+g==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm-gnueabihf": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-gnueabihf/-/rollup-linux-arm-gnueabihf-4.60.1.tgz",
+      "integrity": "sha512-L+34Qqil+v5uC0zEubW7uByo78WOCIrBvci69E7sFASRl0X7b/MB6Cqd1lky/CtcSVTydWa2WZwFuWexjS5o6g==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm-musleabihf": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm-musleabihf/-/rollup-linux-arm-musleabihf-4.60.1.tgz",
+      "integrity": "sha512-n83O8rt4v34hgFzlkb1ycniJh7IR5RCIqt6mz1VRJD6pmhRi0CXdmfnLu9dIUS6buzh60IvACM842Ffb3xd6Gg==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-gnu/-/rollup-linux-arm64-gnu-4.60.1.tgz",
+      "integrity": "sha512-Nql7sTeAzhTAja3QXeAI48+/+GjBJ+QmAH13snn0AJSNL50JsDqotyudHyMbO2RbJkskbMbFJfIJKWA6R1LCJQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-arm64-musl": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-arm64-musl/-/rollup-linux-arm64-musl-4.60.1.tgz",
+      "integrity": "sha512-+pUymDhd0ys9GcKZPPWlFiZ67sTWV5UU6zOJat02M1+PiuSGDziyRuI/pPue3hoUwm2uGfxdL+trT6Z9rxnlMA==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-loong64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-loong64-gnu/-/rollup-linux-loong64-gnu-4.60.1.tgz",
+      "integrity": "sha512-VSvgvQeIcsEvY4bKDHEDWcpW4Yw7BtlKG1GUT4FzBUlEKQK0rWHYBqQt6Fm2taXS+1bXvJT6kICu5ZwqKCnvlQ==",
+      "cpu": [
+        "loong64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-loong64-musl": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-loong64-musl/-/rollup-linux-loong64-musl-4.60.1.tgz",
+      "integrity": "sha512-4LqhUomJqwe641gsPp6xLfhqWMbQV04KtPp7/dIp0nzPxAkNY1AbwL5W0MQpcalLYk07vaW9Kp1PBhdpZYYcEw==",
+      "cpu": [
+        "loong64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-ppc64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-ppc64-gnu/-/rollup-linux-ppc64-gnu-4.60.1.tgz",
+      "integrity": "sha512-tLQQ9aPvkBxOc/EUT6j3pyeMD6Hb8QF2BTBnCQWP/uu1lhc9AIrIjKnLYMEroIz/JvtGYgI9dF3AxHZNaEH0rw==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-ppc64-musl": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-ppc64-musl/-/rollup-linux-ppc64-musl-4.60.1.tgz",
+      "integrity": "sha512-RMxFhJwc9fSXP6PqmAz4cbv3kAyvD1etJFjTx4ONqFP9DkTkXsAMU4v3Vyc5BgzC+anz7nS/9tp4obsKfqkDHg==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-riscv64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-gnu/-/rollup-linux-riscv64-gnu-4.60.1.tgz",
+      "integrity": "sha512-QKgFl+Yc1eEk6MmOBfRHYF6lTxiiiV3/z/BRrbSiW2I7AFTXoBFvdMEyglohPj//2mZS4hDOqeB0H1ACh3sBbg==",
+      "cpu": [
+        "riscv64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-riscv64-musl": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-riscv64-musl/-/rollup-linux-riscv64-musl-4.60.1.tgz",
+      "integrity": "sha512-RAjXjP/8c6ZtzatZcA1RaQr6O1TRhzC+adn8YZDnChliZHviqIjmvFwHcxi4JKPSDAt6Uhf/7vqcBzQJy0PDJg==",
+      "cpu": [
+        "riscv64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-s390x-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-s390x-gnu/-/rollup-linux-s390x-gnu-4.60.1.tgz",
+      "integrity": "sha512-wcuocpaOlaL1COBYiA89O6yfjlp3RwKDeTIA0hM7OpmhR1Bjo9j31G1uQVpDlTvwxGn2nQs65fBFL5UFd76FcQ==",
+      "cpu": [
+        "s390x"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-x64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-gnu/-/rollup-linux-x64-gnu-4.60.1.tgz",
+      "integrity": "sha512-77PpsFQUCOiZR9+LQEFg9GClyfkNXj1MP6wRnzYs0EeWbPcHs02AXu4xuUbM1zhwn3wqaizle3AEYg5aeoohhg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-linux-x64-musl": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-linux-x64-musl/-/rollup-linux-x64-musl-4.60.1.tgz",
+      "integrity": "sha512-5cIATbk5vynAjqqmyBjlciMJl1+R/CwX9oLk/EyiFXDWd95KpHdrOJT//rnUl4cUcskrd0jCCw3wpZnhIHdD9w==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@rollup/rollup-openbsd-x64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-openbsd-x64/-/rollup-openbsd-x64-4.60.1.tgz",
+      "integrity": "sha512-cl0w09WsCi17mcmWqqglez9Gk8isgeWvoUZ3WiJFYSR3zjBQc2J5/ihSjpl+VLjPqjQ/1hJRcqBfLjssREQILw==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ]
+    },
+    "node_modules/@rollup/rollup-openharmony-arm64": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-openharmony-arm64/-/rollup-openharmony-arm64-4.60.1.tgz",
+      "integrity": "sha512-4Cv23ZrONRbNtbZa37mLSueXUCtN7MXccChtKpUnQNgF010rjrjfHx3QxkS2PI7LqGT5xXyYs1a7LbzAwT0iCA==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openharmony"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-arm64-msvc": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-arm64-msvc/-/rollup-win32-arm64-msvc-4.60.1.tgz",
+      "integrity": "sha512-i1okWYkA4FJICtr7KpYzFpRTHgy5jdDbZiWfvny21iIKky5YExiDXP+zbXzm3dUcFpkEeYNHgQ5fuG236JPq0g==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-ia32-msvc": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-ia32-msvc/-/rollup-win32-ia32-msvc-4.60.1.tgz",
+      "integrity": "sha512-u09m3CuwLzShA0EYKMNiFgcjjzwqtUMLmuCJLeZWjjOYA3IT2Di09KaxGBTP9xVztWyIWjVdsB2E9goMjZvTQg==",
+      "cpu": [
+        "ia32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-x64-gnu": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-gnu/-/rollup-win32-x64-gnu-4.60.1.tgz",
+      "integrity": "sha512-k+600V9Zl1CM7eZxJgMyTUzmrmhB/0XZnF4pRypKAlAgxmedUA+1v9R+XOFv56W4SlHEzfeMtzujLJD22Uz5zg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@rollup/rollup-win32-x64-msvc": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/@rollup/rollup-win32-x64-msvc/-/rollup-win32-x64-msvc-4.60.1.tgz",
+      "integrity": "sha512-lWMnixq/QzxyhTV6NjQJ4SFo1J6PvOX8vUx5Wb4bBPsEb+8xZ89Bz6kOXpfXj9ak9AHTQVQzlgzBEc1SyM27xQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@standard-schema/spec": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@standard-schema/spec/-/spec-1.1.0.tgz",
+      "integrity": "sha512-l2aFy5jALhniG5HgqrD6jXLi/rUWrKvqN/qJx6yoJsgKhblVd+iqqU4RCXavm/jPityDo5TCvKMnpjKnOriy0w==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/@tailwindcss/node": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/node/-/node-4.2.2.tgz",
+      "integrity": "sha512-pXS+wJ2gZpVXqFaUEjojq7jzMpTGf8rU6ipJz5ovJV6PUGmlJ+jvIwGrzdHdQ80Sg+wmQxUFuoW1UAAwHNEdFA==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/remapping": "^2.3.5",
+        "enhanced-resolve": "^5.19.0",
+        "jiti": "^2.6.1",
+        "lightningcss": "1.32.0",
+        "magic-string": "^0.30.21",
+        "source-map-js": "^1.2.1",
+        "tailwindcss": "4.2.2"
+      }
+    },
+    "node_modules/@tailwindcss/oxide": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide/-/oxide-4.2.2.tgz",
+      "integrity": "sha512-qEUA07+E5kehxYp9BVMpq9E8vnJuBHfJEC0vPC5e7iL/hw7HR61aDKoVoKzrG+QKp56vhNZe4qwkRmMC0zDLvg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 20"
+      },
+      "optionalDependencies": {
+        "@tailwindcss/oxide-android-arm64": "4.2.2",
+        "@tailwindcss/oxide-darwin-arm64": "4.2.2",
+        "@tailwindcss/oxide-darwin-x64": "4.2.2",
+        "@tailwindcss/oxide-freebsd-x64": "4.2.2",
+        "@tailwindcss/oxide-linux-arm-gnueabihf": "4.2.2",
+        "@tailwindcss/oxide-linux-arm64-gnu": "4.2.2",
+        "@tailwindcss/oxide-linux-arm64-musl": "4.2.2",
+        "@tailwindcss/oxide-linux-x64-gnu": "4.2.2",
+        "@tailwindcss/oxide-linux-x64-musl": "4.2.2",
+        "@tailwindcss/oxide-wasm32-wasi": "4.2.2",
+        "@tailwindcss/oxide-win32-arm64-msvc": "4.2.2",
+        "@tailwindcss/oxide-win32-x64-msvc": "4.2.2"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-android-arm64": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-android-arm64/-/oxide-android-arm64-4.2.2.tgz",
+      "integrity": "sha512-dXGR1n+P3B6748jZO/SvHZq7qBOqqzQ+yFrXpoOWWALWndF9MoSKAT3Q0fYgAzYzGhxNYOoysRvYlpixRBBoDg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-darwin-arm64": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-darwin-arm64/-/oxide-darwin-arm64-4.2.2.tgz",
+      "integrity": "sha512-iq9Qjr6knfMpZHj55/37ouZeykwbDqF21gPFtfnhCCKGDcPI/21FKC9XdMO/XyBM7qKORx6UIhGgg6jLl7BZlg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-darwin-x64": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-darwin-x64/-/oxide-darwin-x64-4.2.2.tgz",
+      "integrity": "sha512-BlR+2c3nzc8f2G639LpL89YY4bdcIdUmiOOkv2GQv4/4M0vJlpXEa0JXNHhCHU7VWOKWT/CjqHdTP8aUuDJkuw==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-freebsd-x64": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-freebsd-x64/-/oxide-freebsd-x64-4.2.2.tgz",
+      "integrity": "sha512-YUqUgrGMSu2CDO82hzlQ5qSb5xmx3RUrke/QgnoEx7KvmRJHQuZHZmZTLSuuHwFf0DJPybFMXMYf+WJdxHy/nQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-linux-arm-gnueabihf": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-linux-arm-gnueabihf/-/oxide-linux-arm-gnueabihf-4.2.2.tgz",
+      "integrity": "sha512-FPdhvsW6g06T9BWT0qTwiVZYE2WIFo2dY5aCSpjG/S/u1tby+wXoslXS0kl3/KXnULlLr1E3NPRRw0g7t2kgaQ==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-linux-arm64-gnu": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-linux-arm64-gnu/-/oxide-linux-arm64-gnu-4.2.2.tgz",
+      "integrity": "sha512-4og1V+ftEPXGttOO7eCmW7VICmzzJWgMx+QXAJRAhjrSjumCwWqMfkDrNu1LXEQzNAwz28NCUpucgQPrR4S2yw==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-linux-arm64-musl": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-linux-arm64-musl/-/oxide-linux-arm64-musl-4.2.2.tgz",
+      "integrity": "sha512-oCfG/mS+/+XRlwNjnsNLVwnMWYH7tn/kYPsNPh+JSOMlnt93mYNCKHYzylRhI51X+TbR+ufNhhKKzm6QkqX8ag==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-linux-x64-gnu": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-linux-x64-gnu/-/oxide-linux-x64-gnu-4.2.2.tgz",
+      "integrity": "sha512-rTAGAkDgqbXHNp/xW0iugLVmX62wOp2PoE39BTCGKjv3Iocf6AFbRP/wZT/kuCxC9QBh9Pu8XPkv/zCZB2mcMg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-linux-x64-musl": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-linux-x64-musl/-/oxide-linux-x64-musl-4.2.2.tgz",
+      "integrity": "sha512-XW3t3qwbIwiSyRCggeO2zxe3KWaEbM0/kW9e8+0XpBgyKU4ATYzcVSMKteZJ1iukJ3HgHBjbg9P5YPRCVUxlnQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-wasm32-wasi": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-wasm32-wasi/-/oxide-wasm32-wasi-4.2.2.tgz",
+      "integrity": "sha512-eKSztKsmEsn1O5lJ4ZAfyn41NfG7vzCg496YiGtMDV86jz1q/irhms5O0VrY6ZwTUkFy/EKG3RfWgxSI3VbZ8Q==",
+      "bundleDependencies": [
+        "@napi-rs/wasm-runtime",
+        "@emnapi/core",
+        "@emnapi/runtime",
+        "@tybys/wasm-util",
+        "@emnapi/wasi-threads",
+        "tslib"
+      ],
+      "cpu": [
+        "wasm32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "dependencies": {
+        "@emnapi/core": "^1.8.1",
+        "@emnapi/runtime": "^1.8.1",
+        "@emnapi/wasi-threads": "^1.1.0",
+        "@napi-rs/wasm-runtime": "^1.1.1",
+        "@tybys/wasm-util": "^0.10.1",
+        "tslib": "^2.8.1"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-win32-arm64-msvc": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-win32-arm64-msvc/-/oxide-win32-arm64-msvc-4.2.2.tgz",
+      "integrity": "sha512-qPmaQM4iKu5mxpsrWZMOZRgZv1tOZpUm+zdhhQP0VhJfyGGO3aUKdbh3gDZc/dPLQwW4eSqWGrrcWNBZWUWaXQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/oxide-win32-x64-msvc": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/oxide-win32-x64-msvc/-/oxide-win32-x64-msvc-4.2.2.tgz",
+      "integrity": "sha512-1T/37VvI7WyH66b+vqHj/cLwnCxt7Qt3WFu5Q8hk65aOvlwAhs7rAp1VkulBJw/N4tMirXjVnylTR72uI0HGcA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 20"
+      }
+    },
+    "node_modules/@tailwindcss/vite": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/@tailwindcss/vite/-/vite-4.2.2.tgz",
+      "integrity": "sha512-mEiF5HO1QqCLXoNEfXVA1Tzo+cYsrqV7w9Juj2wdUFyW07JRenqMG225MvPwr3ZD9N1bFQj46X7r33iHxLUW0w==",
+      "license": "MIT",
+      "dependencies": {
+        "@tailwindcss/node": "4.2.2",
+        "@tailwindcss/oxide": "4.2.2",
+        "tailwindcss": "4.2.2"
+      },
+      "peerDependencies": {
+        "vite": "^5.2.0 || ^6 || ^7 || ^8"
+      }
+    },
+    "node_modules/@testing-library/dom": {
+      "version": "10.4.1",
+      "resolved": "https://registry.npmjs.org/@testing-library/dom/-/dom-10.4.1.tgz",
+      "integrity": "sha512-o4PXJQidqJl82ckFaXUeoAW+XysPLauYI43Abki5hABd853iMhitooc6znOnczgbTYmEP6U6/y1ZyKAIsvMKGg==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "@babel/code-frame": "^7.10.4",
+        "@babel/runtime": "^7.12.5",
+        "@types/aria-query": "^5.0.1",
+        "aria-query": "5.3.0",
+        "dom-accessibility-api": "^0.5.9",
+        "lz-string": "^1.5.0",
+        "picocolors": "1.1.1",
+        "pretty-format": "^27.0.2"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@testing-library/jest-dom": {
+      "version": "6.9.1",
+      "resolved": "https://registry.npmjs.org/@testing-library/jest-dom/-/jest-dom-6.9.1.tgz",
+      "integrity": "sha512-zIcONa+hVtVSSep9UT3jZ5rizo2BsxgyDYU7WFD5eICBE7no3881HGeb/QkGfsJs6JTkY1aQhT7rIPC7e+0nnA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@adobe/css-tools": "^4.4.0",
+        "aria-query": "^5.0.0",
+        "css.escape": "^1.5.1",
+        "dom-accessibility-api": "^0.6.3",
+        "picocolors": "^1.1.1",
+        "redent": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=14",
+        "npm": ">=6",
+        "yarn": ">=1"
+      }
+    },
+    "node_modules/@testing-library/jest-dom/node_modules/dom-accessibility-api": {
+      "version": "0.6.3",
+      "resolved": "https://registry.npmjs.org/dom-accessibility-api/-/dom-accessibility-api-0.6.3.tgz",
+      "integrity": "sha512-7ZgogeTnjuHbo+ct10G9Ffp0mif17idi0IyWNVA/wcwcm7NPOD/WEHVP3n7n3MhXqxoIYm8d6MuZohYWIZ4T3w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@testing-library/react": {
+      "version": "16.3.2",
+      "resolved": "https://registry.npmjs.org/@testing-library/react/-/react-16.3.2.tgz",
+      "integrity": "sha512-XU5/SytQM+ykqMnAnvB2umaJNIOsLF3PVv//1Ew4CTcpz0/BRyy/af40qqrt7SjKpDdT1saBMc42CUok5gaw+g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@babel/runtime": "^7.12.5"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "@testing-library/dom": "^10.0.0",
+        "@types/react": "^18.0.0 || ^19.0.0",
+        "@types/react-dom": "^18.0.0 || ^19.0.0",
+        "react": "^18.0.0 || ^19.0.0",
+        "react-dom": "^18.0.0 || ^19.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@types/react": {
+          "optional": true
+        },
+        "@types/react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@tokenizer/inflate": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/@tokenizer/inflate/-/inflate-0.4.1.tgz",
+      "integrity": "sha512-2mAv+8pkG6GIZiF1kNg1jAjh27IDxEPKwdGul3snfztFerfPGI1LjDezZp3i7BElXompqEtPmoPx6c2wgtWsOA==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "^4.4.3",
+        "token-types": "^6.1.1"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/Borewit"
+      }
+    },
+    "node_modules/@tokenizer/token": {
+      "version": "0.3.0",
+      "resolved": "https://registry.npmjs.org/@tokenizer/token/-/token-0.3.0.tgz",
+      "integrity": "sha512-OvjF+z51L3ov0OyAU0duzsYuvO01PH7x4t6DJx+guahgTnBHkhJdG7soQeTSFLWN3efnHyibZ4Z8l2EuWwJN3A==",
+      "license": "MIT"
+    },
+    "node_modules/@types/aria-query": {
+      "version": "5.0.4",
+      "resolved": "https://registry.npmjs.org/@types/aria-query/-/aria-query-5.0.4.tgz",
+      "integrity": "sha512-rfT93uj5s0PRL7EzccGMs3brplhcrghnDoV26NqKhCAS1hVo+WdNsPvE/yb6ilfr5hi2MEk6d5EWJTKdxg8jVw==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/@types/babel__core": {
+      "version": "7.20.5",
+      "resolved": "https://registry.npmjs.org/@types/babel__core/-/babel__core-7.20.5.tgz",
+      "integrity": "sha512-qoQprZvz5wQFJwMDqeseRXWv3rqMvhgpbXFfVyWhbx9X47POIA6i/+dXefEmZKoAgOaTdaIgNSMqMIU61yRyzA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.20.7",
+        "@babel/types": "^7.20.7",
+        "@types/babel__generator": "*",
+        "@types/babel__template": "*",
+        "@types/babel__traverse": "*"
+      }
+    },
+    "node_modules/@types/babel__generator": {
+      "version": "7.27.0",
+      "resolved": "https://registry.npmjs.org/@types/babel__generator/-/babel__generator-7.27.0.tgz",
+      "integrity": "sha512-ufFd2Xi92OAVPYsy+P4n7/U7e68fex0+Ee8gSG9KX7eo084CWiQ4sdxktvdl0bOPupXtVJPY19zk6EwWqUQ8lg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.0.0"
+      }
+    },
+    "node_modules/@types/babel__template": {
+      "version": "7.4.4",
+      "resolved": "https://registry.npmjs.org/@types/babel__template/-/babel__template-7.4.4.tgz",
+      "integrity": "sha512-h/NUaSyG5EyxBIp8YRxo4RMe2/qQgvyowRwVMzhYhBCONbW8PUsg4lkFMrhgZhUe5z3L3MiLDuvyJ/CaPa2A8A==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.1.0",
+        "@babel/types": "^7.0.0"
+      }
+    },
+    "node_modules/@types/babel__traverse": {
+      "version": "7.28.0",
+      "resolved": "https://registry.npmjs.org/@types/babel__traverse/-/babel__traverse-7.28.0.tgz",
+      "integrity": "sha512-8PvcXf70gTDZBgt9ptxJ8elBeBjcLOAcOtoO/mPJjtji1+CdGbHgm77om1GrsPxsiE+uXIpNSK64UYaIwQXd4Q==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.28.2"
+      }
+    },
+    "node_modules/@types/body-parser": {
+      "version": "1.19.6",
+      "resolved": "https://registry.npmjs.org/@types/body-parser/-/body-parser-1.19.6.tgz",
+      "integrity": "sha512-HLFeCYgz89uk22N5Qg3dvGvsv46B8GLvKKo1zKG4NybA8U2DiEO3w9lqGg29t/tfLRJpJ6iQxnVw4OnB7MoM9g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/connect": "*",
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@types/chai": {
+      "version": "5.2.3",
+      "resolved": "https://registry.npmjs.org/@types/chai/-/chai-5.2.3.tgz",
+      "integrity": "sha512-Mw558oeA9fFbv65/y4mHtXDs9bPnFMZAL/jxdPFUpOHHIXX91mcgEHbS5Lahr+pwZFR8A7GQleRWeI6cGFC2UA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/deep-eql": "*",
+        "assertion-error": "^2.0.1"
+      }
+    },
+    "node_modules/@types/connect": {
+      "version": "3.4.38",
+      "resolved": "https://registry.npmjs.org/@types/connect/-/connect-3.4.38.tgz",
+      "integrity": "sha512-K6uROf1LD88uDQqJCktA4yzL1YYAK6NgfsI0v/mTgyPKWsX1CnJ0XPSDhViejru1GcRkLWb8RlzFYJRqGUbaug==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@types/cookie-parser": {
+      "version": "1.4.10",
+      "resolved": "https://registry.npmjs.org/@types/cookie-parser/-/cookie-parser-1.4.10.tgz",
+      "integrity": "sha512-B4xqkqfZ8Wek+rCOeRxsjMS9OgvzebEzzLYw7NHYuvzb7IdxOkI0ZHGgeEBX4PUM7QGVvNSK60T3OvWj3YfBRg==",
+      "dev": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "@types/express": "*"
+      }
+    },
+    "node_modules/@types/cookiejar": {
+      "version": "2.1.5",
+      "resolved": "https://registry.npmjs.org/@types/cookiejar/-/cookiejar-2.1.5.tgz",
+      "integrity": "sha512-he+DHOWReW0nghN24E1WUqM0efK4kI9oTqDm6XmK8ZPe2djZ90BSNdGnIyCLzCPw7/pogPlGbzI2wHGGmi4O/Q==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/deep-eql": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/@types/deep-eql/-/deep-eql-4.0.2.tgz",
+      "integrity": "sha512-c9h9dVVMigMPc4bwTvC5dxqtqJZwQPePsWjPlpSOnojbor6pGqdk541lfA7AqFQr5pB1BRdq0juY9db81BwyFw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/estree": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.8.tgz",
+      "integrity": "sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w==",
+      "license": "MIT"
+    },
+    "node_modules/@types/express": {
+      "version": "4.17.25",
+      "resolved": "https://registry.npmjs.org/@types/express/-/express-4.17.25.tgz",
+      "integrity": "sha512-dVd04UKsfpINUnK0yBoYHDF3xu7xVH4BuDotC/xGuycx4CgbP48X/KF/586bcObxT0HENHXEU8Nqtu6NR+eKhw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/body-parser": "*",
+        "@types/express-serve-static-core": "^4.17.33",
+        "@types/qs": "*",
+        "@types/serve-static": "^1"
+      }
+    },
+    "node_modules/@types/express-serve-static-core": {
+      "version": "4.19.8",
+      "resolved": "https://registry.npmjs.org/@types/express-serve-static-core/-/express-serve-static-core-4.19.8.tgz",
+      "integrity": "sha512-02S5fmqeoKzVZCHPZid4b8JH2eM5HzQLZWN2FohQEy/0eXTq8VXZfSN6Pcr3F6N9R/vNrj7cpgbhjie6m/1tCA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*",
+        "@types/qs": "*",
+        "@types/range-parser": "*",
+        "@types/send": "*"
+      }
+    },
+    "node_modules/@types/express-session": {
+      "version": "1.19.0",
+      "resolved": "https://registry.npmjs.org/@types/express-session/-/express-session-1.19.0.tgz",
+      "integrity": "sha512-GbypG0bog68UbOq2tSAp7SclvCUm3ha1uDi58OPRGK1NfRvCIu7Gz0M7fTGtpNG1T9a29GpuurQj9zEcT/lMXQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/express": "*"
+      }
+    },
+    "node_modules/@types/http-errors": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/@types/http-errors/-/http-errors-2.0.5.tgz",
+      "integrity": "sha512-r8Tayk8HJnX0FztbZN7oVqGccWgw98T/0neJphO91KkmOzug1KkofZURD4UaD5uH8AqcFLfdPErnBod0u71/qg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/methods": {
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/@types/methods/-/methods-1.1.4.tgz",
+      "integrity": "sha512-ymXWVrDiCxTBE3+RIrrP533E70eA+9qu7zdWoHuOmGujkYtzf4HQF96b8nwHLqhuf4ykX61IGRIB38CC6/sImQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/mime": {
+      "version": "1.3.5",
+      "resolved": "https://registry.npmjs.org/@types/mime/-/mime-1.3.5.tgz",
+      "integrity": "sha512-/pyBZWSLD2n0dcHE3hq8s8ZvcETHtEuF+3E7XVt0Ig2nvsVQXdghHVcEkIWjy9A0wKfTn97a/PSDYohKIlnP/w==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/node": {
+      "version": "22.19.17",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-22.19.17.tgz",
+      "integrity": "sha512-wGdMcf+vPYM6jikpS/qhg6WiqSV/OhG+jeeHT/KlVqxYfD40iYJf9/AE1uQxVWFvU7MipKRkRv8NSHiCGgPr8Q==",
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~6.21.0"
+      }
+    },
+    "node_modules/@types/pg": {
+      "version": "8.20.0",
+      "resolved": "https://registry.npmjs.org/@types/pg/-/pg-8.20.0.tgz",
+      "integrity": "sha512-bEPFOaMAHTEP1EzpvHTbmwR8UsFyHSKsRisLIHVMXnpNefSbGA1bD6CVy+qKjGSqmZqNqBDV2azOBo8TgkcVow==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*",
+        "pg-protocol": "*",
+        "pg-types": "^2.2.0"
+      }
+    },
+    "node_modules/@types/qs": {
+      "version": "6.15.0",
+      "resolved": "https://registry.npmjs.org/@types/qs/-/qs-6.15.0.tgz",
+      "integrity": "sha512-JawvT8iBVWpzTrz3EGw9BTQFg3BQNmwERdKE22vlTxawwtbyUSlMppvZYKLZzB5zgACXdXxbD3m1bXaMqP/9ow==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/range-parser": {
+      "version": "1.2.7",
+      "resolved": "https://registry.npmjs.org/@types/range-parser/-/range-parser-1.2.7.tgz",
+      "integrity": "sha512-hKormJbkJqzQGhziax5PItDUTMAM9uE2XXQmM37dyd4hVM+5aVl7oVxMVUiVQn2oCQFN/LKCZdvSM0pFRqbSmQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/@types/react": {
+      "version": "19.2.14",
+      "resolved": "https://registry.npmjs.org/@types/react/-/react-19.2.14.tgz",
+      "integrity": "sha512-ilcTH/UniCkMdtexkoCN0bI7pMcJDvmQFPvuPvmEaYA/NSfFTAgdUSLAoVjaRJm7+6PvcM+q1zYOwS4wTYMF9w==",
+      "devOptional": true,
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "csstype": "^3.2.2"
+      }
+    },
+    "node_modules/@types/sanitize-html": {
+      "version": "2.16.1",
+      "resolved": "https://registry.npmjs.org/@types/sanitize-html/-/sanitize-html-2.16.1.tgz",
+      "integrity": "sha512-n9wjs8bCOTyN/ynwD8s/nTcTreIHB1vf31vhLMGqUPNHaweKC4/fAl4Dj+hUlCTKYgm4P3k83fmiFfzkZ6sgMA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "htmlparser2": "^10.1"
+      }
+    },
+    "node_modules/@types/send": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/@types/send/-/send-1.2.1.tgz",
+      "integrity": "sha512-arsCikDvlU99zl1g69TcAB3mzZPpxgw0UQnaHeC1Nwb015xp8bknZv5rIfri9xTOcMuaVgvabfIRA7PSZVuZIQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@types/serve-static": {
+      "version": "1.15.10",
+      "resolved": "https://registry.npmjs.org/@types/serve-static/-/serve-static-1.15.10.tgz",
+      "integrity": "sha512-tRs1dB+g8Itk72rlSI2ZrW6vZg0YrLI81iQSTkMmOqnqCaNr/8Ek4VwWcN5vZgCYWbg/JJSGBlUaYGAOP73qBw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/http-errors": "*",
+        "@types/node": "*",
+        "@types/send": "<1"
+      }
+    },
+    "node_modules/@types/serve-static/node_modules/@types/send": {
+      "version": "0.17.6",
+      "resolved": "https://registry.npmjs.org/@types/send/-/send-0.17.6.tgz",
+      "integrity": "sha512-Uqt8rPBE8SY0RK8JB1EzVOIZ32uqy8HwdxCnoCOsYrvnswqmFZ/k+9Ikidlk/ImhsdvBsloHbAlewb2IEBV/Og==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/mime": "^1",
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@types/superagent": {
+      "version": "8.1.9",
+      "resolved": "https://registry.npmjs.org/@types/superagent/-/superagent-8.1.9.tgz",
+      "integrity": "sha512-pTVjI73witn+9ILmoJdajHGW2jkSaOzhiFYF1Rd3EQ94kymLqB9PjD9ISg7WaALC7+dCHT0FGe9T2LktLq/3GQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/cookiejar": "^2.1.5",
+        "@types/methods": "^1.1.4",
+        "@types/node": "*",
+        "form-data": "^4.0.0"
+      }
+    },
+    "node_modules/@types/supertest": {
+      "version": "7.2.0",
+      "resolved": "https://registry.npmjs.org/@types/supertest/-/supertest-7.2.0.tgz",
+      "integrity": "sha512-uh2Lv57xvggst6lCqNdFAmDSvoMG7M/HDtX4iUCquxQ5EGPtaPM5PL5Hmi7LCvOG8db7YaCPNJEeoI8s/WzIQw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/methods": "^1.1.4",
+        "@types/superagent": "^8.1.0"
+      }
+    },
+    "node_modules/@types/ws": {
+      "version": "8.18.1",
+      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.18.1.tgz",
+      "integrity": "sha512-ThVF6DCVhA8kUGy+aazFQ4kXQ7E1Ty7A3ypFOe0IcJV8O/M511G99AW24irKrW56Wt44yG9+ij8FaqoBGkuBXg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
+    "node_modules/@vitejs/plugin-react": {
+      "version": "5.2.0",
+      "resolved": "https://registry.npmjs.org/@vitejs/plugin-react/-/plugin-react-5.2.0.tgz",
+      "integrity": "sha512-YmKkfhOAi3wsB1PhJq5Scj3GXMn3WvtQ/JC0xoopuHoXSdmtdStOpFrYaT1kie2YgFBcIe64ROzMYRjCrYOdYw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/core": "^7.29.0",
+        "@babel/plugin-transform-react-jsx-self": "^7.27.1",
+        "@babel/plugin-transform-react-jsx-source": "^7.27.1",
+        "@rolldown/pluginutils": "1.0.0-rc.3",
+        "@types/babel__core": "^7.20.5",
+        "react-refresh": "^0.18.0"
+      },
+      "engines": {
+        "node": "^20.19.0 || >=22.12.0"
+      },
+      "peerDependencies": {
+        "vite": "^4.2.0 || ^5.0.0 || ^6.0.0 || ^7.0.0 || ^8.0.0"
+      }
+    },
+    "node_modules/@vitest/expect": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/expect/-/expect-4.1.5.tgz",
+      "integrity": "sha512-PWBaRY5JoKuRnHlUHfpV/KohFylaDZTupcXN1H9vYryNLOnitSw60Mw9IAE2r67NbwwzBw/Cc/8q9BK3kIX8Kw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@standard-schema/spec": "^1.1.0",
+        "@types/chai": "^5.2.2",
+        "@vitest/spy": "4.1.5",
+        "@vitest/utils": "4.1.5",
+        "chai": "^6.2.2",
+        "tinyrainbow": "^3.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/mocker": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/mocker/-/mocker-4.1.5.tgz",
+      "integrity": "sha512-/x2EmFC4mT4NNzqvC3fmesuV97w5FC903KPmey4gsnJiMQ3Be1IlDKVaDaG8iqaLFHqJ2FVEkxZk5VmeLjIItw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/spy": "4.1.5",
+        "estree-walker": "^3.0.3",
+        "magic-string": "^0.30.21"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      },
+      "peerDependencies": {
+        "msw": "^2.4.9",
+        "vite": "^6.0.0 || ^7.0.0 || ^8.0.0"
+      },
+      "peerDependenciesMeta": {
+        "msw": {
+          "optional": true
+        },
+        "vite": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@vitest/pretty-format": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/pretty-format/-/pretty-format-4.1.5.tgz",
+      "integrity": "sha512-7I3q6l5qr03dVfMX2wCo9FxwSJbPdwKjy2uu/YPpU3wfHvIL4QHwVRp57OfGrDFeUJ8/8QdfBKIV12FTtLn00g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "tinyrainbow": "^3.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/runner": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/runner/-/runner-4.1.5.tgz",
+      "integrity": "sha512-2D+o7Pr82IEO46YPpoA/YU0neeyr6FTerQb5Ro7BUnBuv6NQtT/kmVnczngiMEBhzgqz2UZYl5gArejsyERDSQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/utils": "4.1.5",
+        "pathe": "^2.0.3"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/snapshot": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/snapshot/-/snapshot-4.1.5.tgz",
+      "integrity": "sha512-zypXEt4KH/XgKGPUz4eC2AvErYx0My5hfL8oDb1HzGFpEk1P62bxSohdyOmvz+d9UJwanI68MKwr2EquOaOgMQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/pretty-format": "4.1.5",
+        "@vitest/utils": "4.1.5",
+        "magic-string": "^0.30.21",
+        "pathe": "^2.0.3"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/spy": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/spy/-/spy-4.1.5.tgz",
+      "integrity": "sha512-2lNOsh6+R2Idnf1TCZqSwYlKN2E/iDlD8sgU59kYVl+OMDmvldO1VDk39smRfpUNwYpNRVn3w4YfuC7KfbBnkQ==",
+      "dev": true,
+      "license": "MIT",
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/@vitest/utils": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/@vitest/utils/-/utils-4.1.5.tgz",
+      "integrity": "sha512-76wdkrmfXfqGjueGgnb45ITPyUi1ycZ4IHgC2bhPDUfWHklY/q3MdLOAB+TF1e6xfl8NxNY0ZYaPCFNWSsw3Ug==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/pretty-format": "4.1.5",
+        "convert-source-map": "^2.0.0",
+        "tinyrainbow": "^3.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      }
+    },
+    "node_modules/accepts": {
+      "version": "1.3.8",
+      "resolved": "https://registry.npmjs.org/accepts/-/accepts-1.3.8.tgz",
+      "integrity": "sha512-PYAthTa2m2VKxuvSD3DPC/Gy+U+sOA1LAuT8mkmRuvw+NACSaeXEQ+NHcVF7rONl6qcaxV3Uuemwawk+7+SJLw==",
+      "license": "MIT",
+      "dependencies": {
+        "mime-types": "~2.1.34",
+        "negotiator": "0.6.3"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/ajv": {
+      "version": "8.20.0",
+      "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.20.0.tgz",
+      "integrity": "sha512-Thbli+OlOj+iMPYFBVBfJ3OmCAnaSyNn4M1vz9T6Gka5Jt9ba/HIR56joy65tY6kx/FCF5VXNB819Y7/GUrBGA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "fast-deep-equal": "^3.1.3",
+        "fast-uri": "^3.0.1",
+        "json-schema-traverse": "^1.0.0",
+        "require-from-string": "^2.0.2"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/epoberezkin"
+      }
+    },
+    "node_modules/ansi-regex": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-5.0.1.tgz",
+      "integrity": "sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/ansi-styles": {
+      "version": "5.2.0",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-5.2.0.tgz",
+      "integrity": "sha512-Cxwpt2SfTzTtXcfOlzGEee8O+c+MmUgGrNiBcXnuWxuFJHe6a5Hz7qwhwe5OgaSYI0IJvkLqWX1ASG+cJOkEiA==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
+      }
+    },
+    "node_modules/append-field": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/append-field/-/append-field-1.0.0.tgz",
+      "integrity": "sha512-klpgFSWLW1ZEs8svjfb7g4qWY0YS5imI82dTg+QahUvJ8YqAY0P10Uk8tTyh9ZGuYEZEMaeJYCF5BFuX552hsw==",
+      "license": "MIT"
+    },
+    "node_modules/argon2": {
+      "version": "0.44.0",
+      "resolved": "https://registry.npmjs.org/argon2/-/argon2-0.44.0.tgz",
+      "integrity": "sha512-zHPGN3S55sihSQo0dBbK0A5qpi2R31z7HZDZnry3ifOyj8bZZnpZND2gpmhnRGO1V/d555RwBqIK5W4Mrmv3ig==",
+      "hasInstallScript": true,
+      "license": "MIT",
+      "dependencies": {
+        "@phc/format": "^1.0.0",
+        "cross-env": "^10.0.0",
+        "node-addon-api": "^8.5.0",
+        "node-gyp-build": "^4.8.4"
+      },
+      "engines": {
+        "node": ">=16.17.0"
+      }
+    },
+    "node_modules/aria-query": {
+      "version": "5.3.0",
+      "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.0.tgz",
+      "integrity": "sha512-b0P0sZPKtyu8HkeRAfCq0IfURZK+SuwMjY1UXGBU27wpAiTwQAIlq56IbIO+ytk/JjS1fMR14ee5WBBfKi5J6A==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "dequal": "^2.0.3"
+      }
+    },
+    "node_modules/array-flatten": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/array-flatten/-/array-flatten-1.1.1.tgz",
+      "integrity": "sha512-PCVAQswWemu6UdxsDFFX/+gVeYqKAod3D3UVm91jHwynguOwAvYPhx8nNlM++NqRcK6CxxpUafjmhIdKiHibqg==",
+      "license": "MIT"
+    },
+    "node_modules/asap": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/asap/-/asap-2.0.6.tgz",
+      "integrity": "sha512-BSHWgDSAiKs50o2Re8ppvp3seVHXSRM44cdSsT9FfNEUUZLOGWVCsiWaRPWM1Znn+mqZ1OfVZ3z3DWEzSp7hRA==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/assertion-error": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/assertion-error/-/assertion-error-2.0.1.tgz",
+      "integrity": "sha512-Izi8RQcffqCeNVgFigKli1ssklIbpHnCYc6AknXGYoB6grJqyeby7jv12JUQgmTAnIDnbck1uxksT4dzN3PWBA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/asynckit": {
+      "version": "0.4.0",
+      "resolved": "https://registry.npmjs.org/asynckit/-/asynckit-0.4.0.tgz",
+      "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/autoprefixer": {
+      "version": "10.5.0",
+      "resolved": "https://registry.npmjs.org/autoprefixer/-/autoprefixer-10.5.0.tgz",
+      "integrity": "sha512-FMhOoZV4+qR6aTUALKX2rEqGG+oyATvwBt9IIzVR5rMa2HRWPkxf+P+PAJLD1I/H5/II+HuZcBJYEFBpq39ong==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/autoprefixer"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "browserslist": "^4.28.2",
+        "caniuse-lite": "^1.0.30001787",
+        "fraction.js": "^5.3.4",
+        "picocolors": "^1.1.1",
+        "postcss-value-parser": "^4.2.0"
+      },
+      "bin": {
+        "autoprefixer": "bin/autoprefixer"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      },
+      "peerDependencies": {
+        "postcss": "^8.1.0"
+      }
+    },
+    "node_modules/aws-ssl-profiles": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/aws-ssl-profiles/-/aws-ssl-profiles-1.1.2.tgz",
+      "integrity": "sha512-NZKeq9AfyQvEeNlN0zSYAaWrmBffJh3IELMZfRpJVWgrpEbtEpnjvzqBPf+mxoI287JohRDoa+/nsfqqiZmF6g==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 6.0.0"
+      }
+    },
+    "node_modules/baseline-browser-mapping": {
+      "version": "2.10.19",
+      "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.10.19.tgz",
+      "integrity": "sha512-qCkNLi2sfBOn8XhZQ0FXsT1Ki/Yo5P90hrkRamVFRS7/KV9hpfA4HkoWNU152+8w0zPjnxo5psx5NL3PSGgv5g==",
+      "license": "Apache-2.0",
+      "bin": {
+        "baseline-browser-mapping": "dist/cli.cjs"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/better-result": {
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/better-result/-/better-result-2.9.0.tgz",
+      "integrity": "sha512-NHwGDGVbRlWDOce3CwcfGIrcNR9zY37ut3SVwQVfv57DZdVhxjhA4mfaHN1n8QwWnRAR4iErpW1X/eaiaUaFYg==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/bidi-js": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/bidi-js/-/bidi-js-1.0.3.tgz",
+      "integrity": "sha512-RKshQI1R3YQ+n9YJz2QQ147P66ELpa1FQEg20Dk8oW9t2KgLbpDLLp9aGZ7y8WHSshDknG0bknqGw5/tyCs5tw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "require-from-string": "^2.0.2"
+      }
+    },
+    "node_modules/body-parser": {
+      "version": "1.20.4",
+      "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-1.20.4.tgz",
+      "integrity": "sha512-ZTgYYLMOXY9qKU/57FAo8F+HA2dGX7bqGc71txDRC1rS4frdFI5R7NhluHxH6M0YItAP0sHB4uqAOcYKxO6uGA==",
+      "license": "MIT",
+      "dependencies": {
+        "bytes": "~3.1.2",
+        "content-type": "~1.0.5",
+        "debug": "2.6.9",
+        "depd": "2.0.0",
+        "destroy": "~1.2.0",
+        "http-errors": "~2.0.1",
+        "iconv-lite": "~0.4.24",
+        "on-finished": "~2.4.1",
+        "qs": "~6.14.0",
+        "raw-body": "~2.5.3",
+        "type-is": "~1.6.18",
+        "unpipe": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8",
+        "npm": "1.2.8000 || >= 1.4.16"
+      }
+    },
+    "node_modules/body-parser/node_modules/debug": {
+      "version": "2.6.9",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
+      "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "2.0.0"
+      }
+    },
+    "node_modules/body-parser/node_modules/ms": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
+      "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==",
+      "license": "MIT"
+    },
+    "node_modules/browserslist": {
+      "version": "4.28.2",
+      "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.28.2.tgz",
+      "integrity": "sha512-48xSriZYYg+8qXna9kwqjIVzuQxi+KYWp2+5nCYnYKPTr0LvD89Jqk2Or5ogxz0NUMfIjhh2lIUX/LyX9B4oIg==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "baseline-browser-mapping": "^2.10.12",
+        "caniuse-lite": "^1.0.30001782",
+        "electron-to-chromium": "^1.5.328",
+        "node-releases": "^2.0.36",
+        "update-browserslist-db": "^1.2.3"
+      },
+      "bin": {
+        "browserslist": "cli.js"
+      },
+      "engines": {
+        "node": "^6 || ^7 || ^8 || ^9 || ^10 || ^11 || ^12 || >=13.7"
+      }
+    },
+    "node_modules/buffer-from": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/buffer-from/-/buffer-from-1.1.2.tgz",
+      "integrity": "sha512-E+XQCRwSbaaiChtv6k6Dwgc+bx+Bs6vuKJHHl5kox/BaKbhiXzqQOwK4cO22yElGp2OCmjwVhT3HmxgyPGnJfQ==",
+      "license": "MIT"
+    },
+    "node_modules/busboy": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/busboy/-/busboy-1.6.0.tgz",
+      "integrity": "sha512-8SFQbg/0hQ9xy3UNTB0YEnsNBbWfhf7RtnzpL7TkBiTBRfrQ9Fxcnz7VJsleJpyp6rVLvXiuORqjlHi5q+PYuA==",
+      "dependencies": {
+        "streamsearch": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=10.16.0"
+      }
+    },
+    "node_modules/bytes": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz",
+      "integrity": "sha512-/Nf7TyzTx6S3yRJObOAV7956r8cr2+Oj8AC5dt8wSP3BQAoeX58NoHyCU8P8zGkNXStjTSi6fzO6F0pBdcYbEg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/c12": {
+      "version": "3.3.4",
+      "resolved": "https://registry.npmjs.org/c12/-/c12-3.3.4.tgz",
+      "integrity": "sha512-cM0ApFQSBXuourJejzwv/AuPRvAxordTyParRVcHjjtXirtkzM0uK2L9TTn9s0cXZbG7E55jCivRQzoxYmRAlA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "chokidar": "^5.0.0",
+        "confbox": "^0.2.4",
+        "defu": "^6.1.6",
+        "dotenv": "^17.3.1",
+        "exsolve": "^1.0.8",
+        "giget": "^3.2.0",
+        "jiti": "^2.6.1",
+        "ohash": "^2.0.11",
+        "pathe": "^2.0.3",
+        "perfect-debounce": "^2.1.0",
+        "pkg-types": "^2.3.0",
+        "rc9": "^3.0.1"
+      },
+      "peerDependencies": {
+        "magicast": "*"
+      },
+      "peerDependenciesMeta": {
+        "magicast": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/call-bind-apply-helpers": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz",
+      "integrity": "sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/call-bound": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/call-bound/-/call-bound-1.0.4.tgz",
+      "integrity": "sha512-+ys997U96po4Kx/ABpBCqhA9EuxJaQWDQg7295H4hBphv3IZg0boBKuwYpt4YXp6MZ5AmZQnU/tyMTlRpaSejg==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.2",
+        "get-intrinsic": "^1.3.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/caniuse-lite": {
+      "version": "1.0.30001788",
+      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001788.tgz",
+      "integrity": "sha512-6q8HFp+lOQtcf7wBK+uEenxymVWkGKkjFpCvw5W25cmMwEDU45p1xQFBQv8JDlMMry7eNxyBaR+qxgmTUZkIRQ==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/caniuse-lite"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "CC-BY-4.0"
+    },
+    "node_modules/chai": {
+      "version": "6.2.2",
+      "resolved": "https://registry.npmjs.org/chai/-/chai-6.2.2.tgz",
+      "integrity": "sha512-NUPRluOfOiTKBKvWPtSD4PhFvWCqOi0BGStNWs57X9js7XGTprSmFoz5F0tWhR4WPjNeR9jXqdC7/UpSJTnlRg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/chart.js": {
+      "version": "4.5.1",
+      "resolved": "https://registry.npmjs.org/chart.js/-/chart.js-4.5.1.tgz",
+      "integrity": "sha512-GIjfiT9dbmHRiYi6Nl2yFCq7kkwdkp1W/lp2J99rX0yo9tgJGn3lKQATztIjb5tVtevcBtIdICNWqlq5+E8/Pw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@kurkle/color": "^0.3.0"
+      },
+      "engines": {
+        "pnpm": ">=8"
+      }
+    },
+    "node_modules/chokidar": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/chokidar/-/chokidar-5.0.0.tgz",
+      "integrity": "sha512-TQMmc3w+5AxjpL8iIiwebF73dRDF4fBIieAqGn9RGCWaEVwQ6Fb2cGe31Yns0RRIzii5goJ1Y7xbMwo1TxMplw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "readdirp": "^5.0.0"
+      },
+      "engines": {
+        "node": ">= 20.19.0"
+      },
+      "funding": {
+        "url": "https://paulmillr.com/funding/"
+      }
+    },
+    "node_modules/combined-stream": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/combined-stream/-/combined-stream-1.0.8.tgz",
+      "integrity": "sha512-FQN4MRfuJeHf7cBbBMJFXhKSDq+2kAArBlmRBvcvFE5BB1HZKXtSFASDhdlz9zOYwxh8lDdnvmMOe/+5cdoEdg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "delayed-stream": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/component-emitter": {
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/component-emitter/-/component-emitter-1.3.1.tgz",
+      "integrity": "sha512-T0+barUSQRTUQASh8bx02dl+DhF54GtIDY13Y3m9oWTklKbb3Wv974meRpeZ3lp1JpLVECWWNHC4vaG2XHXouQ==",
+      "dev": true,
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/concat-stream": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/concat-stream/-/concat-stream-2.0.0.tgz",
+      "integrity": "sha512-MWufYdFw53ccGjCA+Ol7XJYpAlW6/prSMzuPOTRnJGcGzuhLn4Scrz7qf6o8bROZ514ltazcIFJZevcfbo0x7A==",
+      "engines": [
+        "node >= 6.0"
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "buffer-from": "^1.0.0",
+        "inherits": "^2.0.3",
+        "readable-stream": "^3.0.2",
+        "typedarray": "^0.0.6"
+      }
+    },
+    "node_modules/confbox": {
+      "version": "0.2.4",
+      "resolved": "https://registry.npmjs.org/confbox/-/confbox-0.2.4.tgz",
+      "integrity": "sha512-ysOGlgTFbN2/Y6Cg3Iye8YKulHw+R2fNXHrgSmXISQdMnomY6eNDprVdW9R5xBguEqI954+S6709UyiO7B+6OQ==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/consola": {
+      "version": "3.4.2",
+      "resolved": "https://registry.npmjs.org/consola/-/consola-3.4.2.tgz",
+      "integrity": "sha512-5IKcdX0nnYavi6G7TtOhwkYzyjfJlatbjMjuLSfE2kYT5pMDOilZ4OvMhi637CcDICTmz3wARPoyhqyX1Y+XvA==",
+      "license": "MIT",
+      "engines": {
+        "node": "^14.18.0 || >=16.10.0"
+      }
+    },
+    "node_modules/content-disposition": {
+      "version": "0.5.4",
+      "resolved": "https://registry.npmjs.org/content-disposition/-/content-disposition-0.5.4.tgz",
+      "integrity": "sha512-FveZTNuGw04cxlAiWbzi6zTAL/lhehaWbTtgluJh4/E95DqMwTmha3KZN1aAWA8cFIhHzMZUvLevkw5Rqk+tSQ==",
+      "license": "MIT",
+      "dependencies": {
+        "safe-buffer": "5.2.1"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/content-type": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/content-type/-/content-type-1.0.5.tgz",
+      "integrity": "sha512-nTjqfcBFEipKdXCv4YDQWCfmcLZKm81ldF0pAopTvyrFGVbcR6P/VAAd5G7N+0tTr8QqiU0tFadD6FK4NtJwOA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/convert-source-map": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/convert-source-map/-/convert-source-map-2.0.0.tgz",
+      "integrity": "sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg==",
+      "license": "MIT"
+    },
+    "node_modules/cookie": {
+      "version": "0.7.2",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz",
+      "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/cookie-parser": {
+      "version": "1.4.7",
+      "resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.7.tgz",
+      "integrity": "sha512-nGUvgXnotP3BsjiLX2ypbQnWoGUPIIfHQNZkkC668ntrzGWEZVW70HDEB1qnNGMicPje6EttlIgzo51YSwNQGw==",
+      "license": "MIT",
+      "dependencies": {
+        "cookie": "0.7.2",
+        "cookie-signature": "1.0.6"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/cookie-parser/node_modules/cookie-signature": {
+      "version": "1.0.6",
+      "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.6.tgz",
+      "integrity": "sha512-QADzlaHc8icV8I7vbaJXJwod9HWYp8uCqf1xa4OfNu1T7JVxQIrUgOWtHdNDtPiywmFbiS12VjotIXLrKM3orQ==",
+      "license": "MIT"
+    },
+    "node_modules/cookie-signature": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.7.tgz",
+      "integrity": "sha512-NXdYc3dLr47pBkpUCHtKSwIOQXLVn8dZEuywboCOJY/osA0wFSLlSawr3KN8qXJEyX66FcONTH8EIlVuK0yyFA==",
+      "license": "MIT"
+    },
+    "node_modules/cookiejar": {
+      "version": "2.1.4",
+      "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.4.tgz",
+      "integrity": "sha512-LDx6oHrK+PhzLKJU9j5S7/Y3jM/mUHvD/DeI1WQmJn652iPC5Y4TBzC9l+5OMOXlyTTA+SmVUPm0HQUwpD5Jqw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/cors": {
+      "version": "2.8.6",
+      "resolved": "https://registry.npmjs.org/cors/-/cors-2.8.6.tgz",
+      "integrity": "sha512-tJtZBBHA6vjIAaF6EnIaq6laBBP9aq/Y3ouVJjEfoHbRBcHBAHYcMh/w8LDrk2PvIMMq8gmopa5D4V8RmbrxGw==",
+      "license": "MIT",
+      "dependencies": {
+        "object-assign": "^4",
+        "vary": "^1"
+      },
+      "engines": {
+        "node": ">= 0.10"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/cross-env": {
+      "version": "10.1.0",
+      "resolved": "https://registry.npmjs.org/cross-env/-/cross-env-10.1.0.tgz",
+      "integrity": "sha512-GsYosgnACZTADcmEyJctkJIoqAhHjttw7RsFrVoJNXbsWWqaq6Ym+7kZjq6mS45O0jij6vtiReppKQEtqWy6Dw==",
+      "license": "MIT",
+      "dependencies": {
+        "@epic-web/invariant": "^1.0.0",
+        "cross-spawn": "^7.0.6"
+      },
+      "bin": {
+        "cross-env": "dist/bin/cross-env.js",
+        "cross-env-shell": "dist/bin/cross-env-shell.js"
+      },
+      "engines": {
+        "node": ">=20"
+      }
+    },
+    "node_modules/cross-spawn": {
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.6.tgz",
+      "integrity": "sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA==",
+      "license": "MIT",
+      "dependencies": {
+        "path-key": "^3.1.0",
+        "shebang-command": "^2.0.0",
+        "which": "^2.0.1"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/css-tree": {
+      "version": "3.2.1",
+      "resolved": "https://registry.npmjs.org/css-tree/-/css-tree-3.2.1.tgz",
+      "integrity": "sha512-X7sjQzceUhu1u7Y/ylrRZFU2FS6LRiFVp6rKLPg23y3x3c3DOKAwuXGDp+PAGjh6CSnCjYeAul8pcT8bAl+lSA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "mdn-data": "2.27.1",
+        "source-map-js": "^1.2.1"
+      },
+      "engines": {
+        "node": "^10 || ^12.20.0 || ^14.13.0 || >=15.0.0"
+      }
+    },
+    "node_modules/css.escape": {
+      "version": "1.5.1",
+      "resolved": "https://registry.npmjs.org/css.escape/-/css.escape-1.5.1.tgz",
+      "integrity": "sha512-YUifsXXuknHlUsmlgyY0PKzgPOr7/FjCePfHNt0jxm83wHZi44VDMQ7/fGNkjY3/jV1MC+1CmZbaHzugyeRtpg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/csstype": {
+      "version": "3.2.3",
+      "resolved": "https://registry.npmjs.org/csstype/-/csstype-3.2.3.tgz",
+      "integrity": "sha512-z1HGKcYy2xA8AGQfwrn0PAy+PB7X/GSj3UVJW9qKyn43xWa+gl5nXmU4qqLMRzWVLFC8KusUX8T/0kCiOYpAIQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/data-urls": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/data-urls/-/data-urls-7.0.0.tgz",
+      "integrity": "sha512-23XHcCF+coGYevirZceTVD7NdJOqVn+49IHyxgszm+JIiHLoB2TkmPtsYkNWT1pvRSGkc35L6NHs0yHkN2SumA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "whatwg-mimetype": "^5.0.0",
+        "whatwg-url": "^16.0.0"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/debug": {
+      "version": "4.4.3",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-4.4.3.tgz",
+      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "^2.1.3"
+      },
+      "engines": {
+        "node": ">=6.0"
+      },
+      "peerDependenciesMeta": {
+        "supports-color": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/decimal.js": {
+      "version": "10.6.0",
+      "resolved": "https://registry.npmjs.org/decimal.js/-/decimal.js-10.6.0.tgz",
+      "integrity": "sha512-YpgQiITW3JXGntzdUmyUR1V812Hn8T1YVXhCu+wO3OpS4eU9l4YdD3qjyiKdV6mvV29zapkMeD390UVEf2lkUg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/deepmerge": {
+      "version": "4.3.1",
+      "resolved": "https://registry.npmjs.org/deepmerge/-/deepmerge-4.3.1.tgz",
+      "integrity": "sha512-3sUqbMEc77XqpdNO7FRyRog+eW3ph+GYCbj+rK+uYyRMuwsVy0rMiVtPn+QJlKFvWP/1PYpapqYn0Me2knFn+A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/deepmerge-ts": {
+      "version": "7.1.5",
+      "resolved": "https://registry.npmjs.org/deepmerge-ts/-/deepmerge-ts-7.1.5.tgz",
+      "integrity": "sha512-HOJkrhaYsweh+W+e74Yn7YStZOilkoPb6fycpwNLKzSPtruFs48nYis0zy5yJz1+ktUhHxoRDJ27RQAWLIJVJw==",
+      "devOptional": true,
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=16.0.0"
+      }
+    },
+    "node_modules/defu": {
+      "version": "6.1.7",
+      "resolved": "https://registry.npmjs.org/defu/-/defu-6.1.7.tgz",
+      "integrity": "sha512-7z22QmUWiQ/2d0KkdYmANbRUVABpZ9SNYyH5vx6PZ+nE5bcC0l7uFvEfHlyld/HcGBFTL536ClDt3DEcSlEJAQ==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/delayed-stream": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/delayed-stream/-/delayed-stream-1.0.0.tgz",
+      "integrity": "sha512-ZySD7Nf91aLB0RxL4KGrKHBXl7Eds1DAmEdcoVawXnLD7SDhpNgtuII2aAkg7a7QS41jxPSZ17p4VdGnMHk3MQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.4.0"
+      }
+    },
+    "node_modules/denque": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/denque/-/denque-2.1.0.tgz",
+      "integrity": "sha512-HVQE3AAb/pxF8fQAoiqpvg9i3evqug3hoiwakOyZAwJm+6vZehbkYXZ0l4JxS+I3QxM97v5aaRNhj8v5oBhekw==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=0.10"
+      }
+    },
+    "node_modules/depd": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz",
+      "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/dequal": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/dequal/-/dequal-2.0.3.tgz",
+      "integrity": "sha512-0je+qPKHEMohvfRTCEo3CrPG6cAzAYgmzKyxRiYSSDkS6eGJdyVJm7WaYA5ECaAD9wLB2T4EEeymA5aFVcYXCA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/destr": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/destr/-/destr-2.0.5.tgz",
+      "integrity": "sha512-ugFTXCtDZunbzasqBxrK93Ik/DRYsO6S/fedkWEMKqt04xZ4csmnmwGDBAb07QWNaGMAmnTIemsYZCksjATwsA==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/destroy": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/destroy/-/destroy-1.2.0.tgz",
+      "integrity": "sha512-2sJGJTaXIIaR1w4iJSNoN0hnMY7Gpc/n8D4qSCJw8QqFWXf7cuAgnEHxBpweaVcPevC2l3KpjYCx3NypQQgaJg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8",
+        "npm": "1.2.8000 || >= 1.4.16"
+      }
+    },
+    "node_modules/detect-libc": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/detect-libc/-/detect-libc-2.1.2.tgz",
+      "integrity": "sha512-Btj2BOOO83o3WyH59e8MgXsxEQVcarkUOpEYrubB0urwnN10yQ364rsiByU11nZlqWYZm05i/of7io4mzihBtQ==",
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/dezalgo": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/dezalgo/-/dezalgo-1.0.4.tgz",
+      "integrity": "sha512-rXSP0bf+5n0Qonsb+SVVfNfIsimO4HEtmnIpPHY8Q1UCzKlQrDMfdobr8nJOOsRgWCyMRqeSBQzmWUMq7zvVig==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "asap": "^2.0.0",
+        "wrappy": "1"
+      }
+    },
+    "node_modules/diff": {
+      "version": "9.0.0",
+      "resolved": "https://registry.npmjs.org/diff/-/diff-9.0.0.tgz",
+      "integrity": "sha512-svtcdpS8CgJyqAjEQIXdb3OjhFVVYjzGAPO8WGCmRbrml64SPw/jJD4GoE98aR7r25A0XcgrK3F02yw9R/vhQw==",
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=0.3.1"
+      }
+    },
+    "node_modules/dom-accessibility-api": {
+      "version": "0.5.16",
+      "resolved": "https://registry.npmjs.org/dom-accessibility-api/-/dom-accessibility-api-0.5.16.tgz",
+      "integrity": "sha512-X7BJ2yElsnOJ30pZF4uIIDfBEVgF4XEBxL9Bxhy6dnrm5hkzqmsWHGTiHqRiITNhMyFLyAiWndIJP7Z1NTteDg==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/dom-serializer": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/dom-serializer/-/dom-serializer-2.0.0.tgz",
+      "integrity": "sha512-wIkAryiqt/nV5EQKqQpo3SToSOV9J0DnbJqwK7Wv/Trc92zIAYZ4FlMu+JPFW1DfGFt81ZTCGgDEabffXeLyJg==",
+      "license": "MIT",
+      "dependencies": {
+        "domelementtype": "^2.3.0",
+        "domhandler": "^5.0.2",
+        "entities": "^4.2.0"
+      },
+      "funding": {
+        "url": "https://github.com/cheeriojs/dom-serializer?sponsor=1"
+      }
+    },
+    "node_modules/dom-serializer/node_modules/entities": {
+      "version": "4.5.0",
+      "resolved": "https://registry.npmjs.org/entities/-/entities-4.5.0.tgz",
+      "integrity": "sha512-V0hjH4dGPh9Ao5p0MoRY6BVqtwCjhz6vI5LT8AJ55H+4g9/4vbHx1I54fS0XuclLhDHArPQCiMjDxjaL8fPxhw==",
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=0.12"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/entities?sponsor=1"
+      }
+    },
+    "node_modules/domelementtype": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/domelementtype/-/domelementtype-2.3.0.tgz",
+      "integrity": "sha512-OLETBj6w0OsagBwdXnPdN0cnMfF9opN69co+7ZrbfPGrdpPVNBUj02spi6B1N7wChLQiPn4CSH/zJvXw56gmHw==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/fb55"
+        }
+      ],
+      "license": "BSD-2-Clause"
+    },
+    "node_modules/domhandler": {
+      "version": "5.0.3",
+      "resolved": "https://registry.npmjs.org/domhandler/-/domhandler-5.0.3.tgz",
+      "integrity": "sha512-cgwlv/1iFQiFnU96XXgROh8xTeetsnJiDsTc7TYCLFd9+/WNkIqPTxiM/8pSd8VIrhXGTf1Ny1q1hquVqDJB5w==",
+      "license": "BSD-2-Clause",
+      "dependencies": {
+        "domelementtype": "^2.3.0"
+      },
+      "engines": {
+        "node": ">= 4"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/domhandler?sponsor=1"
+      }
+    },
+    "node_modules/domutils": {
+      "version": "3.2.2",
+      "resolved": "https://registry.npmjs.org/domutils/-/domutils-3.2.2.tgz",
+      "integrity": "sha512-6kZKyUajlDuqlHKVX1w7gyslj9MPIXzIFiz/rGu35uC1wMi+kMhQwGhl4lt9unC9Vb9INnY9Z3/ZA3+FhASLaw==",
+      "license": "BSD-2-Clause",
+      "dependencies": {
+        "dom-serializer": "^2.0.0",
+        "domelementtype": "^2.3.0",
+        "domhandler": "^5.0.3"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/domutils?sponsor=1"
+      }
+    },
+    "node_modules/dotenv": {
+      "version": "17.4.2",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-17.4.2.tgz",
+      "integrity": "sha512-nI4U3TottKAcAD9LLud4Cb7b2QztQMUEfHbvhTH09bqXTxnSie8WnjPALV/WMCrJZ6UV/qHJ6L03OqO3LcdYZw==",
+      "devOptional": true,
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
+    "node_modules/dotenv-expand": {
+      "version": "12.0.3",
+      "resolved": "https://registry.npmjs.org/dotenv-expand/-/dotenv-expand-12.0.3.tgz",
+      "integrity": "sha512-uc47g4b+4k/M/SeaW1y4OApx+mtLWl92l5LMPP0GNXctZqELk+YGgOPIIC5elYmUH4OuoK3JLhuRUYegeySiFA==",
+      "license": "BSD-2-Clause",
+      "dependencies": {
+        "dotenv": "^16.4.5"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
+    "node_modules/dotenv-expand/node_modules/dotenv": {
+      "version": "16.6.1",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.6.1.tgz",
+      "integrity": "sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow==",
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
+    "node_modules/dunder-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz",
+      "integrity": "sha512-KIN/nDJBQRcXw0MLVhZE9iQHmG68qAVIBg9CqmUYjmQIhgij9U5MFvrqkUL5FbtyyzZuOeOt0zdeRe4UY7ct+A==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "gopd": "^1.2.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/ee-first": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/ee-first/-/ee-first-1.1.1.tgz",
+      "integrity": "sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow==",
+      "license": "MIT"
+    },
+    "node_modules/effect": {
+      "version": "3.20.0",
+      "resolved": "https://registry.npmjs.org/effect/-/effect-3.20.0.tgz",
+      "integrity": "sha512-qMLfDJscrNG8p/aw+IkT9W7fgj50Z4wG5bLBy0Txsxz8iUHjDIkOgO3SV0WZfnQbNG2VJYb0b+rDLMrhM4+Krw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "@standard-schema/spec": "^1.0.0",
+        "fast-check": "^3.23.1"
+      }
+    },
+    "node_modules/electron-to-chromium": {
+      "version": "1.5.336",
+      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.5.336.tgz",
+      "integrity": "sha512-AbH9q9J455r/nLmdNZes0G0ZKcRX73FicwowalLs6ijwOmCJSRRrLX63lcAlzy9ux3dWK1w1+1nsBJEWN11hcQ==",
+      "license": "ISC"
+    },
+    "node_modules/empathic": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/empathic/-/empathic-2.0.0.tgz",
+      "integrity": "sha512-i6UzDscO/XfAcNYD75CfICkmfLedpyPDdozrLMmQc5ORaQcdMoc21OnlEylMIqI7U8eniKrPMxxtj8k0vhmJhA==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=14"
+      }
+    },
+    "node_modules/encodeurl": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-2.0.0.tgz",
+      "integrity": "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/enhanced-resolve": {
+      "version": "5.20.1",
+      "resolved": "https://registry.npmjs.org/enhanced-resolve/-/enhanced-resolve-5.20.1.tgz",
+      "integrity": "sha512-Qohcme7V1inbAfvjItgw0EaxVX5q2rdVEZHRBrEQdRZTssLDGsL8Lwrznl8oQ/6kuTJONLaDcGjkNP247XEhcA==",
+      "license": "MIT",
+      "dependencies": {
+        "graceful-fs": "^4.2.4",
+        "tapable": "^2.3.0"
+      },
+      "engines": {
+        "node": ">=10.13.0"
+      }
+    },
+    "node_modules/entities": {
+      "version": "8.0.0",
+      "resolved": "https://registry.npmjs.org/entities/-/entities-8.0.0.tgz",
+      "integrity": "sha512-zwfzJecQ/Uej6tusMqwAqU/6KL2XaB2VZ2Jg54Je6ahNBGNH6Ek6g3jjNCF0fG9EWQKGZNddNjU5F1ZQn/sBnA==",
+      "dev": true,
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=20.19.0"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/entities?sponsor=1"
+      }
+    },
+    "node_modules/env-paths": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/env-paths/-/env-paths-3.0.0.tgz",
+      "integrity": "sha512-dtJUTepzMW3Lm/NPxRf3wP4642UWhjL2sQxc+ym2YMj1m/H2zDNQOlezafzkHwn6sMstjHTwG6iQQsctDW/b1A==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": "^12.20.0 || ^14.13.1 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/es-define-property": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.1.tgz",
+      "integrity": "sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-errors": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/es-errors/-/es-errors-1.3.0.tgz",
+      "integrity": "sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-module-lexer": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/es-module-lexer/-/es-module-lexer-2.1.0.tgz",
+      "integrity": "sha512-n27zTYMjYu1aj4MjCWzSP7G9r75utsaoc8m61weK+W8JMBGGQybd43GstCXZ3WNmSFtGT9wi59qQTW6mhTR5LQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/es-object-atoms": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/es-object-atoms/-/es-object-atoms-1.1.1.tgz",
+      "integrity": "sha512-FGgH2h8zKNim9ljj7dankFPcICIK9Cp5bm+c2gQSYePhpaG5+esrLODihIorn+Pe6FGJzWhXQotPv73jTaldXA==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-set-tostringtag": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz",
+      "integrity": "sha512-j6vWzfrGVfyXxge+O0x5sh6cvxAog0a/4Rdd2K36zCMV5eJ+/+tOAngRO8cODMNWbVRdVlmGZQL2YS3yR8bIUA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.6",
+        "has-tostringtag": "^1.0.2",
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/esbuild": {
+      "version": "0.27.7",
+      "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.27.7.tgz",
+      "integrity": "sha512-IxpibTjyVnmrIQo5aqNpCgoACA/dTKLTlhMHihVHhdkxKyPO1uBBthumT0rdHmcsk9uMonIWS0m4FljWzILh3w==",
+      "devOptional": true,
+      "hasInstallScript": true,
+      "license": "MIT",
+      "bin": {
+        "esbuild": "bin/esbuild"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "optionalDependencies": {
+        "@esbuild/aix-ppc64": "0.27.7",
+        "@esbuild/android-arm": "0.27.7",
+        "@esbuild/android-arm64": "0.27.7",
+        "@esbuild/android-x64": "0.27.7",
+        "@esbuild/darwin-arm64": "0.27.7",
+        "@esbuild/darwin-x64": "0.27.7",
+        "@esbuild/freebsd-arm64": "0.27.7",
+        "@esbuild/freebsd-x64": "0.27.7",
+        "@esbuild/linux-arm": "0.27.7",
+        "@esbuild/linux-arm64": "0.27.7",
+        "@esbuild/linux-ia32": "0.27.7",
+        "@esbuild/linux-loong64": "0.27.7",
+        "@esbuild/linux-mips64el": "0.27.7",
+        "@esbuild/linux-ppc64": "0.27.7",
+        "@esbuild/linux-riscv64": "0.27.7",
+        "@esbuild/linux-s390x": "0.27.7",
+        "@esbuild/linux-x64": "0.27.7",
+        "@esbuild/netbsd-arm64": "0.27.7",
+        "@esbuild/netbsd-x64": "0.27.7",
+        "@esbuild/openbsd-arm64": "0.27.7",
+        "@esbuild/openbsd-x64": "0.27.7",
+        "@esbuild/openharmony-arm64": "0.27.7",
+        "@esbuild/sunos-x64": "0.27.7",
+        "@esbuild/win32-arm64": "0.27.7",
+        "@esbuild/win32-ia32": "0.27.7",
+        "@esbuild/win32-x64": "0.27.7"
+      }
+    },
+    "node_modules/escalade": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/escalade/-/escalade-3.2.0.tgz",
+      "integrity": "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/escape-html": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/escape-html/-/escape-html-1.0.3.tgz",
+      "integrity": "sha512-NiSupZ4OeuGwr68lGIeym/ksIZMJodUGOSCZ/FSnTxcrekbvqrgdUxlJOMpijaKZVjAJrWrGs/6Jy8OMuyj9ow==",
+      "license": "MIT"
+    },
+    "node_modules/escape-string-regexp": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz",
+      "integrity": "sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/estree-walker": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/estree-walker/-/estree-walker-3.0.3.tgz",
+      "integrity": "sha512-7RUKfXgSMMkzt6ZuXmqapOurLGPPfgj6l9uRZ7lRGolvk0y2yocc35LdcxKC5PQZdn2DMqioAQ2NoWcrTKmm6g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@types/estree": "^1.0.0"
+      }
+    },
+    "node_modules/etag": {
+      "version": "1.8.1",
+      "resolved": "https://registry.npmjs.org/etag/-/etag-1.8.1.tgz",
+      "integrity": "sha512-aIL5Fx7mawVa300al2BnEE4iNvo1qETxLrPI/o05L7z6go7fCw1J6EQmbK4FmJ2AS7kgVF/KEZWufBfdClMcPg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/expect-type": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/expect-type/-/expect-type-1.3.0.tgz",
+      "integrity": "sha512-knvyeauYhqjOYvQ66MznSMs83wmHrCycNEN6Ao+2AeYEfxUIkuiVxdEa1qlGEPK+We3n0THiDciYSsCcgW/DoA==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=12.0.0"
+      }
+    },
+    "node_modules/express": {
+      "version": "4.22.1",
+      "resolved": "https://registry.npmjs.org/express/-/express-4.22.1.tgz",
+      "integrity": "sha512-F2X8g9P1X7uCPZMA3MVf9wcTqlyNp7IhH5qPCI0izhaOIYXaW9L535tGA3qmjRzpH+bZczqq7hVKxTR4NWnu+g==",
+      "license": "MIT",
+      "dependencies": {
+        "accepts": "~1.3.8",
+        "array-flatten": "1.1.1",
+        "body-parser": "~1.20.3",
+        "content-disposition": "~0.5.4",
+        "content-type": "~1.0.4",
+        "cookie": "~0.7.1",
+        "cookie-signature": "~1.0.6",
+        "debug": "2.6.9",
+        "depd": "2.0.0",
+        "encodeurl": "~2.0.0",
+        "escape-html": "~1.0.3",
+        "etag": "~1.8.1",
+        "finalhandler": "~1.3.1",
+        "fresh": "~0.5.2",
+        "http-errors": "~2.0.0",
+        "merge-descriptors": "1.0.3",
+        "methods": "~1.1.2",
+        "on-finished": "~2.4.1",
+        "parseurl": "~1.3.3",
+        "path-to-regexp": "~0.1.12",
+        "proxy-addr": "~2.0.7",
+        "qs": "~6.14.0",
+        "range-parser": "~1.2.1",
+        "safe-buffer": "5.2.1",
+        "send": "~0.19.0",
+        "serve-static": "~1.16.2",
+        "setprototypeof": "1.2.0",
+        "statuses": "~2.0.1",
+        "type-is": "~1.6.18",
+        "utils-merge": "1.0.1",
+        "vary": "~1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/express-session": {
+      "version": "1.19.0",
+      "resolved": "https://registry.npmjs.org/express-session/-/express-session-1.19.0.tgz",
+      "integrity": "sha512-0csaMkGq+vaiZTmSMMGkfdCOabYv192VbytFypcvI0MANrp+4i/7yEkJ0sbAEhycQjntaKGzYfjfXQyVb7BHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "cookie": "~0.7.2",
+        "cookie-signature": "~1.0.7",
+        "debug": "~2.6.9",
+        "depd": "~2.0.0",
+        "on-headers": "~1.1.0",
+        "parseurl": "~1.3.3",
+        "safe-buffer": "~5.2.1",
+        "uid-safe": "~2.1.5"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/express-session/node_modules/debug": {
+      "version": "2.6.9",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
+      "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "2.0.0"
+      }
+    },
+    "node_modules/express-session/node_modules/ms": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
+      "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==",
+      "license": "MIT"
+    },
+    "node_modules/express/node_modules/debug": {
+      "version": "2.6.9",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
+      "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "2.0.0"
+      }
+    },
+    "node_modules/express/node_modules/ms": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
+      "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==",
+      "license": "MIT"
+    },
+    "node_modules/exsolve": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/exsolve/-/exsolve-1.0.8.tgz",
+      "integrity": "sha512-LmDxfWXwcTArk8fUEnOfSZpHOJ6zOMUJKOtFLFqJLoKJetuQG874Uc7/Kki7zFLzYybmZhp1M7+98pfMqeX8yA==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/fast-check": {
+      "version": "3.23.2",
+      "resolved": "https://registry.npmjs.org/fast-check/-/fast-check-3.23.2.tgz",
+      "integrity": "sha512-h5+1OzzfCC3Ef7VbtKdcv7zsstUQwUDlYpUTvjeUsJAssPgLn7QzbboPtL5ro04Mq0rPOsMzl7q5hIbRs2wD1A==",
+      "devOptional": true,
+      "funding": [
+        {
+          "type": "individual",
+          "url": "https://github.com/sponsors/dubzzz"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/fast-check"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "pure-rand": "^6.1.0"
+      },
+      "engines": {
+        "node": ">=8.0.0"
+      }
+    },
+    "node_modules/fast-deep-equal": {
+      "version": "3.1.3",
+      "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz",
+      "integrity": "sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/fast-safe-stringify": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/fast-safe-stringify/-/fast-safe-stringify-2.1.1.tgz",
+      "integrity": "sha512-W+KJc2dmILlPplD/H4K9l9LcAHAfPtP6BY84uVLXQ6Evcz9Lcg33Y2z1IVblT6xdY54PXYVHEv+0Wpq8Io6zkA==",
+      "license": "MIT"
+    },
+    "node_modules/fast-uri": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/fast-uri/-/fast-uri-3.1.0.tgz",
+      "integrity": "sha512-iPeeDKJSWf4IEOasVVrknXpaBV0IApz/gp7S2bb7Z4Lljbl2MGJRqInZiUrQwV16cpzw/D3S5j5Julj/gT52AA==",
+      "devOptional": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/fastify"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/fastify"
+        }
+      ],
+      "license": "BSD-3-Clause"
+    },
+    "node_modules/fdir": {
+      "version": "6.5.0",
+      "resolved": "https://registry.npmjs.org/fdir/-/fdir-6.5.0.tgz",
+      "integrity": "sha512-tIbYtZbucOs0BRGqPJkshJUYdL+SDH7dVM8gjy+ERp3WAUjLEFJE+02kanyHtwjWOnwrKYBiwAmM0p4kLJAnXg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=12.0.0"
+      },
+      "peerDependencies": {
+        "picomatch": "^3 || ^4"
+      },
+      "peerDependenciesMeta": {
+        "picomatch": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/file-type": {
+      "version": "21.3.4",
+      "resolved": "https://registry.npmjs.org/file-type/-/file-type-21.3.4.tgz",
+      "integrity": "sha512-Ievi/yy8DS3ygGvT47PjSfdFoX+2isQueoYP1cntFW1JLYAuS4GD7NUPGg4zv2iZfV52uDyk5w5Z0TdpRS6Q1g==",
+      "license": "MIT",
+      "dependencies": {
+        "@tokenizer/inflate": "^0.4.1",
+        "strtok3": "^10.3.4",
+        "token-types": "^6.1.1",
+        "uint8array-extras": "^1.4.0"
+      },
+      "engines": {
+        "node": ">=20"
+      },
+      "funding": {
+        "url": "https://github.com/sindresorhus/file-type?sponsor=1"
+      }
+    },
+    "node_modules/finalhandler": {
+      "version": "1.3.2",
+      "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.3.2.tgz",
+      "integrity": "sha512-aA4RyPcd3badbdABGDuTXCMTtOneUCAYH/gxoYRTZlIJdF0YPWuGqiAsIrhNnnqdXGswYk6dGujem4w80UJFhg==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "2.6.9",
+        "encodeurl": "~2.0.0",
+        "escape-html": "~1.0.3",
+        "on-finished": "~2.4.1",
+        "parseurl": "~1.3.3",
+        "statuses": "~2.0.2",
+        "unpipe": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/finalhandler/node_modules/debug": {
+      "version": "2.6.9",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
+      "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "2.0.0"
+      }
+    },
+    "node_modules/finalhandler/node_modules/ms": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
+      "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==",
+      "license": "MIT"
+    },
+    "node_modules/foreground-child": {
+      "version": "3.3.1",
+      "resolved": "https://registry.npmjs.org/foreground-child/-/foreground-child-3.3.1.tgz",
+      "integrity": "sha512-gIXjKqtFuWEgzFRJA9WCQeSJLZDjgJUOMCMzxtvFq/37KojM1BFGufqsCy0r4qSQmYLsZYMeyRqzIWOMup03sw==",
+      "devOptional": true,
+      "license": "ISC",
+      "dependencies": {
+        "cross-spawn": "^7.0.6",
+        "signal-exit": "^4.0.1"
+      },
+      "engines": {
+        "node": ">=14"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/form-data": {
+      "version": "4.0.5",
+      "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.5.tgz",
+      "integrity": "sha512-8RipRLol37bNs2bhoV67fiTEvdTrbMUYcFTiy3+wuuOnUog2QBHCZWXDRijWQfAkhBj2Uf5UnVaiWwA5vdd82w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "asynckit": "^0.4.0",
+        "combined-stream": "^1.0.8",
+        "es-set-tostringtag": "^2.1.0",
+        "hasown": "^2.0.2",
+        "mime-types": "^2.1.12"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/formidable": {
+      "version": "3.5.4",
+      "resolved": "https://registry.npmjs.org/formidable/-/formidable-3.5.4.tgz",
+      "integrity": "sha512-YikH+7CUTOtP44ZTnUhR7Ic2UASBPOqmaRkRKxRbywPTe5VxF7RRCck4af9wutiZ/QKM5nME9Bie2fFaPz5Gug==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@paralleldrive/cuid2": "^2.2.2",
+        "dezalgo": "^1.0.4",
+        "once": "^1.4.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "funding": {
+        "url": "https://ko-fi.com/tunnckoCore/commissions"
+      }
+    },
+    "node_modules/forwarded": {
+      "version": "0.2.0",
+      "resolved": "https://registry.npmjs.org/forwarded/-/forwarded-0.2.0.tgz",
+      "integrity": "sha512-buRG0fpBtRHSTCOASe6hD258tEubFoRLb4ZNA6NxMVHNw2gOcwHo9wyablzMzOA5z9xA9L1KNjk/Nt6MT9aYow==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/fraction.js": {
+      "version": "5.3.4",
+      "resolved": "https://registry.npmjs.org/fraction.js/-/fraction.js-5.3.4.tgz",
+      "integrity": "sha512-1X1NTtiJphryn/uLQz3whtY6jK3fTqoE3ohKs0tT+Ujr1W59oopxmoEh7Lu5p6vBaPbgoM0bzveAW4Qi5RyWDQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": "*"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/rawify"
+      }
+    },
+    "node_modules/framer-motion": {
+      "version": "12.38.0",
+      "resolved": "https://registry.npmjs.org/framer-motion/-/framer-motion-12.38.0.tgz",
+      "integrity": "sha512-rFYkY/pigbcswl1XQSb7q424kSTQ8q6eAC+YUsSKooHQYuLdzdHjrt6uxUC+PRAO++q5IS7+TamgIw1AphxR+g==",
+      "license": "MIT",
+      "dependencies": {
+        "motion-dom": "^12.38.0",
+        "motion-utils": "^12.36.0",
+        "tslib": "^2.4.0"
+      },
+      "peerDependencies": {
+        "@emotion/is-prop-valid": "*",
+        "react": "^18.0.0 || ^19.0.0",
+        "react-dom": "^18.0.0 || ^19.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@emotion/is-prop-valid": {
+          "optional": true
+        },
+        "react": {
+          "optional": true
+        },
+        "react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/fresh": {
+      "version": "0.5.2",
+      "resolved": "https://registry.npmjs.org/fresh/-/fresh-0.5.2.tgz",
+      "integrity": "sha512-zJ2mQYM18rEFOudeV4GShTGIQ7RbzA7ozbU9I/XBpm7kqgMywgmylMwXHxZJmkVoYkna9d2pVXVXPdYTP9ej8Q==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/fsevents": {
+      "version": "2.3.3",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz",
+      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "hasInstallScript": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
+    "node_modules/function-bind": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.2.tgz",
+      "integrity": "sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA==",
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/generate-function": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/generate-function/-/generate-function-2.3.1.tgz",
+      "integrity": "sha512-eeB5GfMNeevm/GRYq20ShmsaGcmI81kIX2K9XQx5miC8KdHaC6Jm0qQ8ZNeGOi7wYB8OsdxKs+Y2oVuTFuVwKQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "is-property": "^1.0.2"
+      }
+    },
+    "node_modules/gensync": {
+      "version": "1.0.0-beta.2",
+      "resolved": "https://registry.npmjs.org/gensync/-/gensync-1.0.0-beta.2.tgz",
+      "integrity": "sha512-3hN7NaskYvMDLQY55gnW3NQ+mesEAepTqlg+VEbj7zzqEMBVNhzcGYYeqFo/TlYz6eQiFcp1HcsCZO+nGgS8zg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/get-intrinsic": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.3.0.tgz",
+      "integrity": "sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.2",
+        "es-define-property": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.1.1",
+        "function-bind": "^1.1.2",
+        "get-proto": "^1.0.1",
+        "gopd": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "hasown": "^2.0.2",
+        "math-intrinsics": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/get-port-please": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/get-port-please/-/get-port-please-3.2.0.tgz",
+      "integrity": "sha512-I9QVvBw5U/hw3RmWpYKRumUeaDgxTPd401x364rLmWBJcOQ753eov1eTgzDqRG9bqFIfDc7gfzcQEWrUri3o1A==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/get-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/get-proto/-/get-proto-1.0.1.tgz",
+      "integrity": "sha512-sTSfBjoXBp89JvIKIefqw7U2CCebsc74kiY6awiGogKtoSGbgjYE/G/+l9sF3MWFPNc9IcoOC4ODfKHfxFmp0g==",
+      "license": "MIT",
+      "dependencies": {
+        "dunder-proto": "^1.0.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/get-tsconfig": {
+      "version": "4.14.0",
+      "resolved": "https://registry.npmjs.org/get-tsconfig/-/get-tsconfig-4.14.0.tgz",
+      "integrity": "sha512-yTb+8DXzDREzgvYmh6s9vHsSVCHeC0G3PI5bEXNBHtmshPnO+S5O7qgLEOn0I5QvMy6kpZN8K1NKGyilLb93wA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "resolve-pkg-maps": "^1.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/privatenumber/get-tsconfig?sponsor=1"
+      }
+    },
+    "node_modules/giget": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/giget/-/giget-3.2.0.tgz",
+      "integrity": "sha512-GvHTWcykIR/fP8cj8dMpuMMkvaeJfPvYnhq0oW+chSeIr+ldX21ifU2Ms6KBoyKZQZmVaUAAhQ2EZ68KJF8a7A==",
+      "devOptional": true,
+      "license": "MIT",
+      "bin": {
+        "giget": "dist/cli.mjs"
+      }
+    },
+    "node_modules/gopd": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz",
+      "integrity": "sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/graceful-fs": {
+      "version": "4.2.11",
+      "resolved": "https://registry.npmjs.org/graceful-fs/-/graceful-fs-4.2.11.tgz",
+      "integrity": "sha512-RbJ5/jmFcNNCcDV5o9eTnBLJ/HszWV0P73bc+Ff4nS/rJj+YaS6IGyiOL0VoBYX+l1Wrl3k63h/KrH+nhJ0XvQ==",
+      "license": "ISC"
+    },
+    "node_modules/grammex": {
+      "version": "3.1.12",
+      "resolved": "https://registry.npmjs.org/grammex/-/grammex-3.1.12.tgz",
+      "integrity": "sha512-6ufJOsSA7LcQehIJNCO7HIBykfM7DXQual0Ny780/DEcJIpBlHRvcqEBWGPYd7hrXL2GJ3oJI1MIhaXjWmLQOQ==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/graphmatch": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/graphmatch/-/graphmatch-1.1.1.tgz",
+      "integrity": "sha512-5ykVn/EXM1hF0XCaWh05VbYvEiOL2lY1kBxZtaYsyvjp7cmWOU1XsAdfQBwClraEofXDT197lFbXOEVMHpvQOg==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/has-symbols": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.1.0.tgz",
+      "integrity": "sha512-1cDNdwJ2Jaohmb3sg4OmKaMBwuC48sYni5HUw2DvsC8LjGTLK9h+eb1X6RyuOHe4hT0ULCW68iomhjUoKUqlPQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-tostringtag": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/has-tostringtag/-/has-tostringtag-1.0.2.tgz",
+      "integrity": "sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "has-symbols": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/hasown": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/hasown/-/hasown-2.0.2.tgz",
+      "integrity": "sha512-0hJU9SCPvmMzIBdZFqNPXWa6dqh7WdH0cII9y+CyS8rG3nL48Bclra9HmKhVVUHyPWNH5Y7xDwAB7bfgSjkUMQ==",
+      "license": "MIT",
+      "dependencies": {
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/hono": {
+      "version": "4.12.16",
+      "resolved": "https://registry.npmjs.org/hono/-/hono-4.12.16.tgz",
+      "integrity": "sha512-jN0ZewiNAWSe5khM3EyCmBb250+b40wWbwNILNfEvq84VREWwOIkuUsFONk/3i3nqkz7Oe1PcpM2mwQEK2L9Kg==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=16.9.0"
+      }
+    },
+    "node_modules/html-encoding-sniffer": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/html-encoding-sniffer/-/html-encoding-sniffer-6.0.0.tgz",
+      "integrity": "sha512-CV9TW3Y3f8/wT0BRFc1/KAVQ3TUHiXmaAb6VW9vtiMFf7SLoMd1PdAc4W3KFOFETBJUb90KatHqlsZMWV+R9Gg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@exodus/bytes": "^1.6.0"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/htmlparser2": {
+      "version": "10.1.0",
+      "resolved": "https://registry.npmjs.org/htmlparser2/-/htmlparser2-10.1.0.tgz",
+      "integrity": "sha512-VTZkM9GWRAtEpveh7MSF6SjjrpNVNNVJfFup7xTY3UpFtm67foy9HDVXneLtFVt4pMz5kZtgNcvCniNFb1hlEQ==",
+      "funding": [
+        "https://github.com/fb55/htmlparser2?sponsor=1",
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/fb55"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "domelementtype": "^2.3.0",
+        "domhandler": "^5.0.3",
+        "domutils": "^3.2.2",
+        "entities": "^7.0.1"
+      }
+    },
+    "node_modules/htmlparser2/node_modules/entities": {
+      "version": "7.0.1",
+      "resolved": "https://registry.npmjs.org/entities/-/entities-7.0.1.tgz",
+      "integrity": "sha512-TWrgLOFUQTH994YUyl1yT4uyavY5nNB5muff+RtWaqNVCAK408b5ZnnbNAUEWLTCpum9w6arT70i1XdQ4UeOPA==",
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=0.12"
+      },
+      "funding": {
+        "url": "https://github.com/fb55/entities?sponsor=1"
+      }
+    },
+    "node_modules/http-errors": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/http-errors/-/http-errors-2.0.1.tgz",
+      "integrity": "sha512-4FbRdAX+bSdmo4AUFuS0WNiPz8NgFt+r8ThgNWmlrjQjt1Q7ZR9+zTlce2859x4KSXrwIsaeTqDoKQmtP8pLmQ==",
+      "license": "MIT",
+      "dependencies": {
+        "depd": "~2.0.0",
+        "inherits": "~2.0.4",
+        "setprototypeof": "~1.2.0",
+        "statuses": "~2.0.2",
+        "toidentifier": "~1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/http-status-codes": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/http-status-codes/-/http-status-codes-2.3.0.tgz",
+      "integrity": "sha512-RJ8XvFvpPM/Dmc5SV+dC4y5PCeOhT3x1Hq0NU3rjGeg5a/CqlhZ7uudknPwZFz4aeAXDcbAyaeP7GAo9lvngtA==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/iconv-lite": {
+      "version": "0.4.24",
+      "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.4.24.tgz",
+      "integrity": "sha512-v3MXnZAcvnywkTUEZomIActle7RXXeedOR31wwl7VlyoXO4Qi9arvSenNQWne1TcRwhCL1HwLI21bEqdpj8/rA==",
+      "license": "MIT",
+      "dependencies": {
+        "safer-buffer": ">= 2.1.2 < 3"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/ieee754": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/ieee754/-/ieee754-1.2.1.tgz",
+      "integrity": "sha512-dcyqhDvX1C46lXZcVqCpK+FtMRQVdIMN6/Df5js2zouUsqG7I6sFxitIC+7KYK29KdXOLHdu9zL4sFnoVQnqaA==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "BSD-3-Clause"
+    },
+    "node_modules/indent-string": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/indent-string/-/indent-string-4.0.0.tgz",
+      "integrity": "sha512-EdDDZu4A2OyIK7Lr/2zG+w5jmbuk1DVBnEwREQvBzspBJkCEbRa8GxU1lghYcaGJCnRWibjDXlq779X1/y5xwg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/inherits": {
+      "version": "2.0.4",
+      "resolved": "https://registry.npmjs.org/inherits/-/inherits-2.0.4.tgz",
+      "integrity": "sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==",
+      "license": "ISC"
+    },
+    "node_modules/ipaddr.js": {
+      "version": "1.9.1",
+      "resolved": "https://registry.npmjs.org/ipaddr.js/-/ipaddr.js-1.9.1.tgz",
+      "integrity": "sha512-0KI/607xoxSToH7GjN1FfSbLoU0+btTicjsQSWQlh/hZykN8KpmMf7uYwPW3R+akZ6R/w18ZlXSHBYXiYUPO3g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
+    "node_modules/is-plain-object": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/is-plain-object/-/is-plain-object-5.0.0.tgz",
+      "integrity": "sha512-VRSzKkbMm5jMDoKLbltAkFQ5Qr7VDiTFGXxYFXXowVj387GeGNOCsOH6Msy00SGZ3Fp84b1Naa1psqgcCIEP5Q==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/is-potential-custom-element-name": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/is-potential-custom-element-name/-/is-potential-custom-element-name-1.0.1.tgz",
+      "integrity": "sha512-bCYeRA2rVibKZd+s2625gGnGF/t7DSqDs4dP7CrLA1m7jKWz6pps0LpYLJN8Q64HtmPKJ1hrN3nzPNKFEKOUiQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/is-promise": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/is-promise/-/is-promise-4.0.0.tgz",
+      "integrity": "sha512-hvpoI6korhJMnej285dSg6nu1+e6uxs7zG3BYAm5byqDsgJNWwxzM6z6iZiAgQR4TJ30JmBTOwqZUw3WlyH3AQ==",
+      "license": "MIT"
+    },
+    "node_modules/is-property": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/is-property/-/is-property-1.0.2.tgz",
+      "integrity": "sha512-Ks/IoX00TtClbGQr4TWXemAnktAQvYB7HzcCxDGqEZU6oCmb2INHuOoKxbtR+HFkmYWBKv/dOZtGRiAjDhj92g==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/isexe": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/isexe/-/isexe-2.0.0.tgz",
+      "integrity": "sha512-RHxMLp9lnKHGHRng9QFhRCMbYAcVpn69smSGcq3f36xjgVVWThj4qqLbTLlq7Ssj8B+fIQ1EuCEGI2lKsyQeIw==",
+      "license": "ISC"
+    },
+    "node_modules/iterare": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/iterare/-/iterare-1.2.1.tgz",
+      "integrity": "sha512-RKYVTCjAnRthyJes037NX/IiqeidgN1xc3j1RjFfECFp28A1GVwK9nA+i0rJPaHqSZwygLzRnFlzUuHFoWWy+Q==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/jiti": {
+      "version": "2.6.1",
+      "resolved": "https://registry.npmjs.org/jiti/-/jiti-2.6.1.tgz",
+      "integrity": "sha512-ekilCSN1jwRvIbgeg/57YFh8qQDNbwDb9xT/qu2DAHbFFZUicIl4ygVaAvzveMhMVr3LnpSKTNnwt8PoOfmKhQ==",
+      "license": "MIT",
+      "bin": {
+        "jiti": "lib/jiti-cli.mjs"
+      }
+    },
+    "node_modules/js-tokens": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz",
+      "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==",
+      "license": "MIT"
+    },
+    "node_modules/jsdom": {
+      "version": "29.1.1",
+      "resolved": "https://registry.npmjs.org/jsdom/-/jsdom-29.1.1.tgz",
+      "integrity": "sha512-ECi4Fi2f7BdJtUKTflYRTiaMxIB0O6zfR1fX0GXpUrf6flp8QIYn1UT20YQqdSOfk2dfkCwS8LAFoJDEppNK5Q==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@asamuzakjp/css-color": "^5.1.11",
+        "@asamuzakjp/dom-selector": "^7.1.1",
+        "@bramus/specificity": "^2.4.2",
+        "@csstools/css-syntax-patches-for-csstree": "^1.1.3",
+        "@exodus/bytes": "^1.15.0",
+        "css-tree": "^3.2.1",
+        "data-urls": "^7.0.0",
+        "decimal.js": "^10.6.0",
+        "html-encoding-sniffer": "^6.0.0",
+        "is-potential-custom-element-name": "^1.0.1",
+        "lru-cache": "^11.3.5",
+        "parse5": "^8.0.1",
+        "saxes": "^6.0.0",
+        "symbol-tree": "^3.2.4",
+        "tough-cookie": "^6.0.1",
+        "undici": "^7.25.0",
+        "w3c-xmlserializer": "^5.0.0",
+        "webidl-conversions": "^8.0.1",
+        "whatwg-mimetype": "^5.0.0",
+        "whatwg-url": "^16.0.1",
+        "xml-name-validator": "^5.0.0"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.13.0 || >=24.0.0"
+      },
+      "peerDependencies": {
+        "canvas": "^3.0.0"
+      },
+      "peerDependenciesMeta": {
+        "canvas": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/jsdom/node_modules/lru-cache": {
+      "version": "11.3.5",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-11.3.5.tgz",
+      "integrity": "sha512-NxVFwLAnrd9i7KUBxC4DrUhmgjzOs+1Qm50D3oF1/oL+r1NpZ4gA7xvG0/zJ8evR7zIKn4vLf7qTNduWFtCrRw==",
+      "dev": true,
+      "license": "BlueOak-1.0.0",
+      "engines": {
+        "node": "20 || >=22"
+      }
+    },
+    "node_modules/jsesc": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/jsesc/-/jsesc-3.1.0.tgz",
+      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
+      "license": "MIT",
+      "bin": {
+        "jsesc": "bin/jsesc"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/json-schema-traverse": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/json-schema-traverse/-/json-schema-traverse-1.0.0.tgz",
+      "integrity": "sha512-NM8/P9n3XjXhIZn1lLhkFaACTOURQXjWhV4BA/RnOv8xvgqtqpAX9IO4mRQxSx1Rlo4tqzeqb0sOlruaOy3dug==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/json5": {
+      "version": "2.2.3",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-2.2.3.tgz",
+      "integrity": "sha512-XmOWe7eyHYH14cLdVPoyg+GOH3rYX++KpzrylJwSW98t3Nk+U8XOl8FWKOgwtzdb8lXGf6zYwDUzeHMWfxasyg==",
+      "license": "MIT",
+      "bin": {
+        "json5": "lib/cli.js"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/lightningcss": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss/-/lightningcss-1.32.0.tgz",
+      "integrity": "sha512-NXYBzinNrblfraPGyrbPoD19C1h9lfI/1mzgWYvXUTe414Gz/X1FD2XBZSZM7rRTrMA8JL3OtAaGifrIKhQ5yQ==",
+      "license": "MPL-2.0",
+      "dependencies": {
+        "detect-libc": "^2.0.3"
+      },
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      },
+      "optionalDependencies": {
+        "lightningcss-android-arm64": "1.32.0",
+        "lightningcss-darwin-arm64": "1.32.0",
+        "lightningcss-darwin-x64": "1.32.0",
+        "lightningcss-freebsd-x64": "1.32.0",
+        "lightningcss-linux-arm-gnueabihf": "1.32.0",
+        "lightningcss-linux-arm64-gnu": "1.32.0",
+        "lightningcss-linux-arm64-musl": "1.32.0",
+        "lightningcss-linux-x64-gnu": "1.32.0",
+        "lightningcss-linux-x64-musl": "1.32.0",
+        "lightningcss-win32-arm64-msvc": "1.32.0",
+        "lightningcss-win32-x64-msvc": "1.32.0"
+      }
+    },
+    "node_modules/lightningcss-android-arm64": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-android-arm64/-/lightningcss-android-arm64-1.32.0.tgz",
+      "integrity": "sha512-YK7/ClTt4kAK0vo6w3X+Pnm0D2cf2vPHbhOXdoNti1Ga0al1P4TBZhwjATvjNwLEBCnKvjJc2jQgHXH0NEwlAg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-darwin-arm64": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-darwin-arm64/-/lightningcss-darwin-arm64-1.32.0.tgz",
+      "integrity": "sha512-RzeG9Ju5bag2Bv1/lwlVJvBE3q6TtXskdZLLCyfg5pt+HLz9BqlICO7LZM7VHNTTn/5PRhHFBSjk5lc4cmscPQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-darwin-x64": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-darwin-x64/-/lightningcss-darwin-x64-1.32.0.tgz",
+      "integrity": "sha512-U+QsBp2m/s2wqpUYT/6wnlagdZbtZdndSmut/NJqlCcMLTWp5muCrID+K5UJ6jqD2BFshejCYXniPDbNh73V8w==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-freebsd-x64": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-freebsd-x64/-/lightningcss-freebsd-x64-1.32.0.tgz",
+      "integrity": "sha512-JCTigedEksZk3tHTTthnMdVfGf61Fky8Ji2E4YjUTEQX14xiy/lTzXnu1vwiZe3bYe0q+SpsSH/CTeDXK6WHig==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-linux-arm-gnueabihf": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-linux-arm-gnueabihf/-/lightningcss-linux-arm-gnueabihf-1.32.0.tgz",
+      "integrity": "sha512-x6rnnpRa2GL0zQOkt6rts3YDPzduLpWvwAF6EMhXFVZXD4tPrBkEFqzGowzCsIWsPjqSK+tyNEODUBXeeVHSkw==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-linux-arm64-gnu": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-linux-arm64-gnu/-/lightningcss-linux-arm64-gnu-1.32.0.tgz",
+      "integrity": "sha512-0nnMyoyOLRJXfbMOilaSRcLH3Jw5z9HDNGfT/gwCPgaDjnx0i8w7vBzFLFR1f6CMLKF8gVbebmkUN3fa/kQJpQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-linux-arm64-musl": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-linux-arm64-musl/-/lightningcss-linux-arm64-musl-1.32.0.tgz",
+      "integrity": "sha512-UpQkoenr4UJEzgVIYpI80lDFvRmPVg6oqboNHfoH4CQIfNA+HOrZ7Mo7KZP02dC6LjghPQJeBsvXhJod/wnIBg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-linux-x64-gnu": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-linux-x64-gnu/-/lightningcss-linux-x64-gnu-1.32.0.tgz",
+      "integrity": "sha512-V7Qr52IhZmdKPVr+Vtw8o+WLsQJYCTd8loIfpDaMRWGUZfBOYEJeyJIkqGIDMZPwPx24pUMfwSxxI8phr/MbOA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-linux-x64-musl": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-linux-x64-musl/-/lightningcss-linux-x64-musl-1.32.0.tgz",
+      "integrity": "sha512-bYcLp+Vb0awsiXg/80uCRezCYHNg1/l3mt0gzHnWV9XP1W5sKa5/TCdGWaR/zBM2PeF/HbsQv/j2URNOiVuxWg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-win32-arm64-msvc": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-win32-arm64-msvc/-/lightningcss-win32-arm64-msvc-1.32.0.tgz",
+      "integrity": "sha512-8SbC8BR40pS6baCM8sbtYDSwEVQd4JlFTOlaD3gWGHfThTcABnNDBda6eTZeqbofalIJhFx0qKzgHJmcPTnGdw==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/lightningcss-win32-x64-msvc": {
+      "version": "1.32.0",
+      "resolved": "https://registry.npmjs.org/lightningcss-win32-x64-msvc/-/lightningcss-win32-x64-msvc-1.32.0.tgz",
+      "integrity": "sha512-Amq9B/SoZYdDi1kFrojnoqPLxYhQ4Wo5XiL8EVJrVsB8ARoC1PWW6VGtT0WKCemjy8aC+louJnjS7U18x3b06Q==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MPL-2.0",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/parcel"
+      }
+    },
+    "node_modules/load-esm": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/load-esm/-/load-esm-1.0.3.tgz",
+      "integrity": "sha512-v5xlu8eHD1+6r8EHTg6hfmO97LN8ugKtiXcy5e6oN72iD2r6u0RPfLl6fxM+7Wnh2ZRq15o0russMst44WauPA==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/Borewit"
+        },
+        {
+          "type": "buymeacoffee",
+          "url": "https://buymeacoffee.com/borewit"
+        }
+      ],
+      "license": "MIT",
+      "engines": {
+        "node": ">=13.2.0"
+      }
+    },
+    "node_modules/lodash": {
+      "version": "4.18.1",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.18.1.tgz",
+      "integrity": "sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==",
+      "license": "MIT"
+    },
+    "node_modules/long": {
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/long/-/long-5.3.2.tgz",
+      "integrity": "sha512-mNAgZ1GmyNhD7AuqnTG3/VQ26o760+ZYBPKjPvugO8+nLbYfX6TVpJPseBvopbdY+qpZ/lKUnmEc1LeZYS3QAA==",
+      "devOptional": true,
+      "license": "Apache-2.0"
+    },
+    "node_modules/lru-cache": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-5.1.1.tgz",
+      "integrity": "sha512-KpNARQA3Iwv+jTA0utUVVbrh+Jlrr1Fv0e56GGzAFOXN7dk/FviaDW8LHmK52DlcH4WP2n6gI8vN1aesBFgo9w==",
+      "license": "ISC",
+      "dependencies": {
+        "yallist": "^3.0.2"
+      }
+    },
+    "node_modules/lru.min": {
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/lru.min/-/lru.min-1.1.4.tgz",
+      "integrity": "sha512-DqC6n3QQ77zdFpCMASA1a3Jlb64Hv2N2DciFGkO/4L9+q/IpIAuRlKOvCXabtRW6cQf8usbmM6BE/TOPysCdIA==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "bun": ">=1.0.0",
+        "deno": ">=1.30.0",
+        "node": ">=8.0.0"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/wellwelwel"
+      }
+    },
+    "node_modules/lucide-react": {
+      "version": "0.546.0",
+      "resolved": "https://registry.npmjs.org/lucide-react/-/lucide-react-0.546.0.tgz",
+      "integrity": "sha512-Z94u6fKT43lKeYHiVyvyR8fT7pwCzDu7RyMPpTvh054+xahSgj4HFQ+NmflvzdXsoAjYGdCguGaFKYuvq0ThCQ==",
+      "license": "ISC",
+      "peerDependencies": {
+        "react": "^16.5.1 || ^17.0.0 || ^18.0.0 || ^19.0.0"
+      }
+    },
+    "node_modules/lz-string": {
+      "version": "1.5.0",
+      "resolved": "https://registry.npmjs.org/lz-string/-/lz-string-1.5.0.tgz",
+      "integrity": "sha512-h5bgJWpxJNswbU7qCrV0tIKQCaS3blPDrqKWx+QxzuzL1zGUzij9XCWLrSLsJPu5t+eWA/ycetzYAO5IOMcWAQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "bin": {
+        "lz-string": "bin/bin.js"
+      }
+    },
+    "node_modules/magic-string": {
+      "version": "0.30.21",
+      "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.21.tgz",
+      "integrity": "sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.5"
+      }
+    },
+    "node_modules/math-intrinsics": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
+      "integrity": "sha512-/IXtbwEk5HTPyEwyKX6hGkYXxM9nbj64B+ilVJnC/R6B0pH5G4V3b0pVbL7DBj4tkhBAppbQUlf6F6Xl9LHu1g==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/mdn-data": {
+      "version": "2.27.1",
+      "resolved": "https://registry.npmjs.org/mdn-data/-/mdn-data-2.27.1.tgz",
+      "integrity": "sha512-9Yubnt3e8A0OKwxYSXyhLymGW4sCufcLG6VdiDdUGVkPhpqLxlvP5vl1983gQjJl3tqbrM731mjaZaP68AgosQ==",
+      "dev": true,
+      "license": "CC0-1.0"
+    },
+    "node_modules/media-typer": {
+      "version": "0.3.0",
+      "resolved": "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz",
+      "integrity": "sha512-dq+qelQ9akHpcOl/gUVRTxVIOkAJ1wR3QAvb4RsVjS8oVoFjDGTc679wJYmUmknUF5HwMLOgb5O+a3KxfWapPQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/merge-descriptors": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/merge-descriptors/-/merge-descriptors-1.0.3.tgz",
+      "integrity": "sha512-gaNvAS7TZ897/rVaZ0nMtAyxNyi/pdbjbAwUpFQpN70GqnVfOiXpeUUMKRBmzXaSQ8DdTX4/0ms62r2K+hE6mQ==",
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/methods": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/methods/-/methods-1.1.2.tgz",
+      "integrity": "sha512-iclAHeNqNm68zFtnZ0e+1L2yUIdvzNoauKU4WBA3VvH/vPFieF7qfRlwUZU+DA9P9bPXIS90ulxoUoCH23sV2w==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/mime": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/mime/-/mime-1.6.0.tgz",
+      "integrity": "sha512-x0Vn8spI+wuJ1O6S7gnbaQg8Pxh4NNHb7KSINmEWKiPE4RKOplvijn+NkmYmmRgP68mc70j2EbeTFRsrswaQeg==",
+      "license": "MIT",
+      "bin": {
+        "mime": "cli.js"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/mime-db": {
+      "version": "1.52.0",
+      "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.52.0.tgz",
+      "integrity": "sha512-sPU4uV7dYlvtWJxwwxHD0PuihVNiE7TyAbQ5SWxDCB9mUYvOgroQOwYQQOKPJ8CIbE+1ETVlOoK1UC2nU3gYvg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/mime-types": {
+      "version": "2.1.35",
+      "resolved": "https://registry.npmjs.org/mime-types/-/mime-types-2.1.35.tgz",
+      "integrity": "sha512-ZDY+bPm5zTTF+YpCrAU9nK0UgICYPT0QtT1NZWFv4s++TNkcgVaT0g6+4R2uI4MjQjzysHB1zxuWL50hzaeXiw==",
+      "license": "MIT",
+      "dependencies": {
+        "mime-db": "1.52.0"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/min-indent": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/min-indent/-/min-indent-1.0.1.tgz",
+      "integrity": "sha512-I9jwMn07Sy/IwOj3zVkVik2JTvgpaykDZEigL6Rx6N9LbMywwUSMtxET+7lVoDLLd3O3IXwJwvuuns8UB/HeAg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/motion": {
+      "version": "12.38.0",
+      "resolved": "https://registry.npmjs.org/motion/-/motion-12.38.0.tgz",
+      "integrity": "sha512-uYfXzeHlgThchzwz5Te47dlv5JOUC7OB4rjJ/7XTUgtBZD8CchMN8qEJ4ZVsUmTyYA44zjV0fBwsiktRuFnn+w==",
+      "license": "MIT",
+      "dependencies": {
+        "framer-motion": "^12.38.0",
+        "tslib": "^2.4.0"
+      },
+      "peerDependencies": {
+        "@emotion/is-prop-valid": "*",
+        "react": "^18.0.0 || ^19.0.0",
+        "react-dom": "^18.0.0 || ^19.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@emotion/is-prop-valid": {
+          "optional": true
+        },
+        "react": {
+          "optional": true
+        },
+        "react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/motion-dom": {
+      "version": "12.38.0",
+      "resolved": "https://registry.npmjs.org/motion-dom/-/motion-dom-12.38.0.tgz",
+      "integrity": "sha512-pdkHLD8QYRp8VfiNLb8xIBJis1byQ9gPT3Jnh2jqfFtAsWUA3dEepDlsWe/xMpO8McV+VdpKVcp+E+TGJEtOoA==",
+      "license": "MIT",
+      "dependencies": {
+        "motion-utils": "^12.36.0"
+      }
+    },
+    "node_modules/motion-utils": {
+      "version": "12.36.0",
+      "resolved": "https://registry.npmjs.org/motion-utils/-/motion-utils-12.36.0.tgz",
+      "integrity": "sha512-eHWisygbiwVvf6PZ1vhaHCLamvkSbPIeAYxWUuL3a2PD/TROgE7FvfHWTIH4vMl798QLfMw15nRqIaRDXTlYRg==",
+      "license": "MIT"
+    },
+    "node_modules/ms": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
+      "license": "MIT"
+    },
+    "node_modules/multer": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/multer/-/multer-2.1.1.tgz",
+      "integrity": "sha512-mo+QTzKlx8R7E5ylSXxWzGoXoZbOsRMpyitcht8By2KHvMbf3tjwosZ/Mu/XYU6UuJ3VZnODIrak5ZrPiPyB6A==",
+      "license": "MIT",
+      "dependencies": {
+        "append-field": "^1.0.0",
+        "busboy": "^1.6.0",
+        "concat-stream": "^2.0.0",
+        "type-is": "^1.6.18"
+      },
+      "engines": {
+        "node": ">= 10.16.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/mysql2": {
+      "version": "3.15.3",
+      "resolved": "https://registry.npmjs.org/mysql2/-/mysql2-3.15.3.tgz",
+      "integrity": "sha512-FBrGau0IXmuqg4haEZRBfHNWB5mUARw6hNwPDXXGg0XzVJ50mr/9hb267lvpVMnhZ1FON3qNd4Xfcez1rbFwSg==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "aws-ssl-profiles": "^1.1.1",
+        "denque": "^2.1.0",
+        "generate-function": "^2.3.1",
+        "iconv-lite": "^0.7.0",
+        "long": "^5.2.1",
+        "lru.min": "^1.0.0",
+        "named-placeholders": "^1.1.3",
+        "seq-queue": "^0.0.5",
+        "sqlstring": "^2.3.2"
+      },
+      "engines": {
+        "node": ">= 8.0"
+      }
+    },
+    "node_modules/mysql2/node_modules/iconv-lite": {
+      "version": "0.7.2",
+      "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.7.2.tgz",
+      "integrity": "sha512-im9DjEDQ55s9fL4EYzOAv0yMqmMBSZp6G0VvFyTMPKWxiSBHUj9NW/qqLmXUwXrrM7AvqSlTCfvqRb0cM8yYqw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "safer-buffer": ">= 2.1.2 < 3.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/named-placeholders": {
+      "version": "1.1.6",
+      "resolved": "https://registry.npmjs.org/named-placeholders/-/named-placeholders-1.1.6.tgz",
+      "integrity": "sha512-Tz09sEL2EEuv5fFowm419c1+a/jSMiBjI9gHxVLrVdbUkkNUUfjsVYs9pVZu5oCon/kmRh9TfLEObFtkVxmY0w==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "lru.min": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=8.0.0"
+      }
+    },
+    "node_modules/nanoid": {
+      "version": "3.3.11",
+      "resolved": "https://registry.npmjs.org/nanoid/-/nanoid-3.3.11.tgz",
+      "integrity": "sha512-N8SpfPUnUp1bK+PMYW8qSWdl9U+wwNWI4QKxOYDy9JAro3WMX7p2OeVRF9v+347pnakNevPmiHhNmZ2HbFA76w==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "bin": {
+        "nanoid": "bin/nanoid.cjs"
+      },
+      "engines": {
+        "node": "^10 || ^12 || ^13.7 || ^14 || >=15.0.1"
+      }
+    },
+    "node_modules/negotiator": {
+      "version": "0.6.3",
+      "resolved": "https://registry.npmjs.org/negotiator/-/negotiator-0.6.3.tgz",
+      "integrity": "sha512-+EUsqGPLsM+j/zdChZjsnX51g4XrHFOIXwfnCVPGlQk/k5giakcKsuxCObBRu6DSm9opw/O6slWbJdghQM4bBg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/node-addon-api": {
+      "version": "8.7.0",
+      "resolved": "https://registry.npmjs.org/node-addon-api/-/node-addon-api-8.7.0.tgz",
+      "integrity": "sha512-9MdFxmkKaOYVTV+XVRG8ArDwwQ77XIgIPyKASB1k3JPq3M8fGQQQE3YpMOrKm6g//Ktx8ivZr8xo1Qmtqub+GA==",
+      "license": "MIT",
+      "engines": {
+        "node": "^18 || ^20 || >= 21"
+      }
+    },
+    "node_modules/node-gyp-build": {
+      "version": "4.8.4",
+      "resolved": "https://registry.npmjs.org/node-gyp-build/-/node-gyp-build-4.8.4.tgz",
+      "integrity": "sha512-LA4ZjwlnUblHVgq0oBF3Jl/6h/Nvs5fzBLwdEF4nuxnFdsfajde4WfxtJr3CaiH+F6ewcIB/q4jQ4UzPyid+CQ==",
+      "license": "MIT",
+      "bin": {
+        "node-gyp-build": "bin.js",
+        "node-gyp-build-optional": "optional.js",
+        "node-gyp-build-test": "build-test.js"
+      }
+    },
+    "node_modules/node-releases": {
+      "version": "2.0.37",
+      "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.37.tgz",
+      "integrity": "sha512-1h5gKZCF+pO/o3Iqt5Jp7wc9rH3eJJ0+nh/CIoiRwjRxde/hAHyLPXYN4V3CqKAbiZPSeJFSWHmJsbkicta0Eg==",
+      "license": "MIT"
+    },
+    "node_modules/object-assign": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/object-assign/-/object-assign-4.1.1.tgz",
+      "integrity": "sha512-rJgTQnkUnH1sFw8yT6VSU3zD3sWmu6sZhIseY8VX+GRu3P6F7Fu+JNDoXfklElbLJSnc3FUQHVe4cU5hj+BcUg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/object-inspect": {
+      "version": "1.13.4",
+      "resolved": "https://registry.npmjs.org/object-inspect/-/object-inspect-1.13.4.tgz",
+      "integrity": "sha512-W67iLl4J2EXEGTbfeHCffrjDfitvLANg0UlX3wFUUSTx92KXRFegMHUVgSqE+wvhAbi4WqjGg9czysTV2Epbew==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/obug": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/obug/-/obug-2.1.1.tgz",
+      "integrity": "sha512-uTqF9MuPraAQ+IsnPf366RG4cP9RtUi7MLO1N3KEc+wb0a6yKpeL0lmk2IB1jY5KHPAlTc6T/JRdC/YqxHNwkQ==",
+      "dev": true,
+      "funding": [
+        "https://github.com/sponsors/sxzz",
+        "https://opencollective.com/debug"
+      ],
+      "license": "MIT"
+    },
+    "node_modules/ohash": {
+      "version": "2.0.11",
+      "resolved": "https://registry.npmjs.org/ohash/-/ohash-2.0.11.tgz",
+      "integrity": "sha512-RdR9FQrFwNBNXAr4GixM8YaRZRJ5PUWbKYbE5eOsrwAjJW0q2REGcf79oYPsLyskQCZG1PLN+S/K1V00joZAoQ==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/on-finished": {
+      "version": "2.4.1",
+      "resolved": "https://registry.npmjs.org/on-finished/-/on-finished-2.4.1.tgz",
+      "integrity": "sha512-oVlzkg3ENAhCk2zdv7IJwd/QUD4z2RxRwpkcGY8psCVcCYZNq4wYnVWALHM+brtuJjePWiYF/ClmuDr8Ch5+kg==",
+      "license": "MIT",
+      "dependencies": {
+        "ee-first": "1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/on-headers": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.1.0.tgz",
+      "integrity": "sha512-737ZY3yNnXy37FHkQxPzt4UZ2UWPWiCZWLvFZ4fu5cueciegX0zGPnrlY6bwRg4FdQOe9YU8MkmJwGhoMybl8A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/once": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/once/-/once-1.4.0.tgz",
+      "integrity": "sha512-lNaJgI+2Q5URQBkccEKHTQOPaXdUxnZZElQTZY0MFUAuaEqe1E+Nyvgdz/aIyNi6Z9MzO5dv1H8n58/GELp3+w==",
+      "license": "ISC",
+      "dependencies": {
+        "wrappy": "1"
+      }
+    },
+    "node_modules/parse-srcset": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/parse-srcset/-/parse-srcset-1.0.2.tgz",
+      "integrity": "sha512-/2qh0lav6CmI15FzA3i/2Bzk2zCgQhGMkvhOhKNcBVQ1ldgpbfiNTVslmooUmWJcADi1f1kIeynbDRVzNlfR6Q==",
+      "license": "MIT"
+    },
+    "node_modules/parse5": {
+      "version": "8.0.1",
+      "resolved": "https://registry.npmjs.org/parse5/-/parse5-8.0.1.tgz",
+      "integrity": "sha512-z1e/HMG90obSGeidlli3hj7cbocou0/wa5HacvI3ASx34PecNjNQeaHNo5WIZpWofN9kgkqV1q5YvXe3F0FoPw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "entities": "^8.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/inikulin/parse5?sponsor=1"
+      }
+    },
+    "node_modules/parseurl": {
+      "version": "1.3.3",
+      "resolved": "https://registry.npmjs.org/parseurl/-/parseurl-1.3.3.tgz",
+      "integrity": "sha512-CiyeOxFT/JZyN5m0z9PfXw4SCBJ6Sygz1Dpl0wqjlhDEGGBP1GnsUVEL0p63hoG1fcj3fHynXi9NYO4nWOL+qQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/path-key": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/path-key/-/path-key-3.1.1.tgz",
+      "integrity": "sha512-ojmeN0qd+y0jszEtoY48r0Peq5dwMEkIlCOu6Q5f41lfkswXuKtYrhgoTpLnyIcHm24Uhqx+5Tqm2InSwLhE6Q==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/path-to-regexp": {
+      "version": "0.1.13",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.13.tgz",
+      "integrity": "sha512-A/AGNMFN3c8bOlvV9RreMdrv7jsmF9XIfDeCd87+I8RNg6s78BhJxMu69NEMHBSJFxKidViTEdruRwEk/WIKqA==",
+      "license": "MIT"
+    },
+    "node_modules/pathe": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/pathe/-/pathe-2.0.3.tgz",
+      "integrity": "sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/perfect-debounce": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/perfect-debounce/-/perfect-debounce-2.1.0.tgz",
+      "integrity": "sha512-LjgdTytVFXeUgtHZr9WYViYSM/g8MkcTPYDlPa3cDqMirHjKiSZPYd6DoL7pK8AJQr+uWkQvCjHNdiMqsrJs+g==",
+      "devOptional": true,
+      "license": "MIT"
+    },
+    "node_modules/pg": {
+      "version": "8.20.0",
+      "resolved": "https://registry.npmjs.org/pg/-/pg-8.20.0.tgz",
+      "integrity": "sha512-ldhMxz2r8fl/6QkXnBD3CR9/xg694oT6DZQ2s6c/RI28OjtSOpxnPrUCGOBJ46RCUxcWdx3p6kw/xnDHjKvaRA==",
+      "license": "MIT",
+      "dependencies": {
+        "pg-connection-string": "^2.12.0",
+        "pg-pool": "^3.13.0",
+        "pg-protocol": "^1.13.0",
+        "pg-types": "2.2.0",
+        "pgpass": "1.0.5"
+      },
+      "engines": {
+        "node": ">= 16.0.0"
+      },
+      "optionalDependencies": {
+        "pg-cloudflare": "^1.3.0"
+      },
+      "peerDependencies": {
+        "pg-native": ">=3.0.1"
+      },
+      "peerDependenciesMeta": {
+        "pg-native": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/pg-cloudflare": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/pg-cloudflare/-/pg-cloudflare-1.3.0.tgz",
+      "integrity": "sha512-6lswVVSztmHiRtD6I8hw4qP/nDm1EJbKMRhf3HCYaqud7frGysPv7FYJ5noZQdhQtN2xJnimfMtvQq21pdbzyQ==",
+      "license": "MIT",
+      "optional": true
+    },
+    "node_modules/pg-connection-string": {
+      "version": "2.12.0",
+      "resolved": "https://registry.npmjs.org/pg-connection-string/-/pg-connection-string-2.12.0.tgz",
+      "integrity": "sha512-U7qg+bpswf3Cs5xLzRqbXbQl85ng0mfSV/J0nnA31MCLgvEaAo7CIhmeyrmJpOr7o+zm0rXK+hNnT5l9RHkCkQ==",
+      "license": "MIT"
+    },
+    "node_modules/pg-int8": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/pg-int8/-/pg-int8-1.0.1.tgz",
+      "integrity": "sha512-WCtabS6t3c8SkpDBUlb1kjOs7l66xsGdKpIPZsg4wR+B3+u9UAum2odSsF9tnvxg80h4ZxLWMy4pRjOsFIqQpw==",
+      "license": "ISC",
+      "engines": {
+        "node": ">=4.0.0"
+      }
+    },
+    "node_modules/pg-pool": {
+      "version": "3.13.0",
+      "resolved": "https://registry.npmjs.org/pg-pool/-/pg-pool-3.13.0.tgz",
+      "integrity": "sha512-gB+R+Xud1gLFuRD/QgOIgGOBE2KCQPaPwkzBBGC9oG69pHTkhQeIuejVIk3/cnDyX39av2AxomQiyPT13WKHQA==",
+      "license": "MIT",
+      "peerDependencies": {
+        "pg": ">=8.0"
+      }
+    },
+    "node_modules/pg-protocol": {
+      "version": "1.13.0",
+      "resolved": "https://registry.npmjs.org/pg-protocol/-/pg-protocol-1.13.0.tgz",
+      "integrity": "sha512-zzdvXfS6v89r6v7OcFCHfHlyG/wvry1ALxZo4LqgUoy7W9xhBDMaqOuMiF3qEV45VqsN6rdlcehHrfDtlCPc8w==",
+      "license": "MIT"
+    },
+    "node_modules/pg-types": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/pg-types/-/pg-types-2.2.0.tgz",
+      "integrity": "sha512-qTAAlrEsl8s4OiEQY69wDvcMIdQN6wdz5ojQiOy6YRMuynxenON0O5oCpJI6lshc6scgAY8qvJ2On/p+CXY0GA==",
+      "license": "MIT",
+      "dependencies": {
+        "pg-int8": "1.0.1",
+        "postgres-array": "~2.0.0",
+        "postgres-bytea": "~1.0.0",
+        "postgres-date": "~1.0.4",
+        "postgres-interval": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/pg-types/node_modules/postgres-array": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/postgres-array/-/postgres-array-2.0.0.tgz",
+      "integrity": "sha512-VpZrUqU5A69eQyW2c5CA1jtLecCsN2U/bD6VilrFDWq5+5UIEVO7nazS3TEcHf1zuPYO/sqGvUvW62g86RXZuA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/pgpass": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/pgpass/-/pgpass-1.0.5.tgz",
+      "integrity": "sha512-FdW9r/jQZhSeohs1Z3sI1yxFQNFvMcnmfuj4WBMUTxOrAyLMaTcE1aAMBiTlbMNaXvBCQuVi0R7hd8udDSP7ug==",
+      "license": "MIT",
+      "dependencies": {
+        "split2": "^4.1.0"
+      }
+    },
+    "node_modules/picocolors": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.1.tgz",
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA==",
+      "license": "ISC"
+    },
+    "node_modules/picomatch": {
+      "version": "4.0.4",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.4.tgz",
+      "integrity": "sha512-QP88BAKvMam/3NxH6vj2o21R6MjxZUAd6nlwAS/pnGvN9IVLocLHxGYIzFhg6fUQ+5th6P4dv4eW9jX3DSIj7A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
+    "node_modules/pkg-types": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/pkg-types/-/pkg-types-2.3.1.tgz",
+      "integrity": "sha512-y+ichcgc2LrADuhLNAx8DFjVfgz91pRxfZdI3UDhxHvcVEZsenLO+7XaU5vOp0u/7V/wZ+plyuQxtrDlZJ+yeg==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "confbox": "^0.2.4",
+        "exsolve": "^1.0.8",
+        "pathe": "^2.0.3"
+      }
+    },
+    "node_modules/playwright": {
+      "version": "1.59.1",
+      "resolved": "https://registry.npmjs.org/playwright/-/playwright-1.59.1.tgz",
+      "integrity": "sha512-C8oWjPR3F81yljW9o5OxcWzfh6avkVwDD2VYdwIGqTkl+OGFISgypqzfu7dOe4QNLL2aqcWBmI3PMtLIK233lw==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "playwright-core": "1.59.1"
+      },
+      "bin": {
+        "playwright": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "optionalDependencies": {
+        "fsevents": "2.3.2"
+      }
+    },
+    "node_modules/playwright-core": {
+      "version": "1.59.1",
+      "resolved": "https://registry.npmjs.org/playwright-core/-/playwright-core-1.59.1.tgz",
+      "integrity": "sha512-HBV/RJg81z5BiiZ9yPzIiClYV/QMsDCKUyogwH9p3MCP6IYjUFu/MActgYAvK0oWyV9NlwM3GLBjADyWgydVyg==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "playwright-core": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/playwright/node_modules/fsevents": {
+      "version": "2.3.2",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.2.tgz",
+      "integrity": "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA==",
+      "dev": true,
+      "hasInstallScript": true,
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
+    "node_modules/postcss": {
+      "version": "8.5.10",
+      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.5.10.tgz",
+      "integrity": "sha512-pMMHxBOZKFU6HgAZ4eyGnwXF/EvPGGqUr0MnZ5+99485wwW41kW91A4LOGxSHhgugZmSChL5AlElNdwlNgcnLQ==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/postcss"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "nanoid": "^3.3.11",
+        "picocolors": "^1.1.1",
+        "source-map-js": "^1.2.1"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      }
+    },
+    "node_modules/postcss-value-parser": {
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/postcss-value-parser/-/postcss-value-parser-4.2.0.tgz",
+      "integrity": "sha512-1NNCs6uurfkVbeXG4S8JFT9t19m45ICnif8zWLd5oPSZ50QnwMfK+H3jv408d4jw/7Bttv5axS5IiHoLaVNHeQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/postgres": {
+      "version": "3.4.7",
+      "resolved": "https://registry.npmjs.org/postgres/-/postgres-3.4.7.tgz",
+      "integrity": "sha512-Jtc2612XINuBjIl/QTWsV5UvE8UHuNblcO3vVADSrKsrc6RqGX6lOW1cEo3CM2v0XG4Nat8nI+YM7/f26VxXLw==",
+      "devOptional": true,
+      "license": "Unlicense",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "type": "individual",
+        "url": "https://github.com/sponsors/porsager"
+      }
+    },
+    "node_modules/postgres-array": {
+      "version": "3.0.4",
+      "resolved": "https://registry.npmjs.org/postgres-array/-/postgres-array-3.0.4.tgz",
+      "integrity": "sha512-nAUSGfSDGOaOAEGwqsRY27GPOea7CNipJPOA7lPbdEpx5Kg3qzdP0AaWC5MlhTWV9s4hFX39nomVZ+C4tnGOJQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/postgres-bytea": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/postgres-bytea/-/postgres-bytea-1.0.1.tgz",
+      "integrity": "sha512-5+5HqXnsZPE65IJZSMkZtURARZelel2oXUEO8rH83VS/hxH5vv1uHquPg5wZs8yMAfdv971IU+kcPUczi7NVBQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-date": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/postgres-date/-/postgres-date-1.0.7.tgz",
+      "integrity": "sha512-suDmjLVQg78nMK2UZ454hAG+OAW+HQPZ6n++TNDUX+L0+uUlLywnoxJKDou51Zm+zTCjrCl0Nq6J9C5hP9vK/Q==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-interval": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/postgres-interval/-/postgres-interval-1.2.0.tgz",
+      "integrity": "sha512-9ZhXKM/rw350N1ovuWHbGxnGh/SNJ4cnxHiM0rxE4VN41wsg8P8zWn9hv/buK00RP4WvlOyr/RBDiptyxVbkZQ==",
+      "license": "MIT",
+      "dependencies": {
+        "xtend": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/pretty-format": {
+      "version": "27.5.1",
+      "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-27.5.1.tgz",
+      "integrity": "sha512-Qb1gy5OrP5+zDf2Bvnzdl3jsTf1qXVMazbvCoKhtKqVs4/YK4ozX4gKQJJVyNe+cajNPn0KoC0MC3FUmaHWEmQ==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true,
+      "dependencies": {
+        "ansi-regex": "^5.0.1",
+        "ansi-styles": "^5.0.0",
+        "react-is": "^17.0.1"
+      },
+      "engines": {
+        "node": "^10.13.0 || ^12.13.0 || ^14.15.0 || >=15.0.0"
+      }
+    },
+    "node_modules/prisma": {
+      "version": "7.8.0",
+      "resolved": "https://registry.npmjs.org/prisma/-/prisma-7.8.0.tgz",
+      "integrity": "sha512-yfN4yrw7HV9kEJhoy1+jgah0jafEIQsf7uWouSsM8MvJtlubsk+kM7AIBWZ8+GJl74Yj3c+nbYqBkMOxtsZ3Lw==",
+      "devOptional": true,
+      "hasInstallScript": true,
+      "license": "Apache-2.0",
+      "dependencies": {
+        "@prisma/config": "7.8.0",
+        "@prisma/dev": "0.24.3",
+        "@prisma/engines": "7.8.0",
+        "@prisma/studio-core": "0.27.3",
+        "mysql2": "3.15.3",
+        "postgres": "3.4.7"
+      },
+      "bin": {
+        "prisma": "build/index.js"
+      },
+      "engines": {
+        "node": "^20.19 || ^22.12 || >=24.0"
+      },
+      "peerDependencies": {
+        "better-sqlite3": ">=9.0.0",
+        "typescript": ">=5.4.0"
+      },
+      "peerDependenciesMeta": {
+        "better-sqlite3": {
+          "optional": true
+        },
+        "typescript": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/proper-lockfile": {
+      "version": "4.1.2",
+      "resolved": "https://registry.npmjs.org/proper-lockfile/-/proper-lockfile-4.1.2.tgz",
+      "integrity": "sha512-TjNPblN4BwAWMXU8s9AEz4JmQxnD1NNL7bNOY/AKUzyamc379FWASUhc/K1pL2noVb+XmZKLL68cjzLsiOAMaA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "graceful-fs": "^4.2.4",
+        "retry": "^0.12.0",
+        "signal-exit": "^3.0.2"
+      }
+    },
+    "node_modules/proper-lockfile/node_modules/retry": {
+      "version": "0.12.0",
+      "resolved": "https://registry.npmjs.org/retry/-/retry-0.12.0.tgz",
+      "integrity": "sha512-9LkiTwjUh6rT555DtE9rTX+BKByPfrMzEAtnlEtdEwr3Nkffwiihqe2bWADg+OQRjt9gl6ICdmB/ZFDCGAtSow==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 4"
+      }
+    },
+    "node_modules/proper-lockfile/node_modules/signal-exit": {
+      "version": "3.0.7",
+      "resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-3.0.7.tgz",
+      "integrity": "sha512-wnD2ZE+l+SPC/uoS0vXeE9L1+0wuaMqKlfz9AMUo38JsyLSBWSFcHR1Rri62LZc12vLr1gb3jl7iwQhgwpAbGQ==",
+      "devOptional": true,
+      "license": "ISC"
+    },
+    "node_modules/proxy-addr": {
+      "version": "2.0.7",
+      "resolved": "https://registry.npmjs.org/proxy-addr/-/proxy-addr-2.0.7.tgz",
+      "integrity": "sha512-llQsMLSUDUPT44jdrU/O37qlnifitDP+ZwrmmZcoSKyLKvtZxpyV0n2/bD/N4tBAAZ/gJEdZU7KMraoK1+XYAg==",
+      "license": "MIT",
+      "dependencies": {
+        "forwarded": "0.2.0",
+        "ipaddr.js": "1.9.1"
+      },
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
+    "node_modules/punycode": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.1.tgz",
+      "integrity": "sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/pure-rand": {
+      "version": "6.1.0",
+      "resolved": "https://registry.npmjs.org/pure-rand/-/pure-rand-6.1.0.tgz",
+      "integrity": "sha512-bVWawvoZoBYpp6yIoQtQXHZjmz35RSVHnUOTefl8Vcjr8snTPY1wnpSPMWekcFwbxI6gtmT7rSYPFvz71ldiOA==",
+      "devOptional": true,
+      "funding": [
+        {
+          "type": "individual",
+          "url": "https://github.com/sponsors/dubzzz"
+        },
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/fast-check"
+        }
+      ],
+      "license": "MIT"
+    },
+    "node_modules/qs": {
+      "version": "6.14.2",
+      "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.2.tgz",
+      "integrity": "sha512-V/yCWTTF7VJ9hIh18Ugr2zhJMP01MY7c5kh4J870L7imm6/DIzBsNLTXzMwUA3yZ5b/KBqLx8Kp3uRvd7xSe3Q==",
+      "license": "BSD-3-Clause",
+      "dependencies": {
+        "side-channel": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=0.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/random-bytes": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/random-bytes/-/random-bytes-1.0.0.tgz",
+      "integrity": "sha512-iv7LhNVO047HzYR3InF6pUcUsPQiHTM1Qal51DcGSuZFBil1aBBWG5eHPNek7bvILMaYJ/8RU1e8w1AMdHmLQQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/range-parser": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz",
+      "integrity": "sha512-Hrgsx+orqoygnmhFbKaHE6c296J+HTAQXoxEF6gNupROmmGJRoyzfG3ccAveqCBrwr/2yxQ5BVd/GTl5agOwSg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/raw-body": {
+      "version": "2.5.3",
+      "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-2.5.3.tgz",
+      "integrity": "sha512-s4VSOf6yN0rvbRZGxs8Om5CWj6seneMwK3oDb4lWDH0UPhWcxwOWw5+qk24bxq87szX1ydrwylIOp2uG1ojUpA==",
+      "license": "MIT",
+      "dependencies": {
+        "bytes": "~3.1.2",
+        "http-errors": "~2.0.1",
+        "iconv-lite": "~0.4.24",
+        "unpipe": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/rc9": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/rc9/-/rc9-3.0.1.tgz",
+      "integrity": "sha512-gMDyleLWVE+i6Sgtc0QbbY6pEKqYs97NGi6isHQPqYlLemPoO8dxQ3uGi0f4NiP98c+jMW6cG1Kx9dDwfvqARQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "defu": "^6.1.6",
+        "destr": "^2.0.5"
+      }
+    },
+    "node_modules/react": {
+      "version": "19.2.5",
+      "resolved": "https://registry.npmjs.org/react/-/react-19.2.5.tgz",
+      "integrity": "sha512-llUJLzz1zTUBrskt2pwZgLq59AemifIftw4aB7JxOqf1HY2FDaGDxgwpAPVzHU1kdWabH7FauP4i1oEeer2WCA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-dom": {
+      "version": "19.2.5",
+      "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-19.2.5.tgz",
+      "integrity": "sha512-J5bAZz+DXMMwW/wV3xzKke59Af6CHY7G4uYLN1OvBcKEsWOs4pQExj86BBKamxl/Ik5bx9whOrvBlSDfWzgSag==",
+      "license": "MIT",
+      "dependencies": {
+        "scheduler": "^0.27.0"
+      },
+      "peerDependencies": {
+        "react": "^19.2.5"
+      }
+    },
+    "node_modules/react-is": {
+      "version": "17.0.2",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-17.0.2.tgz",
+      "integrity": "sha512-w2GsyukL62IJnlaff/nRegPQR94C/XXamvMWmSHRJ4y7Ts/4ocGRmTHvOs8PSE6pB3dWOrD/nueuU5sduBsQ4w==",
+      "dev": true,
+      "license": "MIT",
+      "peer": true
+    },
+    "node_modules/react-refresh": {
+      "version": "0.18.0",
+      "resolved": "https://registry.npmjs.org/react-refresh/-/react-refresh-0.18.0.tgz",
+      "integrity": "sha512-QgT5//D3jfjJb6Gsjxv0Slpj23ip+HtOpnNgnb2S5zU3CB26G/IDPGoy4RJB42wzFE46DRsstbW6tKHoKbhAxw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-router": {
+      "version": "7.14.1",
+      "resolved": "https://registry.npmjs.org/react-router/-/react-router-7.14.1.tgz",
+      "integrity": "sha512-5BCvFskyAAVumqhEKh/iPhLOIkfxcEUz8WqFIARCkMg8hZZzDYX9CtwxXA0e+qT8zAxmMC0x3Ckb9iMONwc5jg==",
+      "license": "MIT",
+      "dependencies": {
+        "cookie": "^1.0.1",
+        "set-cookie-parser": "^2.6.0"
+      },
+      "engines": {
+        "node": ">=20.0.0"
+      },
+      "peerDependencies": {
+        "react": ">=18",
+        "react-dom": ">=18"
+      },
+      "peerDependenciesMeta": {
+        "react-dom": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/react-router-dom": {
+      "version": "7.14.1",
+      "resolved": "https://registry.npmjs.org/react-router-dom/-/react-router-dom-7.14.1.tgz",
+      "integrity": "sha512-ZkrQuwwhGibjQLqH1eCdyiZyLWglPxzxdl5tgwgKEyCSGC76vmAjleGocRe3J/MLfzMUIKwaFJWpFVJhK3d2xA==",
+      "license": "MIT",
+      "dependencies": {
+        "react-router": "7.14.1"
+      },
+      "engines": {
+        "node": ">=20.0.0"
+      },
+      "peerDependencies": {
+        "react": ">=18",
+        "react-dom": ">=18"
+      }
+    },
+    "node_modules/react-router/node_modules/cookie": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-1.1.1.tgz",
+      "integrity": "sha512-ei8Aos7ja0weRpFzJnEA9UHJ/7XQmqglbRwnf2ATjcB9Wq874VKH9kfjjirM6UhU2/E5fFYadylyhFldcqSidQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/readable-stream": {
+      "version": "3.6.2",
+      "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-3.6.2.tgz",
+      "integrity": "sha512-9u/sniCrY3D5WdsERHzHE4G2YCXqoG5FTHUiCC4SIbr6XcLZBY05ya9EKjYek9O5xOAwjGq+1JdGBAS7Q9ScoA==",
+      "license": "MIT",
+      "dependencies": {
+        "inherits": "^2.0.3",
+        "string_decoder": "^1.1.1",
+        "util-deprecate": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/readdirp": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/readdirp/-/readdirp-5.0.0.tgz",
+      "integrity": "sha512-9u/XQ1pvrQtYyMpZe7DXKv2p5CNvyVwzUB6uhLAnQwHMSgKMBR62lc7AHljaeteeHXn11XTAaLLUVZYVZyuRBQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 20.19.0"
+      },
+      "funding": {
+        "type": "individual",
+        "url": "https://paulmillr.com/funding/"
+      }
+    },
+    "node_modules/redent": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/redent/-/redent-3.0.0.tgz",
+      "integrity": "sha512-6tDA8g98We0zd0GvVeMT9arEOnTw9qM03L9cJXaCjrip1OO764RDBLBfrB4cwzNGDj5OA5ioymC9GkizgWJDUg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "indent-string": "^4.0.0",
+        "strip-indent": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/reflect-metadata": {
+      "version": "0.2.2",
+      "resolved": "https://registry.npmjs.org/reflect-metadata/-/reflect-metadata-0.2.2.tgz",
+      "integrity": "sha512-urBwgfrvVP/eAyXx4hluJivBKzuEbSQs9rKWCrCkbSxNv8mxPcUZKeuoF3Uy4mJl3Lwprp6yy5/39VWigZ4K6Q==",
+      "license": "Apache-2.0"
+    },
+    "node_modules/remeda": {
+      "version": "2.33.4",
+      "resolved": "https://registry.npmjs.org/remeda/-/remeda-2.33.4.tgz",
+      "integrity": "sha512-ygHswjlc/opg2VrtiYvUOPLjxjtdKvjGz1/plDhkG66hjNjFr1xmfrs2ClNFo/E6TyUFiwYNh53bKV26oBoMGQ==",
+      "devOptional": true,
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/remeda"
+      }
+    },
+    "node_modules/require-from-string": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/require-from-string/-/require-from-string-2.0.2.tgz",
+      "integrity": "sha512-Xf0nWe6RseziFMu+Ap9biiUbmplq6S9/p+7w7YXP/JBHhrUDDUhwa+vANyubuqfZWTveU//DYVGsDG7RKL/vEw==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/resolve-pkg-maps": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/resolve-pkg-maps/-/resolve-pkg-maps-1.0.0.tgz",
+      "integrity": "sha512-seS2Tj26TBVOC2NIc2rOe2y2ZO7efxITtLZcGSOnHHNOQ7CkiUBfw0Iw2ck6xkIhPwLhKNLS8BO+hEpngQlqzw==",
+      "devOptional": true,
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/privatenumber/resolve-pkg-maps?sponsor=1"
+      }
+    },
+    "node_modules/rollup": {
+      "version": "4.60.1",
+      "resolved": "https://registry.npmjs.org/rollup/-/rollup-4.60.1.tgz",
+      "integrity": "sha512-VmtB2rFU/GroZ4oL8+ZqXgSA38O6GR8KSIvWmEFv63pQ0G6KaBH9s07PO8XTXP4vI+3UJUEypOfjkGfmSBBR0w==",
+      "license": "MIT",
+      "dependencies": {
+        "@types/estree": "1.0.8"
+      },
+      "bin": {
+        "rollup": "dist/bin/rollup"
+      },
+      "engines": {
+        "node": ">=18.0.0",
+        "npm": ">=8.0.0"
+      },
+      "optionalDependencies": {
+        "@rollup/rollup-android-arm-eabi": "4.60.1",
+        "@rollup/rollup-android-arm64": "4.60.1",
+        "@rollup/rollup-darwin-arm64": "4.60.1",
+        "@rollup/rollup-darwin-x64": "4.60.1",
+        "@rollup/rollup-freebsd-arm64": "4.60.1",
+        "@rollup/rollup-freebsd-x64": "4.60.1",
+        "@rollup/rollup-linux-arm-gnueabihf": "4.60.1",
+        "@rollup/rollup-linux-arm-musleabihf": "4.60.1",
+        "@rollup/rollup-linux-arm64-gnu": "4.60.1",
+        "@rollup/rollup-linux-arm64-musl": "4.60.1",
+        "@rollup/rollup-linux-loong64-gnu": "4.60.1",
+        "@rollup/rollup-linux-loong64-musl": "4.60.1",
+        "@rollup/rollup-linux-ppc64-gnu": "4.60.1",
+        "@rollup/rollup-linux-ppc64-musl": "4.60.1",
+        "@rollup/rollup-linux-riscv64-gnu": "4.60.1",
+        "@rollup/rollup-linux-riscv64-musl": "4.60.1",
+        "@rollup/rollup-linux-s390x-gnu": "4.60.1",
+        "@rollup/rollup-linux-x64-gnu": "4.60.1",
+        "@rollup/rollup-linux-x64-musl": "4.60.1",
+        "@rollup/rollup-openbsd-x64": "4.60.1",
+        "@rollup/rollup-openharmony-arm64": "4.60.1",
+        "@rollup/rollup-win32-arm64-msvc": "4.60.1",
+        "@rollup/rollup-win32-ia32-msvc": "4.60.1",
+        "@rollup/rollup-win32-x64-gnu": "4.60.1",
+        "@rollup/rollup-win32-x64-msvc": "4.60.1",
+        "fsevents": "~2.3.2"
+      }
+    },
+    "node_modules/router": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/router/-/router-2.2.0.tgz",
+      "integrity": "sha512-nLTrUKm2UyiL7rlhapu/Zl45FwNgkZGaCpZbIHajDYgwlJCOzLSk+cIPAnsEqV955GjILJnKbdQC1nVPz+gAYQ==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "^4.4.0",
+        "depd": "^2.0.0",
+        "is-promise": "^4.0.0",
+        "parseurl": "^1.3.3",
+        "path-to-regexp": "^8.0.0"
+      },
+      "engines": {
+        "node": ">= 18"
+      }
+    },
+    "node_modules/router/node_modules/path-to-regexp": {
+      "version": "8.4.2",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-8.4.2.tgz",
+      "integrity": "sha512-qRcuIdP69NPm4qbACK+aDogI5CBDMi1jKe0ry5rSQJz8JVLsC7jV8XpiJjGRLLol3N+R5ihGYcrPLTno6pAdBA==",
+      "license": "MIT",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/rxjs": {
+      "version": "7.8.2",
+      "resolved": "https://registry.npmjs.org/rxjs/-/rxjs-7.8.2.tgz",
+      "integrity": "sha512-dhKf903U/PQZY6boNNtAGdWbG85WAbjT/1xYoZIC7FAY0yWapOBQVsVrDl58W86//e1VpMNBtRV4MaXfdMySFA==",
+      "license": "Apache-2.0",
+      "dependencies": {
+        "tslib": "^2.1.0"
+      }
+    },
+    "node_modules/safe-buffer": {
+      "version": "5.2.1",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.2.1.tgz",
+      "integrity": "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "license": "MIT"
+    },
+    "node_modules/safer-buffer": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz",
+      "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==",
+      "license": "MIT"
+    },
+    "node_modules/sanitize-html": {
+      "version": "2.17.3",
+      "resolved": "https://registry.npmjs.org/sanitize-html/-/sanitize-html-2.17.3.tgz",
+      "integrity": "sha512-Kn4srCAo2+wZyvCNKCSyB2g8RQ8IkX/gQs2uqoSRNu5t9I2qvUyAVvRDiFUVAiX3N3PNuwStY0eNr+ooBHVWEg==",
+      "license": "MIT",
+      "dependencies": {
+        "deepmerge": "^4.2.2",
+        "escape-string-regexp": "^4.0.0",
+        "htmlparser2": "^10.1.0",
+        "is-plain-object": "^5.0.0",
+        "parse-srcset": "^1.0.2",
+        "postcss": "^8.3.11"
+      }
+    },
+    "node_modules/saxes": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/saxes/-/saxes-6.0.0.tgz",
+      "integrity": "sha512-xAg7SOnEhrm5zI3puOOKyy1OMcMlIJZYNJY7xLBwSze0UjhPLnWfj2GF2EpT0jmzaJKIWKHLsaSSajf35bcYnA==",
+      "dev": true,
+      "license": "ISC",
+      "dependencies": {
+        "xmlchars": "^2.2.0"
+      },
+      "engines": {
+        "node": ">=v12.22.7"
+      }
+    },
+    "node_modules/scheduler": {
+      "version": "0.27.0",
+      "resolved": "https://registry.npmjs.org/scheduler/-/scheduler-0.27.0.tgz",
+      "integrity": "sha512-eNv+WrVbKu1f3vbYJT/xtiF5syA5HPIMtf9IgY/nKg0sWqzAUEvqY/xm7OcZc/qafLx/iO9FgOmeSAp4v5ti/Q==",
+      "license": "MIT"
+    },
+    "node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "license": "ISC",
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/send": {
+      "version": "0.19.2",
+      "resolved": "https://registry.npmjs.org/send/-/send-0.19.2.tgz",
+      "integrity": "sha512-VMbMxbDeehAxpOtWJXlcUS5E8iXh6QmN+BkRX1GARS3wRaXEEgzCcB10gTQazO42tpNIya8xIyNx8fll1OFPrg==",
+      "license": "MIT",
+      "dependencies": {
+        "debug": "2.6.9",
+        "depd": "2.0.0",
+        "destroy": "1.2.0",
+        "encodeurl": "~2.0.0",
+        "escape-html": "~1.0.3",
+        "etag": "~1.8.1",
+        "fresh": "~0.5.2",
+        "http-errors": "~2.0.1",
+        "mime": "1.6.0",
+        "ms": "2.1.3",
+        "on-finished": "~2.4.1",
+        "range-parser": "~1.2.1",
+        "statuses": "~2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/send/node_modules/debug": {
+      "version": "2.6.9",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
+      "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "2.0.0"
+      }
+    },
+    "node_modules/send/node_modules/debug/node_modules/ms": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz",
+      "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==",
+      "license": "MIT"
+    },
+    "node_modules/seq-queue": {
+      "version": "0.0.5",
+      "resolved": "https://registry.npmjs.org/seq-queue/-/seq-queue-0.0.5.tgz",
+      "integrity": "sha512-hr3Wtp/GZIc/6DAGPDcV4/9WoZhjrkXsi5B/07QgX8tsdc6ilr7BFM6PM6rbdAX1kFSDYeZGLipIZZKyQP0O5Q==",
+      "devOptional": true
+    },
+    "node_modules/serve-static": {
+      "version": "1.16.3",
+      "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-1.16.3.tgz",
+      "integrity": "sha512-x0RTqQel6g5SY7Lg6ZreMmsOzncHFU7nhnRWkKgWuMTu5NN0DR5oruckMqRvacAN9d5w6ARnRBXl9xhDCgfMeA==",
+      "license": "MIT",
+      "dependencies": {
+        "encodeurl": "~2.0.0",
+        "escape-html": "~1.0.3",
+        "parseurl": "~1.3.3",
+        "send": "~0.19.1"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/set-cookie-parser": {
+      "version": "2.7.2",
+      "resolved": "https://registry.npmjs.org/set-cookie-parser/-/set-cookie-parser-2.7.2.tgz",
+      "integrity": "sha512-oeM1lpU/UvhTxw+g3cIfxXHyJRc/uidd3yK1P242gzHds0udQBYzs3y8j4gCCW+ZJ7ad0yctld8RYO+bdurlvw==",
+      "license": "MIT"
+    },
+    "node_modules/setprototypeof": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/setprototypeof/-/setprototypeof-1.2.0.tgz",
+      "integrity": "sha512-E5LDX7Wrp85Kil5bhZv46j8jOeboKq5JMmYM3gVGdGH8xFpPWXUMsNrlODCrkoxMEeNi/XZIwuRvY4XNwYMJpw==",
+      "license": "ISC"
+    },
+    "node_modules/shebang-command": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-command/-/shebang-command-2.0.0.tgz",
+      "integrity": "sha512-kHxr2zZpYtdmrN1qDjrrX/Z1rR1kG8Dx+gkpK1G4eXmvXswmcE1hTWBWYUzlraYw1/yZp6YuDY77YtvbN0dmDA==",
+      "license": "MIT",
+      "dependencies": {
+        "shebang-regex": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/shebang-regex": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-regex/-/shebang-regex-3.0.0.tgz",
+      "integrity": "sha512-7++dFhtcx3353uBaq8DDR4NuxBetBzC7ZQOhmTQInHEd6bSrXdiEyzCvG07Z44UYdLShWUyXt5M/yhz8ekcb1A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/side-channel": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/side-channel/-/side-channel-1.1.0.tgz",
+      "integrity": "sha512-ZX99e6tRweoUXqR+VBrslhda51Nh5MTQwou5tnUDgbtyM0dBgmhEDtWGP/xbKn6hqfPRHujUNwz5fy/wbbhnpw==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "object-inspect": "^1.13.3",
+        "side-channel-list": "^1.0.0",
+        "side-channel-map": "^1.0.1",
+        "side-channel-weakmap": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-list": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/side-channel-list/-/side-channel-list-1.0.1.tgz",
+      "integrity": "sha512-mjn/0bi/oUURjc5Xl7IaWi/OJJJumuoJFQJfDDyO46+hBWsfaVM65TBHq2eoZBhzl9EchxOijpkbRC8SVBQU0w==",
+      "license": "MIT",
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "object-inspect": "^1.13.4"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-map": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/side-channel-map/-/side-channel-map-1.0.1.tgz",
+      "integrity": "sha512-VCjCNfgMsby3tTdo02nbjtM/ewra6jPHmpThenkTYh8pG9ucZ/1P8So4u4FGBek/BjpOVsDCMoLA/iuBKIFXRA==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.5",
+        "object-inspect": "^1.13.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-weakmap": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/side-channel-weakmap/-/side-channel-weakmap-1.0.2.tgz",
+      "integrity": "sha512-WPS/HvHQTYnHisLo9McqBHOJk2FkHO/tlpvldyrnem4aeQp4hai3gythswg6p01oSoTl58rcpiFAjF2br2Ak2A==",
+      "license": "MIT",
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.5",
+        "object-inspect": "^1.13.3",
+        "side-channel-map": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/siginfo": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/siginfo/-/siginfo-2.0.0.tgz",
+      "integrity": "sha512-ybx0WO1/8bSBLEWXZvEd7gMW3Sn3JFlW3TvX1nREbDLRNQNaeNN8WK0meBwPdAaOI7TtRRRJn/Es1zhrrCHu7g==",
+      "dev": true,
+      "license": "ISC"
+    },
+    "node_modules/signal-exit": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/signal-exit/-/signal-exit-4.1.0.tgz",
+      "integrity": "sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw==",
+      "devOptional": true,
+      "license": "ISC",
+      "engines": {
+        "node": ">=14"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/source-map-js": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/source-map-js/-/source-map-js-1.2.1.tgz",
+      "integrity": "sha512-UXWMKhLOwVKb728IUtQPXxfYU+usdybtUrK/8uGE8CQMvrhOpwvzDBwj0QhSL7MQc7vIsISBG8VQ8+IDQxpfQA==",
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/split2": {
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/split2/-/split2-4.2.0.tgz",
+      "integrity": "sha512-UcjcJOWknrNkF6PLX83qcHM6KHgVKNkV62Y8a5uYDVv9ydGQVwAHMKqHdJje1VTWpljG0WYpCDhrCdAOYH4TWg==",
+      "license": "ISC",
+      "engines": {
+        "node": ">= 10.x"
+      }
+    },
+    "node_modules/sqlstring": {
+      "version": "2.3.3",
+      "resolved": "https://registry.npmjs.org/sqlstring/-/sqlstring-2.3.3.tgz",
+      "integrity": "sha512-qC9iz2FlN7DQl3+wjwn3802RTyjCx7sDvfQEXchwa6CWOx07/WVfh91gBmQ9fahw8snwGEWU3xGzOt4tFyHLxg==",
+      "devOptional": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/stackback": {
+      "version": "0.0.2",
+      "resolved": "https://registry.npmjs.org/stackback/-/stackback-0.0.2.tgz",
+      "integrity": "sha512-1XMJE5fQo1jGH6Y/7ebnwPOBEkIEnT4QF32d5R1+VXdXveM0IBMJt8zfaxX1P3QhVwrYe+576+jkANtSS2mBbw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/statuses": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.2.tgz",
+      "integrity": "sha512-DvEy55V3DB7uknRo+4iOGT5fP1slR8wQohVdknigZPMpMstaKJQWhwiYBACJE3Ul2pTnATihhBYnRhZQHGBiRw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/std-env": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/std-env/-/std-env-4.1.0.tgz",
+      "integrity": "sha512-Rq7ybcX2RuC55r9oaPVEW7/xu3tj8u4GeBYHBWCychFtzMIr86A7e3PPEBPT37sHStKX3+TiX/Fr/ACmJLVlLQ==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/streamsearch": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/streamsearch/-/streamsearch-1.1.0.tgz",
+      "integrity": "sha512-Mcc5wHehp9aXz1ax6bZUyY5afg9u2rv5cqQI3mRrYkGC8rW2hM02jWuwjtL++LS5qinSyhj2QfLyNsuc+VsExg==",
+      "engines": {
+        "node": ">=10.0.0"
+      }
+    },
+    "node_modules/string_decoder": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.3.0.tgz",
+      "integrity": "sha512-hkRX8U1WjJFd8LsDJ2yQ/wWWxaopEsABU1XfkM8A+j0+85JAGppt16cr1Whg6KIbb4okU6Mql6BOj+uup/wKeA==",
+      "license": "MIT",
+      "dependencies": {
+        "safe-buffer": "~5.2.0"
+      }
+    },
+    "node_modules/strip-indent": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/strip-indent/-/strip-indent-3.0.0.tgz",
+      "integrity": "sha512-laJTa3Jb+VQpaC6DseHhF7dXVqHTfJPCRDaEbid/drOhgitgYku/letMUqOXFoWV0zIIUbjpdH2t+tYj4bQMRQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "min-indent": "^1.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/strtok3": {
+      "version": "10.3.5",
+      "resolved": "https://registry.npmjs.org/strtok3/-/strtok3-10.3.5.tgz",
+      "integrity": "sha512-ki4hZQfh5rX0QDLLkOCj+h+CVNkqmp/CMf8v8kZpkNVK6jGQooMytqzLZYUVYIZcFZ6yDB70EfD8POcFXiF5oA==",
+      "license": "MIT",
+      "dependencies": {
+        "@tokenizer/token": "^0.3.0"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/Borewit"
+      }
+    },
+    "node_modules/superagent": {
+      "version": "10.3.0",
+      "resolved": "https://registry.npmjs.org/superagent/-/superagent-10.3.0.tgz",
+      "integrity": "sha512-B+4Ik7ROgVKrQsXTV0Jwp2u+PXYLSlqtDAhYnkkD+zn3yg8s/zjA2MeGayPoY/KICrbitwneDHrjSotxKL+0XQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "component-emitter": "^1.3.1",
+        "cookiejar": "^2.1.4",
+        "debug": "^4.3.7",
+        "fast-safe-stringify": "^2.1.1",
+        "form-data": "^4.0.5",
+        "formidable": "^3.5.4",
+        "methods": "^1.1.2",
+        "mime": "2.6.0",
+        "qs": "^6.14.1"
+      },
+      "engines": {
+        "node": ">=14.18.0"
+      }
+    },
+    "node_modules/superagent/node_modules/mime": {
+      "version": "2.6.0",
+      "resolved": "https://registry.npmjs.org/mime/-/mime-2.6.0.tgz",
+      "integrity": "sha512-USPkMeET31rOMiarsBNIHZKLGgvKc/LrjofAnBlOttf5ajRvqiRA8QsenbcooctK6d6Ts6aqZXBA+XbkKthiQg==",
+      "dev": true,
+      "license": "MIT",
+      "bin": {
+        "mime": "cli.js"
+      },
+      "engines": {
+        "node": ">=4.0.0"
+      }
+    },
+    "node_modules/supertest": {
+      "version": "7.2.2",
+      "resolved": "https://registry.npmjs.org/supertest/-/supertest-7.2.2.tgz",
+      "integrity": "sha512-oK8WG9diS3DlhdUkcFn4tkNIiIbBx9lI2ClF8K+b2/m8Eyv47LSawxUzZQSNKUrVb2KsqeTDCcjAAVPYaSLVTA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "cookie-signature": "^1.2.2",
+        "methods": "^1.1.2",
+        "superagent": "^10.3.0"
+      },
+      "engines": {
+        "node": ">=14.18.0"
+      }
+    },
+    "node_modules/supertest/node_modules/cookie-signature": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.2.2.tgz",
+      "integrity": "sha512-D76uU73ulSXrD1UXF4KE2TMxVVwhsnCgfAyTg9k8P6KGZjlXKrOLe4dJQKI3Bxi5wjesZoFXJWElNWBjPZMbhg==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.6.0"
+      }
+    },
+    "node_modules/symbol-tree": {
+      "version": "3.2.4",
+      "resolved": "https://registry.npmjs.org/symbol-tree/-/symbol-tree-3.2.4.tgz",
+      "integrity": "sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/tailwindcss": {
+      "version": "4.2.2",
+      "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-4.2.2.tgz",
+      "integrity": "sha512-KWBIxs1Xb6NoLdMVqhbhgwZf2PGBpPEiwOqgI4pFIYbNTfBXiKYyWoTsXgBQ9WFg/OlhnvHaY+AEpW7wSmFo2Q==",
+      "license": "MIT"
+    },
+    "node_modules/tapable": {
+      "version": "2.3.2",
+      "resolved": "https://registry.npmjs.org/tapable/-/tapable-2.3.2.tgz",
+      "integrity": "sha512-1MOpMXuhGzGL5TTCZFItxCc0AARf1EZFQkGqMm7ERKj8+Hgr5oLvJOVFcC+lRmR8hCe2S3jC4T5D7Vg/d7/fhA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/webpack"
+      }
+    },
+    "node_modules/tinybench": {
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/tinybench/-/tinybench-2.9.0.tgz",
+      "integrity": "sha512-0+DUvqWMValLmha6lr4kD8iAMK1HzV0/aKnCtWb9v9641TnP/MFb7Pc2bxoxQjTXAErryXVgUOfv2YqNllqGeg==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/tinyexec": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/tinyexec/-/tinyexec-1.1.2.tgz",
+      "integrity": "sha512-dAqSqE/RabpBKI8+h26GfLq6Vb3JVXs30XYQjdMjaj/c2tS8IYYMbIzP599KtRj7c57/wYApb3QjgRgXmrCukA==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/tinyglobby": {
+      "version": "0.2.16",
+      "resolved": "https://registry.npmjs.org/tinyglobby/-/tinyglobby-0.2.16.tgz",
+      "integrity": "sha512-pn99VhoACYR8nFHhxqix+uvsbXineAasWm5ojXoN8xEwK5Kd3/TrhNn1wByuD52UxWRLy8pu+kRMniEi6Eq9Zg==",
+      "license": "MIT",
+      "dependencies": {
+        "fdir": "^6.5.0",
+        "picomatch": "^4.0.4"
+      },
+      "engines": {
+        "node": ">=12.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/SuperchupuDev"
+      }
+    },
+    "node_modules/tinyrainbow": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/tinyrainbow/-/tinyrainbow-3.1.0.tgz",
+      "integrity": "sha512-Bf+ILmBgretUrdJxzXM0SgXLZ3XfiaUuOj/IKQHuTXip+05Xn+uyEYdVg0kYDipTBcLrCVyUzAPz7QmArb0mmw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/tldts": {
+      "version": "7.0.29",
+      "resolved": "https://registry.npmjs.org/tldts/-/tldts-7.0.29.tgz",
+      "integrity": "sha512-JIXCerhudr/N6OWLwLF1HVsTTUo7ry6qHa5eWZEkiMuxsIiAACL55tGLfqfHfoH7QaMQUW8fngD7u7TxWexYQg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "tldts-core": "^7.0.29"
+      },
+      "bin": {
+        "tldts": "bin/cli.js"
+      }
+    },
+    "node_modules/tldts-core": {
+      "version": "7.0.29",
+      "resolved": "https://registry.npmjs.org/tldts-core/-/tldts-core-7.0.29.tgz",
+      "integrity": "sha512-W99NuU7b1DcG3uJ3v9k9VztCH3WialNbBkBft5wCs8V8mexu0XQqaZEYb9l9RNNzK8+3EJ9PKWB0/RUtTQ/o+Q==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/toidentifier": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/toidentifier/-/toidentifier-1.0.1.tgz",
+      "integrity": "sha512-o5sSPKEkg/DIQNmH43V0/uerLrpzVedkUh8tGNvaeXpfpuwjKenlSox/2O/BTlZUtEe+JG7s5YhEz608PlAHRA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.6"
+      }
+    },
+    "node_modules/token-types": {
+      "version": "6.1.2",
+      "resolved": "https://registry.npmjs.org/token-types/-/token-types-6.1.2.tgz",
+      "integrity": "sha512-dRXchy+C0IgK8WPC6xvCHFRIWYUbqqdEIKPaKo/AcTUNzwLTK6AH7RjdLWsEZcAN/TBdtfUw3PYEgPr5VPr6ww==",
+      "license": "MIT",
+      "dependencies": {
+        "@borewit/text-codec": "^0.2.1",
+        "@tokenizer/token": "^0.3.0",
+        "ieee754": "^1.2.1"
+      },
+      "engines": {
+        "node": ">=14.16"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/Borewit"
+      }
+    },
+    "node_modules/tough-cookie": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/tough-cookie/-/tough-cookie-6.0.1.tgz",
+      "integrity": "sha512-LktZQb3IeoUWB9lqR5EWTHgW/VTITCXg4D21M+lvybRVdylLrRMnqaIONLVb5mav8vM19m44HIcGq4qASeu2Qw==",
+      "dev": true,
+      "license": "BSD-3-Clause",
+      "dependencies": {
+        "tldts": "^7.0.5"
+      },
+      "engines": {
+        "node": ">=16"
+      }
+    },
+    "node_modules/tr46": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/tr46/-/tr46-6.0.0.tgz",
+      "integrity": "sha512-bLVMLPtstlZ4iMQHpFHTR7GAGj2jxi8Dg0s2h2MafAE4uSWF98FC/3MomU51iQAMf8/qDUbKWf5GxuvvVcXEhw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "punycode": "^2.3.1"
+      },
+      "engines": {
+        "node": ">=20"
+      }
+    },
+    "node_modules/tslib": {
+      "version": "2.8.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz",
+      "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==",
+      "license": "0BSD"
+    },
+    "node_modules/tsx": {
+      "version": "4.21.0",
+      "resolved": "https://registry.npmjs.org/tsx/-/tsx-4.21.0.tgz",
+      "integrity": "sha512-5C1sg4USs1lfG0GFb2RLXsdpXqBSEhAaA/0kPL01wxzpMqLILNxIxIOKiILz+cdg/pLnOUxFYOR5yhHU666wbw==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "esbuild": "~0.27.0",
+        "get-tsconfig": "^4.7.5"
+      },
+      "bin": {
+        "tsx": "dist/cli.mjs"
+      },
+      "engines": {
+        "node": ">=18.0.0"
+      },
+      "optionalDependencies": {
+        "fsevents": "~2.3.3"
+      }
+    },
+    "node_modules/type-is": {
+      "version": "1.6.18",
+      "resolved": "https://registry.npmjs.org/type-is/-/type-is-1.6.18.tgz",
+      "integrity": "sha512-TkRKr9sUTxEH8MdfuCSP7VizJyzRNMjj2J2do2Jr3Kym598JVdEksuzPQCnlFPW4ky9Q+iA+ma9BGm06XQBy8g==",
+      "license": "MIT",
+      "dependencies": {
+        "media-typer": "0.3.0",
+        "mime-types": "~2.1.24"
+      },
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/typedarray": {
+      "version": "0.0.6",
+      "resolved": "https://registry.npmjs.org/typedarray/-/typedarray-0.0.6.tgz",
+      "integrity": "sha512-/aCDEGatGvZ2BIk+HmLf4ifCJFwvKFNb9/JeZPMulfgFracn9QFcAf5GO8B/mweUjSoblS5In0cWhqpfs/5PQA==",
+      "license": "MIT"
+    },
+    "node_modules/typescript": {
+      "version": "5.8.3",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.8.3.tgz",
+      "integrity": "sha512-p1diW6TqL9L07nNxvRMM7hMMw4c5XOo/1ibL4aAIGmSAt9slTE1Xgw5KWuof2uTOvCg9BY7ZRi+GaF+7sfgPeQ==",
+      "devOptional": true,
+      "license": "Apache-2.0",
+      "bin": {
+        "tsc": "bin/tsc",
+        "tsserver": "bin/tsserver"
+      },
+      "engines": {
+        "node": ">=14.17"
+      }
+    },
+    "node_modules/uid": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/uid/-/uid-2.0.2.tgz",
+      "integrity": "sha512-u3xV3X7uzvi5b1MncmZo3i2Aw222Zk1keqLA1YkHldREkAhAqi65wuPfe7lHx8H/Wzy+8CE7S7uS3jekIM5s8g==",
+      "license": "MIT",
+      "dependencies": {
+        "@lukeed/csprng": "^1.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/uid-safe": {
+      "version": "2.1.5",
+      "resolved": "https://registry.npmjs.org/uid-safe/-/uid-safe-2.1.5.tgz",
+      "integrity": "sha512-KPHm4VL5dDXKz01UuEd88Df+KzynaohSL9fBh096KWAxSKZQDI2uBrVqtvRM4rwrIrRRKsdLNML/lnaaVSRioA==",
+      "license": "MIT",
+      "dependencies": {
+        "random-bytes": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/uint8array-extras": {
+      "version": "1.5.0",
+      "resolved": "https://registry.npmjs.org/uint8array-extras/-/uint8array-extras-1.5.0.tgz",
+      "integrity": "sha512-rvKSBiC5zqCCiDZ9kAOszZcDvdAHwwIKJG33Ykj43OKcWsnmcBRL09YTU4nOeHZ8Y2a7l1MgTd08SBe9A8Qj6A==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/undici": {
+      "version": "7.25.0",
+      "resolved": "https://registry.npmjs.org/undici/-/undici-7.25.0.tgz",
+      "integrity": "sha512-xXnp4kTyor2Zq+J1FfPI6Eq3ew5h6Vl0F/8d9XU5zZQf1tX9s2Su1/3PiMmUANFULpmksxkClamIZcaUqryHsQ==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=20.18.1"
+      }
+    },
+    "node_modules/undici-types": {
+      "version": "6.21.0",
+      "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.21.0.tgz",
+      "integrity": "sha512-iwDZqg0QAGrg9Rav5H4n0M64c3mkR59cJ6wQp+7C4nI0gsmExaedaYLNO44eT4AtBBwjbTiGPMlt2Md0T9H9JQ==",
+      "license": "MIT"
+    },
+    "node_modules/unpipe": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz",
+      "integrity": "sha512-pjy2bYhSsufwWlKwPc+l3cN7+wuJlK6uz0YdJEOlQDbl6jo/YlPi4mb8agUkVC8BF7V8NuzeyPNqRksA3hztKQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/update-browserslist-db": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/update-browserslist-db/-/update-browserslist-db-1.2.3.tgz",
+      "integrity": "sha512-Js0m9cx+qOgDxo0eMiFGEueWztz+d4+M3rGlmKPT+T4IS/jP4ylw3Nwpu6cpTTP8R1MAC1kF4VbdLt3ARf209w==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "license": "MIT",
+      "dependencies": {
+        "escalade": "^3.2.0",
+        "picocolors": "^1.1.1"
+      },
+      "bin": {
+        "update-browserslist-db": "cli.js"
+      },
+      "peerDependencies": {
+        "browserslist": ">= 4.21.0"
+      }
+    },
+    "node_modules/util-deprecate": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/util-deprecate/-/util-deprecate-1.0.2.tgz",
+      "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==",
+      "license": "MIT"
+    },
+    "node_modules/utils-merge": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/utils-merge/-/utils-merge-1.0.1.tgz",
+      "integrity": "sha512-pMZTvIkT1d+TFGvDOqodOclx0QWkkgi6Tdoa8gC8ffGAAqz9pzPTZWAybbsHHoED/ztMtkv/VoYTYyShUn81hA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.4.0"
+      }
+    },
+    "node_modules/valibot": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/valibot/-/valibot-1.2.0.tgz",
+      "integrity": "sha512-mm1rxUsmOxzrwnX5arGS+U4T25RdvpPjPN4yR0u9pUBov9+zGVtO84tif1eY4r6zWxVxu3KzIyknJy3rxfRZZg==",
+      "devOptional": true,
+      "license": "MIT",
+      "peerDependencies": {
+        "typescript": ">=5"
+      },
+      "peerDependenciesMeta": {
+        "typescript": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/vary": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/vary/-/vary-1.1.2.tgz",
+      "integrity": "sha512-BNGbWLfd0eUPabhkXUVm0j8uuvREyTh5ovRa/dyow/BqAbZJyC+5fU+IzQOzmAKzYqYRAISoRhdQr3eIZ/PXqg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/vite": {
+      "version": "6.4.2",
+      "resolved": "https://registry.npmjs.org/vite/-/vite-6.4.2.tgz",
+      "integrity": "sha512-2N/55r4JDJ4gdrCvGgINMy+HH3iRpNIz8K6SFwVsA+JbQScLiC+clmAxBgwiSPgcG9U15QmvqCGWzMbqda5zGQ==",
+      "license": "MIT",
+      "dependencies": {
+        "esbuild": "^0.25.0",
+        "fdir": "^6.4.4",
+        "picomatch": "^4.0.2",
+        "postcss": "^8.5.3",
+        "rollup": "^4.34.9",
+        "tinyglobby": "^0.2.13"
+      },
+      "bin": {
+        "vite": "bin/vite.js"
+      },
+      "engines": {
+        "node": "^18.0.0 || ^20.0.0 || >=22.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/vitejs/vite?sponsor=1"
+      },
+      "optionalDependencies": {
+        "fsevents": "~2.3.3"
+      },
+      "peerDependencies": {
+        "@types/node": "^18.0.0 || ^20.0.0 || >=22.0.0",
+        "jiti": ">=1.21.0",
+        "less": "*",
+        "lightningcss": "^1.21.0",
+        "sass": "*",
+        "sass-embedded": "*",
+        "stylus": "*",
+        "sugarss": "*",
+        "terser": "^5.16.0",
+        "tsx": "^4.8.1",
+        "yaml": "^2.4.2"
+      },
+      "peerDependenciesMeta": {
+        "@types/node": {
+          "optional": true
+        },
+        "jiti": {
+          "optional": true
+        },
+        "less": {
+          "optional": true
+        },
+        "lightningcss": {
+          "optional": true
+        },
+        "sass": {
+          "optional": true
+        },
+        "sass-embedded": {
+          "optional": true
+        },
+        "stylus": {
+          "optional": true
+        },
+        "sugarss": {
+          "optional": true
+        },
+        "terser": {
+          "optional": true
+        },
+        "tsx": {
+          "optional": true
+        },
+        "yaml": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/aix-ppc64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/aix-ppc64/-/aix-ppc64-0.25.12.tgz",
+      "integrity": "sha512-Hhmwd6CInZ3dwpuGTF8fJG6yoWmsToE+vYgD4nytZVxcu1ulHpUQRAB1UJ8+N1Am3Mz4+xOByoQoSZf4D+CpkA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "aix"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/android-arm": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.25.12.tgz",
+      "integrity": "sha512-VJ+sKvNA/GE7Ccacc9Cha7bpS8nyzVv0jdVgwNDaR4gDMC/2TTRc33Ip8qrNYUcpkOHUT5OZ0bUcNNVZQ9RLlg==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/android-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.25.12.tgz",
+      "integrity": "sha512-6AAmLG7zwD1Z159jCKPvAxZd4y/VTO0VkprYy+3N2FtJ8+BQWFXU+OxARIwA46c5tdD9SsKGZ/1ocqBS/gAKHg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/android-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.25.12.tgz",
+      "integrity": "sha512-5jbb+2hhDHx5phYR2By8GTWEzn6I9UqR11Kwf22iKbNpYrsmRB18aX/9ivc5cabcUiAT/wM+YIZ6SG9QO6a8kg==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/darwin-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.25.12.tgz",
+      "integrity": "sha512-N3zl+lxHCifgIlcMUP5016ESkeQjLj/959RxxNYIthIg+CQHInujFuXeWbWMgnTo4cp5XVHqFPmpyu9J65C1Yg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/darwin-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.25.12.tgz",
+      "integrity": "sha512-HQ9ka4Kx21qHXwtlTUVbKJOAnmG1ipXhdWTmNXiPzPfWKpXqASVcWdnf2bnL73wgjNrFXAa3yYvBSd9pzfEIpA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/freebsd-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.25.12.tgz",
+      "integrity": "sha512-gA0Bx759+7Jve03K1S0vkOu5Lg/85dou3EseOGUes8flVOGxbhDDh/iZaoek11Y8mtyKPGF3vP8XhnkDEAmzeg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/freebsd-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.25.12.tgz",
+      "integrity": "sha512-TGbO26Yw2xsHzxtbVFGEXBFH0FRAP7gtcPE7P5yP7wGy7cXK2oO7RyOhL5NLiqTlBh47XhmIUXuGciXEqYFfBQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-arm": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.25.12.tgz",
+      "integrity": "sha512-lPDGyC1JPDou8kGcywY0YILzWlhhnRjdof3UlcoqYmS9El818LLfJJc3PXXgZHrHCAKs/Z2SeZtDJr5MrkxtOw==",
+      "cpu": [
+        "arm"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.25.12.tgz",
+      "integrity": "sha512-8bwX7a8FghIgrupcxb4aUmYDLp8pX06rGh5HqDT7bB+8Rdells6mHvrFHHW2JAOPZUbnjUpKTLg6ECyzvas2AQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-ia32": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.25.12.tgz",
+      "integrity": "sha512-0y9KrdVnbMM2/vG8KfU0byhUN+EFCny9+8g202gYqSSVMonbsCfLjUO+rCci7pM0WBEtz+oK/PIwHkzxkyharA==",
+      "cpu": [
+        "ia32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-loong64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.25.12.tgz",
+      "integrity": "sha512-h///Lr5a9rib/v1GGqXVGzjL4TMvVTv+s1DPoxQdz7l/AYv6LDSxdIwzxkrPW438oUXiDtwM10o9PmwS/6Z0Ng==",
+      "cpu": [
+        "loong64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-mips64el": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.25.12.tgz",
+      "integrity": "sha512-iyRrM1Pzy9GFMDLsXn1iHUm18nhKnNMWscjmp4+hpafcZjrr2WbT//d20xaGljXDBYHqRcl8HnxbX6uaA/eGVw==",
+      "cpu": [
+        "mips64el"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-ppc64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.25.12.tgz",
+      "integrity": "sha512-9meM/lRXxMi5PSUqEXRCtVjEZBGwB7P/D4yT8UG/mwIdze2aV4Vo6U5gD3+RsoHXKkHCfSxZKzmDssVlRj1QQA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-riscv64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.25.12.tgz",
+      "integrity": "sha512-Zr7KR4hgKUpWAwb1f3o5ygT04MzqVrGEGXGLnj15YQDJErYu/BGg+wmFlIDOdJp0PmB0lLvxFIOXZgFRrdjR0w==",
+      "cpu": [
+        "riscv64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-s390x": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.25.12.tgz",
+      "integrity": "sha512-MsKncOcgTNvdtiISc/jZs/Zf8d0cl/t3gYWX8J9ubBnVOwlk65UIEEvgBORTiljloIWnBzLs4qhzPkJcitIzIg==",
+      "cpu": [
+        "s390x"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/linux-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.25.12.tgz",
+      "integrity": "sha512-uqZMTLr/zR/ed4jIGnwSLkaHmPjOjJvnm6TVVitAa08SLS9Z0VM8wIRx7gWbJB5/J54YuIMInDquWyYvQLZkgw==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/netbsd-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-arm64/-/netbsd-arm64-0.25.12.tgz",
+      "integrity": "sha512-xXwcTq4GhRM7J9A8Gv5boanHhRa/Q9KLVmcyXHCTaM4wKfIpWkdXiMog/KsnxzJ0A1+nD+zoecuzqPmCRyBGjg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/netbsd-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.25.12.tgz",
+      "integrity": "sha512-Ld5pTlzPy3YwGec4OuHh1aCVCRvOXdH8DgRjfDy/oumVovmuSzWfnSJg+VtakB9Cm0gxNO9BzWkj6mtO1FMXkQ==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/openbsd-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-arm64/-/openbsd-arm64-0.25.12.tgz",
+      "integrity": "sha512-fF96T6KsBo/pkQI950FARU9apGNTSlZGsv1jZBAlcLL1MLjLNIWPBkj5NlSz8aAzYKg+eNqknrUJ24QBybeR5A==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/openbsd-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.25.12.tgz",
+      "integrity": "sha512-MZyXUkZHjQxUvzK7rN8DJ3SRmrVrke8ZyRusHlP+kuwqTcfWLyqMOE3sScPPyeIXN/mDJIfGXvcMqCgYKekoQw==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/openharmony-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/openharmony-arm64/-/openharmony-arm64-0.25.12.tgz",
+      "integrity": "sha512-rm0YWsqUSRrjncSXGA7Zv78Nbnw4XL6/dzr20cyrQf7ZmRcsovpcRBdhD43Nuk3y7XIoW2OxMVvwuRvk9XdASg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "openharmony"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/sunos-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.25.12.tgz",
+      "integrity": "sha512-3wGSCDyuTHQUzt0nV7bocDy72r2lI33QL3gkDNGkod22EsYl04sMf0qLb8luNKTOmgF/eDEDP5BFNwoBKH441w==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "sunos"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/win32-arm64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.25.12.tgz",
+      "integrity": "sha512-rMmLrur64A7+DKlnSuwqUdRKyd3UE7oPJZmnljqEptesKM8wx9J8gx5u0+9Pq0fQQW8vqeKebwNXdfOyP+8Bsg==",
+      "cpu": [
+        "arm64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/win32-ia32": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.25.12.tgz",
+      "integrity": "sha512-HkqnmmBoCbCwxUKKNPBixiWDGCpQGVsrQfJoVGYLPT41XWF8lHuE5N6WhVia2n4o5QK5M4tYr21827fNhi4byQ==",
+      "cpu": [
+        "ia32"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/@esbuild/win32-x64": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.25.12.tgz",
+      "integrity": "sha512-alJC0uCZpTFrSL0CCDjcgleBXPnCrEAhTBILpeAp7M/OFgoqtAetfBzX0xM00MUsVVPpVjlPuMbREqnZCXaTnA==",
+      "cpu": [
+        "x64"
+      ],
+      "license": "MIT",
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/vite/node_modules/esbuild": {
+      "version": "0.25.12",
+      "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.25.12.tgz",
+      "integrity": "sha512-bbPBYYrtZbkt6Os6FiTLCTFxvq4tt3JKall1vRwshA3fdVztsLAatFaZobhkBC8/BrPetoa0oksYoKXoG4ryJg==",
+      "hasInstallScript": true,
+      "license": "MIT",
+      "bin": {
+        "esbuild": "bin/esbuild"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "optionalDependencies": {
+        "@esbuild/aix-ppc64": "0.25.12",
+        "@esbuild/android-arm": "0.25.12",
+        "@esbuild/android-arm64": "0.25.12",
+        "@esbuild/android-x64": "0.25.12",
+        "@esbuild/darwin-arm64": "0.25.12",
+        "@esbuild/darwin-x64": "0.25.12",
+        "@esbuild/freebsd-arm64": "0.25.12",
+        "@esbuild/freebsd-x64": "0.25.12",
+        "@esbuild/linux-arm": "0.25.12",
+        "@esbuild/linux-arm64": "0.25.12",
+        "@esbuild/linux-ia32": "0.25.12",
+        "@esbuild/linux-loong64": "0.25.12",
+        "@esbuild/linux-mips64el": "0.25.12",
+        "@esbuild/linux-ppc64": "0.25.12",
+        "@esbuild/linux-riscv64": "0.25.12",
+        "@esbuild/linux-s390x": "0.25.12",
+        "@esbuild/linux-x64": "0.25.12",
+        "@esbuild/netbsd-arm64": "0.25.12",
+        "@esbuild/netbsd-x64": "0.25.12",
+        "@esbuild/openbsd-arm64": "0.25.12",
+        "@esbuild/openbsd-x64": "0.25.12",
+        "@esbuild/openharmony-arm64": "0.25.12",
+        "@esbuild/sunos-x64": "0.25.12",
+        "@esbuild/win32-arm64": "0.25.12",
+        "@esbuild/win32-ia32": "0.25.12",
+        "@esbuild/win32-x64": "0.25.12"
+      }
+    },
+    "node_modules/vitest": {
+      "version": "4.1.5",
+      "resolved": "https://registry.npmjs.org/vitest/-/vitest-4.1.5.tgz",
+      "integrity": "sha512-9Xx1v3/ih3m9hN+SbfkUyy0JAs72ap3r7joc87XL6jwF0jGg6mFBvQ1SrwaX+h8BlkX6Hz9shdd1uo6AF+ZGpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@vitest/expect": "4.1.5",
+        "@vitest/mocker": "4.1.5",
+        "@vitest/pretty-format": "4.1.5",
+        "@vitest/runner": "4.1.5",
+        "@vitest/snapshot": "4.1.5",
+        "@vitest/spy": "4.1.5",
+        "@vitest/utils": "4.1.5",
+        "es-module-lexer": "^2.0.0",
+        "expect-type": "^1.3.0",
+        "magic-string": "^0.30.21",
+        "obug": "^2.1.1",
+        "pathe": "^2.0.3",
+        "picomatch": "^4.0.3",
+        "std-env": "^4.0.0-rc.1",
+        "tinybench": "^2.9.0",
+        "tinyexec": "^1.0.2",
+        "tinyglobby": "^0.2.15",
+        "tinyrainbow": "^3.1.0",
+        "vite": "^6.0.0 || ^7.0.0 || ^8.0.0",
+        "why-is-node-running": "^2.3.0"
+      },
+      "bin": {
+        "vitest": "vitest.mjs"
+      },
+      "engines": {
+        "node": "^20.0.0 || ^22.0.0 || >=24.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/vitest"
+      },
+      "peerDependencies": {
+        "@edge-runtime/vm": "*",
+        "@opentelemetry/api": "^1.9.0",
+        "@types/node": "^20.0.0 || ^22.0.0 || >=24.0.0",
+        "@vitest/browser-playwright": "4.1.5",
+        "@vitest/browser-preview": "4.1.5",
+        "@vitest/browser-webdriverio": "4.1.5",
+        "@vitest/coverage-istanbul": "4.1.5",
+        "@vitest/coverage-v8": "4.1.5",
+        "@vitest/ui": "4.1.5",
+        "happy-dom": "*",
+        "jsdom": "*",
+        "vite": "^6.0.0 || ^7.0.0 || ^8.0.0"
+      },
+      "peerDependenciesMeta": {
+        "@edge-runtime/vm": {
+          "optional": true
+        },
+        "@opentelemetry/api": {
+          "optional": true
+        },
+        "@types/node": {
+          "optional": true
+        },
+        "@vitest/browser-playwright": {
+          "optional": true
+        },
+        "@vitest/browser-preview": {
+          "optional": true
+        },
+        "@vitest/browser-webdriverio": {
+          "optional": true
+        },
+        "@vitest/coverage-istanbul": {
+          "optional": true
+        },
+        "@vitest/coverage-v8": {
+          "optional": true
+        },
+        "@vitest/ui": {
+          "optional": true
+        },
+        "happy-dom": {
+          "optional": true
+        },
+        "jsdom": {
+          "optional": true
+        },
+        "vite": {
+          "optional": false
+        }
+      }
+    },
+    "node_modules/w3c-xmlserializer": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/w3c-xmlserializer/-/w3c-xmlserializer-5.0.0.tgz",
+      "integrity": "sha512-o8qghlI8NZHU1lLPrpi2+Uq7abh4GGPpYANlalzWxyWteJOCsr/P+oPBA49TOLu5FTZO4d3F9MnWJfiMo4BkmA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "xml-name-validator": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/webidl-conversions": {
+      "version": "8.0.1",
+      "resolved": "https://registry.npmjs.org/webidl-conversions/-/webidl-conversions-8.0.1.tgz",
+      "integrity": "sha512-BMhLD/Sw+GbJC21C/UgyaZX41nPt8bUTg+jWyDeg7e7YN4xOM05YPSIXceACnXVtqyEw/LMClUQMtMZ+PGGpqQ==",
+      "dev": true,
+      "license": "BSD-2-Clause",
+      "engines": {
+        "node": ">=20"
+      }
+    },
+    "node_modules/whatwg-mimetype": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/whatwg-mimetype/-/whatwg-mimetype-5.0.0.tgz",
+      "integrity": "sha512-sXcNcHOC51uPGF0P/D4NVtrkjSU2fNsm9iog4ZvZJsL3rjoDAzXZhkm2MWt1y+PUdggKAYVoMAIYcs78wJ51Cw==",
+      "dev": true,
+      "license": "MIT",
+      "engines": {
+        "node": ">=20"
+      }
+    },
+    "node_modules/whatwg-url": {
+      "version": "16.0.1",
+      "resolved": "https://registry.npmjs.org/whatwg-url/-/whatwg-url-16.0.1.tgz",
+      "integrity": "sha512-1to4zXBxmXHV3IiSSEInrreIlu02vUOvrhxJJH5vcxYTBDAx51cqZiKdyTxlecdKNSjj8EcxGBxNf6Vg+945gw==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@exodus/bytes": "^1.11.0",
+        "tr46": "^6.0.0",
+        "webidl-conversions": "^8.0.1"
+      },
+      "engines": {
+        "node": "^20.19.0 || ^22.12.0 || >=24.0.0"
+      }
+    },
+    "node_modules/which": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/which/-/which-2.0.2.tgz",
+      "integrity": "sha512-BLI3Tl1TW3Pvl70l3yq3Y64i+awpwXqsGBYWkkqMtnbXgrMD+yj7rhW0kuEDxzJaYXGjEW5ogapKNMEKNMjibA==",
+      "license": "ISC",
+      "dependencies": {
+        "isexe": "^2.0.0"
+      },
+      "bin": {
+        "node-which": "bin/node-which"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/why-is-node-running": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/why-is-node-running/-/why-is-node-running-2.3.0.tgz",
+      "integrity": "sha512-hUrmaWBdVDcxvYqnyh09zunKzROWjbZTiNy8dBEjkS7ehEDQibXJ7XvlmtbwuTclUiIyN+CyXQD4Vmko8fNm8w==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "siginfo": "^2.0.0",
+        "stackback": "0.0.2"
+      },
+      "bin": {
+        "why-is-node-running": "cli.js"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/wrappy": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/wrappy/-/wrappy-1.0.2.tgz",
+      "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==",
+      "license": "ISC"
+    },
+    "node_modules/ws": {
+      "version": "8.20.0",
+      "resolved": "https://registry.npmjs.org/ws/-/ws-8.20.0.tgz",
+      "integrity": "sha512-sAt8BhgNbzCtgGbt2OxmpuryO63ZoDk/sqaB/znQm94T4fCEsy/yV+7CdC1kJhOU9lboAEU7R3kquuycDoibVA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=10.0.0"
+      },
+      "peerDependencies": {
+        "bufferutil": "^4.0.1",
+        "utf-8-validate": ">=5.0.2"
+      },
+      "peerDependenciesMeta": {
+        "bufferutil": {
+          "optional": true
+        },
+        "utf-8-validate": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/xml-name-validator": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/xml-name-validator/-/xml-name-validator-5.0.0.tgz",
+      "integrity": "sha512-EvGK8EJ3DhaHfbRlETOWAS5pO9MZITeauHKJyb8wyajUfQUenkIg2MvLDTZ4T/TgIcm3HU0TFBgWWboAZ30UHg==",
+      "dev": true,
+      "license": "Apache-2.0",
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/xmlchars": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/xmlchars/-/xmlchars-2.2.0.tgz",
+      "integrity": "sha512-JZnDKK8B0RCDw84FNdDAIpZK+JuJw+s7Lz8nksI7SIuU3UXJJslUthsi+uWBUYOwPFwW7W7PRLRfUKpxjtjFCw==",
+      "dev": true,
+      "license": "MIT"
+    },
+    "node_modules/xtend": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/xtend/-/xtend-4.0.2.tgz",
+      "integrity": "sha512-LKYU1iAXJXUgAXn9URjiu+MWhyUXHsvfp7mcuYm9dSUKK0/CjtrUwFAxD82/mCWbtLsGjFIad0wIsod4zrTAEQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.4"
+      }
+    },
+    "node_modules/yallist": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/yallist/-/yallist-3.1.1.tgz",
+      "integrity": "sha512-a4UGQaWPH59mOXUYnAG2ewncQS4i4F43Tv3JoAM+s2VDAmS9NsK8GpDMLrCHPksFT7h3K6TOoUNn2pb7RoXx4g==",
+      "license": "ISC"
+    },
+    "node_modules/zeptomatch": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/zeptomatch/-/zeptomatch-2.1.0.tgz",
+      "integrity": "sha512-KiGErG2J0G82LSpniV0CtIzjlJ10E04j02VOudJsPyPwNZgGnRKQy7I1R7GMyg/QswnE4l7ohSGrQbQbjXPPDA==",
+      "devOptional": true,
+      "license": "MIT",
+      "dependencies": {
+        "grammex": "^3.1.11",
+        "graphmatch": "^1.1.0"
+      }
+    },
+    "node_modules/zod": {
+      "version": "4.4.1",
+      "resolved": "https://registry.npmjs.org/zod/-/zod-4.4.1.tgz",
+      "integrity": "sha512-a6ENMBBGZBsnlSebQ/eKCguSBeGKSf4O7BPnqVPmYGtpBYI7VSqoVqw+QcB7kPRjbqPwhYTpFbVj/RqNz/CT0Q==",
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/colinhacks"
+      }
+    }
+  }
+}
diff --git a/package.json b/package.json
new file mode 100644
index 0000000..b4610d6
--- /dev/null
+++ b/package.json
@@ -0,0 +1,71 @@
+{
+  "name": "react-example",
+  "private": true,
+  "version": "0.0.0",
+  "type": "module",
+  "scripts": {
+    "dev": "vite --port=3001 --host=0.0.0.0",
+    "server:dev": "tsx watch server/src/main.ts",
+    "server:build": "tsc -p server/tsconfig.json",
+    "server:start": "node server/dist/main.js",
+    "build": "vite build",
+    "preview": "vite preview",
+    "clean": "rm -rf dist",
+    "lint": "tsc --noEmit",
+    "test": "vitest run",
+    "test:e2e": "playwright test",
+    "prisma:generate": "prisma generate --schema server/prisma/schema.prisma",
+    "prisma:migrate": "prisma migrate dev --schema server/prisma/schema.prisma",
+    "prisma:seed": "prisma db seed --schema server/prisma/schema.prisma"
+  },
+  "dependencies": {
+    "@nestjs/common": "^11.1.19",
+    "@nestjs/config": "^4.0.4",
+    "@nestjs/core": "^11.1.19",
+    "@nestjs/platform-express": "^11.1.19",
+    "@prisma/adapter-pg": "^7.8.0",
+    "@prisma/client": "^7.8.0",
+    "@tailwindcss/vite": "^4.1.14",
+    "@vitejs/plugin-react": "^5.0.4",
+    "argon2": "^0.44.0",
+    "cookie-parser": "^1.4.7",
+    "diff": "^9.0.0",
+    "express": "^4.21.2",
+    "express-session": "^1.19.0",
+    "lucide-react": "^0.546.0",
+    "motion": "^12.23.24",
+    "pg": "^8.20.0",
+    "react": "^19.0.0",
+    "react-dom": "^19.0.0",
+    "react-router-dom": "^7.14.1",
+    "reflect-metadata": "^0.2.2",
+    "rxjs": "^7.8.2",
+    "sanitize-html": "^2.17.3",
+    "vite": "^6.2.0",
+    "ws": "^8.20.0",
+    "zod": "^4.4.1"
+  },
+  "devDependencies": {
+    "@nestjs/testing": "^11.1.19",
+    "@playwright/test": "^1.59.1",
+    "@testing-library/jest-dom": "^6.9.1",
+    "@testing-library/react": "^16.3.2",
+    "@types/cookie-parser": "^1.4.10",
+    "@types/express": "^4.17.21",
+    "@types/express-session": "^1.19.0",
+    "@types/node": "^22.14.0",
+    "@types/pg": "^8.20.0",
+    "@types/sanitize-html": "^2.16.1",
+    "@types/supertest": "^7.2.0",
+    "@types/ws": "^8.18.1",
+    "autoprefixer": "^10.4.21",
+    "jsdom": "^29.1.1",
+    "prisma": "^7.8.0",
+    "supertest": "^7.2.2",
+    "tailwindcss": "^4.1.14",
+    "tsx": "^4.21.0",
+    "typescript": "~5.8.2",
+    "vite": "^6.2.0",
+    "vitest": "^4.1.5"
+  }
+}
diff --git a/playwright.config.ts b/playwright.config.ts
new file mode 100644
index 0000000..7af878f
--- /dev/null
+++ b/playwright.config.ts
@@ -0,0 +1,23 @@
+import { defineConfig, devices } from '@playwright/test';
+
+export default defineConfig({
+  testDir: './e2e',
+  fullyParallel: true,
+  reporter: [['list']],
+  use: {
+    baseURL: 'http://localhost:3001',
+    trace: 'on-first-retry',
+  },
+  webServer: {
+    command: 'npm run dev',
+    url: 'http://localhost:3001',
+    reuseExistingServer: true,
+    timeout: 120_000,
+  },
+  projects: [
+    {
+      name: 'chromium',
+      use: { ...devices['Desktop Chrome'] },
+    },
+  ],
+});
diff --git a/prisma.config.ts b/prisma.config.ts
new file mode 100644
index 0000000..ed2cc2c
--- /dev/null
+++ b/prisma.config.ts
@@ -0,0 +1,13 @@
+import 'dotenv/config';
+import { defineConfig } from 'prisma/config';
+
+export default defineConfig({
+  schema: 'server/prisma/schema.prisma',
+  migrations: {
+    path: 'server/prisma/migrations',
+    seed: 'tsx server/prisma/seed.ts',
+  },
+  datasource: {
+    url: process.env.DATABASE_URL,
+  },
+});
diff --git a/public/favicon.ico b/public/favicon.ico
new file mode 100644
index 0000000..6b9ee7e
Binary files /dev/null and b/public/favicon.ico differ
diff --git a/public/logo_square.png b/public/logo_square.png
new file mode 100644
index 0000000..6b9ee7e
Binary files /dev/null and b/public/logo_square.png differ
diff --git a/server/prisma/migrations/20260501145311_init/migration.sql b/server/prisma/migrations/20260501145311_init/migration.sql
new file mode 100644
index 0000000..5afc4e5
--- /dev/null
+++ b/server/prisma/migrations/20260501145311_init/migration.sql
@@ -0,0 +1,299 @@
+-- CreateEnum
+CREATE TYPE "UserRole" AS ENUM ('SUPER', 'ADMIN', 'DOCTOR');
+
+-- CreateEnum
+CREATE TYPE "UserStatus" AS ENUM ('ACTIVE', 'INACTIVE');
+
+-- CreateEnum
+CREATE TYPE "ReportStatus" AS ENUM ('DRAFT', 'COMPLETED');
+
+-- CreateEnum
+CREATE TYPE "TemplateScope" AS ENUM ('DEPARTMENT', 'PERSONAL');
+
+-- CreateEnum
+CREATE TYPE "FileKind" AS ENUM ('SIGNATURE', 'TEMPLATE_ASSET', 'VIDEO', 'FRAME', 'REPORT_EXPORT');
+
+-- CreateTable
+CREATE TABLE "Tenant" (
+    "id" TEXT NOT NULL,
+    "name" TEXT NOT NULL,
+    "code" TEXT NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "Tenant_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "Department" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "name" TEXT NOT NULL,
+    "code" TEXT NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "Department_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "User" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "departmentId" TEXT NOT NULL,
+    "username" TEXT NOT NULL,
+    "passwordHash" TEXT NOT NULL,
+    "role" "UserRole" NOT NULL,
+    "name" TEXT NOT NULL,
+    "status" "UserStatus" NOT NULL DEFAULT 'ACTIVE',
+    "phone" TEXT,
+    "email" TEXT,
+    "signatureFileId" TEXT,
+    "lastLoginAt" TIMESTAMP(3),
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "User_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "UserSession" (
+    "id" TEXT NOT NULL,
+    "userId" TEXT NOT NULL,
+    "tokenHash" TEXT NOT NULL,
+    "expiresAt" TIMESTAMP(3) NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "UserSession_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "Template" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "name" TEXT NOT NULL,
+    "description" TEXT,
+    "content" TEXT NOT NULL,
+    "fields" JSONB NOT NULL DEFAULT '[]',
+    "scope" "TemplateScope" NOT NULL,
+    "ownerDepartmentId" TEXT,
+    "ownerUserId" TEXT,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "Template_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "TemplateDepartmentPermission" (
+    "id" TEXT NOT NULL,
+    "templateId" TEXT NOT NULL,
+    "departmentId" TEXT NOT NULL,
+    "canUse" BOOLEAN NOT NULL DEFAULT true,
+    "canManage" BOOLEAN NOT NULL DEFAULT false,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "TemplateDepartmentPermission_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "Report" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "departmentId" TEXT NOT NULL,
+    "authorId" TEXT NOT NULL,
+    "templateId" TEXT,
+    "title" TEXT NOT NULL,
+    "patientName" TEXT NOT NULL,
+    "hospitalId" TEXT NOT NULL,
+    "status" "ReportStatus" NOT NULL DEFAULT 'DRAFT',
+    "revision" INTEGER NOT NULL DEFAULT 1,
+    "content" TEXT NOT NULL,
+    "deletedAt" TIMESTAMP(3),
+    "deletedBy" TEXT,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "Report_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "ReportHistory" (
+    "id" TEXT NOT NULL,
+    "reportId" TEXT NOT NULL,
+    "revision" INTEGER NOT NULL,
+    "content" TEXT NOT NULL,
+    "action" TEXT NOT NULL,
+    "updatedById" TEXT NOT NULL,
+    "updatedBy" TEXT NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "ReportHistory_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "FileResource" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "ownerId" TEXT,
+    "reportId" TEXT,
+    "kind" "FileKind" NOT NULL,
+    "filename" TEXT NOT NULL,
+    "mimeType" TEXT NOT NULL,
+    "size" INTEGER NOT NULL,
+    "storageKey" TEXT NOT NULL,
+    "checksum" TEXT,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "FileResource_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "SystemSetting" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "scope" TEXT NOT NULL,
+    "departmentId" TEXT,
+    "key" TEXT NOT NULL,
+    "value" JSONB NOT NULL,
+    "secretValue" TEXT,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "SystemSetting_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateTable
+CREATE TABLE "AuditLog" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "actorUserId" TEXT,
+    "actorRole" TEXT,
+    "action" TEXT NOT NULL,
+    "targetType" TEXT NOT NULL,
+    "targetId" TEXT,
+    "departmentId" TEXT,
+    "ip" TEXT,
+    "userAgent" TEXT,
+    "metadata" JSONB,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "AuditLog_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "Tenant_code_key" ON "Tenant"("code");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "Department_tenantId_code_key" ON "Department"("tenantId", "code");
+
+-- CreateIndex
+CREATE INDEX "User_tenantId_departmentId_role_idx" ON "User"("tenantId", "departmentId", "role");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "User_tenantId_username_key" ON "User"("tenantId", "username");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "UserSession_tokenHash_key" ON "UserSession"("tokenHash");
+
+-- CreateIndex
+CREATE INDEX "Template_tenantId_scope_idx" ON "Template"("tenantId", "scope");
+
+-- CreateIndex
+CREATE INDEX "Template_tenantId_ownerDepartmentId_idx" ON "Template"("tenantId", "ownerDepartmentId");
+
+-- CreateIndex
+CREATE INDEX "Template_tenantId_ownerUserId_idx" ON "Template"("tenantId", "ownerUserId");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "TemplateDepartmentPermission_templateId_departmentId_key" ON "TemplateDepartmentPermission"("templateId", "departmentId");
+
+-- CreateIndex
+CREATE INDEX "Report_tenantId_departmentId_status_idx" ON "Report"("tenantId", "departmentId", "status");
+
+-- CreateIndex
+CREATE INDEX "Report_tenantId_authorId_idx" ON "Report"("tenantId", "authorId");
+
+-- CreateIndex
+CREATE INDEX "Report_tenantId_deletedAt_idx" ON "Report"("tenantId", "deletedAt");
+
+-- CreateIndex
+CREATE INDEX "ReportHistory_reportId_revision_idx" ON "ReportHistory"("reportId", "revision");
+
+-- CreateIndex
+CREATE INDEX "FileResource_tenantId_kind_idx" ON "FileResource"("tenantId", "kind");
+
+-- CreateIndex
+CREATE INDEX "FileResource_tenantId_reportId_idx" ON "FileResource"("tenantId", "reportId");
+
+-- CreateIndex
+CREATE UNIQUE INDEX "SystemSetting_tenantId_scope_departmentId_key_key" ON "SystemSetting"("tenantId", "scope", "departmentId", "key");
+
+-- CreateIndex
+CREATE INDEX "AuditLog_tenantId_action_idx" ON "AuditLog"("tenantId", "action");
+
+-- CreateIndex
+CREATE INDEX "AuditLog_tenantId_actorUserId_idx" ON "AuditLog"("tenantId", "actorUserId");
+
+-- CreateIndex
+CREATE INDEX "AuditLog_tenantId_targetType_targetId_idx" ON "AuditLog"("tenantId", "targetType", "targetId");
+
+-- AddForeignKey
+ALTER TABLE "Department" ADD CONSTRAINT "Department_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "User" ADD CONSTRAINT "User_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "User" ADD CONSTRAINT "User_departmentId_fkey" FOREIGN KEY ("departmentId") REFERENCES "Department"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "UserSession" ADD CONSTRAINT "UserSession_userId_fkey" FOREIGN KEY ("userId") REFERENCES "User"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Template" ADD CONSTRAINT "Template_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Template" ADD CONSTRAINT "Template_ownerDepartmentId_fkey" FOREIGN KEY ("ownerDepartmentId") REFERENCES "Department"("id") ON DELETE SET NULL ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Template" ADD CONSTRAINT "Template_ownerUserId_fkey" FOREIGN KEY ("ownerUserId") REFERENCES "User"("id") ON DELETE SET NULL ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "TemplateDepartmentPermission" ADD CONSTRAINT "TemplateDepartmentPermission_templateId_fkey" FOREIGN KEY ("templateId") REFERENCES "Template"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "TemplateDepartmentPermission" ADD CONSTRAINT "TemplateDepartmentPermission_departmentId_fkey" FOREIGN KEY ("departmentId") REFERENCES "Department"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Report" ADD CONSTRAINT "Report_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Report" ADD CONSTRAINT "Report_departmentId_fkey" FOREIGN KEY ("departmentId") REFERENCES "Department"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Report" ADD CONSTRAINT "Report_authorId_fkey" FOREIGN KEY ("authorId") REFERENCES "User"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "Report" ADD CONSTRAINT "Report_templateId_fkey" FOREIGN KEY ("templateId") REFERENCES "Template"("id") ON DELETE SET NULL ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "ReportHistory" ADD CONSTRAINT "ReportHistory_reportId_fkey" FOREIGN KEY ("reportId") REFERENCES "Report"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "FileResource" ADD CONSTRAINT "FileResource_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "FileResource" ADD CONSTRAINT "FileResource_reportId_fkey" FOREIGN KEY ("reportId") REFERENCES "Report"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "SystemSetting" ADD CONSTRAINT "SystemSetting_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "SystemSetting" ADD CONSTRAINT "SystemSetting_departmentId_fkey" FOREIGN KEY ("departmentId") REFERENCES "Department"("id") ON DELETE SET NULL ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "AuditLog" ADD CONSTRAINT "AuditLog_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE "AuditLog" ADD CONSTRAINT "AuditLog_actorUserId_fkey" FOREIGN KEY ("actorUserId") REFERENCES "User"("id") ON DELETE SET NULL ON UPDATE CASCADE;
diff --git a/server/prisma/migrations/20260501153200_add_report_metadata/migration.sql b/server/prisma/migrations/20260501153200_add_report_metadata/migration.sql
new file mode 100644
index 0000000..d139725
--- /dev/null
+++ b/server/prisma/migrations/20260501153200_add_report_metadata/migration.sql
@@ -0,0 +1,2 @@
+-- Add a flexible compatibility payload for the existing frontend report object.
+ALTER TABLE "Report" ADD COLUMN "metadata" JSONB NOT NULL DEFAULT '{}';
diff --git a/server/prisma/migrations/20260502011500_add_report_media/migration.sql b/server/prisma/migrations/20260502011500_add_report_media/migration.sql
new file mode 100644
index 0000000..5fd6e4d
--- /dev/null
+++ b/server/prisma/migrations/20260502011500_add_report_media/migration.sql
@@ -0,0 +1,130 @@
+-- Split report video/keyframe references out of Report.metadata.
+CREATE TYPE "ReportMediaKind" AS ENUM ('VIDEO', 'FRAME');
+
+CREATE TABLE "ReportMedia" (
+    "id" TEXT NOT NULL,
+    "tenantId" TEXT NOT NULL,
+    "reportId" TEXT NOT NULL,
+    "fileId" TEXT,
+    "kind" "ReportMediaKind" NOT NULL,
+    "clientId" TEXT NOT NULL,
+    "name" TEXT,
+    "url" TEXT,
+    "time" DOUBLE PRECISION,
+    "videoIndex" INTEGER,
+    "videoName" TEXT,
+    "sortOrder" INTEGER NOT NULL DEFAULT 0,
+    "metadata" JSONB NOT NULL DEFAULT '{}',
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "ReportMedia_pkey" PRIMARY KEY ("id")
+);
+
+CREATE INDEX "ReportMedia_tenantId_reportId_kind_idx" ON "ReportMedia"("tenantId", "reportId", "kind");
+CREATE INDEX "ReportMedia_tenantId_fileId_idx" ON "ReportMedia"("tenantId", "fileId");
+
+ALTER TABLE "ReportMedia" ADD CONSTRAINT "ReportMedia_tenantId_fkey" FOREIGN KEY ("tenantId") REFERENCES "Tenant"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+ALTER TABLE "ReportMedia" ADD CONSTRAINT "ReportMedia_reportId_fkey" FOREIGN KEY ("reportId") REFERENCES "Report"("id") ON DELETE CASCADE ON UPDATE CASCADE;
+ALTER TABLE "ReportMedia" ADD CONSTRAINT "ReportMedia_fileId_fkey" FOREIGN KEY ("fileId") REFERENCES "FileResource"("id") ON DELETE SET NULL ON UPDATE CASCADE;
+
+INSERT INTO "ReportMedia" (
+    "id",
+    "tenantId",
+    "reportId",
+    "fileId",
+    "kind",
+    "clientId",
+    "name",
+    "url",
+    "sortOrder",
+    "metadata",
+    "createdAt",
+    "updatedAt"
+)
+SELECT
+    concat('rm_', r."id", '_video_', video."ordinality"),
+    r."tenantId",
+    r."id",
+    f."id",
+    'VIDEO'::"ReportMediaKind",
+    COALESCE(video."value"->>'id', concat('video-', video."ordinality")),
+    video."value"->>'name',
+    video."value"->>'url',
+    (video."ordinality" - 1)::integer,
+    jsonb_strip_nulls(jsonb_build_object(
+        'duration', video."value"->'duration',
+        'legacyFileId', video."value"->>'fileId'
+    )),
+    r."createdAt",
+    r."updatedAt"
+FROM "Report" r
+CROSS JOIN LATERAL jsonb_array_elements(
+    CASE
+        WHEN jsonb_typeof(r."metadata"->'videos') = 'array' THEN r."metadata"->'videos'
+        ELSE '[]'::jsonb
+    END
+) WITH ORDINALITY AS video("value", "ordinality")
+LEFT JOIN "FileResource" f
+    ON f."id" = video."value"->>'fileId'
+    AND f."tenantId" = r."tenantId";
+
+INSERT INTO "ReportMedia" (
+    "id",
+    "tenantId",
+    "reportId",
+    "fileId",
+    "kind",
+    "clientId",
+    "url",
+    "time",
+    "videoIndex",
+    "videoName",
+    "sortOrder",
+    "metadata",
+    "createdAt",
+    "updatedAt"
+)
+SELECT
+    concat('rm_', r."id", '_frame_', frame."ordinality"),
+    r."tenantId",
+    r."id",
+    f."id",
+    'FRAME'::"ReportMediaKind",
+    COALESCE(frame."value"->>'id', concat('frame-', frame."ordinality")),
+    frame."value"->>'dataUrl',
+    CASE
+        WHEN jsonb_typeof(frame."value"->'time') = 'number' THEN (frame."value"->>'time')::double precision
+        ELSE NULL
+    END,
+    CASE
+        WHEN jsonb_typeof(frame."value"->'videoIndex') = 'number' THEN (frame."value"->>'videoIndex')::integer
+        ELSE NULL
+    END,
+    frame."value"->>'videoName',
+    (frame."ordinality" - 1)::integer,
+    jsonb_strip_nulls(jsonb_build_object(
+        'timeFormatted', frame."value"->>'timeFormatted',
+        'isManual', frame."value"->'isManual',
+        'manualOrder', frame."value"->'manualOrder',
+        'legacyFileId', frame."value"->>'fileId'
+    )),
+    r."createdAt",
+    r."updatedAt"
+FROM "Report" r
+CROSS JOIN LATERAL jsonb_array_elements(
+    CASE
+        WHEN jsonb_typeof(r."metadata"->'capturedFrames') = 'array' THEN r."metadata"->'capturedFrames'
+        ELSE '[]'::jsonb
+    END
+) WITH ORDINALITY AS frame("value", "ordinality")
+LEFT JOIN "FileResource" f
+    ON f."id" = frame."value"->>'fileId'
+    AND f."tenantId" = r."tenantId";
+
+UPDATE "FileResource" f
+SET "reportId" = media."reportId"
+FROM "ReportMedia" media
+WHERE f."id" = media."fileId"
+  AND f."tenantId" = media."tenantId"
+  AND f."reportId" IS NULL;
diff --git a/server/prisma/migrations/20260502020000_add_app_session/migration.sql b/server/prisma/migrations/20260502020000_add_app_session/migration.sql
new file mode 100644
index 0000000..41a508f
--- /dev/null
+++ b/server/prisma/migrations/20260502020000_add_app_session/migration.sql
@@ -0,0 +1,12 @@
+-- Persist Express sessions outside the Node.js process.
+CREATE TABLE "AppSession" (
+    "id" TEXT NOT NULL,
+    "data" JSONB NOT NULL,
+    "expiresAt" TIMESTAMP(3) NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "updatedAt" TIMESTAMP(3) NOT NULL,
+
+    CONSTRAINT "AppSession_pkey" PRIMARY KEY ("id")
+);
+
+CREATE INDEX "AppSession_expiresAt_idx" ON "AppSession"("expiresAt");
diff --git a/server/prisma/migrations/migration_lock.toml b/server/prisma/migrations/migration_lock.toml
new file mode 100644
index 0000000..044d57c
--- /dev/null
+++ b/server/prisma/migrations/migration_lock.toml
@@ -0,0 +1,3 @@
+# Please do not edit this file manually
+# It should be added in your version-control system (e.g., Git)
+provider = "postgresql"
diff --git a/server/prisma/schema.prisma b/server/prisma/schema.prisma
new file mode 100644
index 0000000..2dbec59
--- /dev/null
+++ b/server/prisma/schema.prisma
@@ -0,0 +1,280 @@
+generator client {
+  provider = "prisma-client-js"
+}
+
+datasource db {
+  provider = "postgresql"
+}
+
+enum UserRole {
+  SUPER
+  ADMIN
+  DOCTOR
+}
+
+enum UserStatus {
+  ACTIVE
+  INACTIVE
+}
+
+enum ReportStatus {
+  DRAFT
+  COMPLETED
+}
+
+enum TemplateScope {
+  DEPARTMENT
+  PERSONAL
+}
+
+enum FileKind {
+  SIGNATURE
+  TEMPLATE_ASSET
+  VIDEO
+  FRAME
+  REPORT_EXPORT
+}
+
+enum ReportMediaKind {
+  VIDEO
+  FRAME
+}
+
+model Tenant {
+  id          String       @id @default(cuid())
+  name        String
+  code        String       @unique
+  departments Department[]
+  users       User[]
+  reports     Report[]
+  reportMedia ReportMedia[]
+  templates   Template[]
+  files       FileResource[]
+  auditLogs   AuditLog[]
+  settings    SystemSetting[]
+  createdAt   DateTime     @default(now())
+  updatedAt   DateTime     @updatedAt
+}
+
+model Department {
+  id          String       @id @default(cuid())
+  tenantId    String
+  tenant      Tenant       @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  name        String
+  code        String
+  users       User[]
+  reports     Report[]
+  templates   Template[]   @relation("TemplateOwnerDepartment")
+  permissions TemplateDepartmentPermission[]
+  settings    SystemSetting[]
+  createdAt   DateTime     @default(now())
+  updatedAt   DateTime     @updatedAt
+
+  @@unique([tenantId, code])
+}
+
+model User {
+  id              String       @id @default(cuid())
+  tenantId        String
+  tenant          Tenant       @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  departmentId    String
+  department      Department   @relation(fields: [departmentId], references: [id])
+  username        String
+  passwordHash    String
+  role            UserRole
+  name            String
+  status          UserStatus   @default(ACTIVE)
+  phone           String?
+  email           String?
+  signatureFileId String?
+  reports         Report[]     @relation("ReportAuthor")
+  sessions        UserSession[]
+  personalTemplates Template[] @relation("PersonalTemplates")
+  auditLogs       AuditLog[]
+  lastLoginAt     DateTime?
+  createdAt       DateTime     @default(now())
+  updatedAt       DateTime     @updatedAt
+
+  @@unique([tenantId, username])
+  @@index([tenantId, departmentId, role])
+}
+
+model UserSession {
+  id        String   @id @default(cuid())
+  userId    String
+  user      User     @relation(fields: [userId], references: [id], onDelete: Cascade)
+  tokenHash String   @unique
+  expiresAt DateTime
+  createdAt DateTime @default(now())
+}
+
+model AppSession {
+  id        String   @id
+  data      Json
+  expiresAt DateTime
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  @@index([expiresAt])
+}
+
+model Template {
+  id                  String       @id @default(cuid())
+  tenantId            String
+  tenant              Tenant       @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  name                String
+  description         String?
+  content             String
+  fields              Json         @default("[]")
+  scope               TemplateScope
+  ownerDepartmentId   String?
+  ownerDepartment     Department?  @relation("TemplateOwnerDepartment", fields: [ownerDepartmentId], references: [id])
+  ownerUserId         String?
+  ownerUser           User?        @relation("PersonalTemplates", fields: [ownerUserId], references: [id])
+  permissions         TemplateDepartmentPermission[]
+  reports             Report[]
+  createdAt           DateTime     @default(now())
+  updatedAt           DateTime     @updatedAt
+
+  @@index([tenantId, scope])
+  @@index([tenantId, ownerDepartmentId])
+  @@index([tenantId, ownerUserId])
+}
+
+model TemplateDepartmentPermission {
+  id           String     @id @default(cuid())
+  templateId   String
+  template     Template   @relation(fields: [templateId], references: [id], onDelete: Cascade)
+  departmentId String
+  department   Department @relation(fields: [departmentId], references: [id], onDelete: Cascade)
+  canUse       Boolean    @default(true)
+  canManage    Boolean    @default(false)
+  createdAt    DateTime   @default(now())
+
+  @@unique([templateId, departmentId])
+}
+
+model Report {
+  id            String        @id @default(cuid())
+  tenantId      String
+  tenant        Tenant        @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  departmentId  String
+  department    Department    @relation(fields: [departmentId], references: [id])
+  authorId      String
+  author        User          @relation("ReportAuthor", fields: [authorId], references: [id])
+  templateId    String?
+  template      Template?     @relation(fields: [templateId], references: [id])
+  title         String
+  patientName   String
+  hospitalId    String
+  status        ReportStatus  @default(DRAFT)
+  revision      Int           @default(1)
+  content       String
+  metadata      Json          @default("{}")
+  histories     ReportHistory[]
+  files         FileResource[]
+  media         ReportMedia[]
+  deletedAt     DateTime?
+  deletedBy     String?
+  createdAt     DateTime      @default(now())
+  updatedAt     DateTime      @updatedAt
+
+  @@index([tenantId, departmentId, status])
+  @@index([tenantId, authorId])
+  @@index([tenantId, deletedAt])
+}
+
+model ReportHistory {
+  id          String   @id @default(cuid())
+  reportId    String
+  report      Report   @relation(fields: [reportId], references: [id], onDelete: Cascade)
+  revision    Int
+  content     String
+  action      String
+  updatedById String
+  updatedBy   String
+  createdAt   DateTime @default(now())
+
+  @@index([reportId, revision])
+}
+
+model FileResource {
+  id          String    @id @default(cuid())
+  tenantId    String
+  tenant      Tenant    @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  ownerId     String?
+  reportId    String?
+  report      Report?   @relation(fields: [reportId], references: [id], onDelete: Cascade)
+  reportMedia ReportMedia[]
+  kind        FileKind
+  filename    String
+  mimeType    String
+  size        Int
+  storageKey  String
+  checksum    String?
+  createdAt   DateTime  @default(now())
+
+  @@index([tenantId, kind])
+  @@index([tenantId, reportId])
+}
+
+model ReportMedia {
+  id          String          @id @default(cuid())
+  tenantId    String
+  tenant      Tenant          @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  reportId    String
+  report      Report          @relation(fields: [reportId], references: [id], onDelete: Cascade)
+  fileId      String?
+  file        FileResource?    @relation(fields: [fileId], references: [id], onDelete: SetNull)
+  kind        ReportMediaKind
+  clientId    String
+  name        String?
+  url         String?
+  time        Float?
+  videoIndex  Int?
+  videoName   String?
+  sortOrder   Int             @default(0)
+  metadata    Json            @default("{}")
+  createdAt   DateTime        @default(now())
+  updatedAt   DateTime        @updatedAt
+
+  @@index([tenantId, reportId, kind])
+  @@index([tenantId, fileId])
+}
+
+model SystemSetting {
+  id           String      @id @default(cuid())
+  tenantId     String
+  tenant       Tenant      @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  scope        String
+  departmentId String?
+  department   Department? @relation(fields: [departmentId], references: [id])
+  key          String
+  value        Json
+  secretValue  String?
+  createdAt    DateTime    @default(now())
+  updatedAt    DateTime    @updatedAt
+
+  @@unique([tenantId, scope, departmentId, key])
+}
+
+model AuditLog {
+  id           String   @id @default(cuid())
+  tenantId     String
+  tenant       Tenant   @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  actorUserId  String?
+  actor        User?    @relation(fields: [actorUserId], references: [id])
+  actorRole    String?
+  action       String
+  targetType   String
+  targetId     String?
+  departmentId String?
+  ip           String?
+  userAgent    String?
+  metadata     Json?
+  createdAt    DateTime @default(now())
+
+  @@index([tenantId, action])
+  @@index([tenantId, actorUserId])
+  @@index([tenantId, targetType, targetId])
+}
diff --git a/server/prisma/seed.ts b/server/prisma/seed.ts
new file mode 100644
index 0000000..77aa71c
--- /dev/null
+++ b/server/prisma/seed.ts
@@ -0,0 +1,153 @@
+import { PrismaClient } from '@prisma/client';
+import { PrismaPg } from '@prisma/adapter-pg';
+import argon2 from 'argon2';
+
+if (!process.env.DATABASE_URL) {
+  throw new Error('DATABASE_URL is required to seed the database');
+}
+
+const prisma = new PrismaClient({
+  adapter: new PrismaPg({
+    connectionString: process.env.DATABASE_URL,
+  }),
+});
+
+const defaultTemplateContent = `
+<h1 style="text-align:center;">手术记录</h1>
+<p>患者姓名：<span class="field-value" data-bind="patientName" contenteditable="true"></span></p>
+<p>住院号：<span class="field-value" data-bind="hospitalId" contenteditable="true"></span></p>
+<p>手术名称：<span class="field-value" data-bind="title" contenteditable="true"></span></p>
+<div class="ai-region" data-ai-id="手术步骤" data-ai-title="手术步骤">
+  <div class="ai-content"><p>请在此处填写手术步骤。</p></div>
+</div>
+`;
+
+const main = async () => {
+  const tenant = await prisma.tenant.upsert({
+    where: { code: 'default' },
+    update: {},
+    create: {
+      code: 'default',
+      name: '默认医院',
+    },
+  });
+
+  const adminDepartment = await prisma.department.upsert({
+    where: { tenantId_code: { tenantId: tenant.id, code: 'admin' } },
+    update: {},
+    create: {
+      tenantId: tenant.id,
+      code: 'admin',
+      name: '管理部门',
+    },
+  });
+
+  const surgeryDepartment = await prisma.department.upsert({
+    where: { tenantId_code: { tenantId: tenant.id, code: 'surgery' } },
+    update: {},
+    create: {
+      tenantId: tenant.id,
+      code: 'surgery',
+      name: '外科',
+    },
+  });
+
+  const passwordHash = await argon2.hash('123456');
+
+  const adminUser = await prisma.user.upsert({
+    where: { tenantId_username: { tenantId: tenant.id, username: 'admin' } },
+    update: {},
+    create: {
+      tenantId: tenant.id,
+      departmentId: adminDepartment.id,
+      username: 'admin',
+      passwordHash,
+      role: 'SUPER',
+      name: '超级管理员',
+    },
+  });
+
+  await prisma.user.upsert({
+    where: { tenantId_username: { tenantId: tenant.id, username: 'manager' } },
+    update: {},
+    create: {
+      tenantId: tenant.id,
+      departmentId: surgeryDepartment.id,
+      username: 'manager',
+      passwordHash,
+      role: 'ADMIN',
+      name: '科室管理员',
+    },
+  });
+
+  await prisma.user.upsert({
+    where: { tenantId_username: { tenantId: tenant.id, username: '0001' } },
+    update: {},
+    create: {
+      tenantId: tenant.id,
+      departmentId: surgeryDepartment.id,
+      username: '0001',
+      passwordHash,
+      role: 'DOCTOR',
+      name: '张医生',
+    },
+  });
+
+  const defaultTemplate = await prisma.template.upsert({
+    where: { id: 'tpl_default_surgery' },
+    update: {},
+    create: {
+      id: 'tpl_default_surgery',
+      tenantId: tenant.id,
+      name: '腹腔镜胆囊切除术报告',
+      description: '标准手术记录模板',
+      content: defaultTemplateContent,
+      fields: [],
+      scope: 'DEPARTMENT',
+      ownerDepartmentId: surgeryDepartment.id,
+      ownerUserId: null,
+    },
+  });
+
+  await prisma.templateDepartmentPermission.upsert({
+    where: {
+      templateId_departmentId: {
+        templateId: defaultTemplate.id,
+        departmentId: surgeryDepartment.id,
+      },
+    },
+    update: {
+      canUse: true,
+      canManage: true,
+    },
+    create: {
+      templateId: defaultTemplate.id,
+      departmentId: surgeryDepartment.id,
+      canUse: true,
+      canManage: true,
+    },
+  });
+
+  await prisma.auditLog.create({
+    data: {
+      tenantId: tenant.id,
+      actorUserId: adminUser.id,
+      actorRole: 'super',
+      action: 'seed.default_template',
+      targetType: 'template',
+      targetId: defaultTemplate.id,
+      departmentId: surgeryDepartment.id,
+      metadata: { name: defaultTemplate.name },
+    },
+  }).catch(() => {});
+};
+
+main()
+  .then(async () => {
+    await prisma.$disconnect();
+  })
+  .catch(async (error) => {
+    console.error(error);
+    await prisma.$disconnect();
+    process.exit(1);
+  });
diff --git a/server/src/ai/ai.controller.ts b/server/src/ai/ai.controller.ts
new file mode 100644
index 0000000..b682475
--- /dev/null
+++ b/server/src/ai/ai.controller.ts
@@ -0,0 +1,25 @@
+import { Body, Controller, Get, Post, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { AiService } from './ai.service.js';
+
+@Controller('ai')
+export class AiController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly aiService: AiService,
+  ) {}
+
+  @Get('models')
+  async listModels(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.aiService.listModels(actor) };
+  }
+
+  @Post('chat')
+  async chat(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.aiService.chat(actor, body) };
+  }
+}
diff --git a/server/src/ai/ai.module.ts b/server/src/ai/ai.module.ts
new file mode 100644
index 0000000..d458b53
--- /dev/null
+++ b/server/src/ai/ai.module.ts
@@ -0,0 +1,13 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { SettingsModule } from '../settings/settings.module.js';
+import { AiController } from './ai.controller.js';
+import { AiService } from './ai.service.js';
+
+@Module({
+  imports: [AuthModule, PrismaModule, SettingsModule],
+  controllers: [AiController],
+  providers: [AiService],
+})
+export class AiModule {}
diff --git a/server/src/ai/ai.schemas.test.ts b/server/src/ai/ai.schemas.test.ts
new file mode 100644
index 0000000..96ae9f3
--- /dev/null
+++ b/server/src/ai/ai.schemas.test.ts
@@ -0,0 +1,28 @@
+import { describe, expect, it } from 'vitest';
+import { aiChatSchema } from './ai.schemas';
+
+describe('AI schemas', () => {
+  it('accepts OpenAI-compatible chat payloads with multimodal content', () => {
+    const parsed = aiChatSchema.parse({
+      model: 'ignored-by-proxy',
+      messages: [
+        { role: 'system', content: 'system prompt' },
+        {
+          role: 'user',
+          content: [
+            { type: 'image_url', image_url: { url: 'data:image/png;base64,AA==' } },
+            { type: 'text', text: '生成报告' },
+          ],
+        },
+      ],
+      temperature: 0.3,
+    });
+
+    expect(parsed.messages).toHaveLength(2);
+    expect(parsed.temperature).toBe(0.3);
+  });
+
+  it('rejects empty message arrays', () => {
+    expect(() => aiChatSchema.parse({ messages: [] })).toThrow();
+  });
+});
diff --git a/server/src/ai/ai.schemas.ts b/server/src/ai/ai.schemas.ts
new file mode 100644
index 0000000..9420bf6
--- /dev/null
+++ b/server/src/ai/ai.schemas.ts
@@ -0,0 +1,12 @@
+import { z } from 'zod';
+
+export const aiChatSchema = z.object({
+  messages: z.array(z.unknown()).min(1, '消息不能为空'),
+  model: z.string().optional(),
+  temperature: z.number().optional(),
+  top_p: z.number().optional(),
+  presence_penalty: z.number().optional(),
+  frequency_penalty: z.number().optional(),
+}).passthrough();
+
+export type AiChatInput = z.infer<typeof aiChatSchema>;
diff --git a/server/src/ai/ai.service.ts b/server/src/ai/ai.service.ts
new file mode 100644
index 0000000..636e0e3
--- /dev/null
+++ b/server/src/ai/ai.service.ts
@@ -0,0 +1,126 @@
+import { BadRequestException, Injectable } from '@nestjs/common';
+import type { SafeUser } from '../auth/auth.types.js';
+import { SettingsService } from '../settings/settings.service.js';
+import { aiChatSchema } from './ai.schemas.js';
+
+interface AiProvider {
+  endpoint: string;
+  apiKey: string;
+  modelName: string;
+}
+
+@Injectable()
+export class AiService {
+  constructor(private readonly settingsService: SettingsService) {}
+
+  async listModels(actor: SafeUser) {
+    const provider = await this.getActiveProvider(actor);
+    const response = await this.fetchProvider(`${provider.endpoint}/models`, {
+      method: 'GET',
+      headers: this.headers(provider),
+    });
+
+    const payload = await this.parseProviderResponse(response);
+    if (!response.ok) {
+      throw new BadRequestException(this.formatProviderError(response.status, payload));
+    }
+
+    const models = Array.isArray((payload as { data?: unknown[] }).data)
+      ? ((payload as { data: Array<{ id?: string }> }).data)
+          .map((model) => model.id)
+          .filter((id): id is string => Boolean(id))
+      : [];
+
+    return {
+      models,
+      provider: {
+        endpoint: provider.endpoint,
+        modelName: provider.modelName,
+      },
+      raw: payload,
+    };
+  }
+
+  async chat(actor: SafeUser, rawInput: unknown) {
+    const result = aiChatSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const provider = await this.getActiveProvider(actor);
+    const input = result.data;
+    const payload = {
+      ...input,
+      model: provider.modelName || input.model,
+    };
+
+    const response = await this.fetchProvider(`${provider.endpoint}/chat/completions`, {
+      method: 'POST',
+      headers: this.headers(provider),
+      body: JSON.stringify(payload),
+    });
+    const responsePayload = await this.parseProviderResponse(response);
+
+    if (!response.ok) {
+      throw new BadRequestException(this.formatProviderError(response.status, responsePayload));
+    }
+
+    return responsePayload;
+  }
+
+  private async getActiveProvider(actor: SafeUser): Promise<AiProvider> {
+    const settings = await this.settingsService.getSystemSettings(actor, { includeSecrets: true });
+    const activeProvider = settings.activeAiProvider || 'kimi';
+    const provider = settings.aiProviders?.[activeProvider];
+    const endpoint = provider?.endpoint?.replace(/\/+$/, '') || '';
+    const apiKey = provider?.apiKey || '';
+    const modelName = provider?.modelName || '';
+
+    if (!endpoint) {
+      throw new BadRequestException('尚未配置 AI 接口地址');
+    }
+    if (!apiKey) {
+      throw new BadRequestException('尚未配置 AI API Key');
+    }
+    if (!modelName) {
+      throw new BadRequestException('尚未配置 AI 模型名称');
+    }
+
+    return { endpoint, apiKey, modelName };
+  }
+
+  private headers(provider: AiProvider) {
+    return {
+      'Content-Type': 'application/json',
+      Authorization: `Bearer ${provider.apiKey}`,
+    };
+  }
+
+  private async parseProviderResponse(response: Response) {
+    const text = await response.text();
+    if (!text) return null;
+    try {
+      return JSON.parse(text) as unknown;
+    } catch {
+      return { message: text };
+    }
+  }
+
+  private async fetchProvider(url: string, init: RequestInit) {
+    try {
+      return await fetch(url, init);
+    } catch (error) {
+      throw new BadRequestException(`AI 服务连接失败：${error instanceof Error ? error.message : String(error)}`);
+    }
+  }
+
+  private formatProviderError(status: number, payload: unknown) {
+    const message =
+      typeof payload === 'object' && payload !== null && 'error' in payload
+        ? JSON.stringify((payload as { error: unknown }).error)
+        : typeof payload === 'object' && payload !== null && 'message' in payload
+          ? String((payload as { message: unknown }).message)
+          : JSON.stringify(payload);
+    return `AI 服务请求失败：${status}${message ? ` - ${message}` : ''}`;
+  }
+}
diff --git a/server/src/app.module.ts b/server/src/app.module.ts
new file mode 100644
index 0000000..0177cc0
--- /dev/null
+++ b/server/src/app.module.ts
@@ -0,0 +1,37 @@
+import { Module } from '@nestjs/common';
+import { ConfigModule } from '@nestjs/config';
+import { AiModule } from './ai/ai.module.js';
+import { AuditModule } from './audit/audit.module.js';
+import { AuthModule } from './auth/auth.module.js';
+import { DashboardModule } from './dashboard/dashboard.module.js';
+import { FilesModule } from './files/files.module.js';
+import { HealthModule } from './health/health.module.js';
+import { LibraryModule } from './library/library.module.js';
+import { PermissionsModule } from './permissions/permissions.module.js';
+import { PrismaModule } from './prisma/prisma.module.js';
+import { ReportsModule } from './reports/reports.module.js';
+import { SettingsModule } from './settings/settings.module.js';
+import { SpeechModule } from './speech/speech.module.js';
+import { TemplatesModule } from './templates/templates.module.js';
+import { UsersModule } from './users/users.module.js';
+
+@Module({
+  imports: [
+    ConfigModule.forRoot({ isGlobal: true }),
+    PrismaModule,
+    AuditModule,
+    HealthModule,
+    DashboardModule,
+    LibraryModule,
+    AuthModule,
+    ReportsModule,
+    TemplatesModule,
+    UsersModule,
+    SettingsModule,
+    FilesModule,
+    AiModule,
+    SpeechModule,
+    PermissionsModule,
+  ],
+})
+export class AppModule {}
diff --git a/server/src/audit/audit.module.ts b/server/src/audit/audit.module.ts
new file mode 100644
index 0000000..234bc79
--- /dev/null
+++ b/server/src/audit/audit.module.ts
@@ -0,0 +1,11 @@
+import { Global, Module } from '@nestjs/common';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { AuditService } from './audit.service.js';
+
+@Global()
+@Module({
+  imports: [PrismaModule],
+  providers: [AuditService],
+  exports: [AuditService],
+})
+export class AuditModule {}
diff --git a/server/src/audit/audit.service.ts b/server/src/audit/audit.service.ts
new file mode 100644
index 0000000..274a2f7
--- /dev/null
+++ b/server/src/audit/audit.service.ts
@@ -0,0 +1,46 @@
+import { Injectable } from '@nestjs/common';
+import type { Prisma } from '@prisma/client';
+import type { SafeUser } from '../auth/auth.types.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+
+export interface AuditInput {
+  actor?: SafeUser | null;
+  action: string;
+  targetType: string;
+  targetId?: string | null;
+  departmentId?: string | null;
+  metadata?: Record<string, unknown>;
+  ip?: string | null;
+  userAgent?: string | null;
+}
+
+@Injectable()
+export class AuditService {
+  constructor(private readonly prisma: PrismaService) {}
+
+  async record(input: AuditInput) {
+    const actor = input.actor || null;
+    const tenantId = actor?.tenantId;
+    if (!tenantId) return;
+
+    await this.prisma.auditLog.create({
+      data: {
+        tenantId,
+        actorUserId: actor.id,
+        actorRole: actor.role,
+        action: input.action,
+        targetType: input.targetType,
+        targetId: input.targetId || null,
+        departmentId: input.departmentId || actor.departmentId || null,
+        ip: input.ip || null,
+        userAgent: input.userAgent || null,
+        metadata: input.metadata ? (cleanJson(input.metadata) as Prisma.InputJsonValue) : undefined,
+      },
+    }).catch(() => {
+      // Auditing must not break the clinical workflow. Operational alerts can watch failed inserts.
+    });
+  }
+}
+
+const cleanJson = (value: Record<string, unknown>) =>
+  JSON.parse(JSON.stringify(value)) as Record<string, unknown>;
diff --git a/server/src/auth/auth.controller.ts b/server/src/auth/auth.controller.ts
new file mode 100644
index 0000000..15ada73
--- /dev/null
+++ b/server/src/auth/auth.controller.ts
@@ -0,0 +1,91 @@
+import {
+  Body,
+  Controller,
+  Get,
+  HttpCode,
+  InternalServerErrorException,
+  Post,
+  Req,
+  UnauthorizedException,
+} from '@nestjs/common';
+import type { Request } from 'express';
+import { AuditService } from '../audit/audit.service.js';
+import { AuthService } from './auth.service.js';
+
+@Controller('auth')
+export class AuthController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  @Post('login')
+  @HttpCode(200)
+  async login(@Body() body: unknown, @Req() request: Request) {
+    const user = await this.authService.login(body);
+    request.session.userId = user.id;
+    await this.saveSession(request);
+    await this.audit?.record({
+      actor: user,
+      action: 'auth.login',
+      targetType: 'User',
+      targetId: user.id,
+      metadata: { username: user.username },
+      ip: request.ip,
+      userAgent: request.get('user-agent'),
+    });
+
+    return {
+      data: {
+        user,
+      },
+    };
+  }
+
+  @Get('me')
+  async me(@Req() request: Request) {
+    if (!request.session.userId) {
+      throw new UnauthorizedException('未登录');
+    }
+
+    return {
+      data: {
+        user: await this.authService.findMe(request.session.userId),
+      },
+    };
+  }
+
+  @Post('logout')
+  @HttpCode(200)
+  async logout(@Req() request: Request) {
+    const actor = request.session.userId
+      ? await this.authService.findMe(request.session.userId).catch(() => null)
+      : null;
+    await new Promise<void>((resolve, reject) => {
+      request.session.destroy((error) => {
+        if (error) reject(error);
+        else resolve();
+      });
+    });
+    await this.audit?.record({
+      actor,
+      action: 'auth.logout',
+      targetType: 'User',
+      targetId: actor?.id,
+      ip: request.ip,
+      userAgent: request.get('user-agent'),
+    });
+    return { data: null };
+  }
+
+  private async saveSession(request: Request) {
+    await new Promise<void>((resolve, reject) => {
+      request.session.save((error) => {
+        if (error) reject(error);
+        else resolve();
+      });
+    }).catch(() => {
+      throw new InternalServerErrorException('保存登录态失败');
+    });
+  }
+}
diff --git a/server/src/auth/auth.module.ts b/server/src/auth/auth.module.ts
new file mode 100644
index 0000000..5e39306
--- /dev/null
+++ b/server/src/auth/auth.module.ts
@@ -0,0 +1,10 @@
+import { Module } from '@nestjs/common';
+import { AuthController } from './auth.controller.js';
+import { AuthService } from './auth.service.js';
+
+@Module({
+  controllers: [AuthController],
+  providers: [AuthService],
+  exports: [AuthService],
+})
+export class AuthModule {}
diff --git a/server/src/auth/auth.schemas.ts b/server/src/auth/auth.schemas.ts
new file mode 100644
index 0000000..5ff9c2f
--- /dev/null
+++ b/server/src/auth/auth.schemas.ts
@@ -0,0 +1,8 @@
+import { z } from 'zod';
+
+export const loginSchema = z.object({
+  username: z.string().trim().min(1, '用户名不能为空'),
+  password: z.string().min(1, '密码不能为空'),
+});
+
+export type LoginInput = z.infer<typeof loginSchema>;
diff --git a/server/src/auth/auth.service.ts b/server/src/auth/auth.service.ts
new file mode 100644
index 0000000..9d0a865
--- /dev/null
+++ b/server/src/auth/auth.service.ts
@@ -0,0 +1,86 @@
+import {
+  BadRequestException,
+  ForbiddenException,
+  Injectable,
+  UnauthorizedException,
+} from '@nestjs/common';
+import argon2 from 'argon2';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { loginSchema, type LoginInput } from './auth.schemas.js';
+import type { SafeUser } from './auth.types.js';
+
+@Injectable()
+export class AuthService {
+  constructor(private readonly prisma: PrismaService) {}
+
+  async login(input: unknown) {
+    const result = loginSchema.safeParse(input);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const user = await this.findUserForLogin(result.data);
+    if (!user) {
+      throw new UnauthorizedException('用户名或密码错误');
+    }
+
+    const isPasswordValid = await argon2.verify(user.passwordHash, result.data.password);
+    if (!isPasswordValid) {
+      throw new UnauthorizedException('用户名或密码错误');
+    }
+
+    if (user.status !== 'ACTIVE') {
+      throw new ForbiddenException('账号已禁用');
+    }
+
+    await this.prisma.user.update({
+      where: { id: user.id },
+      data: { lastLoginAt: new Date() },
+    });
+
+    return this.toSafeUser(user);
+  }
+
+  async findMe(userId: string) {
+    const user = await this.prisma.user.findUnique({
+      where: { id: userId },
+      include: { department: true },
+    });
+
+    if (!user || user.status !== 'ACTIVE') {
+      throw new UnauthorizedException('登录态已失效');
+    }
+
+    return this.toSafeUser(user);
+  }
+
+  private findUserForLogin(input: LoginInput) {
+    return this.prisma.user.findFirst({
+      where: { username: input.username },
+      include: { department: true },
+    });
+  }
+
+  private toSafeUser(user: Awaited<ReturnType<AuthService['findUserForLogin']>>): SafeUser {
+    if (!user) {
+      throw new UnauthorizedException('登录态已失效');
+    }
+
+    return {
+      id: user.id,
+      username: user.username,
+      role: user.role.toLowerCase() as SafeUser['role'],
+      name: user.name,
+      tenantId: user.tenantId,
+      departmentId: user.departmentId,
+      departmentName: user.department.name,
+      status: user.status.toLowerCase() as SafeUser['status'],
+      phone: user.phone ?? undefined,
+      email: user.email ?? undefined,
+      signatureFileId: user.signatureFileId ?? undefined,
+      signature: user.signatureFileId ? `/api/files/${user.signatureFileId}/content` : undefined,
+      createdAt: user.createdAt.toISOString(),
+      updatedAt: user.updatedAt.toISOString(),
+    };
+  }
+}
diff --git a/server/src/auth/auth.types.ts b/server/src/auth/auth.types.ts
new file mode 100644
index 0000000..16daf03
--- /dev/null
+++ b/server/src/auth/auth.types.ts
@@ -0,0 +1,18 @@
+import type { UserRole, UserStatus } from '@prisma/client';
+
+export interface SafeUser {
+  id: string;
+  username: string;
+  role: Lowercase<UserRole>;
+  name: string;
+  tenantId: string;
+  departmentId: string;
+  departmentName: string;
+  status: Lowercase<UserStatus>;
+  phone?: string;
+  email?: string;
+  signatureFileId?: string;
+  signature?: string;
+  createdAt: string;
+  updatedAt: string;
+}
diff --git a/server/src/auth/session-user.ts b/server/src/auth/session-user.ts
new file mode 100644
index 0000000..5a387e8
--- /dev/null
+++ b/server/src/auth/session-user.ts
@@ -0,0 +1,15 @@
+import { UnauthorizedException } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from './auth.service.js';
+import type { SafeUser } from './auth.types.js';
+
+export const getSessionUser = async (
+  request: Request,
+  authService: AuthService,
+): Promise<SafeUser> => {
+  if (!request.session.userId) {
+    throw new UnauthorizedException('未登录');
+  }
+
+  return authService.findMe(request.session.userId);
+};
diff --git a/server/src/common/api-exception.filter.ts b/server/src/common/api-exception.filter.ts
new file mode 100644
index 0000000..809491e
--- /dev/null
+++ b/server/src/common/api-exception.filter.ts
@@ -0,0 +1,54 @@
+import {
+  ArgumentsHost,
+  Catch,
+  ExceptionFilter,
+  HttpException,
+  HttpStatus,
+} from '@nestjs/common';
+import type { Response } from 'express';
+
+@Catch()
+export class ApiExceptionFilter implements ExceptionFilter {
+  catch(exception: unknown, host: ArgumentsHost) {
+    const response = host.switchToHttp().getResponse<Response>();
+    const status =
+      exception instanceof HttpException
+        ? exception.getStatus()
+        : HttpStatus.INTERNAL_SERVER_ERROR;
+
+    const payload = exception instanceof HttpException ? exception.getResponse() : undefined;
+    const message =
+      typeof payload === 'object' && payload !== null && 'message' in payload
+        ? String((payload as { message: unknown }).message)
+        : exception instanceof Error
+          ? exception.message
+          : '服务器内部错误';
+
+    response.status(status).json({
+      error: {
+        code: this.resolveCode(status),
+        message,
+      },
+      requestId: response.getHeader('x-request-id') ?? undefined,
+    });
+  }
+
+  private resolveCode(status: number) {
+    switch (status) {
+      case HttpStatus.BAD_REQUEST:
+        return 'BAD_REQUEST';
+      case HttpStatus.UNAUTHORIZED:
+        return 'UNAUTHORIZED';
+      case HttpStatus.FORBIDDEN:
+        return 'FORBIDDEN';
+      case HttpStatus.NOT_FOUND:
+        return 'NOT_FOUND';
+      case HttpStatus.CONFLICT:
+        return 'CONFLICT';
+      case HttpStatus.UNPROCESSABLE_ENTITY:
+        return 'VALIDATION_ERROR';
+      default:
+        return 'INTERNAL_SERVER_ERROR';
+    }
+  }
+}
diff --git a/server/src/common/html-sanitizer.ts b/server/src/common/html-sanitizer.ts
new file mode 100644
index 0000000..bff1df6
--- /dev/null
+++ b/server/src/common/html-sanitizer.ts
@@ -0,0 +1,68 @@
+import sanitizeHtml from 'sanitize-html';
+
+const allowedTags = [
+  ...sanitizeHtml.defaults.allowedTags,
+  'img',
+  'span',
+  'div',
+  'section',
+  'article',
+  'header',
+  'footer',
+  'table',
+  'thead',
+  'tbody',
+  'tr',
+  'th',
+  'td',
+  'colgroup',
+  'col',
+];
+
+const allowedAttributes: sanitizeHtml.IOptions['allowedAttributes'] = {
+  ...sanitizeHtml.defaults.allowedAttributes,
+  '*': [
+    'class',
+    'style',
+    'title',
+    'data-bind',
+    'data-ai-id',
+    'data-mode',
+    'data-placeholder-id',
+    'contenteditable',
+    'colspan',
+    'rowspan',
+    'align',
+  ],
+  img: ['src', 'alt', 'width', 'height', 'class', 'style', 'data-*'],
+  a: ['href', 'name', 'target', 'rel'],
+};
+
+export const sanitizeReportHtml = (html: string) =>
+  sanitizeHtml(html || '', {
+    allowedTags,
+    allowedAttributes,
+    allowedSchemes: ['http', 'https', 'data'],
+    allowedSchemesByTag: {
+      img: ['http', 'https', 'data'],
+    },
+    allowedStyles: {
+      '*': {
+        color: [/^#[0-9a-f]{3,8}$/iu, /^rgb\(/iu, /^rgba\(/iu, /^[a-z]+$/iu],
+        'background-color': [/^#[0-9a-f]{3,8}$/iu, /^rgb\(/iu, /^rgba\(/iu, /^[a-z]+$/iu],
+        'font-size': [/^\d+(\.\d+)?(px|pt|em|rem|%)$/u],
+        'font-weight': [/^\d+$/u, /^(normal|bold|bolder|lighter)$/u],
+        'text-align': [/^(left|right|center|justify)$/u],
+        width: [/^\d+(\.\d+)?(px|%|em|rem)$/u],
+        height: [/^\d+(\.\d+)?(px|%|em|rem)$/u],
+        margin: [/^[\d.\spxemrem%auto-]+$/u],
+        padding: [/^[\d.\spxemrem%-]+$/u],
+        border: [/^[\w\s#().,%/-]+$/u],
+        'border-collapse': [/^collapse$/u],
+        display: [/^(block|inline|inline-block|flex|table|table-row|table-cell)$/u],
+      },
+    },
+    transformTags: {
+      a: sanitizeHtml.simpleTransform('a', { rel: 'noopener noreferrer' }),
+    },
+  });
diff --git a/server/src/dashboard/dashboard.controller.ts b/server/src/dashboard/dashboard.controller.ts
new file mode 100644
index 0000000..18d274d
--- /dev/null
+++ b/server/src/dashboard/dashboard.controller.ts
@@ -0,0 +1,19 @@
+import { Controller, Get, Query, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { DashboardService } from './dashboard.service.js';
+
+@Controller('dashboard')
+export class DashboardController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly dashboardService: DashboardService,
+  ) {}
+
+  @Get('stats')
+  async stats(@Req() request: Request, @Query('range') range?: string) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { stats: await this.dashboardService.getStats(actor, { range }) } };
+  }
+}
diff --git a/server/src/dashboard/dashboard.module.ts b/server/src/dashboard/dashboard.module.ts
new file mode 100644
index 0000000..1224927
--- /dev/null
+++ b/server/src/dashboard/dashboard.module.ts
@@ -0,0 +1,11 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { DashboardController } from './dashboard.controller.js';
+import { DashboardService } from './dashboard.service.js';
+
+@Module({
+  imports: [AuthModule],
+  controllers: [DashboardController],
+  providers: [DashboardService],
+})
+export class DashboardModule {}
diff --git a/server/src/dashboard/dashboard.service.ts b/server/src/dashboard/dashboard.service.ts
new file mode 100644
index 0000000..331e57f
--- /dev/null
+++ b/server/src/dashboard/dashboard.service.ts
@@ -0,0 +1,110 @@
+import { Injectable } from '@nestjs/common';
+import type { Prisma } from '@prisma/client';
+import type { SafeUser } from '../auth/auth.types.js';
+import { canUseTemplate } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { templateInclude, toTemplateResource } from '../templates/template.mapper.js';
+
+export interface DashboardStats {
+  totalCount: number;
+  monthCount: number;
+  templateCount: number;
+  userCount: number;
+  todayCount: number;
+  trend: number[];
+  trendLabels: string[];
+  trendFullDates: string[];
+  maxTrend: number;
+}
+
+@Injectable()
+export class DashboardService {
+  constructor(private readonly prisma: PrismaService) {}
+
+  async getStats(actor: SafeUser, query: { range?: string } = {}): Promise<DashboardStats> {
+    const daysCount = query.range === '1month' ? 30 : 7;
+    const now = new Date();
+    const startOfToday = new Date(now.getFullYear(), now.getMonth(), now.getDate());
+    const startOfMonth = new Date(now.getFullYear(), now.getMonth(), 1);
+    const trendStart = new Date(startOfToday);
+    trendStart.setDate(trendStart.getDate() - (daysCount - 1));
+
+    const reportWhere: Prisma.ReportWhereInput = {
+      tenantId: actor.tenantId,
+      deletedAt: null,
+      ...this.visibilityWhere(actor),
+    };
+
+    const [totalCount, monthCount, todayCount, trendReports, userCount, templates] = await this.prisma.$transaction([
+      this.prisma.report.count({ where: reportWhere }),
+      this.prisma.report.count({ where: { ...reportWhere, createdAt: { gte: startOfMonth } } }),
+      this.prisma.report.count({ where: { ...reportWhere, createdAt: { gte: startOfToday } } }),
+      this.prisma.report.findMany({
+        where: { ...reportWhere, createdAt: { gte: trendStart } },
+        select: { createdAt: true },
+      }),
+      this.prisma.user.count({ where: this.visibleUserWhere(actor) }),
+      this.prisma.template.findMany({
+        where: { tenantId: actor.tenantId },
+        include: templateInclude,
+      }),
+    ]);
+
+    const trendFullDates: string[] = [];
+    const trendLabels: string[] = [];
+    const trend = Array.from({ length: daysCount }, (_, index) => {
+      const day = new Date(trendStart);
+      day.setDate(trendStart.getDate() + index);
+      const key = toDateKey(day);
+      trendFullDates.push(key);
+      trendLabels.push(daysCount === 7 ? `${day.getMonth() + 1}/${day.getDate()}` : `${day.getDate()}`);
+      return trendReports.filter((report) => toDateKey(report.createdAt) === key).length;
+    });
+
+    return {
+      totalCount,
+      monthCount,
+      todayCount,
+      templateCount: templates.filter((template) => canUseTemplate(this.actorToPolicy(actor), toTemplateResource(template))).length,
+      userCount,
+      trend,
+      trendLabels,
+      trendFullDates,
+      maxTrend: Math.max(...trend, 1),
+    };
+  }
+
+  private visibilityWhere(actor: SafeUser): Prisma.ReportWhereInput {
+    if (actor.role === 'super') return {};
+    if (actor.role === 'admin') return { departmentId: actor.departmentId };
+    return { authorId: actor.id };
+  }
+
+  private visibleUserWhere(actor: SafeUser): Prisma.UserWhereInput {
+    if (actor.role === 'super') return { tenantId: actor.tenantId };
+    if (actor.role === 'admin') {
+      return {
+        tenantId: actor.tenantId,
+        OR: [
+          { id: actor.id },
+          { departmentId: actor.departmentId, role: 'DOCTOR' },
+        ],
+      };
+    }
+    return { tenantId: actor.tenantId, id: actor.id };
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+}
+
+const toDateKey = (date: Date) => {
+  const pad = (value: number) => value.toString().padStart(2, '0');
+  return `${date.getFullYear()}-${pad(date.getMonth() + 1)}-${pad(date.getDate())}`;
+};
diff --git a/server/src/database.integration.test.ts b/server/src/database.integration.test.ts
new file mode 100644
index 0000000..93bad74
--- /dev/null
+++ b/server/src/database.integration.test.ts
@@ -0,0 +1,254 @@
+import { PrismaPg } from '@prisma/adapter-pg';
+import { PrismaClient } from '@prisma/client';
+import argon2 from 'argon2';
+import { mkdtemp, rm } from 'node:fs/promises';
+import os from 'node:os';
+import path from 'node:path';
+import { afterAll, beforeAll, describe, expect, it } from 'vitest';
+import { AuditService } from './audit/audit.service.js';
+import { AuthService } from './auth/auth.service.js';
+import type { SafeUser } from './auth/auth.types.js';
+import { DashboardService } from './dashboard/dashboard.service.js';
+import { FilesService } from './files/files.service.js';
+import { ReportsService } from './reports/reports.service.js';
+import { TemplatesService } from './templates/templates.service.js';
+
+const databaseUrl =
+  process.env.DATABASE_URL ||
+  'postgresql://surclaw:surclaw_dev_password@localhost:5433/surclaw?schema=public';
+
+describe('Prisma-backed service integration', () => {
+  const prisma = new PrismaClient({
+    adapter: new PrismaPg({ connectionString: databaseUrl }),
+  });
+  const tenantCode = `test_${Date.now()}_${Math.random().toString(36).slice(2)}`;
+  const userPrefix = tenantCode.replace(/[^a-zA-Z0-9_]/g, '_');
+  let tenantId = '';
+  let adminDepartmentId = '';
+  let surgeryDepartmentId = '';
+  let otherDepartmentId = '';
+  let superActor: SafeUser;
+  let doctorActor: SafeUser;
+  let managerActor: SafeUser;
+  let otherManagerActor: SafeUser;
+  let tempDir = '';
+
+  beforeAll(async () => {
+    tempDir = await mkdtemp(path.join(os.tmpdir(), 'surclaw-files-'));
+    process.env.FILE_STORAGE_DIR = tempDir;
+    await prisma.$connect();
+
+    const tenant = await prisma.tenant.create({
+      data: { code: tenantCode, name: '测试医院' },
+    });
+    tenantId = tenant.id;
+    const [adminDepartment, surgeryDepartment, otherDepartment] = await Promise.all([
+      prisma.department.create({ data: { tenantId, code: 'admin', name: '管理部门' } }),
+      prisma.department.create({ data: { tenantId, code: 'surgery', name: '外科' } }),
+      prisma.department.create({ data: { tenantId, code: 'internal', name: '内科' } }),
+    ]);
+    adminDepartmentId = adminDepartment.id;
+    surgeryDepartmentId = surgeryDepartment.id;
+    otherDepartmentId = otherDepartment.id;
+
+    const passwordHash = await argon2.hash('123456');
+    const [superUser, managerUser, doctorUser, otherManagerUser] = await Promise.all([
+      prisma.user.create({
+        data: { tenantId, departmentId: adminDepartmentId, username: `${userPrefix}_admin`, passwordHash, role: 'SUPER', name: '超级管理员' },
+      }),
+      prisma.user.create({
+        data: { tenantId, departmentId: surgeryDepartmentId, username: `${userPrefix}_manager`, passwordHash, role: 'ADMIN', name: '外科管理员' },
+      }),
+      prisma.user.create({
+        data: { tenantId, departmentId: surgeryDepartmentId, username: `${userPrefix}_doctor`, passwordHash, role: 'DOCTOR', name: '张医生' },
+      }),
+      prisma.user.create({
+        data: { tenantId, departmentId: otherDepartmentId, username: `${userPrefix}_manager2`, passwordHash, role: 'ADMIN', name: '内科管理员' },
+      }),
+    ]);
+
+    superActor = toActor(superUser, adminDepartment.name);
+    managerActor = toActor(managerUser, surgeryDepartment.name);
+    doctorActor = toActor(doctorUser, surgeryDepartment.name);
+    otherManagerActor = toActor(otherManagerUser, otherDepartment.name);
+  });
+
+  afterAll(async () => {
+    if (tenantId) {
+      await prisma.tenant.delete({ where: { id: tenantId } }).catch(() => {});
+    }
+    await prisma.$disconnect();
+    if (tempDir) {
+      await rm(tempDir, { recursive: true, force: true });
+    }
+  });
+
+  it('authenticates real hashed users and rejects disabled accounts', async () => {
+    const authService = new AuthService(prisma as never);
+    const loggedIn = await authService.login({ username: `${userPrefix}_admin`, password: '123456' });
+    expect(loggedIn.username).toBe(`${userPrefix}_admin`);
+    expect(loggedIn.role).toBe('super');
+
+    await prisma.user.update({
+      where: { tenantId_username: { tenantId, username: `${userPrefix}_doctor` } },
+      data: { status: 'INACTIVE' },
+    });
+    await expect(authService.login({ username: `${userPrefix}_doctor`, password: '123456' })).rejects.toThrow('账号已禁用');
+    await prisma.user.update({
+      where: { tenantId_username: { tenantId, username: `${userPrefix}_doctor` } },
+      data: { status: 'ACTIVE' },
+    });
+  });
+
+  it('filters reports by role and keeps completed report revisions', async () => {
+    const auditService = new AuditService(prisma as never);
+    const reportsService = new ReportsService(prisma as never, auditService);
+    const filesService = new FilesService(prisma as never);
+    const videoFile = await filesService.uploadFile(doctorActor, {
+      kind: 'VIDEO',
+      filename: 'operation.mp4',
+      dataUrl: 'data:video/mp4;base64,AA==',
+    });
+    const frameFile = await filesService.uploadFile(doctorActor, {
+      kind: 'FRAME',
+      filename: 'frame.png',
+      dataUrl: 'data:image/png;base64,AA==',
+    });
+    const ownReport = await reportsService.create(doctorActor, {
+      title: '外科报告',
+      patientName: '患者甲',
+      hospitalId: 'H001',
+      content: '<p>draft</p><script>alert(1)</script>',
+      status: 'completed',
+      videos: [{ id: 'video-1', name: 'operation.mp4', duration: 18, url: 'blob:local', fileId: videoFile.id }],
+      capturedFrames: [{
+        id: 1001,
+        videoIndex: 0,
+        videoName: 'operation.mp4',
+        time: 2,
+        timeFormatted: '0:02',
+        dataUrl: 'data:image/png;base64,AA==',
+        fileId: frameFile.id,
+      }],
+    });
+    expect(ownReport.videos?.[0]).toMatchObject({ id: 'video-1', fileId: videoFile.id, url: `/api/files/${videoFile.id}/content` });
+    expect(ownReport.capturedFrames?.[0]).toMatchObject({ id: 1001, fileId: frameFile.id, dataUrl: `/api/files/${frameFile.id}/content` });
+    expect(ownReport.content).not.toContain('<script>');
+    const mediaRows = await prisma.reportMedia.findMany({ where: { reportId: ownReport.id }, orderBy: { kind: 'desc' } });
+    expect(mediaRows.map((row) => row.kind).sort()).toEqual(['FRAME', 'VIDEO']);
+    const persistedReport = await prisma.report.findUniqueOrThrow({ where: { id: ownReport.id } });
+    expect(persistedReport.metadata).not.toHaveProperty('videos');
+    expect(persistedReport.metadata).not.toHaveProperty('capturedFrames');
+    await expect(prisma.auditLog.count({ where: { tenantId, action: 'report.complete', targetId: ownReport.id } })).resolves.toBe(1);
+
+    await reportsService.create(otherManagerActor, {
+      title: '内科报告',
+      patientName: '患者乙',
+      hospitalId: 'H002',
+      content: '<p>other</p>',
+      status: 'draft',
+    });
+
+    const managerList = await reportsService.list(managerActor, {});
+    expect(managerList.items.map((item) => item.id)).toContain(ownReport.id);
+    expect(managerList.items.every((item) => item.department === '外科')).toBe(true);
+
+    const doctorList = await reportsService.list(doctorActor, {});
+    expect(doctorList.items.map((item) => item.id)).toEqual([ownReport.id]);
+
+    const updated = await reportsService.update(doctorActor, ownReport.id, {
+      title: '外科报告',
+      patientName: '患者甲',
+      hospitalId: 'H001',
+      content: '<p>updated</p>',
+      status: 'completed',
+    });
+    expect(updated.revision).toBe(2);
+    expect(updated.history).toHaveLength(1);
+
+    const dashboardService = new DashboardService(prisma as never);
+    const managerStats = await dashboardService.getStats(managerActor, { range: '7days' });
+    expect(managerStats.totalCount).toBeGreaterThanOrEqual(1);
+    expect(managerStats.trend).toHaveLength(7);
+    expect(managerStats.templateCount).toBeGreaterThanOrEqual(0);
+  });
+
+  it('stores department and personal templates with real permission filtering', async () => {
+    const templatesService = new TemplatesService(prisma as never);
+    const departmentTemplate = await templatesService.create(managerActor, {
+      name: '外科部门模板',
+      desc: '部门模板',
+      content: '<p>template</p>',
+      fields: [],
+      scope: 'department',
+    });
+    const personalTemplate = await templatesService.create(doctorActor, {
+      name: '我的模板',
+      desc: '个人模板',
+      content: '<p>personal</p>',
+      fields: [],
+      scope: 'personal',
+    });
+
+    const doctorUseList = await templatesService.list(doctorActor, { access: 'use' });
+    expect(doctorUseList.items.map((item) => item.id)).toEqual(
+      expect.arrayContaining([departmentTemplate.id, personalTemplate.id]),
+    );
+
+    const otherUseList = await templatesService.list(otherManagerActor, { access: 'use' });
+    expect(otherUseList.items.map((item) => item.id)).not.toContain(personalTemplate.id);
+  });
+
+  it('uploads, reads and deletes report files through FileResource', async () => {
+    const reportsService = new ReportsService(prisma as never);
+    const filesService = new FilesService(prisma as never);
+    const report = await reportsService.create(doctorActor, {
+      title: '含图片报告',
+      patientName: '患者丙',
+      hospitalId: 'H003',
+      content: '<p>file</p>',
+      status: 'draft',
+    });
+
+    const file = await filesService.uploadFile(doctorActor, {
+      kind: 'FRAME',
+      filename: 'frame.png',
+      dataUrl: 'data:image/png;base64,AA==',
+      reportId: report.id,
+    });
+    expect(file.url).toContain(`/api/files/${file.id}/content`);
+
+    const read = await filesService.readFile(doctorActor, file.id);
+    expect(read.file.mimeType).toBe('image/png');
+    expect(read.buffer.length).toBe(1);
+
+    await filesService.deleteFile(doctorActor, file.id);
+    await expect(filesService.readFile(doctorActor, file.id)).rejects.toThrow('文件不存在');
+  });
+});
+
+const toActor = (
+  user: {
+    id: string;
+    username: string;
+    role: string;
+    name: string;
+    tenantId: string;
+    departmentId: string;
+    status: string;
+    createdAt: Date;
+    updatedAt: Date;
+  },
+  departmentName: string,
+): SafeUser => ({
+  id: user.id,
+  username: user.username,
+  role: user.role.toLowerCase() as SafeUser['role'],
+  name: user.name,
+  tenantId: user.tenantId,
+  departmentId: user.departmentId,
+  departmentName,
+  status: user.status.toLowerCase() as SafeUser['status'],
+  createdAt: user.createdAt.toISOString(),
+  updatedAt: user.updatedAt.toISOString(),
+});
diff --git a/server/src/files/files.controller.ts b/server/src/files/files.controller.ts
new file mode 100644
index 0000000..96efa33
--- /dev/null
+++ b/server/src/files/files.controller.ts
@@ -0,0 +1,56 @@
+import { Body, Controller, Delete, Get, Param, Post, Query, Req, Res } from '@nestjs/common';
+import type { Request, Response } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { FilesService } from './files.service.js';
+
+@Controller()
+export class FilesController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly filesService: FilesService,
+  ) {}
+
+  @Get('files')
+  async listFiles(@Req() request: Request, @Query('kind') kind?: string) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.filesService.listFiles(actor, { kind }) };
+  }
+
+  @Post('files')
+  async uploadFile(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { file: await this.filesService.uploadFile(actor, body) } };
+  }
+
+  @Delete('files/:id')
+  async deleteFile(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.filesService.deleteFile(actor, id);
+    return { data: null };
+  }
+
+  @Post('users/:id/signature')
+  async uploadSignature(@Req() request: Request, @Param('id') id: string, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { file: await this.filesService.uploadSignature(actor, id, body) } };
+  }
+
+  @Delete('users/:id/signature')
+  async deleteSignature(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.filesService.deleteSignature(actor, id);
+    return { data: null };
+  }
+
+  @Get('files/:id/content')
+  async getFileContent(
+    @Req() request: Request,
+    @Param('id') id: string,
+    @Res() response: Response,
+  ) {
+    const actor = await getSessionUser(request, this.authService);
+    const { file, buffer } = await this.filesService.readFile(actor, id);
+    response.type(file.mimeType).send(buffer);
+  }
+}
diff --git a/server/src/files/files.module.ts b/server/src/files/files.module.ts
new file mode 100644
index 0000000..35f6bac
--- /dev/null
+++ b/server/src/files/files.module.ts
@@ -0,0 +1,12 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { FilesController } from './files.controller.js';
+import { FilesService } from './files.service.js';
+
+@Module({
+  imports: [AuthModule, PrismaModule],
+  controllers: [FilesController],
+  providers: [FilesService],
+})
+export class FilesModule {}
diff --git a/server/src/files/files.schemas.test.ts b/server/src/files/files.schemas.test.ts
new file mode 100644
index 0000000..9c47b34
--- /dev/null
+++ b/server/src/files/files.schemas.test.ts
@@ -0,0 +1,19 @@
+import { describe, expect, it } from 'vitest';
+import { fileUploadSchema, signatureUploadSchema } from './files.schemas.js';
+
+describe('files schemas', () => {
+  it('accepts generic template asset uploads', () => {
+    const parsed = fileUploadSchema.parse({
+      dataUrl: 'data:image/png;base64,AA==',
+      filename: 'asset.png',
+      kind: 'TEMPLATE_ASSET',
+    });
+
+    expect(parsed.kind).toBe('TEMPLATE_ASSET');
+  });
+
+  it('keeps signatures on the dedicated signature schema only', () => {
+    expect(signatureUploadSchema.parse({ dataUrl: 'data:image/png;base64,AA==' }).dataUrl).toContain('data:');
+    expect(() => fileUploadSchema.parse({ dataUrl: 'data:image/png;base64,AA==', kind: 'SIGNATURE' })).toThrow();
+  });
+});
diff --git a/server/src/files/files.schemas.ts b/server/src/files/files.schemas.ts
new file mode 100644
index 0000000..15b81d2
--- /dev/null
+++ b/server/src/files/files.schemas.ts
@@ -0,0 +1,19 @@
+import { z } from 'zod';
+
+export const signatureUploadSchema = z.object({
+  dataUrl: z.string().startsWith('data:', '签名图片格式不正确'),
+  filename: z.string().trim().optional(),
+}).passthrough();
+
+export type SignatureUploadInput = z.infer<typeof signatureUploadSchema>;
+
+export const fileKindSchema = z.enum(['SIGNATURE', 'TEMPLATE_ASSET', 'VIDEO', 'FRAME', 'REPORT_EXPORT']);
+
+export const fileUploadSchema = z.object({
+  dataUrl: z.string().startsWith('data:', '文件必须是 base64 Data URL'),
+  filename: z.string().trim().min(1).optional(),
+  kind: fileKindSchema.exclude(['SIGNATURE']).default('TEMPLATE_ASSET'),
+  reportId: z.string().trim().optional(),
+}).passthrough();
+
+export type FileUploadInput = z.infer<typeof fileUploadSchema>;
diff --git a/server/src/files/files.service.ts b/server/src/files/files.service.ts
new file mode 100644
index 0000000..053dd40
--- /dev/null
+++ b/server/src/files/files.service.ts
@@ -0,0 +1,351 @@
+import {
+  BadRequestException,
+  ForbiddenException,
+  Injectable,
+  NotFoundException,
+} from '@nestjs/common';
+import { randomUUID, createHash } from 'node:crypto';
+import { mkdir, readFile, rm, writeFile } from 'node:fs/promises';
+import path from 'node:path';
+import { AuditService } from '../audit/audit.service.js';
+import type { SafeUser } from '../auth/auth.types.js';
+import { canManageUser, canViewReport, isAdmin, isSuper, type AppRole } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { fileUploadSchema, signatureUploadSchema } from './files.schemas.js';
+
+const MIME_EXTENSIONS: Record<string, string> = {
+  'image/jpeg': 'jpg',
+  'image/png': 'png',
+  'image/webp': 'webp',
+  'image/gif': 'gif',
+  'video/mp4': 'mp4',
+  'video/webm': 'webm',
+  'application/json': 'json',
+};
+
+const FILE_KIND_DIRECTORIES: Record<string, string> = {
+  TEMPLATE_ASSET: 'template-assets',
+  VIDEO: 'videos',
+  FRAME: 'frames',
+  REPORT_EXPORT: 'report-exports',
+};
+
+@Injectable()
+export class FilesService {
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  async uploadFile(actor: SafeUser, rawInput: unknown) {
+    const result = fileUploadSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const report = result.data.reportId
+      ? await this.prisma.report.findFirst({ where: { id: result.data.reportId, tenantId: actor.tenantId } })
+      : null;
+    if (result.data.reportId && !report) {
+      throw new NotFoundException('报告不存在');
+    }
+    if (report && !canViewReport(this.actorToPolicy(actor), report)) {
+      throw new ForbiddenException('无权为此报告上传文件');
+    }
+
+    const decoded = this.decodeDataUrl(result.data.dataUrl, { label: '文件', maxBytes: this.maxBytesForKind(result.data.kind) });
+    const id = randomUUID();
+    const extension = MIME_EXTENSIONS[decoded.mimeType] || 'bin';
+    const directory = FILE_KIND_DIRECTORIES[result.data.kind] || 'files';
+    const storageKey = path.posix.join(directory, actor.tenantId, actor.id, `${id}.${extension}`);
+    const absolutePath = this.resolveStoragePath(storageKey);
+
+    await mkdir(path.dirname(absolutePath), { recursive: true });
+    await writeFile(absolutePath, decoded.buffer);
+
+    const file = await this.prisma.fileResource.create({
+      data: {
+        id,
+        tenantId: actor.tenantId,
+        ownerId: actor.id,
+        reportId: report?.id,
+        kind: result.data.kind,
+        filename: result.data.filename || `${result.data.kind.toLowerCase()}.${extension}`,
+        mimeType: decoded.mimeType,
+        size: decoded.buffer.length,
+        storageKey,
+        checksum: createHash('sha256').update(decoded.buffer).digest('hex'),
+      },
+    });
+
+    await this.audit?.record({
+      actor,
+      action: 'file.upload',
+      targetType: 'FileResource',
+      targetId: file.id,
+      metadata: { kind: file.kind, filename: file.filename, reportId: file.reportId },
+    });
+
+    return this.toFileDto(file);
+  }
+
+  async listFiles(actor: SafeUser, query: { kind?: string } = {}) {
+    const files = await this.prisma.fileResource.findMany({
+      where: {
+        tenantId: actor.tenantId,
+        ...(query.kind ? { kind: query.kind as never } : {}),
+        OR: [
+          { kind: 'TEMPLATE_ASSET' },
+          { ownerId: actor.id },
+          ...(isSuper(this.actorToPolicy(actor)) ? [{}] : []),
+        ],
+      },
+      orderBy: { createdAt: 'desc' },
+      take: 200,
+    });
+
+    return { items: files.map((file) => this.toFileDto(file)) };
+  }
+
+  async deleteFile(actor: SafeUser, id: string) {
+    const file = await this.prisma.fileResource.findFirst({ where: { id, tenantId: actor.tenantId } });
+    if (!file) {
+      throw new NotFoundException('文件不存在');
+    }
+    if (!this.canManageFile(actor, file)) {
+      throw new ForbiddenException('无权删除此文件');
+    }
+    await this.removeStoredFile(actor.tenantId, file.id);
+    await this.audit?.record({
+      actor,
+      action: 'file.delete',
+      targetType: 'FileResource',
+      targetId: file.id,
+      metadata: { kind: file.kind, filename: file.filename },
+    });
+    return null;
+  }
+
+  async uploadSignature(actor: SafeUser, userId: string, rawInput: unknown) {
+    const result = signatureUploadSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const target = await this.findUser(actor.tenantId, userId);
+    if (!canManageUser(this.actorToPolicy(actor), this.userToPolicy(target))) {
+      throw new ForbiddenException('无权修改此用户签名');
+    }
+
+    const decoded = this.decodeDataUrl(result.data.dataUrl, { label: '签名图片', allowedMimeTypes: ['image/jpeg', 'image/png', 'image/webp'], maxBytes: 1024 * 1024 });
+    const id = randomUUID();
+    const extension = MIME_EXTENSIONS[decoded.mimeType];
+    const storageKey = path.posix.join('signatures', actor.tenantId, target.id, `${id}.${extension}`);
+    const absolutePath = this.resolveStoragePath(storageKey);
+
+    await mkdir(path.dirname(absolutePath), { recursive: true });
+    await writeFile(absolutePath, decoded.buffer);
+
+    if (target.signatureFileId) {
+      await this.removeStoredFile(actor.tenantId, target.signatureFileId).catch(() => {});
+    }
+
+    const file = await this.prisma.fileResource.create({
+      data: {
+        id,
+        tenantId: actor.tenantId,
+        ownerId: target.id,
+        kind: 'SIGNATURE',
+        filename: result.data.filename || `signature.${extension}`,
+        mimeType: decoded.mimeType,
+        size: decoded.buffer.length,
+        storageKey,
+        checksum: createHash('sha256').update(decoded.buffer).digest('hex'),
+      },
+    });
+
+    await this.prisma.user.update({
+      where: { id: target.id },
+      data: { signatureFileId: file.id },
+    });
+
+    await this.audit?.record({
+      actor,
+      action: 'user.signature.upload',
+      targetType: 'User',
+      targetId: target.id,
+      departmentId: target.departmentId,
+      metadata: { fileId: file.id, filename: file.filename },
+    });
+
+    return this.toFileDto(file);
+  }
+
+  async deleteSignature(actor: SafeUser, userId: string) {
+    const target = await this.findUser(actor.tenantId, userId);
+    if (!canManageUser(this.actorToPolicy(actor), this.userToPolicy(target))) {
+      throw new ForbiddenException('无权删除此用户签名');
+    }
+
+    if (target.signatureFileId) {
+      await this.removeStoredFile(actor.tenantId, target.signatureFileId).catch(() => {});
+    }
+
+    await this.prisma.user.update({
+      where: { id: target.id },
+      data: { signatureFileId: null },
+    });
+    await this.audit?.record({
+      actor,
+      action: 'user.signature.delete',
+      targetType: 'User',
+      targetId: target.id,
+      departmentId: target.departmentId,
+    });
+    return null;
+  }
+
+  async readFile(actor: SafeUser, id: string) {
+    const file = await this.prisma.fileResource.findFirst({
+      where: { id, tenantId: actor.tenantId },
+      include: {
+        report: true,
+      },
+    });
+    if (!file) {
+      throw new NotFoundException('文件不存在');
+    }
+
+    await this.ensureCanReadFile(actor, file);
+    return {
+      file,
+      buffer: await readFile(this.resolveStoragePath(file.storageKey)),
+    };
+  }
+
+  private async ensureCanReadFile(
+    actor: SafeUser,
+    file: Awaited<ReturnType<FilesService['findFileForRead']>>,
+  ) {
+    if (!file) throw new NotFoundException('文件不存在');
+    if (isSuper(this.actorToPolicy(actor))) return;
+
+    if (file.kind === 'SIGNATURE') {
+      if (file.ownerId === actor.id) return;
+      if (isAdmin(this.actorToPolicy(actor))) {
+        const owner = file.ownerId
+          ? await this.prisma.user.findFirst({ where: { id: file.ownerId, tenantId: actor.tenantId } })
+          : null;
+        if (owner?.departmentId === actor.departmentId) return;
+      }
+    }
+
+    if (file.kind === 'TEMPLATE_ASSET') return;
+    if (file.report && canViewReport(this.actorToPolicy(actor), file.report)) return;
+    if (file.ownerId === actor.id) return;
+    throw new ForbiddenException('无权读取此文件');
+  }
+
+  private async findFileForRead(tenantId: string, id: string) {
+    return this.prisma.fileResource.findFirst({
+      where: { id, tenantId },
+      include: { report: true },
+    });
+  }
+
+  private async findUser(tenantId: string, id: string) {
+    const user = await this.prisma.user.findFirst({
+      where: { tenantId, OR: [{ id }, { username: id }] },
+    });
+    if (!user) {
+      throw new NotFoundException('用户不存在');
+    }
+    return user;
+  }
+
+  private async removeStoredFile(tenantId: string, id: string) {
+    const file = await this.prisma.fileResource.findFirst({ where: { id, tenantId } });
+    if (!file) return;
+    await rm(this.resolveStoragePath(file.storageKey), { force: true });
+    await this.prisma.fileResource.delete({ where: { id: file.id } });
+  }
+
+  private decodeDataUrl(
+    dataUrl: string,
+    options: { label: string; allowedMimeTypes?: string[]; maxBytes: number },
+  ) {
+    const match = /^data:([^;,]+);base64,(.+)$/u.exec(dataUrl);
+    if (!match) {
+      throw new BadRequestException(`${options.label}必须是 base64 Data URL`);
+    }
+
+    const mimeType = match[1];
+    if (!MIME_EXTENSIONS[mimeType] || (options.allowedMimeTypes && !options.allowedMimeTypes.includes(mimeType))) {
+      throw new BadRequestException(`${options.label}类型不支持`);
+    }
+
+    const buffer = Buffer.from(match[2], 'base64');
+    if (buffer.length === 0) {
+      throw new BadRequestException(`${options.label}不能为空`);
+    }
+    if (buffer.length > options.maxBytes) {
+      throw new BadRequestException(`${options.label}大小超过限制`);
+    }
+
+    return { mimeType, buffer };
+  }
+
+  private maxBytesForKind(kind: string) {
+    if (kind === 'VIDEO') return 1024 * 1024 * 200;
+    if (kind === 'REPORT_EXPORT') return 1024 * 1024 * 10;
+    return 1024 * 1024 * 8;
+  }
+
+  private canManageFile(
+    actor: SafeUser,
+    file: { tenantId: string; ownerId: string | null; kind: string },
+  ) {
+    if (file.tenantId !== actor.tenantId) return false;
+    if (isSuper(this.actorToPolicy(actor))) return true;
+    if (file.ownerId === actor.id) return true;
+    return file.kind === 'TEMPLATE_ASSET' && isAdmin(this.actorToPolicy(actor));
+  }
+
+  private resolveStoragePath(storageKey: string) {
+    const baseDir = path.resolve(process.env.FILE_STORAGE_DIR || path.join(process.cwd(), 'uploads'));
+    const absolutePath = path.resolve(baseDir, storageKey);
+    if (!absolutePath.startsWith(baseDir)) {
+      throw new BadRequestException('文件路径不合法');
+    }
+    return absolutePath;
+  }
+
+  private toFileDto(file: { id: string; filename: string; mimeType: string; size: number; createdAt: Date }) {
+    return {
+      id: file.id,
+      filename: file.filename,
+      mimeType: file.mimeType,
+      size: file.size,
+      url: `/api/files/${file.id}/content`,
+      createdAt: file.createdAt.toISOString(),
+    };
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+
+  private userToPolicy(user: { id: string; tenantId: string; departmentId: string; role: string }) {
+    return {
+      id: user.id,
+      tenantId: user.tenantId,
+      departmentId: user.departmentId,
+      role: (user.role.toLowerCase() === 'doctor' ? 'doctor' : user.role.toLowerCase()) as AppRole,
+    };
+  }
+}
diff --git a/server/src/health/health.controller.ts b/server/src/health/health.controller.ts
new file mode 100644
index 0000000..b275013
--- /dev/null
+++ b/server/src/health/health.controller.ts
@@ -0,0 +1,15 @@
+import { Controller, Get } from '@nestjs/common';
+
+@Controller('health')
+export class HealthController {
+  @Get()
+  getHealth() {
+    return {
+      data: {
+        status: 'ok',
+        service: 'surclaw-api',
+        timestamp: new Date().toISOString(),
+      },
+    };
+  }
+}
diff --git a/server/src/health/health.module.ts b/server/src/health/health.module.ts
new file mode 100644
index 0000000..f08bd8b
--- /dev/null
+++ b/server/src/health/health.module.ts
@@ -0,0 +1,7 @@
+import { Module } from '@nestjs/common';
+import { HealthController } from './health.controller.js';
+
+@Module({
+  controllers: [HealthController],
+})
+export class HealthModule {}
diff --git a/server/src/http.integration.test.ts b/server/src/http.integration.test.ts
new file mode 100644
index 0000000..085479f
--- /dev/null
+++ b/server/src/http.integration.test.ts
@@ -0,0 +1,169 @@
+import { INestApplication } from '@nestjs/common';
+import { Test } from '@nestjs/testing';
+import type { NextFunction, Request, Response } from 'express';
+import request from 'supertest';
+import { afterEach, beforeEach, describe, expect, it, vi } from 'vitest';
+import { AuthController } from './auth/auth.controller.js';
+import { AuthService } from './auth/auth.service.js';
+import type { SafeUser } from './auth/auth.types.js';
+import { ApiExceptionFilter } from './common/api-exception.filter.js';
+import { FilesController } from './files/files.controller.js';
+import { FilesService } from './files/files.service.js';
+import { HealthController } from './health/health.controller.js';
+import { LibraryController } from './library/library.controller.js';
+import { LibraryService } from './library/library.service.js';
+import { ReportsController } from './reports/reports.controller.js';
+import { ReportsService } from './reports/reports.service.js';
+import { TemplatesController } from './templates/templates.controller.js';
+import { TemplatesService } from './templates/templates.service.js';
+
+const actor: SafeUser = {
+  id: 'usr_admin',
+  username: 'admin',
+  role: 'super',
+  name: '系统管理员',
+  tenantId: 'tenant_1',
+  departmentId: 'dept_1',
+  departmentName: '外科',
+  status: 'active',
+  createdAt: '2026-05-02T00:00:00.000Z',
+  updatedAt: '2026-05-02T00:00:00.000Z',
+};
+
+describe('HTTP API integration', () => {
+  let app: INestApplication;
+  const authService = {
+    login: vi.fn(async () => actor),
+    findMe: vi.fn(async () => actor),
+  };
+  const reportsService = {
+    list: vi.fn(async () => ({ items: [{ id: 'rpt_1' }], total: 1 })),
+    get: vi.fn(),
+    create: vi.fn(),
+    update: vi.fn(),
+    remove: vi.fn(),
+  };
+  const templatesService = {
+    list: vi.fn(async () => ({ items: [{ id: 'tpl_1' }], total: 1 })),
+    get: vi.fn(),
+    create: vi.fn(),
+    update: vi.fn(),
+    remove: vi.fn(),
+  };
+  const libraryService = {
+    getFieldLibrary: vi.fn(async () => ({ formFields: [], customTimeFormats: [], multiSelectOptions: {}, anesthesiaOptions: [] })),
+    updateFieldLibrary: vi.fn(async (_actor, body) => body),
+  };
+  const filesService = {
+    listFiles: vi.fn(async () => ({ items: [] })),
+    uploadFile: vi.fn(async () => ({ id: 'file_1', filename: 'a.png', mimeType: 'image/png', size: 1, url: '/api/files/file_1/content', createdAt: '2026-05-02T00:00:00.000Z' })),
+    deleteFile: vi.fn(async () => null),
+    uploadSignature: vi.fn(),
+    deleteSignature: vi.fn(),
+    readFile: vi.fn(),
+  };
+
+  beforeEach(async () => {
+    vi.clearAllMocks();
+    const moduleRef = await Test.createTestingModule({
+      controllers: [
+        HealthController,
+        AuthController,
+        ReportsController,
+        TemplatesController,
+        LibraryController,
+        FilesController,
+      ],
+      providers: [
+        { provide: AuthService, useValue: authService },
+        { provide: ReportsService, useValue: reportsService },
+        { provide: TemplatesService, useValue: templatesService },
+        { provide: LibraryService, useValue: libraryService },
+        { provide: FilesService, useValue: filesService },
+      ],
+    }).compile();
+
+    (moduleRef.get(AuthController) as unknown as { authService: unknown }).authService = authService;
+    (moduleRef.get(ReportsController) as unknown as { authService: unknown; reportsService: unknown }).authService = authService;
+    (moduleRef.get(ReportsController) as unknown as { authService: unknown; reportsService: unknown }).reportsService = reportsService;
+    (moduleRef.get(TemplatesController) as unknown as { authService: unknown; templatesService: unknown }).authService = authService;
+    (moduleRef.get(TemplatesController) as unknown as { authService: unknown; templatesService: unknown }).templatesService = templatesService;
+    (moduleRef.get(LibraryController) as unknown as { authService: unknown; libraryService: unknown }).authService = authService;
+    (moduleRef.get(LibraryController) as unknown as { authService: unknown; libraryService: unknown }).libraryService = libraryService;
+    (moduleRef.get(FilesController) as unknown as { authService: unknown; filesService: unknown }).authService = authService;
+    (moduleRef.get(FilesController) as unknown as { authService: unknown; filesService: unknown }).filesService = filesService;
+
+    app = moduleRef.createNestApplication();
+    app.setGlobalPrefix('api');
+    app.useGlobalFilters(new ApiExceptionFilter());
+    const sessions = new Map<string, { userId?: string }>();
+    app.use((req: Request, res: Response, next: NextFunction) => {
+      const cookie = req.headers.cookie || '';
+      const existingId = /surclaw_test_sid=([^;]+)/u.exec(cookie)?.[1];
+      const id = existingId || `sid_${Math.random().toString(36).slice(2)}`;
+      const data = sessions.get(id) || {};
+      sessions.set(id, data);
+      req.session = Object.assign(data, {
+        save: (callback: (error?: unknown) => void) => {
+          sessions.set(id, data);
+          res.setHeader('Set-Cookie', `surclaw_test_sid=${id}; Path=/; HttpOnly`);
+          callback();
+        },
+        destroy: (callback: (error?: unknown) => void) => {
+          sessions.delete(id);
+          res.setHeader('Set-Cookie', 'surclaw_test_sid=; Path=/; Max-Age=0');
+          callback();
+        },
+      }) as Request['session'];
+      next();
+    });
+    await app.init();
+  });
+
+  afterEach(async () => {
+    await app.close();
+  });
+
+  it('serves health checks through the API prefix', async () => {
+    await request(app.getHttpServer())
+      .get('/api/health')
+      .expect(200)
+      .expect((response) => {
+        expect(response.body.data.service).toBe('surclaw-api');
+      });
+  });
+
+  it('persists login session cookies for subsequent API calls', async () => {
+    const agent = request.agent(app.getHttpServer());
+    await agent.post('/api/auth/login').send({ username: 'admin', password: '123456' }).expect(200);
+    await agent.get('/api/auth/me').expect(200).expect((response) => {
+      expect(response.body.data.user.username).toBe('admin');
+    });
+  });
+
+  it('rejects protected APIs without a session', async () => {
+    await request(app.getHttpServer())
+      .get('/api/reports')
+      .expect(401)
+      .expect((response) => {
+        expect(response.body.error.code).toBe('UNAUTHORIZED');
+      });
+  });
+
+  it('passes the session actor into reports, templates, library and files APIs', async () => {
+    const agent = request.agent(app.getHttpServer());
+    await agent.post('/api/auth/login').send({ username: 'admin', password: '123456' }).expect(200);
+
+    await agent.get('/api/reports').expect(200);
+    expect(reportsService.list).toHaveBeenCalledWith(expect.objectContaining({ id: actor.id }), expect.any(Object));
+
+    await agent.get('/api/templates?access=manage').expect(200);
+    expect(templatesService.list).toHaveBeenCalledWith(expect.objectContaining({ id: actor.id }), expect.any(Object));
+
+    await agent.patch('/api/library/fields').send({ formFields: [] }).expect(200);
+    expect(libraryService.updateFieldLibrary).toHaveBeenCalledWith(expect.objectContaining({ id: actor.id }), { formFields: [] });
+
+    await agent.post('/api/files').send({ dataUrl: 'data:image/png;base64,AA==', filename: 'a.png', kind: 'TEMPLATE_ASSET' }).expect(201);
+    expect(filesService.uploadFile).toHaveBeenCalledWith(expect.objectContaining({ id: actor.id }), expect.objectContaining({ filename: 'a.png' }));
+  });
+});
diff --git a/server/src/library/library.controller.ts b/server/src/library/library.controller.ts
new file mode 100644
index 0000000..71dd5a9
--- /dev/null
+++ b/server/src/library/library.controller.ts
@@ -0,0 +1,25 @@
+import { Body, Controller, Get, Patch, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { LibraryService } from './library.service.js';
+
+@Controller('library')
+export class LibraryController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly libraryService: LibraryService,
+  ) {}
+
+  @Get('fields')
+  async getFieldLibrary(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { library: await this.libraryService.getFieldLibrary(actor) } };
+  }
+
+  @Patch('fields')
+  async updateFieldLibrary(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { library: await this.libraryService.updateFieldLibrary(actor, body) } };
+  }
+}
diff --git a/server/src/library/library.module.ts b/server/src/library/library.module.ts
new file mode 100644
index 0000000..de50c8b
--- /dev/null
+++ b/server/src/library/library.module.ts
@@ -0,0 +1,13 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { LibraryController } from './library.controller.js';
+import { LibraryService } from './library.service.js';
+
+@Module({
+  imports: [AuthModule, PrismaModule],
+  controllers: [LibraryController],
+  providers: [LibraryService],
+  exports: [LibraryService],
+})
+export class LibraryModule {}
diff --git a/server/src/library/library.schemas.test.ts b/server/src/library/library.schemas.test.ts
new file mode 100644
index 0000000..76b1810
--- /dev/null
+++ b/server/src/library/library.schemas.test.ts
@@ -0,0 +1,36 @@
+import { describe, expect, it } from 'vitest';
+import { fieldLibrarySchema } from './library.schemas.js';
+
+describe('fieldLibrarySchema', () => {
+  it('accepts form field and option library payloads', () => {
+    const parsed = fieldLibrarySchema.parse({
+      formFields: [{
+        key: 'patientName',
+        label: '患者姓名',
+        category: '填空',
+        type: 'text',
+        visibleInForm: true,
+        isSystemLocked: true,
+      }],
+      customTimeFormats: ['YYYY-MM-DD'],
+      multiSelectOptions: { surgeon: ['张医生'] },
+      anesthesiaOptions: ['全麻'],
+    });
+
+    expect(parsed.formFields[0].key).toBe('patientName');
+    expect(parsed.multiSelectOptions.surgeon).toEqual(['张医生']);
+  });
+
+  it('rejects invalid field types', () => {
+    expect(() => fieldLibrarySchema.parse({
+      formFields: [{
+        key: 'bad',
+        label: '坏字段',
+        category: '填空',
+        type: 'unknown',
+        visibleInForm: true,
+        isSystemLocked: false,
+      }],
+    })).toThrow();
+  });
+});
diff --git a/server/src/library/library.schemas.ts b/server/src/library/library.schemas.ts
new file mode 100644
index 0000000..3a58700
--- /dev/null
+++ b/server/src/library/library.schemas.ts
@@ -0,0 +1,26 @@
+import { z } from 'zod';
+
+const fieldTypeSchema = z.enum(['text', 'single_select', 'multi_select', 'time', 'date', 'signature', 'image']);
+
+export const formFieldSchema = z.object({
+  key: z.string().trim().min(1),
+  label: z.string().trim().min(1),
+  category: z.string().trim().min(1),
+  type: fieldTypeSchema,
+  visibleInForm: z.boolean(),
+  isSystemLocked: z.boolean(),
+  options: z.array(z.string()).optional(),
+  timeFormat: z.string().optional(),
+  timeDefault: z.enum(['current', 'specific']).optional(),
+  fixedTimeValue: z.string().optional(),
+  hasUnderline: z.boolean().optional(),
+});
+
+export const fieldLibrarySchema = z.object({
+  formFields: z.array(formFieldSchema).default([]),
+  customTimeFormats: z.array(z.string()).default([]),
+  multiSelectOptions: z.record(z.string(), z.array(z.string())).default({}),
+  anesthesiaOptions: z.array(z.string()).default([]),
+});
+
+export type FieldLibraryInput = z.infer<typeof fieldLibrarySchema>;
diff --git a/server/src/library/library.service.ts b/server/src/library/library.service.ts
new file mode 100644
index 0000000..aff8f06
--- /dev/null
+++ b/server/src/library/library.service.ts
@@ -0,0 +1,98 @@
+import { Injectable } from '@nestjs/common';
+import type { Prisma } from '@prisma/client';
+import type { SafeUser } from '../auth/auth.types.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { fieldLibrarySchema, type FieldLibraryInput } from './library.schemas.js';
+
+const DEFAULT_FIELD_LIBRARY: FieldLibraryInput = {
+  formFields: [],
+  customTimeFormats: ['YYYY-MM-DD', 'YYYY年MM月DD日', 'MM-DD', 'MM月DD日', 'HH:mm', 'hh:mm A'],
+  multiSelectOptions: {},
+  anesthesiaOptions: ['全麻', '局麻', '腰麻', '硬膜外麻醉', '静脉麻醉', '吸入麻醉'],
+};
+
+@Injectable()
+export class LibraryService {
+  constructor(private readonly prisma: PrismaService) {}
+
+  async getFieldLibrary(actor: SafeUser) {
+    const saved = await this.getSettingValue(actor.tenantId, 'global', 'fieldLibrary');
+    return this.normalize(saved);
+  }
+
+  async updateFieldLibrary(actor: SafeUser, rawInput: unknown) {
+    const current = await this.getFieldLibrary(actor);
+    const input = this.normalize(rawInput);
+    const next = this.normalize({
+      ...current,
+      ...input,
+    });
+    await this.setSettingValue(actor.tenantId, 'global', 'fieldLibrary', this.toJson(next));
+    return next;
+  }
+
+  private normalize(input: unknown): FieldLibraryInput {
+    const result = fieldLibrarySchema.safeParse({
+      ...DEFAULT_FIELD_LIBRARY,
+      ...(this.isObject(input) ? input : {}),
+    });
+
+    if (!result.success) {
+      return DEFAULT_FIELD_LIBRARY;
+    }
+
+    return {
+      ...result.data,
+      customTimeFormats: Array.from(new Set(result.data.customTimeFormats.filter(Boolean))),
+      anesthesiaOptions: Array.from(new Set(result.data.anesthesiaOptions.filter(Boolean))),
+      multiSelectOptions: Object.fromEntries(
+        Object.entries(result.data.multiSelectOptions).map(([key, values]) => [
+          key,
+          Array.from(new Set(values.filter(Boolean))),
+        ]),
+      ),
+    };
+  }
+
+  private async getSettingValue(tenantId: string, scope: string, key: string) {
+    const setting = await this.prisma.systemSetting.findFirst({
+      where: { tenantId, scope, departmentId: null, key },
+    });
+    return setting?.value;
+  }
+
+  private async setSettingValue(
+    tenantId: string,
+    scope: string,
+    key: string,
+    value: Prisma.InputJsonValue,
+  ) {
+    const existing = await this.prisma.systemSetting.findFirst({
+      where: { tenantId, scope, departmentId: null, key },
+    });
+    if (existing) {
+      await this.prisma.systemSetting.update({
+        where: { id: existing.id },
+        data: { value },
+      });
+      return;
+    }
+
+    await this.prisma.systemSetting.create({
+      data: {
+        tenantId,
+        scope,
+        key,
+        value,
+      },
+    });
+  }
+
+  private toJson(value: unknown): Prisma.InputJsonValue {
+    return JSON.parse(JSON.stringify(value)) as Prisma.InputJsonValue;
+  }
+
+  private isObject(value: unknown): value is Record<string, unknown> {
+    return typeof value === 'object' && value !== null && !Array.isArray(value);
+  }
+}
diff --git a/server/src/main.ts b/server/src/main.ts
new file mode 100644
index 0000000..a208135
--- /dev/null
+++ b/server/src/main.ts
@@ -0,0 +1,49 @@
+import 'reflect-metadata';
+import { NestFactory } from '@nestjs/core';
+import cookieParser from 'cookie-parser';
+import session from 'express-session';
+import { AppModule } from './app.module.js';
+import { AuthService } from './auth/auth.service.js';
+import { ApiExceptionFilter } from './common/api-exception.filter.js';
+import { PrismaService } from './prisma/prisma.service.js';
+import { PrismaSessionStore } from './session/prisma-session.store.js';
+import { attachSpeechProxy } from './speech/speech.gateway.js';
+import { SpeechService } from './speech/speech.service.js';
+
+const bootstrap = async () => {
+  const app = await NestFactory.create(AppModule);
+  const port = Number(process.env.API_PORT ?? 3000);
+
+  app.setGlobalPrefix('api');
+  app.useGlobalFilters(new ApiExceptionFilter());
+  app.enableCors({
+    origin: process.env.CORS_ORIGIN?.split(',') ?? ['http://localhost:3001'],
+    credentials: true,
+  });
+  app.use(cookieParser());
+  const sessionMiddleware = session({
+      name: 'surclaw.sid',
+      secret: process.env.SESSION_SECRET ?? 'dev-only-session-secret-change-me',
+      store: new PrismaSessionStore(app.get(PrismaService)),
+      resave: false,
+      saveUninitialized: false,
+      cookie: {
+        httpOnly: true,
+        sameSite: 'lax',
+        secure: process.env.SESSION_COOKIE_SECURE === 'true',
+        maxAge: 1000 * 60 * 60 * 8,
+      },
+    });
+
+  app.use(sessionMiddleware);
+
+  await app.listen(port, '0.0.0.0');
+  attachSpeechProxy(
+    app.getHttpServer(),
+    sessionMiddleware,
+    app.get(AuthService),
+    app.get(SpeechService),
+  );
+};
+
+void bootstrap();
diff --git a/server/src/permissions/permissions.module.ts b/server/src/permissions/permissions.module.ts
new file mode 100644
index 0000000..18b5dba
--- /dev/null
+++ b/server/src/permissions/permissions.module.ts
@@ -0,0 +1,4 @@
+import { Module } from '@nestjs/common';
+
+@Module({})
+export class PermissionsModule {}
diff --git a/server/src/permissions/permissions.policy.test.ts b/server/src/permissions/permissions.policy.test.ts
new file mode 100644
index 0000000..74112d1
--- /dev/null
+++ b/server/src/permissions/permissions.policy.test.ts
@@ -0,0 +1,114 @@
+import { describe, expect, it } from 'vitest';
+import {
+  canCreateAdmin,
+  canManageTemplate,
+  canManageUser,
+  canUseTemplate,
+  canViewReport,
+  type Actor,
+} from './permissions.policy';
+
+const superAdmin: Actor = {
+  id: 'u-super',
+  tenantId: 'tenant-a',
+  departmentId: 'dept-admin',
+  role: 'super',
+};
+
+const admin: Actor = {
+  id: 'u-admin',
+  tenantId: 'tenant-a',
+  departmentId: 'dept-surgery',
+  role: 'admin',
+};
+
+const doctor: Actor = {
+  id: 'u-doctor',
+  tenantId: 'tenant-a',
+  departmentId: 'dept-surgery',
+  role: 'doctor',
+};
+
+describe('backend permission policy', () => {
+  it('limits reports by role and department', () => {
+    const departmentReport = {
+      tenantId: 'tenant-a',
+      departmentId: 'dept-surgery',
+      authorId: 'u-other',
+    };
+    const otherDepartmentReport = {
+      tenantId: 'tenant-a',
+      departmentId: 'dept-internal',
+      authorId: 'u-other',
+    };
+    const ownReport = {
+      tenantId: 'tenant-a',
+      departmentId: 'dept-surgery',
+      authorId: 'u-doctor',
+    };
+
+    expect(canViewReport(superAdmin, otherDepartmentReport)).toBe(true);
+    expect(canViewReport(admin, departmentReport)).toBe(true);
+    expect(canViewReport(admin, otherDepartmentReport)).toBe(false);
+    expect(canViewReport(doctor, ownReport)).toBe(true);
+    expect(canViewReport(doctor, departmentReport)).toBe(false);
+  });
+
+  it('keeps tenant boundaries hard', () => {
+    expect(
+      canViewReport(superAdmin, {
+        tenantId: 'tenant-b',
+        departmentId: 'dept-surgery',
+        authorId: 'u-doctor',
+      }),
+    ).toBe(false);
+  });
+
+  it('allows department templates and personal templates by owner', () => {
+    expect(
+      canUseTemplate(doctor, {
+        tenantId: 'tenant-a',
+        scope: 'department',
+        ownerDepartmentId: 'dept-surgery',
+      }),
+    ).toBe(true);
+    expect(
+      canUseTemplate(doctor, {
+        tenantId: 'tenant-a',
+        scope: 'personal',
+        ownerUserId: 'u-doctor',
+      }),
+    ).toBe(true);
+    expect(
+      canUseTemplate(doctor, {
+        tenantId: 'tenant-a',
+        scope: 'personal',
+        ownerUserId: 'u-other',
+      }),
+    ).toBe(false);
+  });
+
+  it('allows only super admins and matching department admins to manage department templates', () => {
+    const departmentTemplate = {
+      tenantId: 'tenant-a',
+      scope: 'department' as const,
+      ownerDepartmentId: 'dept-surgery',
+    };
+
+    expect(canManageTemplate(superAdmin, departmentTemplate)).toBe(true);
+    expect(canManageTemplate(admin, departmentTemplate)).toBe(true);
+    expect(canManageTemplate(doctor, departmentTemplate)).toBe(false);
+  });
+
+  it('keeps admin creation restricted to super admins', () => {
+    expect(canCreateAdmin(superAdmin)).toBe(true);
+    expect(canCreateAdmin(admin)).toBe(false);
+  });
+
+  it('lets department admins manage only doctors in their department', () => {
+    expect(canManageUser(admin, doctor)).toBe(true);
+    expect(canManageUser(admin, admin)).toBe(true);
+    expect(canManageUser(admin, { ...doctor, departmentId: 'dept-other' })).toBe(false);
+    expect(canManageUser(admin, { ...doctor, role: 'admin' })).toBe(false);
+  });
+});
diff --git a/server/src/permissions/permissions.policy.ts b/server/src/permissions/permissions.policy.ts
new file mode 100644
index 0000000..0acdfec
--- /dev/null
+++ b/server/src/permissions/permissions.policy.ts
@@ -0,0 +1,85 @@
+export type AppRole = 'super' | 'admin' | 'doctor' | 'user';
+
+export interface Actor {
+  id: string;
+  tenantId: string;
+  departmentId: string;
+  role: AppRole;
+}
+
+export interface ReportResource {
+  tenantId: string;
+  departmentId: string;
+  authorId: string;
+}
+
+export interface TemplateResource {
+  tenantId: string;
+  scope: 'department' | 'personal';
+  ownerDepartmentId?: string | null;
+  ownerUserId?: string | null;
+  permittedDepartmentIds?: string[];
+  manageableDepartmentIds?: string[];
+}
+
+const normalizeRole = (role: AppRole) => (role === 'user' ? 'doctor' : role);
+
+export const isSuper = (actor: Actor) => normalizeRole(actor.role) === 'super';
+
+export const isAdmin = (actor: Actor) => normalizeRole(actor.role) === 'admin';
+
+export const isDoctor = (actor: Actor) => normalizeRole(actor.role) === 'doctor';
+
+export const canViewReport = (actor: Actor, report: ReportResource) => {
+  if (actor.tenantId !== report.tenantId) return false;
+  if (isSuper(actor)) return true;
+  if (isAdmin(actor)) return actor.departmentId === report.departmentId;
+  return actor.id === report.authorId;
+};
+
+export const canEditReport = canViewReport;
+
+export const canDeleteReport = canViewReport;
+
+export const canExportReport = canViewReport;
+
+export const canUseTemplate = (actor: Actor, template: TemplateResource) => {
+  if (actor.tenantId !== template.tenantId) return false;
+  if (isSuper(actor)) return true;
+
+  if (template.scope === 'personal') {
+    return template.ownerUserId === actor.id;
+  }
+
+  return (
+    template.ownerDepartmentId === actor.departmentId ||
+    template.permittedDepartmentIds?.includes(actor.departmentId) === true
+  );
+};
+
+export const canManageTemplate = (actor: Actor, template: TemplateResource) => {
+  if (actor.tenantId !== template.tenantId) return false;
+  if (isSuper(actor)) return true;
+
+  if (template.scope === 'personal') {
+    return template.ownerUserId === actor.id;
+  }
+
+  return (
+    isAdmin(actor) &&
+    (template.ownerDepartmentId === actor.departmentId ||
+      template.manageableDepartmentIds?.includes(actor.departmentId) === true)
+  );
+};
+
+export const canManageUser = (actor: Actor, target: Actor) => {
+  if (actor.tenantId !== target.tenantId) return false;
+  if (actor.id === target.id) return true;
+  if (isSuper(actor)) return true;
+  if (isAdmin(actor)) {
+    return target.departmentId === actor.departmentId && isDoctor(target);
+  }
+  return false;
+};
+
+export const canCreateAdmin = (actor: Actor) => isSuper(actor);
diff --git a/server/src/prisma/prisma.module.ts b/server/src/prisma/prisma.module.ts
new file mode 100644
index 0000000..efb7a8d
--- /dev/null
+++ b/server/src/prisma/prisma.module.ts
@@ -0,0 +1,9 @@
+import { Global, Module } from '@nestjs/common';
+import { PrismaService } from './prisma.service.js';
+
+@Global()
+@Module({
+  providers: [PrismaService],
+  exports: [PrismaService],
+})
+export class PrismaModule {}
diff --git a/server/src/prisma/prisma.service.ts b/server/src/prisma/prisma.service.ts
new file mode 100644
index 0000000..57a7bfc
--- /dev/null
+++ b/server/src/prisma/prisma.service.ts
@@ -0,0 +1,36 @@
+import { Injectable, OnModuleDestroy, OnModuleInit } from '@nestjs/common';
+import { ConfigService } from '@nestjs/config';
+import { PrismaPg } from '@prisma/adapter-pg';
+import { PrismaClient } from '@prisma/client';
+import { Pool } from 'pg';
+
+@Injectable()
+export class PrismaService extends PrismaClient implements OnModuleInit, OnModuleDestroy {
+  private readonly pool: Pool;
+
+  constructor(configService: ConfigService) {
+    const connectionString = configService.get<string>('DATABASE_URL');
+    if (!connectionString) {
+      throw new Error('DATABASE_URL is required to start the API server');
+    }
+
+    const pool = new Pool({
+      connectionString,
+    });
+
+    super({
+      adapter: new PrismaPg(pool),
+    });
+
+    this.pool = pool;
+  }
+
+  async onModuleInit() {
+    await this.$connect();
+  }
+
+  async onModuleDestroy() {
+    await this.$disconnect();
+    await this.pool.end();
+  }
+}
diff --git a/server/src/reports/report.mapper.test.ts b/server/src/reports/report.mapper.test.ts
new file mode 100644
index 0000000..8d8d224
--- /dev/null
+++ b/server/src/reports/report.mapper.test.ts
@@ -0,0 +1,158 @@
+import { describe, expect, it } from 'vitest';
+import { extractReportMetadata, toFrontendReport } from './report.mapper';
+
+describe('report mapper', () => {
+  it('keeps frontend compatibility fields in metadata and restores response shape', () => {
+    expect(extractReportMetadata({
+      id: 'ignored',
+      title: '腹腔镜手术',
+      patientName: '患者',
+      hospitalId: 'H001',
+      patientGender: '女',
+      videos: [{ id: 'v1', name: 'video.mp4' }],
+    })).toEqual({
+      patientGender: '女',
+    });
+
+    const now = new Date('2026-05-01T00:00:00.000Z');
+    const mapped = toFrontendReport({
+      id: 'r1',
+      tenantId: 't1',
+      departmentId: 'd1',
+      authorId: 'u1',
+      templateId: null,
+      title: '腹腔镜手术',
+      patientName: '患者',
+      hospitalId: 'H001',
+      status: 'COMPLETED',
+      revision: 2,
+      content: '<p>报告</p>',
+      metadata: { patientGender: '女' },
+      deletedAt: null,
+      deletedBy: null,
+      createdAt: now,
+      updatedAt: now,
+      media: [
+        {
+          id: 'm1',
+          tenantId: 't1',
+          reportId: 'r1',
+          fileId: 'f1',
+          kind: 'VIDEO',
+          clientId: 'v1',
+          name: 'video.mp4',
+          url: 'blob:local',
+          time: null,
+          videoIndex: null,
+          videoName: null,
+          sortOrder: 0,
+          metadata: { duration: 12 },
+          createdAt: now,
+          updatedAt: now,
+          file: {
+            id: 'f1',
+            tenantId: 't1',
+            ownerId: 'u1',
+            reportId: 'r1',
+            kind: 'VIDEO',
+            filename: 'video.mp4',
+            mimeType: 'video/mp4',
+            size: 100,
+            storageKey: 'videos/t1/u1/f1.mp4',
+            checksum: null,
+            createdAt: now,
+          },
+        },
+        {
+          id: 'm2',
+          tenantId: 't1',
+          reportId: 'r1',
+          fileId: 'f2',
+          kind: 'FRAME',
+          clientId: '101',
+          name: null,
+          url: 'data:image/jpeg;base64,old',
+          time: 3.5,
+          videoIndex: 0,
+          videoName: 'video.mp4',
+          sortOrder: 0,
+          metadata: { timeFormatted: '0:03', isManual: true, manualOrder: 1 },
+          createdAt: now,
+          updatedAt: now,
+          file: {
+            id: 'f2',
+            tenantId: 't1',
+            ownerId: 'u1',
+            reportId: 'r1',
+            kind: 'FRAME',
+            filename: 'frame.jpg',
+            mimeType: 'image/jpeg',
+            size: 100,
+            storageKey: 'frames/t1/u1/f2.jpg',
+            checksum: null,
+            createdAt: now,
+          },
+        },
+      ],
+      author: {
+        id: 'u1',
+        tenantId: 't1',
+        departmentId: 'd1',
+        username: '0001',
+        passwordHash: '',
+        role: 'DOCTOR',
+        name: '张医生',
+        status: 'ACTIVE',
+        phone: null,
+        email: null,
+        signatureFileId: null,
+        lastLoginAt: null,
+        createdAt: now,
+        updatedAt: now,
+      },
+      department: {
+        id: 'd1',
+        tenantId: 't1',
+        name: '外科',
+        code: 'surgery',
+        createdAt: now,
+        updatedAt: now,
+      },
+      histories: [
+        {
+          id: 'h1',
+          reportId: 'r1',
+          revision: 1,
+          content: '<p>旧报告</p>',
+          action: 'complete_report',
+          updatedById: 'u1',
+          updatedBy: '张医生',
+          createdAt: now,
+        },
+      ],
+    });
+
+    expect(mapped).toMatchObject({
+      id: 'r1',
+      patientGender: '女',
+      author: '0001',
+      authorName: '张医生',
+      department: '外科',
+      status: 'completed',
+      revision: 2,
+      videos: [{ id: 'v1', name: 'video.mp4', url: '/api/files/f1/content', duration: 12, fileId: 'f1' }],
+      capturedFrames: [{
+        id: 101,
+        videoIndex: 0,
+        videoName: 'video.mp4',
+        time: 3.5,
+        timeFormatted: '0:03',
+        dataUrl: '/api/files/f2/content',
+        fileId: 'f2',
+        isManual: true,
+        manualOrder: 1,
+      }],
+      history: [{ revision: 1, action: 'complete_report' }],
+    });
+  });
+});
diff --git a/server/src/reports/report.mapper.ts b/server/src/reports/report.mapper.ts
new file mode 100644
index 0000000..a37ced1
--- /dev/null
+++ b/server/src/reports/report.mapper.ts
@@ -0,0 +1,199 @@
+import type { Prisma } from '@prisma/client';
+
+const MEDIA_METADATA_KEYS = new Set(['videos', 'capturedFrames']);
+
+const FRONTEND_CANONICAL_KEYS = new Set([
+  'id',
+  'title',
+  'patientName',
+  'hospitalId',
+  'content',
+  'author',
+  'authorName',
+  'department',
+  'createdAt',
+  'updatedAt',
+  'status',
+  'revision',
+  'history',
+  ...MEDIA_METADATA_KEYS,
+]);
+
+export const reportInclude = {
+  author: true,
+  department: true,
+  histories: { orderBy: { createdAt: 'asc' } },
+  media: {
+    include: { file: true },
+    orderBy: [{ kind: 'asc' }, { sortOrder: 'asc' }, { createdAt: 'asc' }],
+  },
+} satisfies Prisma.ReportInclude;
+
+type ReportWithRelations = Prisma.ReportGetPayload<{ include: typeof reportInclude }>;
+
+export interface ExtractedReportMedia {
+  videos: Array<{
+    clientId: string;
+    fileId?: string;
+    name?: string;
+    url?: string;
+    duration?: number;
+    sortOrder: number;
+  }>;
+  frames: Array<{
+    clientId: string;
+    fileId?: string;
+    url?: string;
+    time?: number;
+    timeFormatted?: string;
+    videoIndex?: number;
+    videoName?: string;
+    isManual?: boolean;
+    manualOrder?: number;
+    sortOrder: number;
+  }>;
+  hasPayload: boolean;
+}
+
+export const extractReportMetadata = (input: Record<string, unknown>) => {
+  const metadata: Record<string, unknown> = {};
+  for (const [key, value] of Object.entries(input)) {
+    if (!FRONTEND_CANONICAL_KEYS.has(key)) {
+      metadata[key] = value;
+    }
+  }
+  return JSON.parse(JSON.stringify(metadata)) as Record<string, unknown>;
+};
+
+export const sanitizeReportMetadata = (metadata: unknown) => {
+  const next =
+    metadata && typeof metadata === 'object' && !Array.isArray(metadata)
+      ? { ...(metadata as Record<string, unknown>) }
+      : {};
+  for (const key of MEDIA_METADATA_KEYS) {
+    delete next[key];
+  }
+  return next;
+};
+
+export const extractReportMedia = (input: Record<string, unknown>): ExtractedReportMedia => {
+  const rawVideos = Array.isArray(input.videos) ? input.videos : [];
+  const rawFrames = Array.isArray(input.capturedFrames) ? input.capturedFrames : [];
+
+  return {
+    videos: rawVideos.map((item, index) => {
+      const video = objectRecord(item);
+      return {
+        clientId: stringValue(video.id) || `video-${index + 1}`,
+        fileId: stringValue(video.fileId) || undefined,
+        name: stringValue(video.name) || undefined,
+        url: stringValue(video.url) || undefined,
+        duration: numberValue(video.duration),
+        sortOrder: index,
+      };
+    }),
+    frames: rawFrames.map((item, index) => {
+      const frame = objectRecord(item);
+      return {
+        clientId: stringValue(frame.id) || `frame-${index + 1}`,
+        fileId: stringValue(frame.fileId) || undefined,
+        url: stringValue(frame.dataUrl) || undefined,
+        time: numberValue(frame.time),
+        timeFormatted: stringValue(frame.timeFormatted) || undefined,
+        videoIndex: integerValue(frame.videoIndex),
+        videoName: stringValue(frame.videoName) || undefined,
+        isManual: booleanValue(frame.isManual),
+        manualOrder: integerValue(frame.manualOrder),
+        sortOrder: index,
+      };
+    }),
+    hasPayload: Object.prototype.hasOwnProperty.call(input, 'videos')
+      || Object.prototype.hasOwnProperty.call(input, 'capturedFrames'),
+  };
+};
+
+export const toFrontendReport = (report: ReportWithRelations) => {
+  const metadata = sanitizeReportMetadata(report.metadata);
+  const legacyMetadata =
+    report.metadata && typeof report.metadata === 'object' && !Array.isArray(report.metadata)
+      ? (report.metadata as Record<string, unknown>)
+      : {};
+  const videos = report.media.filter((item) => item.kind === 'VIDEO').map((item, index) => ({
+    id: item.clientId,
+    name: item.name || item.file?.filename || `视频 ${index + 1}`,
+    url: item.fileId ? `/api/files/${item.fileId}/content` : (item.url || ''),
+    duration: numberValue(objectRecord(item.metadata).duration) ?? 0,
+    ...(item.fileId ? { fileId: item.fileId } : {}),
+  }));
+  const capturedFrames = report.media.filter((item) => item.kind === 'FRAME').map((item, index) => {
+    const frameMetadata = objectRecord(item.metadata);
+    return {
+      id: numericClientId(item.clientId, index + 1),
+      videoIndex: item.videoIndex ?? 0,
+      videoName: item.videoName || '',
+      time: item.time ?? 0,
+      timeFormatted: stringValue(frameMetadata.timeFormatted) || formatSeconds(item.time ?? 0),
+      dataUrl: item.fileId ? `/api/files/${item.fileId}/content` : (item.url || ''),
+      ...(item.fileId ? { fileId: item.fileId } : {}),
+      ...(booleanValue(frameMetadata.isManual) !== undefined ? { isManual: booleanValue(frameMetadata.isManual) } : {}),
+      ...(integerValue(frameMetadata.manualOrder) !== undefined ? { manualOrder: integerValue(frameMetadata.manualOrder) } : {}),
+    };
+  });
+
+  return {
+    ...metadata,
+    id: report.id,
+    title: report.title,
+    patientName: report.patientName,
+    hospitalId: report.hospitalId,
+    content: report.content,
+    author: report.author.username,
+    authorName: report.author.name,
+    department: report.department.name,
+    createdAt: report.createdAt.toISOString(),
+    updatedAt: report.updatedAt.toISOString(),
+    status: report.status.toLowerCase(),
+    revision: report.revision,
+    videos: videos.length > 0 ? videos : (Array.isArray(legacyMetadata.videos) ? legacyMetadata.videos : []),
+    capturedFrames: capturedFrames.length > 0
+      ? capturedFrames
+      : (Array.isArray(legacyMetadata.capturedFrames) ? legacyMetadata.capturedFrames : []),
+    history: report.histories.map((history) => ({
+      content: history.content,
+      updatedAt: history.createdAt.toISOString(),
+      updatedBy: history.updatedBy,
+      action: history.action === 'complete_report' ? 'complete_report' : 'save_draft',
+      revision: history.revision,
+    })),
+  };
+};
+
+const objectRecord = (value: unknown): Record<string, unknown> =>
+  value && typeof value === 'object' && !Array.isArray(value) ? (value as Record<string, unknown>) : {};
+
+const stringValue = (value: unknown) => {
+  if (typeof value === 'string') return value;
+  if (typeof value === 'number' && Number.isFinite(value)) return String(value);
+  return '';
+};
+
+const numberValue = (value: unknown) =>
+  typeof value === 'number' && Number.isFinite(value) ? value : undefined;
+
+const integerValue = (value: unknown) =>
+  typeof value === 'number' && Number.isInteger(value) ? value : undefined;
+
+const booleanValue = (value: unknown) =>
+  typeof value === 'boolean' ? value : undefined;
+
+const numericClientId = (clientId: string, fallback: number) => {
+  const parsed = Number(clientId);
+  return Number.isFinite(parsed) ? parsed : fallback;
+};
+
+const formatSeconds = (seconds: number) => {
+  const safeSeconds = Number.isFinite(seconds) ? Math.max(0, Math.floor(seconds)) : 0;
+  const minutes = Math.floor(safeSeconds / 60);
+  const rest = safeSeconds % 60;
+  return `${minutes}:${rest.toString().padStart(2, '0')}`;
+};
diff --git a/server/src/reports/reports.controller.ts b/server/src/reports/reports.controller.ts
new file mode 100644
index 0000000..ccdfd72
--- /dev/null
+++ b/server/src/reports/reports.controller.ts
@@ -0,0 +1,44 @@
+import { Body, Controller, Delete, Get, Param, Patch, Post, Query, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { ReportsService } from './reports.service.js';
+
+@Controller('reports')
+export class ReportsController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly reportsService: ReportsService,
+  ) {}
+
+  @Get()
+  async list(@Req() request: Request, @Query() query: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.reportsService.list(actor, query) };
+  }
+
+  @Get(':id')
+  async get(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { report: await this.reportsService.get(actor, id) } };
+  }
+
+  @Post()
+  async create(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { report: await this.reportsService.create(actor, body) } };
+  }
+
+  @Patch(':id')
+  async update(@Req() request: Request, @Param('id') id: string, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { report: await this.reportsService.update(actor, id, body) } };
+  }
+
+  @Delete(':id')
+  async remove(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.reportsService.remove(actor, id);
+    return { data: null };
+  }
+}
diff --git a/server/src/reports/reports.module.ts b/server/src/reports/reports.module.ts
new file mode 100644
index 0000000..f024f4e
--- /dev/null
+++ b/server/src/reports/reports.module.ts
@@ -0,0 +1,11 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { ReportsController } from './reports.controller.js';
+import { ReportsService } from './reports.service.js';
+
+@Module({
+  imports: [AuthModule],
+  controllers: [ReportsController],
+  providers: [ReportsService],
+})
+export class ReportsModule {}
diff --git a/server/src/reports/reports.schemas.ts b/server/src/reports/reports.schemas.ts
new file mode 100644
index 0000000..c319e4c
--- /dev/null
+++ b/server/src/reports/reports.schemas.ts
@@ -0,0 +1,30 @@
+import { z } from 'zod';
+
+export const reportStatusSchema = z.enum(['draft', 'completed']);
+
+const reportBaseSchema = z.object({
+  title: z.string().trim().min(1, '报告标题不能为空'),
+  patientName: z.string().trim().min(1, '患者姓名不能为空'),
+  hospitalId: z.string().trim().min(1, '住院号不能为空'),
+  content: z.string().default(''),
+  status: reportStatusSchema.default('draft'),
+  templateId: z.string().trim().optional(),
+}).passthrough();
+
+export const createReportSchema = reportBaseSchema;
+
+export const updateReportSchema = reportBaseSchema.partial().extend({
+  status: reportStatusSchema.optional(),
+}).passthrough();
+
+export const listReportsQuerySchema = z.object({
+  q: z.string().trim().optional(),
+  status: reportStatusSchema.optional(),
+  dateRange: z.enum(['today', 'week', 'month']).optional(),
+  page: z.coerce.number().int().positive().default(1),
+  pageSize: z.coerce.number().int().positive().max(100).default(50),
+});
+
+export type CreateReportInput = z.infer<typeof createReportSchema>;
+export type UpdateReportInput = z.infer<typeof updateReportSchema>;
+export type ListReportsQuery = z.infer<typeof listReportsQuerySchema>;
diff --git a/server/src/reports/reports.service.ts b/server/src/reports/reports.service.ts
new file mode 100644
index 0000000..79c1c65
--- /dev/null
+++ b/server/src/reports/reports.service.ts
@@ -0,0 +1,371 @@
+import {
+  BadRequestException,
+  ForbiddenException,
+  Injectable,
+  NotFoundException,
+} from '@nestjs/common';
+import type { Prisma, ReportStatus } from '@prisma/client';
+import { AuditService } from '../audit/audit.service.js';
+import type { SafeUser } from '../auth/auth.types.js';
+import { sanitizeReportHtml } from '../common/html-sanitizer.js';
+import { canDeleteReport, canEditReport, canViewReport } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import {
+  extractReportMedia,
+  extractReportMetadata,
+  reportInclude,
+  sanitizeReportMetadata,
+  toFrontendReport,
+  type ExtractedReportMedia,
+} from './report.mapper.js';
+import {
+  createReportSchema,
+  listReportsQuerySchema,
+  updateReportSchema,
+  type ListReportsQuery,
+} from './reports.schemas.js';
+
+@Injectable()
+export class ReportsService {
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  async list(actor: SafeUser, rawQuery: unknown) {
+    const query = this.parseQuery(rawQuery);
+    const where: Prisma.ReportWhereInput = {
+      tenantId: actor.tenantId,
+      deletedAt: null,
+      ...this.visibilityWhere(actor),
+      ...this.searchWhere(query),
+    };
+
+    const [items, total] = await this.prisma.$transaction([
+      this.prisma.report.findMany({
+        where,
+        include: reportInclude,
+        orderBy: { updatedAt: 'desc' },
+        skip: (query.page - 1) * query.pageSize,
+        take: query.pageSize,
+      }),
+      this.prisma.report.count({ where }),
+    ]);
+
+    return {
+      items: items.map(toFrontendReport),
+      total,
+      page: query.page,
+      pageSize: query.pageSize,
+    };
+  }
+
+  async get(actor: SafeUser, id: string) {
+    const report = await this.findReport(id, actor.tenantId);
+    if (!canViewReport(this.actorToPolicy(actor), report)) {
+      throw new ForbiddenException('无权查看此报告');
+    }
+    return toFrontendReport(report);
+  }
+
+  async create(actor: SafeUser, rawInput: unknown) {
+    const result = createReportSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const input = result.data;
+    const status = this.toDbStatus(input.status);
+    const metadata = extractReportMetadata(input);
+    const media = extractReportMedia(input);
+    const content = sanitizeReportHtml(input.content);
+
+    const report = await this.prisma.$transaction(async (tx) => {
+      const created = await tx.report.create({
+        data: {
+          tenantId: actor.tenantId,
+          departmentId: actor.departmentId,
+          authorId: actor.id,
+          templateId: input.templateId || null,
+          title: input.title,
+          patientName: input.patientName,
+          hospitalId: input.hospitalId,
+          content,
+          status,
+          revision: 1,
+          metadata: metadata as Prisma.InputJsonValue,
+        },
+      });
+
+      await this.replaceReportMedia(tx, actor, created.id, media);
+
+      return tx.report.findUniqueOrThrow({
+        where: { id: created.id },
+        include: reportInclude,
+      });
+    });
+
+    await this.audit?.record({
+      actor,
+      action: status === 'COMPLETED' ? 'report.complete' : 'report.create',
+      targetType: 'Report',
+      targetId: report.id,
+      metadata: { status: report.status, revision: report.revision },
+    });
+
+    return toFrontendReport(report);
+  }
+
+  async update(actor: SafeUser, id: string, rawInput: unknown) {
+    const result = updateReportSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const old = await this.findReport(id, actor.tenantId);
+    if (!canEditReport(this.actorToPolicy(actor), old)) {
+      throw new ForbiddenException('无权修改此报告');
+    }
+
+    const input = result.data;
+    const nextStatus = input.status ? this.toDbStatus(input.status) : old.status;
+    const nextRevision = old.status === 'COMPLETED' ? old.revision + 1 : old.revision;
+    const media = extractReportMedia(input);
+    const content = input.content === undefined ? old.content : sanitizeReportHtml(input.content);
+    const metadata = {
+      ...sanitizeReportMetadata(old.metadata),
+      ...extractReportMetadata(input),
+    } as Prisma.InputJsonValue;
+
+    const updated = await this.prisma.$transaction(async (tx) => {
+      await tx.reportHistory.create({
+        data: {
+          reportId: old.id,
+          revision: old.revision,
+          content: old.content,
+          action: nextStatus === 'COMPLETED' ? 'complete_report' : 'save_draft',
+          updatedById: actor.id,
+          updatedBy: actor.name,
+        },
+      });
+
+      await tx.report.update({
+        where: { id },
+        data: {
+          title: input.title ?? old.title,
+          patientName: input.patientName ?? old.patientName,
+          hospitalId: input.hospitalId ?? old.hospitalId,
+          content,
+          status: nextStatus,
+          revision: nextRevision,
+          metadata,
+        },
+      });
+
+      if (media.hasPayload) {
+        await this.replaceReportMedia(tx, actor, old.id, media);
+      }
+
+      return tx.report.findUniqueOrThrow({
+        where: { id },
+        include: reportInclude,
+      });
+    });
+
+    await this.audit?.record({
+      actor,
+      action: nextStatus === 'COMPLETED' ? 'report.complete' : 'report.update',
+      targetType: 'Report',
+      targetId: updated.id,
+      metadata: { status: updated.status, revision: updated.revision },
+    });
+
+    return toFrontendReport(updated);
+  }
+
+  async remove(actor: SafeUser, id: string) {
+    const report = await this.findReport(id, actor.tenantId);
+    if (!canDeleteReport(this.actorToPolicy(actor), report)) {
+      throw new ForbiddenException('无权删除此报告');
+    }
+
+    await this.prisma.report.update({
+      where: { id },
+      data: {
+        deletedAt: new Date(),
+        deletedBy: actor.id,
+      },
+    });
+
+    await this.audit?.record({
+      actor,
+      action: 'report.delete',
+      targetType: 'Report',
+      targetId: report.id,
+      metadata: { title: report.title, status: report.status },
+    });
+
+    return null;
+  }
+
+  private parseQuery(rawQuery: unknown): ListReportsQuery {
+    const result = listReportsQuerySchema.safeParse(rawQuery);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    return result.data;
+  }
+
+  private visibilityWhere(actor: SafeUser): Prisma.ReportWhereInput {
+    if (actor.role === 'super') return {};
+    if (actor.role === 'admin') return { departmentId: actor.departmentId };
+    return { authorId: actor.id };
+  }
+
+  private searchWhere(query: ListReportsQuery): Prisma.ReportWhereInput {
+    const filters: Prisma.ReportWhereInput[] = [];
+    if (query.status) {
+      filters.push({ status: this.toDbStatus(query.status) });
+    }
+
+    if (query.q) {
+      filters.push({
+        OR: [
+          { title: { contains: query.q, mode: 'insensitive' } },
+          { patientName: { contains: query.q, mode: 'insensitive' } },
+          { hospitalId: { contains: query.q, mode: 'insensitive' } },
+        ],
+      });
+    }
+
+    const since = this.resolveDateRange(query.dateRange);
+    if (since) {
+      filters.push({ createdAt: { gte: since } });
+    }
+
+    return filters.length > 0 ? { AND: filters } : {};
+  }
+
+  private resolveDateRange(dateRange?: ListReportsQuery['dateRange']) {
+    if (!dateRange) return null;
+    const now = new Date();
+    if (dateRange === 'today') {
+      return new Date(now.getFullYear(), now.getMonth(), now.getDate());
+    }
+    if (dateRange === 'week') {
+      return new Date(now.getTime() - 7 * 24 * 60 * 60 * 1000);
+    }
+    return new Date(now.getFullYear(), now.getMonth(), 1);
+  }
+
+  private toDbStatus(status: 'draft' | 'completed'): ReportStatus {
+    return status === 'completed' ? 'COMPLETED' : 'DRAFT';
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+
+  private findReport(id: string, tenantId: string) {
+    return this.prisma.report.findFirst({
+      where: { id, tenantId, deletedAt: null },
+      include: reportInclude,
+    }).then((report) => {
+      if (!report) {
+        throw new NotFoundException('报告不存在');
+      }
+      return report;
+    });
+  }
+
+  private async replaceReportMedia(
+    tx: Prisma.TransactionClient,
+    actor: SafeUser,
+    reportId: string,
+    media: ExtractedReportMedia,
+  ) {
+    const rows: Prisma.ReportMediaCreateManyInput[] = [
+      ...media.videos.map((video): Prisma.ReportMediaCreateManyInput => ({
+        tenantId: actor.tenantId,
+        reportId,
+        fileId: video.fileId,
+        kind: 'VIDEO',
+        clientId: video.clientId,
+        name: video.name,
+        url: video.url,
+        sortOrder: video.sortOrder,
+        metadata: cleanJson({ duration: video.duration ?? 0 }) as Prisma.InputJsonValue,
+      })),
+      ...media.frames.map((frame): Prisma.ReportMediaCreateManyInput => ({
+        tenantId: actor.tenantId,
+        reportId,
+        fileId: frame.fileId,
+        kind: 'FRAME',
+        clientId: frame.clientId,
+        url: frame.url,
+        time: frame.time,
+        videoIndex: frame.videoIndex,
+        videoName: frame.videoName,
+        sortOrder: frame.sortOrder,
+        metadata: cleanJson({
+          timeFormatted: frame.timeFormatted,
+          isManual: frame.isManual,
+          manualOrder: frame.manualOrder,
+        }) as Prisma.InputJsonValue,
+      })),
+    ];
+
+    await this.ensureMediaFilesCanBeLinked(tx, actor, reportId, rows);
+    await tx.reportMedia.deleteMany({ where: { tenantId: actor.tenantId, reportId } });
+    if (rows.length > 0) {
+      await tx.reportMedia.createMany({ data: rows });
+    }
+  }
+
+  private async ensureMediaFilesCanBeLinked(
+    tx: Prisma.TransactionClient,
+    actor: SafeUser,
+    reportId: string,
+    rows: Prisma.ReportMediaCreateManyInput[],
+  ) {
+    const ids = [...new Set(rows.map((row) => row.fileId).filter((id): id is string => typeof id === 'string' && id.length > 0))];
+    if (ids.length === 0) return;
+
+    const files = await tx.fileResource.findMany({
+      where: { tenantId: actor.tenantId, id: { in: ids } },
+      select: { id: true, kind: true, reportId: true },
+    });
+    const fileById = new Map(files.map((file) => [file.id, file]));
+
+    for (const row of rows) {
+      if (!row.fileId) continue;
+      const file = fileById.get(row.fileId);
+      if (!file) {
+        throw new BadRequestException('报告媒体文件不存在');
+      }
+      if (file.kind !== row.kind) {
+        throw new BadRequestException('报告媒体文件类型不匹配');
+      }
+      if (file.reportId && file.reportId !== reportId) {
+        throw new BadRequestException('报告媒体文件已关联其他报告');
+      }
+    }
+
+    await tx.fileResource.updateMany({
+      where: {
+        tenantId: actor.tenantId,
+        id: { in: ids },
+        reportId: null,
+      },
+      data: { reportId },
+    });
+  }
+}
+
+const cleanJson = (value: Record<string, unknown>) =>
+  JSON.parse(JSON.stringify(value)) as Record<string, unknown>;
diff --git a/server/src/session/prisma-session.store.ts b/server/src/session/prisma-session.store.ts
new file mode 100644
index 0000000..208f9b8
--- /dev/null
+++ b/server/src/session/prisma-session.store.ts
@@ -0,0 +1,72 @@
+import session from 'express-session';
+import type { PrismaService } from '../prisma/prisma.service.js';
+
+type SessionData = session.SessionData & { cookie?: session.Cookie };
+
+export class PrismaSessionStore extends session.Store {
+  constructor(private readonly prisma: PrismaService) {
+    super();
+  }
+
+  get(sid: string, callback: (err: unknown, session?: session.SessionData | null) => void) {
+    this.prisma.appSession.findUnique({ where: { id: sid } })
+      .then((stored) => {
+        if (!stored || stored.expiresAt.getTime() <= Date.now()) {
+          if (stored) void this.destroy(sid, () => undefined);
+          callback(null, null);
+          return;
+        }
+        callback(null, stored.data as unknown as SessionData);
+      })
+      .catch((error) => callback(error));
+  }
+
+  set(sid: string, sess: session.SessionData, callback?: (err?: unknown) => void) {
+    const expiresAt = this.resolveExpiresAt(sess);
+    this.prisma.appSession.upsert({
+      where: { id: sid },
+      create: {
+        id: sid,
+        data: JSON.parse(JSON.stringify(sess)),
+        expiresAt,
+      },
+      update: {
+        data: JSON.parse(JSON.stringify(sess)),
+        expiresAt,
+      },
+    })
+      .then(() => callback?.())
+      .catch((error) => callback?.(error));
+  }
+
+  destroy(sid: string, callback?: (err?: unknown) => void) {
+    this.prisma.appSession.delete({ where: { id: sid } })
+      .then(() => callback?.())
+      .catch((error) => {
+        if (isNotFound(error)) callback?.();
+        else callback?.(error);
+      });
+  }
+
+  touch(sid: string, sess: session.SessionData, callback?: () => void) {
+    this.prisma.appSession.update({
+      where: { id: sid },
+      data: {
+        expiresAt: this.resolveExpiresAt(sess),
+        data: JSON.parse(JSON.stringify(sess)),
+      },
+    })
+      .then(() => callback?.())
+      .catch(() => callback?.());
+  }
+
+  private resolveExpiresAt(sess: session.SessionData) {
+    const cookie = (sess as SessionData).cookie;
+    if (cookie?.expires) return new Date(cookie.expires);
+    const maxAge = typeof cookie?.maxAge === 'number' ? cookie.maxAge : 1000 * 60 * 60 * 8;
+    return new Date(Date.now() + maxAge);
+  }
+}
+
+const isNotFound = (error: unknown) =>
+  typeof error === 'object' && error !== null && 'code' in error && error.code === 'P2025';
diff --git a/server/src/settings/settings.controller.ts b/server/src/settings/settings.controller.ts
new file mode 100644
index 0000000..334ba33
--- /dev/null
+++ b/server/src/settings/settings.controller.ts
@@ -0,0 +1,31 @@
+import { Body, Controller, Get, Patch, Post, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { SettingsService } from './settings.service.js';
+
+@Controller('settings')
+export class SettingsController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly settingsService: SettingsService,
+  ) {}
+
+  @Get('system')
+  async getSystem(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { settings: await this.settingsService.getSystemSettings(actor) } };
+  }
+
+  @Patch('system')
+  async updateSystem(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { settings: await this.settingsService.updateSystemSettings(actor, body) } };
+  }
+
+  @Post('system/reset')
+  async resetSystem(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { settings: await this.settingsService.resetSystemSettings(actor) } };
+  }
+}
diff --git a/server/src/settings/settings.module.ts b/server/src/settings/settings.module.ts
new file mode 100644
index 0000000..d60138b
--- /dev/null
+++ b/server/src/settings/settings.module.ts
@@ -0,0 +1,13 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { SettingsController } from './settings.controller.js';
+import { SettingsService } from './settings.service.js';
+
+@Module({
+  imports: [AuthModule, PrismaModule],
+  controllers: [SettingsController],
+  providers: [SettingsService],
+  exports: [SettingsService],
+})
+export class SettingsModule {}
diff --git a/server/src/settings/settings.schemas.test.ts b/server/src/settings/settings.schemas.test.ts
new file mode 100644
index 0000000..83d23e2
--- /dev/null
+++ b/server/src/settings/settings.schemas.test.ts
@@ -0,0 +1,32 @@
+import { describe, expect, it } from 'vitest';
+import { systemSettingsSchema } from './settings.schemas';
+
+describe('settings schemas', () => {
+  it('normalizes partial system settings with safe defaults', () => {
+    const result = systemSettingsSchema.parse({
+      frameCount: 2,
+      framePositions: [75, 25],
+      activeAiProvider: 'custom',
+      aiProviders: {
+        custom: {
+          endpoint: 'https://example.test/v1',
+          modelName: 'demo-model',
+        },
+      },
+    });
+
+    expect(result.frameCount).toBe(2);
+    expect(result.framePositions).toEqual([75, 25]);
+    expect(result.frameMode).toBe('keep');
+    expect(result.aiProviders.custom.apiKey).toBe('');
+  });
+
+  it('rejects invalid frame positions', () => {
+    expect(() => systemSettingsSchema.parse({
+      frameCount: 1,
+      framePositions: [120],
+      activeAiProvider: 'kimi',
+      aiProviders: {},
+    })).toThrow();
+  });
+});
diff --git a/server/src/settings/settings.schemas.ts b/server/src/settings/settings.schemas.ts
new file mode 100644
index 0000000..a9f77f5
--- /dev/null
+++ b/server/src/settings/settings.schemas.ts
@@ -0,0 +1,28 @@
+import { z } from 'zod';
+
+export const aiProviderSchema = z.object({
+  endpoint: z.string().default(''),
+  apiKey: z.string().default(''),
+  modelName: z.string().default(''),
+}).passthrough();
+
+export const xfSpeechConfigSchema = z.object({
+  appId: z.string().default(''),
+  apiKey: z.string().default(''),
+  apiSecret: z.string().default(''),
+}).passthrough();
+
+export const systemSettingsSchema = z.object({
+  frameCount: z.number().int().min(1).max(100).default(12),
+  framePositions: z.array(z.number().min(0).max(100)).default([]),
+  defaultTemplate: z.string().optional(),
+  frameMode: z.enum(['uniform', 'keep']).default('keep'),
+  autoInsertFrames: z.boolean().optional(),
+  autoInsertFrameIndices: z.array(z.number().int().min(0)).optional(),
+  autoInsertDelay: z.number().min(0).optional(),
+  activeAiProvider: z.string().default('kimi'),
+  aiProviders: z.record(z.string(), aiProviderSchema).default({}),
+  xfSpeechConfig: xfSpeechConfigSchema.optional(),
+}).passthrough();
+
+export type SystemSettingsInput = z.infer<typeof systemSettingsSchema>;
diff --git a/server/src/settings/settings.service.ts b/server/src/settings/settings.service.ts
new file mode 100644
index 0000000..1d223e5
--- /dev/null
+++ b/server/src/settings/settings.service.ts
@@ -0,0 +1,212 @@
+import { BadRequestException, ForbiddenException, Injectable } from '@nestjs/common';
+import type { Prisma } from '@prisma/client';
+import { AuditService } from '../audit/audit.service.js';
+import type { SafeUser } from '../auth/auth.types.js';
+import { isSuper } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { systemSettingsSchema, type SystemSettingsInput } from './settings.schemas.js';
+
+const DEFAULT_AI_PROVIDERS = {
+  kimi: { endpoint: 'https://api.moonshot.cn/v1', apiKey: '', modelName: 'moonshot-v1-32k-vision-preview' },
+  deepseek: { endpoint: 'https://api.deepseek.com/v1', apiKey: '', modelName: 'deepseek-chat' },
+  openai: { endpoint: 'https://api.openai.com/v1', apiKey: '', modelName: 'gpt-4o' },
+  custom: { endpoint: '', apiKey: '', modelName: '' },
+};
+
+const DEFAULT_SETTINGS: SystemSettingsInput = {
+  frameCount: 12,
+  framePositions: [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85, 96.3, 98.6],
+  defaultTemplate: '',
+  frameMode: 'keep',
+  activeAiProvider: 'kimi',
+  aiProviders: DEFAULT_AI_PROVIDERS,
+  autoInsertFrames: true,
+  autoInsertDelay: 1,
+  autoInsertFrameIndices: [0, 2, 4, 6, 8, 10],
+  xfSpeechConfig: { appId: '', apiKey: '', apiSecret: '' },
+};
+
+@Injectable()
+export class SettingsService {
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  async getSystemSettings(actor: SafeUser, options: { includeSecrets?: boolean } = {}) {
+    const globalSettings = await this.getSettingValue(actor.tenantId, 'global', 'systemSettings');
+    const userDefaultTemplate = await this.getSettingValue(
+      actor.tenantId,
+      this.userScope(actor.id),
+      'defaultTemplate',
+    );
+
+    const merged = this.normalize({
+      ...DEFAULT_SETTINGS,
+      ...(this.isObject(globalSettings) ? globalSettings : {}),
+    });
+
+    if (typeof userDefaultTemplate === 'string') {
+      merged.defaultTemplate = userDefaultTemplate;
+    }
+
+    return options.includeSecrets || isSuper(this.actorToPolicy(actor))
+      ? merged
+      : this.redactSecrets(merged);
+  }
+
+  async updateSystemSettings(actor: SafeUser, rawInput: unknown) {
+    const result = systemSettingsSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const input = this.normalize(result.data);
+    if (isSuper(this.actorToPolicy(actor))) {
+      await this.setSettingValue(actor.tenantId, 'global', 'systemSettings', this.toJson(input));
+      if (input.defaultTemplate !== undefined) {
+        await this.setSettingValue(
+          actor.tenantId,
+          this.userScope(actor.id),
+          'defaultTemplate',
+          input.defaultTemplate || '',
+        );
+      }
+      await this.audit?.record({
+        actor,
+        action: 'settings.system.update',
+        targetType: 'SystemSetting',
+        targetId: 'systemSettings',
+        metadata: { scope: 'global', defaultTemplate: input.defaultTemplate },
+      });
+      return this.getSystemSettings(actor);
+    }
+
+    if (input.defaultTemplate === undefined) {
+      throw new ForbiddenException('只能修改个人默认模板');
+    }
+
+    await this.setSettingValue(
+      actor.tenantId,
+      this.userScope(actor.id),
+      'defaultTemplate',
+      input.defaultTemplate || '',
+    );
+    await this.audit?.record({
+      actor,
+      action: 'settings.default_template.update',
+      targetType: 'SystemSetting',
+      targetId: 'defaultTemplate',
+      metadata: { defaultTemplate: input.defaultTemplate },
+    });
+    return this.getSystemSettings(actor);
+  }
+
+  async resetSystemSettings(actor: SafeUser) {
+    if (!isSuper(this.actorToPolicy(actor))) {
+      throw new ForbiddenException('只有超级管理员可以重置系统设置');
+    }
+    await this.setSettingValue(actor.tenantId, 'global', 'systemSettings', this.toJson(DEFAULT_SETTINGS));
+    await this.audit?.record({
+      actor,
+      action: 'settings.system.reset',
+      targetType: 'SystemSetting',
+      targetId: 'systemSettings',
+      metadata: { scope: 'global' },
+    });
+    return this.getSystemSettings(actor);
+  }
+
+  private normalize(input: SystemSettingsInput): SystemSettingsInput {
+    const aiProviders = {
+      ...DEFAULT_AI_PROVIDERS,
+      ...(input.aiProviders || {}),
+    };
+    const framePositions = [...(input.framePositions || DEFAULT_SETTINGS.framePositions)]
+      .map((value) => Math.round(value * 10) / 10)
+      .sort((a, b) => a - b);
+
+    return {
+      ...DEFAULT_SETTINGS,
+      ...input,
+      framePositions,
+      frameCount: framePositions.length || input.frameCount || DEFAULT_SETTINGS.frameCount,
+      frameMode: input.frameMode || 'keep',
+      activeAiProvider: input.activeAiProvider || 'kimi',
+      aiProviders,
+      xfSpeechConfig: input.xfSpeechConfig || DEFAULT_SETTINGS.xfSpeechConfig,
+    };
+  }
+
+  private redactSecrets(settings: SystemSettingsInput): SystemSettingsInput {
+    const aiProviders = Object.fromEntries(
+      Object.entries(settings.aiProviders || {}).map(([key, provider]) => [
+        key,
+        { ...provider, apiKey: '' },
+      ]),
+    );
+
+    return {
+      ...settings,
+      aiProviders,
+      xfSpeechConfig: settings.xfSpeechConfig
+        ? { ...settings.xfSpeechConfig, apiKey: '', apiSecret: '' }
+        : settings.xfSpeechConfig,
+    };
+  }
+
+  private async getSettingValue(tenantId: string, scope: string, key: string) {
+    const setting = await this.prisma.systemSetting.findFirst({
+      where: { tenantId, scope, departmentId: null, key },
+    });
+    return setting?.value;
+  }
+
+  private async setSettingValue(
+    tenantId: string,
+    scope: string,
+    key: string,
+    value: Prisma.InputJsonValue,
+  ) {
+    const existing = await this.prisma.systemSetting.findFirst({
+      where: { tenantId, scope, departmentId: null, key },
+    });
+    if (existing) {
+      await this.prisma.systemSetting.update({
+        where: { id: existing.id },
+        data: { value },
+      });
+      return;
+    }
+
+    await this.prisma.systemSetting.create({
+      data: {
+        tenantId,
+        scope,
+        key,
+        value,
+      },
+    });
+  }
+
+  private toJson(value: unknown): Prisma.InputJsonValue {
+    return JSON.parse(JSON.stringify(value)) as Prisma.InputJsonValue;
+  }
+
+  private isObject(value: unknown): value is Record<string, unknown> {
+    return typeof value === 'object' && value !== null && !Array.isArray(value);
+  }
+
+  private userScope(userId: string) {
+    return `user:${userId}`;
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+}
diff --git a/server/src/speech/speech.gateway.ts b/server/src/speech/speech.gateway.ts
new file mode 100644
index 0000000..c86348c
--- /dev/null
+++ b/server/src/speech/speech.gateway.ts
@@ -0,0 +1,57 @@
+import type { IncomingMessage, Server } from 'node:http';
+import type { Socket } from 'node:net';
+import type { RequestHandler } from 'express';
+import { WebSocketServer } from 'ws';
+import { AuthService } from '../auth/auth.service.js';
+import { SpeechService } from './speech.service.js';
+
+interface SessionRequest extends IncomingMessage {
+  session?: {
+    userId?: string;
+  };
+}
+
+export const attachSpeechProxy = (
+  server: Server,
+  sessionMiddleware: RequestHandler,
+  authService: AuthService,
+  speechService: SpeechService,
+) => {
+  const wss = new WebSocketServer({ noServer: true });
+
+  server.on('upgrade', (request: SessionRequest, socket: Socket, head: Buffer) => {
+    const url = new URL(request.url || '/', 'http://localhost');
+    if (url.pathname !== '/api/speech/iat') {
+      return;
+    }
+
+    sessionMiddleware(request as never, createUpgradeResponse() as never, async () => {
+      try {
+        if (!request.session?.userId) {
+          rejectUpgrade(socket, 401);
+          return;
+        }
+
+        const actor = await authService.findMe(request.session.userId);
+        wss.handleUpgrade(request, socket, head, (client) => {
+          void speechService.handleIatConnection(client, actor);
+        });
+      } catch {
+        rejectUpgrade(socket, 401);
+      }
+    });
+  });
+
+  return wss;
+};
+
+const createUpgradeResponse = () => ({
+  getHeader: () => undefined,
+  setHeader: () => undefined,
+  writeHead: () => undefined,
+});
+
+const rejectUpgrade = (socket: Socket, status: 401 | 500) => {
+  socket.write(`HTTP/1.1 ${status} ${status === 401 ? 'Unauthorized' : 'Internal Server Error'}\r\n\r\n`);
+  socket.destroy();
+};
diff --git a/server/src/speech/speech.module.ts b/server/src/speech/speech.module.ts
new file mode 100644
index 0000000..e05b0b4
--- /dev/null
+++ b/server/src/speech/speech.module.ts
@@ -0,0 +1,10 @@
+import { Module } from '@nestjs/common';
+import { SettingsModule } from '../settings/settings.module.js';
+import { SpeechService } from './speech.service.js';
+
+@Module({
+  imports: [SettingsModule],
+  providers: [SpeechService],
+  exports: [SpeechService],
+})
+export class SpeechModule {}
diff --git a/server/src/speech/speech.service.ts b/server/src/speech/speech.service.ts
new file mode 100644
index 0000000..8805c3c
--- /dev/null
+++ b/server/src/speech/speech.service.ts
@@ -0,0 +1,94 @@
+import { BadRequestException, Injectable } from '@nestjs/common';
+import { createHmac } from 'node:crypto';
+import type { RawData, WebSocket } from 'ws';
+import Ws from 'ws';
+import type { SafeUser } from '../auth/auth.types.js';
+import { SettingsService } from '../settings/settings.service.js';
+import { prepareXfIatFrame } from './xf-frame.js';
+
+@Injectable()
+export class SpeechService {
+  constructor(private readonly settingsService: SettingsService) {}
+
+  async handleIatConnection(client: WebSocket, actor: SafeUser) {
+    let upstream: WebSocket | null = null;
+    const queued: RawData[] = [];
+
+    try {
+      const config = await this.getXfConfig(actor);
+      upstream = new Ws(this.buildXfAuthUrl(config.apiKey, config.apiSecret));
+
+      upstream.on('open', () => {
+        while (queued.length > 0 && upstream?.readyState === Ws.OPEN) {
+          upstream.send(prepareXfIatFrame(queued.shift() as RawData, config.appId));
+        }
+      });
+
+      upstream.on('message', (data) => {
+        if (client.readyState === Ws.OPEN) {
+          client.send(data);
+        }
+      });
+
+      upstream.on('error', (error) => {
+        this.sendClientError(client, `讯飞语音连接失败：${error.message}`);
+      });
+
+      upstream.on('close', () => {
+        if (client.readyState === Ws.OPEN || client.readyState === Ws.CONNECTING) {
+          client.close();
+        }
+      });
+
+      client.on('message', (data) => {
+        if (!upstream) return;
+        if (upstream.readyState === Ws.OPEN) {
+          upstream.send(prepareXfIatFrame(data, config.appId));
+          return;
+        }
+        queued.push(data);
+      });
+
+      client.on('close', () => {
+        if (upstream && (upstream.readyState === Ws.OPEN || upstream.readyState === Ws.CONNECTING)) {
+          upstream.close();
+        }
+      });
+
+      client.on('error', () => {
+        if (upstream && (upstream.readyState === Ws.OPEN || upstream.readyState === Ws.CONNECTING)) {
+          upstream.close();
+        }
+      });
+    } catch (error) {
+      this.sendClientError(client, error instanceof Error ? error.message : String(error));
+      client.close();
+    }
+  }
+
+  private async getXfConfig(actor: SafeUser) {
+    const settings = await this.settingsService.getSystemSettings(actor, { includeSecrets: true });
+    const config = settings.xfSpeechConfig;
+    if (!config?.appId || !config.apiKey || !config.apiSecret) {
+      throw new BadRequestException('尚未配置讯飞语音 APPID/APIKey/APISecret');
+    }
+    return config;
+  }
+
+  private buildXfAuthUrl(apiKey: string, apiSecret: string) {
+    const host = 'iat-api.xfyun.cn';
+    const date = new Date().toUTCString();
+    const signatureOrigin = `host: ${host}\ndate: ${date}\nGET /v2/iat HTTP/1.1`;
+    const signature = createHmac('sha256', apiSecret).update(signatureOrigin).digest('base64');
+    const authorizationOrigin = `api_key="${apiKey}", algorithm="hmac-sha256", headers="host date request-line", signature="${signature}"`;
+    const authorization = Buffer.from(authorizationOrigin).toString('base64');
+    const params = new URLSearchParams({ authorization, date, host });
+    return `wss://${host}/v2/iat?${params.toString()}`;
+  }
+
+  private sendClientError(client: WebSocket, message: string) {
+    if (client.readyState === Ws.OPEN) {
+      client.send(JSON.stringify({ code: -1, message }));
+    }
+  }
+}
diff --git a/server/src/speech/xf-frame.test.ts b/server/src/speech/xf-frame.test.ts
new file mode 100644
index 0000000..e4f24c7
--- /dev/null
+++ b/server/src/speech/xf-frame.test.ts
@@ -0,0 +1,31 @@
+import { describe, expect, it } from 'vitest';
+import { prepareXfIatFrame } from './xf-frame.js';
+
+describe('prepareXfIatFrame', () => {
+  it('adds server-side app id and default business options to the first frame', () => {
+    const prepared = prepareXfIatFrame(
+      JSON.stringify({
+        data: { status: 0, format: 'audio/L16;rate=16000', encoding: 'raw', audio: 'abc' },
+      }),
+      'test-app-id',
+    );
+
+    expect(JSON.parse(prepared as string)).toEqual({
+      common: { app_id: 'test-app-id' },
+      business: { language: 'zh_cn', domain: 'iat', accent: 'mandarin' },
+      data: { status: 0, format: 'audio/L16;rate=16000', encoding: 'raw', audio: 'abc' },
+    });
+  });
+
+  it('keeps later audio frames unchanged', () => {
+    const frame = JSON.stringify({
+      data: { status: 1, format: 'audio/L16;rate=16000', encoding: 'raw', audio: 'abc' },
+    });
+
+    expect(prepareXfIatFrame(frame, 'test-app-id')).toBe(frame);
+  });
+
+  it('keeps non-json payloads unchanged', () => {
+    expect(prepareXfIatFrame('not-json', 'test-app-id')).toBe('not-json');
+  });
+});
diff --git a/server/src/speech/xf-frame.ts b/server/src/speech/xf-frame.ts
new file mode 100644
index 0000000..77e77d6
--- /dev/null
+++ b/server/src/speech/xf-frame.ts
@@ -0,0 +1,38 @@
+import type { RawData } from 'ws';
+
+interface XfIatFrame {
+  common?: Record<string, unknown>;
+  business?: Record<string, unknown>;
+  data?: {
+    status?: number;
+  };
+}
+
+export const prepareXfIatFrame = (data: RawData | string, appId: string) => {
+  const text = rawDataToText(data);
+  if (!text) return data;
+
+  try {
+    const frame = JSON.parse(text) as XfIatFrame;
+    if (frame.data?.status === 0) {
+      frame.common = { ...(frame.common || {}), app_id: appId };
+      frame.business = {
+        language: 'zh_cn',
+        domain: 'iat',
+        accent: 'mandarin',
+        ...(frame.business || {}),
+      };
+    }
+    return JSON.stringify(frame);
+  } catch {
+    return data;
+  }
+};
+
+const rawDataToText = (data: RawData | string) => {
+  if (typeof data === 'string') return data;
+  if (Buffer.isBuffer(data)) return data.toString('utf8');
+  if (Array.isArray(data)) return Buffer.concat(data).toString('utf8');
+  if (data instanceof ArrayBuffer) return Buffer.from(data).toString('utf8');
+  return '';
+};
diff --git a/server/src/templates/template.mapper.test.ts b/server/src/templates/template.mapper.test.ts
new file mode 100644
index 0000000..1b015ae
--- /dev/null
+++ b/server/src/templates/template.mapper.test.ts
@@ -0,0 +1,58 @@
+import { describe, expect, it } from 'vitest';
+import { toFrontendTemplate, toTemplateResource } from './template.mapper';
+
+const now = new Date('2026-05-01T00:00:00.000Z');
+
+const baseTemplate = {
+  id: 'tpl1',
+  tenantId: 'tenant-a',
+  name: '外科模板',
+  description: '标准模板',
+  content: '<p>模板</p>',
+  fields: [{ key: 'patientName' }],
+  scope: 'DEPARTMENT' as const,
+  ownerDepartmentId: 'dept-surgery',
+  ownerUserId: null,
+  createdAt: now,
+  updatedAt: now,
+  ownerDepartment: {
+    id: 'dept-surgery',
+    tenantId: 'tenant-a',
+    name: '外科',
+    code: 'surgery',
+    createdAt: now,
+    updatedAt: now,
+  },
+  ownerUser: null,
+  permissions: [
+    {
+      id: 'perm1',
+      templateId: 'tpl1',
+      departmentId: 'dept-surgery',
+      canUse: true,
+      canManage: true,
+      createdAt: now,
+    },
+  ],
+};
+
+describe('template mapper', () => {
+  it('maps Prisma templates to frontend template objects and policy resources', () => {
+    expect(toFrontendTemplate(baseTemplate)).toMatchObject({
+      id: 'tpl1',
+      name: '外科模板',
+      desc: '标准模板',
+      scope: 'department',
+      department: '外科',
+      fields: [{ key: 'patientName' }],
+    });
+
+    expect(toTemplateResource(baseTemplate)).toMatchObject({
+      tenantId: 'tenant-a',
+      scope: 'department',
+      ownerDepartmentId: 'dept-surgery',
+      permittedDepartmentIds: ['dept-surgery'],
+      manageableDepartmentIds: ['dept-surgery'],
+    });
+  });
+});
diff --git a/server/src/templates/template.mapper.ts b/server/src/templates/template.mapper.ts
new file mode 100644
index 0000000..c7e622e
--- /dev/null
+++ b/server/src/templates/template.mapper.ts
@@ -0,0 +1,36 @@
+import type { Prisma } from '@prisma/client';
+
+export const templateInclude = {
+  ownerDepartment: true,
+  ownerUser: true,
+  permissions: true,
+} satisfies Prisma.TemplateInclude;
+
+export type TemplateWithRelations = Prisma.TemplateGetPayload<{ include: typeof templateInclude }>;
+
+export const toTemplateResource = (template: TemplateWithRelations) => ({
+  tenantId: template.tenantId,
+  scope: template.scope.toLowerCase() as 'department' | 'personal',
+  ownerDepartmentId: template.ownerDepartmentId,
+  ownerUserId: template.ownerUserId,
+  permittedDepartmentIds: template.permissions
+    .filter((permission) => permission.canUse)
+    .map((permission) => permission.departmentId),
+  manageableDepartmentIds: template.permissions
+    .filter((permission) => permission.canManage)
+    .map((permission) => permission.departmentId),
+});
+
+export const toFrontendTemplate = (template: TemplateWithRelations) => ({
+  id: template.id,
+  name: template.name,
+  desc: template.description ?? '',
+  content: template.content,
+  createdAt: template.createdAt.toISOString(),
+  updatedAt: template.updatedAt.toISOString(),
+  author: template.ownerUser?.username || 'admin',
+  fields: Array.isArray(template.fields) ? template.fields : [],
+  scope: template.scope.toLowerCase(),
+  ownerUser: template.ownerUser?.username,
+  department: template.ownerDepartment?.name ?? '',
+});
diff --git a/server/src/templates/templates.controller.ts b/server/src/templates/templates.controller.ts
new file mode 100644
index 0000000..1266fad
--- /dev/null
+++ b/server/src/templates/templates.controller.ts
@@ -0,0 +1,44 @@
+import { Body, Controller, Delete, Get, Param, Patch, Post, Query, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { TemplatesService } from './templates.service.js';
+
+@Controller('templates')
+export class TemplatesController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly templatesService: TemplatesService,
+  ) {}
+
+  @Get()
+  async list(@Req() request: Request, @Query() query: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.templatesService.list(actor, query) };
+  }
+
+  @Get(':id')
+  async get(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { template: await this.templatesService.get(actor, id) } };
+  }
+
+  @Post()
+  async create(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { template: await this.templatesService.create(actor, body) } };
+  }
+
+  @Patch(':id')
+  async update(@Req() request: Request, @Param('id') id: string, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { template: await this.templatesService.update(actor, id, body) } };
+  }
+
+  @Delete(':id')
+  async remove(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.templatesService.remove(actor, id);
+    return { data: null };
+  }
+}
diff --git a/server/src/templates/templates.module.ts b/server/src/templates/templates.module.ts
new file mode 100644
index 0000000..0d7bf39
--- /dev/null
+++ b/server/src/templates/templates.module.ts
@@ -0,0 +1,11 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { TemplatesController } from './templates.controller.js';
+import { TemplatesService } from './templates.service.js';
+
+@Module({
+  imports: [AuthModule],
+  controllers: [TemplatesController],
+  providers: [TemplatesService],
+})
+export class TemplatesModule {}
diff --git a/server/src/templates/templates.schemas.ts b/server/src/templates/templates.schemas.ts
new file mode 100644
index 0000000..60e18dd
--- /dev/null
+++ b/server/src/templates/templates.schemas.ts
@@ -0,0 +1,24 @@
+import { z } from 'zod';
+
+const templateScopeSchema = z.enum(['department', 'personal']);
+
+export const listTemplatesQuerySchema = z.object({
+  access: z.enum(['use', 'manage']).default('use'),
+});
+
+export const templateInputSchema = z.object({
+  name: z.string().trim().min(1, '模板名称不能为空'),
+  desc: z.string().trim().optional(),
+  content: z.string().default(''),
+  fields: z.array(z.unknown()).default([]),
+  scope: templateScopeSchema.default('department'),
+  department: z.string().trim().optional(),
+}).passthrough();
+
+export const templateUpdateSchema = templateInputSchema.partial().extend({
+  scope: templateScopeSchema.optional(),
+});
+
+export type ListTemplatesQuery = z.infer<typeof listTemplatesQuerySchema>;
+export type TemplateInput = z.infer<typeof templateInputSchema>;
+export type TemplateUpdateInput = z.infer<typeof templateUpdateSchema>;
diff --git a/server/src/templates/templates.service.ts b/server/src/templates/templates.service.ts
new file mode 100644
index 0000000..f6692d6
--- /dev/null
+++ b/server/src/templates/templates.service.ts
@@ -0,0 +1,224 @@
+import {
+  BadRequestException,
+  ForbiddenException,
+  Injectable,
+  NotFoundException,
+} from '@nestjs/common';
+import type { Prisma, TemplateScope } from '@prisma/client';
+import { AuditService } from '../audit/audit.service.js';
+import type { SafeUser } from '../auth/auth.types.js';
+import { sanitizeReportHtml } from '../common/html-sanitizer.js';
+import { canManageTemplate, canUseTemplate, isDoctor } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import { templateInclude, toFrontendTemplate, toTemplateResource } from './template.mapper.js';
+import {
+  listTemplatesQuerySchema,
+  templateInputSchema,
+  templateUpdateSchema,
+  type ListTemplatesQuery,
+} from './templates.schemas.js';
+
+@Injectable()
+export class TemplatesService {
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  async list(actor: SafeUser, rawQuery: unknown) {
+    const query = this.parseListQuery(rawQuery);
+    const templates = await this.prisma.template.findMany({
+      where: { tenantId: actor.tenantId },
+      include: templateInclude,
+      orderBy: { updatedAt: 'desc' },
+    });
+    const policyActor = this.actorToPolicy(actor);
+    const filtered = templates.filter((template) => {
+      const resource = toTemplateResource(template);
+      return query.access === 'manage'
+        ? canManageTemplate(policyActor, resource)
+        : canUseTemplate(policyActor, resource);
+    });
+
+    return {
+      items: filtered.map(toFrontendTemplate),
+      total: filtered.length,
+    };
+  }
+
+  async get(actor: SafeUser, id: string) {
+    const template = await this.findTemplate(actor.tenantId, id);
+    if (!canUseTemplate(this.actorToPolicy(actor), toTemplateResource(template))) {
+      throw new ForbiddenException('无权查看此模板');
+    }
+    return toFrontendTemplate(template);
+  }
+
+  async create(actor: SafeUser, rawInput: unknown) {
+    const result = templateInputSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const input = result.data;
+    if (input.scope === 'department' && isDoctor(this.actorToPolicy(actor))) {
+      throw new ForbiddenException('医生不能创建部门模板');
+    }
+
+    const ownerDepartmentId =
+      input.scope === 'department'
+        ? await this.resolveOwnerDepartmentId(actor, input.department)
+        : null;
+    const ownerUserId = input.scope === 'personal' ? actor.id : null;
+
+    const template = await this.prisma.template.create({
+      data: {
+        tenantId: actor.tenantId,
+        name: input.name,
+        description: input.desc || null,
+        content: sanitizeReportHtml(input.content),
+        fields: input.fields as Prisma.InputJsonValue,
+        scope: this.toDbScope(input.scope),
+        ownerDepartmentId,
+        ownerUserId,
+        permissions: ownerDepartmentId
+          ? {
+              create: {
+                departmentId: ownerDepartmentId,
+                canUse: true,
+                canManage: true,
+              },
+            }
+          : undefined,
+      },
+      include: templateInclude,
+    });
+
+    await this.audit?.record({
+      actor,
+      action: 'template.create',
+      targetType: 'Template',
+      targetId: template.id,
+      departmentId: ownerDepartmentId,
+      metadata: { scope: template.scope, name: template.name },
+    });
+
+    return toFrontendTemplate(template);
+  }
+
+  async update(actor: SafeUser, id: string, rawInput: unknown) {
+    const result = templateUpdateSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+
+    const existing = await this.findTemplate(actor.tenantId, id);
+    if (!canManageTemplate(this.actorToPolicy(actor), toTemplateResource(existing))) {
+      throw new ForbiddenException('无权修改此模板');
+    }
+
+    const input = result.data;
+    const updated = await this.prisma.template.update({
+      where: { id },
+      data: {
+        name: input.name ?? existing.name,
+        description: input.desc ?? existing.description,
+        content: input.content === undefined ? existing.content : sanitizeReportHtml(input.content),
+        fields: input.fields ? (input.fields as Prisma.InputJsonValue) : existing.fields,
+      },
+      include: templateInclude,
+    });
+
+    await this.audit?.record({
+      actor,
+      action: 'template.update',
+      targetType: 'Template',
+      targetId: updated.id,
+      departmentId: updated.ownerDepartmentId,
+      metadata: { scope: updated.scope, name: updated.name },
+    });
+
+    return toFrontendTemplate(updated);
+  }
+
+  async remove(actor: SafeUser, id: string) {
+    const existing = await this.findTemplate(actor.tenantId, id);
+    if (!canManageTemplate(this.actorToPolicy(actor), toTemplateResource(existing))) {
+      throw new ForbiddenException('无权删除此模板');
+    }
+
+    await this.prisma.$transaction([
+      this.prisma.report.updateMany({
+        where: { tenantId: actor.tenantId, templateId: id },
+        data: { templateId: null },
+      }),
+      this.prisma.template.delete({ where: { id } }),
+    ]);
+
+    await this.audit?.record({
+      actor,
+      action: 'template.delete',
+      targetType: 'Template',
+      targetId: existing.id,
+      departmentId: existing.ownerDepartmentId,
+      metadata: { scope: existing.scope, name: existing.name },
+    });
+
+    return null;
+  }
+
+  private parseListQuery(rawQuery: unknown): ListTemplatesQuery {
+    const result = listTemplatesQuerySchema.safeParse(rawQuery);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    return result.data;
+  }
+
+  private async findTemplate(tenantId: string, id: string) {
+    const template = await this.prisma.template.findFirst({
+      where: { id, tenantId },
+      include: templateInclude,
+    });
+    if (!template) {
+      throw new NotFoundException('模板不存在');
+    }
+    return template;
+  }
+
+  private async resolveOwnerDepartmentId(actor: SafeUser, departmentName?: string) {
+    if (actor.role === 'admin') {
+      return actor.departmentId;
+    }
+
+    if (!departmentName) {
+      return null;
+    }
+
+    const department = await this.prisma.department.findFirst({
+      where: {
+        tenantId: actor.tenantId,
+        name: departmentName,
+      },
+    });
+
+    if (!department) {
+      throw new BadRequestException('部门不存在');
+    }
+
+    return department.id;
+  }
+
+  private toDbScope(scope: 'department' | 'personal'): TemplateScope {
+    return scope === 'personal' ? 'PERSONAL' : 'DEPARTMENT';
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+}
diff --git a/server/src/types/express-session.d.ts b/server/src/types/express-session.d.ts
new file mode 100644
index 0000000..dcb8ce9
--- /dev/null
+++ b/server/src/types/express-session.d.ts
@@ -0,0 +1,7 @@
+import 'express-session';
+
+declare module 'express-session' {
+  interface SessionData {
+    userId?: string;
+  }
+}
diff --git a/server/src/users/users.controller.ts b/server/src/users/users.controller.ts
new file mode 100644
index 0000000..ae65193
--- /dev/null
+++ b/server/src/users/users.controller.ts
@@ -0,0 +1,83 @@
+import { Body, Controller, Delete, Get, Param, Patch, Post, Req } from '@nestjs/common';
+import type { Request } from 'express';
+import { AuthService } from '../auth/auth.service.js';
+import { getSessionUser } from '../auth/session-user.js';
+import { UsersService } from './users.service.js';
+
+@Controller()
+export class UsersController {
+  constructor(
+    private readonly authService: AuthService,
+    private readonly usersService: UsersService,
+  ) {}
+
+  @Get('users')
+  async listUsers(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.usersService.listUsers(actor) };
+  }
+
+  @Get('users/:id')
+  async getUser(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { user: await this.usersService.getUser(actor, id) } };
+  }
+
+  @Post('users')
+  async createUser(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { user: await this.usersService.createUser(actor, body) } };
+  }
+
+  @Patch('users/:id')
+  async updateUser(@Req() request: Request, @Param('id') id: string, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { user: await this.usersService.updateUser(actor, id, body) } };
+  }
+
+  @Delete('users/:id')
+  async removeUser(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.usersService.removeUser(actor, id);
+    return { data: null };
+  }
+
+  @Get('departments')
+  async listDepartments(@Req() request: Request) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: await this.usersService.listDepartments(actor) };
+  }
+
+  @Post('departments')
+  async createDepartment(@Req() request: Request, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { department: await this.usersService.createDepartment(actor, body) } };
+  }
+
+  @Patch('departments/:id')
+  async updateDepartment(@Req() request: Request, @Param('id') id: string, @Body() body: unknown) {
+    const actor = await getSessionUser(request, this.authService);
+    return { data: { department: await this.usersService.updateDepartment(actor, id, body) } };
+  }
+
+  @Delete('departments/:id')
+  async removeDepartment(@Req() request: Request, @Param('id') id: string) {
+    const actor = await getSessionUser(request, this.authService);
+    await this.usersService.removeDepartment(actor, id);
+    return { data: null };
+  }
+
+  @Patch('departments/:id/template-permissions')
+  async updateDepartmentTemplatePermissions(
+    @Req() request: Request,
+    @Param('id') id: string,
+    @Body() body: unknown,
+  ) {
+    const actor = await getSessionUser(request, this.authService);
+    return {
+      data: {
+        department: await this.usersService.updateDepartmentTemplatePermissions(actor, id, body),
+      },
+    };
+  }
+}
diff --git a/server/src/users/users.mapper.test.ts b/server/src/users/users.mapper.test.ts
new file mode 100644
index 0000000..ea7704d
--- /dev/null
+++ b/server/src/users/users.mapper.test.ts
@@ -0,0 +1,89 @@
+import { describe, expect, it } from 'vitest';
+import { toFrontendUser, type UserWithRelations } from './users.mapper';
+
+const baseUser = {
+  id: 'u-admin',
+  tenantId: 'tenant-a',
+  departmentId: 'dept-surgery',
+  username: 'manager',
+  passwordHash: 'hash',
+  role: 'ADMIN',
+  name: '科室管理员',
+  status: 'ACTIVE',
+  phone: null,
+  email: null,
+  signatureFileId: null,
+  lastLoginAt: null,
+  createdAt: new Date('2026-01-01T00:00:00.000Z'),
+  updatedAt: new Date('2026-01-02T00:00:00.000Z'),
+  department: {
+    id: 'dept-surgery',
+    tenantId: 'tenant-a',
+    name: '外科',
+    code: 'surgery',
+    createdAt: new Date('2026-01-01T00:00:00.000Z'),
+    updatedAt: new Date('2026-01-01T00:00:00.000Z'),
+    permissions: [
+      {
+        id: 'perm-1',
+        templateId: 'tpl-use',
+        departmentId: 'dept-surgery',
+        canUse: true,
+        canManage: false,
+        createdAt: new Date('2026-01-01T00:00:00.000Z'),
+      },
+      {
+        id: 'perm-2',
+        templateId: 'tpl-manage',
+        departmentId: 'dept-surgery',
+        canUse: true,
+        canManage: true,
+        createdAt: new Date('2026-01-01T00:00:00.000Z'),
+      },
+    ],
+  },
+  personalTemplates: [],
+} as UserWithRelations;
+
+describe('users mapper', () => {
+  it('maps department template permissions to frontend user fields', () => {
+    const user = toFrontendUser(baseUser, [
+      { id: 'tpl-owned', ownerDepartmentId: 'dept-surgery' },
+      { id: 'tpl-use', ownerDepartmentId: 'dept-other' },
+      { id: 'tpl-manage', ownerDepartmentId: 'dept-other' },
+    ]);
+
+    expect(user.role).toBe('admin');
+    expect(user.department).toBe('外科');
+    expect(user.visibleTemplates).toEqual(expect.arrayContaining(['tpl-owned', 'tpl-use', 'tpl-manage']));
+    expect(user.manageableTemplates).toEqual(expect.arrayContaining(['tpl-owned', 'tpl-manage']));
+  });
+
+  it('keeps doctor management permissions empty while exposing personal templates', () => {
+    const user = toFrontendUser({
+      ...baseUser,
+      id: 'u-doctor',
+      username: '0001',
+      role: 'DOCTOR',
+      personalTemplates: [
+        {
+          id: 'tpl-personal',
+          tenantId: 'tenant-a',
+          name: '我的模板',
+          description: null,
+          content: '',
+          fields: [],
+          scope: 'PERSONAL',
+          ownerDepartmentId: null,
+          ownerUserId: 'u-doctor',
+          createdAt: new Date('2026-01-01T00:00:00.000Z'),
+          updatedAt: new Date('2026-01-01T00:00:00.000Z'),
+        },
+      ],
+    } as UserWithRelations, [{ id: 'tpl-use', ownerDepartmentId: 'dept-surgery' }]);
+
+    expect(user.role).toBe('user');
+    expect(user.visibleTemplates).toContain('tpl-personal');
+    expect(user.manageableTemplates).toEqual([]);
+  });
+});
diff --git a/server/src/users/users.mapper.ts b/server/src/users/users.mapper.ts
new file mode 100644
index 0000000..02335d8
--- /dev/null
+++ b/server/src/users/users.mapper.ts
@@ -0,0 +1,80 @@
+import type { Prisma } from '@prisma/client';
+
+export const userInclude = {
+  department: {
+    include: {
+      permissions: true,
+    },
+  },
+  personalTemplates: true,
+} satisfies Prisma.UserInclude;
+
+export type UserWithRelations = Prisma.UserGetPayload<{ include: typeof userInclude }>;
+
+export interface TemplatePermissionSeed {
+  id: string;
+  ownerDepartmentId?: string | null;
+}
+
+export const toFrontendUser = (user: UserWithRelations, allTemplates: TemplatePermissionSeed[]) => {
+  const role = user.role === 'DOCTOR' ? 'user' : user.role.toLowerCase();
+  const allTemplateIds = allTemplates.map((template) => template.id);
+  const departmentTemplateIds = allTemplates
+    .filter((template) => template.ownerDepartmentId === user.departmentId)
+    .map((template) => template.id);
+  const permittedTemplateIds = user.department.permissions
+    .filter((permission) => permission.canUse || permission.canManage)
+    .map((permission) => permission.templateId);
+  const manageableTemplateIds = user.department.permissions
+    .filter((permission) => permission.canManage)
+    .map((permission) => permission.templateId);
+  const personalTemplateIds = user.personalTemplates.map((template) => template.id);
+  const visibleTemplateIds = Array.from(new Set([...departmentTemplateIds, ...permittedTemplateIds]));
+
+  return {
+    id: user.id,
+    username: user.username,
+    role,
+    name: user.name,
+    phone: user.phone ?? undefined,
+    email: user.email ?? undefined,
+    departmentId: user.departmentId,
+    department: user.department.name,
+    status: user.status.toLowerCase(),
+    createdAt: user.createdAt.toISOString(),
+    updatedAt: user.updatedAt.toISOString(),
+    signatureFileId: user.signatureFileId ?? undefined,
+    signature: user.signatureFileId ? `/api/files/${user.signatureFileId}/content` : undefined,
+    visibleTemplates:
+      role === 'super'
+        ? allTemplateIds
+        : Array.from(new Set([...visibleTemplateIds, ...personalTemplateIds])),
+    manageableTemplates:
+      role === 'super'
+        ? allTemplateIds
+        : role === 'admin'
+          ? Array.from(new Set([...departmentTemplateIds, ...manageableTemplateIds]))
+          : [],
+  };
+};
+
+export const toDepartmentResource = (
+  department: Prisma.DepartmentGetPayload<{ include: { permissions: true } }>,
+) => {
+  const visibleTemplates = department.permissions
+    .filter((permission) => permission.canUse || permission.canManage)
+    .map((permission) => permission.templateId);
+  const manageableTemplates = department.permissions
+    .filter((permission) => permission.canManage)
+    .map((permission) => permission.templateId);
+
+  return {
+    id: department.id,
+    name: department.name,
+    code: department.code,
+    visibleTemplates,
+    manageableTemplates,
+    createdAt: department.createdAt.toISOString(),
+    updatedAt: department.updatedAt.toISOString(),
+  };
+};
diff --git a/server/src/users/users.module.ts b/server/src/users/users.module.ts
new file mode 100644
index 0000000..1c4ed28
--- /dev/null
+++ b/server/src/users/users.module.ts
@@ -0,0 +1,12 @@
+import { Module } from '@nestjs/common';
+import { AuthModule } from '../auth/auth.module.js';
+import { PrismaModule } from '../prisma/prisma.module.js';
+import { UsersController } from './users.controller.js';
+import { UsersService } from './users.service.js';
+
+@Module({
+  imports: [AuthModule, PrismaModule],
+  controllers: [UsersController],
+  providers: [UsersService],
+})
+export class UsersModule {}
diff --git a/server/src/users/users.schemas.ts b/server/src/users/users.schemas.ts
new file mode 100644
index 0000000..0fb9d74
--- /dev/null
+++ b/server/src/users/users.schemas.ts
@@ -0,0 +1,37 @@
+import { z } from 'zod';
+
+const roleSchema = z.enum(['super', 'admin', 'doctor', 'user']);
+const statusSchema = z.enum(['active', 'inactive']);
+
+export const userInputSchema = z.object({
+  username: z.string().trim().min(1, '用户ID不能为空'),
+  password: z.string().min(1, '密码不能为空'),
+  role: roleSchema.default('user'),
+  name: z.string().trim().min(1, '姓名不能为空'),
+  phone: z.string().trim().optional(),
+  email: z.string().trim().email('邮箱格式不正确').optional().or(z.literal('')),
+  departmentId: z.string().trim().optional(),
+  department: z.string().trim().optional(),
+  status: statusSchema.default('active'),
+  visibleTemplates: z.array(z.string()).default([]),
+  manageableTemplates: z.array(z.string()).default([]),
+}).passthrough();
+
+export const userUpdateSchema = userInputSchema.partial().extend({
+  password: z.string().optional(),
+});
+
+export const departmentInputSchema = z.object({
+  name: z.string().trim().min(1, '部门名称不能为空'),
+  code: z.string().trim().min(1, '部门编码不能为空').optional(),
+}).passthrough();
+
+export const departmentPermissionSchema = z.object({
+  visibleTemplates: z.array(z.string()).default([]),
+  manageableTemplates: z.array(z.string()).default([]),
+}).passthrough();
+
+export type UserInput = z.infer<typeof userInputSchema>;
+export type UserUpdateInput = z.infer<typeof userUpdateSchema>;
+export type DepartmentInput = z.infer<typeof departmentInputSchema>;
+export type DepartmentPermissionInput = z.infer<typeof departmentPermissionSchema>;
diff --git a/server/src/users/users.service.ts b/server/src/users/users.service.ts
new file mode 100644
index 0000000..78a1c6e
--- /dev/null
+++ b/server/src/users/users.service.ts
@@ -0,0 +1,548 @@
+import {
+  BadRequestException,
+  ConflictException,
+  ForbiddenException,
+  Injectable,
+  NotFoundException,
+} from '@nestjs/common';
+import type { Prisma, UserRole, UserStatus } from '@prisma/client';
+import argon2 from 'argon2';
+import { AuditService } from '../audit/audit.service.js';
+import type { SafeUser } from '../auth/auth.types.js';
+import { canManageUser, isAdmin, isDoctor, isSuper, type AppRole } from '../permissions/permissions.policy.js';
+import { PrismaService } from '../prisma/prisma.service.js';
+import {
+  departmentInputSchema,
+  departmentPermissionSchema,
+  userInputSchema,
+  userUpdateSchema,
+  type DepartmentPermissionInput,
+  type UserInput,
+  type UserUpdateInput,
+} from './users.schemas.js';
+import { toDepartmentResource, toFrontendUser, userInclude } from './users.mapper.js';
+
+@Injectable()
+export class UsersService {
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly audit?: AuditService,
+  ) {}
+
+  async listUsers(actor: SafeUser) {
+    const users = await this.prisma.user.findMany({
+      where: this.visibleUserWhere(actor),
+      include: userInclude,
+      orderBy: [{ role: 'asc' }, { username: 'asc' }],
+    });
+    const templates = await this.findTemplateSeeds(actor.tenantId);
+    return {
+      items: users.map((user) => toFrontendUser(user, templates)),
+      total: users.length,
+    };
+  }
+
+  async getUser(actor: SafeUser, id: string) {
+    const user = await this.findUser(actor.tenantId, id);
+    if (!this.canViewUser(actor, user)) {
+      throw new ForbiddenException('无权查看此用户');
+    }
+    const templates = await this.findTemplateSeeds(actor.tenantId);
+    return toFrontendUser(user, templates);
+  }
+
+  async createUser(actor: SafeUser, rawInput: unknown) {
+    const input = this.parseCreateInput(rawInput);
+    if (isDoctor(this.actorToPolicy(actor))) {
+      throw new ForbiddenException('医生不能创建用户');
+    }
+
+    const role = this.toDbRole(input.role);
+    if (role === 'SUPER') {
+      throw new ForbiddenException('不能新增超级管理员');
+    }
+    if (role === 'ADMIN' && !isSuper(this.actorToPolicy(actor))) {
+      throw new ForbiddenException('只有超级管理员能创建管理员');
+    }
+
+    const departmentId = await this.resolveDepartmentId(actor, input, role);
+    await this.ensureUsernameAvailable(actor.tenantId, input.username);
+    await this.ensureRoleRules(actor, role, departmentId);
+
+    const user = await this.prisma.user.create({
+      data: {
+        tenantId: actor.tenantId,
+        departmentId,
+        username: input.username,
+        passwordHash: await argon2.hash(input.password),
+        role,
+        name: input.name,
+        phone: input.phone || null,
+        email: input.email || null,
+        status: this.toDbStatus(input.status),
+      },
+      include: userInclude,
+    });
+
+    if (role === 'ADMIN' && isSuper(this.actorToPolicy(actor))) {
+      await this.syncDepartmentTemplatePermissions(actor.tenantId, departmentId, input);
+      await this.audit?.record({
+        actor,
+        action: 'user.create',
+        targetType: 'User',
+        targetId: user.id,
+        departmentId,
+        metadata: { username: user.username, role: user.role },
+      });
+      return this.getUser(actor, user.id);
+    }
+
+    const templates = await this.findTemplateSeeds(actor.tenantId);
+    await this.audit?.record({
+      actor,
+      action: 'user.create',
+      targetType: 'User',
+      targetId: user.id,
+      departmentId,
+      metadata: { username: user.username, role: user.role },
+    });
+    return toFrontendUser(user, templates);
+  }
+
+  async updateUser(actor: SafeUser, id: string, rawInput: unknown) {
+    const input = this.parseUpdateInput(rawInput);
+    const existing = await this.findUser(actor.tenantId, id);
+    if (!canManageUser(this.actorToPolicy(actor), this.userToPolicy(existing))) {
+      throw new ForbiddenException('无权修改此用户');
+    }
+
+    const targetRole = input.role ? this.toDbRole(input.role) : existing.role;
+    if (!isSuper(this.actorToPolicy(actor)) && targetRole !== existing.role) {
+      throw new ForbiddenException('只有超级管理员能修改角色');
+    }
+    if (targetRole === 'SUPER' && existing.role !== 'SUPER') {
+      throw new ForbiddenException('不能提升为超级管理员');
+    }
+
+    const departmentId =
+      input.departmentId || input.department
+        ? await this.resolveDepartmentId(actor, input, targetRole)
+        : existing.departmentId;
+    if (!isSuper(this.actorToPolicy(actor)) && departmentId !== existing.departmentId) {
+      throw new ForbiddenException('只有超级管理员能调整部门');
+    }
+
+    await this.ensureRoleRules(actor, targetRole, departmentId, existing.id);
+
+    const data: Prisma.UserUpdateInput = {
+      name: input.name ?? existing.name,
+      phone: input.phone === undefined ? existing.phone : input.phone || null,
+      email: input.email === undefined ? existing.email : input.email || null,
+    };
+
+    if (isSuper(this.actorToPolicy(actor))) {
+      data.role = targetRole;
+      data.status = input.status ? this.toDbStatus(input.status) : existing.status;
+      data.department = { connect: { id: departmentId } };
+    } else if (isAdmin(this.actorToPolicy(actor)) && existing.role === 'DOCTOR') {
+      data.status = input.status ? this.toDbStatus(input.status) : existing.status;
+    }
+
+    if (input.password) {
+      data.passwordHash = await argon2.hash(input.password);
+    }
+
+    const updated = await this.prisma.user.update({
+      where: { id: existing.id },
+      data,
+      include: userInclude,
+    });
+
+    if (targetRole === 'ADMIN' && isSuper(this.actorToPolicy(actor))) {
+      await this.syncDepartmentTemplatePermissions(actor.tenantId, departmentId, input);
+      await this.audit?.record({
+        actor,
+        action: 'user.update',
+        targetType: 'User',
+        targetId: updated.id,
+        departmentId,
+        metadata: { username: updated.username, role: updated.role, status: updated.status },
+      });
+      return this.getUser(actor, updated.id);
+    }
+
+    const templates = await this.findTemplateSeeds(actor.tenantId);
+    await this.audit?.record({
+      actor,
+      action: 'user.update',
+      targetType: 'User',
+      targetId: updated.id,
+      departmentId,
+      metadata: { username: updated.username, role: updated.role, status: updated.status },
+    });
+    return toFrontendUser(updated, templates);
+  }
+
+  async removeUser(actor: SafeUser, id: string) {
+    const existing = await this.findUser(actor.tenantId, id);
+    if (existing.id === actor.id) {
+      throw new BadRequestException('不能删除当前登录账号');
+    }
+    if (existing.username === 'admin') {
+      throw new BadRequestException('不能删除默认超级管理员');
+    }
+    if (!canManageUser(this.actorToPolicy(actor), this.userToPolicy(existing))) {
+      throw new ForbiddenException('无权删除此用户');
+    }
+
+    await this.prisma.user.delete({ where: { id: existing.id } }).catch(() => {
+      throw new ConflictException('用户已有业务数据，请先禁用账号');
+    });
+    await this.audit?.record({
+      actor,
+      action: 'user.delete',
+      targetType: 'User',
+      targetId: existing.id,
+      departmentId: existing.departmentId,
+      metadata: { username: existing.username, role: existing.role },
+    });
+    return null;
+  }
+
+  async listDepartments(actor: SafeUser) {
+    const departments = await this.prisma.department.findMany({
+      where: isSuper(this.actorToPolicy(actor))
+        ? { tenantId: actor.tenantId }
+        : { tenantId: actor.tenantId, id: actor.departmentId },
+      include: { permissions: true },
+      orderBy: { name: 'asc' },
+    });
+    return {
+      items: departments.map(toDepartmentResource),
+      total: departments.length,
+    };
+  }
+
+  async createDepartment(actor: SafeUser, rawInput: unknown) {
+    this.requireSuper(actor);
+    const input = this.parseDepartmentInput(rawInput);
+    const code = input.code || this.slugifyDepartmentName(input.name);
+    const department = await this.prisma.department.create({
+      data: {
+        tenantId: actor.tenantId,
+        name: input.name,
+        code,
+      },
+      include: { permissions: true },
+    }).catch(() => {
+      throw new ConflictException('部门编码已存在');
+    });
+    await this.audit?.record({
+      actor,
+      action: 'department.create',
+      targetType: 'Department',
+      targetId: department.id,
+      departmentId: department.id,
+      metadata: { name: department.name, code: department.code },
+    });
+    return toDepartmentResource(department);
+  }
+
+  async updateDepartment(actor: SafeUser, id: string, rawInput: unknown) {
+    this.requireSuper(actor);
+    const input = this.parseDepartmentInput(rawInput);
+    const existing = await this.findDepartment(actor.tenantId, id);
+    const department = await this.prisma.department.update({
+      where: { id: existing.id },
+      data: {
+        name: input.name,
+        code: input.code || existing.code,
+      },
+      include: { permissions: true },
+    }).catch(() => {
+      throw new ConflictException('部门编码已存在');
+    });
+    await this.audit?.record({
+      actor,
+      action: 'department.update',
+      targetType: 'Department',
+      targetId: department.id,
+      departmentId: department.id,
+      metadata: { name: department.name, code: department.code },
+    });
+    return toDepartmentResource(department);
+  }
+
+  async removeDepartment(actor: SafeUser, id: string) {
+    this.requireSuper(actor);
+    const existing = await this.findDepartment(actor.tenantId, id);
+    if (existing.id === actor.departmentId) {
+      throw new BadRequestException('不能删除当前登录用户所在部门');
+    }
+    await this.prisma.department.delete({ where: { id: existing.id } }).catch(() => {
+      throw new ConflictException('部门已有用户、报告或模板，不能删除');
+    });
+    await this.audit?.record({
+      actor,
+      action: 'department.delete',
+      targetType: 'Department',
+      targetId: existing.id,
+      departmentId: existing.id,
+      metadata: { name: existing.name, code: existing.code },
+    });
+    return null;
+  }
+
+  async updateDepartmentTemplatePermissions(actor: SafeUser, id: string, rawInput: unknown) {
+    this.requireSuper(actor);
+    const department = await this.findDepartment(actor.tenantId, id);
+    const result = departmentPermissionSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    await this.syncDepartmentTemplatePermissions(actor.tenantId, department.id, result.data);
+    const updated = await this.prisma.department.findUniqueOrThrow({
+      where: { id: department.id },
+      include: { permissions: true },
+    });
+    await this.audit?.record({
+      actor,
+      action: 'department.template_permissions.update',
+      targetType: 'Department',
+      targetId: department.id,
+      departmentId: department.id,
+      metadata: { visibleTemplates: result.data.visibleTemplates, manageableTemplates: result.data.manageableTemplates },
+    });
+    return toDepartmentResource(updated);
+  }
+
+  private visibleUserWhere(actor: SafeUser): Prisma.UserWhereInput {
+    if (isSuper(this.actorToPolicy(actor))) {
+      return { tenantId: actor.tenantId };
+    }
+    if (isAdmin(this.actorToPolicy(actor))) {
+      return {
+        tenantId: actor.tenantId,
+        OR: [
+          { id: actor.id },
+          { departmentId: actor.departmentId, role: 'DOCTOR' },
+        ],
+      };
+    }
+    return { tenantId: actor.tenantId, id: actor.id };
+  }
+
+  private canViewUser(actor: SafeUser, target: Awaited<ReturnType<UsersService['findUser']>>) {
+    if (isSuper(this.actorToPolicy(actor))) return true;
+    if (isAdmin(this.actorToPolicy(actor))) {
+      return target.id === actor.id || (target.departmentId === actor.departmentId && target.role === 'DOCTOR');
+    }
+    return target.id === actor.id;
+  }
+
+  private async findUser(tenantId: string, id: string) {
+    const user = await this.prisma.user.findFirst({
+      where: { tenantId, OR: [{ id }, { username: id }] },
+      include: userInclude,
+    });
+    if (!user) {
+      throw new NotFoundException('用户不存在');
+    }
+    return user;
+  }
+
+  private async findDepartment(tenantId: string, id: string) {
+    const department = await this.prisma.department.findFirst({
+      where: {
+        tenantId,
+        OR: [{ id }, { name: id }, { code: id }],
+      },
+    });
+    if (!department) {
+      throw new NotFoundException('部门不存在');
+    }
+    return department;
+  }
+
+  private async findTemplateSeeds(tenantId: string) {
+    return this.prisma.template.findMany({
+      where: { tenantId },
+      select: { id: true, ownerDepartmentId: true },
+    });
+  }
+
+  private parseCreateInput(rawInput: unknown): UserInput {
+    const result = userInputSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    return result.data;
+  }
+
+  private parseUpdateInput(rawInput: unknown): UserUpdateInput {
+    const result = userUpdateSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    return result.data;
+  }
+
+  private parseDepartmentInput(rawInput: unknown) {
+    const result = departmentInputSchema.safeParse(rawInput);
+    if (!result.success) {
+      throw new BadRequestException(result.error.issues.map((issue) => issue.message).join('；'));
+    }
+    return result.data;
+  }
+
+  private async resolveDepartmentId(actor: SafeUser, input: Partial<UserInput>, role: UserRole) {
+    if (isAdmin(this.actorToPolicy(actor))) {
+      return actor.departmentId;
+    }
+
+    if (input.departmentId) {
+      await this.findDepartment(actor.tenantId, input.departmentId);
+      return input.departmentId;
+    }
+
+    if (input.department) {
+      const department = await this.findDepartment(actor.tenantId, input.department);
+      return department.id;
+    }
+
+    if (role === 'SUPER') {
+      return actor.departmentId;
+    }
+
+    throw new BadRequestException('部门不能为空');
+  }
+
+  private async ensureUsernameAvailable(tenantId: string, username: string) {
+    const existing = await this.prisma.user.findUnique({
+      where: { tenantId_username: { tenantId, username } },
+    });
+    if (existing) {
+      throw new ConflictException('用户ID已存在');
+    }
+  }
+
+  private async ensureRoleRules(
+    actor: SafeUser,
+    role: UserRole,
+    departmentId: string,
+    excludeUserId?: string,
+  ) {
+    if (role === 'ADMIN') {
+      const existingAdmin = await this.prisma.user.findFirst({
+        where: {
+          tenantId: actor.tenantId,
+          departmentId,
+          role: 'ADMIN',
+          id: excludeUserId ? { not: excludeUserId } : undefined,
+        },
+      });
+      if (existingAdmin) {
+        throw new ConflictException('该部门已存在管理员');
+      }
+    }
+
+    if (role === 'DOCTOR') {
+      const departmentAdmin = await this.prisma.user.findFirst({
+        where: {
+          tenantId: actor.tenantId,
+          departmentId,
+          role: 'ADMIN',
+          status: 'ACTIVE',
+        },
+      });
+      if (!departmentAdmin) {
+        throw new BadRequestException('该部门暂无管理员，请先创建部门管理员');
+      }
+    }
+  }
+
+  private async syncDepartmentTemplatePermissions(
+    tenantId: string,
+    departmentId: string,
+    input: Partial<DepartmentPermissionInput>,
+  ) {
+    const visibleIds = new Set(input.visibleTemplates || []);
+    const manageableIds = new Set(input.manageableTemplates || []);
+    manageableIds.forEach((id) => visibleIds.add(id));
+
+    const templates = await this.prisma.template.findMany({
+      where: { tenantId },
+      select: { id: true },
+    });
+    const validTemplateIds = new Set(templates.map((template) => template.id));
+    const desiredIds = new Set([...visibleIds, ...manageableIds].filter((id) => validTemplateIds.has(id)));
+
+    await this.prisma.$transaction([
+      this.prisma.templateDepartmentPermission.deleteMany({
+        where: {
+          departmentId,
+          template: { tenantId },
+          templateId: { notIn: Array.from(desiredIds) },
+        },
+      }),
+      ...Array.from(desiredIds).map((templateId) =>
+        this.prisma.templateDepartmentPermission.upsert({
+          where: { templateId_departmentId: { templateId, departmentId } },
+          update: {
+            canUse: visibleIds.has(templateId) || manageableIds.has(templateId),
+            canManage: manageableIds.has(templateId),
+          },
+          create: {
+            templateId,
+            departmentId,
+            canUse: visibleIds.has(templateId) || manageableIds.has(templateId),
+            canManage: manageableIds.has(templateId),
+          },
+        }),
+      ),
+    ]);
+  }
+
+  private requireSuper(actor: SafeUser) {
+    if (!isSuper(this.actorToPolicy(actor))) {
+      throw new ForbiddenException('只有超级管理员可以管理部门');
+    }
+  }
+
+  private toDbRole(role: UserInput['role']): UserRole {
+    if (role === 'user' || role === 'doctor') return 'DOCTOR';
+    if (role === 'admin') return 'ADMIN';
+    return 'SUPER';
+  }
+
+  private toDbStatus(status: UserInput['status']): UserStatus {
+    return status === 'inactive' ? 'INACTIVE' : 'ACTIVE';
+  }
+
+  private actorToPolicy(actor: SafeUser) {
+    return {
+      id: actor.id,
+      tenantId: actor.tenantId,
+      departmentId: actor.departmentId,
+      role: actor.role,
+    };
+  }
+
+  private userToPolicy(user: Awaited<ReturnType<UsersService['findUser']>>) {
+    return {
+      id: user.id,
+      tenantId: user.tenantId,
+      departmentId: user.departmentId,
+      role: (user.role.toLowerCase() === 'doctor' ? 'doctor' : user.role.toLowerCase()) as AppRole,
+    };
+  }
+
+  private slugifyDepartmentName(name: string) {
+    return name
+      .trim()
+      .toLowerCase()
+      .replace(/\s+/g, '-')
+      .replace(/[^a-z0-9\u4e00-\u9fa5-]/g, '')
+      .slice(0, 48) || `dept-${Date.now()}`;
+  }
+}
diff --git a/server/tsconfig.json b/server/tsconfig.json
new file mode 100644
index 0000000..ed900e6
--- /dev/null
+++ b/server/tsconfig.json
@@ -0,0 +1,20 @@
+{
+  "extends": "../tsconfig.json",
+  "compilerOptions": {
+    "module": "NodeNext",
+    "moduleResolution": "NodeNext",
+    "target": "ES2022",
+    "lib": ["ES2022"],
+    "rootDir": "./src",
+    "outDir": "./dist",
+    "noEmit": false,
+    "declaration": false,
+    "sourceMap": true,
+    "allowImportingTsExtensions": false,
+    "isolatedModules": false,
+    "emitDecoratorMetadata": true,
+    "types": ["node", "express-session"]
+  },
+  "include": ["src/**/*.ts"],
+  "exclude": ["dist", "node_modules", "**/*.test.ts"]
+}
diff --git a/src/App.tsx b/src/App.tsx
new file mode 100644
index 0000000..cc9423d
--- /dev/null
+++ b/src/App.tsx
@@ -0,0 +1,45 @@
+import { BrowserRouter as Router, Routes, Route, Navigate } from 'react-router-dom';
+import type { ReactElement } from 'react';
+import Login from './pages/Login';
+import Dashboard from './pages/Dashboard';
+import ReportEditor from './pages/ReportEditor';
+import ReportManage from './pages/ReportManage';
+import ReportView from './pages/ReportView';
+import TemplateManage from './pages/TemplateManage';
+import UserManage from './pages/UserManage';
+import SystemSettings from './pages/SystemSettings';
+import { AuthProvider, useAuth } from './auth/AuthContext';
+
+function RequireAuth({ children }: { children: ReactElement }) {
+  const { user, isLoading } = useAuth();
+
+  if (isLoading && !user) {
+    return <div className="min-h-screen bg-bg flex items-center justify-center text-sm font-semibold text-text-muted">正在恢复登录态...</div>;
+  }
+
+  if (!user) {
+    return <Navigate to="/" replace />;
+  }
+
+  return children;
+}
+
+export default function App() {
+  return (
+    <AuthProvider>
+      <Router>
+        <Routes>
+          <Route path="/" element={<Login />} />
+          <Route path="/dashboard" element={<RequireAuth><Dashboard /></RequireAuth>} />
+          <Route path="/report-editor" element={<RequireAuth><ReportEditor /></RequireAuth>} />
+          <Route path="/report-manage" element={<RequireAuth><ReportManage /></RequireAuth>} />
+          <Route path="/report-view/:id" element={<RequireAuth><ReportView /></RequireAuth>} />
+          <Route path="/template-manage" element={<RequireAuth><TemplateManage /></RequireAuth>} />
+          <Route path="/user-manage" element={<RequireAuth><UserManage /></RequireAuth>} />
+          <Route path="/system-settings" element={<RequireAuth><SystemSettings /></RequireAuth>} />
+          <Route path="*" element={<Navigate to="/" replace />} />
+        </Routes>
+      </Router>
+    </AuthProvider>
+  );
+}
diff --git a/src/api/ai.ts b/src/api/ai.ts
new file mode 100644
index 0000000..01164c8
--- /dev/null
+++ b/src/api/ai.ts
@@ -0,0 +1,24 @@
+import { apiRequest } from './client';
+
+export interface AiModelsResponse {
+  models: string[];
+  provider: {
+    endpoint: string;
+    modelName: string;
+  };
+  raw?: unknown;
+}
+
+export const listAiModels = async () => {
+  const response = await apiRequest<AiModelsResponse>('/api/ai/models');
+  if (!response || !Array.isArray(response.models)) {
+    throw new Error('Invalid AI models response');
+  }
+  return response;
+};
+
+export const createAiChatCompletion = async (payload: Record<string, unknown>) =>
+  apiRequest<any>('/api/ai/chat', {
+    method: 'POST',
+    body: payload,
+  });
diff --git a/src/api/client.test.ts b/src/api/client.test.ts
new file mode 100644
index 0000000..955172e
--- /dev/null
+++ b/src/api/client.test.ts
@@ -0,0 +1,38 @@
+import { describe, expect, it, vi } from 'vitest';
+import { apiRequest, ApiError } from './client';
+
+describe('apiRequest', () => {
+  it('unwraps API data envelopes and sends credentials', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockResolvedValueOnce({
+      ok: true,
+      status: 200,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ data: { ok: true } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await expect(apiRequest<{ ok: boolean }>('/api/health')).resolves.toEqual({ ok: true });
+    expect(fetchMock).toHaveBeenCalledWith('/api/health', expect.objectContaining({
+      credentials: 'include',
+    }));
+  });
+
+  it('throws typed errors from backend error envelopes', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockResolvedValueOnce({
+      ok: false,
+      status: 401,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ error: { code: 'UNAUTHORIZED', message: '未登录' } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await expect(apiRequest('/api/auth/me')).rejects.toMatchObject({
+      name: 'ApiError',
+      status: 401,
+      code: 'UNAUTHORIZED',
+      message: '未登录',
+    });
+  });
+});
diff --git a/src/api/client.ts b/src/api/client.ts
new file mode 100644
index 0000000..75951ba
--- /dev/null
+++ b/src/api/client.ts
@@ -0,0 +1,80 @@
+export interface ApiErrorBody {
+  error?: {
+    code?: string;
+    message?: string;
+  };
+}
+
+export class ApiError extends Error {
+  constructor(
+    message: string,
+    readonly status: number,
+    readonly code?: string,
+  ) {
+    super(message);
+    this.name = 'ApiError';
+  }
+}
+
+type ApiRequestOptions = Omit<RequestInit, 'body'> & {
+  body?: BodyInit | Record<string, unknown>;
+};
+
+const getApiBaseUrl = () => (import.meta.env.VITE_API_BASE_URL || '').replace(/\/$/, '');
+
+const isJsonBody = (body: unknown) =>
+  body !== undefined &&
+  typeof body === 'object' &&
+  !(body instanceof FormData) &&
+  !(body instanceof Blob) &&
+  !(body instanceof URLSearchParams);
+
+export async function apiRequest<T>(path: string, options: ApiRequestOptions = {}): Promise<T> {
+  const url = `${getApiBaseUrl()}${path.startsWith('/') ? path : `/${path}`}`;
+  const headers = new Headers(options.headers);
+  let body: BodyInit | null | undefined = options.body as BodyInit | null | undefined;
+
+  if (isJsonBody(body)) {
+    headers.set('Content-Type', 'application/json');
+    body = JSON.stringify(body);
+  }
+
+  const response = await fetch(url, {
+    ...options,
+    body,
+    headers,
+    credentials: 'include',
+  });
+
+  const payload = await parsePayload(response);
+  if (!response.ok) {
+    const errorPayload = payload as ApiErrorBody | null;
+    throw new ApiError(
+      errorPayload?.error?.message || `请求失败：${response.status}`,
+      response.status,
+      errorPayload?.error?.code,
+    );
+  }
+
+  if (payload && typeof payload === 'object' && 'data' in payload) {
+    return (payload as { data: T }).data;
+  }
+
+  return payload as T;
+}
+
+async function parsePayload(response: Response) {
+  const contentType = response.headers.get('content-type') || '';
+  if (contentType.includes('application/json')) {
+    return response.json();
+  }
+
+  const text = await response.text();
+  if (!text) return null;
+
+  try {
+    return JSON.parse(text);
+  } catch {
+    return text;
+  }
+}
diff --git a/src/api/dashboard.test.ts b/src/api/dashboard.test.ts
new file mode 100644
index 0000000..5ff154c
--- /dev/null
+++ b/src/api/dashboard.test.ts
@@ -0,0 +1,29 @@
+import { describe, expect, it, vi } from 'vitest';
+import { getDashboardStats } from './dashboard';
+
+describe('dashboard api', () => {
+  it('loads dashboard stats from backend', async () => {
+    vi.mocked(fetch).mockResolvedValueOnce({
+      ok: true,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: async () => ({
+        data: {
+          stats: {
+            totalCount: 1,
+            monthCount: 1,
+            templateCount: 2,
+            userCount: 3,
+            todayCount: 1,
+            trend: [0, 1],
+            trendLabels: ['5/1', '5/2'],
+            trendFullDates: ['2026-05-01', '2026-05-02'],
+            maxTrend: 1,
+          },
+        },
+      }),
+    } as Response);
+
+    await expect(getDashboardStats('7days')).resolves.toMatchObject({ totalCount: 1, userCount: 3 });
+    expect(fetch).toHaveBeenCalledWith('/api/dashboard/stats?range=7days', expect.objectContaining({ credentials: 'include' }));
+  });
+});
diff --git a/src/api/dashboard.ts b/src/api/dashboard.ts
new file mode 100644
index 0000000..a400497
--- /dev/null
+++ b/src/api/dashboard.ts
@@ -0,0 +1,21 @@
+import { apiRequest } from './client';
+
+export interface DashboardStats {
+  totalCount: number;
+  monthCount: number;
+  templateCount: number;
+  userCount: number;
+  todayCount: number;
+  trend: number[];
+  trendLabels: string[];
+  trendFullDates: string[];
+  maxTrend: number;
+}
+
+export const getDashboardStats = async (range: '7days' | '1month') => {
+  const response = await apiRequest<{ stats: DashboardStats }>(`/api/dashboard/stats?range=${range}`);
+  if (!response?.stats) {
+    throw new Error('Invalid dashboard stats response');
+  }
+  return response.stats;
+};
diff --git a/src/api/files.test.ts b/src/api/files.test.ts
new file mode 100644
index 0000000..5e21d6c
--- /dev/null
+++ b/src/api/files.test.ts
@@ -0,0 +1,37 @@
+import { describe, expect, it, vi } from 'vitest';
+import { listFiles, uploadFileResource } from './files';
+
+describe('files API', () => {
+  it('lists file resources by kind', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockResolvedValueOnce({
+      ok: true,
+      status: 200,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ data: { items: [] } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await expect(listFiles('TEMPLATE_ASSET')).resolves.toEqual([]);
+    expect(fetchMock).toHaveBeenCalledWith('/api/files?kind=TEMPLATE_ASSET', expect.objectContaining({
+      credentials: 'include',
+    }));
+  });
+
+  it('uploads a generic file resource', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockResolvedValueOnce({
+      ok: true,
+      status: 200,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ data: { file: { id: 'file_1', filename: 'a.png', mimeType: 'image/png', size: 10, url: '/api/files/file_1/content', createdAt: '2026-05-02T00:00:00.000Z' } } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await expect(uploadFileResource('data:image/png;base64,AA==', { filename: 'a.png' })).resolves.toMatchObject({ id: 'file_1' });
+    expect(fetchMock).toHaveBeenCalledWith('/api/files', expect.objectContaining({
+      method: 'POST',
+      credentials: 'include',
+    }));
+  });
+});
diff --git a/src/api/files.ts b/src/api/files.ts
new file mode 100644
index 0000000..e09f466
--- /dev/null
+++ b/src/api/files.ts
@@ -0,0 +1,64 @@
+import { apiRequest } from './client';
+
+export interface FileResourceDto {
+  id: string;
+  filename: string;
+  mimeType: string;
+  size: number;
+  url: string;
+  createdAt: string;
+}
+
+export const uploadUserSignature = async (userId: string, dataUrl: string) => {
+  const response = await apiRequest<{ file: FileResourceDto }>(
+    `/api/users/${encodeURIComponent(userId)}/signature`,
+    {
+      method: 'POST',
+      body: {
+        dataUrl,
+        filename: 'signature.jpg',
+      },
+    },
+  );
+  if (!response?.file) {
+    throw new Error('Invalid signature upload response');
+  }
+  return response.file;
+};
+
+export const deleteUserSignature = (userId: string) =>
+  apiRequest<null>(`/api/users/${encodeURIComponent(userId)}/signature`, {
+    method: 'DELETE',
+  });
+
+export type FileKind = 'TEMPLATE_ASSET' | 'VIDEO' | 'FRAME' | 'REPORT_EXPORT';
+
+export const listFiles = async (kind?: FileKind) => {
+  const query = kind ? `?kind=${encodeURIComponent(kind)}` : '';
+  const response = await apiRequest<{ items: FileResourceDto[] }>(`/api/files${query}`);
+  return response.items || [];
+};
+
+export const uploadFileResource = async (
+  dataUrl: string,
+  options: { kind?: FileKind; filename?: string; reportId?: string } = {},
+) => {
+  const response = await apiRequest<{ file: FileResourceDto }>('/api/files', {
+    method: 'POST',
+    body: {
+      dataUrl,
+      kind: options.kind || 'TEMPLATE_ASSET',
+      filename: options.filename,
+      reportId: options.reportId,
+    },
+  });
+  if (!response?.file) {
+    throw new Error('Invalid file upload response');
+  }
+  return response.file;
+};
+
+export const deleteFileResource = (id: string) =>
+  apiRequest<null>(`/api/files/${encodeURIComponent(id)}`, {
+    method: 'DELETE',
+  });
diff --git a/src/api/library.test.ts b/src/api/library.test.ts
new file mode 100644
index 0000000..11c5242
--- /dev/null
+++ b/src/api/library.test.ts
@@ -0,0 +1,33 @@
+import { describe, expect, it, vi } from 'vitest';
+import { getFieldLibrary, updateFieldLibrary } from './library';
+
+describe('field library API', () => {
+  it('loads the backend field library envelope', async () => {
+    vi.mocked(fetch).mockResolvedValueOnce({
+      ok: true,
+      status: 200,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ data: { library: { formFields: [], customTimeFormats: [], multiSelectOptions: {}, anesthesiaOptions: [] } } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await expect(getFieldLibrary()).resolves.toMatchObject({ formFields: [] });
+  });
+
+  it('patches field library changes', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockResolvedValueOnce({
+      ok: true,
+      status: 200,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      json: () => Promise.resolve({ data: { library: { formFields: [], customTimeFormats: ['HH:mm'], multiSelectOptions: {}, anesthesiaOptions: [] } } }),
+      text: () => Promise.resolve(''),
+    } as Response);
+
+    await updateFieldLibrary({ customTimeFormats: ['HH:mm'] });
+    expect(fetchMock).toHaveBeenCalledWith('/api/library/fields', expect.objectContaining({
+      method: 'PATCH',
+      credentials: 'include',
+    }));
+  });
+});
diff --git a/src/api/library.ts b/src/api/library.ts
new file mode 100644
index 0000000..f6f4b88
--- /dev/null
+++ b/src/api/library.ts
@@ -0,0 +1,28 @@
+import { FormField } from '../types';
+import { apiRequest } from './client';
+
+export interface FieldLibrary {
+  formFields: FormField[];
+  customTimeFormats: string[];
+  multiSelectOptions: Record<string, string[]>;
+  anesthesiaOptions: string[];
+}
+
+export const getFieldLibrary = async () => {
+  const response = await apiRequest<{ library: FieldLibrary }>('/api/library/fields');
+  if (!response?.library) {
+    throw new Error('Invalid field library response');
+  }
+  return response.library;
+};
+
+export const updateFieldLibrary = async (library: Partial<FieldLibrary>) => {
+  const response = await apiRequest<{ library: FieldLibrary }>('/api/library/fields', {
+    method: 'PATCH',
+    body: library as Record<string, unknown>,
+  });
+  if (!response?.library) {
+    throw new Error('Invalid field library response');
+  }
+  return response.library;
+};
diff --git a/src/api/reports.ts b/src/api/reports.ts
new file mode 100644
index 0000000..83685e2
--- /dev/null
+++ b/src/api/reports.ts
@@ -0,0 +1,42 @@
+import { Report } from '../types';
+import { apiRequest } from './client';
+
+export interface ReportListResponse {
+  items: Report[];
+  total: number;
+  page: number;
+  pageSize: number;
+}
+
+export const listReports = async () => {
+  const response = await apiRequest<ReportListResponse>('/api/reports');
+  if (!response || !Array.isArray(response.items)) {
+    throw new Error('Invalid reports response');
+  }
+  return response;
+};
+
+export const getReport = async (id: string) => {
+  const response = await apiRequest<{ report: Report }>(`/api/reports/${encodeURIComponent(id)}`);
+  if (!response?.report) {
+    throw new Error('Invalid report response');
+  }
+  return response.report;
+};
+
+export const saveReportToApi = async (report: Report, existingId?: string) => {
+  const response = await apiRequest<{ report: Report }>(
+    existingId ? `/api/reports/${encodeURIComponent(existingId)}` : '/api/reports',
+    {
+      method: existingId ? 'PATCH' : 'POST',
+      body: report as unknown as Record<string, unknown>,
+    },
+  );
+  if (!response?.report) {
+    throw new Error('Invalid report response');
+  }
+  return response.report;
+};
+
+export const deleteReportFromApi = (id: string) =>
+  apiRequest<null>(`/api/reports/${encodeURIComponent(id)}`, { method: 'DELETE' });
diff --git a/src/api/settings.ts b/src/api/settings.ts
new file mode 100644
index 0000000..1e491f5
--- /dev/null
+++ b/src/api/settings.ts
@@ -0,0 +1,31 @@
+import { SystemSettings } from '../types';
+import { apiRequest } from './client';
+
+export const getSystemSettings = async () => {
+  const response = await apiRequest<{ settings: SystemSettings }>('/api/settings/system');
+  if (!response?.settings) {
+    throw new Error('Invalid settings response');
+  }
+  return response.settings;
+};
+
+export const updateSystemSettings = async (settings: SystemSettings) => {
+  const response = await apiRequest<{ settings: SystemSettings }>('/api/settings/system', {
+    method: 'PATCH',
+    body: settings as unknown as Record<string, unknown>,
+  });
+  if (!response?.settings) {
+    throw new Error('Invalid settings response');
+  }
+  return response.settings;
+};
+
+export const resetSystemSettings = async () => {
+  const response = await apiRequest<{ settings: SystemSettings }>('/api/settings/system/reset', {
+    method: 'POST',
+  });
+  if (!response?.settings) {
+    throw new Error('Invalid settings response');
+  }
+  return response.settings;
+};
diff --git a/src/api/speech.test.ts b/src/api/speech.test.ts
new file mode 100644
index 0000000..6743168
--- /dev/null
+++ b/src/api/speech.test.ts
@@ -0,0 +1,22 @@
+import { describe, expect, it } from 'vitest';
+import { buildSpeechIatWebSocketUrl } from './speech';
+
+describe('buildSpeechIatWebSocketUrl', () => {
+  it('uses the current host when no explicit API base URL is configured', () => {
+    expect(buildSpeechIatWebSocketUrl({ protocol: 'http:', host: 'localhost:3001' })).toBe(
+      'ws://localhost:3001/api/speech/iat',
+    );
+    expect(buildSpeechIatWebSocketUrl({ protocol: 'https:', host: 'example.com' })).toBe(
+      'wss://example.com/api/speech/iat',
+    );
+  });
+
+  it('converts an explicit API base URL to the matching websocket protocol', () => {
+    expect(buildSpeechIatWebSocketUrl({ protocol: 'http:', host: 'localhost:3001' }, 'http://localhost:3002')).toBe(
+      'ws://localhost:3002/api/speech/iat',
+    );
+    expect(buildSpeechIatWebSocketUrl({ protocol: 'http:', host: 'localhost:3001' }, 'https://api.example.com/')).toBe(
+      'wss://api.example.com/api/speech/iat',
+    );
+  });
+});
diff --git a/src/api/speech.ts b/src/api/speech.ts
new file mode 100644
index 0000000..d72e4d3
--- /dev/null
+++ b/src/api/speech.ts
@@ -0,0 +1,14 @@
+export const buildSpeechIatWebSocketUrl = (location: Pick<Location, 'protocol' | 'host'>, explicitBase = '') => {
+  explicitBase = explicitBase.replace(/\/$/, '');
+  if (explicitBase) {
+    const url = new URL('/api/speech/iat', explicitBase);
+    url.protocol = url.protocol === 'https:' ? 'wss:' : 'ws:';
+    return url.toString();
+  }
+
+  const protocol = location.protocol === 'https:' ? 'wss:' : 'ws:';
+  return `${protocol}//${location.host}/api/speech/iat`;
+};
+
+export const getSpeechIatWebSocketUrl = () =>
+  buildSpeechIatWebSocketUrl(window.location, import.meta.env.VITE_API_BASE_URL || '');
diff --git a/src/api/templates.ts b/src/api/templates.ts
new file mode 100644
index 0000000..bcaea44
--- /dev/null
+++ b/src/api/templates.ts
@@ -0,0 +1,50 @@
+import { Template } from '../types';
+import { apiRequest } from './client';
+
+export interface TemplateListResponse {
+  items: Template[];
+  total: number;
+}
+
+export type TemplateAccess = 'use' | 'manage';
+
+export const listTemplates = async (access: TemplateAccess = 'use') => {
+  const response = await apiRequest<TemplateListResponse>(`/api/templates?access=${access}`);
+  if (!response || !Array.isArray(response.items)) {
+    throw new Error('Invalid templates response');
+  }
+  return response;
+};
+
+export const getTemplate = async (id: string) => {
+  const response = await apiRequest<{ template: Template }>(`/api/templates/${encodeURIComponent(id)}`);
+  if (!response?.template) {
+    throw new Error('Invalid template response');
+  }
+  return response.template;
+};
+
+export const createTemplate = async (template: Template) => {
+  const response = await apiRequest<{ template: Template }>('/api/templates', {
+    method: 'POST',
+    body: template as unknown as Record<string, unknown>,
+  });
+  if (!response?.template) {
+    throw new Error('Invalid template response');
+  }
+  return response.template;
+};
+
+export const updateTemplate = async (id: string, template: Partial<Template>) => {
+  const response = await apiRequest<{ template: Template }>(`/api/templates/${encodeURIComponent(id)}`, {
+    method: 'PATCH',
+    body: template as unknown as Record<string, unknown>,
+  });
+  if (!response?.template) {
+    throw new Error('Invalid template response');
+  }
+  return response.template;
+};
+
+export const deleteTemplateFromApi = (id: string) =>
+  apiRequest<null>(`/api/templates/${encodeURIComponent(id)}`, { method: 'DELETE' });
diff --git a/src/api/users.ts b/src/api/users.ts
new file mode 100644
index 0000000..cda2055
--- /dev/null
+++ b/src/api/users.ts
@@ -0,0 +1,80 @@
+import { User } from '../types';
+import { apiRequest } from './client';
+
+export interface Department {
+  id: string;
+  name: string;
+  code: string;
+  visibleTemplates: string[];
+  manageableTemplates: string[];
+  createdAt: string;
+  updatedAt: string;
+}
+
+export interface UserListResponse {
+  items: User[];
+  total: number;
+}
+
+export interface DepartmentListResponse {
+  items: Department[];
+  total: number;
+}
+
+export const listUsers = async () => {
+  const response = await apiRequest<UserListResponse>('/api/users');
+  if (!response || !Array.isArray(response.items)) {
+    throw new Error('Invalid users response');
+  }
+  return response;
+};
+
+export const createUser = async (user: User) => {
+  const response = await apiRequest<{ user: User }>('/api/users', {
+    method: 'POST',
+    body: user as unknown as Record<string, unknown>,
+  });
+  if (!response?.user) {
+    throw new Error('Invalid user response');
+  }
+  return response.user;
+};
+
+export const updateUser = async (id: string, user: Partial<User>) => {
+  const response = await apiRequest<{ user: User }>(`/api/users/${encodeURIComponent(id)}`, {
+    method: 'PATCH',
+    body: user as unknown as Record<string, unknown>,
+  });
+  if (!response?.user) {
+    throw new Error('Invalid user response');
+  }
+  return response.user;
+};
+
+export const deleteUserFromApi = (id: string) =>
+  apiRequest<null>(`/api/users/${encodeURIComponent(id)}`, { method: 'DELETE' });
+
+export const listDepartments = async () => {
+  const response = await apiRequest<DepartmentListResponse>('/api/departments');
+  if (!response || !Array.isArray(response.items)) {
+    throw new Error('Invalid departments response');
+  }
+  return response;
+};
+
+export const updateDepartmentTemplatePermissions = async (
+  id: string,
+  body: Pick<Department, 'visibleTemplates' | 'manageableTemplates'>,
+) => {
+  const response = await apiRequest<{ department: Department }>(
+    `/api/departments/${encodeURIComponent(id)}/template-permissions`,
+    {
+      method: 'PATCH',
+      body,
+    },
+  );
+  if (!response?.department) {
+    throw new Error('Invalid department response');
+  }
+  return response.department;
+};
diff --git a/src/auth/AuthContext.tsx b/src/auth/AuthContext.tsx
new file mode 100644
index 0000000..3185893
--- /dev/null
+++ b/src/auth/AuthContext.tsx
@@ -0,0 +1,108 @@
+import React, { createContext, useCallback, useContext, useEffect, useMemo, useState } from 'react';
+import { apiRequest } from '../api/client';
+import { isLocalFallbackEnabled } from '../config/runtime';
+import { Template, User } from '../types';
+import { storage } from '../utils/storage';
+import { AuthUserResponse, toFrontendUser } from './backendUser';
+
+interface AuthContextValue {
+  user: User | null;
+  isLoading: boolean;
+  login: (username: string, password: string) => Promise<User>;
+  logout: () => Promise<void>;
+  refresh: () => Promise<User | null>;
+}
+
+const AuthContext = createContext<AuthContextValue | null>(null);
+
+export function AuthProvider({ children }: { children: React.ReactNode }) {
+  const [user, setUser] = useState<User | null>(() =>
+    isLocalFallbackEnabled() ? storage.get<User | null>('currentUser', null) : null,
+  );
+  const [isLoading, setIsLoading] = useState(true);
+
+  const syncUser = useCallback((authUser: AuthUserResponse['user']) => {
+    const users = storage.get<User[]>('users', []);
+    const templates = storage.get<Template[]>('templates', []);
+    const frontendUser = toFrontendUser(authUser, users, templates);
+    const updatedUsers = [
+      ...users.filter((item) => item.username !== frontendUser.username),
+      frontendUser,
+    ];
+
+    storage.set('users', updatedUsers);
+    storage.set('currentUser', frontendUser);
+    setUser(frontendUser);
+    return frontendUser;
+  }, []);
+
+  const refresh = useCallback(async () => {
+    try {
+      const response = await apiRequest<AuthUserResponse>('/api/auth/me');
+      return syncUser(response.user);
+    } catch {
+      if (!isLocalFallbackEnabled()) {
+        storage.remove('currentUser');
+        setUser(null);
+        return null;
+      }
+      const cachedUser = storage.get<User | null>('currentUser', null);
+      setUser(cachedUser);
+      return cachedUser;
+    }
+  }, [syncUser]);
+
+  useEffect(() => {
+    let isMounted = true;
+    refresh().finally(() => {
+      if (isMounted) {
+        setIsLoading(false);
+      }
+    });
+
+    return () => {
+      isMounted = false;
+    };
+  }, [refresh]);
+
+  const login = useCallback(async (username: string, password: string) => {
+    const response = await apiRequest<AuthUserResponse>('/api/auth/login', {
+      method: 'POST',
+      body: { username, password },
+    });
+    return syncUser(response.user);
+  }, [syncUser]);
+
+  const logout = useCallback(async () => {
+    try {
+      await apiRequest<null>('/api/auth/logout', { method: 'POST' });
+    } catch {
+      // Local cleanup still matters if the session is already gone or the API is temporarily unavailable.
+    } finally {
+      storage.remove('currentUser');
+      setUser(null);
+    }
+  }, []);
+
+  const value = useMemo<AuthContextValue>(() => ({
+    user,
+    isLoading,
+    login,
+    logout,
+    refresh,
+  }), [isLoading, login, logout, refresh, user]);
+
+  return <AuthContext.Provider value={value}>{children}</AuthContext.Provider>;
+}
+
+export function useAuth() {
+  const context = useContext(AuthContext);
+  if (!context) {
+    throw new Error('useAuth must be used within AuthProvider');
+  }
+  return context;
+}
+
+export function useOptionalAuth() {
+  return useContext(AuthContext);
+}
diff --git a/src/auth/backendUser.test.ts b/src/auth/backendUser.test.ts
new file mode 100644
index 0000000..eb579fc
--- /dev/null
+++ b/src/auth/backendUser.test.ts
@@ -0,0 +1,56 @@
+import { describe, expect, it } from 'vitest';
+import { Template, User } from '../types';
+import { BackendUser, toFrontendUser } from './backendUser';
+
+const backendDoctor: BackendUser = {
+  id: 'u1',
+  username: '0001',
+  role: 'doctor',
+  name: '张医生',
+  tenantId: 't1',
+  departmentId: 'd1',
+  departmentName: '外科',
+  status: 'active',
+  createdAt: '2026-05-01T00:00:00.000Z',
+  updatedAt: '2026-05-01T00:00:00.000Z',
+};
+
+describe('toFrontendUser', () => {
+  it('maps backend doctor users to the frontend user role and keeps usable templates', () => {
+    const templates: Template[] = [
+      { id: 'dept_surgery', name: '外科模板', content: '', createdAt: '', author: 'admin', scope: 'department', department: '外科' },
+      { id: 'dept_internal', name: '内科模板', content: '', createdAt: '', author: 'admin', scope: 'department', department: '内科' },
+      { id: 'mine', name: '我的模板', content: '', createdAt: '', author: '0001', scope: 'personal', ownerUser: '0001' },
+      { id: 'other', name: '他人模板', content: '', createdAt: '', author: '0002', scope: 'personal', ownerUser: '0002' },
+    ];
+
+    expect(toFrontendUser(backendDoctor, [], templates)).toMatchObject({
+      username: '0001',
+      role: 'user',
+      department: '外科',
+      visibleTemplates: ['dept_surgery', 'mine'],
+      manageableTemplates: [],
+    });
+  });
+
+  it('preserves local signature and explicit template assignments while syncing backend identity', () => {
+    const users: User[] = [
+      {
+        username: '0001',
+        role: 'user',
+        name: '旧姓名',
+        signature: 'data:image/jpeg;base64,test',
+        visibleTemplates: ['custom'],
+        manageableTemplates: ['managed'],
+      },
+    ];
+
+    expect(toFrontendUser(backendDoctor, users, [])).toMatchObject({
+      username: '0001',
+      name: '张医生',
+      signature: 'data:image/jpeg;base64,test',
+      visibleTemplates: ['custom'],
+      manageableTemplates: ['managed'],
+    });
+  });
+});
diff --git a/src/auth/backendUser.ts b/src/auth/backendUser.ts
new file mode 100644
index 0000000..1f99dcb
--- /dev/null
+++ b/src/auth/backendUser.ts
@@ -0,0 +1,64 @@
+import { Template, User } from '../types';
+
+export type BackendRole = 'super' | 'admin' | 'doctor';
+export type BackendStatus = 'active' | 'inactive';
+
+export interface BackendUser {
+  id: string;
+  username: string;
+  role: BackendRole;
+  name: string;
+  tenantId: string;
+  departmentId: string;
+  departmentName: string;
+  status: BackendStatus;
+  phone?: string;
+  email?: string;
+  signatureFileId?: string;
+  signature?: string;
+  createdAt: string;
+  updatedAt: string;
+}
+
+export interface AuthUserResponse {
+  user: BackendUser;
+}
+
+export const toFrontendUser = (
+  backendUser: BackendUser,
+  existingUsers: User[],
+  templates: Template[],
+): User => {
+  const existing = existingUsers.find((user) => user.username === backendUser.username);
+  const role: User['role'] = backendUser.role === 'doctor' ? 'user' : backendUser.role;
+  const allTemplateIds = templates.map((template) => template.id);
+  const departmentTemplateIds = templates
+    .filter((template) => template.scope !== 'personal' && template.department === backendUser.departmentName)
+    .map((template) => template.id);
+  const personalTemplateIds = templates
+    .filter((template) => template.scope === 'personal' && template.ownerUser === backendUser.username)
+    .map((template) => template.id);
+  const defaultVisibleTemplates =
+    role === 'super' || role === 'admin'
+      ? allTemplateIds
+      : [...departmentTemplateIds, ...personalTemplateIds];
+
+  return {
+    ...existing,
+    id: backendUser.id,
+    username: backendUser.username,
+    role,
+    name: backendUser.name,
+    phone: backendUser.phone ?? existing?.phone,
+    email: backendUser.email ?? existing?.email,
+    departmentId: backendUser.departmentId,
+    department: backendUser.departmentName,
+    status: backendUser.status,
+    createdAt: backendUser.createdAt,
+    updatedAt: backendUser.updatedAt,
+    signatureFileId: backendUser.signatureFileId,
+    signature: existing?.signature ?? backendUser.signature,
+    visibleTemplates: existing?.visibleTemplates ?? defaultVisibleTemplates,
+    manageableTemplates: existing?.manageableTemplates ?? (role === 'user' ? [] : allTemplateIds),
+  };
+};
diff --git a/src/components/Sidebar.test.tsx b/src/components/Sidebar.test.tsx
new file mode 100644
index 0000000..842e868
--- /dev/null
+++ b/src/components/Sidebar.test.tsx
@@ -0,0 +1,37 @@
+import { render, screen } from '@testing-library/react';
+import { MemoryRouter } from 'react-router-dom';
+import { describe, expect, it } from 'vitest';
+import { AuthProvider } from '../auth/AuthContext';
+import { User } from '../types';
+import { storage } from '../utils/storage';
+import Sidebar from './Sidebar';
+
+const renderSidebar = (user: User) => {
+  storage.set('currentUser', user);
+  render(
+    <MemoryRouter initialEntries={['/dashboard']}>
+      <AuthProvider>
+        <Sidebar />
+      </AuthProvider>
+    </MemoryRouter>
+  );
+};
+
+describe('Sidebar permissions', () => {
+  it('shows administrative modules to super users', () => {
+    renderSidebar({ username: 'admin', role: 'super', name: '超级管理员' });
+
+    expect(screen.getByText('模板管理')).toBeInTheDocument();
+    expect(screen.getByText('用户管理')).toBeInTheDocument();
+    expect(screen.getByText('系统设置')).toBeInTheDocument();
+  });
+
+  it('hides template and user management from doctors', () => {
+    renderSidebar({ username: '0001', role: 'user', name: '张医生' });
+
+    expect(screen.getByText('工作台')).toBeInTheDocument();
+    expect(screen.queryByText('模板管理')).not.toBeInTheDocument();
+    expect(screen.queryByText('用户管理')).not.toBeInTheDocument();
+    expect(screen.getByText('系统设置')).toBeInTheDocument();
+  });
+});
diff --git a/src/components/Sidebar.tsx b/src/components/Sidebar.tsx
new file mode 100644
index 0000000..82bf17c
--- /dev/null
+++ b/src/components/Sidebar.tsx
@@ -0,0 +1,88 @@
+import React from 'react';
+import { Link, useLocation, useNavigate } from 'react-router-dom';
+import { 
+  LayoutDashboard, 
+  FileEdit, 
+  FileText, 
+  Layout, 
+  Users, 
+  Settings, 
+  LogOut 
+} from 'lucide-react';
+import { User } from '../types';
+import { storage } from '../utils/storage';
+import { useOptionalAuth } from '../auth/AuthContext';
+
+export default function Sidebar() {
+  const location = useLocation();
+  const navigate = useNavigate();
+  const auth = useOptionalAuth();
+  const authUser = auth?.user ?? null;
+  const currentUser = authUser ?? storage.get<User>('currentUser', {} as User);
+
+  const logout = async () => {
+    if (auth) {
+      await auth.logout();
+    } else {
+      storage.remove('currentUser');
+    }
+    navigate('/');
+  };
+
+  const navItems = [
+    { path: '/dashboard', icon: <LayoutDashboard size={18} />, title: '工作台', roles: ['super', 'admin', 'user'] },
+    { path: '/report-editor', icon: <FileEdit size={18} />, title: '图文报告生成', roles: ['super', 'admin', 'user'] },
+    { path: '/report-manage', icon: <FileText size={18} />, title: '报告管理', roles: ['super', 'admin', 'user'] },
+    { path: '/template-manage', icon: <Layout size={18} />, title: '模板管理', roles: ['super', 'admin'] },
+    { path: '/user-manage', icon: <Users size={18} />, title: '用户管理', roles: ['super', 'admin'] },
+    { path: '/system-settings', icon: <Settings size={18} />, title: '系统设置', roles: ['super', 'admin', 'user'] },
+  ];
+
+  const filteredNavItems = navItems.filter(item => item.roles.includes(currentUser.role));
+  const isCollapsed = location.pathname === '/report-editor' || location.pathname === '/template-manage';
+
+  return (
+    <aside className={`${isCollapsed ? 'w-20 px-3' : 'w-60 px-6'} bg-sidebar-bg border-r border-border flex flex-col py-8 shrink-0 h-screen sticky top-0 transition-all`}>
+      <div className={`flex items-center gap-3 mb-12 h-12 ${isCollapsed ? 'justify-center' : ''}`}>
+        <img src="/logo_square.png" alt="Logo" className="w-10 h-10 object-contain shrink-0" />
+        <div className={`font-bold text-lg text-text-main leading-tight ${isCollapsed ? 'hidden' : ''}`}>
+          <div>图文手术病历</div>
+          <div>报告生成终端</div>
+        </div>
+      </div>
+      
+      <nav className="flex flex-col gap-1 flex-1">
+        {filteredNavItems.map((item) => (
+          <Link
+            key={item.path}
+            to={item.path}
+            title={item.title}
+            className={`flex items-center rounded-lg text-sm font-medium transition-all ${
+              isCollapsed ? 'justify-center px-2 py-2.5' : 'gap-3 px-3 py-2.5'
+            } ${
+              location.pathname === item.path
+                ? 'bg-[#EFF6FF] text-accent'
+                : 'text-text-muted hover:bg-bg hover:text-text-main'
+            }`}
+          >
+            {item.icon}
+            <span className={isCollapsed ? 'hidden' : ''}>{item.title}</span>
+          </Link>
+        ))}
+      </nav>
+
+      <div className={`mt-auto pt-5 border-t border-border ${isCollapsed ? 'text-center' : ''}`}>
+        <div className={`text-[12px] text-text-muted mb-1 ${isCollapsed ? 'hidden' : ''}`}>当前用户</div>
+        <div className={`font-semibold text-sm text-text-main mb-4 ${isCollapsed ? 'hidden' : ''}`}>{currentUser.name || '未登录'}</div>
+        <button
+          onClick={logout}
+          title="退出登录"
+          className={`flex items-center rounded-lg text-sm font-medium text-text-muted hover:bg-red-50 hover:text-red-600 transition-all ${isCollapsed ? 'justify-center w-full px-2 py-2.5' : 'gap-3 px-3 py-2.5 w-full'}`}
+        >
+          <LogOut size={18} />
+          <span className={isCollapsed ? 'hidden' : ''}>退出登录</span>
+        </button>
+      </div>
+    </aside>
+  );
+}
diff --git a/src/config/runtime.ts b/src/config/runtime.ts
new file mode 100644
index 0000000..70965c8
--- /dev/null
+++ b/src/config/runtime.ts
@@ -0,0 +1,2 @@
+export const isLocalFallbackEnabled = () =>
+  import.meta.env.DEV || import.meta.env.VITE_ENABLE_LOCAL_FALLBACK === 'true';
diff --git a/src/index.css b/src/index.css
new file mode 100644
index 0000000..5590b16
--- /dev/null
+++ b/src/index.css
@@ -0,0 +1,225 @@
+@import url('https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap');
+@import "tailwindcss";
+
+@theme {
+  --font-sans: "Inter", ui-sans-serif, system-ui, sans-serif;
+  --color-bg: #F8FAFC;
+  --color-sidebar-bg: #FFFFFF;
+  --color-accent: #2563EB;
+  --color-text-main: #1E293B;
+  --color-text-muted: #64748B;
+  --color-border: #E2E8F0;
+  --color-card-bg: #FFFFFF;
+}
+
+@layer base {
+  body {
+    @apply bg-bg text-text-main antialiased;
+    font-family: var(--font-sans);
+  }
+}
+
+@layer components {
+  .btn-accent {
+    @apply bg-accent text-white px-5 py-2.5 rounded-lg font-semibold text-sm transition-all hover:opacity-90 active:scale-95;
+  }
+  
+  .card-minimal {
+    @apply bg-card-bg border border-border rounded-xl shadow-[0_1px_3px_rgba(0,0,0,0.05)] p-6;
+  }
+  
+  .input-minimal {
+    @apply w-full px-4 py-2.5 border border-border rounded-lg text-sm transition-colors focus:outline-hidden focus:border-accent;
+  }
+
+  /* Editor Styles */
+  .editor-content-wrapper {
+    @apply flex-1 overflow-auto flex justify-center min-w-fit bg-[#e2e8f0] p-6;
+  }
+  .editor-content {
+    @apply w-[210mm] min-h-[297mm] h-auto bg-white p-[40px_48px] shadow-[0_2px_8px_rgba(0,0,0,0.15)] outline-hidden leading-relaxed text-text-main text-sm flex-shrink-0 overflow-visible relative;
+  }
+  .editor-content:focus { outline: none; }
+  .editor-content p { margin: 0; padding: 4px 0; }
+  .editor-content h1 { font-size: 22px; margin: 16px 0 12px; font-weight: 600; text-align: center; }
+  .editor-content strong, .editor-content b { font-weight: 600; }
+  .editor-content u { text-decoration: underline; }
+  .editor-content table { 
+    width: 100%; 
+    border-collapse: collapse; 
+    margin: 16px 0;
+    table-layout: fixed;
+  }
+  .editor-content td { 
+    padding: 8px; 
+    border: 1px solid #e2e8f0;
+    vertical-align: top;
+  }
+  .editor-content img { 
+    max-width: 100%; 
+    height: auto;
+    display: block;
+    margin: 8px auto;
+  }
+
+  .image-placeholder {
+    @apply border-2 border-dashed border-[#cbd5e1] rounded-lg p-4 mb-2 bg-[#f8fafc] cursor-pointer min-h-[70px] flex flex-col items-center justify-center transition-all relative;
+  }
+  .image-placeholder:hover {
+    @apply border-accent bg-[#f0f7ff];
+  }
+  .image-placeholder.has-image {
+    @apply border-none bg-transparent p-0 min-h-0 cursor-default;
+  }
+  .image-placeholder .delete-btn {
+    @apply absolute -top-2 -right-2 w-5 h-5 bg-red-500 text-white rounded-full items-center justify-center text-[10px] cursor-pointer z-10;
+    display: none;
+    pointer-events: auto;
+  }
+  .image-placeholder:hover .delete-btn {
+    display: flex;
+  }
+  .image-placeholder .placeholder-text {
+    color: #94a3b8;
+    font-size: 11px;
+    margin: 0;
+    pointer-events: none;
+  }
+  .image-placeholder.has-image .placeholder-text {
+    display: none !important;
+  }
+  .template-info-section {
+    @apply relative mb-4;
+  }
+
+  .manual-frame-badge {
+    @apply absolute top-1 left-1 px-1.5 py-0.5 bg-yellow-400 text-yellow-900 text-[9px] font-bold rounded shadow-sm pointer-events-none;
+  }
+
+  /* Smart Field Bindable Controls */
+  .smart-field-wrapper {
+    display: inline-flex;
+    align-items: center;
+    margin: 0 2px;
+    vertical-align: text-bottom;
+    white-space: nowrap;
+  }
+  .smart-field-wrapper .field-label {
+    color: #64748b;
+    user-select: none;
+  }
+  .smart-field-wrapper .field-value {
+    min-width: 32px;
+    padding: 0 4px;
+    margin: 0 2px;
+    border: 1px solid #cbd5e1;
+    border-radius: 2px;
+    display: inline-block;
+    background: #f8fafc;
+    color: #0f172a;
+    line-height: 1.2;
+    font-size: inherit;
+    vertical-align: text-bottom;
+    box-sizing: border-box;
+    min-height: 1.2em;
+    outline: none;
+  }
+  .smart-field-wrapper .field-value:empty::before {
+    content: '\200b';
+  }
+  .smart-field-wrapper .field-value:focus {
+    background-color: #e2e8f0;
+    border-color: #94a3b8;
+    box-shadow: 0 0 0 2px rgba(59, 130, 246, 0.25);
+  }
+  .smart-field-wrapper .delete-btn {
+    position: absolute;
+    top: -8px;
+    right: -8px;
+    width: 16px;
+    height: 16px;
+    background: #ef4444;
+    color: white;
+    border-radius: 50%;
+    font-size: 10px;
+    line-height: 16px;
+    text-align: center;
+    cursor: pointer;
+    user-select: none;
+    display: none;
+    z-index: 10;
+  }
+  .smart-field-wrapper .delete-btn:hover {
+    background: #dc2626;
+  }
+  .template-editor-mode .smart-field-wrapper:hover .delete-btn,
+  .template-editor-mode .smart-field-wrapper:focus-within .delete-btn {
+    display: block;
+  }
+  .report-signature-img {
+    max-width: 120px;
+    max-height: 40px;
+    width: auto;
+    height: auto;
+    object-fit: contain;
+    vertical-align: middle;
+    display: inline-block;
+  }
+}
+
+@media print {
+  @page { size: A4; margin: 0; }
+  body * { visibility: hidden !important; }
+  .print-content, .print-content * { visibility: visible !important; }
+  .print-wrapper {
+    position: static !important;
+    display: flex !important;
+    justify-content: center !important;
+    overflow: visible !important;
+    background: white !important;
+    padding: 0 !important;
+    margin: 0 !important;
+  }
+  .print-content {
+    position: static !important;
+    width: 210mm !important;
+    min-height: auto !important;
+    height: auto !important;
+    box-shadow: none !important;
+    padding: 10mm !important;
+    margin: 0 !important;
+    overflow: visible !important;
+    background: white !important;
+  }
+  .print-content .image-placeholder:not(.has-image) {
+    display: none !important;
+  }
+  .print-content .smart-field-wrapper .field-value {
+    border: none !important;
+    border-bottom: 1px solid #000 !important;
+    border-radius: 0 !important;
+    background: transparent !important;
+    padding: 0 2px !important;
+  }
+  .print-content .smart-field-wrapper .delete-btn {
+    display: none !important;
+  }
+  .print-content .ai-region {
+    border: none !important;
+    background: transparent !important;
+    padding: 0 !important;
+    margin: 0 !important;
+  }
+  .print-content .ai-region > [contenteditable="false"] {
+    display: none !important;
+  }
+  .report-signature-img {
+    max-width: 120px !important;
+    max-height: 40px !important;
+    width: auto !important;
+    height: auto !important;
+    object-fit: contain !important;
+    vertical-align: middle !important;
+    display: inline-block !important;
+  }
+}
diff --git a/src/main.tsx b/src/main.tsx
new file mode 100644
index 0000000..080dac3
--- /dev/null
+++ b/src/main.tsx
@@ -0,0 +1,10 @@
+import {StrictMode} from 'react';
+import {createRoot} from 'react-dom/client';
+import App from './App.tsx';
+import './index.css';
+
+createRoot(document.getElementById('root')!).render(
+  <StrictMode>
+    <App />
+  </StrictMode>,
+);
diff --git a/src/pages/Dashboard.tsx b/src/pages/Dashboard.tsx
new file mode 100644
index 0000000..04fbd72
--- /dev/null
+++ b/src/pages/Dashboard.tsx
@@ -0,0 +1,287 @@
+import React, { useEffect, useState } from 'react';
+import { Link, useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { FileText, Layout, Plus, Settings, TrendingUp, ArrowRight } from 'lucide-react';
+import { User, Report, Template } from '../types';
+import { storage } from '../utils/storage';
+import { getAccessibleReports, getUsableTemplates } from '../utils/permissions';
+import { getDashboardStats, type DashboardStats } from '../api/dashboard';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+export default function Dashboard() {
+  const navigate = useNavigate();
+  const [stats, setStats] = useState<DashboardStats>({
+    totalCount: 0,
+    monthCount: 0,
+    templateCount: 0,
+    userCount: 0,
+    todayCount: 0,
+    trend: [0,0,0,0,0,0,0],
+    trendLabels: ['','','','','','',''],
+    trendFullDates: ['','','','','','',''],
+    maxTrend: 1
+  });
+  const [tooltip, setTooltip] = useState<{ visible: boolean; x: number; y: number; date: string; count: number }>({ visible: false, x: 0, y: 0, date: '', count: 0 });
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [timeRange, setTimeRange] = useState<'7days' | '1month'>('7days');
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user) {
+      navigate('/');
+      return;
+    }
+    setCurrentUser(user);
+
+    void getDashboardStats(timeRange)
+      .then(setStats)
+      .catch(() => {
+        if (!isLocalFallbackEnabled()) return;
+        setStats(buildLocalStats(user, timeRange));
+      });
+  }, [navigate, timeRange]);
+
+  if (!currentUser) return null;
+
+  return (
+    <div className="flex min-h-screen bg-bg">
+      <Sidebar />
+      
+      <main className="flex-1 p-10 overflow-y-auto">
+        <header className="flex justify-between items-center mb-8">
+          <div>
+            <h1 className="text-2xl font-bold tracking-tight text-text-main">工作台概览</h1>
+            <p className="text-text-muted text-sm mt-1">实时报告动态与系统状态追踪。</p>
+          </div>
+          <Link to="/report-editor" className="btn-accent inline-flex items-center gap-2">
+            <Plus size={18} />
+            新建报告
+          </Link>
+        </header>
+        
+        <section className="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-4 gap-6 mb-8">
+          <div className="card-minimal">
+            <div className="text-[11px] text-text-muted mb-2 uppercase tracking-wider font-bold">全部报告总数</div>
+            <div className="text-3xl font-bold text-text-main">{stats.totalCount}</div>
+          </div>
+
+          <div className="card-minimal">
+            <div className="text-[11px] text-text-muted mb-2 uppercase tracking-wider font-bold">本月报告总数</div>
+            <div className="text-3xl font-bold text-text-main">{stats.monthCount}</div>
+          </div>
+
+          <div className="card-minimal">
+            <div className="text-[11px] text-text-muted mb-2 uppercase tracking-wider font-bold">今日新增报告</div>
+            <div className="text-3xl font-bold text-text-main">{stats.todayCount}</div>
+          </div>
+
+          <div className="card-minimal">
+            <div className="text-[11px] text-text-muted mb-2 uppercase tracking-wider font-bold">系统总用户</div>
+            <div className="text-3xl font-bold text-text-main">{stats.userCount}</div>
+          </div>
+        </section>
+        
+        <div className="grid grid-cols-1 lg:grid-cols-[1.5fr_1fr] gap-6">
+          <div className="card-minimal flex flex-col">
+            <div className="flex justify-between items-center mb-6">
+              <span className="font-bold text-sm uppercase tracking-wider text-text-main flex items-center gap-2">
+                <TrendingUp size={16} className="text-accent" />
+                报告增长趋势
+              </span>
+              <div className="flex bg-slate-100 p-1 rounded-lg">
+                <button
+                  onClick={() => setTimeRange('7days')}
+                  className={`px-3 py-1 text-xs font-bold rounded-md transition-colors ${timeRange === '7days' ? 'bg-white text-accent shadow-sm' : 'text-text-muted hover:text-text-main'}`}
+                >最近 7 天</button>
+                <button
+                  onClick={() => setTimeRange('1month')}
+                  className={`px-3 py-1 text-xs font-bold rounded-md transition-colors ${timeRange === '1month' ? 'bg-white text-accent shadow-sm' : 'text-text-muted hover:text-text-main'}`}
+                >最近 30 天</button>
+              </div>
+            </div>
+            <div className="flex-1 bg-slate-50 rounded-xl p-6 min-h-[240px] relative">
+              {/* SVG Area Chart */}
+              <svg
+                viewBox="0 0 300 135"
+                className="w-full h-full overflow-visible"
+                onMouseMove={(e) => {
+                  const svg = e.currentTarget;
+                  const rect = svg.getBoundingClientRect();
+                  const mouseX = ((e.clientX - rect.left) / rect.width) * 300;
+                  const paddingX = 10;
+                  const chartW = 300 - paddingX * 2;
+                  const n = stats.trend.length;
+                  if (n <= 1) return;
+                  let idx = Math.round(((mouseX - paddingX) / chartW) * (n - 1));
+                  idx = Math.max(0, Math.min(n - 1, idx));
+                  const ptX = paddingX + (idx / (n - 1)) * chartW;
+                  const ptY = 8 + (120 - 16) - (stats.maxTrend > 0 ? (stats.trend[idx] / stats.maxTrend) * (120 - 16) : 0);
+                  setTooltip({
+                    visible: true,
+                    x: (ptX / 300) * rect.width,
+                    y: (ptY / 135) * rect.height,
+                    date: stats.trendFullDates[idx] || '',
+                    count: stats.trend[idx]
+                  });
+                }}
+                onMouseLeave={() => setTooltip(prev => ({ ...prev, visible: false }))}
+              >
+                <defs>
+                  <linearGradient id="trendGradient" x1="0" y1="0" x2="0" y2="1">
+                    <stop offset="0%" stopColor="#2563EB" stopOpacity="0.35" />
+                    <stop offset="100%" stopColor="#2563EB" stopOpacity="0.02" />
+                  </linearGradient>
+                </defs>
+                {/* Grid lines */}
+                {[0, 1, 2, 3].map((i) => (
+                  <line
+                    key={i}
+                    x1="0"
+                    y1={i * 30}
+                    x2="300"
+                    y2={i * 30}
+                    stroke="#E2E8F0"
+                    strokeWidth="1"
+                    strokeDasharray="2 2"
+                  />
+                ))}
+                {/* Area path */}
+                {stats.trend.length > 0 && (() => {
+                  const paddingX = 10;
+                  const paddingY = 8;
+                  const chartW = 300 - paddingX * 2;
+                  const chartH = 120 - paddingY * 2;
+                  const points = stats.trend.map((count, i) => {
+                    const x = paddingX + (i / (stats.trend.length - 1)) * chartW;
+                    const y = paddingY + chartH - (stats.maxTrend > 0 ? (count / stats.maxTrend) * chartH : 0);
+                    return { x, y, count, label: stats.trendLabels[i] };
+                  });
+                  const linePath = points.map((p, i) => `${i === 0 ? 'M' : 'L'} ${p.x} ${p.y}`).join(' ');
+                  const areaPath = `${linePath} L ${points[points.length - 1].x} ${120 - paddingY} L ${points[0].x} ${120 - paddingY} Z`;
+                  return (
+                    <g>
+                      <path d={areaPath} fill="url(#trendGradient)" />
+                      <path d={linePath} fill="none" stroke="#2563EB" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round" />
+                      {/* Transparent capture layer for reliable mouse events */}
+                      <rect x="0" y="0" width="300" height="135" fill="transparent" />
+                      {points.map((p, i) => (
+                        <g key={i}>
+                          {/* 7天模式显示圆点和数值；30天模式隐藏 */}
+                          {stats.trend.length <= 10 && (
+                            <>
+                              <circle cx={p.x} cy={p.y} r="3.5" fill="#2563EB" stroke="#fff" strokeWidth="2" />
+                              <text x={p.x} y={p.y - 10} textAnchor="middle" fontSize="8" fill="#64748B" fontWeight="bold">{p.count}</text>
+                            </>
+                          )}
+                          {/* 标签稀疏化：7天每天显示，30天每隔5天显示 */}
+                          {(stats.trend.length <= 10 || i % 5 === 0) && (
+                            <text x={p.x} y={128} textAnchor="middle" fontSize={stats.trendLabels.length > 10 ? '7' : '8'} fill="#94A3B8" fontWeight="bold">{p.label}</text>
+                          )}
+                        </g>
+                      ))}
+                    </g>
+                  );
+                })()}
+              </svg>
+              {/* Tooltip */}
+              {tooltip.visible && (
+                <div
+                  className="absolute pointer-events-none bg-slate-800 text-white text-xs rounded-lg px-3 py-2 shadow-lg z-10"
+                  style={{ left: tooltip.x, top: tooltip.y - 40, transform: 'translateX(-50%)' }}
+                >
+                  <div className="font-bold">{tooltip.date}</div>
+                  <div className="text-slate-300">报告数: {tooltip.count}</div>
+                </div>
+              )}
+            </div>
+          </div>
+
+          <div className="card-minimal">
+            <div className="font-bold text-sm uppercase tracking-wider text-text-main mb-6">快捷入口</div>
+            <div className="space-y-2">
+              <Link to="/report-manage" className="flex items-center justify-between p-4 bg-slate-50 rounded-xl hover:bg-white hover:shadow-md border border-transparent hover:border-border transition-all group">
+                <div className="flex items-center gap-4">
+                  <div className="w-10 h-10 rounded-xl bg-white flex items-center justify-center text-text-muted group-hover:bg-accent group-hover:text-white transition-colors shadow-sm">
+                    <FileText size={18} />
+                  </div>
+                  <div>
+                    <div className="text-sm font-bold text-text-main">报告管理</div>
+                    <div className="text-[11px] text-text-muted">查看与搜索所有报告</div>
+                  </div>
+                </div>
+                <ArrowRight size={16} className="text-text-muted group-hover:text-accent group-hover:translate-x-1 transition-all" />
+              </Link>
+              
+              {(currentUser.role === 'super' || currentUser.role === 'admin') && (
+                <Link to="/template-manage" className="flex items-center justify-between p-4 bg-slate-50 rounded-xl hover:bg-white hover:shadow-md border border-transparent hover:border-border transition-all group">
+                  <div className="flex items-center gap-4">
+                    <div className="w-10 h-10 rounded-xl bg-white flex items-center justify-center text-text-muted group-hover:bg-accent group-hover:text-white transition-colors shadow-sm">
+                      <Layout size={18} />
+                    </div>
+                    <div>
+                      <div className="text-sm font-bold text-text-main">模板管理</div>
+                      <div className="text-[11px] text-text-muted">配置报告标准模板</div>
+                    </div>
+                  </div>
+                  <ArrowRight size={16} className="text-text-muted group-hover:text-accent group-hover:translate-x-1 transition-all" />
+                </Link>
+              )}
+
+              {currentUser.role === 'super' && (
+                <Link to="/system-settings" className="flex items-center justify-between p-4 bg-slate-50 rounded-xl hover:bg-white hover:shadow-md border border-transparent hover:border-border transition-all group">
+                  <div className="flex items-center gap-4">
+                    <div className="w-10 h-10 rounded-xl bg-white flex items-center justify-center text-text-muted group-hover:bg-accent group-hover:text-white transition-colors shadow-sm">
+                      <Settings size={18} />
+                    </div>
+                    <div>
+                      <div className="text-sm font-bold text-text-main">系统设置</div>
+                      <div className="text-[11px] text-text-muted">配置抽帧与API参数</div>
+                    </div>
+                  </div>
+                  <ArrowRight size={16} className="text-text-muted group-hover:text-accent group-hover:translate-x-1 transition-all" />
+                </Link>
+              )}
+            </div>
+          </div>
+        </div>
+      </main>
+    </div>
+  );
+}
+
+const buildLocalStats = (user: User, timeRange: '7days' | '1month'): DashboardStats => {
+  const reports = storage.get<Report[]>('reports', []);
+  const templates = storage.get<Template[]>('templates', []);
+  const users = storage.get<User[]>('users', []);
+  const userReports = getAccessibleReports(user, reports, users);
+  const userTemplates = getUsableTemplates(user, templates);
+  const now = new Date();
+  const today = now.toISOString().split('T')[0];
+  const todayReports = userReports.filter(r => (r.createdAt || '').slice(0, 10) === today);
+  const currentMonth = today.slice(0, 7);
+  const thisMonthReports = userReports.filter(r => r.createdAt && r.createdAt.startsWith(currentMonth));
+  const daysCount = timeRange === '7days' ? 7 : 30;
+  const trend: number[] = [];
+  const labels: string[] = [];
+  const fullDates: string[] = [];
+  for (let i = daysCount - 1; i >= 0; i--) {
+    const d = new Date(now);
+    d.setDate(d.getDate() - i);
+    const dateStr = d.toISOString().split('T')[0];
+    labels.push(timeRange === '7days' ? `${d.getMonth() + 1}/${d.getDate()}` : `${d.getDate()}`);
+    fullDates.push(dateStr);
+    trend.push(userReports.filter(r => (r.createdAt || '').slice(0, 10) === dateStr).length);
+  }
+
+  return {
+    totalCount: userReports.length,
+    monthCount: thisMonthReports.length,
+    templateCount: userTemplates.length,
+    userCount: users.length,
+    todayCount: todayReports.length,
+    trend,
+    trendLabels: labels,
+    trendFullDates: fullDates,
+    maxTrend: Math.max(...trend, 1),
+  };
+};
diff --git a/src/pages/Login.test.tsx b/src/pages/Login.test.tsx
new file mode 100644
index 0000000..d71bcb8
--- /dev/null
+++ b/src/pages/Login.test.tsx
@@ -0,0 +1,70 @@
+import { fireEvent, render, screen, waitFor } from '@testing-library/react';
+import { MemoryRouter } from 'react-router-dom';
+import { describe, expect, it, vi } from 'vitest';
+import { AuthProvider } from '../auth/AuthContext';
+import { SystemSettings, Template, User } from '../types';
+import { storage } from '../utils/storage';
+import Login from './Login';
+
+const renderLogin = () => render(
+  <MemoryRouter>
+    <AuthProvider>
+      <Login />
+    </AuthProvider>
+  </MemoryRouter>
+);
+
+describe('Login page', () => {
+  it('initializes the demo data that makes the pure frontend app usable', async () => {
+    renderLogin();
+
+    await waitFor(() => {
+      expect(storage.get<User[]>('users', []).map((user) => user.username)).toEqual(['admin', 'manager', '0001']);
+    });
+
+    const templates = storage.get<Template[]>('templates', []);
+    expect(templates).toHaveLength(1);
+    expect(templates[0]).toMatchObject({ scope: 'department', department: '外科' });
+    expect(storage.get('formFieldsConfig', [])).not.toHaveLength(0);
+    const settings = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+    expect(settings.frameCount).toBe(12);
+    expect(settings.xfSpeechConfig).toEqual({ appId: '', apiKey: '', apiSecret: '' });
+    expect(screen.getByText('admin / 123456')).toBeInTheDocument();
+    expect(screen.getByText('manager / 123456')).toBeInTheDocument();
+    expect(screen.getByText('0001 / 123456')).toBeInTheDocument();
+  });
+
+  it('shows disabled account errors returned by the backend auth API', async () => {
+    const fetchMock = vi.mocked(fetch);
+    fetchMock.mockImplementation((input: RequestInfo | URL) => {
+      const url = typeof input === 'string' ? input : input.toString();
+      if (url.endsWith('/logo_square.png')) {
+        return Promise.resolve({
+          ok: true,
+          status: 200,
+          headers: new Headers({ 'content-type': 'image/png' }),
+          blob: () => Promise.resolve(new Blob(['test-image'], { type: 'image/png' })),
+          text: () => Promise.resolve(''),
+          json: () => Promise.resolve({}),
+        } as Response);
+      }
+
+      return Promise.resolve({
+        ok: false,
+        status: url.endsWith('/api/auth/login') ? 403 : 401,
+        headers: new Headers({ 'content-type': 'application/json' }),
+        blob: () => Promise.resolve(new Blob([])),
+        text: () => Promise.resolve(JSON.stringify({ error: { code: 'FORBIDDEN', message: '账号已禁用' } })),
+        json: () => Promise.resolve({ error: { code: 'FORBIDDEN', message: '账号已禁用' } }),
+      } as Response);
+    });
+
+    renderLogin();
+
+    fireEvent.change(screen.getByPlaceholderText('请输入您的用户ID'), { target: { value: 'admin' } });
+    fireEvent.change(screen.getByPlaceholderText('请输入您的登录密码'), { target: { value: '123456' } });
+    fireEvent.click(screen.getByRole('button', { name: '进入系统' }));
+
+    expect(await screen.findByText('该账号已被禁用')).toBeInTheDocument();
+  });
+});
diff --git a/src/pages/Login.tsx b/src/pages/Login.tsx
new file mode 100644
index 0000000..6130af3
--- /dev/null
+++ b/src/pages/Login.tsx
@@ -0,0 +1,203 @@
+import React, { useState, useEffect } from 'react';
+import { useNavigate } from 'react-router-dom';
+import { User, Template, SystemSettings, FormField, DEFAULT_FORM_FIELDS, DEFAULT_AI_PROVIDERS } from '../types';
+import { defaultReportContent } from '../utils/defaultContent';
+import { storage } from '../utils/storage';
+import { User as UserIcon, Lock } from 'lucide-react';
+import { ApiError } from '../api/client';
+import { useAuth } from '../auth/AuthContext';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+export default function Login() {
+  const [username, setUsername] = useState('');
+  const [password, setPassword] = useState('');
+  const [error, setError] = useState('');
+  const [isSubmitting, setIsSubmitting] = useState(false);
+  const navigate = useNavigate();
+  const { user: currentUser, login } = useAuth();
+
+  useEffect(() => {
+    const initData = () => {
+      if (!isLocalFallbackEnabled()) return;
+      const existingUsers = storage.get<User[]>('users', []);
+      const hasAdmin = existingUsers.some((u) => u.username === 'admin' && u.password === '123456');
+      
+      let savedTemplates = storage.get<Template[]>('templates', []);
+      if (savedTemplates.length === 0) {
+        const initialTemplate: Template = {
+          id: 'surgery',
+          name: '腹腔镜胆囊切除术报告',
+          desc: '标准手术记录模板',
+          content: defaultReportContent,
+          createdAt: new Date().toISOString(),
+          author: 'admin',
+          scope: 'department',
+          department: '外科'
+        };
+        savedTemplates = [initialTemplate];
+        storage.set('templates', savedTemplates);
+      }
+
+      if (!hasAdmin) {
+        const allTplIds = savedTemplates.map(t => t.id);
+        const defaultUsers: User[] = [
+          { username: 'admin', password: '123456', role: 'super', name: '超级管理员', status: 'active', createdAt: '2024-01-01', department: 'admin', visibleTemplates: allTplIds, manageableTemplates: allTplIds },
+          { username: 'manager', password: '123456', role: 'admin', name: '管理员', status: 'active', createdAt: '2024-01-01', department: '外科', visibleTemplates: allTplIds, manageableTemplates: allTplIds },
+          { username: '0001', password: '123456', role: 'user', name: '张医生', status: 'active', createdAt: '2024-01-01', department: '外科', visibleTemplates: allTplIds, manageableTemplates: [] }
+        ];
+        storage.set('users', defaultUsers);
+        console.log('Default users initialized');
+      }
+      
+      const fieldsConfig = storage.get<FormField[]>('formFieldsConfig', []);
+      if (fieldsConfig.length === 0) {
+        storage.set('formFieldsConfig', DEFAULT_FORM_FIELDS);
+      }
+
+      const savedAssets = storage.get<{id: string; name: string; dataUrl: string}[]>('imageAssets', []);
+      if (savedAssets.length === 0) {
+        fetch('/logo_square.png')
+          .then(res => res.blob())
+          .then(blob => {
+            const reader = new FileReader();
+            reader.onloadend = () => {
+              const dataUrl = reader.result as string;
+              storage.set('imageAssets', [{ id: 'asset_logo', name: '医院Logo', dataUrl }]);
+            };
+            reader.readAsDataURL(blob);
+          })
+          .catch(() => {});
+      }
+
+      const settingsRaw = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+      if (!settingsRaw.frameCount) {
+        const defaultSettings = {
+          frameCount: 12,
+          framePositions: [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85.0, 96.3, 98.6],
+          defaultTemplate: savedTemplates[0]?.id || '',
+          frameMode: 'keep',
+          activeAiProvider: 'kimi',
+          aiProviders: { ...DEFAULT_AI_PROVIDERS },
+          autoInsertFrames: true,
+          autoInsertDelay: 1,
+          autoInsertFrameIndices: [0, 2, 4, 6, 8, 10],
+          xfSpeechConfig: { appId: '', apiKey: '', apiSecret: '' }
+        };
+        storage.set('systemSettings', defaultSettings);
+      }
+    };
+
+    initData();
+  }, []);
+
+  useEffect(() => {
+    if (currentUser) {
+      navigate('/dashboard', { replace: true });
+    }
+  }, [currentUser, navigate]);
+
+  const loginWithBackend = async (u: string, p: string) => {
+    setError('');
+    setIsSubmitting(true);
+    try {
+      await login(u.trim(), p.trim());
+      navigate('/dashboard');
+    } catch (error) {
+      if (error instanceof ApiError && error.status === 403) {
+        setError('该账号已被禁用');
+      } else if (error instanceof ApiError && error.status === 401) {
+        setError('用户ID或密码错误');
+      } else {
+        setError('登录服务暂不可用，请稍后重试');
+      }
+    } finally {
+      setIsSubmitting(false);
+    }
+  };
+
+  const handleLogin = (e: React.FormEvent) => {
+    e.preventDefault();
+    void loginWithBackend(username, password);
+  };
+
+  const fillLogin = (u: string, p: string) => {
+    setUsername(u);
+    setPassword(p);
+    void loginWithBackend(u, p);
+  };
+
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-bg p-6">
+      <div className="bg-white rounded-3xl shadow-[0_20px_50px_-12px_rgba(0,0,0,0.08)] p-12 w-full max-w-[460px] border border-border">
+        <div className="text-center mb-10">
+          <div className="flex flex-col items-center">
+            <img src="/logo_square.png" alt="Logo" className="w-16 h-16 object-contain mb-6" />
+            <h1 className="text-2xl font-bold text-text-main tracking-tight mb-1">手术图文病历报告生成终端</h1>
+            <p className="text-xs text-text-muted uppercase tracking-widest font-bold">智能图文报告管理系统</p>
+          </div>
+        </div>
+        
+        <form onSubmit={handleLogin} className="space-y-6">
+          <div className="space-y-1.5">
+            <label className="block text-[10px] font-bold text-text-main uppercase tracking-wider">用户ID</label>
+            <div className="relative">
+              <UserIcon className="absolute left-3.5 top-1/2 -translate-y-1/2 text-text-muted" size={18} />
+              <input 
+                type="text" 
+                value={username}
+                onChange={(e) => setUsername(e.target.value)}
+                placeholder="请输入您的用户ID" 
+                required 
+                className="input-minimal pl-11"
+              />
+            </div>
+          </div>
+          <div className="space-y-1.5">
+            <label className="block text-[10px] font-bold text-text-main uppercase tracking-wider">密码</label>
+            <div className="relative">
+              <Lock className="absolute left-3.5 top-1/2 -translate-y-1/2 text-text-muted" size={18} />
+              <input 
+                type="password" 
+                value={password}
+                onChange={(e) => setPassword(e.target.value)}
+                placeholder="请输入您的登录密码" 
+                required 
+                className="input-minimal pl-11"
+              />
+            </div>
+          </div>
+          <button 
+            type="submit" 
+            disabled={isSubmitting}
+            className="btn-accent w-full py-4 text-base shadow-[0_8px_20px_-4px_rgba(37,99,235,0.2)]"
+          >
+            {isSubmitting ? '登录中...' : '进入系统'}
+          </button>
+          {error && <div className="text-red-500 text-xs text-center font-bold animate-pulse">{error}</div>}
+        </form>
+        
+        <div className="mt-10 pt-8 border-t border-border">
+          <h3 className="text-[10px] text-text-muted mb-4 uppercase tracking-widest font-bold text-center">快捷登录测试账号</h3>
+          <div className="grid grid-cols-1 gap-2">
+            {[
+              { u: 'admin', p: '123456', r: '超级管理员', c: 'bg-amber-100 text-amber-700' },
+              { u: 'manager', p: '123456', r: '管理员', c: 'bg-blue-100 text-blue-700' },
+              { u: '0001', p: '123456', r: '医生', c: 'bg-green-100 text-green-700' }
+            ].map(test => (
+              <div 
+                key={test.u}
+                onClick={() => fillLogin(test.u, test.p)}
+                className="flex justify-between items-center p-3 bg-slate-50 rounded-xl cursor-pointer transition-all hover:bg-white hover:shadow-md border border-transparent hover:border-border group"
+              >
+                <span className="text-xs font-bold text-text-main">{test.u} / {test.p}</span>
+                <span className={`text-[9px] px-2 py-0.5 rounded-full font-bold uppercase tracking-wider ${test.c}`}>
+                  {test.r}
+                </span>
+              </div>
+            ))}
+          </div>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/src/pages/ReportEditor.tsx b/src/pages/ReportEditor.tsx
new file mode 100644
index 0000000..dd80535
--- /dev/null
+++ b/src/pages/ReportEditor.tsx
@@ -0,0 +1,3118 @@
+import React, { useEffect, useState, useRef } from 'react';
+import { flushSync } from 'react-dom';
+import { useNavigate, useSearchParams } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { 
+  Check, Printer, Undo, Redo, Bold, Italic, Underline, 
+  AlignLeft, AlignCenter, AlignRight, Table, Image as ImageIcon,
+  Video, Play, Pause, Plus, X, ChevronLeft, Download,
+  Bot, Mic, MicOff, ImagePlus, Sparkles, Send
+} from 'lucide-react';
+import { User, Report, Template, CapturedFrame, SystemSettings, FormField, DEFAULT_FORM_FIELDS } from '../types';
+import { defaultReportContent } from '../utils/defaultContent';
+import { printDocument } from '../utils/print';
+import { storage } from '../utils/storage';
+import { canEditReport, getUsableTemplates } from '../utils/permissions';
+import { getReport, saveReportToApi } from '../api/reports';
+import { createTemplate, listTemplates } from '../api/templates';
+import { getSystemSettings } from '../api/settings';
+import { createAiChatCompletion } from '../api/ai';
+import { getSpeechIatWebSocketUrl } from '../api/speech';
+import { getFieldLibrary, updateFieldLibrary } from '../api/library';
+import { listFiles, uploadFileResource } from '../api/files';
+import { isLocalFallbackEnabled } from '../config/runtime';
+import { diffChars } from 'diff';
+
+export default function ReportEditor() {
+  const navigate = useNavigate();
+  const [searchParams] = useSearchParams();
+  const reportId = searchParams.get('id');
+  const restoreFlag = searchParams.get('restore');
+  
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [reportData, setReportData] = useState<Partial<Report>>({
+    title: '腹腔镜胆囊切除术报告',
+    patientName: '',
+    hospitalId: '',
+    patientGender: '',
+    patientAge: '',
+    department: '',
+    bedNumber: '',
+    surgeryDate: '',
+    startHour: '',
+    startMinute: '',
+    endHour: '',
+    endMinute: '',
+    surgeon: [],
+    assistant: [],
+    anesthesiologist: [],
+    anesthesiaType: '',
+    reportNote: '',
+    status: 'draft'
+  });
+
+  const [templates, setTemplates] = useState<Template[]>([]);
+  const [videos, setVideos] = useState<{id: string, name: string, url: string, duration: number, fileId?: string}[]>([]);
+  const [currentVideoIndex, setCurrentVideoIndex] = useState(-1);
+  const [capturedFrames, setCapturedFrames] = useState<CapturedFrame[]>([]);
+  const [isPlaying, setIsPlaying] = useState(false);
+  const [currentTime, setCurrentTime] = useState(0);
+  const [duration, setDuration] = useState(0);
+  const [isSaved, setIsSaved] = useState(false);
+  const [exportModalOpen, setExportModalOpen] = useState(false);
+  const [loadedTemplateId, setLoadedTemplateId] = useState('');
+  const [pendingTemplateId, setPendingTemplateId] = useState<string | null>(null);
+  const prevVideoCountRef = useRef(0);
+  
+  const [activeTab, setActiveTab] = useState<'info' | 'video' | 'ai'>('info');
+  const [activeFieldKey, setActiveFieldKey] = useState<string | null>(null);
+
+  // AI 撰写相关核心状态
+  const [chatInput, setChatInput] = useState<string>('');
+  const [chatMessages, setChatMessages] = useState<{id: string, role: 'user'|'model', content: string, images?: string[]}[]>([]);
+  const [isGenerating, setIsGenerating] = useState(false);
+
+  const [aiTargetRegion, setAiTargetRegion] = useState<string>('none');
+  const [aiModifyEnabled, setAiModifyEnabled] = useState(true);
+  const [isListening, setIsListening] = useState(false);
+  const [aiUploadedImages, setAiUploadedImages] = useState<{id: number, dataUrl: string}[]>([]);
+  const [editorImages, setEditorImages] = useState<{id: string, src: string}[]>([]);
+  const [aiSelectedEditorImages, setAiSelectedEditorImages] = useState<string[]>([]);
+  const xfWsRef = useRef<WebSocket | null>(null);
+  const xfAudioContextRef = useRef<AudioContext | null>(null);
+  const xfMediaStreamRef = useRef<MediaStream | null>(null);
+  const [quickPrompts, setQuickPrompts] = useState<string[]>([
+    '请完善报告内容', '请对内容做如下修改：'
+  ]);
+  const [isEditingPrompts, setIsEditingPrompts] = useState(false);
+  const [diffModal, setDiffModal] = useState<{isOpen: boolean, originalHtml: string, newHtml: string, targetId: string} | null>(null);
+  const [lastExchangeLog, setLastExchangeLog] = useState<{
+    startTime: string;
+    modelConfig: { provider: string; endpoint: string; modelName: string };
+    requestPayload: any;
+    responsePayload: any | null;
+    errorDetail: { status: number; statusText: string; responseText: string; message: string } | null;
+  } | null>(null);
+
+  useEffect(() => {
+    stateRef.current.chatMessages = chatMessages;
+  }, [chatMessages]);
+
+  // 监听编辑器中已插入的图片，同步到 AI 面板
+  useEffect(() => {
+    if (!editorRef.current) return;
+    const updateEditorImages = () => {
+      if (!editorRef.current) return;
+      const imgs = Array.from(editorRef.current.querySelectorAll('.image-placeholder.has-image img'))
+        .map((img, idx) => ({ id: `editor-img-${idx}-${(img as HTMLImageElement).src.slice(-16)}`, src: (img as HTMLImageElement).src }))
+        .filter(img => img.src);
+      setEditorImages(prev => {
+        const same = prev.length === imgs.length && prev.every((p, i) => p.src === imgs[i]?.src);
+        if (same) return prev;
+        // 清除已不存在的选中项
+        setAiSelectedEditorImages(prevSelected => prevSelected.filter(id => imgs.some(img => img.id === id)));
+        return imgs;
+      });
+    };
+    updateEditorImages();
+    const observer = new MutationObserver(updateEditorImages);
+    observer.observe(editorRef.current, { childList: true, subtree: true, attributes: true });
+    return () => observer.disconnect();
+  }, []);
+
+  useEffect(() => {
+    stateRef.current.chatInput = chatInput;
+  }, [chatInput]);
+
+  // 切换到 AI 面板时强制同步编辑器中的图片
+  useEffect(() => {
+    if (activeTab !== 'ai' || !editorRef.current) return;
+    const imgs = Array.from(editorRef.current.querySelectorAll('.image-placeholder.has-image img'))
+      .map((img, idx) => ({ id: `editor-img-${idx}-${(img as HTMLImageElement).src.slice(-16)}`, src: (img as HTMLImageElement).src }))
+      .filter(img => img.src);
+    setEditorImages(prev => {
+      const same = prev.length === imgs.length && prev.every((p, i) => p.src === imgs[i]?.src);
+      return same ? prev : imgs;
+    });
+  }, [activeTab]);
+
+  useEffect(() => {
+    if (!editorRef.current) return;
+    const allFields = editorRef.current.querySelectorAll('.field-value');
+    allFields.forEach(el => {
+      (el as HTMLElement).style.backgroundColor = '';
+      (el as HTMLElement).style.outline = '';
+      (el as HTMLElement).style.outlineOffset = '';
+    });
+    if (activeFieldKey) {
+      const targetEl = editorRef.current.querySelector(`.field-value[data-bind="${activeFieldKey}"]`) as HTMLElement;
+      if (targetEl) {
+        targetEl.style.backgroundColor = '#f1f5f9';
+        targetEl.style.outline = '1px solid #94a3b8';
+        targetEl.style.outlineOffset = '1px';
+        targetEl.scrollIntoView({ behavior: 'smooth', block: 'center' });
+      }
+    }
+  }, [activeFieldKey]);
+
+  const [multiSelectOptions, setMultiSelectOptions] = useState<Record<string, string[]>>({
+    surgeon: ['张医生', '李医生', '王医生'],
+    assistant: ['赵医生', '钱医生', '孙医生'],
+    anesthesiologist: ['周医生', '吴医生', '郑医生']
+  });
+  const [anesthesiaOptions, setAnesthesiaOptions] = useState<string[]>(['全麻', '局麻', '腰麻', '硬膜外麻醉', '静脉麻醉', '吸入麻醉']);
+  const [openDropdown, setOpenDropdown] = useState<string | null>(null);
+  const [multiInputText, setMultiInputText] = useState<Record<string, string>>({});
+  const [touched, setTouched] = useState<Record<string, boolean>>({});
+  const [formFields, setFormFields] = useState<FormField[]>([]);
+  const [imagePickerOpen, setImagePickerOpen] = useState(false);
+  const [imagePickerTarget, setImagePickerTarget] = useState<HTMLElement | null>(null);
+  const [imageAssets, setImageAssets] = useState<{id: string; name: string; dataUrl: string}[]>([]);
+  const [placeholderModal, setPlaceholderModal] = useState({
+    isOpen: false, width: '200', height: '200', mode: 'frame' as 'frame' | 'manual'
+  });
+  const [tableModal, setTableModal] = useState({
+    isOpen: false, rows: '2', cols: '3'
+  });
+
+  const editorRef = useRef<HTMLDivElement>(null);
+  const videoRef = useRef<HTMLVideoElement>(null);
+  const canvasRef = useRef<HTMLCanvasElement>(null);
+  const videoInputRef = useRef<HTMLInputElement>(null);
+  const contentLoadedRef = useRef(false);
+  const contentRef = useRef('');
+  const stateRef = useRef({ reportData, videos, capturedFrames, activeTab, loadedTemplateId, chatMessages, chatInput });
+  const videoUploadPromisesRef = useRef<Promise<void>[]>([]);
+  const frameUploadPromisesRef = useRef<Promise<void>[]>([]);
+
+  const draftKey = currentUser ? `reportEditorDraft_${currentUser.username}` : '';
+
+  const updatePageHeight = () => {
+    if (!editorRef.current) return;
+    const contentHeight = editorRef.current.scrollHeight;
+    const pageHeightMm = 297;
+    const mmToPx = 3.7795275591;
+    const pages = Math.max(2, Math.ceil(contentHeight / (pageHeightMm * mmToPx)));
+    editorRef.current.style.minHeight = `${pages * pageHeightMm}mm`;
+  };
+
+  const saveDraftToStorage = React.useCallback(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    const key = user ? `reportEditorDraft_${user.username}` : '';
+    if (key) {
+      const currentContent = contentRef.current || editorRef.current?.innerHTML || '';
+      storage.set(key, {
+        content: currentContent,
+        draftReportId: reportId || null,
+        reportData: stateRef.current.reportData,
+        videos: stateRef.current.videos,
+        capturedFrames: stateRef.current.capturedFrames,
+        activeTab: stateRef.current.activeTab,
+        loadedTemplateId: stateRef.current.loadedTemplateId,
+        chatMessages: stateRef.current.chatMessages,
+        chatInput: stateRef.current.chatInput
+      });
+    }
+  }, [reportId]);
+
+  const fileToDataUrl = (file: File) => new Promise<string>((resolve, reject) => {
+    const reader = new FileReader();
+    reader.onload = () => resolve(String(reader.result || ''));
+    reader.onerror = () => reject(reader.error || new Error('文件读取失败'));
+    reader.readAsDataURL(file);
+  });
+
+  const replaceEditorImageSrc = (from: string, to: string) => {
+    if (!editorRef.current || !from || !to || from === to) return;
+    editorRef.current.querySelectorAll('img').forEach((img) => {
+      if ((img as HTMLImageElement).src === from || img.getAttribute('src') === from) {
+        img.setAttribute('src', to);
+      }
+    });
+    contentRef.current = editorRef.current.innerHTML;
+    saveDraftToStorage();
+  };
+
+  const startVideoUpload = (videoId: string, file: File) => {
+    const promise = fileToDataUrl(file)
+      .then((dataUrl) => uploadFileResource(dataUrl, {
+        kind: 'VIDEO',
+        filename: file.name,
+        reportId: reportId || undefined,
+      }))
+      .then((uploaded) => {
+        const next = stateRef.current.videos.map((video) =>
+          video.id === videoId ? { ...video, url: uploaded.url, fileId: uploaded.id } : video,
+        );
+        stateRef.current = { ...stateRef.current, videos: next };
+        setVideos(next);
+      })
+      .catch(() => {});
+    videoUploadPromisesRef.current.push(promise);
+  };
+
+  const startFrameUpload = (frameId: number, dataUrl: string) => {
+    const promise = uploadFileResource(dataUrl, {
+      kind: 'FRAME',
+      filename: `frame-${frameId}.jpg`,
+      reportId: reportId || undefined,
+    })
+      .then((uploaded) => {
+        const next = stateRef.current.capturedFrames.map((frame) =>
+          frame.id === frameId ? { ...frame, dataUrl: uploaded.url, fileId: uploaded.id } : frame,
+        );
+        stateRef.current = { ...stateRef.current, capturedFrames: next };
+        setCapturedFrames(next);
+        replaceEditorImageSrc(dataUrl, uploaded.url);
+      })
+      .catch(() => {});
+    frameUploadPromisesRef.current.push(promise);
+  };
+
+  const waitForMediaUploads = async () => {
+    const uploads = [...videoUploadPromisesRef.current, ...frameUploadPromisesRef.current];
+    if (uploads.length === 0) return;
+    await Promise.allSettled(uploads);
+    videoUploadPromisesRef.current = [];
+    frameUploadPromisesRef.current = [];
+  };
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user) { navigate('/'); return; }
+    setCurrentUser(user);
+
+    const savedMulti = storage.get<Record<string, string[]> | null>('multiSelectOptions', null);
+    if (savedMulti) setMultiSelectOptions(savedMulti);
+    const savedAnesthesia = storage.get<string[] | null>('anesthesiaOptions', null);
+    if (savedAnesthesia) setAnesthesiaOptions(savedAnesthesia);
+
+    const savedFields = storage.get<FormField[]>('formFieldsConfig', []);
+    if (savedFields.length > 0) {
+      setFormFields(savedFields);
+    } else {
+      setFormFields(DEFAULT_FORM_FIELDS);
+      storage.set('formFieldsConfig', DEFAULT_FORM_FIELDS);
+    }
+
+    const savedAssets = storage.get<{id: string; name: string; dataUrl: string}[]>('imageAssets', []);
+    setImageAssets(savedAssets);
+
+    void getFieldLibrary().then((library) => {
+      if (library.formFields.length > 0) {
+        setFormFields(library.formFields);
+        storage.set('formFieldsConfig', library.formFields);
+      }
+      if (Object.keys(library.multiSelectOptions || {}).length > 0) {
+        setMultiSelectOptions(library.multiSelectOptions);
+        storage.set('multiSelectOptions', library.multiSelectOptions);
+      }
+      if (library.anesthesiaOptions.length > 0) {
+        setAnesthesiaOptions(library.anesthesiaOptions);
+        storage.set('anesthesiaOptions', library.anesthesiaOptions);
+      }
+    }).catch(() => {});
+
+    void listFiles('TEMPLATE_ASSET').then((files) => {
+      if (files.length === 0) return;
+      const assets = files.map((file) => ({ id: file.id, name: file.filename, dataUrl: file.url }));
+      setImageAssets(assets);
+      storage.set('imageAssets', assets);
+    }).catch(() => {});
+
+    void getSystemSettings().then((apiSettings) => {
+      storage.set('systemSettings', apiSettings);
+    }).catch(() => {});
+
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const filteredTemplates = getUsableTemplates(user, allTemplates);
+    setTemplates(filteredTemplates);
+    void listTemplates('use').then((response) => {
+      if (response.items.length === 0) return;
+      setTemplates(response.items);
+      storage.set('templates', response.items);
+    }).catch(() => {});
+
+    if (reportId) {
+      const draft = storage.get<Record<string, any> | null>(draftKey, null);
+      if (draft && draft.draftReportId === reportId) {
+        if (draft.reportData) setReportData(draft.reportData);
+        if (draft.videos) {
+          setVideos(draft.videos);
+          if (draft.videos.length > 0) setCurrentVideoIndex(0);
+          prevVideoCountRef.current = draft.videos.length;
+        }
+        if (draft.capturedFrames) {
+          setCapturedFrames(draft.capturedFrames.sort((a: CapturedFrame, b: CapturedFrame) => a.time - b.time));
+        }
+        if (draft.activeTab) setActiveTab(draft.activeTab);
+        if (draft.chatMessages) setChatMessages(draft.chatMessages);
+        if (typeof draft.chatInput === 'string') setChatInput(draft.chatInput);
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: draft.reportData,
+          videos: draft.videos,
+          capturedFrames: draft.capturedFrames,
+          loadedTemplateId: draft.loadedTemplateId || '',
+          chatMessages: draft.chatMessages || [],
+          chatInput: draft.chatInput || ''
+        };
+        if (editorRef.current && typeof draft.content === 'string' && draft.content.trim().length > 0) {
+          editorRef.current.innerHTML = draft.content;
+          contentRef.current = draft.content;
+          contentLoadedRef.current = true;
+          setLoadedTemplateId(draft.loadedTemplateId || '');
+          setTimeout(() => updatePageHeight(), 0);
+        }
+      } else {
+        const reports = storage.get<Report[]>('reports', []);
+        const found = reports.find(r => r.id === reportId);
+        if (found) {
+          const users = storage.get<User[]>('users', []);
+          if (!canEditReport(user, found, users)) {
+            alert('您没有权限编辑此报告');
+            navigate('/report-manage');
+            return;
+          }
+          setReportData(found);
+          stateRef.current = {
+            ...stateRef.current,
+            reportData: found,
+            videos: found.videos || [],
+            capturedFrames: found.capturedFrames || []
+          };
+          if (editorRef.current) {
+            const restoreContent = storage.getSession<string | null>(`restore_${reportId}`, null);
+            if (restoreFlag && restoreContent) {
+              editorRef.current.innerHTML = restoreContent;
+              storage.removeSession(`restore_${reportId}`);
+            } else {
+              editorRef.current.innerHTML = found.content;
+              contentRef.current = found.content;
+            }
+            contentLoadedRef.current = true;
+            setTimeout(() => updatePageHeight(), 0);
+          }
+          if (found.capturedFrames) {
+            setCapturedFrames(found.capturedFrames.sort((a, b) => a.time - b.time));
+          }
+          if (found.videos) {
+            setVideos(found.videos);
+            if (found.videos.length > 0) setCurrentVideoIndex(0);
+            prevVideoCountRef.current = found.videos.length;
+          }
+        }
+      }
+    } else {
+      const draft = storage.get<Record<string, any> | null>(draftKey, null);
+      if (draft && !draft.draftReportId) {
+        if (draft.reportData) setReportData(draft.reportData);
+        if (draft.videos) {
+          setVideos(draft.videos);
+          if (draft.videos.length > 0) setCurrentVideoIndex(0);
+          prevVideoCountRef.current = draft.videos.length;
+        }
+        if (draft.capturedFrames) {
+          setCapturedFrames(draft.capturedFrames.sort((a: CapturedFrame, b: CapturedFrame) => a.time - b.time));
+        }
+        if (draft.activeTab) setActiveTab(draft.activeTab);
+        if (draft.chatMessages) setChatMessages(draft.chatMessages);
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: draft.reportData,
+          videos: draft.videos,
+          capturedFrames: draft.capturedFrames,
+          loadedTemplateId: draft.loadedTemplateId || '',
+          chatMessages: draft.chatMessages || []
+        };
+        if (editorRef.current && typeof draft.content === 'string' && draft.content.trim().length > 0) {
+          editorRef.current.innerHTML = draft.content;
+          contentRef.current = draft.content;
+          contentLoadedRef.current = true;
+          setLoadedTemplateId(draft.loadedTemplateId || '');
+          setTimeout(() => updatePageHeight(), 0);
+        }
+      }
+      if (!contentLoadedRef.current && editorRef.current) {
+        const settings = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+        if (settings.defaultTemplate && filteredTemplates.length > 0) {
+          const tpl = filteredTemplates.find(t => t.id === settings.defaultTemplate);
+          if (tpl) {
+            setLoadedTemplateId(tpl.id);
+            stateRef.current = { ...stateRef.current, loadedTemplateId: tpl.id };
+            editorRef.current.innerHTML = tpl.content;
+            contentRef.current = tpl.content;
+          } else {
+            editorRef.current.innerHTML = defaultReportContent;
+            contentRef.current = defaultReportContent;
+          }
+        } else {
+          editorRef.current.innerHTML = defaultReportContent;
+          contentRef.current = defaultReportContent;
+        }
+        contentLoadedRef.current = true;
+        setTimeout(() => updatePageHeight(), 0);
+      }
+    }
+  }, [reportId, navigate, draftKey, restoreFlag]);
+
+  const persistEditorFieldLibrary = (next: Partial<{
+    formFields: FormField[];
+    multiSelectOptions: Record<string, string[]>;
+    anesthesiaOptions: string[];
+  }>) => {
+    void updateFieldLibrary({
+      formFields,
+      multiSelectOptions,
+      anesthesiaOptions,
+      customTimeFormats: [],
+      ...next,
+    }).catch(() => {});
+  };
+
+  useEffect(() => {
+    const handleBeforeUnload = () => saveDraftToStorage();
+    const handleVisibilityChange = () => {
+      if (document.visibilityState === 'hidden') saveDraftToStorage();
+    };
+    window.addEventListener('beforeunload', handleBeforeUnload);
+    document.addEventListener('visibilitychange', handleVisibilityChange);
+    return () => {
+      window.removeEventListener('beforeunload', handleBeforeUnload);
+      document.removeEventListener('visibilitychange', handleVisibilityChange);
+      saveDraftToStorage();
+    };
+  }, [saveDraftToStorage]);
+
+  useEffect(() => {
+    if (!reportId || !currentUser) return;
+    const draft = storage.get<Record<string, any> | null>(draftKey, null);
+    if (draft && draft.draftReportId === reportId) return;
+
+    const loadApiReport = async () => {
+      try {
+        const apiReport = await getReport(reportId);
+        setReportData(apiReport);
+        setCapturedFrames((apiReport.capturedFrames || []).sort((a, b) => a.time - b.time));
+        setVideos(apiReport.videos || []);
+        if (apiReport.videos && apiReport.videos.length > 0) setCurrentVideoIndex(0);
+        prevVideoCountRef.current = apiReport.videos?.length || 0;
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: apiReport,
+          videos: apiReport.videos || [],
+          capturedFrames: apiReport.capturedFrames || []
+        };
+
+        const reports = storage.get<Report[]>('reports', []);
+        storage.set('reports', [...reports.filter(r => r.id !== apiReport.id), apiReport]);
+
+        if (editorRef.current && !restoreFlag) {
+          editorRef.current.innerHTML = apiReport.content;
+          contentRef.current = apiReport.content;
+          contentLoadedRef.current = true;
+          setTimeout(() => updatePageHeight(), 0);
+        }
+      } catch {
+        if (!isLocalFallbackEnabled()) {
+          alert('报告加载失败或无权访问');
+          navigate('/report-manage');
+        }
+      }
+    };
+
+    void loadApiReport();
+  }, [currentUser, draftKey, reportId, restoreFlag]);
+
+  // Auto-fill current time for fields with timeDefault === 'current'
+  useEffect(() => {
+    if (formFields.length === 0) return;
+    let hasChange = false;
+    const updates: any = {};
+    formFields.forEach(field => {
+      if (field.timeDefault === 'current') {
+        if (field.type === 'date') {
+          const current = new Date().toISOString().split('T')[0];
+          if (!(reportData as any)[field.key]) {
+            updates[field.key] = current;
+            hasChange = true;
+          }
+        } else if (field.type === 'time') {
+          const now = new Date();
+          const hh = String(now.getHours()).padStart(2, '0');
+          const mm = String(now.getMinutes()).padStart(2, '0');
+          if (field.key === 'startTime') {
+            if (!reportData.startHour) {
+              updates.startHour = hh;
+              updates.startMinute = mm;
+              hasChange = true;
+            }
+          } else if (field.key === 'endTime') {
+            if (!reportData.endHour) {
+              updates.endHour = hh;
+              updates.endMinute = mm;
+              hasChange = true;
+            }
+          } else {
+            if (!(reportData as any)[field.key]) {
+              updates[field.key] = `${hh}:${mm}`;
+              hasChange = true;
+            }
+          }
+        }
+      } else if (field.timeDefault === 'specific' && field.fixedTimeValue) {
+        if (field.type === 'date') {
+          if (!(reportData as any)[field.key]) {
+            updates[field.key] = field.fixedTimeValue;
+            hasChange = true;
+          }
+        } else if (field.type === 'time') {
+          if (field.key === 'startTime') {
+            if (!reportData.startHour) {
+              const [hh, mm] = field.fixedTimeValue.split(':');
+              updates.startHour = hh || '';
+              updates.startMinute = mm || '';
+              hasChange = true;
+            }
+          } else if (field.key === 'endTime') {
+            if (!reportData.endHour) {
+              const [hh, mm] = field.fixedTimeValue.split(':');
+              updates.endHour = hh || '';
+              updates.endMinute = mm || '';
+              hasChange = true;
+            }
+          } else {
+            if (!(reportData as any)[field.key]) {
+              updates[field.key] = field.fixedTimeValue;
+              hasChange = true;
+            }
+          }
+        }
+      }
+    });
+    if (hasChange) {
+      setReportData(prev => {
+        const next = { ...prev, ...updates };
+        stateRef.current = { ...stateRef.current, reportData: next };
+        return next;
+      });
+    }
+  }, [formFields]);
+
+  useEffect(() => {
+    if (!editorRef.current) return;
+    const observer = new MutationObserver(() => {
+      updatePageHeight();
+    });
+    observer.observe(editorRef.current, { childList: true, subtree: true, attributes: true, characterData: true });
+    return () => observer.disconnect();
+  }, [currentUser]);
+
+  const triggerPlaceholderUpload = (placeholder: HTMLElement) => {
+    const input = document.createElement('input');
+    input.type = 'file';
+    input.accept = 'image/*';
+    input.onchange = (ev) => {
+      const file = (ev.target as HTMLInputElement).files?.[0];
+      if (file) {
+        const reader = new FileReader();
+        reader.onload = (event) => {
+          const src = event.target?.result as string;
+          const mw = placeholder.style.maxWidth || placeholder.style.width || '200px';
+          const mh = placeholder.style.maxHeight || placeholder.style.height || '200px';
+          placeholder.innerHTML = `
+            <span class="delete-btn" contenteditable="false">×</span>
+            <img src="${src}" style="max-width:${mw};max-height:${mh};display:block;object-fit:contain;object-position:left top;" draggable="false">
+          `;
+          placeholder.classList.add('has-image');
+          placeholder.style.border = 'none';
+          placeholder.style.background = 'transparent';
+          placeholder.style.width = 'auto';
+          placeholder.style.height = 'auto';
+          placeholder.style.lineHeight = 'normal';
+          placeholder.style.maxWidth = mw;
+          placeholder.style.maxHeight = mh;
+          placeholder.style.textAlign = 'left';
+          placeholder.style.verticalAlign = 'top';
+          placeholder.style.justifyContent = 'flex-start';
+          placeholder.style.alignItems = 'flex-start';
+          if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+          saveDraftToStorage();
+        };
+        reader.readAsDataURL(file);
+      }
+    };
+    input.click();
+  };
+
+  // Handle image placeholder interactions via click capture for reliable contenteditable behavior
+  useEffect(() => {
+    const handleEditorClick = (e: MouseEvent) => {
+      // e.target may be a text node; safely resolve to an Element
+      let node: Node | null = e.target as Node;
+      if (node.nodeType === Node.TEXT_NODE) node = node.parentElement;
+      const targetEl = node as HTMLElement | null;
+      if (!targetEl) return;
+
+      // Handle click on field-value: switch to info tab, highlight and focus corresponding input
+      const fieldValue = targetEl.closest('.field-value') as HTMLElement | null;
+      if (fieldValue) {
+        const bindKey = fieldValue.getAttribute('data-bind');
+        if (bindKey) {
+          setActiveTab('info');
+          stateRef.current = { ...stateRef.current, activeTab: 'info' };
+          setActiveFieldKey(bindKey);
+          setTimeout(() => {
+            const inputEl = document.getElementById(`input-${bindKey}`);
+            if (inputEl) {
+              inputEl.scrollIntoView({ behavior: 'smooth', block: 'center' });
+              const focusable = inputEl.querySelector('input, select') as HTMLElement | null;
+              if (focusable) {
+                focusable.focus();
+              }
+            }
+          }, 100);
+        }
+        return;
+      }
+
+      // 点击空白处清除高亮
+      setActiveFieldKey(null);
+
+      const placeholder = targetEl.closest('.image-placeholder') as HTMLElement | null;
+      if (!placeholder) return;
+
+      if (targetEl.closest('.delete-btn')) {
+        e.stopPropagation();
+        e.preventDefault();
+        if (placeholder.classList.contains('has-image')) {
+          placeholder.classList.remove('has-image');
+          const w = parseInt(placeholder.style.maxWidth || placeholder.style.width || '0');
+          const text = w > 0 && w < 80 ? '插图' : '插入/点击放置图片';
+          placeholder.innerHTML = `
+            <span class="delete-btn" contenteditable="false">×</span>
+            <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${text}</span>
+          `;
+          placeholder.style.border = '1px dashed #cbd5e1';
+          placeholder.style.background = '#f8fafc';
+          const mw = placeholder.style.maxWidth;
+          const mh = placeholder.style.maxHeight;
+          if (mw) placeholder.style.width = mw;
+          if (mh) {
+            placeholder.style.height = mh;
+            placeholder.style.lineHeight = mh;
+          }
+          placeholder.style.textAlign = 'center';
+          placeholder.style.verticalAlign = 'middle';
+          placeholder.style.justifyContent = 'center';
+          placeholder.style.alignItems = 'center';
+          if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+          saveDraftToStorage();
+        } else {
+          const range = document.createRange();
+          range.selectNode(placeholder);
+          const sel = window.getSelection();
+          sel?.removeAllRanges();
+          sel?.addRange(range);
+          document.execCommand('delete');
+          if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+          saveDraftToStorage();
+        }
+        return;
+      }
+
+      if (!placeholder.classList.contains('has-image')) {
+        e.preventDefault();
+        e.stopPropagation();
+        setImagePickerTarget(placeholder);
+        setImagePickerOpen(true);
+      }
+    };
+
+    const editor = editorRef.current;
+    if (editor) {
+      editor.addEventListener('click', handleEditorClick, true);
+    }
+    return () => {
+      if (editor) {
+        editor.removeEventListener('click', handleEditorClick, true);
+      }
+    };
+  }, [saveDraftToStorage, currentUser]);
+
+  // Prevent backspace from deleting image-placeholder elements
+  useEffect(() => {
+    const editor = editorRef.current;
+    if (!editor) return;
+
+    const handleKeyDown = (e: KeyboardEvent) => {
+      if (e.key !== 'Backspace' && e.key !== 'Delete') return;
+      const sel = window.getSelection();
+      if (!sel || sel.rangeCount === 0) return;
+      const range = sel.getRangeAt(0);
+      
+      // If selection is inside a placeholder, or if the range intersects a placeholder
+      let node: Node | null = range.commonAncestorContainer;
+      if (node.nodeType === Node.TEXT_NODE) node = node.parentElement;
+      const placeholder = (node as HTMLElement)?.closest('.image-placeholder');
+      if (placeholder) {
+        e.preventDefault();
+        return;
+      }
+      
+      // If collapsed and next/previous sibling is a placeholder
+      if (range.collapsed) {
+        const container = range.startContainer;
+        const offset = range.startOffset;
+        if (container.nodeType === Node.ELEMENT_NODE) {
+          const next = (container as Element).children[offset];
+          const prev = (container as Element).children[offset - 1];
+          if ((e.key === 'Delete' && next?.classList?.contains('image-placeholder')) ||
+              (e.key === 'Backspace' && prev?.classList?.contains('image-placeholder'))) {
+            e.preventDefault();
+          }
+        }
+      }
+    };
+
+    editor.addEventListener('keydown', handleKeyDown);
+    return () => editor.removeEventListener('keydown', handleKeyDown);
+  }, []);
+
+  const fillPlaceholderSrc = (placeholder: HTMLElement, src: string) => {
+    const mw = placeholder.style.maxWidth || placeholder.style.width || '200px';
+    const mh = placeholder.style.maxHeight || placeholder.style.height || '200px';
+    placeholder.innerHTML = `
+      <span class="delete-btn" contenteditable="false">×</span>
+      <img src="${src}" style="max-width:${mw};max-height:${mh};display:block;object-fit:contain;object-position:left top;" draggable="false">
+    `;
+    placeholder.classList.add('has-image');
+    placeholder.style.border = 'none';
+    placeholder.style.background = 'transparent';
+    placeholder.style.width = 'auto';
+    placeholder.style.height = 'auto';
+    placeholder.style.lineHeight = 'normal';
+    placeholder.style.maxWidth = mw;
+    placeholder.style.maxHeight = mh;
+    placeholder.style.textAlign = 'left';
+    placeholder.style.verticalAlign = 'top';
+    placeholder.style.justifyContent = 'flex-start';
+    placeholder.style.alignItems = 'flex-start';
+    if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+    saveDraftToStorage();
+  };
+
+  const execCmd = (command: string, value: string | undefined = undefined) => {
+    editorRef.current?.focus();
+    document.execCommand(command, false, value);
+    editorRef.current?.focus();
+    if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+    saveDraftToStorage();
+  };
+
+  const changeLineHeight = (height: string) => {
+    const sel = window.getSelection();
+    if (!sel || !sel.rangeCount) return;
+    let node = sel.getRangeAt(0).commonAncestorContainer;
+    if (node.nodeType === Node.TEXT_NODE) node = node.parentNode as Node;
+    const block = (node as HTMLElement).closest('p, div, td, h1, h2, h3, li');
+    if (block) {
+      (block as HTMLElement).style.lineHeight = height;
+      if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+      saveDraftToStorage();
+    }
+  };
+
+  const changeAlignment = (align: 'left' | 'center' | 'right' | 'justify') => {
+    const sel = window.getSelection();
+    if (!sel || !sel.rangeCount) return;
+    let node = sel.getRangeAt(0).commonAncestorContainer;
+    if (node.nodeType === Node.TEXT_NODE) node = node.parentNode as Node;
+    const block = (node as HTMLElement).closest('p, div, td, h1, h2, h3, li');
+    if (block) {
+      (block as HTMLElement).style.textAlign = align;
+      if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+      saveDraftToStorage();
+    }
+  };
+
+  const insertTable = () => {
+    editorRef.current?.focus();
+    setTableModal({ isOpen: true, rows: '2', cols: '3' });
+  };
+
+  const insertImage = () => {
+    editorRef.current?.focus();
+    setPlaceholderModal({ isOpen: true, width: '200', height: '200', mode: 'frame' });
+  };
+
+  const insertAiRegion = () => {
+    const name = window.prompt('请输入 AI 可编辑区域的名称（如：手术步骤、病灶描述）：');
+    if (!name || !name.trim()) return;
+    if (editorRef.current?.querySelector(`[data-ai-id="${name}"]`)) {
+      window.alert('该区域名称已存在，请使用其他名称以保证 AI 定位准确。');
+      return;
+    }
+    editorRef.current?.focus();
+    const html = `<div class="ai-region" data-ai-id="${name}" data-ai-title="${name}" style="border: 1px dashed #3b82f6; padding: 16px 12px 12px; margin: 8px 0; position: relative; min-height: 60px; background: #f8fafc; border-radius: 6px;"><div contenteditable="false" style="position: absolute; top: -10px; right: 10px; background: #3b82f6; color: white; font-size: 10px; padding: 2px 8px; border-radius: 12px; z-index: 10; user-select: none; box-shadow: 0 2px 4px rgba(0,0,0,0.1);">${name}-AI可编辑区域</div><div class="ai-content" style="min-height: 20px;">&#8203;</div></div><p><br></p>`;
+    document.execCommand('insertHTML', false, html);
+    if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+    saveDraftToStorage();
+  };
+
+  const handleVideoUpload = (e: React.ChangeEvent<HTMLInputElement>) => {
+    const files = Array.from(e.target.files || []) as File[];
+    const newVideos = files.map(file => ({
+      id: Math.random().toString(36).substr(2, 9),
+      name: file.name,
+      url: URL.createObjectURL(file),
+      duration: 0
+    }));
+    const combined = [...videos, ...newVideos];
+    setVideos(combined);
+    stateRef.current = { ...stateRef.current, videos: combined };
+    newVideos.forEach((video, index) => startVideoUpload(video.id, files[index]));
+    setCurrentVideoIndex(videos.length); // select first newly uploaded video
+    if (videoInputRef.current) videoInputRef.current.value = '';
+    saveDraftToStorage();
+  };
+
+  const removeVideo = (id: string) => {
+    const idx = videos.findIndex(v => v.id === id);
+    const updated = videos.filter(v => v.id !== id);
+    setVideos(updated);
+    stateRef.current = { ...stateRef.current, videos: updated };
+    if (currentVideoIndex >= updated.length) {
+      setCurrentVideoIndex(updated.length > 0 ? 0 : -1);
+    } else if (currentVideoIndex === idx && updated.length > 0) {
+      setCurrentVideoIndex(0);
+    }
+    const nextFrames = capturedFrames.filter(f => f.videoIndex !== idx).map(f => {
+      if (f.videoIndex > idx) return { ...f, videoIndex: f.videoIndex - 1 };
+      return f;
+    }).sort((a, b) => a.time - b.time);
+    setCapturedFrames(nextFrames);
+    stateRef.current = { ...stateRef.current, capturedFrames: nextFrames };
+    saveDraftToStorage();
+  };
+
+  const selectVideo = (index: number) => {
+    setCurrentVideoIndex(index);
+    setIsPlaying(false);
+  };
+
+  const togglePlay = () => {
+    if (!videoRef.current) return;
+    if (isPlaying) videoRef.current.pause();
+    else videoRef.current.play();
+    setIsPlaying(!isPlaying);
+  };
+
+  const captureFrame = () => {
+    if (!videoRef.current || !canvasRef.current || currentVideoIndex === -1) return;
+    const video = videoRef.current;
+    const canvas = canvasRef.current;
+    const MAX_WIDTH = 800;
+    const scale = Math.min(1, MAX_WIDTH / video.videoWidth);
+    canvas.width = video.videoWidth * scale;
+    canvas.height = video.videoHeight * scale;
+    const ctx = canvas.getContext('2d');
+    ctx?.drawImage(video, 0, 0, canvas.width, canvas.height);
+
+    const newFrame: CapturedFrame = {
+      id: Date.now(),
+      videoIndex: currentVideoIndex,
+      videoName: videos[currentVideoIndex].name,
+      time: video.currentTime,
+      timeFormatted: formatTime(video.currentTime),
+      dataUrl: canvas.toDataURL('image/jpeg', 0.6),
+      isManual: true
+    };
+    const nextFrames = [...capturedFrames, newFrame].sort((a, b) => a.time - b.time);
+    setCapturedFrames(nextFrames);
+    stateRef.current = { ...stateRef.current, capturedFrames: nextFrames };
+    startFrameUpload(newFrame.id, newFrame.dataUrl);
+    saveDraftToStorage();
+  };
+
+  const autoCaptureFrames = async () => {
+    if (!videoRef.current || currentVideoIndex === -1) return;
+    const video = videoRef.current;
+    const settings = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+    const positions = settings.framePositions || [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85.0, 96.3, 98.6];
+    const dur = video.duration || 1;
+
+    const canvas = canvasRef.current;
+    if (!canvas) return;
+    const ctx = canvas.getContext('2d');
+    if (!ctx) return;
+
+    const wasPlaying = !video.paused;
+    if (wasPlaying) video.pause();
+
+    let accumulatedFrames = [...capturedFrames];
+    for (let i = 0; i < positions.length; i++) {
+      const pos = positions[i];
+      const time = (pos / 100) * dur;
+      video.currentTime = time;
+      await new Promise<void>(resolve => {
+        const onSeeked = () => {
+          video.removeEventListener('seeked', onSeeked);
+          resolve();
+        };
+        video.addEventListener('seeked', onSeeked);
+      });
+      const MAX_WIDTH = 800;
+      const scale = Math.min(1, MAX_WIDTH / video.videoWidth);
+      canvas.width = video.videoWidth * scale;
+      canvas.height = video.videoHeight * scale;
+      ctx.drawImage(video, 0, 0, canvas.width, canvas.height);
+      const newFrame: CapturedFrame = {
+        id: Date.now() + Math.random(),
+        videoIndex: currentVideoIndex,
+        videoName: videos[currentVideoIndex].name,
+        time,
+        timeFormatted: formatTime(time),
+        dataUrl: canvas.toDataURL('image/jpeg', 0.6),
+        isManual: false
+      };
+      accumulatedFrames = [...accumulatedFrames, newFrame].sort((a, b) => a.time - b.time);
+      flushSync(() => {
+        setCapturedFrames(accumulatedFrames);
+      });
+      stateRef.current = { ...stateRef.current, capturedFrames: accumulatedFrames };
+      startFrameUpload(newFrame.id, newFrame.dataUrl);
+      if (settings.autoInsertFrames && settings.autoInsertFrameIndices?.includes(i)) {
+        const baseDelay = (settings.autoInsertDelay || 0) * 1000;
+        const insertOrderIndex = settings.autoInsertFrameIndices.indexOf(i);
+        const actualDelay = baseDelay > 0 ? baseDelay * (insertOrderIndex + 1) : 0;
+
+        setTimeout(() => {
+          if (!editorRef.current) return;
+          const emptyPlaceholder = editorRef.current.querySelector('.image-placeholder:not(.has-image):not([data-mode="manual"])') as HTMLElement | null;
+          if (emptyPlaceholder) {
+            emptyPlaceholder.innerHTML = `
+              <span class="delete-btn" contenteditable="false">×</span>
+              <img src="${newFrame.dataUrl}" style="max-width:${emptyPlaceholder.style.maxWidth || emptyPlaceholder.style.width || '200px'};max-height:${emptyPlaceholder.style.maxHeight || emptyPlaceholder.style.height || '200px'};display:block;object-fit:contain;object-position:left top;" draggable="false">
+            `;
+            emptyPlaceholder.classList.add('has-image');
+            emptyPlaceholder.style.border = 'none';
+            emptyPlaceholder.style.background = 'transparent';
+            emptyPlaceholder.style.width = 'auto';
+            emptyPlaceholder.style.height = 'auto';
+            emptyPlaceholder.style.lineHeight = 'normal';
+            emptyPlaceholder.style.maxWidth = emptyPlaceholder.style.maxWidth || emptyPlaceholder.style.width || '200px';
+            emptyPlaceholder.style.maxHeight = emptyPlaceholder.style.maxHeight || emptyPlaceholder.style.height || '200px';
+            emptyPlaceholder.style.textAlign = 'left';
+            emptyPlaceholder.style.verticalAlign = 'top';
+            emptyPlaceholder.style.justifyContent = 'flex-start';
+            emptyPlaceholder.style.alignItems = 'flex-start';
+            contentRef.current = editorRef.current.innerHTML;
+            saveDraftToStorage();
+          }
+        }, actualDelay);
+      }
+    }
+    if (settings.autoInsertFrames && editorRef.current) {
+      contentRef.current = editorRef.current.innerHTML;
+    }
+    if (wasPlaying) video.play();
+    saveDraftToStorage();
+  };
+
+  const formatTime = (seconds: number) => {
+    const mins = Math.floor(seconds / 60);
+    const secs = Math.floor(seconds % 60);
+    return `${mins.toString().padStart(2, '0')}:${secs.toString().padStart(2, '0')}`;
+  };
+
+  const checkAiRegions = () => {
+    if (!editorRef.current) return [];
+    return Array.from(editorRef.current.querySelectorAll('.ai-region')).map((el) => {
+      const id = (el as HTMLElement).getAttribute('data-ai-id') || '';
+      const title = (el as HTMLElement).getAttribute('data-ai-title') || id;
+      return { id, title };
+    }).filter(r => r.id);
+  };
+
+  const stripHtml = (html: string): string => {
+    const tmp = document.createElement('div');
+    tmp.innerHTML = html
+      .replace(/<br\s*\/?>/gi, '\n')
+      .replace(/<\/p>\s*<p/gi, '</p>\n\n<p');
+    return (tmp.innerText || tmp.textContent || '').trim();
+  };
+
+  const computeDiffHtml = (oldText: string, newText: string, side: 'left' | 'right'): string => {
+    const diffs = diffChars(oldText, newText);
+    let html = '';
+    for (const part of diffs) {
+      let value = part.value.replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/\n/g, '<br>');
+      if (side === 'left' && part.removed) {
+        html += `<span class="diff-removed" style="background-color:#fee2e2;color:#dc2626;text-decoration:line-through;">${value}</span>`;
+      } else if (side === 'right' && part.added) {
+        html += `<span class="diff-added" style="background-color:#dcfce7;color:#16a34a;font-weight:500;">${value}</span>`;
+      } else if (!part.added && !part.removed) {
+        html += value;
+      }
+    }
+    return html;
+  };
+
+  function floatTo16BitPCM(input: Float32Array): ArrayBuffer {
+    const output = new DataView(new ArrayBuffer(input.length * 2));
+    for (let i = 0; i < input.length; i++) {
+      const s = Math.max(-1, Math.min(1, input[i]));
+      output.setInt16(i * 2, s < 0 ? s * 0x8000 : s * 0x7FFF, true);
+    }
+    return output.buffer;
+  }
+
+  function arrayBufferToBase64(buffer: ArrayBuffer): string {
+    const bytes = new Uint8Array(buffer);
+    let binary = '';
+    for (let i = 0; i < bytes.byteLength; i++) {
+      binary += String.fromCharCode(bytes[i]);
+    }
+    return btoa(binary);
+  }
+
+  const toggleListening = async () => {
+    // 专门提取一个彻底关闭物理麦克风的函数
+    const stopMicrophone = () => {
+      if (xfAudioContextRef.current) {
+        try { xfAudioContextRef.current.close(); } catch {}
+        xfAudioContextRef.current = null;
+      }
+      if (xfMediaStreamRef.current) {
+        xfMediaStreamRef.current.getTracks().forEach(t => t.stop());
+        xfMediaStreamRef.current = null;
+      }
+    };
+
+    if (isListening) {
+      setIsListening(false);
+      stopMicrophone();
+
+      if (xfWsRef.current && xfWsRef.current.readyState === WebSocket.OPEN) {
+        try {
+          const endFrame = { data: { status: 2, format: 'audio/L16;rate=16000', encoding: 'raw', audio: '' } };
+          xfWsRef.current.send(JSON.stringify(endFrame));
+        } catch {}
+      }
+      return;
+    }
+
+    try {
+      const ws = new WebSocket(getSpeechIatWebSocketUrl());
+      xfWsRef.current = ws;
+      let frameStatus = 0;
+
+      ws.onopen = async () => {
+        try {
+          const stream = await navigator.mediaDevices.getUserMedia({ audio: true });
+          xfMediaStreamRef.current = stream;
+          const audioContext = new AudioContext({ sampleRate: 16000 });
+          xfAudioContextRef.current = audioContext;
+          const source = audioContext.createMediaStreamSource(stream);
+          const processor = audioContext.createScriptProcessor(4096, 1, 1);
+
+          processor.onaudioprocess = (e) => {
+            if (ws.readyState !== WebSocket.OPEN || !xfAudioContextRef.current) return;
+            const inputData = e.inputBuffer.getChannelData(0);
+            const pcmBuffer = floatTo16BitPCM(inputData);
+            const base64Audio = arrayBufferToBase64(pcmBuffer);
+            const frame: any = { data: { status: frameStatus, format: 'audio/L16;rate=16000', encoding: 'raw', audio: base64Audio } };
+            ws.send(JSON.stringify(frame));
+            frameStatus = 1;
+          };
+
+          source.connect(processor);
+          processor.connect(audioContext.destination);
+          setIsListening(true);
+        } catch (e: any) {
+          alert('麦克风启动失败: ' + e.message);
+          setIsListening(false);
+          ws.close();
+        }
+      };
+
+      ws.onmessage = (event) => {
+        try {
+          const jsonData = JSON.parse(event.data);
+          if (jsonData.code !== 0 && jsonData.code !== undefined) {
+            alert(`讯飞语音报错: ${jsonData.message || '未知错误'} (错误码: ${jsonData.code})`);
+            setIsListening(false);
+            stopMicrophone();
+            ws.close();
+            return;
+          }
+          if (jsonData.data?.result?.ws) {
+            let seg = '';
+            for (const w of jsonData.data.result.ws) { if (w.cw?.[0]?.w) seg += w.cw[0].w; }
+            if (seg) {
+              setChatInput(prev => prev + seg);
+            }
+          }
+          if (jsonData.data?.status === 2) {
+            ws.close();
+            xfWsRef.current = null;
+            setIsListening(false);
+            stopMicrophone();
+          }
+        } catch {}
+      };
+
+      ws.onerror = () => { alert('讯飞语音连接失败，请确认已登录且超级管理员已配置语音参数'); setIsListening(false); stopMicrophone(); };
+      ws.onclose = () => { setIsListening(false); stopMicrophone(); };
+    } catch (e: any) {
+      alert('讯飞语音初始化失败: ' + e.message);
+    }
+  };
+
+  const handleAIGenerate = async (text: string) => {
+    if (!text.trim()) return;
+    const userMsgId = Date.now().toString();
+    const selectedEditorImageUrls = editorImages.filter(img => aiSelectedEditorImages.includes(img.id)).map(img => img.src);
+    const allImages = [...selectedEditorImageUrls, ...aiUploadedImages.map(i => i.dataUrl)];
+    setChatMessages(prev => [...prev, { id: userMsgId, role: 'user', content: text, images: allImages.length > 0 ? allImages : undefined }]);
+    setChatInput('');
+    setIsGenerating(true);
+    try {
+      const settings = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+      const provider = settings.aiProviders?.[settings.activeAiProvider || 'kimi'];
+      const modelName = provider?.modelName || 'moonshot-v1-32k-vision-preview';
+      let actualTargetId = aiTargetRegion;
+      if (aiModifyEnabled && actualTargetId === 'none') {
+        const availableRegions = checkAiRegions();
+        if (availableRegions.length > 0) {
+          actualTargetId = availableRegions[0].id;
+          setAiTargetRegion(actualTargetId);
+        }
+      }
+      const targetRegionEl = editorRef.current?.querySelector(`.ai-region[data-ai-id="${actualTargetId}"] .ai-content`) as HTMLElement | null;
+      // 合并溢出的段落：浏览器 contentEditable 可能在回车时把 <p> 生成到 .ai-content 之外
+      const aiRegion = editorRef.current?.querySelector(`.ai-region[data-ai-id="${actualTargetId}"]`);
+      if (aiRegion && targetRegionEl) {
+        let nextSibling = targetRegionEl.nextElementSibling;
+        while (nextSibling) {
+          const toMove = nextSibling;
+          nextSibling = nextSibling.nextElementSibling;
+          if (toMove.tagName === 'P') {
+            targetRegionEl.appendChild(toMove);
+          }
+        }
+        // 同步更新 contentRef 和草稿
+        if (editorRef.current) {
+          contentRef.current = editorRef.current.innerHTML;
+          saveDraftToStorage();
+        }
+      }
+      const currentHtml = targetRegionEl ? targetRegionEl.innerHTML.replace(/&#8203;/g, '').replace(/>(\s+)</g, '><').trim() : '';
+      const globalContextText = editorRef.current?.innerText || '';
+      let messageContent: any;
+      const selectedEditorImageUrls = editorImages.filter(img => aiSelectedEditorImages.includes(img.id)).map(img => img.src);
+      const allImages = [...selectedEditorImageUrls, ...aiUploadedImages.map(i => i.dataUrl)];
+      let promptText = `【全局手术报告参考内容】:\n${globalContextText}\n\n`;
+      if (aiModifyEnabled && targetRegionEl) {
+        promptText += `【你需要进行修改的目标区域 HTML 源码】:\n${currentHtml || '（当前区域为空）'}\n\n`;
+      }
+      promptText += `【医生指令】: ${text}\n\n【格式要求】:\n1. 仅针对【目标区域】的主题生成对应的多段落 HTML 内容\n2. ⚠️ 绝对禁止将【全局参考内容】中的其他模块（如：基本信息、术后情况、标本描述、病理结果、医生签名、日期等）生成并混入你的输出中！你只能输出该区域应有的内容\n3. 段落使用 <p> 标签，段落之间不要使用 <br> 标签或换行符\n4. 输出紧凑 HTML，标签间不要有空格或换行`;
+      if (allImages.length > 0) {
+        messageContent = [];
+        allImages.forEach(url => {
+          messageContent.push({ type: 'image_url', image_url: { url } });
+        });
+        messageContent.push({ type: 'text', text: promptText });
+      } else {
+        messageContent = promptText;
+      }
+      const systemPrompt = aiModifyEnabled
+        ? '你是一名专业的外科医生助理。当前处于【修改模式】。\n我为你提供了当前手术报告的【全局参考内容】作为背景知识，以及你需要修改的【目标区域 HTML 源码】。\n请根据用户的【医生指令】，直接重写并输出目标区域的 HTML。\n\n重要指令：\n1. 必须返回合法的 JSON 对象\n2. 必须包含 "reply"（简短回复）和 "updatedHtml"（修改后的完整 HTML 代码）两个字段\n3. 【内容边界】：全局参考内容仅供你理解上下文。你的 updatedHtml 只能包含目标区域本身的内容（例如：如果目标区域是"手术步骤"，你就只写步骤）。严禁输出签名、落款、术后总结等属于报告其他部分的结构！\n4. 段落必须使用 <p> 标签包裹，段落间绝对不要使用 <br> 标签，也不要使用换行符 (\\n)\n5. 输出的 HTML 必须紧凑，标签之间不要有空格或换行\n6. 绝对不要包含任何 Markdown 标记（如 ```json）'
+        : '你是一名专业的外科医生助理。当前处于【对话模式】。\n请仔细阅读我提供的【全局手术报告参考内容】，并根据【医生指令】进行专业解答。\n重要指令：\n1. 必须返回合法的 JSON 对象\n2. 仅包含 "reply"（你的专业回答）一个字段\n3. 不要返回任何 HTML 代码\n4. 绝对不要包含任何 Markdown 标记\n5. 无论图片内容是什么，请严格以纯 JSON 格式输出，禁止任何多余的开头解释';
+      const payload: any = {
+        model: modelName,
+        messages: [
+          { role: 'system', content: systemPrompt },
+          { role: 'user', content: messageContent }
+        ],
+        temperature: 0.3
+      };
+      const isKimiK25 = settings.activeAiProvider === 'kimi' && /k2\.5/i.test(modelName);
+      if (isKimiK25) {
+        delete payload.temperature;
+        delete payload.top_p;
+        delete payload.presence_penalty;
+        delete payload.frequency_penalty;
+      }
+      const logEntry = {
+        startTime: new Date().toISOString(),
+        modelConfig: { provider: settings.activeAiProvider || 'kimi', endpoint: '/api/ai/chat', modelName },
+        requestPayload: JSON.parse(JSON.stringify(payload)),
+        responsePayload: null as any | null,
+        errorDetail: null as { status: number; statusText: string; responseText: string; message: string } | null
+      };
+      const data = await createAiChatCompletion(payload);
+      logEntry.responsePayload = data;
+      setLastExchangeLog(logEntry);
+      const responseText = data.choices[0].message.content.trim();
+      const cleanedText = responseText.replace(/```json\n?|```/g, '');
+      let responseJson: any = {};
+      try {
+        responseJson = JSON.parse(cleanedText);
+      } catch {
+        const jsonMatch = cleanedText.match(/\{[\s\S]*\}/);
+        if (jsonMatch) {
+          try {
+            responseJson = JSON.parse(jsonMatch[0]);
+          } catch {
+            if (!aiModifyEnabled) responseJson = { reply: cleanedText };
+            else throw new Error('AI 返回格式异常，无法解析 JSON');
+          }
+        } else {
+          if (!aiModifyEnabled) responseJson = { reply: cleanedText };
+          else throw new Error('AI 返回格式异常，无法解析 JSON');
+        }
+      }
+      if (responseJson.reply) {
+        setChatMessages(prev => [...prev, { id: Date.now().toString(), role: 'model', content: responseJson.reply }]);
+      }
+      if (aiModifyEnabled && !responseJson.updatedHtml) {
+        setChatMessages(prev => [...prev, { id: Date.now().toString(), role: 'model', content: '【系统提示】AI 未能生成修改内容，请尝试重新描述您的需求。' }]);
+      }
+      if (responseJson.updatedHtml && aiModifyEnabled) {
+        let cleanHtml = responseJson.updatedHtml;
+        cleanHtml = cleanHtml.replace(/<br\s*\/?>/gi, '');
+        cleanHtml = cleanHtml.replace(/<\/p>\s*<p>/gi, '</p><p>');
+        cleanHtml = cleanHtml.trim();
+        cleanHtml = cleanHtml.replace(/>(\s+)</g, '><');
+        cleanHtml = cleanHtml.replace(/<p>/gi, '<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">');
+        if (targetRegionEl) {
+          setDiffModal({
+            isOpen: true,
+            originalHtml: currentHtml,
+            newHtml: cleanHtml,
+            targetId: actualTargetId
+          });
+        } else {
+          execCmd('insertHTML', cleanHtml);
+        }
+      }
+      setAiUploadedImages([]);
+      setAiSelectedEditorImages([]);
+    } catch (error: any) {
+      console.error(error);
+      setChatMessages(prev => [...prev, { id: Date.now().toString(), role: 'model', content: `【系统错误】: ${error.message}` }]);
+    } finally {
+      setIsGenerating(false);
+    }
+  };
+
+  const confirmAiInjection = (newHtml: string, regionId: string) => {
+    if (!editorRef.current) return;
+    const cleanHtml = newHtml.replace(/<span class="diff-(added|removed)"[^>]*>(.*?)<\/span>/gi, '$2');
+    const targetContent = editorRef.current.querySelector(`.ai-region[data-ai-id="${regionId}"] .ai-content`) as HTMLElement;
+    if (targetContent) {
+      targetContent.focus();
+      const sel = window.getSelection();
+      const range = document.createRange();
+      range.selectNodeContents(targetContent);
+      sel?.removeAllRanges();
+      sel?.addRange(range);
+      document.execCommand('insertHTML', false, cleanHtml);
+      targetContent.style.transition = 'background-color 0.3s ease';
+      targetContent.style.backgroundColor = '#bfdbfe';
+      setTimeout(() => {
+        targetContent.style.backgroundColor = '#eff6ff';
+        setTimeout(() => {
+          targetContent.style.backgroundColor = 'transparent';
+        }, 800);
+      }, 400);
+      contentRef.current = editorRef.current.innerHTML;
+      saveDraftToStorage();
+    }
+    setDiffModal(null);
+  };
+
+  const handleDragStart = (e: React.DragEvent, frame: CapturedFrame) => {
+    e.dataTransfer.setData('frameId', frame.id.toString());
+  };
+
+  const fillPlaceholder = (placeholder: HTMLElement, frame: CapturedFrame) => {
+    const mw = placeholder.style.maxWidth || placeholder.style.width || '200px';
+    const mh = placeholder.style.maxHeight || placeholder.style.height || '200px';
+    placeholder.innerHTML = `
+      <span class="delete-btn" contenteditable="false">×</span>
+      <img src="${frame.dataUrl}" style="max-width:${mw};max-height:${mh};display:block;object-fit:contain;object-position:left top;" draggable="false">
+    `;
+    placeholder.classList.add('has-image');
+    placeholder.style.border = 'none';
+    placeholder.style.background = 'transparent';
+    placeholder.style.width = 'auto';
+    placeholder.style.height = 'auto';
+    placeholder.style.lineHeight = 'normal';
+    placeholder.style.maxWidth = mw;
+    placeholder.style.maxHeight = mh;
+    placeholder.style.textAlign = 'left';
+    placeholder.style.verticalAlign = 'top';
+    placeholder.style.justifyContent = 'flex-start';
+    placeholder.style.alignItems = 'flex-start';
+    if (editorRef.current) contentRef.current = editorRef.current.innerHTML;
+    saveDraftToStorage();
+  };
+
+  const handleDrop = (e: React.DragEvent, placeholder: HTMLElement) => {
+    e.preventDefault();
+    if (placeholder.getAttribute('data-mode') === 'manual') {
+      alert('此处为静态图片占位符，仅支持点击插入（如Logo/签名），不支持拖入关键帧');
+      return;
+    }
+    const frameId = e.dataTransfer.getData('frameId');
+    const frame = capturedFrames.find(f => f.id.toString() === frameId);
+    if (frame) {
+      fillPlaceholder(placeholder, frame);
+    }
+  };
+
+  const insertFrameToPlaceholder = (frame: CapturedFrame) => {
+    if (!editorRef.current) {
+      alert('编辑器未准备好');
+      return;
+    }
+    const emptyPlaceholder = editorRef.current.querySelector('.image-placeholder:not(.has-image):not([data-mode="manual"])') as HTMLElement | null;
+    if (!emptyPlaceholder) {
+      alert('没有可插入图片的空位');
+      return;
+    }
+    fillPlaceholder(emptyPlaceholder, frame);
+  };
+
+  const seekToFrame = (frame: CapturedFrame) => {
+    if (!videoRef.current) return;
+    if (frame.videoIndex !== currentVideoIndex) {
+      setCurrentVideoIndex(frame.videoIndex);
+    }
+    setTimeout(() => {
+      if (videoRef.current) {
+        videoRef.current.currentTime = frame.time;
+      }
+    }, 50);
+  };
+
+  const handleFrameKeyNav = (direction: 'left' | 'right') => {
+    if (!videoRef.current) return;
+    const delta = direction === 'left' ? -5 : 5;
+    videoRef.current.currentTime = Math.max(0, Math.min(duration, videoRef.current.currentTime + delta));
+  };
+
+  useEffect(() => {
+    const handleKeyDown = (e: KeyboardEvent) => {
+      if (e.key === 'ArrowLeft' || e.key === 'ArrowRight') {
+        // Only if video tab is active or video element is focused
+        if (activeTab === 'video' || document.activeElement === videoRef.current) {
+          handleFrameKeyNav(e.key === 'ArrowLeft' ? 'left' : 'right');
+        }
+      }
+    };
+    window.addEventListener('keydown', handleKeyDown);
+    return () => window.removeEventListener('keydown', handleKeyDown);
+  }, [activeTab, duration]);
+
+  // Auto-capture frames when new videos are uploaded
+  useEffect(() => {
+    if (videos.length > prevVideoCountRef.current && currentVideoIndex !== -1) {
+      const timer = setTimeout(() => {
+        if (videoRef.current && videoRef.current.duration) {
+          autoCaptureFrames();
+        } else if (videoRef.current) {
+          const onMeta = () => {
+            autoCaptureFrames();
+            videoRef.current?.removeEventListener('loadedmetadata', onMeta);
+          };
+          videoRef.current.addEventListener('loadedmetadata', onMeta);
+        }
+      }, 300);
+      return () => clearTimeout(timer);
+    }
+    prevVideoCountRef.current = videos.length;
+  }, [videos.length, currentVideoIndex]);
+
+  // Apply selected template content
+  useEffect(() => {
+    if (pendingTemplateId && editorRef.current) {
+      const tpl = templates.find(t => t.id === pendingTemplateId);
+      if (tpl) {
+        editorRef.current.innerHTML = tpl.content;
+        contentRef.current = tpl.content;
+        const nextReportData: any = {
+          title: tpl.name || '腹腔镜胆囊切除术报告',
+          patientName: '',
+          hospitalId: '',
+          patientGender: '',
+          patientAge: '',
+          department: '',
+          bedNumber: '',
+          surgeryDate: '',
+          startHour: '',
+          startMinute: '',
+          endHour: '',
+          endMinute: '',
+          surgeon: [],
+          assistant: [],
+          anesthesiologist: [],
+          anesthesiaType: '',
+          status: 'draft'
+        };
+        formFields.forEach(field => {
+          if (field.category === '时间') {
+            if (field.timeDefault === 'specific' && field.fixedTimeValue) {
+              if (field.type === 'date') {
+                nextReportData[field.key] = field.fixedTimeValue;
+              } else if (field.type === 'time') {
+                const [hh, mm] = field.fixedTimeValue.split(':');
+                if (field.key === 'startTime') {
+                  nextReportData.startHour = hh || '';
+                  nextReportData.startMinute = mm || '';
+                } else if (field.key === 'endTime') {
+                  nextReportData.endHour = hh || '';
+                  nextReportData.endMinute = mm || '';
+                } else {
+                  nextReportData[field.key] = field.fixedTimeValue;
+                }
+              }
+            } else if (field.timeDefault === 'current') {
+              if (field.type === 'date') {
+                nextReportData[field.key] = new Date().toISOString().split('T')[0];
+              } else if (field.type === 'time') {
+                const now = new Date();
+                const hh = String(now.getHours()).padStart(2, '0');
+                const mm = String(now.getMinutes()).padStart(2, '0');
+                if (field.key === 'startTime') {
+                  nextReportData.startHour = hh;
+                  nextReportData.startMinute = mm;
+                } else if (field.key === 'endTime') {
+                  nextReportData.endHour = hh;
+                  nextReportData.endMinute = mm;
+                } else {
+                  nextReportData[field.key] = `${hh}:${mm}`;
+                }
+              }
+            }
+          }
+        });
+        if (!nextReportData.surgeryDate) {
+          nextReportData.surgeryDate = new Date().toISOString().split('T')[0];
+        }
+        setLoadedTemplateId(tpl.id);
+        setReportData(nextReportData);
+        setVideos([]);
+        setCapturedFrames([]);
+        setCurrentVideoIndex(-1);
+        setChatMessages([]);
+        setChatInput('');
+        setAiUploadedImages([]);
+        setAiSelectedEditorImages([]);
+        prevVideoCountRef.current = 0;
+        stateRef.current = {
+          ...stateRef.current,
+          loadedTemplateId: tpl.id,
+          reportData: nextReportData,
+          videos: [],
+          capturedFrames: [],
+          chatMessages: [],
+          chatInput: '',
+          activeTab: stateRef.current.activeTab
+        };
+        updatePageHeight();
+        saveDraftToStorage();
+      }
+      setPendingTemplateId(null);
+    }
+  }, [pendingTemplateId, templates]);
+
+  // Safety net: ensure editor gets initialized if ref was not ready during init effect
+  React.useLayoutEffect(() => {
+    if (contentLoadedRef.current || !editorRef.current) return;
+
+    const user = storage.get<User | null>('currentUser', null);
+    const key = user ? `reportEditorDraft_${user.username}` : '';
+    const draft = key ? storage.get<Record<string, any> | null>(key, null) : null;
+
+    if (reportId) {
+      if (draft && draft.draftReportId === reportId && typeof draft.content === 'string' && draft.content.trim().length > 0) {
+        editorRef.current.innerHTML = draft.content;
+        contentRef.current = draft.content;
+        contentLoadedRef.current = true;
+        setLoadedTemplateId(draft.loadedTemplateId || '');
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: draft.reportData,
+          videos: draft.videos,
+          capturedFrames: draft.capturedFrames,
+          loadedTemplateId: draft.loadedTemplateId || '',
+          chatMessages: draft.chatMessages || [],
+          chatInput: draft.chatInput || ''
+        };
+        setTimeout(() => updatePageHeight(), 0);
+        return;
+      }
+      const reports = storage.get<Report[]>('reports', []);
+      const found = reports.find(r => r.id === reportId);
+      if (found) {
+        const users = storage.get<User[]>('users', []);
+        if (!user || !canEditReport(user, found, users)) {
+          alert('您没有权限编辑此报告');
+          navigate('/report-manage');
+          return;
+        }
+        const restoreContent = storage.getSession<string | null>(`restore_${reportId}`, null);
+        if (restoreFlag && restoreContent) {
+          editorRef.current.innerHTML = restoreContent;
+          storage.removeSession(`restore_${reportId}`);
+        } else {
+          editorRef.current.innerHTML = found.content;
+        }
+        contentLoadedRef.current = true;
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: found,
+          videos: found.videos || [],
+          capturedFrames: found.capturedFrames || []
+        };
+        setTimeout(() => updatePageHeight(), 0);
+        return;
+      }
+    } else {
+      if (draft && !draft.draftReportId && typeof draft.content === 'string' && draft.content.trim().length > 0) {
+        editorRef.current.innerHTML = draft.content;
+        contentRef.current = draft.content;
+        contentLoadedRef.current = true;
+        setLoadedTemplateId(draft.loadedTemplateId || '');
+        stateRef.current = {
+          ...stateRef.current,
+          reportData: draft.reportData,
+          videos: draft.videos,
+          capturedFrames: draft.capturedFrames,
+          loadedTemplateId: draft.loadedTemplateId || ''
+        };
+        setTimeout(() => updatePageHeight(), 0);
+        return;
+      }
+    }
+
+    const settings = storage.get<SystemSettings>('systemSettings', {} as SystemSettings);
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const userData = storage.get<User | null>('currentUser', null);
+    const filteredTemplates = userData ? getUsableTemplates(userData, allTemplates) : [];
+    if (settings.defaultTemplate && filteredTemplates.length > 0) {
+      const tpl = filteredTemplates.find(t => t.id === settings.defaultTemplate);
+      if (tpl) {
+        setLoadedTemplateId(tpl.id);
+        stateRef.current = { ...stateRef.current, loadedTemplateId: tpl.id };
+        editorRef.current.innerHTML = tpl.content;
+      } else {
+        editorRef.current.innerHTML = defaultReportContent;
+      }
+    } else {
+      editorRef.current.innerHTML = defaultReportContent;
+    }
+    contentLoadedRef.current = true;
+    setTimeout(() => updatePageHeight(), 0);
+  }, []);
+
+  const hourOptions = Array.from({ length: 24 }, (_, i) => i.toString().padStart(2, '0'));
+  const hour12Options = Array.from({ length: 12 }, (_, i) => ((i + 1).toString().padStart(2, '0')));
+  const minuteOptions = Array.from({ length: 60 }, (_, i) => i.toString().padStart(2, '0'));
+
+  const formatDateDisplay = (isoDate: string, fmt?: string): string => {
+    if (!isoDate || !fmt) return isoDate || '';
+    const [y, m, d] = isoDate.split('-');
+    return fmt
+      .replace(/YYYY/g, y || '')
+      .replace(/MM/g, m || '')
+      .replace(/DD/g, d || '');
+  };
+
+  const formatTimeDisplay = (timeStr: string, fmt?: string): string => {
+    if (!timeStr || !fmt) return timeStr || '';
+    if (fmt === '24h') fmt = 'HH:mm';
+    const [h24str, mstr] = timeStr.split(':');
+    const h24 = parseInt(h24str) || 0;
+    const isPM = h24 >= 12;
+    let h12 = h24 % 12;
+    if (h12 === 0) h12 = 12;
+    return fmt
+      .replace(/HH/g, String(h24).padStart(2, '0'))
+      .replace(/mm/g, mstr || '00')
+      .replace(/hh/g, String(h12).padStart(2, '0'))
+      .replace(/A/g, isPM ? '下午' : '上午');
+  };
+
+  const parseDateFromFormat = (text: string, fmt?: string): string => {
+    if (!text || !fmt) return text;
+    const nums = text.match(/\d+/g);
+    if (!nums) return text;
+    let y = '', m = '', d = '';
+    if (nums.length >= 3) { y = nums[0].padStart(4, '0'); m = nums[1].padStart(2, '0'); d = nums[2].padStart(2, '0'); }
+    else if (nums.length === 2) { m = nums[0].padStart(2, '0'); d = nums[1].padStart(2, '0'); y = new Date().getFullYear().toString(); }
+    return `${y}-${m}-${d}`;
+  };
+
+  const parseTimeFromFormat = (text: string, fmt?: string): string => {
+    if (!text || !fmt) return text;
+    const nums = text.match(/\d+/g);
+    const ampm = text.match(/上午|下午/);
+    if (!nums || nums.length < 2) return text;
+    let h = parseInt(nums[0]);
+    if (ampm) {
+      const isPM = ampm[0] === '下午';
+      if (isPM && h !== 12) h += 12;
+      if (!isPM && h === 12) h = 0;
+    }
+    return `${String(h).padStart(2, '0')}:${nums[1].padStart(2, '0')}`;
+  };
+
+  const to24h = (h12: number, isPM: boolean): number => {
+    if (isPM && h12 !== 12) return h12 + 12;
+    if (!isPM && h12 === 12) return 0;
+    return h12;
+  };
+
+  const from24h = (h24: number): { h: number; isPM: boolean } => {
+    const isPM = h24 >= 12;
+    let h = h24 % 12;
+    if (h === 0) h = 12;
+    return { h, isPM };
+  };
+
+  const addTag = (field: string, value: string) => {
+    const current = (reportData as any)[field] || [];
+    if (!current.includes(value)) {
+      const next = { ...reportData, [field]: [...current, value] };
+      setReportData(next);
+      stateRef.current = { ...stateRef.current, reportData: next };
+      saveDraftToStorage();
+    }
+    // Persist custom value to global options for future reuse
+    const opts = multiSelectOptions[field] || [];
+    if (!opts.includes(value)) {
+      const next = { ...multiSelectOptions, [field]: [...opts, value] };
+      setMultiSelectOptions(next);
+      storage.set('multiSelectOptions', next);
+      persistEditorFieldLibrary({ multiSelectOptions: next });
+    }
+    // Sync to formFieldsConfig
+    const fieldDef = formFields.find(f => f.key === field);
+    if (fieldDef && fieldDef.options && !fieldDef.options.includes(value)) {
+      const updatedFields = formFields.map(f => f.key === field ? { ...f, options: [...(f.options || []), value] } : f);
+      setFormFields(updatedFields);
+      storage.set('formFieldsConfig', updatedFields);
+      persistEditorFieldLibrary({ formFields: updatedFields });
+    }
+  };
+
+  const removeTag = (field: string, value: string) => {
+    const current = (reportData as any)[field] || [];
+    const next = { ...reportData, [field]: current.filter((v: string) => v !== value) };
+    setReportData(next);
+    stateRef.current = { ...stateRef.current, reportData: next };
+    saveDraftToStorage();
+  };
+
+  const removeMultiOption = (field: string, value: string) => {
+    const current = multiSelectOptions[field] || [];
+    const next = { ...multiSelectOptions, [field]: current.filter(v => v !== value) };
+    setMultiSelectOptions(next);
+    storage.set('multiSelectOptions', next);
+    persistEditorFieldLibrary({ multiSelectOptions: next });
+    // Sync to formFieldsConfig
+    const fieldDef = formFields.find(f => f.key === field);
+    if (fieldDef && fieldDef.options) {
+      const updatedFields = formFields.map(f => f.key === field ? { ...f, options: (f.options || []).filter(v => v !== value) } : f);
+      setFormFields(updatedFields);
+      storage.set('formFieldsConfig', updatedFields);
+      persistEditorFieldLibrary({ formFields: updatedFields });
+    }
+  };
+
+  const removeAnesthesiaOption = (value: string) => {
+    const next = anesthesiaOptions.filter(v => v !== value);
+    setAnesthesiaOptions(next);
+    storage.set('anesthesiaOptions', next);
+    persistEditorFieldLibrary({ anesthesiaOptions: next });
+  };
+
+  // Close dropdowns on outside click
+  useEffect(() => {
+    const handleDocClick = (e: MouseEvent) => {
+      const target = e.target as HTMLElement;
+      if (!target.closest('.select-dropdown-root')) {
+        setOpenDropdown(null);
+      }
+    };
+    document.addEventListener('click', handleDocClick);
+    return () => document.removeEventListener('click', handleDocClick);
+  }, []);
+
+  const saveReport = async (status: 'draft' | 'completed') => {
+    if (status === 'completed' && (!reportData.patientName || !reportData.hospitalId)) {
+      alert('请填写患者姓名和住院号');
+      return;
+    }
+
+    if (status === 'completed') {
+      const hasSignatureField = editorRef.current?.querySelector('[data-bind="surgeonSignature"]');
+      if (hasSignatureField) {
+        const hasSignatureImage = !!currentUser?.signature;
+        if (!hasSignatureImage) {
+          const proceed = window.confirm('提示：模板中包含【手术者签名】字段，但您的账号尚未上传电子签名图片。报告中将不显示签名图片，是否继续完成？');
+          if (!proceed) return;
+        }
+      }
+    }
+
+    await waitForMediaUploads();
+    const content = editorRef.current?.innerHTML || '';
+    const now = new Date().toISOString();
+    const reports = storage.get<Report[]>('reports', []);
+    const old = reportId ? reports.find(r => r.id === reportId) : undefined;
+    const nextRevision = old && old.status === 'completed' ? (old.revision || 1) + 1 : (old?.revision || 1);
+    const finalReport: Report = {
+      ...(reportData as Report),
+      id: reportId || 'RPT_' + Date.now(),
+      content,
+      author: currentUser?.username || '',
+      authorName: currentUser?.name || '',
+      createdAt: reportData.createdAt || now.split('T')[0],
+      department: reportData.department || currentUser?.department || '',
+      status,
+      revision: nextRevision,
+      capturedFrames: stateRef.current.capturedFrames,
+      videos: stateRef.current.videos,
+      updatedAt: now
+    };
+
+    let savedReport = finalReport;
+    let apiSaved = false;
+    try {
+      savedReport = await saveReportToApi(finalReport, reportId || undefined);
+      apiSaved = true;
+    } catch {
+      if (!isLocalFallbackEnabled()) {
+        alert('保存失败：后端服务不可用');
+        return;
+      }
+    }
+
+    let updatedReports: Report[];
+    if (reportId) {
+      const history = old?.history ? [...old.history] : [];
+      if (old) {
+        history.push({ 
+          content: old.content, 
+          updatedAt: old.updatedAt || old.createdAt, 
+          updatedBy: currentUser?.name || currentUser?.username || '',
+          action: status === 'completed' ? 'complete_report' : 'save_draft',
+          revision: old.revision || 1
+        });
+      }
+      const nextHistory = savedReport.history && savedReport.history.length > 0 ? savedReport.history : history;
+      updatedReports = reports.map(r => r.id === reportId ? { ...savedReport, history: nextHistory } : r);
+    } else {
+      updatedReports = [...reports, savedReport];
+      if (draftKey) storage.remove(draftKey);
+    }
+
+    if (apiSaved || isLocalFallbackEnabled()) {
+      storage.set('reports', updatedReports);
+    }
+    if (draftKey) storage.remove(draftKey);
+    setIsSaved(true);
+    setTimeout(() => setIsSaved(false), 3000);
+    if (status === 'completed') navigate('/report-manage');
+  };
+
+  const saveAsPersonalTemplate = async () => {
+    if (!currentUser || !editorRef.current) return;
+    const name = window.prompt('请输入个人模板名称：', `${reportData.title || '手术报告'}-我的模板`);
+    if (!name || !name.trim()) return;
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const newTemplate: Template = {
+      id: `personal_${currentUser.username}_${Date.now()}`,
+      name: name.trim(),
+      desc: '我的个人模板',
+      content: editorRef.current.innerHTML,
+      createdAt: new Date().toISOString(),
+      author: currentUser.username,
+      fields: formFields,
+      scope: 'personal',
+      ownerUser: currentUser.username,
+      department: currentUser.department || ''
+    };
+    let savedTemplate = newTemplate;
+    let apiSaved = false;
+    try {
+      savedTemplate = await createTemplate(newTemplate);
+      apiSaved = true;
+    } catch {
+      if (!isLocalFallbackEnabled()) {
+        alert('保存个人模板失败：后端服务不可用');
+        return;
+      }
+    }
+    const updated = [...allTemplates.filter(t => t.id !== savedTemplate.id), savedTemplate];
+    if (apiSaved || isLocalFallbackEnabled()) {
+      storage.set('templates', updated);
+    }
+    const usable = getUsableTemplates(currentUser, updated);
+    setTemplates(usable);
+    setLoadedTemplateId(savedTemplate.id);
+    stateRef.current = { ...stateRef.current, loadedTemplateId: savedTemplate.id };
+    alert('个人模板已保存');
+  };
+
+  const handleEditorInput = (e: React.FormEvent<HTMLDivElement>) => {
+    if (editorRef.current) {
+      contentRef.current = editorRef.current.innerHTML;
+    }
+    updatePageHeight();
+    saveDraftToStorage();
+
+    const target = e.target as HTMLElement;
+    if (target && target.hasAttribute('data-bind')) {
+      const fieldKey = target.getAttribute('data-bind')!;
+      const newValue = target.innerText;
+
+      const fieldDef = formFields.find(f => f.key === fieldKey);
+      if (fieldKey === 'startTime') {
+        let raw = newValue;
+        if (fieldDef?.timeFormat && (fieldDef.timeFormat.includes('hh') || fieldDef.timeFormat.includes('A'))) {
+          raw = parseTimeFromFormat(newValue, fieldDef.timeFormat);
+        }
+        const parts = raw.split(':');
+        setReportData((prev) => {
+          const next = { ...prev, startHour: parts[0] || '', startMinute: parts[1] || '' };
+          stateRef.current = { ...stateRef.current, reportData: next };
+          return next;
+        });
+      } else if (fieldKey === 'endTime') {
+        let raw = newValue;
+        if (fieldDef?.timeFormat && (fieldDef.timeFormat.includes('hh') || fieldDef.timeFormat.includes('A'))) {
+          raw = parseTimeFromFormat(newValue, fieldDef.timeFormat);
+        }
+        const parts = raw.split(':');
+        setReportData((prev) => {
+          const next = { ...prev, endHour: parts[0] || '', endMinute: parts[1] || '' };
+          stateRef.current = { ...stateRef.current, reportData: next };
+          return next;
+        });
+      } else {
+        let raw = newValue;
+        if (fieldDef?.type === 'date') {
+          raw = parseDateFromFormat(newValue, fieldDef.timeFormat);
+        } else if (fieldDef?.type === 'time') {
+          raw = parseTimeFromFormat(newValue, fieldDef.timeFormat);
+        }
+        setReportData((prev) => {
+          const next = { ...prev, [fieldKey]: raw };
+          stateRef.current = { ...stateRef.current, reportData: next };
+          return next;
+        });
+      }
+    }
+  };
+
+  // Sync form state -> rich text field values
+  useEffect(() => {
+    if (!editorRef.current) return;
+    const bindNodes = editorRef.current.querySelectorAll('[data-bind]');
+    bindNodes.forEach((node) => {
+      const el = node as HTMLElement;
+      const fieldKey = el.getAttribute('data-bind')!;
+
+      if (fieldKey === 'surgeonSignature') {
+        const signatureData = currentUser?.signature;
+        if (signatureData) {
+          const imgHtml = `<img src="${signatureData}" class="report-signature-img" alt="签名" draggable="false" />`;
+          if (el.innerHTML !== imgHtml) {
+            el.innerHTML = imgHtml;
+            el.style.border = 'none';
+            el.style.backgroundColor = 'transparent';
+          }
+        } else {
+          const placeholder = '【请上传电子签】';
+          if (el.innerText !== placeholder) {
+            el.innerText = placeholder;
+            el.style.border = '';
+            el.style.backgroundColor = '';
+          }
+        }
+        return;
+      }
+
+      let newValue = '';
+      const fieldDef = formFields.find(f => f.key === fieldKey);
+      if (fieldKey === 'startTime') {
+        newValue = `${reportData.startHour || ''}:${reportData.startMinute || ''}`;
+        if (newValue === ':') newValue = '';
+        newValue = formatTimeDisplay(newValue, fieldDef?.timeFormat);
+      } else if (fieldKey === 'endTime') {
+        newValue = `${reportData.endHour || ''}:${reportData.endMinute || ''}`;
+        if (newValue === ':') newValue = '';
+        newValue = formatTimeDisplay(newValue, fieldDef?.timeFormat);
+      } else {
+        const rawValue = (reportData as any)[fieldKey];
+        if (Array.isArray(rawValue)) {
+          newValue = rawValue.join(', ');
+        } else if (rawValue !== undefined && rawValue !== null) {
+          newValue = String(rawValue);
+        }
+        if (fieldDef?.type === 'date') {
+          newValue = formatDateDisplay(newValue, fieldDef.timeFormat);
+        } else if (fieldDef?.type === 'time') {
+          newValue = formatTimeDisplay(newValue, fieldDef.timeFormat);
+        }
+      }
+
+      if (el.innerText !== newValue) {
+        el.innerText = newValue;
+      }
+    });
+  }, [reportData]);
+
+  if (!currentUser) return null;
+
+  const hasVisibleTemplates = templates.length > 0;
+
+  return (
+    <div className="flex h-screen bg-bg overflow-hidden">
+      <Sidebar />
+      
+      <div className="flex-1 flex flex-col overflow-hidden">
+        {/* Header */}
+        <header className="h-20 bg-white border-b border-border flex items-center justify-between px-8 shrink-0">
+          <div className="flex items-center gap-4">
+            <button 
+              onClick={() => navigate('/report-manage')}
+              className="p-2 rounded-lg hover:bg-slate-100 text-text-muted transition-colors"
+            >
+              <ChevronLeft size={24} />
+            </button>
+            <div>
+              <h1 className="text-lg font-bold text-text-main">图文报告生成</h1>
+              <p className="text-[10px] text-text-muted mt-0.5 uppercase tracking-wider font-bold">
+                {reportId ? `编辑报告: ${reportId}` : '新建手术报告'}
+              </p>
+            </div>
+          </div>
+          <div className="flex items-center gap-4">
+            <div className="flex items-center gap-1">
+              <span className="text-xs text-text-muted whitespace-nowrap">当前模板（及重置模板）：</span>
+              <select 
+                value=""
+                onChange={(e) => {
+                  const tplId = e.target.value;
+                  const tpl = templates.find(t => t.id === tplId);
+                  if (tpl && window.confirm(`确定要应用模板 "${tpl.name}" 吗？当前内容、基本信息、视频分析将被重置。`)) {
+                    setPendingTemplateId(tplId);
+                  }
+                }}
+                className="h-8 px-2 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+              >
+                <option value="" disabled>
+                  {templates.find(t => t.id === loadedTemplateId)?.name || '无'}
+                </option>
+                {templates.map(tpl => (
+                  <option key={tpl.id} value={tpl.id}>{tpl.name}</option>
+                ))}
+              </select>
+            </div>
+            {isSaved && (
+              <span className="text-xs text-green-600 font-bold flex items-center gap-1">
+                <Check size={14} />
+                已保存
+              </span>
+            )}
+            <button 
+              onClick={() => saveReport('draft')}
+              className="px-6 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors"
+            >
+              保存草稿
+            </button>
+            {currentUser.role === 'user' && (
+              <button
+                onClick={saveAsPersonalTemplate}
+                className="px-4 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors"
+              >
+                保存为我的模板
+              </button>
+            )}
+            <button 
+              onClick={() => saveReport('completed')}
+              className="btn-accent inline-flex items-center gap-2"
+            >
+              <Check size={16} />
+              完成报告
+            </button>
+            <button 
+              onClick={() => setExportModalOpen(true)}
+              className="p-2.5 rounded-lg bg-slate-100 text-text-muted hover:bg-slate-200 transition-colors"
+              title="下载"
+            >
+              <Download size={18} />
+            </button>
+            <button 
+              onClick={() => editorRef.current && printDocument(editorRef.current.innerHTML)}
+              className="p-2.5 rounded-lg bg-slate-100 text-text-muted hover:bg-slate-200 transition-colors"
+            >
+              <Printer size={18} />
+            </button>
+          </div>
+        </header>
+
+        <div className="flex-1 flex overflow-hidden">
+          {/* Editor Main */}
+          <div className="flex-1 flex flex-col overflow-hidden border-r border-border">
+            {/* Toolbar */}
+            <div className="flex items-center gap-1 p-3 border-b border-border bg-slate-50 shrink-0 overflow-x-auto no-scrollbar">
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onClick={() => execCmd('undo')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="撤销"><Undo size={16} /></button>
+                <button onClick={() => execCmd('redo')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="重做"><Redo size={16} /></button>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <select 
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { execCmd('fontName', e.target.value); e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">字体</option>
+                  <option value="SimSun">宋体</option>
+                  <option value="Microsoft YaHei">微软雅黑</option>
+                  <option value="SimHei">黑体</option>
+                  <option value="KaiTi">楷体</option>
+                </select>
+                <select
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { if (e.target.value) { execCmd('fontSize', e.target.value); } e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">字号</option>
+                  <option value="3">12pt</option>
+                  <option value="4">14pt</option>
+                  <option value="5">18pt</option>
+                  <option value="6">24pt</option>
+                </select>
+                <select
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { if (e.target.value) { changeLineHeight(e.target.value); } e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">行距</option>
+                  <option value="1">1.0</option>
+                  <option value="1.5">1.5</option>
+                  <option value="2">2.0</option>
+                </select>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onClick={() => execCmd('bold')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="粗体"><Bold size={16} /></button>
+                <button onClick={() => execCmd('italic')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="斜体"><Italic size={16} /></button>
+                <button onClick={() => execCmd('underline')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="下划线"><Underline size={16} /></button>
+                <div className="relative flex items-center">
+                  <input 
+                    type="color" 
+                    onChange={(e) => execCmd('foreColor', e.target.value)}
+                    className="w-9 h-9 p-1.5 bg-transparent border-none cursor-pointer rounded-lg hover:bg-white transition-colors"
+                    title="文字颜色"
+                  />
+                </div>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('left')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="左对齐"><AlignLeft size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('center')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="居中"><AlignCenter size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('right')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="右对齐"><AlignRight size={16} /></button>
+              </div>
+              <div className="flex gap-1">
+                <button onClick={insertTable} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="表格"><Table size={16} /></button>
+                <button onClick={insertImage} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="插入图片占位符"><ImageIcon size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={insertAiRegion} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-blue-50 text-blue-500 transition-colors" title="插入AI可编辑区域"><Bot size={16} /></button>
+              </div>
+            </div>
+
+            {/* Editor Content */}
+            <div 
+              className="editor-content-wrapper print-wrapper"
+              onDragOver={(e) => e.preventDefault()}
+              onDrop={(e) => {
+                const target = e.target as HTMLElement;
+                const placeholder = target.closest('.image-placeholder') as HTMLElement;
+                if (placeholder) handleDrop(e, placeholder);
+              }}
+            >
+              <div 
+                ref={editorRef}
+                contentEditable
+                onInput={handleEditorInput}
+                onBlur={() => { contentRef.current = editorRef.current?.innerHTML || ''; saveDraftToStorage(); }}
+                className="editor-content print-content"
+              >
+              </div>
+            </div>
+          </div>
+
+          {/* Right Sidebar */}
+          <aside className="w-[380px] bg-sidebar-bg flex flex-col shrink-0 overflow-hidden">
+            <div className="flex border-b border-border">
+              {(['info', 'video', 'ai'] as const).map(tab => (
+                <button 
+                  key={tab}
+                  onClick={() => { setActiveTab(tab); stateRef.current = { ...stateRef.current, activeTab: tab }; saveDraftToStorage(); }}
+                  className={`flex-1 py-4 text-xs font-bold transition-all border-b-2 uppercase tracking-wider flex items-center justify-center gap-1.5 ${
+                    activeTab === tab ? 'text-accent border-accent' : 'text-text-muted border-transparent hover:text-text-main'
+                  }`}
+                >
+                  {tab === 'ai' && <Bot size={16} className={activeTab === 'ai' ? 'text-accent' : 'text-text-muted'} />}
+                  {tab === 'info' ? '基本信息' : tab === 'video' ? '视频分析' : 'AI撰写'}
+                </button>
+              ))}
+            </div>
+
+            <div className="flex-1 overflow-y-auto p-6 space-y-8">
+              {activeTab === 'info' && (
+                <div className="report-info-form space-y-4">
+                  {(() => {
+                    const topKeys = ['patientName', 'hospitalId', 'title'];
+                    const contentHtml = contentRef.current || editorRef.current?.innerHTML || '';
+                    return [...formFields.filter(f => f.visibleInForm)].sort((a, b) => {
+                      const aTop = topKeys.indexOf(a.key);
+                      const bTop = topKeys.indexOf(b.key);
+                      if (aTop !== -1 && bTop !== -1) return aTop - bTop;
+                      if (aTop !== -1) return -1;
+                      if (bTop !== -1) return 1;
+                      const aIndex = contentHtml.indexOf(`data-bind="${a.key}"`);
+                      const bIndex = contentHtml.indexOf(`data-bind="${b.key}"`);
+                      if (aIndex === -1 && bIndex === -1) return 0;
+                      if (aIndex === -1) return 1;
+                      if (bIndex === -1) return -1;
+                      return aIndex - bIndex;
+                    });
+                  })().map(field => {
+                    const isRequired = field.isSystemLocked;
+                    const hasError = isRequired && touched[field.key] && !(reportData as any)[field.key];
+
+                    if (field.type === 'text' || field.type === 'date') {
+                      const inputType = field.type === 'date' ? 'date' : 'text';
+                      return (
+                        <div key={field.key} id={`input-${field.key}`} onClick={() => setActiveFieldKey(field.key)} className={`${field.category === '填空' && formFields.filter(f2 => f2.visibleInForm && f2.type === 'text' && f2.isSystemLocked).length > 1 && (field.key === 'patientName' || field.key === 'hospitalId') ? 'flex-1 space-y-1' : 'space-y-1'} p-2 -mx-2 rounded-xl transition-all duration-300 ${activeFieldKey === field.key ? 'bg-blue-50 ring-1 ring-accent shadow-sm' : ''}`}>
+                          <label className="block text-xs font-bold text-text-main">
+                            {field.label} {isRequired && <span className="text-red-500">*</span>}
+                          </label>
+                          <input
+                            type={inputType}
+                            value={(reportData as any)[field.key] || ''}
+                            onChange={(e) => { const next = { ...reportData, [field.key]: e.target.value }; setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage(); }}
+                            onBlur={() => setTouched(t => ({ ...t, [field.key]: true }))}
+                            className={`input-minimal ${hasError ? 'border-red-500' : ''}`}
+                            placeholder={field.label}
+                          />
+                        </div>
+                      );
+                    }
+
+                    if (field.type === 'single_select') {
+                      const isOpen = openDropdown === field.key;
+                      const opts = field.options || (field.key === 'anesthesiaType' ? anesthesiaOptions : []);
+                      return (
+                        <div key={field.key} id={`input-${field.key}`} onClick={() => setActiveFieldKey(field.key)} className={`space-y-1 select-dropdown-root relative p-2 -mx-2 rounded-xl transition-all duration-300 ${activeFieldKey === field.key ? 'bg-blue-50 ring-1 ring-accent shadow-sm' : ''}`}>
+                          <label className="block text-xs font-bold text-text-main">{field.label}</label>
+                          <div
+                            className="w-full px-3 py-2 border border-border rounded-lg bg-white flex items-center min-h-[42px] cursor-text"
+                            onClick={() => setOpenDropdown(field.key)}
+                          >
+                            <input
+                              type="text"
+                              className="outline-none text-sm flex-1 bg-transparent"
+                              placeholder={`输入或选择${field.label}`}
+                              value={(reportData as any)[field.key] || ''}
+                              onChange={(e) => { const next = { ...reportData, [field.key]: e.target.value }; setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage(); }}
+                              onFocus={() => setOpenDropdown(field.key)}
+                              onKeyDown={(e) => {
+                                if (e.key === 'Enter') {
+                                  e.preventDefault();
+                                  const val = (e.target as HTMLInputElement).value.trim();
+                                  if (val) {
+                                    const next = { ...reportData, [field.key]: val };
+                                    setReportData(next);
+                                    stateRef.current = { ...stateRef.current, reportData: next };
+                                    saveDraftToStorage();
+                                    if (!opts.includes(val)) {
+                                      const updatedOpts = [...opts, val];
+                                      if (field.key === 'anesthesiaType') {
+                                        setAnesthesiaOptions(updatedOpts);
+                                        storage.set('anesthesiaOptions', updatedOpts);
+                                      }
+                                      const updatedFields = formFields.map(f => f.key === field.key ? { ...f, options: updatedOpts } : f);
+                                      setFormFields(updatedFields);
+                                      storage.set('formFieldsConfig', updatedFields);
+                                    }
+                                    setOpenDropdown(null);
+                                  }
+                                }
+                              }}
+                            />
+                          </div>
+                          {isOpen && (
+                            <div className="absolute z-10 left-0 right-0 top-full mt-1 bg-white border border-border rounded-lg shadow-lg max-h-[150px] overflow-y-auto">
+                              {opts.map(opt => (
+                                <div
+                                  key={opt}
+                                  className="px-3 py-2 text-sm hover:bg-slate-50 cursor-pointer flex justify-between items-center"
+                                  onClick={() => { const next = { ...reportData, [field.key]: opt }; setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage(); setOpenDropdown(null); }}
+                                >
+                                  <span>{opt}</span>
+                                  <span
+                                    className="text-red-500 text-xs hover:bg-red-50 px-1 rounded"
+                                    onClick={(e) => {
+                                      e.stopPropagation();
+                                      const updatedOpts = opts.filter(v => v !== opt);
+                                      if (field.key === 'anesthesiaType') {
+                                        setAnesthesiaOptions(updatedOpts);
+                                        storage.set('anesthesiaOptions', updatedOpts);
+                                      }
+                                      const updatedFields = formFields.map(f => f.key === field.key ? { ...f, options: updatedOpts } : f);
+                                      setFormFields(updatedFields);
+                                      storage.set('formFieldsConfig', updatedFields);
+                                    }}
+                                  >×</span>
+                                </div>
+                              ))}
+                              {opts.length === 0 && (
+                                <div className="px-3 py-2 text-xs text-text-muted">暂无选项</div>
+                              )}
+                            </div>
+                          )}
+                        </div>
+                      );
+                    }
+
+                    if (field.type === 'multi_select') {
+                      const isOpen = openDropdown === field.key;
+                      const opts = field.options || multiSelectOptions[field.key] || [];
+                      const rawValue = (reportData as any)[field.key];
+                      const currentValues = Array.isArray(rawValue) ? rawValue : (rawValue ? [String(rawValue)] : []);
+                      const displayText = currentValues.join(', ');
+
+                      const parseMultiInput = (text: string): string[] => {
+                        return Array.from(new Set(text.split(/[,，;；、]/).map(s => s.trim()).filter(Boolean)));
+                      };
+
+                      const handleMultiCommit = (text: string) => {
+                        const values = parseMultiInput(text);
+                        const next = { ...reportData, [field.key]: values };
+                        setReportData(next);
+                        stateRef.current = { ...stateRef.current, reportData: next };
+                        saveDraftToStorage();
+
+                        const currentOpts = field.options || multiSelectOptions[field.key] || [];
+                        const newOpts = values.filter(v => !currentOpts.includes(v));
+                        if (newOpts.length > 0) {
+                          const mergedOpts = [...currentOpts, ...newOpts];
+                          const nextMulti = { ...multiSelectOptions, [field.key]: mergedOpts };
+                          setMultiSelectOptions(nextMulti);
+                          storage.set('multiSelectOptions', nextMulti);
+                          const fieldDef = formFields.find(f => f.key === field.key);
+                          if (fieldDef) {
+                            const updatedFields = formFields.map(f => f.key === field.key ? { ...f, options: mergedOpts } : f);
+                            setFormFields(updatedFields);
+                            storage.set('formFieldsConfig', updatedFields);
+                          }
+                        }
+                      };
+
+                      const currentInputText = multiInputText[field.key] !== undefined ? multiInputText[field.key] : displayText;
+
+                      return (
+                        <div key={field.key} id={`input-${field.key}`} onClick={() => setActiveFieldKey(field.key)} className={`space-y-1 select-dropdown-root relative p-2 -mx-2 rounded-xl transition-all duration-300 ${activeFieldKey === field.key ? 'bg-blue-50 ring-1 ring-accent shadow-sm' : ''}`}>
+                          <label className="block text-xs font-bold text-text-main">{field.label}（可多选）</label>
+                          <div
+                            className="w-full px-3 py-2 border border-border rounded-lg bg-white flex flex-wrap gap-1 items-center min-h-[42px] cursor-text"
+                            onClick={() => setOpenDropdown(field.key)}
+                          >
+                            <input
+                              type="text"
+                              className="outline-none text-sm w-full bg-transparent"
+                              placeholder="输入或选择，多个用逗号分隔"
+                              value={currentInputText}
+                              onChange={(e) => {
+                                setMultiInputText(prev => ({ ...prev, [field.key]: e.target.value }));
+                              }}
+                              onFocus={() => setOpenDropdown(field.key)}
+                              onBlur={(e) => {
+                                handleMultiCommit(e.target.value);
+                                setMultiInputText(prev => {
+                                  const next = { ...prev };
+                                  delete next[field.key];
+                                  return next;
+                                });
+                              }}
+                              onKeyDown={(e) => {
+                                if (e.key === 'Enter') {
+                                  e.preventDefault();
+                                  handleMultiCommit((e.target as HTMLInputElement).value);
+                                  setMultiInputText(prev => {
+                                    const next = { ...prev };
+                                    delete next[field.key];
+                                    return next;
+                                  });
+                                }
+                              }}
+                            />
+                          </div>
+                          {isOpen && (
+                            <div className="absolute z-10 left-0 right-0 top-full mt-1 bg-white border border-border rounded-lg shadow-lg max-h-[150px] overflow-y-auto">
+                              {opts.map(opt => (
+                                <div
+                                  key={opt}
+                                  className="px-3 py-2 text-sm hover:bg-slate-50 cursor-pointer flex justify-between items-center"
+                                  onClick={() => {
+                                    const base = multiInputText[field.key] !== undefined ? multiInputText[field.key] : displayText;
+                                    const newText = base.length > 0 ? `${base}, ${opt}` : opt;
+                                    setMultiInputText(prev => ({ ...prev, [field.key]: newText }));
+                                    handleMultiCommit(newText);
+                                    setMultiInputText(prev => {
+                                      const next = { ...prev };
+                                      delete next[field.key];
+                                      return next;
+                                    });
+                                  }}
+                                >
+                                  <span>{opt}</span>
+                                  <span
+                                    className="text-red-500 text-xs hover:bg-red-50 px-1 rounded"
+                                    onClick={(e) => { e.stopPropagation(); removeMultiOption(field.key, opt); }}
+                                  >×</span>
+                                </div>
+                              ))}
+                              {opts.length === 0 && (
+                                <div className="px-3 py-2 text-xs text-text-muted">暂无选项</div>
+                              )}
+                            </div>
+                          )}
+                        </div>
+                      );
+                    }
+
+                    if (field.type === 'time') {
+                      const is12h = field.timeFormat ? (field.timeFormat.includes('hh') || field.timeFormat.includes('A')) : false;
+
+                      if (field.key === 'startTime' || field.key === 'endTime') {
+                        const hourKey = field.key === 'startTime' ? 'startHour' : 'endHour';
+                        const minuteKey = field.key === 'startTime' ? 'startMinute' : 'endMinute';
+                        const h24val = parseInt((reportData as any)[hourKey]) || 0;
+                        const m = (reportData as any)[minuteKey] || '';
+                        const { h: h12, isPM } = from24h(h24val);
+
+                        return (
+                          <div key={field.key} id={`input-${field.key}`} onClick={() => setActiveFieldKey(field.key)} className={`space-y-1 p-2 -mx-2 rounded-xl transition-all duration-300 ${activeFieldKey === field.key ? 'bg-blue-50 ring-1 ring-accent shadow-sm' : ''}`}>
+                            <label className="block text-xs font-bold text-text-main">{field.label}</label>
+                            <div className="flex items-center gap-2">
+                              <select
+                                value={is12h ? String(h12).padStart(2, '0') : ((reportData as any)[hourKey] || '')}
+                                onChange={(e) => {
+                                  let h24new = parseInt(e.target.value) || 0;
+                                  if (is12h) {
+                                    const currentPM = from24h(parseInt((reportData as any)[hourKey]) || 0).isPM;
+                                    h24new = to24h(h24new, currentPM);
+                                  }
+                                  const next = { ...reportData, [hourKey]: String(h24new).padStart(2, '0') };
+                                  setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage();
+                                }}
+                                className="input-minimal bg-white flex-1"
+                              >
+                                <option value="">--</option>
+                                {(is12h ? hour12Options : hourOptions).map(h => <option key={h} value={h}>{h}</option>)}
+                              </select>
+                              <span className="text-text-muted">:</span>
+                              <select
+                                value={m}
+                                onChange={(e) => { const next = { ...reportData, [minuteKey]: e.target.value }; setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage(); }}
+                                className="input-minimal bg-white flex-1"
+                              >
+                                <option value="">--</option>
+                                {minuteOptions.map(mo => <option key={mo} value={mo}>{mo}</option>)}
+                              </select>
+                              {is12h && (
+                                <select
+                                  value={isPM ? '下午' : '上午'}
+                                  onChange={(e) => {
+                                    const isPMnew = e.target.value === '下午';
+                                    const currentH12 = from24h(parseInt((reportData as any)[hourKey]) || 0).h;
+                                    const h24new = to24h(currentH12, isPMnew);
+                                    const next = { ...reportData, [hourKey]: String(h24new).padStart(2, '0') };
+                                    setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage();
+                                  }}
+                                  className="input-minimal bg-white flex-1"
+                                >
+                                  <option value="上午">上午</option>
+                                  <option value="下午">下午</option>
+                                </select>
+                              )}
+                            </div>
+                          </div>
+                        );
+                      }
+
+                      // 通用 time 字段
+                      const timeVal = (reportData as any)[field.key] || '';
+                      const [h24str, mstr] = timeVal.split(':');
+                      const h24 = parseInt(h24str) || 0;
+                      const m = mstr || '';
+                      const { h: h12g, isPM: isPMg } = from24h(h24);
+
+                      return (
+                        <div key={field.key} id={`input-${field.key}`} onClick={() => setActiveFieldKey(field.key)} className={`space-y-1 p-2 -mx-2 rounded-xl transition-all duration-300 ${activeFieldKey === field.key ? 'bg-blue-50 ring-1 ring-accent shadow-sm' : ''}`}>
+                          <label className="block text-xs font-bold text-text-main">{field.label}</label>
+                          <div className="flex items-center gap-2">
+                            <select
+                              value={is12h ? String(h12g).padStart(2, '0') : (h24str || '')}
+                              onChange={(e) => {
+                                let h24new = parseInt(e.target.value) || 0;
+                                if (is12h) h24new = to24h(h24new, isPMg);
+                                const nextVal = `${String(h24new).padStart(2, '0')}:${m || '00'}`;
+                                const next = { ...reportData, [field.key]: nextVal };
+                                setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage();
+                              }}
+                              className="input-minimal bg-white flex-1"
+                            >
+                              <option value="">--</option>
+                              {(is12h ? hour12Options : hourOptions).map(h => <option key={h} value={h}>{h}</option>)}
+                            </select>
+                            <span className="text-text-muted">:</span>
+                            <select
+                              value={m}
+                              onChange={(e) => {
+                                const nextVal = `${String(h24).padStart(2, '0')}:${e.target.value}`;
+                                const next = { ...reportData, [field.key]: nextVal };
+                                setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage();
+                              }}
+                              className="input-minimal bg-white flex-1"
+                            >
+                              <option value="">--</option>
+                              {minuteOptions.map(mo => <option key={mo} value={mo}>{mo}</option>)}
+                            </select>
+                            {is12h && (
+                              <select
+                                value={isPMg ? '下午' : '上午'}
+                                onChange={(e) => {
+                                  const isPMnew = e.target.value === '下午';
+                                  const h24new = to24h(h12g, isPMnew);
+                                  const nextVal = `${String(h24new).padStart(2, '0')}:${m || '00'}`;
+                                  const next = { ...reportData, [field.key]: nextVal };
+                                  setReportData(next); stateRef.current = { ...stateRef.current, reportData: next }; saveDraftToStorage();
+                                }}
+                                className="input-minimal bg-white flex-1"
+                              >
+                                <option value="上午">上午</option>
+                                <option value="下午">下午</option>
+                              </select>
+                            )}
+                          </div>
+                        </div>
+                      );
+                    }
+
+                    return null;
+                  })}
+                </div>
+              )}
+
+              {activeTab === 'video' && (
+                <div className="space-y-2">
+                  <input 
+                    ref={videoInputRef}
+                    type="file" 
+                    accept="video/*" 
+                    multiple 
+                    className="hidden" 
+                    onChange={handleVideoUpload} 
+                  />
+
+                  <div className="flex gap-2 overflow-x-auto pb-2 no-scrollbar items-center">
+                    {videos.map((v, i) => (
+                      <div 
+                        key={v.id}
+                        className={`shrink-0 w-24 p-1.5 border-2 rounded-xl cursor-pointer transition-all relative group ${
+                          currentVideoIndex === i ? 'border-accent bg-white shadow-sm' : 'border-transparent'
+                        }`}
+                      >
+                        <div 
+                          onClick={() => selectVideo(i)}
+                          className="aspect-video bg-slate-900 rounded-lg flex items-center justify-center text-white"
+                        >
+                          <Play size={16} />
+                        </div>
+                        <div 
+                          onClick={() => selectVideo(i)}
+                          className="text-[9px] font-bold text-text-main truncate mt-1.5 px-1"
+                        >{v.name}</div>
+                        <button
+                          onClick={() => removeVideo(v.id)}
+                          className="absolute -top-2 -right-2 w-5 h-5 bg-red-500 text-white rounded-full flex items-center justify-center text-[10px] opacity-0 group-hover:opacity-100 transition-all shadow-sm"
+                        >
+                          <X size={12} />
+                        </button>
+                      </div>
+                    ))}
+                    <button
+                      onClick={() => videoInputRef.current?.click()}
+                      className="shrink-0 w-24 h-[68px] flex flex-col items-center justify-center gap-1 border-2 border-dashed border-border rounded-xl hover:border-accent hover:bg-slate-50 transition-all text-text-muted hover:text-accent"
+                    >
+                      <Video size={18} />
+                      <span className="text-[10px] font-bold">上传视频</span>
+                    </button>
+                  </div>
+
+                  {currentVideoIndex !== -1 && videos.length > 0 && (
+                    <div className="space-y-2">
+                          <div className="relative bg-slate-900 rounded-2xl overflow-hidden aspect-video shadow-lg">
+                            <video 
+                              ref={videoRef}
+                              src={videos[currentVideoIndex].url}
+                              className="w-full h-full"
+                              onTimeUpdate={() => setCurrentTime(videoRef.current?.currentTime || 0)}
+                              onLoadedMetadata={() => {
+                                const dur = videoRef.current?.duration || 0;
+                                setDuration(dur);
+                                setVideos(prev => prev.map((v, i) => i === currentVideoIndex ? { ...v, duration: dur } : v));
+                              }}
+                            />
+                            {!isPlaying && (
+                              <div className="absolute inset-0 flex items-center justify-center bg-black/40 cursor-pointer" onClick={togglePlay}>
+                                <div className="w-16 h-16 rounded-full bg-white/20 backdrop-blur-md flex items-center justify-center text-white">
+                                  <Play size={32} fill="currentColor" />
+                                </div>
+                              </div>
+                            )}
+                            <div className="absolute bottom-4 right-4 bg-black/60 backdrop-blur-md text-white text-[10px] font-bold px-3 py-1.5 rounded-full">
+                              {formatTime(currentTime)} / {formatTime(duration)}
+                            </div>
+                          </div>
+                          
+                          <div className="flex items-center gap-4">
+                            <button onClick={togglePlay} className="w-10 h-10 flex items-center justify-center bg-slate-100 rounded-xl text-text-main hover:bg-slate-200 transition-colors">
+                              {isPlaying ? <Pause size={18} /> : <Play size={18} />}
+                            </button>
+                            <div className="flex-1 h-2 bg-slate-100 rounded-full overflow-hidden cursor-pointer relative" onClick={(e) => {
+                              const rect = e.currentTarget.getBoundingClientRect();
+                              const pos = (e.clientX - rect.left) / rect.width;
+                              if (videoRef.current) videoRef.current.currentTime = pos * duration;
+                            }}>
+                              <div className="h-full bg-accent" style={{ width: `${(currentTime / duration) * 100}%` }} />
+                            </div>
+                          </div>
+
+                          <div className="flex justify-between items-center pt-1 border-t border-border">
+                            <span className="text-[10px] font-bold text-text-main uppercase tracking-wider">关键帧摘取</span>
+                            <button 
+                              onClick={captureFrame} 
+                              className="px-4 py-2 bg-accent text-white rounded-lg text-[10px] font-bold uppercase tracking-wider hover:bg-blue-700 transition-colors shadow-sm"
+                            >
+                              截取当前帧
+                            </button>
+                          </div>
+
+                          <div className="grid grid-cols-2 gap-3 max-h-[400px] overflow-y-auto pr-2 custom-scrollbar">
+                            {capturedFrames.filter(f => f.videoIndex === currentVideoIndex).map((frame) => (
+                              <div 
+                                key={frame.id}
+                                draggable
+                                onDragStart={(e) => handleDragStart(e, frame)}
+                                onClick={() => seekToFrame(frame)}
+                                className={`group relative card-minimal p-1 border-2 cursor-grab active:cursor-grabbing hover:shadow-md transition-all ${
+                                  frame.isManual ? 'border-yellow-400 hover:border-yellow-500' : 'border-transparent hover:border-accent'
+                                }`}
+                              >
+                                <div className="relative">
+                                  <img src={frame.dataUrl} className="w-full aspect-video object-cover rounded-lg" />
+                                  {frame.isManual && <span className="manual-frame-badge">手动</span>}
+                                </div>
+                                <div className="text-[9px] font-bold text-text-muted mt-1.5 px-1 flex justify-between items-center">
+                                  <span>{frame.timeFormatted}</span>
+                                  <div className="flex items-center gap-2">
+                                    <button
+                                      onClick={(e) => { e.stopPropagation(); insertFrameToPlaceholder(frame); }}
+                                      className="px-2 py-0.5 bg-accent text-white text-[9px] font-bold rounded-full shadow-sm opacity-0 group-hover:opacity-100 transition-opacity hover:bg-blue-700"
+                                    >
+                                      插入
+                                    </button>
+                                    <span className="text-accent opacity-0 group-hover:opacity-100 transition-opacity">可拖拽</span>
+                                  </div>
+                                </div>
+                                <button 
+                                  onClick={(e) => { e.stopPropagation(); setCapturedFrames(prev => prev.filter(f => f.id !== frame.id).sort((a, b) => a.time - b.time)); saveDraftToStorage(); }}
+                                  className="absolute -top-2 -right-2 w-6 h-6 bg-red-500 text-white rounded-full flex items-center justify-center text-xs opacity-0 group-hover:opacity-100 transition-all shadow-md"
+                                >
+                                  <X size={14} />
+                                </button>
+                              </div>
+                            ))}
+                          </div>
+                          <p className="text-[10px] text-text-muted text-center">
+                            提示：点击关键帧可跳转视频位置，按键盘 ← → 键可微调进度
+                          </p>
+                        </div>
+                      )}
+                </div>
+              )}
+
+              {activeTab === 'ai' && (
+                <div className="flex flex-col h-full bg-[#f8fafc] overflow-hidden">
+                  {/* 聊天气泡记录区 */}
+                  <div className="flex-1 overflow-y-auto p-4 space-y-4 custom-scrollbar">
+                    {chatMessages.length === 0 ? (
+                      <div className="text-center flex flex-col items-center justify-center h-full text-slate-400 space-y-3">
+                        <Bot size={48} className="text-slate-300 opacity-50" />
+                        <p className="text-xs">我是 SurClaw 智能助理，请选择参考框架和图片后随时与我对话。</p>
+                      </div>
+                    ) : (
+                      chatMessages.map(msg => (
+                        <div key={msg.id} className={`flex ${msg.role === 'user' ? 'justify-end' : 'justify-start'}`}>
+                          <div className={`rounded-2xl px-4 py-2.5 max-w-[85%] text-sm ${msg.role === 'user' ? 'bg-blue-600 text-white rounded-tr-none shadow-md' : 'bg-white border border-slate-200 text-slate-700 rounded-tl-none shadow-sm'}`}>
+                            <div>{msg.content}</div>
+                            {msg.images && msg.images.length > 0 && (
+                              <div className="flex gap-1.5 mt-2 flex-wrap">
+                                {msg.images.map((src, idx) => (
+                                  <img key={idx} src={src} className="w-10 h-10 object-cover rounded border border-white/30" />
+                                ))}
+                              </div>
+                            )}
+                          </div>
+                        </div>
+                      ))
+                    )}
+                    {isGenerating && (
+                      <div className="flex justify-start">
+                        <div className="bg-white border border-slate-200 rounded-2xl rounded-tl-none px-4 py-3 shadow-sm flex gap-1.5 items-center">
+                          <div className="w-2 h-2 bg-blue-500 rounded-full animate-bounce" />
+                          <div className="w-2 h-2 bg-blue-500 rounded-full animate-bounce" style={{ animationDelay: '0.15s' }} />
+                          <div className="w-2 h-2 bg-blue-500 rounded-full animate-bounce" style={{ animationDelay: '0.3s' }} />
+                        </div>
+                      </div>
+                    )}
+                  </div>
+
+                  {/* 控制台与输入区 */}
+                  <div className="bg-white border-t border-slate-200 p-4 space-y-3 shrink-0 shadow-[0_-4px_6px_-1px_rgba(0,0,0,0.05)] z-10">
+                    {/* 区域锚定与沙盒控制 */}
+                    <div className="flex items-center justify-between bg-slate-50 p-2 rounded-lg border border-slate-200">
+                      <div className="flex items-center gap-2 flex-1">
+                        <select
+                          value={aiTargetRegion}
+                          onChange={(e) => setAiTargetRegion(e.target.value)}
+                          disabled={!aiModifyEnabled}
+                          className="flex-1 w-0 px-2 py-1 border-none text-xs bg-transparent focus:ring-0 font-bold text-slate-700 disabled:opacity-50"
+                        >
+                          {checkAiRegions().length > 0 ? (
+                            checkAiRegions().map((r: any) => <option key={r.id} value={r.id}>🎯 {r.title}</option>)
+                          ) : (
+                            <option value="none">无可用 AI 区域</option>
+                          )}
+                        </select>
+                      </div>
+                      <label className="flex items-center gap-1.5 shrink-0 pl-2 border-l border-slate-300 cursor-pointer">
+                        <input
+                          type="checkbox"
+                          checked={aiModifyEnabled}
+                          onChange={(e) => {
+                            e.stopPropagation();
+                            setAiModifyEnabled(e.target.checked);
+                          }}
+                          className="w-3.5 h-3.5 text-blue-600 rounded border-slate-300 focus:ring-blue-500 cursor-pointer"
+                        />
+                        <span className="text-[11px] text-slate-600 font-bold">
+                          允许修改正文
+                        </span>
+                      </label>
+                    </div>
+
+                    {/* 视觉参考上下文 - 编辑器中已插入的图片 */}
+                    {editorImages.length > 0 && (
+                      <div className="flex gap-2 overflow-x-auto pb-1 custom-scrollbar">
+                        {editorImages.map(img => {
+                          const isSelected = aiSelectedEditorImages.includes(img.id);
+                          return (
+                            <div key={img.id} onClick={() => setAiSelectedEditorImages(prev => isSelected ? prev.filter(id => id !== img.id) : [...prev, img.id])}
+                              className={`relative shrink-0 w-12 aspect-video rounded overflow-hidden border-2 cursor-pointer transition-all ${isSelected ? 'border-blue-600' : 'border-transparent opacity-50'}`}>
+                              <img src={img.src} className="w-full h-full object-cover" />
+                              {isSelected && <div className="absolute top-0.5 right-0.5 bg-blue-600 rounded-full p-0.5"><Check size={8} className="text-white" /></div>}
+                            </div>
+                          );
+                        })}
+                      </div>
+                    )}
+
+                    {/* 自定义快捷指令胶囊 */}
+                    <div className="flex flex-wrap gap-1.5 max-h-16 overflow-y-auto">
+                      {quickPrompts.map((p, i) => (
+                        <div key={i} className="group relative">
+                          <button onClick={() => setChatInput(p)} className="px-3 py-1 bg-[#f1f5f9] hover:bg-blue-50 hover:text-blue-600 text-slate-600 text-[11px] rounded-full transition-colors whitespace-nowrap">
+                            {p}
+                          </button>
+                          {isEditingPrompts && (
+                            <button onClick={() => setQuickPrompts(prev => prev.filter((_, idx) => idx !== i))} className="absolute -top-1 -right-1 bg-red-500 text-white rounded-full p-0.5 scale-75 shadow-sm">
+                              <X size={10} />
+                            </button>
+                          )}
+                        </div>
+                      ))}
+                      <button onClick={() => {
+                        if (isEditingPrompts) {
+                          const newP = prompt('新增快捷指令：');
+                          if (newP) setQuickPrompts([...quickPrompts, newP]);
+                        } else {
+                          setIsEditingPrompts(true);
+                        }
+                      }} className="px-2 py-1 bg-slate-100 text-slate-400 text-[11px] rounded-full hover:bg-slate-200">
+                        {isEditingPrompts ? '+ 添加' : '⚙️'}
+                      </button>
+                      {isEditingPrompts && <button onClick={() => setIsEditingPrompts(false)} className="px-2 py-1 bg-blue-100 text-blue-600 text-[11px] rounded-full">完成</button>}
+                      <button onClick={() => {
+                        const data = {
+                          exportAt: new Date().toISOString(),
+                          url: window.location.href,
+                          messages: chatMessages,
+                          lastExchange: lastExchangeLog,
+                          metadata: {
+                            user: currentUser?.username || 'anonymous',
+                            activeProvider: (() => { const s = storage.get<SystemSettings>('systemSettings', {} as SystemSettings); return s.activeAiProvider || 'kimi'; })(),
+                            targetRegion: aiTargetRegion,
+                            modifyEnabled: aiModifyEnabled,
+                            chatInput,
+                            uploadedImagesCount: aiUploadedImages.length,
+                            selectedFramesCount: aiSelectedEditorImages.length
+                          }
+                        };
+                        const blob = new Blob([JSON.stringify(data, null, 2)], { type: 'application/json' });
+                        const url = URL.createObjectURL(blob);
+                        const a = document.createElement('a');
+                        a.href = url;
+                        a.download = `ai-logs-${Date.now()}.json`;
+                        a.click();
+                        URL.revokeObjectURL(url);
+                      }} className="px-2 py-1 bg-slate-100 text-slate-500 text-[11px] rounded-full hover:bg-slate-200 ml-auto" title="导出 AI 日志（调试用）">
+                        导出 AI 日志
+                      </button>
+                    </div>
+
+                    {/* 沉浸式输入框 */}
+                    <div className="relative border border-slate-300 rounded-xl bg-white shadow-inner focus-within:ring-2 focus-within:ring-blue-500 focus-within:border-transparent transition-all">
+                      {aiUploadedImages.length > 0 && (
+                        <div className="flex gap-2 p-2 border-b border-slate-100 bg-slate-50 rounded-t-xl overflow-x-auto">
+                          {aiUploadedImages.map(img => (
+                            <div key={img.id} className="relative w-10 h-10 rounded overflow-hidden shadow-sm shrink-0">
+                              <img src={img.dataUrl} className="w-full h-full object-cover" />
+                              <button onClick={() => setAiUploadedImages(prev => prev.filter(i => i.id !== img.id))} className="absolute top-0 right-0 bg-red-500/80 text-white rounded-bl-md">
+                                <X size={10} />
+                              </button>
+                            </div>
+                          ))}
+                        </div>
+                      )}
+                      <textarea
+                        value={chatInput}
+                        onChange={(e) => setChatInput(e.target.value)}
+                        onKeyDown={(e) => { if (e.key === 'Enter' && !e.shiftKey) { e.preventDefault(); if (!isGenerating) handleAIGenerate(chatInput); } }}
+                        placeholder={isListening ? '正在将语音转为文字...' : '输入需求（按 Enter 发送）...'}
+                        className="w-full min-h-[80px] p-3 pr-12 text-sm bg-transparent outline-none resize-none custom-scrollbar"
+                      />
+                      <div className="absolute bottom-2 right-2 flex items-center gap-1.5">
+                        <label className="p-1.5 text-slate-400 hover:text-blue-600 bg-slate-50 hover:bg-blue-50 rounded-lg cursor-pointer transition-colors" title="上传外部图像">
+                          <input type="file" accept="image/*" multiple className="hidden" onChange={(e) => {
+                            const files = e.target.files;
+                            if (!files) return;
+                            Array.from(files).forEach((file: File) => {
+                              const reader = new FileReader();
+                              reader.onload = (ev) => { if (ev.target?.result) setAiUploadedImages(prev => [...prev, { id: Date.now(), dataUrl: ev.target!.result as string }]); };
+                              reader.readAsDataURL(file);
+                            });
+                          }} />
+                          <ImagePlus size={16} />
+                        </label>
+                        <button onClick={toggleListening} className={`p-1.5 rounded-lg transition-colors ${isListening ? 'text-red-500 bg-red-50 animate-pulse' : 'text-slate-400 hover:text-blue-600 bg-slate-50 hover:bg-blue-50'}`}>
+                          {isListening ? <Mic size={16} /> : <MicOff size={16} />}
+                        </button>
+                        <button onClick={() => { if (!isGenerating && chatInput.trim()) handleAIGenerate(chatInput); }} disabled={isGenerating || !chatInput.trim()} className="p-1.5 rounded-lg transition-colors text-slate-400 hover:text-blue-600 bg-slate-50 hover:bg-blue-50 disabled:opacity-40 disabled:cursor-not-allowed" title="发送">
+                          <Send size={16} />
+                        </button>
+                      </div>
+                    </div>
+                  </div>
+                </div>
+              )}
+            </div>
+          </aside>
+        </div>
+      </div>
+      <canvas ref={canvasRef} className="hidden" />
+
+      {placeholderModal.isOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">插入图片占位符</h3>
+            <div className="space-y-3">
+              <div className="flex gap-2">
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">宽度(px)</label>
+                  <input type="number" value={placeholderModal.width} onChange={e => setPlaceholderModal({...placeholderModal, width: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">高度(px)</label>
+                  <input type="number" value={placeholderModal.height} onChange={e => setPlaceholderModal({...placeholderModal, height: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+              </div>
+              <div>
+                <label className="block text-xs mb-1">占位符类型</label>
+                <div className="flex gap-2">
+                  <button onClick={() => setPlaceholderModal({...placeholderModal, mode: 'frame'})} className={`flex-1 py-1.5 text-xs rounded border ${placeholderModal.mode === 'frame' ? 'bg-accent text-white border-accent' : 'bg-white text-slate-600 border-border'}`}>手术影像占位<br/><span className="text-[10px] opacity-80">（支持自动/拖拽插入）</span></button>
+                  <button onClick={() => setPlaceholderModal({...placeholderModal, mode: 'manual'})} className={`flex-1 py-1.5 text-xs rounded border ${placeholderModal.mode === 'manual' ? 'bg-accent text-white border-accent' : 'bg-white text-slate-600 border-border'}`}>静态图片占位<br/><span className="text-[10px] opacity-80">（仅支持点击插入）</span></button>
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end gap-2">
+              <button onClick={() => setPlaceholderModal({...placeholderModal, isOpen: false})} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+              <button onClick={() => {
+                const sel = window.getSelection();
+                let node: Node | null = sel?.anchorNode ?? null;
+                let inTable = false;
+                while (node) {
+                  if ((node as Element).nodeName === 'TD' || (node as Element).nodeName === 'TH') {
+                    inTable = true;
+                    break;
+                  }
+                  node = node.parentNode;
+                }
+                const w = parseInt(placeholderModal.width) || 200;
+                const h = parseInt(placeholderModal.height) || 200;
+                const modeAttr = placeholderModal.mode === 'manual' ? ' data-mode="manual"' : '';
+                const hintText = '插入/点击放置图片';
+                const id = 'ph_' + Date.now();
+                let html: string;
+                if (inTable) {
+                  const styleStr = 'position:relative;display:flex;align-items:center;justify-content:center;border:1px dashed #cbd5e1;background:#f8fafc;cursor:pointer;width:100%;height:100%;max-width:200px;max-height:200px;min-height:60px;margin:0 auto;';
+                  html = `<div id="${id}" class="image-placeholder" data-placeholder="true" contenteditable="false"${modeAttr} style="${styleStr}"><span class="delete-btn" contenteditable="false">×</span><span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${hintText}</span></div>`;
+                } else {
+                  let styleStr = 'display:inline-block;text-align:center;border:1px dashed #cbd5e1;background:#f8fafc;vertical-align:middle;margin:0 4px;cursor:pointer;position:relative;';
+                  styleStr += `width:${w}px;height:${h}px;max-width:${w}px;max-height:${h}px;line-height:${h}px;`;
+                  const showShortText = w > 0 && w < 80;
+                  const text = showShortText ? '插图' : hintText;
+                  html = `<span id="${id}" class="image-placeholder" data-placeholder="true" contenteditable="false"${modeAttr} style="${styleStr}"><span class="delete-btn" contenteditable="false">×</span><span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${text}</span></span>&#8203;`;
+                }
+                execCmd('insertHTML', html);
+                setPlaceholderModal({...placeholderModal, isOpen: false});
+              }} className="px-4 py-2 bg-accent text-white rounded text-sm">确认插入</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {tableModal.isOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">插入表格</h3>
+            <div className="space-y-3">
+              <div className="flex gap-2">
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">行数</label>
+                  <input type="number" min="1" value={tableModal.rows} onChange={e => setTableModal({...tableModal, rows: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">列数</label>
+                  <input type="number" min="1" value={tableModal.cols} onChange={e => setTableModal({...tableModal, cols: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end gap-2">
+              <button onClick={() => setTableModal({...tableModal, isOpen: false})} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+              <button onClick={() => {
+                const rows = parseInt(tableModal.rows);
+                const cols = parseInt(tableModal.cols);
+                if (isNaN(rows) || isNaN(cols) || rows < 1 || cols < 1) {
+                  setTableModal({...tableModal, isOpen: false});
+                  return;
+                }
+                let table = '<table style="width: 100%; border-collapse: collapse; margin: 16px 0; table-layout: fixed;">';
+                for (let i = 0; i < rows; i++) {
+                  table += '<tr>';
+                  for (let j = 0; j < cols; j++) {
+                    table += '<td style="padding: 8px; border: 1px solid #e2e8f0; vertical-align: top;">单元格</td>';
+                  }
+                  table += '</tr>';
+                }
+                table += '</table><p></p>';
+                execCmd('insertHTML', table);
+                setTableModal({...tableModal, isOpen: false});
+              }} className="px-4 py-2 bg-accent text-white rounded text-sm">确认插入</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {exportModalOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">导出报告</h3>
+            <div className="space-y-3">
+              <button
+                onClick={() => {
+                  const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+                  const title = reportData.title || '无标题';
+                  const patient = reportData.patientName || '未知';
+                  const hid = reportData.hospitalId || '无号';
+                  printDocument(editorRef.current?.innerHTML || '', `图文报告-${title}-${patient}-${hid}-${ts}`);
+                  setExportModalOpen(false);
+                }}
+                className="w-full py-2.5 bg-accent text-white rounded text-sm font-semibold hover:opacity-90 transition-colors"
+              >导出 PDF</button>
+              <button
+                onClick={() => {
+                  const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+                  const title = reportData.title || '无标题';
+                  const patient = reportData.patientName || '未知';
+                  const hid = reportData.hospitalId || '无号';
+                  const blob = new Blob([JSON.stringify(reportData, null, 2)], { type: 'application/json' });
+                  const url = URL.createObjectURL(blob);
+                  const a = document.createElement('a');
+                  a.href = url;
+                  a.download = `图文报告-${title}-${patient}-${hid}-${ts}.json`;
+                  a.click();
+                  URL.revokeObjectURL(url);
+                  setExportModalOpen(false);
+                }}
+                className="w-full py-2.5 bg-slate-100 text-slate-700 rounded text-sm font-semibold hover:bg-slate-200 transition-colors"
+              >导出 JSON</button>
+              <button
+                onClick={() => setExportModalOpen(false)}
+                className="w-full py-2.5 border border-border text-text-main rounded text-sm font-semibold hover:bg-slate-50 transition-colors"
+              >取消</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {imagePickerOpen && imagePickerTarget && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">选择图片来源</h3>
+            <div className="space-y-3">
+              <button
+                onClick={() => {
+                  const input = document.createElement('input');
+                  input.type = 'file';
+                  input.accept = 'image/*';
+                  input.onchange = (ev) => {
+                    const file = (ev.target as HTMLInputElement).files?.[0];
+                    if (file) {
+                      const reader = new FileReader();
+                      reader.onload = (event) => {
+                        const src = event.target?.result as string;
+                        fillPlaceholderSrc(imagePickerTarget, src);
+                        setImagePickerOpen(false);
+                        setImagePickerTarget(null);
+                      };
+                      reader.readAsDataURL(file);
+                    }
+                  };
+                  input.click();
+                }}
+                className="w-full py-2 bg-slate-100 hover:bg-slate-200 text-slate-700 rounded text-sm font-semibold"
+              >本地上传</button>
+              <button
+                onClick={() => {
+                  if (currentUser?.signature) {
+                    fillPlaceholderSrc(imagePickerTarget, currentUser.signature);
+                  }
+                  setImagePickerOpen(false);
+                  setImagePickerTarget(null);
+                }}
+                disabled={!currentUser?.signature}
+                className={`w-full py-2 rounded text-sm font-semibold ${currentUser?.signature ? 'bg-slate-100 hover:bg-slate-200 text-slate-700' : 'bg-slate-50 text-slate-400 cursor-not-allowed'}`}
+              >我的签名 {!currentUser?.signature && '(未上传)'}</button>
+              <div>
+                <div className="text-xs text-slate-500 mb-2">系统素材</div>
+                <div className="flex flex-wrap gap-2 max-h-32 overflow-y-auto">
+                  {imageAssets.map(asset => (
+                    <button
+                      key={asset.id}
+                      onClick={() => { fillPlaceholderSrc(imagePickerTarget, asset.dataUrl); setImagePickerOpen(false); setImagePickerTarget(null); }}
+                      className="w-16 h-16 border rounded overflow-hidden hover:ring-2 ring-accent"
+                    >
+                      <img src={asset.dataUrl} alt={asset.name} className="w-full h-full object-cover" />
+                    </button>
+                  ))}
+                  {imageAssets.length === 0 && <div className="text-xs text-slate-400">暂无素材</div>}
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end">
+              <button onClick={() => { setImagePickerOpen(false); setImagePickerTarget(null); }} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {/* AI 修改二次确认 Diff 弹窗 */}
+      {diffModal && diffModal.isOpen && (
+        <div className="fixed inset-0 bg-slate-900/40 backdrop-blur-sm z-[100] flex items-center justify-center p-4">
+          <div className="bg-white rounded-2xl w-full max-w-[800px] shadow-2xl flex flex-col max-h-[85vh] overflow-hidden">
+            <div className="px-6 py-4 border-b border-slate-100 flex items-center justify-between bg-slate-50">
+              <div>
+                <h3 className="text-lg font-bold text-slate-800 flex items-center gap-2">
+                  <Sparkles size={18} className="text-blue-600" />
+                  AI 修改确认
+                </h3>
+                <p className="text-xs text-slate-500 mt-1">您可以直接在右侧面板手动微调 AI 生成的内容。</p>
+              </div>
+              <button onClick={() => setDiffModal(null)} className="text-slate-400 hover:text-slate-600"><X size={20}/></button>
+            </div>
+            {(() => {
+              const oldText = stripHtml(diffModal.originalHtml);
+              const newText = stripHtml(diffModal.newHtml);
+              const leftDiffHtml = computeDiffHtml(oldText, newText, 'left');
+              const rightDiffHtml = computeDiffHtml(oldText, newText, 'right');
+              return (
+                <div className="flex-1 overflow-hidden flex gap-4 p-6 bg-slate-100">
+                  <div className="flex-1 flex flex-col bg-white border border-red-200 rounded-xl overflow-hidden shadow-sm">
+                    <div className="bg-red-50 px-3 py-2 text-xs font-bold text-red-600 border-b border-red-100 uppercase tracking-wider">原始版本</div>
+                    <div className="p-4 flex-1 overflow-y-auto opacity-70 cursor-not-allowed custom-scrollbar"
+                      dangerouslySetInnerHTML={{ __html: leftDiffHtml }}
+                      style={{ fontFamily: 'SimSun, "Microsoft YaHei", serif', fontSize: '12pt', lineHeight: '1.5' }}
+                    ></div>
+                  </div>
+                  <div className="flex-1 flex flex-col bg-white border border-green-400 rounded-xl overflow-hidden shadow-md relative">
+                    <div className="bg-green-50 px-3 py-2 text-xs font-bold text-green-700 border-b border-green-200 uppercase tracking-wider flex justify-between">
+                      <span>AI 提议版本 (可直接编辑)</span>
+                      <span className="text-[10px] bg-green-200 px-1.5 py-0.5 rounded text-green-800">编辑态</span>
+                    </div>
+                    <div
+                      className="p-4 flex-1 overflow-y-auto outline-none custom-scrollbar"
+                      contentEditable
+                      suppressContentEditableWarning
+                      onBlur={(e) => setDiffModal(prev => prev ? { ...prev, newHtml: e.target.innerHTML } : null)}
+                      dangerouslySetInnerHTML={{ __html: rightDiffHtml }}
+                      style={{ fontFamily: 'SimSun, "Microsoft YaHei", serif', fontSize: '12pt', lineHeight: '1.5' }}
+                    ></div>
+                  </div>
+                </div>
+              );
+            })()}
+            <div className="px-6 py-4 border-t border-slate-100 flex justify-end gap-3 bg-white">
+              <button onClick={() => setDiffModal(null)} className="px-6 py-2 rounded-lg text-slate-600 font-medium hover:bg-slate-100">放弃修改</button>
+              <button onClick={() => confirmAiInjection(diffModal.newHtml, diffModal.targetId)} className="px-6 py-2 rounded-lg bg-blue-600 text-white font-medium hover:bg-blue-700 shadow-sm flex items-center gap-2">
+                <Check size={16} /> 确认并写入报告
+              </button>
+            </div>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/src/pages/ReportManage.test.tsx b/src/pages/ReportManage.test.tsx
new file mode 100644
index 0000000..5cbbe53
--- /dev/null
+++ b/src/pages/ReportManage.test.tsx
@@ -0,0 +1,64 @@
+import { render, screen } from '@testing-library/react';
+import { MemoryRouter } from 'react-router-dom';
+import { describe, expect, it } from 'vitest';
+import { Report, User } from '../types';
+import { storage } from '../utils/storage';
+import ReportManage from './ReportManage';
+
+const baseReport = {
+  patientName: '患者',
+  hospitalId: 'H001',
+  content: '<p>报告</p>',
+  authorName: '医生',
+  createdAt: '2026-05-01',
+  status: 'draft' as const,
+};
+
+describe('ReportManage page', () => {
+  it('filters doctors to their own reports', async () => {
+    storage.set<User>('currentUser', { username: '0001', role: 'user', name: '张医生', department: '外科' });
+    storage.set<User[]>('users', [
+      { username: '0001', role: 'user', name: '张医生', department: '外科' },
+      { username: '0002', role: 'user', name: '李医生', department: '外科' },
+    ]);
+    storage.set<Report[]>('reports', [
+      { ...baseReport, id: 'RPT_1', title: '本人报告', author: '0001', department: '外科' },
+      { ...baseReport, id: 'RPT_2', title: '他人报告', author: '0002', department: '外科' },
+    ]);
+
+    render(<MemoryRouter><ReportManage /></MemoryRouter>);
+
+    expect(await screen.findByText('本人报告')).toBeInTheDocument();
+    expect(screen.queryByText('他人报告')).not.toBeInTheDocument();
+  });
+
+  it('shows all local reports to super users', async () => {
+    storage.set<User>('currentUser', { username: 'admin', role: 'super', name: '超级管理员' });
+    storage.set<Report[]>('reports', [
+      { ...baseReport, id: 'RPT_1', title: '医生 A 报告', author: '0001' },
+      { ...baseReport, id: 'RPT_2', title: '医生 B 报告', author: '0002' },
+    ]);
+
+    render(<MemoryRouter><ReportManage /></MemoryRouter>);
+
+    expect(await screen.findByText('医生 A 报告')).toBeInTheDocument();
+    expect(screen.getByText('医生 B 报告')).toBeInTheDocument();
+  });
+
+  it('filters admins to reports from their own department', async () => {
+    storage.set<User>('currentUser', { username: 'manager', role: 'admin', name: '管理员', department: '外科' });
+    storage.set<User[]>('users', [
+      { username: '0001', role: 'user', name: '张医生', department: '外科' },
+      { username: '0002', role: 'user', name: '李医生', department: '内科' },
+    ]);
+    storage.set<Report[]>('reports', [
+      { ...baseReport, id: 'RPT_1', title: '外科报告', author: '0001', department: '外科' },
+      { ...baseReport, id: 'RPT_2', title: '内科报告', author: '0002', department: '内科' },
+    ]);
+
+    render(<MemoryRouter><ReportManage /></MemoryRouter>);
+
+    expect(await screen.findByText('外科报告')).toBeInTheDocument();
+    expect(screen.queryByText('内科报告')).not.toBeInTheDocument();
+  });
+});
diff --git a/src/pages/ReportManage.tsx b/src/pages/ReportManage.tsx
new file mode 100644
index 0000000..1d08852
--- /dev/null
+++ b/src/pages/ReportManage.tsx
@@ -0,0 +1,511 @@
+import React, { useEffect, useState } from 'react';
+import { useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { Search, Eye, Edit, Trash2, FileText, History, X, Download, Printer } from 'lucide-react';
+import { User, Report, DEFAULT_FORM_FIELDS } from '../types';
+import { storage } from '../utils/storage';
+import { printDocument } from '../utils/print';
+import { canDeleteReport, canEditReport, getAccessibleReports } from '../utils/permissions';
+import { deleteReportFromApi, listReports } from '../api/reports';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+const formatDateTime = (iso: string) => {
+  if (!iso) return '-';
+  const d = new Date(iso);
+  if (isNaN(d.getTime())) return iso;
+  const pad = (n: number) => n.toString().padStart(2, '0');
+  return `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())} ${pad(d.getHours())}:${pad(d.getMinutes())}`;
+};
+
+export default function ReportManage() {
+  const navigate = useNavigate();
+  const [reports, setReports] = useState<Report[]>([]);
+  const [filteredReports, setFilteredReports] = useState<Report[]>([]);
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [searchTerm, setSearchTerm] = useState('');
+  const [statusFilter, setStatusFilter] = useState('');
+  const [dateFilter, setDateFilter] = useState('');
+  const [historyModalOpen, setHistoryModalOpen] = useState(false);
+  const [historyReport, setHistoryReport] = useState<Report | null>(null);
+  const [selectedIds, setSelectedIds] = useState<string[]>([]);
+  const [exportModalOpen, setExportModalOpen] = useState(false);
+  const [exportTarget, setExportTarget] = useState<Report | null>(null);
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user) {
+      navigate('/');
+      return;
+    }
+    setCurrentUser(user);
+
+    const loadReports = async () => {
+      const savedReports = storage.get<Report[]>('reports', []);
+      try {
+        const response = await listReports();
+        setReports(response.items);
+        storage.set('reports', response.items);
+      } catch {
+        if (isLocalFallbackEnabled()) setReports(savedReports);
+      }
+    };
+
+    void loadReports();
+  }, [navigate]);
+
+  useEffect(() => {
+    if (!currentUser) return;
+
+    const users = storage.get<User[]>('users', []);
+    let filtered = getAccessibleReports(currentUser, reports, users);
+
+    if (searchTerm) {
+      const term = searchTerm.toLowerCase();
+      filtered = filtered.filter(r => 
+        r.title.toLowerCase().includes(term) || 
+        r.patientName.toLowerCase().includes(term) ||
+        r.hospitalId.toLowerCase().includes(term)
+      );
+    }
+
+    if (statusFilter) {
+      filtered = filtered.filter(r => r.status === statusFilter);
+    }
+
+    if (dateFilter) {
+      const now = new Date();
+      filtered = filtered.filter(r => {
+        const reportDate = new Date(r.createdAt);
+        if (dateFilter === 'today') {
+          return reportDate.toDateString() === now.toDateString();
+        } else if (dateFilter === 'week') {
+          const weekAgo = new Date(now.getTime() - 7 * 24 * 60 * 60 * 1000);
+          return reportDate >= weekAgo;
+        } else if (dateFilter === 'month') {
+          return reportDate.getMonth() === now.getMonth() && reportDate.getFullYear() === now.getFullYear();
+        }
+        return true;
+      });
+    }
+
+    setFilteredReports(filtered);
+  }, [reports, currentUser, searchTerm, statusFilter, dateFilter]);
+
+  const deleteReport = async (id: string) => {
+    if (window.confirm('确定要删除此报告吗？')) {
+      try {
+        await deleteReportFromApi(id);
+      } catch {
+        if (!isLocalFallbackEnabled()) {
+          alert('删除失败：后端服务不可用');
+          return;
+        }
+      }
+      const updatedReports = reports.filter(r => r.id !== id);
+      setReports(updatedReports);
+      storage.set('reports', updatedReports);
+      setSelectedIds(prev => prev.filter(pid => pid !== id));
+    }
+  };
+
+  const viewReport = (id: string) => {
+    navigate(`/report-view/${id}`);
+  };
+
+  const editReport = (id: string) => {
+    navigate(`/report-editor?id=${id}`);
+  };
+
+  const openHistory = (report: Report) => {
+    setHistoryReport(report);
+    setHistoryModalOpen(true);
+  };
+
+  const restoreHistory = (content: string) => {
+    if (!historyReport) return;
+    if (!window.confirm('确定要恢复此历史版本到编辑器吗？当前未保存的内容将丢失。')) return;
+    navigate(`/report-editor?id=${historyReport.id}&restore=1`);
+    storage.setSession(`restore_${historyReport.id}`, content);
+    setHistoryModalOpen(false);
+  };
+
+  const toggleSelect = (id: string) => {
+    setSelectedIds(prev => prev.includes(id) ? prev.filter(x => x !== id) : [...prev, id]);
+  };
+
+  const toggleSelectAll = () => {
+    if (selectedIds.length === filteredReports.length && filteredReports.length > 0) {
+      setSelectedIds([]);
+    } else {
+      setSelectedIds(filteredReports.map(r => r.id));
+    }
+  };
+
+  const handleBulkDelete = async () => {
+    if (!window.confirm(`确定要删除选中的 ${selectedIds.length} 份报告吗？`)) return;
+    let hasApiFailure = false;
+    await Promise.all(selectedIds.map(async (id) => {
+      try {
+        await deleteReportFromApi(id);
+      } catch {
+        hasApiFailure = true;
+      }
+    }));
+    if (hasApiFailure && !isLocalFallbackEnabled()) {
+      alert('批量删除失败：后端服务不可用');
+      return;
+    }
+    const updated = reports.filter(r => !selectedIds.includes(r.id));
+    setReports(updated);
+    storage.set('reports', updated);
+    setSelectedIds([]);
+  };
+
+  const buildExportData = (report: Report) => {
+    const fields: Record<string, any> = {};
+    DEFAULT_FORM_FIELDS.forEach(f => {
+      fields[f.key] = (report as any)[f.key];
+    });
+    return {
+      meta: {
+        id: report.id,
+        title: report.title,
+        createdAt: report.createdAt,
+        updatedAt: report.updatedAt,
+        author: report.author,
+        authorName: report.authorName,
+        status: report.status,
+        revision: report.revision || 1
+      },
+      fields
+    };
+  };
+
+  const downloadJSON = (data: any, filename: string) => {
+    const blob = new Blob([JSON.stringify(data, null, 2)], { type: 'application/json' });
+    const url = URL.createObjectURL(blob);
+    const a = document.createElement('a');
+    a.href = url;
+    a.download = filename;
+    a.click();
+    URL.revokeObjectURL(url);
+  };
+
+  const exportSinglePDF = (report: Report) => {
+    printDocument(report.content);
+  };
+
+  const exportSingleJSON = (report: Report) => {
+    const data = buildExportData(report);
+    downloadJSON(data, `报告_${report.patientName || '未命名'}_${report.id}.json`);
+  };
+
+  const exportBulkPDF = () => {
+    const users = storage.get<User[]>('users', []);
+    const selectedReports = getAccessibleReports(currentUser!, reports, users).filter(r => selectedIds.includes(r.id));
+    const mergedHTML = selectedReports.map(r => r.content).join('<div style="page-break-after: always;"></div>');
+    printDocument(mergedHTML);
+  };
+
+  const exportBulkJSON = () => {
+    const users = storage.get<User[]>('users', []);
+    const selectedReports = getAccessibleReports(currentUser!, reports, users).filter(r => selectedIds.includes(r.id));
+    const data = selectedReports.map(r => buildExportData(r));
+    const timestamp = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+    downloadJSON(data, `reports_export_${timestamp}.json`);
+  };
+
+  const openExportModal = (report: Report) => {
+    setExportTarget(report);
+    setExportModalOpen(true);
+  };
+
+  if (!currentUser) return null;
+
+  return (
+    <div className="flex min-h-screen bg-bg">
+      <Sidebar />
+      
+      <main className="flex-1 p-10 overflow-y-auto">
+        <header className="flex justify-between items-center mb-8">
+          <div>
+            <h1 className="text-2xl font-bold tracking-tight text-text-main">报告管理</h1>
+            <p className="text-text-muted text-sm mt-1">
+              {currentUser.role === 'super' ? '查看/检索全院所有已撰写的报告' : currentUser.role === 'admin' ? '查看、编辑、打印本部门报告' : '查看、编辑、打印自己创建的报告'}
+            </p>
+          </div>
+        </header>
+        
+        <div className="flex flex-wrap gap-4 mb-4">
+          <div className="relative flex-1 min-w-[240px] max-w-[400px]">
+            <Search className="absolute left-3.5 top-1/2 -translate-y-1/2 text-text-muted" size={18} />
+            <input 
+              type="text" 
+              placeholder="搜索报告标题或患者姓名..." 
+              value={searchTerm}
+              onChange={(e) => setSearchTerm(e.target.value)}
+              className="input-minimal pl-11"
+            />
+          </div>
+          
+          <select 
+            value={statusFilter}
+            onChange={(e) => setStatusFilter(e.target.value)}
+            className="input-minimal max-w-[160px] bg-white"
+          >
+            <option value="">全部状态</option>
+            <option value="draft">草稿</option>
+            <option value="completed">已完成</option>
+          </select>
+          
+          <select 
+            value={dateFilter}
+            onChange={(e) => setDateFilter(e.target.value)}
+            className="input-minimal max-w-[160px] bg-white"
+          >
+            <option value="">全部时间</option>
+            <option value="today">今天</option>
+            <option value="week">本周</option>
+            <option value="month">本月</option>
+          </select>
+        </div>
+
+        {selectedIds.length > 0 && (
+          <div className="flex items-center gap-3 mb-4 p-3 bg-slate-50 border border-border rounded-lg">
+            <span className="text-sm font-semibold text-text-main">已选择 {selectedIds.length} 项</span>
+            <div className="flex-1"></div>
+            <button
+              onClick={exportBulkPDF}
+              className="px-3 py-1.5 text-sm font-medium rounded-lg bg-white border border-border hover:bg-slate-100 transition-colors flex items-center gap-1"
+            >
+              <Printer size={14} /> 批量导出 PDF
+            </button>
+            <button
+              onClick={exportBulkJSON}
+              className="px-3 py-1.5 text-sm font-medium rounded-lg bg-white border border-border hover:bg-slate-100 transition-colors flex items-center gap-1"
+            >
+              <Download size={14} /> 批量导出 JSON
+            </button>
+            <button
+              onClick={handleBulkDelete}
+              className="px-3 py-1.5 text-sm font-medium rounded-lg bg-red-50 text-red-600 hover:bg-red-100 transition-colors"
+            >
+              批量删除
+            </button>
+            <button
+              onClick={() => setSelectedIds([])}
+              className="px-3 py-1.5 text-sm font-medium rounded-lg text-text-muted hover:bg-slate-100 transition-colors"
+            >
+              取消选择
+            </button>
+          </div>
+        )}
+        
+        <div className="card-minimal p-0 overflow-hidden">
+          <div className="overflow-x-auto">
+            <table className="w-full border-collapse">
+              <thead>
+                <tr className="bg-slate-50">
+                  <th className="px-4 py-4 text-left border-b border-border w-10">
+                    <input
+                      type="checkbox"
+                      className="w-4 h-4 rounded border-border text-accent focus:ring-accent"
+                      checked={filteredReports.length > 0 && selectedIds.length === filteredReports.length}
+                      onChange={toggleSelectAll}
+                    />
+                  </th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">报告信息</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">患者</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">住院号</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">创建者</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border w-40">时间</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border w-24">状态</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">操作</th>
+                </tr>
+              </thead>
+              <tbody className="divide-y divide-border">
+                {filteredReports.length > 0 ? (
+                  filteredReports.map((report) => (
+                    <tr key={report.id} className="hover:bg-slate-50 transition-colors group">
+                      <td className="px-4 py-4 border-b border-border">
+                        <input
+                          type="checkbox"
+                          className="w-4 h-4 rounded border-border text-accent focus:ring-accent"
+                          checked={selectedIds.includes(report.id)}
+                          onChange={() => toggleSelect(report.id)}
+                        />
+                      </td>
+                      <td className="px-6 py-4">
+                        <div className="text-sm font-semibold text-text-main">{report.title}</div>
+                        <div className="text-xs text-text-muted font-mono mt-1">{report.id} · V{report.revision || 1}</div>
+                      </td>
+                      <td className="px-6 py-4 text-sm text-text-main">{report.patientName}</td>
+                      <td className="px-6 py-4 text-sm text-text-main">{report.hospitalId}</td>
+                      <td className="px-6 py-4 text-sm text-text-main">{report.authorName}</td>
+                      <td className="px-6 py-4 text-sm text-text-muted leading-relaxed">
+                        <div>创建: {formatDateTime(report.createdAt)}</div>
+                        <div>修改: {formatDateTime(report.updatedAt || report.createdAt)}</div>
+                      </td>
+                      <td className="px-6 py-4">
+                        <span className={`inline-block px-1.5 py-0.5 rounded text-[10px] font-bold ${
+                          report.status === 'draft' 
+                            ? 'bg-amber-100 text-amber-700' 
+                            : 'bg-green-100 text-green-700'
+                        }`}>
+                          {report.status === 'draft' ? '草稿' : '已完成'}
+                        </span>
+                      </td>
+                      <td className="px-6 py-4">
+                        <div className="flex gap-2">
+                          <button 
+                            onClick={() => viewReport(report.id)}
+                            className="p-2 rounded-lg bg-blue-50 text-blue-600 hover:bg-blue-100 transition-colors"
+                            title="查看"
+                          >
+                            <Eye size={16} />
+                          </button>
+                          {canEditReport(currentUser, report, storage.get<User[]>('users', [])) && (
+                            <>
+                              <button 
+                                onClick={() => editReport(report.id)}
+                                className="p-2 rounded-lg bg-slate-100 text-slate-600 hover:bg-slate-200 transition-colors"
+                                title="编辑"
+                              >
+                                <Edit size={16} />
+                              </button>
+                              {canDeleteReport(currentUser, report, storage.get<User[]>('users', [])) && (
+                                <button 
+                                  onClick={() => deleteReport(report.id)}
+                                  className="p-2 rounded-lg bg-red-50 text-red-600 hover:bg-red-100 transition-colors"
+                                  title="删除"
+                                >
+                                  <Trash2 size={16} />
+                                </button>
+                              )}
+                            </>
+                          )}
+                          <button 
+                            onClick={() => openHistory(report)}
+                            className="p-2 rounded-lg bg-amber-50 text-amber-600 hover:bg-amber-100 transition-colors"
+                            title="历史版本"
+                          >
+                            <History size={16} />
+                          </button>
+                          <button
+                            onClick={() => openExportModal(report)}
+                            className="p-2 rounded-lg bg-emerald-50 text-emerald-600 hover:bg-emerald-100 transition-colors"
+                            title="导出"
+                          >
+                            <Download size={16} />
+                          </button>
+                        </div>
+                      </td>
+                    </tr>
+                  ))
+                ) : (
+                  <tr>
+                    <td colSpan={8} className="px-6 py-24 text-center">
+                      <div className="flex flex-col items-center text-text-muted">
+                        <FileText size={48} className="mb-4 opacity-20" />
+                        <h3 className="text-base font-semibold text-text-main mb-1">暂无报告</h3>
+                        <p className="text-sm">点击"新建报告"开始撰写您的第一份报告</p>
+                      </div>
+                    </td>
+                  </tr>
+                )}
+              </tbody>
+            </table>
+          </div>
+        </div>
+      </main>
+
+      {historyModalOpen && historyReport && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-8 w-full max-w-[600px] max-h-[80vh] overflow-y-auto shadow-2xl border border-border">
+            <div className="flex justify-between items-center mb-6">
+              <div>
+                <h3 className="text-xl font-bold text-text-main">操作历史</h3>
+                <p className="text-sm text-text-muted">报告: {historyReport.title}</p>
+              </div>
+              <button 
+                onClick={() => setHistoryModalOpen(false)}
+                className="p-2 rounded-lg hover:bg-slate-100 text-text-muted transition-colors"
+              >
+                <X size={20} />
+              </button>
+            </div>
+            <div className="space-y-3">
+              {[...(historyReport.history || [])].reverse().map((item, idx) => (
+                <div key={idx} className="border border-border rounded-lg p-4 bg-slate-50">
+                  <div className="flex justify-between items-center mb-2">
+                    <span className={`text-xs font-bold uppercase tracking-wider px-2 py-0.5 rounded ${
+                      item.action === 'complete_report' 
+                        ? 'bg-green-100 text-green-700' 
+                        : 'bg-amber-100 text-amber-700'
+                    }`}>
+                      {item.action === 'complete_report' ? '完成报告' : '保存草稿'}
+                    </span>
+                    <span className="text-xs text-text-muted">{formatDateTime(item.updatedAt)}</span>
+                  </div>
+                  <p className="text-sm text-text-main mb-3">由 {item.updatedBy} {item.action === 'complete_report' ? '完成' : '保存'} · V{item.revision || 1}</p>
+                  <button 
+                    onClick={() => restoreHistory(item.content)}
+                    className="text-xs font-bold text-accent hover:underline"
+                  >
+                    恢复此版本
+                  </button>
+                </div>
+              ))}
+              <div className="border border-border rounded-lg p-4 bg-white">
+                <div className="flex justify-between items-center mb-2">
+                  <span className="text-xs font-bold text-accent uppercase tracking-wider">当前版本 V{historyReport.revision || 1}</span>
+                  <span className="text-xs text-text-muted">{formatDateTime(historyReport.updatedAt || historyReport.createdAt)}</span>
+                </div>
+                <p className="text-sm text-text-main">当前显示内容</p>
+              </div>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {exportModalOpen && exportTarget && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <div className="flex justify-between items-center mb-4">
+              <h3 className="text-lg font-bold text-text-main">导出报告</h3>
+              <button 
+                onClick={() => setExportModalOpen(false)}
+                className="p-2 rounded-lg hover:bg-slate-100 text-text-muted transition-colors"
+              >
+                <X size={18} />
+              </button>
+            </div>
+            <p className="text-sm text-text-muted mb-4">选择导出格式：</p>
+            <div className="flex flex-col gap-3">
+              <button
+                onClick={() => { exportSinglePDF(exportTarget); setExportModalOpen(false); }}
+                className="w-full px-4 py-3 rounded-lg bg-slate-50 hover:bg-slate-100 transition-colors flex items-center gap-3"
+              >
+                <Printer size={18} className="text-text-muted" />
+                <div className="text-left">
+                  <div className="text-sm font-semibold text-text-main">导出 PDF</div>
+                  <div className="text-xs text-text-muted">调用浏览器打印并保存为 PDF</div>
+                </div>
+              </button>
+              <button
+                onClick={() => { exportSingleJSON(exportTarget); setExportModalOpen(false); }}
+                className="w-full px-4 py-3 rounded-lg bg-slate-50 hover:bg-slate-100 transition-colors flex items-center gap-3"
+              >
+                <Download size={18} className="text-text-muted" />
+                <div className="text-left">
+                  <div className="text-sm font-semibold text-text-main">导出 JSON</div>
+                  <div className="text-xs text-text-muted">下载结构化字段数据</div>
+                </div>
+              </button>
+            </div>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/src/pages/ReportView.tsx b/src/pages/ReportView.tsx
new file mode 100644
index 0000000..be2d18c
--- /dev/null
+++ b/src/pages/ReportView.tsx
@@ -0,0 +1,145 @@
+import React, { useEffect, useState } from 'react';
+import { useParams, useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { Printer, Edit, ChevronLeft } from 'lucide-react';
+import { User, Report } from '../types';
+import { storage } from '../utils/storage';
+import { canEditReport, canViewReport } from '../utils/permissions';
+import { getReport } from '../api/reports';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+export default function ReportView() {
+  const { id } = useParams();
+  const navigate = useNavigate();
+  const [report, setReport] = useState<Report | null>(null);
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user) {
+      navigate('/');
+      return;
+    }
+    setCurrentUser(user);
+
+    const loadReport = async () => {
+      if (!id) return;
+      try {
+        const apiReport = await getReport(id);
+        setReport(apiReport);
+        const reports = storage.get<Report[]>('reports', []);
+        storage.set('reports', [...reports.filter(r => r.id !== apiReport.id), apiReport]);
+        return;
+      } catch {
+        if (!isLocalFallbackEnabled()) {
+          alert('报告加载失败或无权访问');
+          navigate('/report-manage');
+          return;
+        }
+      }
+
+      const reports = storage.get<Report[]>('reports', []);
+      const found = reports.find(r => r.id === id);
+      
+      if (!found) {
+        alert('报告不存在');
+        navigate('/report-manage');
+        return;
+      }
+
+      const users = storage.get<User[]>('users', []);
+      if (!canViewReport(user, found, users)) {
+        alert('您没有权限查看此报告');
+        navigate('/report-manage');
+        return;
+      }
+
+      setReport(found);
+    };
+
+    void loadReport();
+  }, [id, navigate]);
+
+  if (!report || !currentUser) return null;
+
+  const canEdit = canEditReport(currentUser, report, storage.get<User[]>('users', []));
+
+  return (
+    <div className="flex min-h-screen bg-bg">
+      <Sidebar />
+      
+      <main className="flex-1 p-10 overflow-y-auto">
+        <div className="flex justify-between items-center mb-8 print:hidden">
+          <div className="flex items-center gap-4">
+            <button 
+              onClick={() => navigate('/report-manage')}
+              className="p-2 rounded-lg hover:bg-slate-100 text-text-muted transition-colors"
+            >
+              <ChevronLeft size={24} />
+            </button>
+            <div>
+              <h1 className="text-2xl font-bold tracking-tight text-text-main">查看报告</h1>
+              <p className="text-text-muted text-sm mt-1 uppercase tracking-wider font-bold">报告编号: {report.id}</p>
+              <p className="text-text-muted text-xs mt-1 font-bold">修订版本: V{report.revision || 1}</p>
+            </div>
+          </div>
+          <div className="flex gap-3">
+            {canEdit && (
+              <button 
+                onClick={() => navigate(`/report-editor?id=${report.id}`)}
+                className="px-6 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors inline-flex items-center gap-2"
+              >
+                <Edit size={16} />
+                编辑报告
+              </button>
+            )}
+            <button 
+              onClick={() => window.print()}
+              className="btn-accent inline-flex items-center gap-2"
+            >
+              <Printer size={16} />
+              打印报告
+            </button>
+          </div>
+        </div>
+        
+        <div className="bg-white rounded-2xl shadow-[0_10px_25px_-5px_rgba(0,0,0,0.05)] p-12 max-w-[900px] mx-auto print:shadow-none print:p-0 print:m-0">
+          <div className="text-center pb-10 border-b border-border mb-10">
+            <h2 className="text-3xl font-bold text-text-main mb-6">{report.title}</h2>
+            <div className="flex justify-center gap-8 flex-wrap">
+              <div className="flex flex-col items-center gap-1">
+                <span className="text-[10px] font-bold text-text-muted uppercase tracking-wider">患者姓名</span>
+                <span className="text-sm font-bold text-text-main">{report.patientName}</span>
+              </div>
+              <div className="flex flex-col items-center gap-1">
+                <span className="text-[10px] font-bold text-text-muted uppercase tracking-wider">创建者</span>
+                <span className="text-sm font-bold text-text-main">{report.authorName}</span>
+              </div>
+              <div className="flex flex-col items-center gap-1">
+                <span className="text-[10px] font-bold text-text-muted uppercase tracking-wider">创建时间</span>
+                <span className="text-sm font-bold text-text-main">{report.createdAt}</span>
+              </div>
+              <div className="flex flex-col items-center gap-1">
+                <span className="text-[10px] font-bold text-text-muted uppercase tracking-wider">报告状态</span>
+                <span className={`px-2.5 py-0.5 rounded-full text-[10px] font-bold uppercase tracking-wider ${
+                  report.status === 'draft' ? 'bg-amber-100 text-amber-700' : 'bg-green-100 text-green-700'
+                }`}>
+                  {report.status === 'draft' ? '草稿' : '已完成'}
+                </span>
+              </div>
+              <div className="flex flex-col items-center gap-1">
+                <span className="text-[10px] font-bold text-text-muted uppercase tracking-wider">修订版本</span>
+                <span className="text-sm font-bold text-text-main">V{report.revision || 1}</span>
+              </div>
+            </div>
+          </div>
+          
+          <div 
+            className="report-content leading-relaxed text-text-main text-sm"
+            dangerouslySetInnerHTML={{ __html: report.content }}
+          />
+        </div>
+      </main>
+    </div>
+  );
+}
diff --git a/src/pages/SystemSettings.tsx b/src/pages/SystemSettings.tsx
new file mode 100644
index 0000000..f054d12
--- /dev/null
+++ b/src/pages/SystemSettings.tsx
@@ -0,0 +1,673 @@
+import React, { useEffect, useRef, useState } from 'react';
+import { useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { Video, Globe, Layout, Check, Plus, X } from 'lucide-react';
+import { User, SystemSettings as ISystemSettings, Template, DEFAULT_AI_PROVIDERS, AiProviderConfig } from '../types';
+import { storage } from '../utils/storage';
+import { listTemplates } from '../api/templates';
+import { getSystemSettings, resetSystemSettings, updateSystemSettings } from '../api/settings';
+import { listAiModels } from '../api/ai';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+const normalizeSettings = (
+  input: Partial<ISystemSettings & { frameMode?: 'uniform' | 'keep' }>,
+  templates: Template[],
+): ISystemSettings & { frameMode?: 'uniform' | 'keep' } => {
+  const aiProviders = {
+    ...DEFAULT_AI_PROVIDERS,
+    ...(input.aiProviders || {}),
+  };
+  const framePositions = Array.isArray(input.framePositions) && input.framePositions.length > 0
+    ? [...input.framePositions].sort((a, b) => a - b)
+    : [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85.0, 96.3, 98.6];
+
+  return {
+    frameCount: framePositions.length,
+    framePositions,
+    defaultTemplate: input.defaultTemplate || templates[0]?.id || '',
+    frameMode: input.frameMode || 'keep',
+    activeAiProvider: input.activeAiProvider || 'kimi',
+    aiProviders,
+    autoInsertFrames: typeof input.autoInsertFrames === 'boolean' ? input.autoInsertFrames : false,
+    autoInsertDelay: typeof input.autoInsertDelay === 'number' ? input.autoInsertDelay : 0,
+    autoInsertFrameIndices: input.autoInsertFrameIndices || [],
+    xfSpeechConfig: input.xfSpeechConfig || { appId: '', apiKey: '', apiSecret: '' },
+  };
+};
+
+export default function SystemSettings() {
+  const navigate = useNavigate();
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [settings, setSettings] = useState<ISystemSettings & { frameMode?: 'uniform' | 'keep' }>({
+    frameCount: 12,
+    framePositions: [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85.0, 96.3, 98.6],
+    defaultTemplate: '',
+    frameMode: 'keep',
+    activeAiProvider: 'kimi',
+    aiProviders: { ...DEFAULT_AI_PROVIDERS },
+    xfSpeechConfig: { appId: '', apiKey: '', apiSecret: '' }
+  });
+  const [templates, setTemplates] = useState<Template[]>([]);
+  const [isSaved, setIsSaved] = useState(false);
+  const [pendingFrameCount, setPendingFrameCount] = useState<number | null>(null);
+  const [modeModalOpen, setModeModalOpen] = useState(false);
+  const [availableModels, setAvailableModels] = useState<string[]>([]);
+  const apiKeyInputRef = useRef<HTMLInputElement>(null);
+  const xfAppIdRef = useRef<HTMLInputElement>(null);
+  const xfApiKeyRef = useRef<HTMLInputElement>(null);
+  const xfApiSecretRef = useRef<HTMLInputElement>(null);
+
+  useEffect(() => {
+    if (apiKeyInputRef.current) {
+      const targetValue = settings.aiProviders[settings.activeAiProvider]?.apiKey || '';
+      if (apiKeyInputRef.current.value !== targetValue) {
+        apiKeyInputRef.current.value = targetValue;
+      }
+    }
+  }, [settings.aiProviders[settings.activeAiProvider]?.apiKey]);
+
+  useEffect(() => {
+    if (xfAppIdRef.current) {
+      const target = settings.xfSpeechConfig?.appId || '';
+      if (xfAppIdRef.current.value !== target) xfAppIdRef.current.value = target;
+    }
+    if (xfApiKeyRef.current) {
+      const target = settings.xfSpeechConfig?.apiKey || '';
+      if (xfApiKeyRef.current.value !== target) xfApiKeyRef.current.value = target;
+    }
+    if (xfApiSecretRef.current) {
+      const target = settings.xfSpeechConfig?.apiSecret || '';
+      if (xfApiSecretRef.current.value !== target) xfApiSecretRef.current.value = target;
+    }
+  }, [settings.xfSpeechConfig]);
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user) {
+      navigate('/');
+      return;
+    }
+    setCurrentUser(user);
+
+    const savedSettings = storage.get<ISystemSettings & { frameMode?: 'uniform' | 'keep' }>('systemSettings', {} as ISystemSettings & { frameMode?: 'uniform' | 'keep' });
+    // Migrate old flat fields to new structured format
+    if (!savedSettings.aiProviders) {
+      const providers = { ...DEFAULT_AI_PROVIDERS };
+      if ((savedSettings as any).kimiApiKey || (savedSettings as any).kimiApiEndpoint) {
+        providers.kimi = {
+          endpoint: (savedSettings as any).kimiApiEndpoint || providers.kimi.endpoint,
+          apiKey: (savedSettings as any).kimiApiKey || '',
+          modelName: 'moonshot-v1-32k-vision-preview'
+        };
+      }
+      savedSettings.aiProviders = providers;
+      savedSettings.activeAiProvider = 'kimi';
+      storage.set('systemSettings', savedSettings);
+    }
+    const savedTemplates = storage.get<Template[]>('templates', []);
+    if (savedSettings.frameCount) {
+      if (!savedSettings.defaultTemplate && savedTemplates.length > 0) {
+        savedSettings.defaultTemplate = savedTemplates[0].id;
+      }
+      if (!savedSettings.frameMode) savedSettings.frameMode = 'keep';
+      if (typeof savedSettings.autoInsertFrames !== 'boolean') savedSettings.autoInsertFrames = false;
+      if (typeof savedSettings.autoInsertDelay !== 'number') savedSettings.autoInsertDelay = 0;
+      if (!savedSettings.xfSpeechConfig) savedSettings.xfSpeechConfig = { appId: '', apiKey: '', apiSecret: '' };
+      setSettings(savedSettings);
+    } else if (savedTemplates.length > 0) {
+      setSettings(prev => ({ ...prev, defaultTemplate: savedTemplates[0].id, frameMode: prev.frameMode || 'keep', autoInsertFrames: typeof prev.autoInsertFrames === 'boolean' ? prev.autoInsertFrames : false, autoInsertDelay: typeof prev.autoInsertDelay === 'number' ? prev.autoInsertDelay : 0 }));
+    }
+    setTemplates(savedTemplates);
+    void listTemplates('use').then((response) => {
+      if (response.items.length === 0) return;
+      setTemplates(response.items);
+      storage.set('templates', response.items);
+      if (!savedSettings.defaultTemplate) {
+        setSettings(prev => ({ ...prev, defaultTemplate: response.items[0]?.id || '' }));
+      }
+    }).catch(() => {});
+
+    void getSystemSettings().then((apiSettings) => {
+      const next = normalizeSettings(apiSettings, savedTemplates);
+      setSettings(next);
+      storage.set('systemSettings', next);
+    }).catch(() => {
+      if (!isLocalFallbackEnabled()) {
+        setSettings(normalizeSettings({}, savedTemplates));
+      }
+    });
+  }, [navigate]);
+
+  const round1 = (n: number) => Math.round(n * 10) / 10;
+
+  const computeFramePositions = (count: number, mode: 'uniform' | 'keep', currentPositions: number[]) => {
+    if (mode === 'uniform') {
+      const positions: number[] = [];
+      for (let i = 1; i <= count; i++) {
+        positions.push(round1((100 / (count + 1)) * i));
+      }
+      return positions;
+    }
+    const sorted = [...currentPositions].sort((a, b) => a - b);
+    if (count <= sorted.length) {
+      return sorted.slice(0, count);
+    }
+    const need = count - sorted.length;
+    const last = sorted[sorted.length - 1] || 0;
+    const range = 100 - last;
+    for (let i = 1; i <= need; i++) {
+      sorted.push(round1(last + (range / (need + 1)) * i));
+    }
+    return sorted;
+  };
+
+  const handleSave = async (e: React.FormEvent) => {
+    e.preventDefault();
+    const sortedPositions = [...settings.framePositions].sort((a, b) => a - b);
+    const finalSettings = { ...settings, framePositions: sortedPositions, frameCount: sortedPositions.length };
+    try {
+      const savedSettings = await updateSystemSettings(finalSettings);
+      const normalized = normalizeSettings(savedSettings, templates);
+      storage.set('systemSettings', normalized);
+      setSettings(normalized);
+    } catch (error) {
+      if (!isLocalFallbackEnabled()) {
+        alert(`保存失败: ${(error as Error).message}`);
+        return;
+      }
+      console.warn('Save settings API failed, keeping local compatibility path.', error);
+      storage.set('systemSettings', finalSettings);
+      setSettings(finalSettings);
+    }
+    setIsSaved(true);
+    setTimeout(() => setIsSaved(false), 3000);
+  };
+
+  const testApi = async () => {
+    try {
+      const savedSettings = await updateSystemSettings(settings);
+      const normalized = normalizeSettings(savedSettings, templates);
+      setSettings(normalized);
+      storage.set('systemSettings', normalized);
+      const response = await listAiModels();
+      setAvailableModels(response.models);
+      if (response.models.length > 0 && !normalized.aiProviders[normalized.activeAiProvider]?.modelName) {
+        const next = { ...normalized.aiProviders };
+        next[normalized.activeAiProvider] = { ...next[normalized.activeAiProvider], modelName: response.models[0] };
+        setSettings({ ...normalized, aiProviders: next });
+      }
+      alert(`连接成功！可用模型数: ${response.models.length}`);
+    } catch (e: any) {
+      alert(`连接失败: ${e.message}`);
+      setAvailableModels([]);
+    }
+  };
+
+  const resetToDefault = async () => {
+    if (window.confirm('确定要恢复系统设置出厂设置吗？所有自定义配置将被清除。')) {
+      const defaultSettings: ISystemSettings & { frameMode?: 'uniform' | 'keep' } = {
+        frameCount: 12,
+        framePositions: [7.9, 9.3, 46.2, 49.1, 63.9, 64.8, 68.8, 73.7, 80.2, 85.0, 96.3, 98.6],
+        defaultTemplate: templates[0]?.id || '',
+        frameMode: 'keep',
+        activeAiProvider: 'kimi',
+        aiProviders: { ...DEFAULT_AI_PROVIDERS },
+        autoInsertFrames: true,
+        autoInsertDelay: 1,
+        autoInsertFrameIndices: [0, 2, 4, 6, 8, 10],
+        xfSpeechConfig: { appId: '', apiKey: '', apiSecret: '' }
+      };
+      try {
+        const resetSettings = await resetSystemSettings();
+        const normalized = normalizeSettings(resetSettings, templates);
+        setSettings(normalized);
+        storage.set('systemSettings', normalized);
+      } catch (error) {
+        if (!isLocalFallbackEnabled()) {
+          alert(`重置失败: ${(error as Error).message}`);
+          return;
+        }
+        console.warn('Reset settings API failed, keeping local compatibility path.', error);
+        setSettings(defaultSettings);
+        storage.set('systemSettings', defaultSettings);
+      }
+    }
+  };
+
+  const resetAllData = () => {
+    if (!isLocalFallbackEnabled()) {
+      alert('生产模式下仅允许清理当前浏览器缓存，请联系管理员执行后端数据维护。');
+      return;
+    }
+    if (window.confirm('确定要重置全部数据吗？这将清除所有报告、模板和用户设置。')) {
+      localStorage.clear();
+      window.location.reload();
+    }
+  };
+
+  if (!currentUser) return null;
+
+  return (
+    <div className="flex min-h-screen bg-bg">
+      <Sidebar />
+      
+      <main className="flex-1 p-10 overflow-y-auto">
+        <header className="flex justify-between items-center mb-10">
+          <div>
+            <h1 className="text-2xl font-bold tracking-tight text-text-main">系统设置</h1>
+            <p className="text-text-muted text-sm mt-1">
+              {currentUser.role === 'super' ? '配置全局参数，包括视频抽帧策略与外部 AI API 对接。' : '设置您的默认报告模板。'}
+            </p>
+          </div>
+        </header>
+        
+        <form onSubmit={handleSave} className="max-w-[800px] space-y-8 pb-20">
+          {currentUser.role === 'super' && (
+          <div className="card-minimal">
+            <div className="flex items-center justify-between mb-6">
+              <h3 className="text-lg font-bold text-text-main flex items-center gap-2">
+                <Video size={20} className="text-accent" />
+                视频抽帧配置
+              </h3>
+              <span className="text-[10px] font-bold bg-slate-100 text-text-muted px-2 py-1 rounded-full uppercase tracking-wider">
+                当前共 {settings.framePositions.length} 帧
+              </span>
+            </div>
+            <div className="space-y-8">
+              <div className="grid grid-cols-1 sm:grid-cols-2 gap-4">
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">抽取帧数</label>
+                  <div className="flex gap-2">
+                    <input
+                      type="number"
+                      min={1}
+                      max={100}
+                      value={settings.frameCount}
+                      onChange={(e) => {
+                        const count = Math.max(1, Math.min(100, parseInt(e.target.value) || 1));
+                        setSettings({ ...settings, frameCount: count });
+                      }}
+                      className="input-minimal bg-white"
+                    />
+                    <button
+                      type="button"
+                      onClick={() => {
+                        setPendingFrameCount(settings.frameCount);
+                        setModeModalOpen(true);
+                      }}
+                      className="px-4 py-2 bg-accent text-white rounded-lg text-xs font-semibold hover:bg-blue-700 transition-colors"
+                    >
+                      确认
+                    </button>
+                  </div>
+                </div>
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">当前抽帧方式</label>
+                  <div className="flex items-center h-[42px]">
+                    <span className="text-sm text-text-main">
+                      {settings.frameMode === 'uniform' ? '整体均匀抽取' : '保持当前抽帧'}
+                    </span>
+                  </div>
+                </div>
+              </div>
+
+              <div className="flex items-center gap-2">
+                <input
+                  type="checkbox"
+                  id="autoInsertFrames"
+                  checked={settings.autoInsertFrames || false}
+                  onChange={(e) => setSettings({ ...settings, autoInsertFrames: e.target.checked })}
+                  className="w-4 h-4 accent-accent cursor-pointer"
+                />
+                <label htmlFor="autoInsertFrames" className="text-sm text-text-main cursor-pointer">开启自动帧插入</label>
+              </div>
+
+              <div className="grid grid-cols-1 sm:grid-cols-2 gap-4">
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">自动帧插入延迟 (s)</label>
+                  <input
+                    type="number"
+                    min={0}
+                    step={0.1}
+                    value={settings.autoInsertDelay || 0}
+                    onChange={(e) => setSettings({ ...settings, autoInsertDelay: Math.max(0, parseFloat(e.target.value) || 0) })}
+                    className="input-minimal bg-white w-full"
+                  />
+                </div>
+              </div>
+
+              <p className="text-[11px] text-text-muted">开启后，选中的视频自动抽帧位置将按顺序自动插入到报告的空置图片占位符中，插满后不再提示。</p>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">抽帧位置百分比 (%)</label>
+                <div className="grid grid-cols-2 sm:grid-cols-4 md:grid-cols-6 gap-3">
+                  {settings.framePositions.map((pos, idx) => (
+                    <div key={idx} className="relative group">
+                      <input 
+                        type="number" 
+                        min="0" 
+                        max="100"
+                        step="0.1"
+                        value={pos}
+                        onChange={(e) => {
+                          const newPos = [...settings.framePositions];
+                          newPos[idx] = Math.min(100, Math.max(0, parseFloat(e.target.value) || 0));
+                          setSettings({ ...settings, framePositions: newPos });
+                        }}
+                        className="input-minimal w-full pr-6 text-center"
+                      />
+                      <span className="absolute right-2 top-1/2 -translate-y-1/2 text-[10px] text-text-muted">%</span>
+                      {settings.autoInsertFrames && (
+                        <span
+                          onClick={() => {
+                            const current = settings.autoInsertFrameIndices || [];
+                            const next = current.includes(idx)
+                              ? current.filter(i => i !== idx)
+                              : [...current, idx].sort((a, b) => a - b);
+                            setSettings({ ...settings, autoInsertFrameIndices: next });
+                          }}
+                          className={`absolute top-1 left-1 cursor-pointer transition-colors ${
+                            (settings.autoInsertFrameIndices || []).includes(idx) ? 'text-green-500' : 'text-slate-300'
+                          }`}
+                        >
+                          <Check size={12} />
+                        </span>
+                      )}
+                      <button 
+                        type="button"
+                        onClick={() => {
+                          const newPos = settings.framePositions.filter((_, i) => i !== idx);
+                          const newIndices = (settings.autoInsertFrameIndices || [])
+                            .filter(i => i !== idx)
+                            .map(i => i > idx ? i - 1 : i);
+                          setSettings({ ...settings, framePositions: newPos, frameCount: newPos.length, autoInsertFrameIndices: newIndices });
+                        }}
+                        className="absolute -top-2 -right-2 w-5 h-5 bg-red-500 text-white rounded-full flex items-center justify-center text-[10px] opacity-0 group-hover:opacity-100 transition-all shadow-sm"
+                      >
+                        <X size={10} />
+                      </button>
+                    </div>
+                  ))}
+                  <button 
+                    type="button"
+                    onClick={() => {
+                      const newPos = [...settings.framePositions, 50];
+                      setSettings({ ...settings, framePositions: newPos, frameCount: newPos.length });
+                    }}
+                    className="w-full h-10 rounded-xl border-2 border-dashed border-border flex items-center justify-center text-text-muted hover:border-accent hover:text-accent hover:bg-slate-50 transition-all"
+                  >
+                    <Plus size={18} />
+                  </button>
+                </div>
+                <p className="text-[11px] text-text-muted mt-2">指定视频进度的百分比位置进行自动抽帧。系统将按照这些位置提取关键帧供 AI 分析。</p>
+              </div>
+            </div>
+          </div>
+          )}
+
+          {currentUser.role === 'super' && (
+          <div className="card-minimal">
+            <div className="flex items-center justify-between mb-6">
+              <h3 className="text-lg font-bold text-text-main flex items-center gap-2">
+                <Globe size={20} className="text-accent" />
+                AI 接口集成
+              </h3>
+              <button 
+                type="button"
+                onClick={testApi}
+                className="text-[10px] font-bold text-accent uppercase tracking-wider hover:underline"
+              >
+                测试连接
+              </button>
+            </div>
+            <div className="space-y-6">
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">AI 服务商</label>
+                <select
+                  value={settings.activeAiProvider}
+                  onChange={(e) => setSettings({ ...settings, activeAiProvider: e.target.value })}
+                  className="input-minimal bg-white"
+                >
+                  <option value="kimi">Kimi (Moonshot)</option>
+                  <option value="deepseek">DeepSeek</option>
+                  <option value="openai">OpenAI</option>
+                  <option value="custom">自定义</option>
+                </select>
+              </div>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">接口地址 (Base URL)</label>
+                <input 
+                  type="url" 
+                  value={settings.aiProviders[settings.activeAiProvider]?.endpoint || ''}
+                  onChange={(e) => {
+                    const next = { ...settings.aiProviders };
+                    next[settings.activeAiProvider] = { ...next[settings.activeAiProvider], endpoint: e.target.value };
+                    setSettings({ ...settings, aiProviders: next });
+                  }}
+                  placeholder="https://api.example.com/v1"
+                  className="input-minimal"
+                />
+              </div>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">API 密钥</label>
+                <input 
+                  ref={apiKeyInputRef}
+                  type="password" 
+                  onChange={(e) => {
+                    const next = { ...settings.aiProviders };
+                    next[settings.activeAiProvider] = { ...next[settings.activeAiProvider], apiKey: e.target.value };
+                    setSettings({ ...settings, aiProviders: next });
+                  }}
+                  onCopy={(e) => e.preventDefault()}
+                  onCut={(e) => e.preventDefault()}
+                  placeholder="sk-xxxxxxxxxxxxxxxx"
+                  className="input-minimal"
+                />
+              </div>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">模型名称 (Model Name)</label>
+                {availableModels.length > 0 ? (
+                  <select
+                    value={settings.aiProviders[settings.activeAiProvider]?.modelName || ''}
+                    onChange={(e) => {
+                      const next = { ...settings.aiProviders };
+                      next[settings.activeAiProvider] = { ...next[settings.activeAiProvider], modelName: e.target.value };
+                      setSettings({ ...settings, aiProviders: next });
+                    }}
+                    className="input-minimal bg-white"
+                  >
+                    {availableModels.map(m => (
+                      <option key={m} value={m}>{m}</option>
+                    ))}
+                  </select>
+                ) : (
+                  <input 
+                    type="text" 
+                    value={settings.aiProviders[settings.activeAiProvider]?.modelName || ''}
+                    onChange={(e) => {
+                      const next = { ...settings.aiProviders };
+                      next[settings.activeAiProvider] = { ...next[settings.activeAiProvider], modelName: e.target.value };
+                      setSettings({ ...settings, aiProviders: next });
+                    }}
+                    placeholder="kimi-k2-5"
+                    className="input-minimal"
+                  />
+                )}
+                <p className="text-[11px] text-text-muted">{availableModels.length > 0 ? '已从服务商获取可用模型列表' : '点击"测试连接"成功后，此处可下拉选择模型'}</p>
+              </div>
+            </div>
+          </div>
+          )}
+
+          {currentUser.role === 'super' && (
+          <div className="card-minimal">
+            <div className="flex items-center justify-between mb-6">
+              <h3 className="text-lg font-bold text-text-main flex items-center gap-2">
+                <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round" className="text-accent"><path d="M12 2a3 3 0 0 0-3 3v7a3 3 0 0 0 6 0V5a3 3 0 0 0-3-3Z"/><path d="M19 10v2a7 7 0 0 1-14 0v-2"/><line x1="12" x2="12" y1="19" y2="22"/></svg>
+                讯飞语音听写Websocket接口配置
+              </h3>
+            </div>
+            <div className="space-y-6">
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">APPID</label>
+                <input 
+                  ref={xfAppIdRef}
+                  type="password" 
+                  onChange={(e) => {
+                    const next = { ...(settings.xfSpeechConfig || { appId: '', apiKey: '', apiSecret: '' }), appId: e.target.value };
+                    setSettings({ ...settings, xfSpeechConfig: next });
+                  }}
+                  onCopy={(e) => e.preventDefault()}
+                  onCut={(e) => e.preventDefault()}
+                  autoComplete="new-password"
+                  placeholder="********"
+                  className="input-minimal"
+                />
+              </div>
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">APIKey</label>
+                <input 
+                  ref={xfApiKeyRef}
+                  type="password" 
+                  onChange={(e) => {
+                    const next = { ...(settings.xfSpeechConfig || { appId: '', apiKey: '', apiSecret: '' }), apiKey: e.target.value };
+                    setSettings({ ...settings, xfSpeechConfig: next });
+                  }}
+                  onCopy={(e) => e.preventDefault()}
+                  onCut={(e) => e.preventDefault()}
+                  autoComplete="new-password"
+                  placeholder="********************************"
+                  className="input-minimal"
+                />
+              </div>
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">APISecret</label>
+                <input 
+                  ref={xfApiSecretRef}
+                  type="password" 
+                  onChange={(e) => {
+                    const next = { ...(settings.xfSpeechConfig || { appId: '', apiKey: '', apiSecret: '' }), apiSecret: e.target.value };
+                    setSettings({ ...settings, xfSpeechConfig: next });
+                  }}
+                  onCopy={(e) => e.preventDefault()}
+                  onCut={(e) => e.preventDefault()}
+                  autoComplete="new-password"
+                  placeholder="********************************"
+                  className="input-minimal"
+                />
+              </div>
+            </div>
+          </div>
+          )}
+
+          <div className="card-minimal">
+            <h3 className="text-lg font-bold text-text-main mb-6 flex items-center gap-2">
+              <Layout size={20} className="text-accent" />
+              默认报告模板
+            </h3>
+            <div className="space-y-1.5">
+              <label className="block text-xs font-bold text-text-main uppercase tracking-wider">图文报告生成默认模板</label>
+              <select 
+                value={settings.defaultTemplate}
+                onChange={(e) => setSettings({ ...settings, defaultTemplate: e.target.value })}
+                className="input-minimal bg-white"
+              >
+                <option value="">未设置 (手动选择)</option>
+                {templates.map(tpl => (
+                  <option key={tpl.id} value={tpl.id}>{tpl.name}</option>
+                ))}
+              </select>
+              <p className="text-[11px] text-text-muted">新建报告时将自动加载此模板内容，减少重复操作。</p>
+            </div>
+          </div>
+
+          <div className="flex items-center justify-between pt-6 border-t border-border">
+            {currentUser.role === 'super' && (
+              <div className="flex flex-col items-start gap-2">
+                <button
+                  type="button"
+                  onClick={resetToDefault}
+                  className="text-xs font-bold text-red-500 hover:text-red-600 transition-colors uppercase tracking-wider"
+                >
+                  恢复系统设置出厂设置
+                </button>
+                <button
+                  type="button"
+                  onClick={resetAllData}
+                  className="text-xs font-bold text-red-500 hover:text-red-600 transition-colors uppercase tracking-wider"
+                >
+                  重置全部数据
+                </button>
+              </div>
+            )}
+            <div className="flex items-center gap-4">
+              {isSaved && (
+                <span className="text-xs text-green-600 font-bold flex items-center gap-1">
+                  <Check size={14} />
+                  设置已保存
+                </span>
+              )}
+              <button 
+                type="submit" 
+                className="btn-accent px-12"
+              >
+                保存全局配置
+              </button>
+            </div>
+          </div>
+        </form>
+
+        {modeModalOpen && (
+          <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+            <div className="bg-white rounded-2xl p-8 w-full max-w-[420px] shadow-2xl border border-border">
+              <h3 className="text-lg font-bold text-text-main mb-2">选择抽帧方式</h3>
+              <p className="text-sm text-text-muted mb-6">
+                您将抽取帧数设置为 <strong className="text-accent">{pendingFrameCount}</strong> 帧，请选择重新计算抽帧位置的方式：
+              </p>
+              <div className="grid grid-cols-2 gap-3 mb-6">
+                <button
+                  type="button"
+                  onClick={() => {
+                    if (pendingFrameCount !== null) {
+                      const newPositions = computeFramePositions(pendingFrameCount, 'uniform', settings.framePositions);
+                      setSettings({ ...settings, frameCount: pendingFrameCount, frameMode: 'uniform', framePositions: newPositions });
+                    }
+                    setModeModalOpen(false);
+                    setPendingFrameCount(null);
+                  }}
+                  className="px-4 py-3 border border-border rounded-xl text-sm font-semibold text-text-main hover:border-accent hover:bg-slate-50 transition-colors"
+                >
+                  整体均匀抽取
+                </button>
+                <button
+                  type="button"
+                  onClick={() => {
+                    if (pendingFrameCount !== null) {
+                      const newPositions = computeFramePositions(pendingFrameCount, 'keep', settings.framePositions);
+                      setSettings({ ...settings, frameCount: pendingFrameCount, frameMode: 'keep', framePositions: newPositions });
+                    }
+                    setModeModalOpen(false);
+                    setPendingFrameCount(null);
+                  }}
+                  className="px-4 py-3 border border-border rounded-xl text-sm font-semibold text-text-main hover:border-accent hover:bg-slate-50 transition-colors"
+                >
+                  保持当前抽帧
+                </button>
+              </div>
+              <button
+                type="button"
+                onClick={() => { setModeModalOpen(false); setPendingFrameCount(null); }}
+                className="w-full px-4 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors"
+              >
+                取消
+              </button>
+            </div>
+          </div>
+        )}
+      </main>
+    </div>
+  );
+}
diff --git a/src/pages/TemplateManage.tsx b/src/pages/TemplateManage.tsx
new file mode 100644
index 0000000..58d39f1
--- /dev/null
+++ b/src/pages/TemplateManage.tsx
@@ -0,0 +1,1820 @@
+import React, { useEffect, useState, useRef } from 'react';
+import { useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { Plus, Edit, Trash2, Save, Printer, Undo, Redo, Bold, Italic, Underline, AlignLeft, AlignCenter, AlignRight, Table, Image as ImageIcon, Bot, Check, Download, Upload } from 'lucide-react';
+import { User, Template, FormField, FieldType, DEFAULT_FORM_FIELDS } from '../types';
+import { defaultReportContent } from '../utils/defaultContent';
+import { printDocument } from '../utils/print';
+import { storage } from '../utils/storage';
+import { getManageableTemplates } from '../utils/permissions';
+import { createTemplate, deleteTemplateFromApi, listTemplates, updateTemplate } from '../api/templates';
+import { getFieldLibrary, updateFieldLibrary } from '../api/library';
+import { deleteFileResource, listFiles, uploadFileResource } from '../api/files';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+export default function TemplateManage() {
+  const navigate = useNavigate();
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [templates, setTemplates] = useState<Template[]>([]);
+  const [currentTemplateId, setCurrentTemplateId] = useState<string | null>(null);
+  const [isModalOpen, setIsModalOpen] = useState(false);
+  const [exportModalOpen, setExportModalOpen] = useState(false);
+  const [isEditing, setIsEditing] = useState(false);
+  const [formData, setFormData] = useState({ name: '', desc: '' });
+  const [importedContent, setImportedContent] = useState<{content: string; fields: FormField[]} | null>(null);
+  const fileInputRef = useRef<HTMLInputElement>(null);
+  const [isSaved, setIsSaved] = useState(false);
+  const editorRef = useRef<HTMLDivElement>(null);
+  const savedRangeRef = useRef<Range | null>(null);
+  const undoStack = useRef<string[]>([]);
+  const redoStack = useRef<string[]>([]);
+  const [fieldLibTab, setFieldLibTab] = useState<'insert' | 'manage'>('insert');
+  const [formFields, setFormFields] = useState<FormField[]>([]);
+  const [newFieldForm, setNewFieldForm] = useState({ label: '', category: '填空', type: 'text' as FieldType });
+  const [newFieldOptions, setNewFieldOptions] = useState('');
+  const [expandedCategories, setExpandedCategories] = useState<string[]>(['填空', '单选', '多选', '时间']);
+  const [imagePickerOpen, setImagePickerOpen] = useState(false);
+  const [imagePickerTarget, setImagePickerTarget] = useState<HTMLElement | null>(null);
+  const [activeFieldKey, setActiveFieldKey] = useState<string | null>(null);
+  const [editingFieldKey, setEditingFieldKey] = useState<string | null>(null);
+  const [editFieldLabel, setEditFieldLabel] = useState('');
+  const [editFieldOptions, setEditFieldOptions] = useState('');
+  const [editFieldTimeFormat, setEditFieldTimeFormat] = useState('');
+  const [editFieldTimeDefault, setEditFieldTimeDefault] = useState<'current' | 'specific'>('specific');
+  const [editFieldFixedTimeValue, setEditFieldFixedTimeValue] = useState('');
+  const [editFieldHasUnderline, setEditFieldHasUnderline] = useState(false);
+  const [newFieldTimeFormat, setNewFieldTimeFormat] = useState('YYYY年MM月DD日');
+  const [newFieldTimeDefault, setNewFieldTimeDefault] = useState<'current' | 'specific'>('specific');
+  const [newFieldFixedTimeValue, setNewFieldFixedTimeValue] = useState('');
+  const [newFieldHasUnderline, setNewFieldHasUnderline] = useState(false);
+  const [customTimeFormats, setCustomTimeFormats] = useState<string[]>([]);
+  const [formatDropdownOpen, setFormatDropdownOpen] = useState(false);
+  const [newFormatDropdownOpen, setNewFormatDropdownOpen] = useState(false);
+  const [placeholderModal, setPlaceholderModal] = useState({
+    isOpen: false, width: '200', height: '200', mode: 'frame' as 'frame' | 'manual'
+  });
+  const [tableModal, setTableModal] = useState({
+    isOpen: false, rows: '2', cols: '3'
+  });
+  const [imageAssets, setImageAssets] = useState<{ id: string; name: string; dataUrl: string }[]>([]);
+  const [selectedIds, setSelectedIds] = useState<string[]>([]);
+
+  const updatePageHeight = () => {
+    if (!editorRef.current) return;
+    const contentHeight = editorRef.current.scrollHeight;
+    const pageHeightMm = 297;
+    const mmToPx = 3.7795275591;
+    const pages = Math.max(2, Math.ceil(contentHeight / (pageHeightMm * mmToPx)));
+    editorRef.current.style.minHeight = `${pages * pageHeightMm}mm`;
+  };
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user || user.role === 'user') {
+      navigate('/dashboard');
+      return;
+    }
+    setCurrentUser(user);
+
+    const savedFields = storage.get<FormField[]>('formFieldsConfig', []);
+    if (savedFields.length > 0) {
+      setFormFields(savedFields);
+    } else {
+      setFormFields(DEFAULT_FORM_FIELDS);
+      storage.set('formFieldsConfig', DEFAULT_FORM_FIELDS);
+    }
+
+    const savedAssets = storage.get<{ id: string; name: string; dataUrl: string }[]>('imageAssets', []);
+    if (savedAssets.length > 0) {
+      setImageAssets(savedAssets);
+    } else {
+      fetch('/logo_square.png')
+        .then((res) => res.blob())
+        .then((blob) => {
+          const reader = new FileReader();
+          reader.onloadend = () => {
+            const dataUrl = reader.result as string;
+            const initialAssets = [{ id: 'asset_logo', name: '医院Logo', dataUrl }];
+            setImageAssets(initialAssets);
+            storage.set('imageAssets', initialAssets);
+          };
+          reader.readAsDataURL(blob);
+        })
+        .catch(() => setImageAssets([]));
+    }
+
+    const savedFormats = storage.get<string[]>('customTimeFormats', []);
+    const defaultFormats = ['YYYY-MM-DD', 'YYYY年MM月DD日', 'MM-DD', 'MM月DD日', 'HH:mm', 'hh:mm A'];
+    const cleanedSaved = savedFormats.filter(f => f !== '24h' && f !== '12h');
+    setCustomTimeFormats(Array.from(new Set([...defaultFormats, ...cleanedSaved])));
+
+    void getFieldLibrary().then((library) => {
+      if (library.formFields.length > 0) {
+        setFormFields(library.formFields);
+        storage.set('formFieldsConfig', library.formFields);
+      }
+      setCustomTimeFormats(Array.from(new Set([...defaultFormats, ...library.customTimeFormats])));
+    }).catch(() => {});
+
+    void listFiles('TEMPLATE_ASSET').then((files) => {
+      if (files.length === 0) return;
+      const assets = files.map((file) => ({ id: file.id, name: file.filename, dataUrl: file.url }));
+      setImageAssets(assets);
+      storage.set('imageAssets', assets);
+    }).catch(() => {});
+
+    const loadTemplates = async () => {
+      const savedTemplates = storage.get<Template[]>('templates', []);
+      try {
+        const response = await listTemplates('manage');
+        if (response.items.length > 0) {
+          setTemplates(response.items);
+          storage.set('templates', response.items);
+          setCurrentTemplateId(response.items[0]?.id || null);
+          return;
+        }
+      } catch {
+        if (!isLocalFallbackEnabled()) return;
+      }
+
+      if (!isLocalFallbackEnabled()) return;
+      if (savedTemplates.length === 0) {
+      const initial: Template = {
+        id: 'surgery',
+        name: '腹腔镜胆囊切除术报告',
+        desc: '标准手术记录模板',
+        content: defaultReportContent,
+        createdAt: new Date().toISOString(),
+        author: 'admin',
+        scope: 'department',
+        department: '外科'
+      };
+      setTemplates([initial]);
+      storage.set('templates', [initial]);
+      setCurrentTemplateId(initial.id);
+      } else {
+      const filtered = getManageableTemplates(user, savedTemplates);
+      setTemplates(filtered);
+      setCurrentTemplateId(filtered[0]?.id || null);
+      }
+    };
+
+    void loadTemplates();
+  }, [navigate]);
+
+  const persistFieldLibrary = (next: Partial<{
+    formFields: FormField[];
+    customTimeFormats: string[];
+  }>) => {
+    void updateFieldLibrary({
+      formFields,
+      customTimeFormats,
+      multiSelectOptions: {},
+      anesthesiaOptions: [],
+      ...next,
+    }).catch(() => {});
+  };
+
+  useEffect(() => {
+    if (currentTemplateId && editorRef.current) {
+      const template = templates.find(t => t.id === currentTemplateId);
+      if (template) {
+        editorRef.current.innerHTML = template.content;
+        if (template.fields && template.fields.length > 0) {
+          setFormFields(template.fields);
+          storage.set('formFieldsConfig', template.fields);
+        }
+      }
+      setTimeout(() => updatePageHeight(), 0);
+    }
+  }, [currentTemplateId, templates]);
+
+  useEffect(() => {
+    if (!editorRef.current) return;
+    const observer = new MutationObserver(() => {
+      updatePageHeight();
+    });
+    observer.observe(editorRef.current, { childList: true, subtree: true, attributes: true, characterData: true });
+    return () => observer.disconnect();
+  }, [currentUser]);
+
+  const fillPlaceholderSrc = (placeholder: HTMLElement, src: string) => {
+    const mw = placeholder.style.maxWidth || placeholder.style.width || '200px';
+    const mh = placeholder.style.maxHeight || placeholder.style.height || '200px';
+    placeholder.innerHTML = `
+      <span class="delete-btn" contenteditable="false">×</span>
+      <img src="${src}" style="max-width:${mw};max-height:${mh};display:block;object-fit:contain;object-position:left top;" draggable="false">
+    `;
+    placeholder.classList.add('has-image');
+    placeholder.style.border = 'none';
+    placeholder.style.background = 'transparent';
+    placeholder.style.width = 'auto';
+    placeholder.style.height = 'auto';
+    placeholder.style.lineHeight = 'normal';
+    placeholder.style.maxWidth = mw;
+    placeholder.style.maxHeight = mh;
+    placeholder.style.textAlign = 'left';
+    placeholder.style.verticalAlign = 'top';
+    placeholder.style.justifyContent = 'flex-start';
+    placeholder.style.alignItems = 'flex-start';
+    saveTemplateContent();
+  };
+
+  // Handle image placeholder and smart field delete interactions via click capture
+  useEffect(() => {
+    const handleEditorClick = (e: MouseEvent) => {
+      let node: Node | null = e.target as Node;
+      if (node.nodeType === Node.TEXT_NODE) node = node.parentElement;
+      const targetEl = node as HTMLElement | null;
+      if (!targetEl) return;
+
+      const smartField = targetEl.closest('.smart-field-wrapper') as HTMLElement | null;
+      if (smartField && targetEl.closest('.delete-btn')) {
+        e.stopPropagation();
+        e.preventDefault();
+        pushHistory();
+        const sel = window.getSelection();
+        const range = document.createRange();
+        range.selectNode(smartField);
+        sel?.removeAllRanges();
+        sel?.addRange(range);
+        document.execCommand('delete');
+        saveTemplateContent();
+        return;
+      }
+
+      if (smartField) {
+        const valueSpan = smartField.querySelector('.field-value');
+        const fieldKey = valueSpan?.getAttribute('data-bind') || smartField.getAttribute('data-bind');
+        if (fieldKey) {
+          setActiveFieldKey(fieldKey);
+          const field = formFields.find(f => f.key === fieldKey);
+          if (field) {
+            setExpandedCategories(prev => prev.includes(field.category) ? prev : [...prev, field.category]);
+            setTimeout(() => {
+              const el = document.getElementById(`sidebar-field-${fieldKey}`);
+              el?.scrollIntoView({ behavior: 'smooth', block: 'center' });
+            }, 50);
+          }
+        }
+        return;
+      }
+
+      const placeholder = targetEl.closest('.image-placeholder') as HTMLElement | null;
+      if (!placeholder) return;
+
+      if (targetEl.closest('.delete-btn')) {
+        e.stopPropagation();
+        e.preventDefault();
+        pushHistory();
+        if (placeholder.classList.contains('has-image')) {
+          placeholder.classList.remove('has-image');
+          const w = parseInt(placeholder.style.maxWidth || placeholder.style.width || '0');
+          const text = w > 0 && w < 80 ? '插图' : '插入/点击放置图片';
+          placeholder.innerHTML = `
+            <span class="delete-btn" contenteditable="false">×</span>
+            <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%,-50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${text}</span>
+          `;
+          placeholder.style.border = '1px dashed #cbd5e1';
+          placeholder.style.background = '#f8fafc';
+          const mw = placeholder.style.maxWidth;
+          const mh = placeholder.style.maxHeight;
+          if (mw) placeholder.style.width = mw;
+          if (mh) {
+            placeholder.style.height = mh;
+            placeholder.style.lineHeight = mh;
+          }
+          placeholder.style.textAlign = 'center';
+          placeholder.style.verticalAlign = 'middle';
+          placeholder.style.justifyContent = 'center';
+          placeholder.style.alignItems = 'center';
+        } else {
+          const range = document.createRange();
+          range.selectNode(placeholder);
+          const sel = window.getSelection();
+          sel?.removeAllRanges();
+          sel?.addRange(range);
+          document.execCommand('delete');
+        }
+        return;
+      }
+
+      if (!placeholder.classList.contains('has-image')) {
+        e.preventDefault();
+        e.stopPropagation();
+        setImagePickerTarget(placeholder);
+        setImagePickerOpen(true);
+      }
+    };
+
+    const editor = editorRef.current;
+    if (editor) {
+      editor.addEventListener('click', handleEditorClick, true);
+    }
+    return () => {
+      if (editor) {
+        editor.removeEventListener('click', handleEditorClick, true);
+      }
+    };
+  }, [currentTemplateId, currentUser, formFields]);
+
+  // Intercept Backspace/Delete next to smart fields to avoid whole-line deletion
+  useEffect(() => {
+    const editor = editorRef.current;
+    if (!editor) return;
+
+    const handleKeyDown = (e: KeyboardEvent) => {
+      if ((e.ctrlKey || e.metaKey) && e.key.toLowerCase() === 'z') {
+        e.preventDefault();
+        if (e.shiftKey) {
+          handleRedo();
+        } else {
+          handleUndo();
+        }
+        return;
+      }
+      if ((e.ctrlKey || e.metaKey) && e.key.toLowerCase() === 'y') {
+        e.preventDefault();
+        handleRedo();
+        return;
+      }
+      if (e.key !== 'Backspace' && e.key !== 'Delete') return;
+      const sel = window.getSelection();
+      if (!sel || !sel.isCollapsed || sel.rangeCount === 0) return;
+      const range = sel.getRangeAt(0);
+      const node = range.startContainer;
+      const offset = range.startOffset;
+
+      let target: Element | null = null;
+
+      if (node.nodeType === Node.TEXT_NODE) {
+        if (e.key === 'Backspace' && offset === 0) {
+          const prev = node.previousSibling;
+          if (prev && prev.nodeType === Node.ELEMENT_NODE && (prev as Element).classList?.contains('smart-field-wrapper')) {
+            target = prev as Element;
+          }
+        } else if (e.key === 'Delete' && offset === (node.textContent?.length || 0)) {
+          const next = node.nextSibling;
+          if (next && next.nodeType === Node.ELEMENT_NODE && (next as Element).classList?.contains('smart-field-wrapper')) {
+            target = next as Element;
+          }
+        }
+      } else if (node.nodeType === Node.ELEMENT_NODE) {
+        const el = node as Element;
+        if (e.key === 'Backspace' && offset > 0) {
+          const prev = el.childNodes[offset - 1];
+          if (prev && prev.nodeType === Node.ELEMENT_NODE && (prev as Element).classList?.contains('smart-field-wrapper')) {
+            target = prev as Element;
+          }
+        } else if (e.key === 'Delete' && offset < el.childNodes.length) {
+          const next = el.childNodes[offset];
+          if (next && next.nodeType === Node.ELEMENT_NODE && (next as Element).classList?.contains('smart-field-wrapper')) {
+            target = next as Element;
+          }
+        }
+      }
+
+      if (target) {
+        e.preventDefault();
+        pushHistory();
+        const sel = window.getSelection();
+        const range = document.createRange();
+        range.selectNode(target);
+        sel?.removeAllRanges();
+        sel?.addRange(range);
+        document.execCommand('delete');
+        saveTemplateContent();
+      }
+    };
+
+    editor.addEventListener('keydown', handleKeyDown, true);
+    return () => {
+      editor.removeEventListener('keydown', handleKeyDown, true);
+    };
+  }, [currentTemplateId]);
+
+  const saveSelection = () => {
+    const sel = window.getSelection();
+    if (sel && sel.rangeCount > 0) {
+      savedRangeRef.current = sel.getRangeAt(0);
+    }
+  };
+
+  const restoreSelection = () => {
+    if (!savedRangeRef.current) return;
+    const sel = window.getSelection();
+    sel?.removeAllRanges();
+    sel?.addRange(savedRangeRef.current);
+  };
+
+  const pushHistory = () => {
+    if (!editorRef.current) return;
+    undoStack.current.push(editorRef.current.innerHTML);
+    redoStack.current = [];
+  };
+
+  const handleUndo = () => {
+    if (undoStack.current.length === 0 || !editorRef.current) return;
+    redoStack.current.push(editorRef.current.innerHTML);
+    const prev = undoStack.current.pop();
+    if (prev !== undefined) {
+      editorRef.current.innerHTML = prev;
+      saveTemplateContent();
+    }
+  };
+
+  const handleRedo = () => {
+    if (redoStack.current.length === 0 || !editorRef.current) return;
+    undoStack.current.push(editorRef.current.innerHTML);
+    const next = redoStack.current.pop();
+    if (next !== undefined) {
+      editorRef.current.innerHTML = next;
+      saveTemplateContent();
+    }
+  };
+
+  const execCmd = (command: string, value: string | undefined = undefined) => {
+    if (command !== 'undo' && command !== 'redo') {
+      pushHistory();
+    }
+    editorRef.current?.focus();
+    document.execCommand(command, false, value);
+    editorRef.current?.focus();
+  };
+
+  const changeLineHeight = (height: string) => {
+    const sel = window.getSelection();
+    if (!sel || !sel.rangeCount) return;
+    let node = sel.getRangeAt(0).commonAncestorContainer;
+    if (node.nodeType === Node.TEXT_NODE) node = node.parentNode as Node;
+    const block = (node as HTMLElement).closest('p, div, td, h1, h2, h3, li');
+    if (block) {
+      (block as HTMLElement).style.lineHeight = height;
+      saveTemplateContent();
+    }
+  };
+
+  const changeAlignment = (align: 'left' | 'center' | 'right' | 'justify') => {
+    const sel = window.getSelection();
+    if (!sel || !sel.rangeCount) return;
+    let node = sel.getRangeAt(0).commonAncestorContainer;
+    if (node.nodeType === Node.TEXT_NODE) node = node.parentNode as Node;
+    const block = (node as HTMLElement).closest('p, div, td, h1, h2, h3, li');
+    if (block) {
+      (block as HTMLElement).style.textAlign = align;
+      saveTemplateContent();
+    }
+  };
+
+  const saveTemplateContent = () => {
+    if (!currentTemplateId || !editorRef.current) return;
+    let cleanContent = editorRef.current.innerHTML;
+    cleanContent = cleanContent.replace(/<p>\s*<br\s*\/?>\s*<\/p>/gi, '');
+    cleanContent = cleanContent.replace(/<p><\/p>/gi, '');
+    cleanContent = cleanContent.replace(/>(\s+)</g, '><');
+    if (cleanContent !== editorRef.current.innerHTML) {
+      editorRef.current.innerHTML = cleanContent;
+    }
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const updated = allTemplates.map(t =>
+      t.id === currentTemplateId ? { ...t, content: cleanContent, updatedAt: new Date().toISOString() } : t
+    );
+    const currentUpdated = updated.find(t => t.id === currentTemplateId);
+    setTemplates(prevTemplates => prevTemplates.map(t => updated.find(u => u.id === t.id) || t));
+    storage.set('templates', updated);
+    if (currentUpdated) {
+      void updateTemplate(currentTemplateId, currentUpdated).catch(() => {});
+    }
+  };
+
+  const insertSmartField = (field: FormField) => {
+    editorRef.current?.focus();
+    restoreSelection();
+    if (editorRef.current?.querySelector(`[data-bind="${field.key}"]`)) {
+      alert(`字段 "${field.label}" 已存在，请勿重复插入。`);
+      return;
+    }
+    pushHistory();
+
+    const underlineClass = field.hasUnderline !== true ? ' no-underline' : '';
+    const html = `<span class="smart-field-wrapper" contenteditable="false" style="white-space:nowrap;position:relative;"><span class="field-value${underlineClass}" data-bind="${field.key}" contenteditable="true" style="min-width:32px;padding:0 4px;margin:0 2px;border:1px solid #cbd5e1;border-radius:2px;display:inline-block;background:#f8fafc;color:#0f172a;line-height:1.2;font-size:inherit;vertical-align:text-bottom;box-sizing:border-box;min-height:1.2em;outline:none;"> </span><span class="delete-btn" contenteditable="false">×</span></span>&#8203;`;
+
+    const sel = window.getSelection();
+    if (sel && sel.rangeCount > 0) {
+      const range = sel.getRangeAt(0);
+      range.deleteContents();
+      const wrapper = document.createElement('div');
+      wrapper.innerHTML = html;
+      const fragment = document.createDocumentFragment();
+      while (wrapper.firstChild) {
+        fragment.appendChild(wrapper.firstChild);
+      }
+      range.insertNode(fragment);
+
+      const lastNode = fragment.lastChild;
+      if (lastNode) {
+        const newRange = document.createRange();
+        newRange.setStartAfter(lastNode);
+        newRange.collapse(true);
+        sel.removeAllRanges();
+        sel.addRange(newRange);
+      }
+    }
+
+    editorRef.current?.focus();
+    saveTemplateContent();
+  };
+
+  const highlightField = (key: string, active: boolean) => {
+    if (!editorRef.current) return;
+    const el = editorRef.current.querySelector(`[data-bind="${key}"]`) as HTMLElement | null;
+    if (!el) return;
+    if (active) {
+      el.style.transition = 'all 0.2s';
+      el.style.boxShadow = '0 0 0 2px #3b82f6';
+      el.style.backgroundColor = '#e0f2fe';
+    } else {
+      el.style.boxShadow = '';
+      el.style.backgroundColor = '';
+    }
+  };
+
+  const toggleFieldVisible = (key: string) => {
+    const updated = formFields.map(f => f.key === key ? { ...f, visibleInForm: !f.visibleInForm } : f);
+    setFormFields(updated);
+    storage.set('formFieldsConfig', updated);
+    persistFieldLibrary({ formFields: updated });
+  };
+
+  const deleteField = (key: string) => {
+    const updated = formFields.filter(f => f.key !== key);
+    setFormFields(updated);
+    storage.set('formFieldsConfig', updated);
+    persistFieldLibrary({ formFields: updated });
+  };
+
+  const saveFieldEdit = (key: string) => {
+    const updated = formFields.map(f => {
+      if (f.key !== key) return f;
+      const next: FormField = { ...f };
+      if (!f.isSystemLocked) {
+        next.label = editFieldLabel.trim() || f.label;
+      }
+      if (['单选', '多选', '图片'].includes(f.category)) {
+        next.options = editFieldOptions.split(/[,，]/).map(s => s.trim()).filter(Boolean);
+      }
+      if (f.category === '时间') {
+        next.timeFormat = editFieldTimeFormat;
+        next.timeDefault = editFieldTimeDefault;
+        next.fixedTimeValue = editFieldFixedTimeValue;
+      }
+      next.hasUnderline = editFieldHasUnderline;
+      return next;
+    });
+    setFormFields(updated);
+    storage.set('formFieldsConfig', updated);
+    persistFieldLibrary({ formFields: updated });
+    setEditingFieldKey(null);
+
+    // 同步更新编辑器中已插入字段的 classList
+    if (editorRef.current) {
+      const els = editorRef.current.querySelectorAll(`.field-value[data-bind="${key}"]`);
+      els.forEach(el => {
+        if (editFieldHasUnderline) {
+          el.classList.remove('no-underline');
+        } else {
+          el.classList.add('no-underline');
+        }
+      });
+      saveTemplateContent();
+    }
+  };
+
+  const addField = () => {
+    if (!newFieldForm.label.trim()) return;
+    const key = 'custom_' + Date.now();
+    const newField: FormField = {
+      key,
+      label: newFieldForm.label.trim(),
+      category: newFieldForm.category,
+      type: newFieldForm.type,
+      visibleInForm: true,
+      isSystemLocked: false,
+      hasUnderline: newFieldHasUnderline,
+      options: ['单选', '多选'].includes(newFieldForm.category) && newFieldOptions.trim()
+        ? newFieldOptions.split(/[,，]/).map(s => s.trim()).filter(Boolean)
+        : undefined
+    };
+    if (newFieldForm.category === '时间') {
+      newField.timeFormat = newFieldTimeFormat;
+      newField.timeDefault = newFieldTimeDefault;
+      newField.fixedTimeValue = newFieldFixedTimeValue;
+    }
+    const updated = [...formFields, newField];
+    setFormFields(updated);
+    storage.set('formFieldsConfig', updated);
+    persistFieldLibrary({ formFields: updated });
+    setNewFieldForm({ label: '', category: '填空', type: 'text' });
+    setNewFieldOptions('');
+    setNewFieldTimeFormat('YYYY年MM月DD日');
+    setNewFieldTimeDefault('specific');
+    setNewFieldFixedTimeValue('');
+    setNewFieldHasUnderline(true);
+  };
+
+  const handleAssetUpload = (e: React.ChangeEvent<HTMLInputElement>) => {
+    const file = e.target.files?.[0];
+    if (!file) return;
+    const reader = new FileReader();
+    reader.onload = async (event) => {
+      const dataUrl = event.target?.result as string;
+      let asset = { id: 'asset_' + Date.now(), name: file.name, dataUrl };
+      try {
+        const uploaded = await uploadFileResource(dataUrl, { kind: 'TEMPLATE_ASSET', filename: file.name });
+        asset = { id: uploaded.id, name: uploaded.filename, dataUrl: uploaded.url };
+      } catch {
+        // Keep local asset upload available while API is unavailable.
+      }
+      const updated = [...imageAssets, asset];
+      setImageAssets(updated);
+      storage.set('imageAssets', updated);
+    };
+    reader.readAsDataURL(file);
+    e.target.value = '';
+  };
+
+  const insertTable = () => {
+    editorRef.current?.focus();
+    restoreSelection();
+    pushHistory();
+    setTableModal({ isOpen: true, rows: '2', cols: '3' });
+  };
+
+  const insertImage = () => {
+    editorRef.current?.focus();
+    restoreSelection();
+    pushHistory();
+    setPlaceholderModal({ isOpen: true, width: '200', height: '200', mode: 'frame' });
+  };
+
+  const insertAiRegion = () => {
+    const name = window.prompt('请输入 AI 可编辑区域的名称（如：手术步骤、病灶描述）：');
+    if (!name || !name.trim()) return;
+    if (editorRef.current?.querySelector(`[data-ai-id="${name}"]`)) {
+      window.alert('该区域名称已存在，请使用其他名称以保证 AI 定位准确。');
+      return;
+    }
+    editorRef.current?.focus();
+    // Insert ai-region HTML
+    const html = `<div class="ai-region" data-ai-id="${name}" data-ai-title="${name}" style="border: 1px dashed #3b82f6; padding: 16px 12px 12px; margin: 8px 0; position: relative; min-height: 60px; background: #f8fafc; border-radius: 6px;"><div contenteditable="false" style="position: absolute; top: -10px; right: 10px; background: #3b82f6; color: white; font-size: 10px; padding: 2px 8px; border-radius: 12px; z-index: 10; user-select: none; box-shadow: 0 2px 4px rgba(0,0,0,0.1);">${name}-AI可编辑区域</div><div class="ai-content" style="min-height: 20px;">&#8203;</div></div><p><br></p>`;
+    document.execCommand('insertHTML', false, html);
+    saveTemplateContent();
+  };
+
+  const saveCurrentTemplate = () => {
+    if (!currentTemplateId || !editorRef.current) return;
+    let cleanContent = editorRef.current.innerHTML;
+    cleanContent = cleanContent.replace(/<p>\s*<br\s*\/?>\s*<\/p>/gi, '');
+    cleanContent = cleanContent.replace(/<p><\/p>/gi, '');
+    cleanContent = cleanContent.replace(/>(\s+)</g, '><');
+    if (cleanContent !== editorRef.current.innerHTML) {
+      editorRef.current.innerHTML = cleanContent;
+    }
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const updated = allTemplates.map(t => {
+      if (t.id === currentTemplateId) {
+        return { ...t, content: cleanContent, updatedAt: new Date().toISOString() };
+      }
+      return t;
+    });
+    const currentUpdated = updated.find(t => t.id === currentTemplateId);
+    setTemplates(updated.filter(t => templates.some(x => x.id === t.id)));
+    storage.set('templates', updated);
+    if (currentUpdated) {
+      void updateTemplate(currentTemplateId, currentUpdated).catch(() => {});
+    }
+    setIsSaved(true);
+    setTimeout(() => setIsSaved(false), 3000);
+  };
+
+  const handleAddTemplate = () => {
+    setIsEditing(false);
+    setFormData({ name: '', desc: '' });
+    setIsModalOpen(true);
+  };
+
+  const handleEditInfo = (template: Template) => {
+    setIsEditing(true);
+    setFormData({ name: template.name, desc: template.desc || '' });
+    setIsModalOpen(true);
+  };
+
+  const handleDeleteTemplate = async (id: string) => {
+    if (window.confirm('确定要删除此模板吗？')) {
+      try {
+        await deleteTemplateFromApi(id);
+      } catch {
+        if (!isLocalFallbackEnabled()) {
+          alert('删除失败：后端服务不可用');
+          return;
+        }
+      }
+      const allTemplates = storage.get<Template[]>('templates', []);
+      const updated = allTemplates.filter(t => t.id !== id);
+      setTemplates(updated);
+      storage.set('templates', updated);
+      if (currentTemplateId === id) {
+        setCurrentTemplateId(updated[0]?.id || null);
+      }
+      setSelectedIds(prev => prev.filter(sid => sid !== id));
+    }
+  };
+
+  const handleBatchDelete = async () => {
+    if (selectedIds.length === 0) return;
+    if (!window.confirm(`确定要删除选中的 ${selectedIds.length} 个模板吗？`)) return;
+    let hasApiFailure = false;
+    await Promise.all(selectedIds.map(async (id) => {
+      try {
+        await deleteTemplateFromApi(id);
+      } catch {
+        hasApiFailure = true;
+      }
+    }));
+    if (hasApiFailure && !isLocalFallbackEnabled()) {
+      alert('批量删除失败：后端服务不可用');
+      return;
+    }
+    const allTemplates = storage.get<Template[]>('templates', []);
+    const updated = allTemplates.filter(t => !selectedIds.includes(t.id));
+    setTemplates(updated);
+    storage.set('templates', updated);
+    if (currentTemplateId && selectedIds.includes(currentTemplateId)) {
+      setCurrentTemplateId(updated[0]?.id || null);
+    }
+    setSelectedIds([]);
+  };
+
+  const handleBatchExport = () => {
+    if (selectedIds.length === 0) return;
+    const targets = templates.filter(t => selectedIds.includes(t.id));
+    const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+    const exportData = {
+      version: '1.0',
+      type: 'surclaw_template_package_batch',
+      templates: targets
+    };
+    const blob = new Blob([JSON.stringify(exportData, null, 2)], { type: 'application/json' });
+    const url = URL.createObjectURL(blob);
+    const a = document.createElement('a');
+    a.href = url;
+    a.download = `模板批量导出-${ts}.json`;
+    a.click();
+    URL.revokeObjectURL(url);
+  };
+
+  const handleImportFile = (e: React.ChangeEvent<HTMLInputElement>) => {
+    const file = e.target.files?.[0];
+    if (!file) return;
+    const reader = new FileReader();
+    reader.onload = (event) => {
+      try {
+        const json = JSON.parse(event.target?.result as string);
+        if (json.type !== 'surclaw_template_package') {
+          alert('无效的模板包文件');
+          return;
+        }
+        setFormData({ name: json.title || '', desc: json.description || '' });
+        setImportedContent({
+          content: json.content || '',
+          fields: Array.isArray(json.fields) ? json.fields : []
+        });
+      } catch {
+        alert('文件解析失败，请检查 JSON 格式');
+      }
+    };
+    reader.readAsText(file);
+    if (e.target) e.target.value = '';
+  };
+
+  const handleExportTemplate = (template: Template) => {
+    const exportData = {
+      version: '1.0',
+      type: 'surclaw_template_package',
+      title: template.name,
+      description: template.desc || '',
+      content: template.content,
+      fields: template.fields || formFields
+    };
+    const blob = new Blob([JSON.stringify(exportData, null, 2)], { type: 'application/json' });
+    const url = URL.createObjectURL(blob);
+    const a = document.createElement('a');
+    a.href = url;
+    const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+    a.download = `模板导出-${template.name}-${ts}.json`;
+    a.click();
+    URL.revokeObjectURL(url);
+  };
+
+  const handleModalSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    const allTemplates = storage.get<Template[]>('templates', []);
+    if (isEditing) {
+      let editedTemplate: Template | undefined;
+      let updated = allTemplates.map(t => {
+        if (t.id === currentTemplateId) {
+          editedTemplate = { ...t, name: formData.name, desc: formData.desc };
+          return editedTemplate;
+        }
+        return t;
+      });
+      if (editedTemplate && currentTemplateId) {
+        try {
+          const apiTemplate = await updateTemplate(currentTemplateId, editedTemplate);
+          updated = updated.map(t => t.id === currentTemplateId ? apiTemplate : t);
+        } catch {
+          if (!isLocalFallbackEnabled()) {
+            alert('保存模板失败：后端服务不可用');
+            return;
+          }
+        }
+      }
+      setTemplates(updated.filter(t => templates.some(x => x.id === t.id)));
+      if (isLocalFallbackEnabled()) storage.set('templates', updated);
+    } else {
+      let newTpl: Template = {
+        id: 'tpl_' + Date.now(),
+        name: formData.name,
+        desc: formData.desc,
+        content: importedContent?.content || defaultReportContent,
+        createdAt: new Date().toISOString(),
+        author: currentUser?.username || 'admin',
+        fields: importedContent?.fields || formFields,
+        scope: 'department',
+        department: currentUser?.role === 'super' ? '' : (currentUser?.department || '')
+      };
+      try {
+        newTpl = await createTemplate(newTpl);
+      } catch {
+        if (!isLocalFallbackEnabled()) {
+          alert('创建模板失败：后端服务不可用');
+          return;
+        }
+      }
+      const updated = [...allTemplates, newTpl];
+      setTemplates([...templates, newTpl]);
+      if (isLocalFallbackEnabled()) storage.set('templates', updated);
+      setCurrentTemplateId(newTpl.id);
+      if (importedContent?.fields && importedContent.fields.length > 0) {
+        setFormFields(importedContent.fields);
+        storage.set('formFieldsConfig', importedContent.fields);
+      }
+
+      const savedUsers = storage.get<User[]>('users', []);
+      let updatedUsers = savedUsers;
+      if (currentUser?.role === 'super') {
+        updatedUsers = savedUsers.map(u => {
+          if (u.role === 'super') {
+            const mt = [...(u.manageableTemplates || [])];
+            const vt = [...(u.visibleTemplates || [])];
+            if (!mt.includes(newTpl.id)) mt.push(newTpl.id);
+            if (!vt.includes(newTpl.id)) vt.push(newTpl.id);
+            return { ...u, manageableTemplates: mt, visibleTemplates: vt };
+          }
+          return u;
+        });
+      } else if (currentUser?.role === 'admin') {
+        const dept = currentUser.department || '';
+        updatedUsers = savedUsers.map(u => {
+          if (u.username === currentUser.username) {
+            const mt = [...(u.manageableTemplates || [])];
+            const vt = [...(u.visibleTemplates || [])];
+            if (!mt.includes(newTpl.id)) mt.push(newTpl.id);
+            if (!vt.includes(newTpl.id)) vt.push(newTpl.id);
+            return { ...u, manageableTemplates: mt, visibleTemplates: vt };
+          }
+          if (u.role === 'user' && u.department === dept) {
+            const vt = [...(u.visibleTemplates || [])];
+            if (!vt.includes(newTpl.id)) vt.push(newTpl.id);
+            return { ...u, visibleTemplates: vt };
+          }
+          return u;
+        });
+      }
+      storage.set('users', updatedUsers);
+      const currentCached = updatedUsers.find(u => u.username === currentUser?.username);
+      if (currentCached) {
+        storage.set('currentUser', currentCached);
+        setCurrentUser(currentCached);
+      }
+    }
+    setIsModalOpen(false);
+    setImportedContent(null);
+  };
+
+  if (!currentUser) return null;
+
+  const currentTemplate = templates.find(t => t.id === currentTemplateId);
+
+  return (
+    <div className="flex h-screen bg-bg overflow-hidden">
+      <Sidebar />
+      
+      {/* Template List Sidebar */}
+      <aside className="w-72 bg-sidebar-bg border-r border-border flex flex-col shrink-0 overflow-hidden">
+        <div className="p-6 border-b border-border flex items-center justify-between">
+          <span className="text-sm font-bold text-text-main uppercase tracking-wider">模板列表</span>
+          <button 
+            onClick={handleAddTemplate}
+            className="w-8 h-8 bg-accent text-white rounded-lg flex items-center justify-center hover:bg-blue-700 transition-colors shadow-sm"
+          >
+            <Plus size={16} />
+          </button>
+        </div>
+        {selectedIds.length > 0 && (
+          <div className="px-4 pt-3 pb-1 flex items-center justify-between bg-slate-50 border-b border-border">
+            <span className="text-xs text-text-muted font-bold">已选中 {selectedIds.length} 项</span>
+            <div className="flex gap-2">
+              <button 
+                onClick={handleBatchExport}
+                className="px-2 py-1 rounded-md bg-blue-50 text-blue-600 text-[10px] font-bold hover:bg-blue-100 transition-colors"
+              >
+                批量导出
+              </button>
+              <button 
+                onClick={handleBatchDelete}
+                className="px-2 py-1 rounded-md bg-red-50 text-red-600 text-[10px] font-bold hover:bg-red-100 transition-colors"
+              >
+                批量删除
+              </button>
+            </div>
+          </div>
+        )}
+        <div className="flex-1 overflow-y-auto p-4 space-y-2">
+          {templates.map(tpl => (
+            <div 
+              key={tpl.id}
+              onClick={() => setCurrentTemplateId(tpl.id)}
+              className={`p-4 rounded-xl border transition-all group cursor-pointer ${
+                currentTemplateId === tpl.id 
+                  ? 'bg-white border-accent shadow-sm' 
+                  : 'bg-transparent border-transparent hover:bg-white hover:border-border'
+              }`}
+            >
+              <div className="flex items-start gap-2">
+                <input
+                  type="checkbox"
+                  checked={selectedIds.includes(tpl.id)}
+                  onChange={(e) => {
+                    e.stopPropagation();
+                    setSelectedIds(prev => e.target.checked ? [...prev, tpl.id] : prev.filter(id => id !== tpl.id));
+                  }}
+                  onClick={(e) => e.stopPropagation()}
+                  className="mt-1 shrink-0"
+                />
+                <div className="flex-1 min-w-0">
+                  <div className="flex justify-between items-start mb-1">
+                    <div className={`text-sm font-bold ${currentTemplateId === tpl.id ? 'text-accent' : 'text-text-main'}`}>
+                      {tpl.name}
+                    </div>
+                  </div>
+                  <div className="text-[10px] text-text-muted line-clamp-1 mb-2">{tpl.desc || '无描述'}</div>
+                  <div className="flex gap-2 opacity-0 group-hover:opacity-100 transition-opacity">
+                    <button 
+                      onClick={(e) => { e.stopPropagation(); handleEditInfo(tpl); }}
+                      className="px-2 py-1 rounded-md bg-slate-100 text-slate-600 text-[10px] font-bold hover:bg-slate-200 transition-colors"
+                    >
+                      编辑
+                    </button>
+                    <button 
+                      onClick={(e) => { e.stopPropagation(); handleExportTemplate(tpl); }}
+                      className="px-2 py-1 rounded-md bg-blue-50 text-blue-600 text-[10px] font-bold hover:bg-blue-100 transition-colors"
+                    >
+                      导出
+                    </button>
+                    <button 
+                      onClick={(e) => { e.stopPropagation(); handleDeleteTemplate(tpl.id); }}
+                      className="px-2 py-1 rounded-md bg-red-50 text-red-600 text-[10px] font-bold hover:bg-red-100 transition-colors"
+                    >
+                      删除
+                    </button>
+                  </div>
+                </div>
+              </div>
+            </div>
+          ))}
+          {templates.length === 0 && (
+            <div className="text-center text-text-muted text-sm py-8">暂无模板</div>
+          )}
+        </div>
+      </aside>
+
+      {/* Main Editor */}
+      <div className="flex-1 flex flex-col overflow-hidden">
+        <header className="h-20 bg-white border-b border-border flex items-center justify-between px-8 shrink-0">
+          <div className="flex items-center gap-4">
+            <div>
+              <h1 className="text-lg font-bold text-text-main">模板管理</h1>
+              <p className="text-[10px] text-text-muted mt-0.5 uppercase tracking-wider font-bold">
+                {currentTemplate ? currentTemplate.name : '请选择模板'}
+              </p>
+            </div>
+          </div>
+          <div className="flex items-center gap-4">
+            {isSaved && (
+              <span className="text-xs text-green-600 font-bold flex items-center gap-1">
+                <Check size={14} />
+                已保存
+              </span>
+            )}
+            <button 
+              onClick={saveCurrentTemplate}
+              className="btn-accent inline-flex items-center gap-2"
+            >
+              <Save size={16} />
+              保存模板
+            </button>
+            <button 
+              onClick={() => setExportModalOpen(true)}
+              className="p-2.5 rounded-lg bg-slate-100 text-text-muted hover:bg-slate-200 transition-colors"
+              title="下载"
+            >
+              <Download size={18} />
+            </button>
+            <button 
+              onClick={() => editorRef.current && printDocument(editorRef.current.innerHTML)}
+              className="p-2.5 rounded-lg bg-slate-100 text-text-muted hover:bg-slate-200 transition-colors"
+              title="打印预览"
+            >
+              <Printer size={18} />
+            </button>
+          </div>
+        </header>
+
+        <div className="flex-1 flex overflow-hidden">
+          {/* Editor Main */}
+          <div className="flex-1 flex flex-col overflow-hidden">
+            {/* Toolbar */}
+            <div className="flex items-center gap-1 p-3 border-b border-border bg-slate-50 shrink-0 overflow-x-auto no-scrollbar">
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onMouseDown={(e) => e.preventDefault()} onClick={handleUndo} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="撤销"><Undo size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={handleRedo} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="重做"><Redo size={16} /></button>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <select 
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { execCmd('fontName', e.target.value); e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">选择字体</option>
+                  <option value="SimSun">宋体</option>
+                  <option value="Microsoft YaHei">微软雅黑</option>
+                  <option value="SimHei">黑体</option>
+                  <option value="KaiTi">楷体</option>
+                </select>
+                <select
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { if (e.target.value) { execCmd('fontSize', e.target.value); } e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">字号</option>
+                  <option value="3">12pt</option>
+                  <option value="4">14pt</option>
+                  <option value="5">18pt</option>
+                  <option value="6">24pt</option>
+                </select>
+                <select
+                  onMouseDown={(e) => e.preventDefault()}
+                  onChange={(e) => { if (e.target.value) { changeLineHeight(e.target.value); } e.target.value = ''; }}
+                  className="h-9 px-3 border border-border rounded-lg text-xs bg-white cursor-pointer focus:outline-hidden focus:border-accent"
+                >
+                  <option value="">行距</option>
+                  <option value="1">1.0</option>
+                  <option value="1.5">1.5</option>
+                  <option value="2">2.0</option>
+                </select>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => execCmd('bold')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="粗体"><Bold size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => execCmd('italic')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="斜体"><Italic size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => execCmd('underline')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="下划线"><Underline size={16} /></button>
+                <div className="relative flex items-center">
+                  <input 
+                    type="color" 
+                    onMouseDown={(e) => e.preventDefault()}
+                    onChange={(e) => execCmd('foreColor', e.target.value)}
+                    className="w-9 h-9 p-1.5 bg-transparent border-none cursor-pointer rounded-lg hover:bg-white transition-colors"
+                    title="文字颜色"
+                  />
+                </div>
+              </div>
+              <div className="flex gap-1 pr-3 mr-3 border-r border-border">
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('left')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="左对齐"><AlignLeft size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('center')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="居中"><AlignCenter size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={() => changeAlignment('right')} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="右对齐"><AlignRight size={16} /></button>
+              </div>
+              <div className="flex gap-1">
+                <button onMouseDown={(e) => e.preventDefault()} onClick={insertTable} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="插入表格"><Table size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={insertImage} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-white text-text-muted hover:text-text-main transition-colors" title="插入图片占位符"><ImageIcon size={16} /></button>
+                <button onMouseDown={(e) => e.preventDefault()} onClick={insertAiRegion} className="w-9 h-9 flex items-center justify-center rounded-lg hover:bg-blue-50 text-blue-500 transition-colors" title="插入AI可编辑区域"><Bot size={16} /></button>
+              </div>
+            </div>
+
+            {/* Editor Area */}
+            <div className="editor-content-wrapper print-wrapper">
+              <div 
+                ref={editorRef}
+                contentEditable
+                className="editor-content print-content template-editor-mode"
+                onBlur={saveSelection}
+                onMouseUp={saveSelection}
+                onKeyUp={saveSelection}
+              >
+              </div>
+            </div>
+          </div>
+
+          {/* Right: Field Library */}
+          <aside className="w-[240px] bg-sidebar-bg border-l border-border flex flex-col shrink-0 overflow-hidden">
+            <div className="flex border-b border-border">
+              {(['insert', 'manage'] as const).map(tab => (
+                <button
+                  key={tab}
+                  onClick={() => setFieldLibTab(tab)}
+                  className={`flex-1 py-3 text-xs font-bold transition-all border-b-2 uppercase tracking-wider ${
+                    fieldLibTab === tab ? 'text-accent border-accent' : 'text-text-muted border-transparent hover:text-text-main'
+                  }`}
+                >
+                  {tab === 'insert' ? '插入字段' : '字段管理'}
+                </button>
+              ))}
+            </div>
+            <div className="flex-1 overflow-y-auto p-4 space-y-3">
+              {fieldLibTab === 'insert' && (
+                <div className="space-y-4">
+                  {['填空', '单选', '多选', '时间'].map(cat => {
+                    const catFields = formFields.filter(f => f.category === cat);
+                    if (catFields.length === 0) return null;
+                    return (
+                      <div key={cat}>
+                        <div className="text-[10px] text-slate-400 mb-1.5 font-medium">{cat}</div>
+                        <div className="flex flex-wrap gap-1.5">
+                          {catFields.map(field => (
+                            <button
+                              key={field.key}
+                              id={`sidebar-field-${field.key}`}
+                              type="button"
+                              onMouseDown={(e) => e.preventDefault()}
+                              onClick={() => insertSmartField(field)}
+                              onMouseEnter={() => highlightField(field.key, true)}
+                              onMouseLeave={() => highlightField(field.key, false)}
+                              className={`px-2 py-1 text-[11px] bg-slate-100 hover:bg-slate-200 text-slate-700 rounded border border-slate-300 transition-colors ${activeFieldKey === field.key ? 'ring-2 ring-accent bg-blue-50 border-accent' : ''}`}
+                              title={`插入 ${field.label}`}
+                            >
+                              {field.label}
+                            </button>
+                          ))}
+                        </div>
+                      </div>
+                    );
+                  })}
+                </div>
+              )}
+
+              {fieldLibTab === 'manage' && (
+                <div className="space-y-3">
+                  {['填空', '单选', '多选', '时间'].map(cat => {
+                    const catFields = formFields.filter(f => f.category === cat);
+                    if (catFields.length === 0) return null;
+                    const expanded = expandedCategories.includes(cat);
+                    return (
+                      <div key={cat} className="border border-slate-200 rounded overflow-hidden">
+                        <button
+                          onClick={() => setExpandedCategories(prev => prev.includes(cat) ? prev.filter(c => c !== cat) : [...prev, cat])}
+                          className="w-full flex items-center justify-between px-3 py-2 bg-slate-50 text-xs font-semibold text-slate-700 hover:bg-slate-100"
+                        >
+                          <span>{cat}</span>
+                          <span>{expanded ? '▾' : '▸'}</span>
+                        </button>
+                        {expanded && (
+                          <div className="p-2 space-y-2 bg-white">
+                            {catFields.map(field => (
+                              <div
+                                key={field.key}
+                                id={`sidebar-field-${field.key}`}
+                                onClick={(e) => {
+                                  setEditingFieldKey(field.key);
+                                  setEditFieldLabel(field.label);
+                                  setEditFieldOptions((field.options || []).join(', '));
+                                  setEditFieldTimeFormat(field.timeFormat || '');
+                                  setEditFieldTimeDefault(field.timeDefault || 'specific');
+                                  setEditFieldFixedTimeValue(field.fixedTimeValue || '');
+                    setEditFieldHasUnderline(field.hasUnderline ?? false);
+                                  const target = e.currentTarget;
+                                  setTimeout(() => {
+                                    target.scrollIntoView({ behavior: 'smooth', block: 'nearest' });
+                                  }, 50);
+                                }}
+                                className={`cursor-pointer rounded border p-2 transition-all ${activeFieldKey === field.key ? 'border-accent bg-blue-50 ring-1 ring-accent' : 'border-slate-100 bg-slate-50 hover:border-slate-200'}`}
+                              >
+                                {editingFieldKey === field.key ? (
+                                  <div className="space-y-2" onClick={(e) => e.stopPropagation()}>
+                                    <div className="text-xs font-medium text-text-main">
+                                      {field.isSystemLocked ? field.label : (
+                                        <input
+                                          type="text"
+                                          value={editFieldLabel}
+                                          onChange={(e) => setEditFieldLabel(e.target.value)}
+                                          className="w-full px-1.5 py-1 text-xs border border-border rounded"
+                                          placeholder="字段名称"
+                                        />
+                                      )}
+                                    </div>
+                                    {['单选', '多选'].includes(field.category) && (
+                                      <input
+                                        type="text"
+                                        value={editFieldOptions}
+                                        onChange={(e) => setEditFieldOptions(e.target.value)}
+                                        className="w-full px-1.5 py-1 text-xs border border-border rounded"
+                                        placeholder="选项，用逗号分隔"
+                                      />
+                                    )}
+                                    {field.category === '时间' && (
+                                      <div className="space-y-1">
+                                        <select
+                                          value={editFieldTimeDefault}
+                                          onChange={(e) => setEditFieldTimeDefault(e.target.value as 'current' | 'specific')}
+                                          className="w-full px-1.5 py-1 text-xs border border-border rounded bg-white"
+                                        >
+                                          <option value="specific">固定时间</option>
+                                          <option value="current">当前时间</option>
+                                        </select>
+                                        {editFieldTimeDefault === 'specific' && (
+                                          <input
+                                            type={field.type === 'date' ? 'date' : 'time'}
+                                            value={editFieldFixedTimeValue}
+                                            onChange={(e) => setEditFieldFixedTimeValue(e.target.value)}
+                                            className="w-full px-1.5 py-1 text-xs border border-border rounded"
+                                          />
+                                        )}
+                                        <div className="relative">
+                                          <input
+                                            type="text"
+                                            value={editFieldTimeFormat}
+                                            onChange={(e) => setEditFieldTimeFormat(e.target.value)}
+                                            onFocus={() => setFormatDropdownOpen(true)}
+                                            onBlur={() => {
+                                              setTimeout(() => setFormatDropdownOpen(false), 200);
+                                              const val = editFieldTimeFormat.trim();
+                                              if (val && !customTimeFormats.includes(val)) {
+                                                const next = [...customTimeFormats, val];
+                                                setCustomTimeFormats(next);
+                                                storage.set('customTimeFormats', next);
+                                              }
+                                            }}
+                                            onKeyDown={(e) => {
+                                              if (e.key === 'Enter') {
+                                                const val = editFieldTimeFormat.trim();
+                                                if (val && !customTimeFormats.includes(val)) {
+                                                  const next = [...customTimeFormats, val];
+                                                  setCustomTimeFormats(next);
+                                                  storage.set('customTimeFormats', next);
+                                                }
+                                                setFormatDropdownOpen(false);
+                                              }
+                                            }}
+                                            className="w-full px-1.5 py-1 text-xs border border-border rounded"
+                                            placeholder="输入格式或下拉选择"
+                                          />
+                                          {formatDropdownOpen && (
+                                            <div className="absolute z-10 left-0 right-0 top-full mt-1 bg-white border border-border rounded shadow-lg max-h-32 overflow-y-auto">
+                                              {customTimeFormats
+                                                .filter(fmt => {
+                                                  const isDateFormat = /YYYY|MM|DD/.test(fmt);
+                                                  const isTimeFormat = /HH|hh|mm|A/.test(fmt);
+                                                  if (field.type === 'date') return isDateFormat;
+                                                  if (field.type === 'time') return isTimeFormat;
+                                                  return true;
+                                                })
+                                                .map(fmt => (
+                                                  <div
+                                                    key={fmt}
+                                                    className="px-2 py-1 text-xs hover:bg-slate-100 cursor-pointer"
+                                                    onMouseDown={(e) => {
+                                                      e.preventDefault();
+                                                      setEditFieldTimeFormat(fmt);
+                                                      setFormatDropdownOpen(false);
+                                                    }}
+                                                  >
+                                                    {fmt}
+                                                  </div>
+                                                ))}
+                                            </div>
+                                          )}
+                                        </div>
+                                      </div>
+                                    )}
+                                    <label className="flex items-center gap-1 text-[10px] text-slate-600 cursor-pointer">
+                                      <input type="checkbox" checked={editFieldHasUnderline} onChange={(e) => setEditFieldHasUnderline(e.target.checked)} />
+                                      打印时显示下划线
+                                    </label>
+                                    <div className="flex gap-2">
+                                      <button
+                                        onClick={() => saveFieldEdit(field.key)}
+                                        className="px-2 py-1 bg-accent text-white text-[10px] rounded"
+                                      >保存</button>
+                                      <button
+                                        onClick={() => setEditingFieldKey(null)}
+                                        className="px-2 py-1 bg-slate-200 text-slate-700 text-[10px] rounded"
+                                      >取消</button>
+                                    </div>
+                                  </div>
+                                ) : (
+                                  <div className="flex items-center justify-between">
+                                    <div>
+                                      <div className="font-medium text-text-main text-xs">{field.label}</div>
+                                      <div className="text-[10px] text-slate-400">{field.category} · {field.type}</div>
+                                    </div>
+                                    <div className="flex items-center gap-2">
+                                      <label className="flex items-center gap-1 text-[10px] text-slate-600 cursor-pointer" onClick={(e) => e.stopPropagation()}>
+                                        <input
+                                          type="checkbox"
+                                          checked={field.visibleInForm}
+                                          onChange={() => toggleFieldVisible(field.key)}
+                                        />
+                                        显示
+                                      </label>
+                                      {!field.isSystemLocked && (
+                                        <button onClick={(e) => { e.stopPropagation(); deleteField(field.key); }} className="text-red-500 text-[10px] hover:underline">删除</button>
+                                      )}
+                                    </div>
+                                  </div>
+                                )}
+                              </div>
+                            ))}
+                          </div>
+                        )}
+                      </div>
+                    );
+                  })}
+
+                  {/* Asset Library */}
+                  <div className="border border-slate-200 rounded overflow-hidden mt-4">
+                    <div className="px-3 py-2 bg-slate-50 text-xs font-semibold text-slate-700">素材库</div>
+                    <div className="p-2 space-y-2 bg-white">
+                      <div className="flex flex-wrap gap-2">
+                        {imageAssets.map(asset => (
+                          <div key={asset.id} className="relative w-14 h-14 border rounded overflow-hidden group">
+                            <img src={asset.dataUrl} alt={asset.name} className="w-full h-full object-cover" />
+                            <div className="absolute inset-0 bg-black/40 hidden group-hover:flex items-center justify-center">
+                              <button
+                                onClick={() => {
+                                  const updated = imageAssets.filter(a => a.id !== asset.id);
+                                  setImageAssets(updated);
+                                  storage.set('imageAssets', updated);
+                                  void deleteFileResource(asset.id).catch(() => {});
+                                }}
+                                className="text-white text-[10px]"
+                              >删</button>
+                            </div>
+                          </div>
+                        ))}
+                      </div>
+                      <label className="block w-full py-1.5 bg-accent text-white text-xs font-semibold rounded text-center cursor-pointer hover:opacity-90">
+                        上传图片
+                        <input type="file" accept="image/*" className="hidden" onChange={handleAssetUpload} />
+                      </label>
+                    </div>
+                  </div>
+
+                  <div className="pt-3 border-t border-slate-200 space-y-2">
+                    <div className="text-xs font-semibold text-text-main">新增字段</div>
+                    <input
+                      type="text"
+                      value={newFieldForm.label}
+                      onChange={(e) => setNewFieldForm({ ...newFieldForm, label: e.target.value })}
+                      placeholder="字段名称"
+                      className="w-full px-2 py-1.5 text-xs border border-border rounded focus:outline-hidden focus:border-accent"
+                    />
+                    <div className="flex gap-2">
+                      <select
+                        value={newFieldForm.category}
+                        onChange={(e) => {
+                          const cat = e.target.value;
+                          let t: FieldType = 'text';
+                          if (cat === '单选') t = 'single_select';
+                          else if (cat === '多选') t = 'multi_select';
+                          else if (cat === '时间') t = 'date';
+                          setNewFieldForm({ ...newFieldForm, category: cat, type: t });
+                        }}
+                        className="flex-1 px-2 py-1.5 text-xs border border-border rounded focus:outline-hidden focus:border-accent bg-white"
+                      >
+                        <option value="填空">填空</option>
+                        <option value="单选">单选</option>
+                        <option value="多选">多选</option>
+                        <option value="时间">时间</option>
+                      </select>
+                      <select
+                        value={newFieldForm.type}
+                        onChange={(e) => {
+                          const t = e.target.value as FieldType;
+                          setNewFieldForm({ ...newFieldForm, type: t });
+                          if (newFieldForm.category === '时间') {
+                            setNewFieldTimeFormat(t === 'date' ? 'YYYY年MM月DD日' : 'HH:mm');
+                          }
+                        }}
+                        className="flex-1 px-2 py-1.5 text-xs border border-border rounded focus:outline-hidden focus:border-accent bg-white"
+                      >
+                        {newFieldForm.category === '填空' && <option value="text">文本</option>}
+                        {newFieldForm.category === '单选' && <option value="single_select">下拉单选</option>}
+                        {newFieldForm.category === '多选' && <option value="multi_select">标签多选</option>}
+                        {newFieldForm.category === '时间' && <><option value="date">日期</option><option value="time">时分</option></>}
+                      </select>
+                    </div>
+                    {newFieldForm.category === '时间' && (
+                      <div className="space-y-1">
+                        <select
+                          value={newFieldTimeDefault}
+                          onChange={(e) => setNewFieldTimeDefault(e.target.value as 'current' | 'specific')}
+                          className="w-full px-2 py-1.5 text-xs border border-border rounded bg-white"
+                        >
+                          <option value="specific">固定时间</option>
+                          <option value="current">当前时间</option>
+                        </select>
+                        {newFieldTimeDefault === 'specific' && (
+                          <input
+                            type={newFieldForm.type === 'date' ? 'date' : 'time'}
+                            value={newFieldFixedTimeValue}
+                            onChange={(e) => setNewFieldFixedTimeValue(e.target.value)}
+                            className="w-full px-2 py-1.5 text-xs border border-border rounded"
+                          />
+                        )}
+                        <div className="relative">
+                          <input
+                            type="text"
+                            value={newFieldTimeFormat}
+                            onChange={(e) => setNewFieldTimeFormat(e.target.value)}
+                            onFocus={() => setNewFormatDropdownOpen(true)}
+                            onBlur={() => {
+                              setTimeout(() => setNewFormatDropdownOpen(false), 200);
+                              const val = newFieldTimeFormat.trim();
+                              if (val && !customTimeFormats.includes(val)) {
+                                const next = [...customTimeFormats, val];
+                                setCustomTimeFormats(next);
+                                storage.set('customTimeFormats', next);
+                              }
+                            }}
+                            onKeyDown={(e) => {
+                              if (e.key === 'Enter') {
+                                const val = newFieldTimeFormat.trim();
+                                if (val && !customTimeFormats.includes(val)) {
+                                  const next = [...customTimeFormats, val];
+                                  setCustomTimeFormats(next);
+                                  storage.set('customTimeFormats', next);
+                                }
+                                setNewFormatDropdownOpen(false);
+                              }
+                            }}
+                            className="w-full px-2 py-1.5 text-xs border border-border rounded"
+                            placeholder="输入格式或下拉选择"
+                          />
+                          {newFormatDropdownOpen && (
+                            <div className="absolute z-10 left-0 right-0 top-full mt-1 bg-white border border-border rounded shadow-lg max-h-32 overflow-y-auto">
+                              {customTimeFormats
+                                .filter(fmt => {
+                                  const isDateFormat = /YYYY|MM|DD/.test(fmt);
+                                  const isTimeFormat = /HH|hh|mm|A/.test(fmt);
+                                  if (newFieldForm.type === 'date') return isDateFormat;
+                                  if (newFieldForm.type === 'time') return isTimeFormat;
+                                  return true;
+                                })
+                                .map(fmt => (
+                                  <div
+                                    key={fmt}
+                                    className="px-2 py-1 text-xs hover:bg-slate-100 cursor-pointer"
+                                    onMouseDown={(e) => {
+                                      e.preventDefault();
+                                      setNewFieldTimeFormat(fmt);
+                                      setNewFormatDropdownOpen(false);
+                                    }}
+                                  >
+                                    {fmt}
+                                  </div>
+                                ))}
+                            </div>
+                          )}
+                        </div>
+                      </div>
+                    )}
+                    {['单选', '多选'].includes(newFieldForm.category) && (
+                      <input
+                        type="text"
+                        value={newFieldOptions}
+                        onChange={(e) => setNewFieldOptions(e.target.value)}
+                        placeholder="选项，用逗号分隔"
+                        className="w-full px-2 py-1.5 text-xs border border-border rounded focus:outline-hidden focus:border-accent"
+                      />
+                    )}
+                    <label className="flex items-center gap-1 text-xs text-slate-600 cursor-pointer">
+                      <input type="checkbox" checked={newFieldHasUnderline} onChange={(e) => setNewFieldHasUnderline(e.target.checked)} />
+                      打印时显示下划线
+                    </label>
+                    <button
+                      onClick={addField}
+                      className="w-full py-1.5 bg-accent text-white text-xs font-semibold rounded hover:opacity-90 transition-colors"
+                    >
+                      添加字段
+                    </button>
+                  </div>
+                </div>
+              )}
+            </div>
+          </aside>
+        </div>
+      </div>
+
+      {exportModalOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">导出模板</h3>
+            <div className="space-y-3">
+              <button
+                onClick={() => {
+                  const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+                  const name = currentTemplate?.name || '模板';
+                  printDocument(editorRef.current?.innerHTML || '', `${name}-${ts}`);
+                  setExportModalOpen(false);
+                }}
+                className="w-full py-2.5 bg-accent text-white rounded text-sm font-semibold hover:opacity-90 transition-colors"
+              >导出 PDF</button>
+              <button
+                onClick={() => {
+                  const ts = new Date(Date.now() + 8 * 60 * 60 * 1000).toISOString().replace(/[:.]/g, '-').slice(0, 16);
+                  const name = currentTemplate?.name || '模板';
+                  const data = currentTemplate ? { ...currentTemplate, content: editorRef.current?.innerHTML } : { content: editorRef.current?.innerHTML };
+                  const blob = new Blob([JSON.stringify(data, null, 2)], { type: 'application/json' });
+                  const url = URL.createObjectURL(blob);
+                  const a = document.createElement('a');
+                  a.href = url;
+                  a.download = `${name}-${ts}.json`;
+                  a.click();
+                  URL.revokeObjectURL(url);
+                  setExportModalOpen(false);
+                }}
+                className="w-full py-2.5 bg-slate-100 text-slate-700 rounded text-sm font-semibold hover:bg-slate-200 transition-colors"
+              >导出 JSON</button>
+              <button
+                onClick={() => setExportModalOpen(false)}
+                className="w-full py-2.5 border border-border text-text-main rounded text-sm font-semibold hover:bg-slate-50 transition-colors"
+              >取消</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {isModalOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-10 w-full max-w-[500px] shadow-2xl border border-border">
+            <h3 className="text-xl font-bold text-text-main mb-2">{isEditing ? '编辑模板信息' : '新增模板'}</h3>
+            <p className="text-sm text-text-muted mb-8">设置模板的基本名称和描述</p>
+            {!isEditing && (
+              <div className="flex items-center gap-3 mb-6 p-3 bg-slate-50 rounded-xl border border-dashed border-slate-200">
+                <div className="text-xs text-text-muted flex-1">已有模板文件？点击右侧图标导入</div>
+                <button
+                  type="button"
+                  onClick={() => fileInputRef.current?.click()}
+                  className="w-8 h-8 bg-accent text-white rounded-lg flex items-center justify-center hover:bg-blue-700 transition-colors shadow-sm"
+                >
+                  <Upload size={16} />
+                </button>
+                <input ref={fileInputRef} type="file" accept=".json" className="hidden" onChange={handleImportFile} />
+              </div>
+            )}
+            <form onSubmit={handleModalSubmit} className="space-y-6">
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">模板名称 *</label>
+                <input 
+                  type="text" 
+                  value={formData.name}
+                  onChange={(e) => setFormData({ ...formData, name: e.target.value })}
+                  required 
+                  placeholder="请输入模板名称"
+                  className="input-minimal"
+                />
+              </div>
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">模板描述</label>
+                <textarea 
+                  value={formData.desc}
+                  onChange={(e) => setFormData({ ...formData, desc: e.target.value })}
+                  placeholder="请输入模板描述"
+                  className="input-minimal min-h-[100px] resize-y"
+                />
+              </div>
+              <div className="flex justify-end gap-3 pt-4 border-t border-border">
+                <button 
+                  type="button" 
+                  onClick={() => { setIsModalOpen(false); setImportedContent(null); }}
+                  className="px-6 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors"
+                >
+                  取消
+                </button>
+                <button 
+                  type="submit" 
+                  className="btn-accent"
+                >
+                  保存模板信息
+                </button>
+              </div>
+            </form>
+          </div>
+        </div>
+      )}
+
+      {placeholderModal.isOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">插入图片占位符</h3>
+            <div className="space-y-3">
+              <div className="flex gap-2">
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">宽度(px)</label>
+                  <input type="number" value={placeholderModal.width} onChange={e => setPlaceholderModal({...placeholderModal, width: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">高度(px)</label>
+                  <input type="number" value={placeholderModal.height} onChange={e => setPlaceholderModal({...placeholderModal, height: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+              </div>
+              <div>
+                <label className="block text-xs mb-1">占位符类型</label>
+                <div className="flex gap-2">
+                  <button onClick={() => setPlaceholderModal({...placeholderModal, mode: 'frame'})} className={`flex-1 py-1.5 text-xs rounded border ${placeholderModal.mode === 'frame' ? 'bg-accent text-white border-accent' : 'bg-white text-slate-600 border-border'}`}>手术影像占位<br/><span className="text-[10px] opacity-80">（支持自动/拖拽插入）</span></button>
+                  <button onClick={() => setPlaceholderModal({...placeholderModal, mode: 'manual'})} className={`flex-1 py-1.5 text-xs rounded border ${placeholderModal.mode === 'manual' ? 'bg-accent text-white border-accent' : 'bg-white text-slate-600 border-border'}`}>静态图片占位<br/><span className="text-[10px] opacity-80">（仅支持点击插入）</span></button>
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end gap-2">
+              <button onClick={() => setPlaceholderModal({...placeholderModal, isOpen: false})} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+              <button onClick={() => {
+                const sel = window.getSelection();
+                let node: Node | null = sel?.anchorNode ?? null;
+                let inTable = false;
+                while (node) {
+                  if ((node as Element).nodeName === 'TD' || (node as Element).nodeName === 'TH') {
+                    inTable = true;
+                    break;
+                  }
+                  node = node.parentNode;
+                }
+                const w = parseInt(placeholderModal.width) || 200;
+                const h = parseInt(placeholderModal.height) || 200;
+                const modeAttr = placeholderModal.mode === 'manual' ? ' data-mode="manual"' : '';
+                const hintText = '插入/点击放置图片';
+                const id = 'ph_' + Date.now();
+                let html: string;
+                if (inTable) {
+                  const styleStr = 'position:relative;display:flex;align-items:center;justify-content:center;border:1px dashed #cbd5e1;background:#f8fafc;cursor:pointer;width:100%;height:100%;max-width:200px;max-height:200px;min-height:60px;margin:0 auto;';
+                  html = `<div id="${id}" class="image-placeholder" data-placeholder="true" contenteditable="false"${modeAttr} style="${styleStr}"><span class="delete-btn" contenteditable="false">×</span><span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${hintText}</span></div>`;
+                } else {
+                  let styleStr = 'display:inline-block;text-align:center;border:1px dashed #cbd5e1;background:#f8fafc;vertical-align:middle;margin:0 4px;cursor:pointer;position:relative;';
+                  styleStr += `width:${w}px;height:${h}px;max-width:${w}px;max-height:${h}px;line-height:${h}px;`;
+                  const showShortText = w > 0 && w < 80;
+                  const text = showShortText ? '插图' : hintText;
+                  html = `<span id="${id}" class="image-placeholder" data-placeholder="true" contenteditable="false"${modeAttr} style="${styleStr}"><span class="delete-btn" contenteditable="false">×</span><span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">${text}</span></span>&#8203;`;
+                }
+                const wrapper = document.createElement('div');
+                wrapper.innerHTML = html;
+                const fragment = document.createDocumentFragment();
+                while (wrapper.firstChild) {
+                  fragment.appendChild(wrapper.firstChild);
+                }
+                const sel2 = window.getSelection();
+                if (sel2 && sel2.rangeCount > 0) {
+                  const range = sel2.getRangeAt(0);
+                  range.deleteContents();
+                  range.insertNode(fragment);
+                  const lastNode = fragment.lastChild;
+                  if (lastNode) {
+                    range.setStartAfter(lastNode);
+                    range.collapse(true);
+                    sel2.removeAllRanges();
+                    sel2.addRange(range);
+                  }
+                } else if (editorRef.current) {
+                  editorRef.current.appendChild(fragment);
+                }
+                editorRef.current?.focus();
+                saveTemplateContent();
+                setPlaceholderModal({...placeholderModal, isOpen: false});
+              }} className="px-4 py-2 bg-accent text-white rounded text-sm">确认插入</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {tableModal.isOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">插入表格</h3>
+            <div className="space-y-3">
+              <div className="flex gap-2">
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">行数</label>
+                  <input type="number" min="1" value={tableModal.rows} onChange={e => setTableModal({...tableModal, rows: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+                <div className="flex-1">
+                  <label className="block text-xs mb-1">列数</label>
+                  <input type="number" min="1" value={tableModal.cols} onChange={e => setTableModal({...tableModal, cols: e.target.value})} className="w-full px-2 py-1 text-xs border border-border rounded" />
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end gap-2">
+              <button onClick={() => setTableModal({...tableModal, isOpen: false})} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+              <button onClick={() => {
+                const rows = parseInt(tableModal.rows);
+                const cols = parseInt(tableModal.cols);
+                if (isNaN(rows) || isNaN(cols) || rows < 1 || cols < 1) {
+                  setTableModal({...tableModal, isOpen: false});
+                  return;
+                }
+                let table = '<table style="width: 100%; border-collapse: collapse; margin: 16px 0; table-layout: fixed;">';
+                for (let i = 0; i < rows; i++) {
+                  table += '<tr>';
+                  for (let j = 0; j < cols; j++) {
+                    table += '<td style="padding: 8px; border: 1px solid #e2e8f0; vertical-align: top;">单元格</td>';
+                  }
+                  table += '</tr>';
+                }
+                table += '</table><p></p>';
+                execCmd('insertHTML', table);
+                setTableModal({...tableModal, isOpen: false});
+              }} className="px-4 py-2 bg-accent text-white rounded text-sm">确认插入</button>
+            </div>
+          </div>
+        </div>
+      )}
+
+      {imagePickerOpen && imagePickerTarget && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-6 w-full max-w-[360px] shadow-2xl border border-border">
+            <h3 className="text-lg font-bold text-text-main mb-4">选择图片来源</h3>
+            <div className="space-y-3">
+              <button
+                onClick={() => {
+                  const input = document.createElement('input');
+                  input.type = 'file';
+                  input.accept = 'image/*';
+                  input.onchange = (ev) => {
+                    const file = (ev.target as HTMLInputElement).files?.[0];
+                    if (file) {
+                      const reader = new FileReader();
+                      reader.onload = (event) => {
+                        const src = event.target?.result as string;
+                        fillPlaceholderSrc(imagePickerTarget, src);
+                        setImagePickerOpen(false);
+                        setImagePickerTarget(null);
+                      };
+                      reader.readAsDataURL(file);
+                    }
+                  };
+                  input.click();
+                }}
+                className="w-full py-2 bg-slate-100 hover:bg-slate-200 text-slate-700 rounded text-sm font-semibold"
+              >本地上传</button>
+              <button
+                onClick={() => {
+                  if (currentUser?.signature) {
+                    fillPlaceholderSrc(imagePickerTarget, currentUser.signature);
+                  }
+                  setImagePickerOpen(false);
+                  setImagePickerTarget(null);
+                }}
+                disabled={!currentUser?.signature}
+                className={`w-full py-2 rounded text-sm font-semibold ${currentUser?.signature ? 'bg-slate-100 hover:bg-slate-200 text-slate-700' : 'bg-slate-50 text-slate-400 cursor-not-allowed'}`}
+              >我的签名 {!currentUser?.signature && '(未上传)'}</button>
+              <div>
+                <div className="text-xs text-slate-500 mb-2">系统素材</div>
+                <div className="flex flex-wrap gap-2 max-h-32 overflow-y-auto">
+                  {imageAssets.map(asset => (
+                    <button
+                      key={asset.id}
+                      onClick={() => { fillPlaceholderSrc(imagePickerTarget, asset.dataUrl); setImagePickerOpen(false); setImagePickerTarget(null); }}
+                      className="w-16 h-16 border rounded overflow-hidden hover:ring-2 ring-accent"
+                    >
+                      <img src={asset.dataUrl} alt={asset.name} className="w-full h-full object-cover" />
+                    </button>
+                  ))}
+                  {imageAssets.length === 0 && <div className="text-xs text-slate-400">暂无素材</div>}
+                </div>
+              </div>
+            </div>
+            <div className="mt-5 flex justify-end">
+              <button onClick={() => { setImagePickerOpen(false); setImagePickerTarget(null); }} className="px-4 py-2 bg-slate-100 text-slate-600 rounded text-sm">取消</button>
+            </div>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/src/pages/UserManage.tsx b/src/pages/UserManage.tsx
new file mode 100644
index 0000000..0c72e84
--- /dev/null
+++ b/src/pages/UserManage.tsx
@@ -0,0 +1,859 @@
+import React, { useEffect, useState, useMemo } from 'react';
+import { useNavigate } from 'react-router-dom';
+import Sidebar from '../components/Sidebar';
+import { UserPlus, Edit, Trash2, Upload, X } from 'lucide-react';
+import { User, Template } from '../types';
+import { storage } from '../utils/storage';
+import {
+  createUser,
+  deleteUserFromApi,
+  listDepartments,
+  listUsers,
+  updateUser,
+  type Department,
+} from '../api/users';
+import { listTemplates } from '../api/templates';
+import { deleteUserSignature, uploadUserSignature } from '../api/files';
+import { isLocalFallbackEnabled } from '../config/runtime';
+
+const ADMIN_DISABLE_AUTH_KEY = 'DISABLE_ADMIN_2024';
+
+export default function UserManage() {
+  const navigate = useNavigate();
+  const [users, setUsers] = useState<User[]>([]);
+  const [currentUser, setCurrentUser] = useState<User | null>(null);
+  const [isModalOpen, setIsModalOpen] = useState(false);
+  const [isEditing, setIsEditing] = useState(false);
+  const [formData, setFormData] = useState<Partial<User>>({
+    username: '',
+    name: '',
+    phone: '',
+    email: '',
+    password: '',
+    role: 'user',
+    department: '',
+    status: 'active',
+    visibleTemplates: [],
+    manageableTemplates: []
+  });
+  const [confirmPassword, setConfirmPassword] = useState('');
+  const [authKey, setAuthKey] = useState('');
+  const [allTemplates, setAllTemplates] = useState<Template[]>([]);
+  const [departments, setDepartments] = useState<Department[]>([]);
+
+  useEffect(() => {
+    const user = storage.get<User | null>('currentUser', null);
+    if (!user || (user.role !== 'super' && user.role !== 'admin')) {
+      navigate('/dashboard');
+      return;
+    }
+    setCurrentUser(user);
+
+    const savedUsers = storage.get<User[]>('users', []).filter(Boolean);
+    setUsers(savedUsers);
+
+    const savedTemplates = storage.get<Template[]>('templates', []).filter(Boolean);
+    setAllTemplates(savedTemplates);
+
+    Promise.allSettled([
+      listUsers(),
+      listDepartments(),
+      listTemplates('use'),
+    ]).then(([usersResult, departmentsResult, templatesResult]) => {
+      if (usersResult.status === 'fulfilled') {
+        const apiUsers = mergeUsersWithLocalCache(usersResult.value.items, storage.get<User[]>('users', []));
+        setUsers(apiUsers);
+        storage.set('users', apiUsers);
+      }
+      if (departmentsResult.status === 'fulfilled') {
+        setDepartments(departmentsResult.value.items);
+      }
+      if (templatesResult.status === 'fulfilled') {
+        setAllTemplates(templatesResult.value.items);
+        storage.set('templates', templatesResult.value.items);
+      }
+    });
+  }, [navigate]);
+
+  const mergeUsersWithLocalCache = (apiUsers: User[], localUsers: User[]) =>
+    apiUsers.map((apiUser) => {
+      const local = localUsers.find((item) => item.username === apiUser.username);
+      return {
+        ...local,
+        ...apiUser,
+        signature: local?.signature ?? apiUser.signature,
+        password: local?.password,
+      };
+    });
+
+  const displayUsers = useMemo(() => {
+    if (!currentUser) return [];
+    const safeUsers = (Array.isArray(users) ? users : []).filter(Boolean);
+    if (currentUser.role === 'super') return safeUsers;
+    return safeUsers.filter(u => u.department === currentUser.department && (u.role === 'user' || u.username === currentUser.username));
+  }, [users, currentUser]);
+
+  const saveToLocalStorage = (updatedUsers: User[]) => {
+    setUsers(updatedUsers);
+    storage.set('users', updatedUsers);
+  };
+
+  const compressImage = (file: File, maxSize: number = 500): Promise<string> => {
+    return new Promise((resolve, reject) => {
+      const reader = new FileReader();
+      reader.readAsDataURL(file);
+      reader.onload = (e) => {
+        const img = new Image();
+        img.src = e.target?.result as string;
+        img.onload = () => {
+          const canvas = document.createElement('canvas');
+          let { width, height } = img;
+          if (width > height && width > maxSize) {
+            height = Math.round((height * maxSize) / width);
+            width = maxSize;
+          } else if (height > maxSize) {
+            width = Math.round((width * maxSize) / height);
+            height = maxSize;
+          }
+          canvas.width = width;
+          canvas.height = height;
+          const ctx = canvas.getContext('2d');
+          if (ctx) {
+            ctx.fillStyle = '#FFFFFF';
+            ctx.fillRect(0, 0, width, height);
+            ctx.drawImage(img, 0, 0, width, height);
+          }
+          resolve(canvas.toDataURL('image/jpeg', 0.8));
+        };
+        img.onerror = reject;
+      };
+      reader.onerror = reject;
+    });
+  };
+
+  const handleSignatureUpload = async (e: React.ChangeEvent<HTMLInputElement>) => {
+    const file = e.target.files?.[0];
+    if (!file) return;
+    try {
+      const compressed = await compressImage(file);
+      setFormData(prev => ({ ...prev, signature: compressed }));
+    } catch {
+      alert('图片压缩失败，请重试');
+    }
+  };
+
+  const handleDelete = async (user: User) => {
+    if (user.username === 'admin') {
+      alert('不能删除默认超级管理员');
+      return;
+    }
+    if (user.username === currentUser?.username) {
+      alert('不能删除当前登录账号');
+      return;
+    }
+    if (window.confirm(`确定要删除用户 "${user.username}" 吗？`)) {
+      try {
+        await deleteUserFromApi(user.id || user.username);
+      } catch (error) {
+        if (!isLocalFallbackEnabled()) {
+          alert(`删除失败: ${(error as Error).message}`);
+          return;
+        }
+        console.warn('Delete user API failed, keeping local compatibility path.', error);
+      }
+      const updated = users.filter(u => u.username !== user.username);
+      saveToLocalStorage(updated);
+    }
+  };
+
+  const handleEdit = (user: User) => {
+    if (currentUser?.role === 'admin') {
+      if ((user.role !== 'user' && user.username !== currentUser.username) || user.department !== currentUser.department) {
+        alert('您只能管理同部门的医生或您自己');
+        return;
+      }
+    }
+    setIsEditing(true);
+    const allTplIds = allTemplates.map(t => t.id);
+    let manageable: string[] = [];
+    let visible: string[] = [];
+
+    if (user.role === 'super') {
+      manageable = allTplIds;
+      visible = allTplIds;
+    } else if (user.role === 'admin') {
+      manageable = Array.isArray(user.manageableTemplates) ? user.manageableTemplates : allTplIds;
+      visible = (Array.isArray(user.visibleTemplates) ? user.visibleTemplates : manageable)
+        .filter(id => manageable.includes(id));
+    } else {
+      manageable = [];
+      const deptAdmin = users.find(u => u.role === 'admin' && u.department === user.department);
+      const adminManageable = deptAdmin?.manageableTemplates || [];
+      visible = (Array.isArray(user.visibleTemplates) ? user.visibleTemplates : [])
+        .filter(id => adminManageable.includes(id));
+    }
+
+    setFormData({
+      ...user,
+      password: '',
+      visibleTemplates: visible,
+      manageableTemplates: manageable
+    });
+    setConfirmPassword('');
+    setAuthKey('');
+    setIsModalOpen(true);
+  };
+
+  const handleAdd = () => {
+    setIsEditing(false);
+    const defaultDept = currentUser?.role === 'admin' ? currentUser.department || '' : '';
+    const defaultRole = 'user';
+    let defaultVisible: string[] = [];
+    let defaultManageable: string[] = [];
+
+    if (currentUser?.role === 'admin') {
+      defaultManageable = [];
+      defaultVisible = currentUser.manageableTemplates || [];
+    }
+
+    setFormData({
+      username: '',
+      name: '',
+      phone: '',
+      email: '',
+      password: '',
+      role: defaultRole,
+      department: defaultDept,
+      status: 'active',
+      visibleTemplates: defaultVisible,
+      manageableTemplates: defaultManageable
+    });
+    setConfirmPassword('');
+    setAuthKey('');
+    setIsModalOpen(true);
+  };
+
+  const handleSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    try {
+      if (!formData.username) {
+        alert('用户ID不能为空');
+        return;
+      }
+
+      if (!isEditing && formData.role === 'super') {
+        alert('系统中只能存在一个超级管理员，无法新增');
+        return;
+      }
+
+      if (!isEditing && users.find(u => u.username === formData.username)) {
+        alert('用户ID已存在');
+        return;
+      }
+
+      if (isEditing && formData.password && formData.password !== confirmPassword) {
+        alert('两次输入的密码不一致');
+        return;
+      }
+
+      let finalRole = formData.role as any;
+      if (currentUser?.role === 'admin') {
+        if (!isEditing) finalRole = 'user';
+        else if (formData.username !== currentUser.username) finalRole = 'user';
+      }
+      const finalDepartment = currentUser?.role === 'admin' ? currentUser.department || '' : (formData.department || '');
+
+      if (finalRole === 'admin') {
+        const existingAdmin = users.find(u => u.role === 'admin' && u.department === finalDepartment && u.username !== formData.username);
+        if (existingAdmin) {
+          alert('该部门已存在管理员，一个部门只能有一个管理员');
+          return;
+        }
+      }
+
+      if (finalRole === 'user') {
+        const hasAdminInDept = users.some(u => u.role === 'admin' && u.department === finalDepartment);
+        if (!hasAdminInDept) {
+          alert('该部门暂无管理员，请先建立一个部门管理员再创建医生');
+          return;
+        }
+      }
+
+      if (finalRole !== 'user' && formData.status === 'inactive') {
+        if (authKey.trim() !== ADMIN_DISABLE_AUTH_KEY) {
+          alert('禁用管理员账号需要输入正确的授权密钥');
+          return;
+        }
+      }
+
+      const allTplIds = allTemplates.map(t => t.id);
+      let manageableTemplates: string[] = [];
+      let visibleTemplates: string[] = [];
+
+      if (finalRole === 'super') {
+        manageableTemplates = allTplIds;
+        visibleTemplates = allTplIds;
+      } else if (finalRole === 'admin') {
+        manageableTemplates = (formData.manageableTemplates || []).filter(id => allTplIds.includes(id));
+        visibleTemplates = (formData.visibleTemplates || [])
+          .filter(id => manageableTemplates.includes(id));
+      } else if (finalRole === 'user') {
+        manageableTemplates = [];
+        const deptAdmin = users.find(u => u.role === 'admin' && u.department === finalDepartment);
+        const adminManageable = deptAdmin?.manageableTemplates || [];
+        visibleTemplates = (formData.visibleTemplates || [])
+          .filter(id => adminManageable.includes(id));
+      }
+
+      const oldUser = isEditing ? users.find(u => u.username === formData.username) : undefined;
+      let updatedUsers: User[];
+
+      if (isEditing && finalRole === 'admin' && oldUser && oldUser.role === 'admin' && currentUser && currentUser.role === 'super') {
+        const oldManageable = Array.isArray(oldUser.manageableTemplates) ? oldUser.manageableTemplates : allTplIds;
+        const removed = oldManageable.filter(id => !manageableTemplates.includes(id));
+        const added = manageableTemplates.filter(id => !oldManageable.includes(id));
+
+        // Ensure admin's own visible gets new templates too
+        let adminVisible = [...visibleTemplates];
+        added.forEach(id => {
+          if (!adminVisible.includes(id)) adminVisible.push(id);
+        });
+
+        updatedUsers = users.map(u => {
+          if (u.username === formData.username) {
+            return { ...u, role: finalRole, department: finalDepartment, manageableTemplates, visibleTemplates: adminVisible, password: formData.password || u.password, signature: formData.signature } as User;
+          }
+          if (u.role === 'user' && u.department === (oldUser.department || finalDepartment)) {
+            const currentVisible = Array.isArray(u.visibleTemplates) ? u.visibleTemplates : [];
+            const nextVisible = currentVisible.filter(id => !removed.includes(id));
+            added.forEach(id => {
+              if (!nextVisible.includes(id)) nextVisible.push(id);
+            });
+            return { ...u, visibleTemplates: nextVisible };
+          }
+          return u;
+        });
+      } else {
+        const payload: Partial<User> = {
+          ...formData,
+          role: finalRole,
+          department: finalDepartment,
+          manageableTemplates,
+          visibleTemplates
+        };
+        if (!formData.password) {
+          delete payload.password;
+        }
+        if (isEditing) {
+          updatedUsers = users.map(u => {
+            if (u.username === formData.username) {
+              return { ...u, ...payload } as User;
+            }
+            return u;
+          });
+        } else {
+          const newUser: User = {
+            ...(payload as User),
+            createdAt: new Date().toISOString().split('T')[0]
+          };
+          updatedUsers = [...users, newUser];
+        }
+      }
+
+      let savedApiUser: User | null = null;
+      const payload = {
+        ...(updatedUsers.find(u => u.username === formData.username) || formData),
+        departmentId: departments.find(dept => dept.name === finalDepartment)?.id || formData.departmentId,
+      } as User;
+
+      try {
+        savedApiUser = isEditing
+          ? await updateUser(oldUser?.id || formData.id || formData.username || '', payload)
+          : await createUser(payload);
+      } catch (error: any) {
+        if (!isLocalFallbackEnabled()) {
+          alert(`后端保存失败：${error?.message || String(error)}`);
+          return;
+        }
+        console.warn('Save user API failed, keeping local compatibility path.', error);
+        if (error?.message) {
+          alert(`后端保存失败，已保留本地修改：${error.message}`);
+        }
+      }
+
+      if (savedApiUser) {
+        if (formData.signature?.startsWith('data:')) {
+          try {
+            const signatureFile = await uploadUserSignature(savedApiUser.id || savedApiUser.username, formData.signature);
+            savedApiUser = {
+              ...savedApiUser,
+              signatureFileId: signatureFile.id,
+              signature: signatureFile.url,
+            };
+          } catch (error: any) {
+            if (!isLocalFallbackEnabled()) {
+              alert(`签名上传失败：${error?.message || String(error)}`);
+              return;
+            }
+            console.warn('Upload signature API failed, keeping local signature cache.', error);
+            alert(`签名上传到后端失败，已保留本地签名：${error?.message || String(error)}`);
+          }
+        } else if (oldUser?.signature && !formData.signature) {
+          try {
+            await deleteUserSignature(savedApiUser.id || savedApiUser.username);
+            savedApiUser = {
+              ...savedApiUser,
+              signatureFileId: undefined,
+              signature: undefined,
+            };
+          } catch (error) {
+            if (!isLocalFallbackEnabled()) {
+              alert(`签名删除失败：${(error as Error).message}`);
+              return;
+            }
+            console.warn('Delete signature API failed, keeping local compatibility path.', error);
+          }
+        }
+
+        const localSignature = formData.signature;
+        const mergedSavedUser: User = {
+          ...oldUser,
+          ...savedApiUser,
+          signature: savedApiUser.signature ?? localSignature,
+          password: formData.password || oldUser?.password,
+        };
+        updatedUsers = isEditing
+          ? users.map(u => u.username === mergedSavedUser.username ? mergedSavedUser : u)
+          : [...users, mergedSavedUser];
+      }
+
+      saveToLocalStorage(updatedUsers);
+      // 如果编辑的是当前登录用户，同步更新 currentUser
+      const currentCached = updatedUsers.find(u => u.username === currentUser?.username);
+      if (currentCached) {
+        storage.set('currentUser', currentCached);
+        setCurrentUser(currentCached);
+      }
+      setIsModalOpen(false);
+    } catch (err: any) {
+      alert('保存失败: ' + (err?.message || String(err)));
+      console.error(err);
+    }
+  };
+
+  const toggleTemplate = (templateId: string, field: 'visibleTemplates' | 'manageableTemplates') => {
+    const current = (formData[field] || []) as string[];
+    if (current.includes(templateId)) {
+      setFormData({ ...formData, [field]: current.filter(id => id !== templateId) });
+    } else {
+      setFormData({ ...formData, [field]: [...current, templateId] });
+    }
+  };
+
+  // Real-time sync: when manageableTemplates changes for admin, ensure visibleTemplates stay within it
+  useEffect(() => {
+    if (!isModalOpen || !currentUser) return;
+    const isAdminEditingSelf = currentUser.role === 'admin' && formData.username === currentUser.username;
+    const isManageableReadonly = formData.role === 'super' || isAdminEditingSelf;
+    if (formData.role === 'admin' && !isManageableReadonly) {
+      const m = formData.manageableTemplates || [];
+      const prevVisible = formData.visibleTemplates || [];
+      const nextVisible = prevVisible.filter(id => m.includes(id));
+      if (nextVisible.length !== prevVisible.length) {
+        setFormData(prev => ({ ...prev, visibleTemplates: nextVisible }));
+      }
+    }
+  }, [formData.manageableTemplates, formData.role, isModalOpen, currentUser, formData.username]);
+
+  if (!currentUser) return null;
+
+  const roleNames = {
+    'super': '超级管理员',
+    'admin': '管理员',
+    'user': '医生'
+  };
+
+  const isAdminLogin = currentUser.role === 'admin';
+  const needAuthKey = formData.role !== 'user' && formData.status === 'inactive';
+
+  // 模板权限显示规则
+  const isSuperEditingAdmin = currentUser.role === 'super' && formData.role === 'admin';
+  const isSuperEditingUser = currentUser.role === 'super' && formData.role === 'user';
+  const isAdminEditingSelf = currentUser.role === 'admin' && formData.username === currentUser.username;
+  const isAdminEditingUser = currentUser.role === 'admin' && formData.role === 'user';
+
+  const showManageableTemplates = isSuperEditingAdmin || isAdminEditingSelf || formData.role === 'super';
+  const isManageableReadonly = formData.role === 'super' || isAdminEditingSelf;
+  const showVisibleTemplates = true;
+
+  // 可视模板候选
+  let visibleCandidates = allTemplates;
+  if (isSuperEditingAdmin) {
+    visibleCandidates = allTemplates.filter(t => (formData.manageableTemplates || []).includes(t.id));
+  } else if (isSuperEditingUser) {
+    const deptAdmin = users.find(u => u.role === 'admin' && u.department === formData.department);
+    const adminManageable = deptAdmin?.manageableTemplates || [];
+    visibleCandidates = allTemplates.filter(t => adminManageable.includes(t.id));
+  } else if (isAdminEditingSelf) {
+    const adminManageable = currentUser.manageableTemplates || [];
+    visibleCandidates = allTemplates.filter(t => adminManageable.includes(t.id));
+  } else if (isAdminEditingUser) {
+    const adminManageable = currentUser.manageableTemplates || [];
+    visibleCandidates = allTemplates.filter(t => adminManageable.includes(t.id));
+  }
+
+  return (
+    <div className="flex min-h-screen bg-bg">
+      <Sidebar />
+
+      <main className="flex-1 p-10 overflow-y-auto">
+        <header className="flex justify-between items-center mb-8">
+          <div>
+            <h1 className="text-2xl font-bold tracking-tight text-text-main">用户管理</h1>
+            <p className="text-text-muted text-sm mt-1">
+              {isAdminLogin ? '管理同部门的医生用户' : '管理系统用户，仅超级管理员可赋予管理员权限'}
+            </p>
+          </div>
+          <button
+            onClick={handleAdd}
+            className="btn-accent inline-flex items-center gap-2"
+          >
+            <UserPlus size={18} />
+            新增用户
+          </button>
+        </header>
+
+        <div className="card-minimal p-0 overflow-hidden">
+          <div className="overflow-x-auto">
+            <table className="w-full border-collapse">
+              <thead>
+                <tr className="bg-slate-50">
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">用户ID</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">姓名</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">邮箱</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">联系电话</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">角色</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">部门</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">签名状态</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">状态</th>
+                  <th className="px-6 py-4 text-left text-[11px] font-bold text-text-muted uppercase tracking-wider border-b border-border">操作</th>
+                </tr>
+              </thead>
+              <tbody className="divide-y divide-border">
+                {displayUsers.map((user) => (
+                  <tr key={user.username} className="hover:bg-slate-50 transition-colors group">
+                    <td className="px-6 py-4 text-sm text-text-main font-mono">{user.username}</td>
+                    <td className="px-6 py-4 text-sm text-text-main font-semibold">{user.name}</td>
+                    <td className="px-6 py-4 text-sm text-text-main">{user.email || '-'}</td>
+                    <td className="px-6 py-4 text-sm text-text-main">{user.phone || '-'}</td>
+                    <td className="px-6 py-4">
+                      <span className={`inline-block px-2.5 py-1 rounded-full text-[11px] font-bold ${
+                        user.role === 'super' ? 'bg-amber-100 text-amber-700' :
+                        user.role === 'admin' ? 'bg-blue-100 text-blue-700' :
+                        'bg-green-100 text-green-700'
+                      }`}>
+                        {roleNames[user.role]}
+                      </span>
+                    </td>
+                    <td className="px-6 py-4 text-sm text-text-main">{user.department || '-'}</td>
+                    <td className="px-6 py-4">
+                      <span className={`inline-block px-2.5 py-1 rounded-full text-[11px] font-bold ${
+                        user.signature ? 'bg-blue-100 text-blue-700' : 'bg-slate-100 text-slate-500'
+                      }`}>
+                        {user.signature ? '已上传' : '未上传'}
+                      </span>
+                    </td>
+                    <td className="px-6 py-4">
+                      <span className={`inline-block px-2.5 py-1 rounded-full text-[11px] font-bold ${
+                        user.status === 'active' ? 'bg-green-100 text-green-700' : 'bg-red-100 text-red-700'
+                      }`}>
+                        {user.status === 'active' ? '启用' : '禁用'}
+                      </span>
+                    </td>
+                    <td className="px-6 py-4">
+                      <div className="flex gap-2 transition-opacity">
+                        <button
+                          onClick={() => handleEdit(user)}
+                          className="p-2 rounded-lg bg-slate-100 text-slate-600 hover:bg-slate-200 transition-colors"
+                          title="编辑"
+                        >
+                          <Edit size={16} />
+                        </button>
+                        {user.username !== 'admin' && user.username !== currentUser.username && (
+                          <button
+                            onClick={() => handleDelete(user)}
+                            className="p-2 rounded-lg bg-red-50 text-red-600 hover:bg-red-100 transition-colors"
+                            title="删除"
+                          >
+                            <Trash2 size={16} />
+                          </button>
+                        )}
+                      </div>
+                    </td>
+                  </tr>
+                ))}
+              </tbody>
+            </table>
+          </div>
+        </div>
+      </main>
+
+      {isModalOpen && (
+        <div className="fixed inset-0 bg-black/50 z-50 flex items-center justify-center p-4 backdrop-blur-sm">
+          <div className="bg-white rounded-2xl p-10 w-full max-w-[500px] max-h-[90vh] overflow-y-auto shadow-2xl border border-border">
+            <h3 className="text-xl font-bold text-text-main mb-2">{isEditing ? '编辑用户' : '新增用户'}</h3>
+            <p className="text-sm text-text-muted mb-8">填写用户信息并分配系统权限。</p>
+            <form onSubmit={handleSubmit} className="space-y-6">
+              <div className="grid grid-cols-2 gap-4">
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">用户ID *</label>
+                  <input
+                    type="text"
+                    value={formData.username}
+                    onChange={(e) => setFormData({ ...formData, username: e.target.value })}
+                    disabled={isEditing}
+                    required
+                    className="input-minimal disabled:bg-slate-50 disabled:text-text-muted"
+                  />
+                </div>
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">姓名 *</label>
+                  <input
+                    type="text"
+                    value={formData.name}
+                    onChange={(e) => setFormData({ ...formData, name: e.target.value })}
+                    required
+                    className="input-minimal"
+                  />
+                </div>
+              </div>
+
+              <div className="grid grid-cols-2 gap-4">
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">电话</label>
+                  <input
+                    type="tel"
+                    value={formData.phone}
+                    onChange={(e) => setFormData({ ...formData, phone: e.target.value })}
+                    className="input-minimal"
+                  />
+                </div>
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">邮箱</label>
+                  <input
+                    type="email"
+                    value={formData.email}
+                    onChange={(e) => setFormData({ ...formData, email: e.target.value })}
+                    className="input-minimal"
+                  />
+                </div>
+              </div>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">
+                  {isEditing ? '修改密码 (留空则不修改)' : '密码 *'}
+                </label>
+                <input
+                  type="password"
+                  value={formData.password}
+                  onChange={(e) => setFormData({ ...formData, password: e.target.value })}
+                  required={!isEditing}
+                  className="input-minimal"
+                />
+              </div>
+
+              {isEditing && formData.password && (
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">确认新密码 *</label>
+                  <input
+                    type="password"
+                    value={confirmPassword}
+                    onChange={(e) => setConfirmPassword(e.target.value)}
+                    required
+                    className="input-minimal"
+                  />
+                </div>
+              )}
+
+              <div className="grid grid-cols-2 gap-4">
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">角色 *</label>
+                  <select
+                    value={formData.role}
+                    onChange={(e) => {
+                      const newRole = e.target.value as any;
+                      const allTplIds = allTemplates.map(t => t.id);
+                      setFormData({
+                        ...formData,
+                        role: newRole,
+                        manageableTemplates: newRole === 'user' ? [] : allTplIds,
+                        visibleTemplates: newRole === 'user' ? [] : allTplIds
+                      });
+                    }}
+                    required
+                    disabled={isAdminLogin || (isEditing && formData.username === 'admin')}
+                    className="input-minimal bg-white disabled:bg-slate-50 disabled:text-text-muted"
+                  >
+                    <option value="user">医生</option>
+                    {!isAdminLogin && <option value="admin">管理员</option>}
+                  </select>
+                </div>
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">部门 *</label>
+                  <input
+                    type="text"
+                    value={formData.department}
+                    onChange={(e) => setFormData({ ...formData, department: e.target.value })}
+                    disabled={isAdminLogin}
+                    required
+                    className="input-minimal disabled:bg-slate-50 disabled:text-text-muted"
+                  />
+                </div>
+              </div>
+
+              <div className="space-y-1.5">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">状态</label>
+                <select
+                  value={formData.status}
+                  onChange={(e) => setFormData({ ...formData, status: e.target.value as any })}
+                  className="input-minimal bg-white"
+                >
+                  <option value="active">启用</option>
+                  <option value="inactive">禁用</option>
+                </select>
+              </div>
+
+              {needAuthKey && (
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">授权密钥 *</label>
+                  <input
+                    type="text"
+                    value={authKey}
+                    onChange={(e) => setAuthKey(e.target.value)}
+                    required
+                    placeholder="请输入授权密钥以禁用管理员"
+                    className="input-minimal"
+                  />
+                  <p className="text-[10px] text-text-muted">禁用管理员账号需要输入系统授权密钥进行验证。</p>
+                </div>
+              )}
+
+              <div className="space-y-2">
+                <label className="block text-xs font-bold text-text-main uppercase tracking-wider">电子签名</label>
+                {formData.signature ? (
+                  <div className="flex items-center gap-3">
+                    <img
+                      src={formData.signature}
+                      alt="电子签名预览"
+                      className="h-16 border border-border rounded bg-white object-contain"
+                    />
+                    <div className="flex flex-col gap-2">
+                      <label className="px-3 py-1.5 text-xs font-medium rounded-lg bg-slate-100 hover:bg-slate-200 transition-colors cursor-pointer inline-flex items-center gap-1">
+                        <Upload size={12} />
+                        重新上传
+                        <input type="file" accept="image/*" className="hidden" onChange={handleSignatureUpload} />
+                      </label>
+                      <button
+                        type="button"
+                        onClick={() => setFormData(prev => ({ ...prev, signature: undefined }))}
+                        className="px-3 py-1.5 text-xs font-medium rounded-lg bg-red-50 text-red-600 hover:bg-red-100 transition-colors inline-flex items-center gap-1"
+                      >
+                        <X size={12} />
+                        清除签名
+                      </button>
+                    </div>
+                  </div>
+                ) : (
+                  <div className="flex items-center gap-3">
+                    <label className="px-4 py-2 text-sm font-medium rounded-lg bg-slate-100 hover:bg-slate-200 transition-colors cursor-pointer inline-flex items-center gap-2">
+                      <Upload size={14} />
+                      上传签名
+                      <input type="file" accept="image/*" className="hidden" onChange={handleSignatureUpload} />
+                    </label>
+                    <span className="text-xs text-text-muted">支持 JPG、PNG，自动压缩至 500px 以内</span>
+                  </div>
+                )}
+              </div>
+
+              {showManageableTemplates && (
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">
+                    {formData.role === 'super' ? '可管理模板' : '可管理模板'}
+                  </label>
+                  <div className="max-h-[150px] overflow-y-auto border border-border rounded-lg p-3 space-y-2 bg-slate-50">
+                    {allTemplates.map(tpl => (
+                      <label key={tpl.id} className={`flex items-center gap-2 p-1 rounded-md transition-colors ${isManageableReadonly ? '' : 'cursor-pointer hover:bg-white'}`}>
+                        <input
+                          type="checkbox"
+                          checked={(formData.manageableTemplates || []).includes(tpl.id)}
+                          onChange={() => toggleTemplate(tpl.id, 'manageableTemplates')}
+                          disabled={isManageableReadonly}
+                          className="w-4 h-4 rounded-sm border-border text-accent focus:ring-accent disabled:opacity-50"
+                        />
+                        <span className={`text-sm ${isManageableReadonly ? 'text-text-muted' : 'text-text-main'}`}>{tpl.name}</span>
+                      </label>
+                    ))}
+                    {allTemplates.length === 0 && <p className="text-xs text-text-muted italic">暂无模板</p>}
+                  </div>
+                  {isManageableReadonly && (
+                    <p className="text-[10px] text-text-muted">
+                      {formData.role === 'super' ? '超级管理员默认可管理所有模板，不可更改。' : '管理员的模板管理权限由超级管理员设定，不可自行更改。'}
+                    </p>
+                  )}
+                </div>
+              )}
+
+              {showVisibleTemplates && (
+                <div className="space-y-1.5">
+                  <label className="block text-xs font-bold text-text-main uppercase tracking-wider">
+                    {formData.role === 'super' ? '可视模板 (全部)' : '可视模板'}
+                  </label>
+                  <div className="max-h-[150px] overflow-y-auto border border-border rounded-lg p-3 space-y-2 bg-slate-50">
+                    {visibleCandidates.map(tpl => (
+                      <label key={tpl.id} className="flex items-center gap-2 cursor-pointer hover:bg-white p-1 rounded-md transition-colors">
+                        <input
+                          type="checkbox"
+                          checked={(formData.visibleTemplates || []).includes(tpl.id)}
+                          onChange={() => toggleTemplate(tpl.id, 'visibleTemplates')}
+                          disabled={formData.role === 'super'}
+                          className="w-4 h-4 rounded-sm border-border text-accent focus:ring-accent disabled:opacity-50"
+                        />
+                        <span className={`text-sm ${formData.role === 'super' ? 'text-text-muted' : 'text-text-main'}`}>{tpl.name}</span>
+                      </label>
+                    ))}
+                    {visibleCandidates.length === 0 && <p className="text-xs text-text-muted italic">暂无可视模板</p>}
+                  </div>
+                  {formData.role === 'super' && (
+                    <p className="text-[10px] text-text-muted">超级管理员默认可视所有模板。</p>
+                  )}
+                  {(isSuperEditingAdmin || isAdminEditingSelf) && (
+                    <p className="text-[10px] text-text-muted">管理员的可视模板只能从其可管理模板中选择。</p>
+                  )}
+                  {(isSuperEditingUser || isAdminEditingUser) && (
+                    <p className="text-[10px] text-text-muted">医生的可视模板只能从其部门管理员的可管理模板中选择。</p>
+                  )}
+                </div>
+              )}
+
+              <div className="flex justify-end gap-3 pt-4 border-t border-border">
+                <button
+                  type="button"
+                  onClick={() => setIsModalOpen(false)}
+                  className="px-6 py-2.5 bg-slate-100 text-text-muted rounded-lg text-sm font-semibold hover:bg-slate-200 transition-colors"
+                >
+                  取消
+                </button>
+                <button
+                  type="submit"
+                  className="btn-accent"
+                >
+                  保存用户
+                </button>
+              </div>
+            </form>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}
diff --git a/src/test/setup.ts b/src/test/setup.ts
new file mode 100644
index 0000000..903f03f
--- /dev/null
+++ b/src/test/setup.ts
@@ -0,0 +1,59 @@
+import '@testing-library/jest-dom/vitest';
+import { afterEach, beforeEach, vi } from 'vitest';
+
+beforeEach(() => {
+  localStorage.clear();
+  sessionStorage.clear();
+
+  vi.stubGlobal('fetch', vi.fn((input: RequestInfo | URL) => {
+    const url = typeof input === 'string' ? input : input.toString();
+
+    if (url.endsWith('/logo_square.png')) {
+      return Promise.resolve({
+        ok: true,
+        status: 200,
+        headers: new Headers({ 'content-type': 'image/png' }),
+        blob: () => Promise.resolve(new Blob(['test-image'], { type: 'image/png' })),
+        text: () => Promise.resolve(''),
+        json: () => Promise.resolve({}),
+      });
+    }
+
+    return Promise.resolve({
+      ok: false,
+      status: 401,
+      headers: new Headers({ 'content-type': 'application/json' }),
+      blob: () => Promise.resolve(new Blob([])),
+      text: () => Promise.resolve(JSON.stringify({ error: { code: 'UNAUTHORIZED', message: '未登录' } })),
+      json: () => Promise.resolve({ error: { code: 'UNAUTHORIZED', message: '未登录' } }),
+    });
+  }));
+
+  vi.stubGlobal('alert', vi.fn());
+  vi.stubGlobal('confirm', vi.fn(() => true));
+
+  if (!document.execCommand) {
+    document.execCommand = vi.fn();
+  } else {
+    vi.spyOn(document, 'execCommand').mockImplementation(() => true);
+  }
+
+  if (!URL.createObjectURL) {
+    URL.createObjectURL = vi.fn(() => 'blob:test-url');
+  } else {
+    vi.spyOn(URL, 'createObjectURL').mockImplementation(() => 'blob:test-url');
+  }
+
+  if (!URL.revokeObjectURL) {
+    URL.revokeObjectURL = vi.fn();
+  } else {
+    vi.spyOn(URL, 'revokeObjectURL').mockImplementation(() => {});
+  }
+});
+
+afterEach(() => {
+  vi.restoreAllMocks();
+  vi.unstubAllGlobals();
+  localStorage.clear();
+  sessionStorage.clear();
+});
diff --git a/src/types.ts b/src/types.ts
new file mode 100644
index 0000000..a7ff1f2
--- /dev/null
+++ b/src/types.ts
@@ -0,0 +1,181 @@
+export interface User {
+  id?: string;
+  username: string;
+  password?: string;
+  role: 'super' | 'admin' | 'user';
+  name: string;
+  phone?: string;
+  email?: string;
+  departmentId?: string;
+  department?: string;
+  status?: 'active' | 'inactive';
+  createdAt?: string;
+  updatedAt?: string;
+  signatureFileId?: string;
+  visibleTemplates?: string[];
+  manageableTemplates?: string[];
+  signature?: string;
+}
+
+export interface Report {
+  id: string;
+  title: string;
+  patientName: string;
+  hospitalId: string;
+  patientGender?: string;
+  patientAge?: string;
+  department?: string;
+  bedNumber?: string;
+  surgeryDate?: string;
+  startHour?: string;
+  startMinute?: string;
+  endHour?: string;
+  endMinute?: string;
+  surgeon?: string[];
+  assistant?: string[];
+  anesthesiologist?: string[];
+  anesthesiaType?: string;
+  reportNote?: string;
+  content: string;
+  videos?: {
+    id: string;
+    name: string;
+    url: string;
+    duration: number;
+    fileId?: string;
+  }[];
+  capturedFrames?: CapturedFrame[];
+  author: string;
+  authorName: string;
+  createdAt: string;
+  updatedAt?: string;
+  status: 'draft' | 'completed';
+  revision?: number;
+  history?: { content: string; updatedAt: string; updatedBy: string; action: 'save_draft' | 'complete_report'; revision?: number }[];
+}
+
+export interface CapturedFrame {
+  id: number;
+  videoIndex: number;
+  videoName: string;
+  time: number;
+  timeFormatted: string;
+  dataUrl: string;
+  fileId?: string;
+  isManual?: boolean;
+  manualOrder?: number;
+}
+
+export interface Template {
+  id: string;
+  name: string;
+  desc?: string;
+  content: string;
+  createdAt: string;
+  updatedAt?: string;
+  author: string;
+  fields?: FormField[];
+  scope?: 'department' | 'personal';
+  ownerUser?: string;
+  department?: string;
+}
+
+export interface AiProviderConfig {
+  endpoint: string;
+  apiKey: string;
+  modelName: string;
+}
+
+export interface XfSpeechConfig {
+  appId: string;
+  apiKey: string;
+  apiSecret: string;
+}
+
+export const DEFAULT_XF_SPEECH: XfSpeechConfig = {
+  appId: '',
+  apiKey: '',
+  apiSecret: ''
+};
+
+export interface SystemSettings {
+  frameCount: number;
+  framePositions: number[];
+  defaultTemplate?: string;
+  frameMode?: 'uniform' | 'keep';
+  autoInsertFrames?: boolean;
+  autoInsertFrameIndices?: number[];
+  autoInsertDelay?: number;
+  activeAiProvider: string;
+  aiProviders: Record<string, AiProviderConfig>;
+  xfSpeechConfig?: XfSpeechConfig;
+}
+
+export const DEFAULT_AI_PROVIDERS: Record<string, AiProviderConfig> = {
+  kimi: { endpoint: 'https://api.moonshot.cn/v1', apiKey: '', modelName: 'moonshot-v1-32k-vision-preview' },
+  deepseek: { endpoint: 'https://api.deepseek.com/v1', apiKey: '', modelName: 'deepseek-chat' },
+  openai: { endpoint: 'https://api.openai.com/v1', apiKey: '', modelName: 'gpt-4o' },
+  custom: { endpoint: '', apiKey: '', modelName: '' }
+};
+
+export interface BindableField {
+  key: string;
+  label: string;
+}
+
+export const BINDABLE_FIELDS: BindableField[] = [
+  { key: 'patientName', label: '姓名' },
+  { key: 'patientGender', label: '性别' },
+  { key: 'patientAge', label: '年龄' },
+  { key: 'department', label: '科别' },
+  { key: 'bedNumber', label: '床号' },
+  { key: 'hospitalId', label: '住院号' },
+  { key: 'surgeryDate', label: '手术日期' },
+  { key: 'title', label: '手术名称' },
+  { key: 'startTime', label: '手术开始时间' },
+  { key: 'endTime', label: '手术终止时间' },
+  { key: 'surgeon', label: '手术者' },
+  { key: 'assistant', label: '助手' },
+  { key: 'anesthesiologist', label: '麻醉师' },
+  { key: 'anesthesiaType', label: '麻醉方式' },
+];
+
+export type FieldType = 'text' | 'single_select' | 'multi_select' | 'time' | 'date' | 'signature' | 'image';
+
+export interface FormField {
+  key: string;
+  label: string;
+  category: string;
+  type: FieldType;
+  visibleInForm: boolean;
+  isSystemLocked: boolean;
+  options?: string[];
+  timeFormat?: string;
+  timeDefault?: 'current' | 'specific';
+  fixedTimeValue?: string;
+  hasUnderline?: boolean;
+}
+
+export const DEFAULT_FORM_FIELDS: FormField[] = [
+  { key: 'patientName', label: '患者姓名', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: true, hasUnderline: false },
+  { key: 'hospitalId', label: '住院号', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: true, hasUnderline: false },
+  { key: 'title', label: '手术名称', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: false },
+  { key: 'patientGender', label: '患者性别', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: false, options: ['男', '女'] },
+  { key: 'patientAge', label: '患者年龄', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: false },
+  { key: 'department', label: '科别', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: false },
+  { key: 'bedNumber', label: '床号', category: '填空', type: 'text', visibleInForm: true, isSystemLocked: false },
+  { key: 'surgeryDate', label: '手术日期', category: '时间', type: 'date', visibleInForm: true, isSystemLocked: true, timeFormat: 'YYYY-MM-DD', timeDefault: 'specific' },
+  { key: 'startTime', label: '手术开始时间', category: '时间', type: 'time', visibleInForm: true, isSystemLocked: true, timeFormat: 'HH:mm', timeDefault: 'specific' },
+  { key: 'endTime', label: '手术终止时间', category: '时间', type: 'time', visibleInForm: true, isSystemLocked: true, timeFormat: 'HH:mm', timeDefault: 'specific' },
+  { key: 'reportDate', label: '撰写时间', category: '时间', type: 'date', visibleInForm: true, isSystemLocked: true, timeFormat: 'YYYY年MM月DD日', timeDefault: 'current' },
+  { key: 'surgeon', label: '手术者', category: '多选', type: 'multi_select', visibleInForm: true, isSystemLocked: true, options: ['张医生', '李医生', '王医生'] },
+  { key: 'assistant', label: '助手', category: '多选', type: 'multi_select', visibleInForm: true, isSystemLocked: true, options: ['赵医生', '钱医生', '孙医生'] },
+  { key: 'anesthesiologist', label: '麻醉师', category: '多选', type: 'multi_select', visibleInForm: true, isSystemLocked: true, options: ['周医生', '吴医生', '郑医生'] },
+  { key: 'anesthesiaType', label: '麻醉方式', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: false, options: ['全麻', '局麻', '腰麻', '硬膜外麻醉', '静脉麻醉', '吸入麻醉'] },
+  { key: 'preoperativeDiagnosis', label: '术前诊断', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['胆囊结石伴慢性胆囊炎', '急性胆囊炎'] },
+  { key: 'postoperativeDiagnosis', label: '术后诊断', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['胆囊结石伴慢性胆囊炎', '急性胆囊炎'] },
+  { key: 'postOpCondition', label: '手术后情况', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['患者麻醉恢复后安返病房'] },
+  { key: 'specimenDescription', label: '切除标本描述', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['胆囊一枚，壁厚约0.3cm，内含数枚结石'] },
+  { key: 'pathologyCheck', label: '是否送病理检查', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['是', '否'] },
+  { key: 'frozenPathology', label: '冰冻病理结果', category: '单选', type: 'single_select', visibleInForm: true, isSystemLocked: true, options: ['未见恶性', '待石蜡'] },
+];
diff --git a/src/utils/defaultContent.test.ts b/src/utils/defaultContent.test.ts
new file mode 100644
index 0000000..067c14b
--- /dev/null
+++ b/src/utils/defaultContent.test.ts
@@ -0,0 +1,48 @@
+import { describe, expect, it } from 'vitest';
+import { BINDABLE_FIELDS, DEFAULT_AI_PROVIDERS, DEFAULT_FORM_FIELDS } from '../types';
+import { defaultReportContent } from './defaultContent';
+
+describe('default content and type contracts', () => {
+  it('ships a report template with smart fields, image placeholders and an AI region', () => {
+    expect(defaultReportContent).toContain('data-bind="patientName"');
+    expect(defaultReportContent).toContain('data-bind="hospitalId"');
+    expect(defaultReportContent).toContain('class="image-placeholder"');
+    expect(defaultReportContent).toContain('data-mode="frame"');
+    expect(defaultReportContent).toContain('data-mode="manual"');
+    expect(defaultReportContent).toContain('class="ai-region"');
+    expect(defaultReportContent).toContain('data-ai-id="手术步骤"');
+  });
+
+  it('defines the required built-in report fields used by reports and exports', () => {
+    const keys = DEFAULT_FORM_FIELDS.map((field) => field.key);
+
+    expect(keys).toEqual(expect.arrayContaining([
+      'patientName',
+      'hospitalId',
+      'title',
+      'surgeryDate',
+      'startTime',
+      'endTime',
+      'surgeon',
+      'assistant',
+      'anesthesiologist',
+      'anesthesiaType',
+    ]));
+    expect(DEFAULT_FORM_FIELDS.filter((field) => field.isSystemLocked).length).toBeGreaterThan(0);
+  });
+
+  it('keeps bindable fields aligned with form field keys where applicable', () => {
+    const formKeys = new Set(DEFAULT_FORM_FIELDS.map((field) => field.key));
+    const specialBindableKeys = new Set(['startTime', 'endTime']);
+
+    for (const field of BINDABLE_FIELDS) {
+      expect(formKeys.has(field.key) || specialBindableKeys.has(field.key)).toBe(true);
+    }
+  });
+
+  it('declares OpenAI-compatible provider presets', () => {
+    expect(Object.keys(DEFAULT_AI_PROVIDERS)).toEqual(['kimi', 'deepseek', 'openai', 'custom']);
+    expect(DEFAULT_AI_PROVIDERS.kimi.endpoint).toContain('moonshot');
+    expect(DEFAULT_AI_PROVIDERS.openai.endpoint).toContain('/v1');
+  });
+});
diff --git a/src/utils/defaultContent.ts b/src/utils/defaultContent.ts
new file mode 100644
index 0000000..4f3605f
--- /dev/null
+++ b/src/utils/defaultContent.ts
@@ -0,0 +1,143 @@
+const smartField = (key: string) => {
+  return `<span class="smart-field-wrapper" contenteditable="false" style="white-space:nowrap;position:relative;"><span class="field-value no-underline" data-bind="${key}" contenteditable="true" style="min-width:24px;padding:0 2px;margin:0;border:1px solid #cbd5e1;border-radius:2px;display:inline-block;background:#f8fafc;color:#0f172a;line-height:inherit;font-size:inherit;vertical-align:baseline;box-sizing:border-box;outline:none;text-align:center;"> </span><span class="delete-btn" contenteditable="false">×</span></span>&#8203;`;
+};
+
+export const defaultReportContent = `
+<div style="display: flex; justify-content: center; align-items: center; gap: 12px; margin-bottom: 4px;">
+    <span class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="manual" style="display:inline-block;text-align:center;width:65px;height:65px;line-height:65px;border:1px dashed #cbd5e1;background:#f8fafc;vertical-align:middle;margin:0 4px;cursor:pointer;position:relative;transform:translate(-5px,-5px);">
+        <span class="delete-btn" contenteditable="false">×</span>
+        <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">LOGO</span>
+    </span>
+    <div style="text-align: center;">
+        <div style="font-size: 14pt; font-family: SimSun; border-bottom: 1px solid #000; padding-bottom: 1px; margin-bottom: 2px; display: inline-block; line-height: 1;">西 安 交 通 大 学 第 一 附 属 医 院</div>
+        <div style="font-size: 16pt; font-family: SimSun;">手术记录</div>
+    </div>
+</div>
+
+<p style="font-family: SimSun; font-size: 11pt; font-weight: normal; margin: 0; padding: 0; line-height: 1; border-bottom: 1px solid #000;">
+    姓名：${smartField('patientName')}&nbsp;
+    性别：${smartField('patientGender')}&nbsp;
+    年龄：${smartField('patientAge')}&nbsp;
+    科别：${smartField('department')}&nbsp;
+    床号：${smartField('bedNumber')}&nbsp;
+    住院号：${smartField('hospitalId')}
+</p>
+
+<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+    <strong>手术日期：</strong>${smartField('surgeryDate')}
+</p>
+<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+    <strong>术前诊断：</strong>${smartField('preoperativeDiagnosis')}
+</p>
+<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+    <strong>术中诊断：</strong>${smartField('postoperativeDiagnosis')}
+</p>
+<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+    <strong>手术名称：</strong>${smartField('title')}
+</p>
+
+<table style="width: 100%; border: none; font-family: SimSun; font-size: 12pt; margin-top: 0; margin-bottom: 0;">
+    <tr>
+        <td style="border: none; padding: 0; width: 50%; line-height: 1.5;">手术开始时间：${smartField('startTime')}</td>
+        <td style="border: none; padding: 0; width: 50%; line-height: 1.5;">手术终止时间：${smartField('endTime')}</td>
+    </tr>
+    <tr>
+        <td style="border: none; padding: 0; line-height: 1.5;">手术者：${smartField('surgeon')}</td>
+        <td style="border: none; padding: 0; line-height: 1.5;">助手：${smartField('assistant')}</td>
+    </tr>
+    <tr>
+        <td style="border: none; padding: 0; line-height: 1.5;">麻醉师：${smartField('anesthesiologist')}</td>
+        <td style="border: none; padding: 0; line-height: 1.5;">麻醉方式：${smartField('anesthesiaType')}</td>
+    </tr>
+</table>
+
+<p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+    <strong>手术步骤、术中出现的情况及处理：</strong>
+</p>
+
+<div class="ai-region" data-ai-id="手术步骤" data-ai-title="手术步骤、术中出现的情况及处理" style="border: 1px dashed #3b82f6; padding: 16px 12px 12px; margin: 8px 0; position: relative; min-height: 60px; background: #f8fafc; border-radius: 6px;">
+    <div contenteditable="false" style="position: absolute; top: -10px; right: 10px; background: #3b82f6; color: white; font-size: 10px; padding: 2px 8px; border-radius: 12px; z-index: 10; user-select: none;">手术步骤、术中出现的情况及处理-AI可编辑区域</div>
+    <div class="ai-content" style="min-height: 20px;"><p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">1．患者仰卧位，麻醉成功后，常规消毒术野、铺无菌巾，于脐下穿刺建立CO2气腹，气腹压力为12mmHg，进镜探查无穿刺损伤，分别于剑突下2.0cm、右锁中线肋缘下2.0cm各点穿刺置穿刺器，插入相应手术器械。</p><p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">2．腹腔镜探查：腹腔内无腹水形成，无明显粘连，肝脏色红质软，无明显结节硬化改变，胆囊大小约 cm× cm× cm，壁轻度水肿，张力可，胆囊三角解剖关系清楚，胆囊管及胆总管无明显扩张。胃、十二指肠、小肠、结肠、脾脏及盆腔未见明显异常。术中诊断：胆囊结石伴慢性胆囊炎。遂行腹腔镜胆囊切除术。</p><p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">3.切除胆囊：钳夹胆囊颈部并解剖胆囊三角，游离出胆囊动脉及胆囊管，明确胆囊与胆总管的关系，距胆总管0.3cm处近端以一枚可吸收夹，远端夹一枚钛夹夹闭胆囊管，两夹间以剪刀剪断胆囊管，另用一枚可吸收夹夹闭胆囊动脉后离断。顺行游离胆囊浆膜，完整切除胆囊后装入标本袋取出。胆囊床严密止血并覆盖止血材料。</p><p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">4.检查腹腔内无活动性出血及漏胆后，清点器械纱布无误，拔除腔镜器械，排出腹腔残余气体，缝合各刺孔，术毕。</p><p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">5.手术顺利，麻醉满意。切除的标本经家属过目后送病理。术中出血约 ml，术中输血成分，输血量，是否有输血不良反应。</p></div>
+</div>
+
+<!-- 手术图片说明表格 -->
+<table style="width: 100%; border-collapse: collapse; margin: 20px 0; table-layout: fixed;">
+    <tbody><tr>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图A 腹腔镜探查</p>
+        </td>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图B 胆囊管夹闭与离断</p>
+        </td>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图C 胆囊动脉夹闭与离断</p>
+        </td>
+    </tr>
+    <tr>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图D 胆囊剥离与床面止血</p>
+        </td>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图E 胆囊取出与钛夹确认</p>
+        </td>
+        <td style="width: 33%; text-align: center; padding: 10px; vertical-align: top; border: 1px solid #e2e8f0;">
+            <div class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="frame" style="position:relative;border: 1px dashed #cbd5e1; background: #f8fafc; width: 100%; height: 100%; max-width: 200px; max-height: 200px; min-height: 60px; margin: 0px auto; display: flex; align-items: center; justify-content: center; cursor: pointer;">
+                <span class="delete-btn" contenteditable="false">×</span>
+                <span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span>
+            </div>
+            <p style="color: #64748b; font-size: 13px; margin: 0; padding: 0; line-height: 1.5;">图F 止血材料覆盖及检查</p>
+        </td>
+    </tr></tbody>
+</table>
+
+<div class="template-info-section">
+    <p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+        <strong>手术后情况</strong>：${smartField('postOpCondition')}
+    </p>
+    
+    <p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+        <strong>切除标本描述</strong>：${smartField('specimenDescription')}
+    </p>
+    
+    <p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+        <strong>是否送病理检查</strong>：${smartField('pathologyCheck')}
+    </p>
+    
+    <p style="font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0;">
+        <strong>冰冻病理结果</strong>：${smartField('frozenPathology')}
+    </p>
+    
+    <p style="text-align: right; font-family: SimSun; font-size: 12pt; line-height: 1.5; margin: 0; padding: 0; white-space: nowrap;">
+        手术者签名：<span class="image-placeholder" data-placeholder="true" contenteditable="false" data-mode="manual" style="display:inline-block;text-align:center;width:200px;height:40px;line-height:40px;border:1px dashed #cbd5e1;background:#f8fafc;vertical-align:middle;margin:0 4px;cursor:pointer;position:relative;"><span class="delete-btn" contenteditable="false">×</span><span class="placeholder-text" style="color:#94a3b8;font-size:11px;pointer-events:none;position:absolute;top:50%;left:50%;transform:translate(-50%, -50%);display:block;width:100%;text-align:center;overflow:hidden;white-space:nowrap;text-overflow:ellipsis;">插入/点击放置图片</span></span>
+    </p>
+    
+    <p style="margin: 0; padding: 0; line-height: 1.5;">&nbsp;</p>
+    
+    <p style="text-align: right; font-family: SimSun; line-height: 1.5; margin: 0; padding: 0;">
+        ${smartField('reportDate')}
+    </p>
+</div>
+`;
+
+// Backward compatibility alias
+export const defaultContent = defaultReportContent;
diff --git a/src/utils/permissions.test.ts b/src/utils/permissions.test.ts
new file mode 100644
index 0000000..6a13098
--- /dev/null
+++ b/src/utils/permissions.test.ts
@@ -0,0 +1,54 @@
+import { describe, expect, it } from 'vitest';
+import { Report, Template, User } from '../types';
+import { canEditReport, canUseTemplate, getAccessibleReports, getUsableTemplates } from './permissions';
+
+const doctor: User = { username: '0001', role: 'user', name: '张医生', department: '外科', visibleTemplates: ['dept_tpl'] };
+const admin: User = { username: 'manager', role: 'admin', name: '管理员', department: '外科', visibleTemplates: ['dept_tpl'], manageableTemplates: ['dept_tpl'] };
+const superUser: User = { username: 'admin', role: 'super', name: '超级管理员', department: 'admin' };
+
+const baseReport = {
+  patientName: '患者',
+  hospitalId: 'H001',
+  content: '<p>报告</p>',
+  authorName: '医生',
+  createdAt: '2026-05-01',
+  status: 'completed' as const,
+};
+
+describe('permission helpers', () => {
+  it('filters report visibility by role, department and author', () => {
+    const reports: Report[] = [
+      { ...baseReport, id: 'RPT_1', title: '本人外科报告', author: '0001', department: '外科' },
+      { ...baseReport, id: 'RPT_2', title: '他人外科报告', author: '0002', department: '外科' },
+      { ...baseReport, id: 'RPT_3', title: '内科报告', author: '0003', department: '内科' },
+    ];
+
+    expect(getAccessibleReports(doctor, reports).map(r => r.id)).toEqual(['RPT_1']);
+    expect(getAccessibleReports(admin, reports).map(r => r.id)).toEqual(['RPT_1', 'RPT_2']);
+    expect(getAccessibleReports(superUser, reports).map(r => r.id)).toEqual(['RPT_1', 'RPT_2', 'RPT_3']);
+  });
+
+  it('allows admins to edit department reports and doctors to edit their own completed reports', () => {
+    const ownCompleted: Report = { ...baseReport, id: 'RPT_1', title: '本人报告', author: '0001', department: '外科' };
+    const deptCompleted: Report = { ...baseReport, id: 'RPT_2', title: '本部门报告', author: '0002', department: '外科' };
+    const otherDept: Report = { ...baseReport, id: 'RPT_3', title: '其他部门报告', author: '0003', department: '内科' };
+
+    expect(canEditReport(doctor, ownCompleted)).toBe(true);
+    expect(canEditReport(doctor, deptCompleted)).toBe(false);
+    expect(canEditReport(admin, deptCompleted)).toBe(true);
+    expect(canEditReport(admin, otherDept)).toBe(false);
+  });
+
+  it('returns department templates and personal templates for doctors', () => {
+    const templates: Template[] = [
+      { id: 'dept_tpl', name: '外科模板', content: '', createdAt: '', author: 'admin', scope: 'department', department: '外科' },
+      { id: 'other_dept_tpl', name: '内科模板', content: '', createdAt: '', author: 'admin', scope: 'department', department: '内科' },
+      { id: 'personal_tpl', name: '我的模板', content: '', createdAt: '', author: '0001', scope: 'personal', ownerUser: '0001' },
+      { id: 'other_personal_tpl', name: '他人模板', content: '', createdAt: '', author: '0002', scope: 'personal', ownerUser: '0002' },
+    ];
+
+    expect(getUsableTemplates(doctor, templates).map(t => t.id)).toEqual(['dept_tpl', 'personal_tpl']);
+    expect(canUseTemplate(doctor, templates[3])).toBe(false);
+    expect(getUsableTemplates(superUser, templates).map(t => t.id)).toEqual(['dept_tpl', 'other_dept_tpl', 'personal_tpl', 'other_personal_tpl']);
+  });
+});
diff --git a/src/utils/permissions.ts b/src/utils/permissions.ts
new file mode 100644
index 0000000..8896eac
--- /dev/null
+++ b/src/utils/permissions.ts
@@ -0,0 +1,53 @@
+import { Report, Template, User } from '../types';
+
+const getReportDepartment = (report: Report, users: User[] = []) => {
+  if (report.department) return report.department;
+  return users.find(user => user.username === report.author)?.department || '';
+};
+
+export const canViewReport = (user: User, report: Report, users: User[] = []) => {
+  if (user.role === 'super') return true;
+  if (user.role === 'admin') {
+    return !!user.department && getReportDepartment(report, users) === user.department;
+  }
+  return report.author === user.username;
+};
+
+export const canEditReport = canViewReport;
+
+export const canDeleteReport = canViewReport;
+
+export const getAccessibleReports = (user: User, reports: Report[], users: User[] = []) => {
+  return reports.filter(report => canViewReport(user, report, users));
+};
+
+export const isPersonalTemplate = (template: Template) => template.scope === 'personal' || !!template.ownerUser;
+
+export const isDepartmentTemplate = (template: Template) => !isPersonalTemplate(template);
+
+export const canUseTemplate = (user: User, template: Template) => {
+  if (user.role === 'super') return true;
+  if (isPersonalTemplate(template)) return template.ownerUser === user.username;
+  if (template.department && user.department && template.department !== user.department) return false;
+  const visible = Array.isArray(user.visibleTemplates) ? user.visibleTemplates : [];
+  return visible.length === 0 || visible.includes(template.id);
+};
+
+export const canManageTemplate = (user: User, template: Template) => {
+  if (user.role === 'super') return true;
+  if (isPersonalTemplate(template)) return template.ownerUser === user.username;
+  if (user.role === 'admin') {
+    if (template.department && user.department && template.department !== user.department) return false;
+    const manageable = Array.isArray(user.manageableTemplates) ? user.manageableTemplates : [];
+    return manageable.length === 0 || manageable.includes(template.id);
+  }
+  return false;
+};
+
+export const getUsableTemplates = (user: User, templates: Template[]) => {
+  return templates.filter(template => canUseTemplate(user, template));
+};
+
+export const getManageableTemplates = (user: User, templates: Template[]) => {
+  return templates.filter(template => canManageTemplate(user, template));
+};
diff --git a/src/utils/print.test.ts b/src/utils/print.test.ts
new file mode 100644
index 0000000..d047045
--- /dev/null
+++ b/src/utils/print.test.ts
@@ -0,0 +1,44 @@
+import { describe, expect, it, vi } from 'vitest';
+import { printDocument } from './print';
+
+describe('printDocument', () => {
+  it('writes report HTML into a hidden iframe and invokes browser print', () => {
+    vi.useFakeTimers();
+
+    const originalCreateElement = document.createElement.bind(document);
+    const print = vi.fn();
+    const focus = vi.fn();
+
+    vi.spyOn(document, 'createElement').mockImplementation((tagName: string, options?: ElementCreationOptions) => {
+      const element = originalCreateElement(tagName, options);
+      if (tagName.toLowerCase() === 'iframe') {
+        const iframeDocument = document.implementation.createHTMLDocument('');
+        Object.defineProperty(element, 'contentDocument', {
+          configurable: true,
+          value: iframeDocument,
+        });
+        Object.defineProperty(element, 'contentWindow', {
+          configurable: true,
+          value: { document: iframeDocument, focus, print },
+        });
+      }
+      return element;
+    });
+
+    printDocument('<p>报告正文</p>', '测试报告');
+
+    const iframe = document.querySelector('iframe') as HTMLIFrameElement;
+    expect(iframe).toBeInTheDocument();
+    expect(iframe.contentDocument?.body.innerHTML).toContain('报告正文');
+
+    vi.advanceTimersByTime(300);
+    expect(focus).toHaveBeenCalled();
+    expect(print).toHaveBeenCalled();
+    expect(document.title).not.toBe('测试报告');
+
+    vi.advanceTimersByTime(1000);
+    expect(document.querySelector('iframe')).not.toBeInTheDocument();
+
+    vi.useRealTimers();
+  });
+});
diff --git a/src/utils/print.ts b/src/utils/print.ts
new file mode 100644
index 0000000..a7f6067
--- /dev/null
+++ b/src/utils/print.ts
@@ -0,0 +1,67 @@
+export const printDocument = (htmlContent: string, docTitle: string = '图文报告') => {
+  const originalTitle = document.title;
+  document.title = docTitle;
+  const iframe = document.createElement('iframe');
+  iframe.style.position = 'fixed';
+  iframe.style.right = '0';
+  iframe.style.bottom = '0';
+  iframe.style.width = '0';
+  iframe.style.height = '0';
+  iframe.style.border = '0';
+  document.body.appendChild(iframe);
+
+  const win = iframe.contentWindow;
+  const doc = iframe.contentDocument || win?.document;
+  if (doc && win) {
+    doc.open();
+    doc.write(`
+      <!DOCTYPE html>
+      <html>
+      <head>
+        <meta charset="utf-8">
+        <title>${docTitle}</title>
+        <style>
+          @page { size: A4; margin: 15mm 10mm; }
+          * { box-sizing: border-box; }
+          body { margin: 0; padding: 0; font-family: SimSun, "Microsoft YaHei", serif; color: #1E293B; background: white; }
+          .content { width: 100%; min-height: 277mm; margin: 0 auto; }
+          img { max-width: 100%; height: auto; display: block; margin: 8px auto; }
+          p { margin: 0; padding: 0; line-height: 1.5; }
+          h1 { font-size: 20px; margin: 16px 0 12px; font-weight: 600; text-align: center; }
+          strong, b { font-weight: 600; }
+          u { text-decoration: underline; }
+          table { width: 100%; border-collapse: collapse; margin: 16px 0; table-layout: fixed; }
+          td { padding: 8px; border: 1px solid #e2e8f0; vertical-align: top; }
+          .image-placeholder { border: 2px dashed #cbd5e1; border-radius: 8px; padding: 16px; margin-bottom: 8px; background: #f8fafc; min-height: 70px; display: flex; flex-direction: column; align-items: center; justify-content: center; position: relative; }
+          .image-placeholder.has-image { border: none; background: transparent; padding: 0; min-height: 0; }
+          .delete-btn { display: none !important; }
+          .image-placeholder:not(.has-image) { display: none !important; }
+          .template-info-section { position: relative; margin-bottom: 16px; }
+          .smart-field-wrapper { display: inline-flex; align-items: baseline; margin: 0; vertical-align: baseline; }
+          .smart-field-wrapper .field-label { color: #64748b; user-select: none; }
+          .smart-field-wrapper .field-value { min-width: 24px; padding: 0 2px; margin: 0; border: 1px solid #cbd5e1; border-radius: 2px; display: inline-block; background: #f8fafc; color: #0f172a; line-height: inherit; font-size: inherit; vertical-align: baseline; box-sizing: border-box; outline: none; text-align: center; }
+          .report-signature-img { max-width: 120px; max-height: 40px; width: auto; height: auto; object-fit: contain; vertical-align: middle; display: inline-block; }
+          .ai-region { border: none !important; background: transparent !important; padding: 0 !important; margin: 0 !important; }
+          .ai-region > [contenteditable="false"] { display: none !important; }
+          @media print {
+            .smart-field-wrapper .field-value { outline: none !important; box-shadow: none !important; border: none !important; border-bottom: 1px solid #000 !important; border-radius: 0 !important; background: transparent !important; padding: 0 2px 0px 2px !important; line-height: 1 !important; }
+            .smart-field-wrapper .field-value.no-underline { border-bottom: none !important; }
+          }
+        </style>
+      </head>
+      <body>
+        <div class="content">${htmlContent}</div>
+      </body>
+      </html>
+    `);
+    doc.close();
+    win.focus();
+    setTimeout(() => {
+      win.print();
+      document.title = originalTitle;
+      setTimeout(() => {
+        if (iframe.parentNode) document.body.removeChild(iframe);
+      }, 1000);
+    }, 300);
+  }
+};
diff --git a/src/utils/storage.test.ts b/src/utils/storage.test.ts
new file mode 100644
index 0000000..2b328ed
--- /dev/null
+++ b/src/utils/storage.test.ts
@@ -0,0 +1,47 @@
+import { describe, expect, it } from 'vitest';
+import { DEFAULT_AI_PROVIDERS, SystemSettings } from '../types';
+import { storage } from './storage';
+
+describe('storage utility', () => {
+  it('persists regular localStorage values as JSON', () => {
+    storage.set('reports', [{ id: 'RPT_1', title: '测试报告' }]);
+
+    expect(storage.get('reports', [])).toEqual([{ id: 'RPT_1', title: '测试报告' }]);
+  });
+
+  it('returns fallback values for missing or malformed data', () => {
+    localStorage.setItem('broken', '{not-json');
+
+    expect(storage.get('missing', 'fallback')).toBe('fallback');
+    expect(storage.get('broken', { safe: true })).toEqual({ safe: true });
+  });
+
+  it('obfuscates systemSettings while keeping backward compatibility with plain JSON', () => {
+    const settings: SystemSettings = {
+      frameCount: 2,
+      framePositions: [25, 75],
+      defaultTemplate: 'surgery',
+      activeAiProvider: 'kimi',
+      aiProviders: DEFAULT_AI_PROVIDERS,
+    };
+
+    storage.set('systemSettings', settings);
+    expect(localStorage.getItem('systemSettings')).not.toContain('"frameCount"');
+    expect(storage.get<SystemSettings>('systemSettings', {} as SystemSettings).framePositions).toEqual([25, 75]);
+
+    localStorage.setItem('systemSettings', JSON.stringify(settings));
+    expect(storage.get<SystemSettings>('systemSettings', {} as SystemSettings).defaultTemplate).toBe('surgery');
+  });
+
+  it('persists sessionStorage values separately', () => {
+    storage.setSession('restore_RPT_1', '<p>历史版本</p>');
+
+    expect(storage.getSession('restore_RPT_1', '')).toBe('<p>历史版本</p>');
+    storage.removeSession('restore_RPT_1');
+    expect(storage.getSession('restore_RPT_1', null)).toBeNull();
+  });
+
+  it('does not expose a bundled AI provider key in default settings', () => {
+    expect(DEFAULT_AI_PROVIDERS.kimi.apiKey).toBe('');
+  });
+});
diff --git a/src/utils/storage.ts b/src/utils/storage.ts
new file mode 100644
index 0000000..0bf2297
--- /dev/null
+++ b/src/utils/storage.ts
@@ -0,0 +1,74 @@
+const CRYPTO_KEY = 'MedicalReportSys2024';
+
+function xorEncrypt(text: string, key: string): string {
+  let result = '';
+  for (let i = 0; i < text.length; i++) {
+    result += String.fromCharCode(text.charCodeAt(i) ^ key.charCodeAt(i % key.length));
+  }
+  return btoa(result);
+}
+
+function xorDecrypt(encrypted: string, key: string): string {
+  const text = atob(encrypted);
+  let result = '';
+  for (let i = 0; i < text.length; i++) {
+    result += String.fromCharCode(text.charCodeAt(i) ^ key.charCodeAt(i % key.length));
+  }
+  return result;
+}
+
+export const storage = {
+  get<T>(key: string, fallback: T): T {
+    try {
+      const raw = localStorage.getItem(key);
+      if (!raw) return fallback;
+      if (key === 'systemSettings') {
+        try {
+          return JSON.parse(raw) as T;
+        } catch {
+          return JSON.parse(xorDecrypt(raw, CRYPTO_KEY)) as T;
+        }
+      }
+      return JSON.parse(raw) as T;
+    } catch {
+      return fallback;
+    }
+  },
+
+  set<T>(key: string, value: T): void {
+    try {
+      let data = JSON.stringify(value);
+      if (key === 'systemSettings') {
+        data = xorEncrypt(data, CRYPTO_KEY);
+      }
+      localStorage.setItem(key, data);
+    } catch (e) {
+      console.error('Storage save failed (possibly quota exceeded):', e);
+    }
+  },
+
+  remove(key: string): void {
+    localStorage.removeItem(key);
+  },
+
+  getSession<T>(key: string, fallback: T): T {
+    try {
+      const raw = sessionStorage.getItem(key);
+      return raw ? (JSON.parse(raw) as T) : fallback;
+    } catch {
+      return fallback;
+    }
+  },
+
+  setSession<T>(key: string, value: T): void {
+    try {
+      sessionStorage.setItem(key, JSON.stringify(value));
+    } catch (e) {
+      console.error('Session storage save failed:', e);
+    }
+  },
+
+  removeSession(key: string): void {
+    sessionStorage.removeItem(key);
+  },
+};
diff --git a/src/vite-env.d.ts b/src/vite-env.d.ts
new file mode 100644
index 0000000..11f02fe
--- /dev/null
+++ b/src/vite-env.d.ts
@@ -0,0 +1 @@
+/// <reference types="vite/client" />
diff --git a/tsconfig.json b/tsconfig.json
new file mode 100644
index 0000000..b6dbaa0
--- /dev/null
+++ b/tsconfig.json
@@ -0,0 +1,33 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "experimentalDecorators": true,
+    "emitDecoratorMetadata": true,
+    "useDefineForClassFields": false,
+    "module": "ESNext",
+    "lib": [
+      "ES2022",
+      "DOM",
+      "DOM.Iterable"
+    ],
+    "skipLibCheck": true,
+    "moduleResolution": "bundler",
+    "isolatedModules": true,
+    "moduleDetection": "force",
+    "allowJs": true,
+    "jsx": "react-jsx",
+    "paths": {
+      "@/*": [
+        "./*"
+      ]
+    },
+    "allowImportingTsExtensions": true,
+    "types": [
+      "vitest/globals",
+      "@testing-library/jest-dom",
+      "node"
+    ],
+    "noEmit": true
+  },
+  "exclude": ["参考信息", "dist", "node_modules"]
+}
diff --git a/vite.config.ts b/vite.config.ts
new file mode 100644
index 0000000..2619a78
--- /dev/null
+++ b/vite.config.ts
@@ -0,0 +1,37 @@
+import tailwindcss from '@tailwindcss/vite';
+import react from '@vitejs/plugin-react';
+import path from 'path';
+import {loadEnv} from 'vite';
+import {defineConfig} from 'vitest/config';
+
+export default defineConfig(({mode}) => {
+  const env = loadEnv(mode, '.', '');
+  const apiProxyTarget = env.VITE_API_PROXY_TARGET || 'http://localhost:3000';
+  return {
+    plugins: [react(), tailwindcss()],
+    resolve: {
+      alias: {
+        '@': path.resolve(__dirname, '.'),
+      },
+    },
+    server: {
+      // HMR is disabled in AI Studio via DISABLE_HMR env var.
+      // Do not modify—file watching is disabled to prevent flickering during agent edits.
+      hmr: process.env.DISABLE_HMR !== 'true',
+      proxy: {
+        '/api': {
+          target: apiProxyTarget,
+          changeOrigin: true,
+          ws: true,
+        },
+      },
+    },
+    test: {
+      environment: 'jsdom',
+      include: ['src/**/*.{test,spec}.{ts,tsx}', 'server/**/*.{test,spec}.ts'],
+      exclude: ['e2e/**', 'node_modules/**', 'dist/**'],
+      globals: true,
+      setupFiles: './src/test/setup.ts',
+    },
+  };
+});